Date: 01/25/2024

Vendor: Broadcom/Vmware

Technology/Topic: Carbon Black Application Control         

URL: https://www.vmware.com

TEM Video (milTube): https://www.milsuite.mil/video/watch/video/67390

Broadcom VMware Carbon Black TEM Slide DeckDownload

Welcome to the Technical Exchange Meeting (TEM)!

Developed in 2002 from a NIST grant and continuing to evolve, Carbon Black Application Control (Cb AppC) operates as a positive security model by verifying the behavior of applications and processes on an endpoint. As a foundational approach to Zero Trust, Cb AppC builds a baseline of normal behavior and monitors for any deviations. It then enforces this by allowing only approved and trusted applications to run. Any unauthorized applications are blocked thus implementing a Secure-by-Default approach through High Enforcement.

Zero Trust often involves verifying the identity of users and devices before granting access. While Cb App Control primarily focuses on applications, it will complement identity-based access controls by ensuring that only authorized applications run on specific devices. Additionally, device control provides teams with a serialized approach to denying removable media from accessing systems. Since Cb AppC continuously monitors the behavior of applications and processes, it is endlessly inspecting for any signs of suspicious or malicious activity. With the attackers of today and tomorrow leveraging native applications to conduct malicious TTPs, the foundational approach to Application Control is critical to business continuity and Enterprise level endpoint security. Carbon Black App Control is currently leveraged throughout the federal government in both the Civilian and Defense sectors. 

To join the DISA TEM mailing list, please contact: disa.tem@mail.mil

Disclaimer:

— TEMs do not serve as a marketing venue or request for proposal actions.

— TEMs shall not be interpreted as a commitment by the Government to issue a solicitation or ultimately award a contract.

— TEMs do not serve as an endorsement of any presented technologies or capabilities

— Presentations will not be considered as proposals nor will any awards be made as a result of a TEM session.

— TEMs are public open forums – no proprietary or sensitive information should be presented during TEM sessions. Only publicly-facing content is permissible in DISA TEM sessions. 

The owner of this website has made a commitment to accessibility and inclusion, please report any problems that you encounter using the contact form on this website. This site uses the WP ADA Compliance Check plugin to enhance accessibility.