Whitelisting

Definition of whitelisting

Whitelisting involves allowing traffic from specified sources or meeting specific criteria to access specific destinations and granting permission to trusted entities.

More about whitelisting

In network security, whitelisting is a proactive approach where only pre-approved entities or actions are permitted, enhancing control and security. A company whitelisting certain IP addresses to access its internal servers while blocking all other external access. Whitelisting can apply to applications, email addresses, domains, and devices, offering a strict yet effective method of minimizing unauthorized access or malicious activity. This technique is widely used in corporate environments, especially where sensitive data or critical infrastructure is involved. For instance, application whitelisting ensures that only trusted software runs on an organization's systems, reducing the risk of malware infections. While it requires ongoing maintenance to keep the list current, the increased security and reduced exposure to threats often outweigh the effort.

Strategies for whitelisting

Regularly update and maintain whitelists, implement strict criteria for approval, and combine whitelisting with other security measures for comprehensive protection.

Related terms

• Blacklisting
• Access control
• Security policies