control enhancementCM-7(4)

Unauthorized Software — Deny-by-exception (CM-7(4))

Identify [organization-defined]; Employ an allow-all, deny-by-exception policy to prohibit the execution of unauthorized software programs on the system; and Review and update the list of unauthorized software programs [organization-defined].

configurationbaselineschange-controlenhancement

Why These Connect

Enhances1

These enhancements add specific capabilities or refinements to the base control.

Unauthorized Software — Deny-by-exception (CM-7(4))

Why These Connect

See Also