CM-7(2): Prevent Program Execution
Control Family:
Parent Control:
Threats Addressed:
Baselines:
- Moderate
- High
Previous Version:
- NIST Special Publication 800-53 Revision 4:
- CM-7(2): Prevent Program Execution
Control Statement
Prevent program execution in accordance with [Assignment (one or more): [Assignment: organization-defined policies, rules of behavior, and/or access agreements regarding software program usage and restrictions] , rules authorizing the terms and conditions of software program usage].
Supplemental Guidance
Prevention of program execution addresses organizational policies, rules of behavior, and/or access agreements that restrict software usage and the terms and conditions imposed by the developer or manufacturer, including software licensing and copyrights. Restrictions include prohibiting auto-execute features, restricting roles allowed to approve program execution, permitting or prohibiting specific software programs, or restricting the number of program instances executed at the same time.