Blacklisting

What is application blacklisting?

Application blacklisting prevents unwanted applications from running in your environment.

Thycotic's Application Control Solution allows you to manage applications flexibly in a large, distributed client environment by putting:

  • Known trusted applications in a whitelist
  • Potentially trusted applications in an orangelist (also known as a graylist)
  • Everything else in a blacklist 

Exception blacklist

The exception policy approach is a good initial step when you begin monitoring your environment to determine what applications are actually exceptions. If you were to Automatically blacklist all .exe files it would break common functionality and bring your enterprise to a standstill.

An exception blacklist will block any software that is not covered by existing whitelist or orangelist policies. Implement exception blacklisting only after much analysis, end user education, and policy refinement.

Implement exception blacklisting only after much analysis, end user education, and policy refinement.


You can add applications to a blacklist using some of the following criteria:

  • Application attributes
  • File hash
  • Location
  • Untrusted application

Whitelisting

Graylisting