The alternative to using a reference file for implementing WDAC Publisher or Hash rule is to use a digital signature. Instead of relying on a reference file that contains a list of trusted publishers or hashes, the system can verify the digital signature attached to the executable file or installer. This ensures that the file has not been tampered with and comes from a trusted source. This approach is more secure and flexible as it allows for the use of different certificates and signatures for different applications, rather than relying on a central reference file.
Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss
Asked: 2021-11-12 11:00:00 +0000
Seen: 12 times
Last updated: May 24 '21
What are the Cordapp Certificates used for in terms of signing and interacting?
How can SSL be used with CqlSessionFactoryBean in Springboot Cassandra?
How to set up Database First configuration in Entity Framework 7 for MVC 6?
How can I address the issue of Content Security Policy blocking more than I had anticipated?
How do I resolve a 502 error when attempting to call an HTTPS REST API from an HTTP REST API?
What does borrowing or moving a value from `stdout` mean?