Application Control

Support

Support for business applications

Kaspersky Industrial CyberSecurity for Linux Nodes

Managing the application using Kaspersky Security Center Administration Console

Policy settings

Application Control

February 8, 2024

ID 14645

During operation of the Application Control component, Kaspersky Industrial CyberSecurity for Linux Nodes controls launches of applications on the user computers. This helps reduce the risk of computer infection by restricting access to applications. Application launching is regulated by application control rules.

Application Control can operate in two modes:

Deny list. In this mode Kaspersky Industrial CyberSecurity for Linux Nodes allows all users to launch any applications that are not specified in the application control rules. This is the default operation mode of the Application Control task.
Allow list. In this mode Kaspersky Industrial CyberSecurity for Linux Nodes prevents all users from launching any applications that are not specified in the application control rules.

Thus, if the application control rules are created to the fullest extent possible, Kaspersky Industrial CyberSecurity for Linux Nodes prohibits the launching of all new applications that are not verified by the administrator of the organization's local network, but ensures the performance of the operating system and verified applications that users need to perform their job duties.

For each operation mode of the Application Control task, separate rules can be created and the action can be specified: apply the rule or test the rule. Kaspersky Industrial CyberSecurity for Linux Nodes performs this action when it detects an attempt to start an application.

The Application Control settings are described in the following table.

Application Control settings

Setting	Description
Enable Application Control	The check box enables the Application Control component. This check box is cleared by default.
Action on application startup attempt	Action to be performed by Kaspersky Industrial CyberSecurity for Linux Nodes upon detection of an attempt to start the application that matches the configured rules: Apply rules. If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes applies the Application Control rules and performs the action specified in the rules. Test rules (default value). If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes checks the rules and generates an event about detection of the applications that match the rules.
Application Control mode	Application Control task operation mode: Allow list. If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes prevents all users from launching any applications except those specified in the application control rules. Deny list (default value). If you select this option, Kaspersky Industrial CyberSecurity for Linux Nodes allows all users to launch any applications except those specified in the application control rules.
Application Control rules	This group of settings contains the Configure button. Clicking this button opens the Application Control rules window.

Did you find this article helpful?

What can we do better?

Thank you for your feedback! You're helping us improve.