CCI-001765

CCI-001765 Definition

Defines the software programs not authorized to execute on the system.

Status
Type	CheckType.policy

The controls below (if any) were marked by NIST as being related to CCI-001765.

Control	Description
CM-7(4)	The organization: (a): Identifies [one of ]; (b): Employs an allow-all, deny-by-exception policy to prohibit the execution of unauthorized software programs on the information system; and (c): Reviews and updates the list of unauthorized software programs [one of ].