While application whitelisting is not new, interest in the technology appears to be on the upswing, with tra??íditional anti-virus vendors beginning to build aspects of whitelist??íing into their products. For instance, Symantec has built a modest form of whitelist??íing-compiling a list of known good system files to leave out of future scans in order to speed up their performance. Also, Kasper??ísky Lab is integrating Bit9's application-vetting database into Kaspersky's own prod??íuct. I expect to see other anti-virus vendors embrace whitelisting as a way of fill??íing the coverage gaps in their existing, blacklist-focused products. As for the ven??ídors that are already offer??íing application whitelisting products, I expect to see more consideration given to combining whitelisting with least-privilege controls.
By combining whitelisting tech??ínologies with least-privilege- and man??íaged-rights escalation schemes, these vendors could allow their customers to run with reduced privileges without surrendering opportunities for self-ser??ívice software installation scenarios.
eWEEK Labs Executive Editor Jason Brooks can be reached at firstname.lastname@example.org.