White Papers for Federal Information Security Management Act (FISMA)

Application Whitelisting: A New Security Paradigm

CoreTrace

After years of security technology development and billions of dollars of investments worldwide, the security problem seems to be getting even worse. The reason is simple: driven by financial motives, today’s bad guys are aggressively exploiting the flaws in traditional security solutions to further illegitimate but lucrative business plans.

For years, security companies have built solutions designed to keep malicious applications out of systems, networks, and desktops using an approach called blacklisting. Unfortunately, the growing number and increasing sophistication of attacks has overtaken the ability of this method to adequately protect systems or information. Blacklists have become bloated resulting in poor performance, user frustration and requiring endless updates and additional products to keep up with the latest attacks. Additionally, blacklists are simply unable to defend against all threats—especially brand new, “day zero”, and targeted attacks.

Fortunately, there is a new approach that solves the security problem while simultaneously lowering total cost of ownership (TCO)—Application Whitelisting. With Application Whitelisting solutions, only approved applications are permitted to run. Even if a piece of malware makes it onto a computer, Application Whitelisting solutions will deny the application’s ability to gain control of the system.

View the White Paper

Share or bookmarklet this web page at: