Back

Establish, implement, and maintain whitelists and blacklists of web content.


CONTROL ID
15234
CONTROL TYPE
Data and Information Management
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Establish, implement, and maintain measures to detect and prevent the use of unsafe internet services., CC ID: 13104

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • A list of allowed content types is implemented. (Security Control: 0649; Revision: 7, Australian Government Information Security Manual, March 2021)
  • Restrict use of certain websites, block downloads/attachments, block Javascript, restrict browser extensions, etc. (M1021 Restrict Web-Based Content, MITRE ATT&CK®, Enterprise Mitigations, Version 13.1)