U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Glossary
A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

whitelisting

Definition(s):

  A list of discrete entities, such as hosts or applications that are known to be benign and are approved for use within an organization and/or information system.
Source(s):
NIST SP 800-128 under Whitelist from NIST SP 800-94 - Adapted
NIST SP 800-82 Rev. 2 under Whitelist from NIST SP 800-128

  A list of discrete entities, such as hosts or applications, that are known to be benign and are approved for use within an organization and/or information system.
Source(s):
NIST SP 800-179 under Whitelist from NISTIR 7298 Rev. 2

  A process used to identify software programs that are authorized to execute on a system or authorized Universal Resource Locators (URL)/websites.
Source(s):
NIST SP 800-171 Rev. 2
NIST SP 800-171 Rev. 1 [Superseded]

  An approved list or register of entities that are provided a particular privilege, service, mobility, access or recognition.
Source(s):
NISTIR 7621 Rev. 1 under Whitelist from CNSSI 4009-2015 - “whitelisting”

  2). An implementation of a default deny all or allow by exception policy across an enterprise environment, and a clear, concise, timely process for adding exceptions when required for mission accomplishments.
Source(s):
CNSSI 4009-2015 [Superseded] from CNSSI 1011

  A list of discrete entities, such as hosts or applications that are known to be benign and are approved for use within an organization and/or information system. Also known as “clean word list”.
Source(s):
CNSSI 4009-2015 [Superseded] under white list from NIST SP 800-128

  1). An approved list or register of entities that are provided a particular privilege, service, mobility, access or recognition.
Source(s):
CNSSI 4009-2015 [Superseded]

  A list of email senders known to be benign, such as a user’s coworkers, friends, and family.
Source(s):
NIST SP 800-114 [Superseded] under Whitelist

  The process used to identify: (i) software programs that are authorized to execute on an information system; or (ii) authorized Universal Resource Locators (URL)/websites.
Source(s):
NIST SP 800-53 Rev. 4 [Superseded] under Whitelisting