CM-7 (2)

Configuration ManagementRev 5system

Prevent Program Execution

Baselines:ModerateHigh

Control Statement

Prevent program execution in accordance with [Selection: organization-defined value].

Supplemental Guidance

Prevention of program execution addresses organizational policies, rules of behavior, and/or access agreements that restrict software usage and the terms and conditions imposed by the developer or manufacturer, including software licensing and copyrights. Restrictions include prohibiting auto-execute features, restricting roles allowed to approve program execution, permitting or prohibiting specific software programs, or restricting the number of program instances executed at the same time.

Related Controls (5)

CM-8 PL-4 PL-9 PM-5 PS-6

CCI Identifiers (9)

CCI-000386The organization employs automated mechanisms to prevent program execution on the information system in accordance with the organization-defined specifications.CCI-001590The organization develops a list of software programs authorized to execute on the information system.deprecated CCI-001591The organization develops a list of software programs not authorized to execute on the information system.deprecated CCI-001592Defines the rules authorizing the terms and conditions of software program usage on the system.CCI-001593The organization maintains a list of software programs authorized to execute on the information system.deprecated CCI-001594The organization maintains a list of software programs not authorized to execute on the information system.deprecated CCI-001595The organization maintains rules authorizing the terms and conditions of software program usage on the information system.

Linked STIG Checks (200)

Across 50 STIGs. Click to expand.