Application Whitelisting for Malware Protection (macOS)

I am curious to hear the perspectives of the community members on why Bitdefender has chosen not to include application whitelisting (AWL) in GravityZone on macOS to protect against malware.

AWL is a proactive technique that implements a “default = deny” and zero-trust security model in which all applications are assumed to be untrustworthy and therefore are blocked from accessing files in designed folders on the endpoint device, unless they have been previously approved by the user or a security administrator.

Of course, the technique is not a single standalone comprehensive panacea against malware; and, a whitelisted application still needs to be monitored for malicious activity. Yet, intuitively, AWL does seem to be one additional layer of malware protection that could complement the other technologies currently included in GravityZone for macOS?

P.S.: Application Control for Business is a feature that appears to be available for Windows.

Find more posts tagged with

protection for macos

Comments

Andrei_S Enterprise

Hello @Pleonasm ,

The Application Control feature is only available for On-Prem environments for Windows, this feature is not available for Cloud. However, there alternative ways to this feature in the Cloud version, such as, Application Blacklisting part of the Content Control module and Blocklist, both of them available on macOS as well.

https://www.bitdefender.com/business/support/en/77211-342965-content-control.html#UUID-ff9908fb-3813-7315-9dcb-d9722fff87f3_section-idm63253901105470

https://www.bitdefender.com/business/support/en/77211-1137780-blocklist.html#UUID-ac130cd3-d44f-5478-23a3-186b69a43a63

Kind Regards,

Andrei

Pleonasm

Bitdefender acknowledges the value of Application Whitelisting (AWL) as a technique to protect against malware, since it is available in GravityZone for Windows. Additionally, there appears to be no technical obstacle preventing Bitdefender from implementing the technique in macOS, since it is available in the Safe Files feature in the Antivirus for Mac product. Yet, Bitdefender has chosen not to make AWL available in GravityZone for macOS.

What might be the rationale for this omission?

Andrei_S Enterprise

Hello @Pleonasm ,

You should not compare consumer products with enterprise products as these are 2 separate line of business which have their own product management team and different product strategy. If you think this feature is something that would benefit you and many other customers in the market please submit a feature request to be analyzed by the product management team and if it's accepted it will be included in a future release.

You can use the webform for this: https://www.bitdefender.com/en-us/support/contact-us

Kind Regards,

Andrei