ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your security team is preparing to deploy a strict "default-deny" application whitelisting policy across all Windows-based EC2 instances that host line-of-business applications. While the approach will block unapproved software, operations staff are worried about ongoing maintenance. Which issue represents a well-known implementation challenge they should plan to mitigate before rollout?
The primary difficulty is a sharp increase in outbound bandwidth because the whitelisting agent inspects every TLS session in real time.
When application whitelisting relies on cryptographic hashes or file attributes, any change to an executable-such as those introduced by vendor patches or automated updates-invalidates the approved hash. Unless the whitelist is updated in step with every legitimate software revision, the new binaries will be blocked and business services may fail. Managing this continual churn can create significant administrative overhead. Modern whitelisting tools support publisher or path rules to reduce the burden, but the underlying challenge of frequent application changes remains.
The other options describe problems that are not typical or accurate:
Application whitelisting fully supports code-signed executables and often prefers them, so repackaging is unnecessary.
User Account Control (UAC) does not need to be disabled; in fact, disabling UAC would undermine endpoint security.
Whitelisting evaluates executables at launch time rather than inspecting all outbound traffic, so it does not materially increase network bandwidth consumption.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why do legitimate software updates change executable hashes?
Open an interactive chat with Bash
How can publisher or path rules help reduce administrative overhead in application whitelisting?
Open an interactive chat with Bash
What makes application whitelisting different from other endpoint security measures like antivirus software?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Systems and Application Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .