Esc

Application Configuration Hardening

D3-ACH (Application Configuration Hardening)

Definition

Modifying an application's configuration to reduce its attack surface.

How it works

Application configuration settings can be configured to limit the permissions on an application or disable certain vulnerable application features.

Hardening an application's configuration involves analyzing not only the application but also the environment in which the application is run in for potential vulnerabilities.

json

References

All

Guideline

The following references were used to develop the Application Configuration Hardening knowledge-base article.

(Note: the consideration of references does not imply specific functionality exists in an offering.)

Red Hat Enterprise Linux 8 Security Technical Implementation Guide

Reference Type: Guideline

Source: https://www.stigviewer.com/stig/red_hat_enterprise_linux_8/

Windows 10 Security Technical Implementation Guide

Reference Type: Guideline

Source: https://www.stigviewer.com/stig/windows_10/

D3FEND^™

A knowledge graph of cybersecurity countermeasures