BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

AppLocker + Least Privilege = Magic

Posted October 24, 2011    Peter McCalister

Writing blogs at 2am sometimes, has me asking myself dumb questions like “should I use a mathematics or a magician’s metaphor to kick off todays blog?” Answering myself sometimes generates inspiration and sometimes just means the lazy way out, like today when I chose both.

By now you’ve come to realize that there isn’t a singe magic phrase, silver bullet or individual solution to mitigate insider threats across your enterprise.

AppLocker, a Windows 7 management feature, is a Group Policy extension that evolved from Software Restriction Policies, to restrict which applications can run on end points in a corporate network. The method of controlling application execution with AppLocker is performed by creating either a “black list” or “white list” of applications.

Applications that are on an AppLocker black list are blocked from executing, whereas applications on an AppLocker white list are allowed to run. Typically, organizations choose to implement either a white list approach or a black list approach, with the white list approach being most common. However, implementing application control policies with AppLocker does not negate the need to remove administrator privileges from users.

You may be interested in a new white paper that examines the pros and cons of AppLocker, and illustrates how using AppLocker alone as a solution for Least Privilege is not be enough to protect your enterprise. However, integrating AppLocker with BeyondTrust PowerBroker Desktops enables users to run with standard user rights, while simultaneously providing them the access they need to perform their job. This equates to a perfect complement of solutions to achieve least privilege.

Leave a Reply

Additional articles

medicalbreach

The Magnitude of Cybersecurity Problems in United States Healthcare

Posted April 30, 2015    Dr. Mansur Hasib

Dr. Mansur Hasib discusses healthcare compliance and why healthcare records are far more valuable to the modern cyber criminal than any other data.

Tags:
, , ,
windows-10-logo-featured

What BeyondTrust Has to Say about Windows 10

Posted April 28, 2015    Morey Haber

Microsoft is on the verge of releasing its latest operating system, Windows 10. It has taken several nontraditional strides and also included some key components that we’re keeping our eyes on. Read on to learn what BeyondTrust has to say about Windows 10.

Tags:
, , ,
pbps-blog2

10 Ways to Ensure Your Privileged Password Management Strategy Will Succeed

Posted April 27, 2015    Scott Lang

Leveraging complex, frequently updated passwords is a basic security best practice for protecting privileged accounts in your organisation. But if passwords are such a no-brainer, why do so many data breaches tie back to poor password management?

Tags:
, , , , , , , ,