Whitelisting policies include the following policy types:
Allow Manual Security Rated Whitelist Execution - This policy allows whitelisted applications to run unmanaged by Application Control and prevents graylist Application Control Policies from applying to whitelisted applications.
Allow Microsoft Installer Policy - This policy allows any child process of Windows Installer to execute. This prevents Windows Installer child processes falling under any "Unclassified applications" policies.
Deny Manual Security Rated Blacklist Execution - This policy prevents execution of any files marked with a manual security rating of 'blacklist.'