Esc
Execution Isolation
Definition
Execution Isolation techniques prevent application processes from accessing non-essential system resources, such as memory, devices, or files.
loading...
Technique Subclasses
There are 6 techniques in this category, Execution Isolation.
| Name | ID | Definition | Synonyms |
|---|---|---|---|
| Execution Isolation | D3-EI | Execution Isolation techniques prevent application processes from accessing non-essential system resources, such as memory, devices, or files. | |
| - Executable Allowlisting | D3-EAL | Using a digital signature to authenticate a file before opening. | File Signature Authentication |
| - Executable Denylisting | D3-EDL | Blocking the execution of files on a host in accordance with defined application policy rules. | Executable Blacklisting |
| - Hardware-based Process Isolation | D3-HBPI | Preventing one process from writing to the memory space of another process through hardware based address manager implementations. | Virtualization |
| - Kernel-based Process Isolation | D3-KBPI | Using kernel-level capabilities to isolate processes. | |
| - Application-based Process Isolation | D3-ABPI | Application code which prevents its own subroutines from accessing intra-process / internal memory space. | Browser-based Process Isolation , Remote Browser Isolation , and Sandbox |
loading...
D3FEND™
A knowledge graph of cybersecurity countermeasures