Back

Execute unauthorized code within a sandbox.


CONTROL ID
16509
CONTROL TYPE
Process or Activity
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Establish, implement, and maintain sandboxes., CC ID: 14946

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • Executable files imported via gateways or CDSs are automatically executed in a sandbox to detect any suspicious behaviour. (Control: ISM-1389; Revision: 2, Australian Government Information Security Manual, June 2023)
  • Only Microsoft Office macros running from within a sandboxed environment, a Trusted Location or that are digitally signed by a trusted publisher are allowed to execute. (Control: ISM-1674; Revision: 0, Australian Government Information Security Manual, June 2023)
  • Executable files imported via gateways or CDSs are automatically executed in a sandbox to detect any suspicious behaviour. (Control: ISM-1389; Revision: 2, Australian Government Information Security Manual, September 2023)
  • Only Microsoft Office macros running from within a sandboxed environment, a Trusted Location or that are digitally signed by a trusted publisher are allowed to execute. (Control: ISM-1674; Revision: 0, Australian Government Information Security Manual, September 2023)