Comments on: Application Whitelisting Only Works Sometimes – CIOs Need To Know The Facts http://www.theaccidentalsuccessfulcio.com/security/application-whitelisting-only-works-sometimes-cios-need-to-know-the-facts The Premier Blog For Learning How To Become A Successful CIO Wed, 08 Feb 2012 09:01:27 +0000 hourly 1 http://wordpress.org/?v= By: Emilia Reifer http://www.theaccidentalsuccessfulcio.com/security/application-whitelisting-only-works-sometimes-cios-need-to-know-the-facts/comment-page-1#comment-1024 Emilia Reifer Thu, 17 Jun 2010 06:22:54 +0000 http://www.theaccidentalsuccessfulcio.com/?p=933#comment-1024 I use Digg to find stories all the time. It’s great when you don’t have anything else to write about. Nice list. I use Digg to find stories all the time. It’s great when you don’t have anything else to write about. Nice list.

]]> By: Dr. Jim Anderson http://www.theaccidentalsuccessfulcio.com/security/application-whitelisting-only-works-sometimes-cios-need-to-know-the-facts/comment-page-1#comment-781 Dr. Jim Anderson Thu, 27 Aug 2009 14:22:09 +0000 http://www.theaccidentalsuccessfulcio.com/?p=933#comment-781 JT: thanks for providing the extra info. You bring up some very good points - app whitelisting is an important new security tool, but as with all such tools in the past it's not a magic bullet. CIOs need to understand how to use the tool correctly. JT: thanks for providing the extra info. You bring up some very good points – app whitelisting is an important new security tool, but as with all such tools in the past it’s not a magic bullet. CIOs need to understand how to use the tool correctly.

]]> By: JT Keating http://www.theaccidentalsuccessfulcio.com/security/application-whitelisting-only-works-sometimes-cios-need-to-know-the-facts/comment-page-1#comment-771 JT Keating Thu, 20 Aug 2009 03:33:10 +0000 http://www.theaccidentalsuccessfulcio.com/?p=933#comment-771 Dr. Anderson: Great blog! Loved it. First, a disclaimer: I work for application whitelisting pioneer, CoreTrace. With that said, I agree with almost all of the application whitelisting pros/cons you cited in your blog. Almost all whitelisting solutions stop unauthorized applications. Good ones stop attacks within whitelisted applications (e.g., memory-based attacks within whitelisted applications). Really good ones (which are very rare) can handle dynamic environments like desktops and laptops without increasing costs as you described. CoreTrace created a concept called "Trusted Change" that enables IT to establish multiple sources of trust in advance (trusted updaters, trusted digital certificates, even trusted browser plugins like ActiveX). As long as users and systems operate within these pre-defined broad sources of trust, they don't even know the protection is there and IT doesn't need to be a bottleneck. Other leading players are working on their version of the same. Simply put, we all know that application whitelisting cannot become the foundational anti-malware technology until the operational friction is as low as blacklist-based antivirus--and we won't rest until we have proven it to leading CIOs like you. Thanks again for raising the issue. Dr. Anderson: Great blog! Loved it.

First, a disclaimer: I work for application whitelisting pioneer, CoreTrace.

With that said, I agree with almost all of the application whitelisting pros/cons you cited in your blog. Almost all whitelisting solutions stop unauthorized applications. Good ones stop attacks within whitelisted applications (e.g., memory-based attacks within whitelisted applications). Really good ones (which are very rare) can handle dynamic environments like desktops and laptops without increasing costs as you described. CoreTrace created a concept called “Trusted Change” that enables IT to establish multiple sources of trust in advance (trusted updaters, trusted digital certificates, even trusted browser plugins like ActiveX). As long as users and systems operate within these pre-defined broad sources of trust, they don’t even know the protection is there and IT doesn’t need to be a bottleneck. Other leading players are working on their version of the same.

Simply put, we all know that application whitelisting cannot become the foundational anti-malware technology until the operational friction is as low as blacklist-based antivirus–and we won’t rest until we have proven it to leading CIOs like you.

Thanks again for raising the issue.

]]>