Whitelisting (also referred to as deny all, allow by exception) is
|“||[t]he process used to identify: (i) software programs that are authorized to execute on an information system; or (ii) authorized Universal Resource Locators (URL)/websites.||”|
|“||[a] computer administration practice used to permit users the ability to access only authorized Web sites.||”|
- ↑ NIST Special Publication SP 800-171, App. B, at B-8.
- ↑ Cybersecurity Assessment Tool, App. C: Glossary, at 4 n.5 (full-text).