Application Control restricts what, where and how applications run within an organisation’s environment. Applications include any executable, as well as software libraries, scripts, HTML & Control Panel applets.
By controlling applications, organisations can both minimize the chance of malicious software (or “malware” for short) gaining a foothold, as well as improve identifying any malware that does.
As the first Strategy in the ACSC Essential 8, Application Control is recommended to start by restricting execution for standard user profiles and temp directories, before expanding to workstations and internet facing servers. Organisations should create annually reviewed approved app lists and log execution events.