CM-7(4)

Identify ; Employ an allow-all, deny-by-exception policy to prohibit the execution of unauthorized software programs on the system; and Review and update the

识别并采用全面允许、例外拒绝的策略，以禁止系统执行未经授权的软件程序；并审查及更新