Windows 7 App Locker

Windows 7 provides a new security model that can restrict what applications can run on a PC.  This new model is called “App Locker”.  This is a feature that’s more likely to be used in an enterprise environment that in home computers.

image

You can create rules based on executables and installers and can white list DLLs.  Publish rules using information in a digitally signed app.  You can restrict apps based on version and per user basis.  For example, you can block an administrator from running certain software, in spite of the fact that they’re an administrator.  White listing is blocking all software except for a list of apps you will allow as opposed to black listing which means everything can run, except for explicitly stated apps.

User local group policy editor to set up these rules.

[youtube=http://www.youtube.com/watch?v=ZJT802mD8KU]

Leave a Reply