It was evident at Infosec that application whitelisting and dynamic application whitelisting is gaining some strong interest at. dataplex ran a presentation with McAfee which touched on this as a key technology for VDI, you can see the brief presentation we delivered at our website.
There’s no shortage of vendors delivering solutions for application control / whitelisting. Most application-control vendors control whether a given file can be executed or not.
Some host-based intrusion prevention system vendors and products take this concept further to define and control what behaviours an application is allowed to perform once it is running.
The best products focus on the initial construction of the list and, more importantly, the ongoing care and feeding of the list over time as applications and user’s needs change. This is how the leading solutions differentiate and the types of capabilities you will need to be successful with an application control project.