The alternative to using a reference file for implementing WDAC Publisher or Hash rule is to use a digital signature. Instead of relying on a reference file that contains a list of trusted publishers or hashes, the system can verify the digital signature attached to the executable file or installer. This ensures that the file has not been tampered with and comes from a trusted source. This approach is more secure and flexible as it allows for the use of different certificates and signatures for different applications, rather than relying on a central reference file.
Asked: 2021-11-12 11:00:00 +0000
Seen: 12 times
Last updated: May 24 '21