Куда я попал?
CIS Critical Security Controls v8 (The 18 CIS CSC)
Framework
Software Assets
Для проведения оценки соответствия по документу войдите в систему.
Список требований
-
2.6 Allowlist Authorized Libraries
Use technical controls to ensure that only authorized software libraries, such as specific .dll, .ocx, .so, etc., files are allowed to load into a system process. Block unauthorized libraries from loading into a system process. Reassess bi-annually, or more frequently.Обязательно для implementation Group 2 3 -
2.7 Allowlist Authorized Scripts
Use technical controls, such as digital signatures and version control, to ensure that only authorized scripts, such as specific .ps1, .py, etc., files are allowed to execute. Block unauthorized scripts from executing. Reassess bi-annually, or more frequently.Обязательно для implementation Group 3
Связанные защитные меры
Ничего не найдено