control enhancementCM-7(5)

Authorized Software — Allow-by-exception (CM-7(5))

Identify [organization-defined]; Employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the system; and Review and update the list of authorized software programs [organization-defined].

Security Baselines

MODERATEHIGHLOW

configurationbaselineschange-controlenhancement

Why These Connect

Enhances1

These enhancements add specific capabilities or refinements to the base control.

Baselined In2

This control is included in the linked security baseline (LOW, MODERATE, or HIGH).

Authorized Software — Allow-by-exception (CM-7(5))

Security Baselines

Why These Connect

See Also