CCI-001773

CCI-001773 Definition

Identify the organization-defined software programs authorized to execute on the system.

Status
Type	CheckType.policy

The controls below (if any) were marked by NIST as being related to CCI-001773.

Control	Description
CM-7(5)	The organization: (a): Identifies [one of ]; (b): Employs a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the information system; and (c): Reviews and updates the list of authorized software programs [one of ].