Application Whitelisting &Application Whitelisting &
Blacklisting: Competitive
or Complementary?or Complementary?
Robin Bloor, Moderator
Hurwitz & Associates
04/22/09 | Session ID: HOST-20204/22/09 | Session ID: HOST 202
Session Classification: Advanced
Panelists
Brian Grayek, VP of Product Management, CA
Jeff Green, Senior Vice President, McAfee
A t l bAvert labs
Zulfikar Ramzan, Technical Director &Zulfikar Ramzan, Technical Director &
Architect, Symantec
Daniel Teal, Founder & CTO, CoreTrace
1
Key Questions for Today’s Session
• Will application whitelisting replace or augment
blacklist-based products?blacklist based products?
• Which will be the primary defense against
malware and which will be subservient?malware, and which will be subservient?
2
Take-Aways from Today’s Session
• There are multiple approaches to blocking
malware with:malware with:
– Different styles of implementation
– Different management challengesg g
– Different levels of effectiveness
– Different impacts on usability (both in a client and server context)
• The debate you have heard today should help
you consider the alternatives in a clearer light.