Powerful Protection against Ransomware
What’s New with Carbon Black App Control?
Learn how VMware Carbon Black App control protects your endpoints and critical systems against Process Hollowing attacks.
Positive Security Model Reduces Attack Surface
VMware Carbon Black App Control uses a Positive Security Model, or ‘Default Deny’ approach to reduce attack surface by automating the approval of trusted software. This allows you to protect against loss of productivity and reputation as well as address the needs of unique on-premise, public and private cloud environments, including End-of-life OS, air-gapped servers and fixed function devices.
Positive Security Model
A Positive Security Model only allows access to trusted resources. VMware Carbon Black App Control employs a positive security model to prevent unwanted changes to your critical systems.
Flexible Deployment
Security gaps can occur with IT and security cloud migration. Carbon Black App Control employs a Positive Security Model on-premise or on AWS, Azure or hosted private clouds.
Trusted Content Approval
Carbon Black App Control does not rely on easily outdated lists. It approves files with customizable mechanisms such as IT and cloud-driven trust, trusted publishers, custom rules and external sources.
Use Cases
Secure Critical Systems
Critical Systems contain valuable data. They often run on legacy, end-of-life software. The cost of migrating proprietary applications and data from an EOL OS to a supported platform can be prohibitive. Carbon Black App Control protects your sensitive customer data, company finances, and confidential strategic assets with a Positive Security Model allowing only trusted software to run.
Protect Point-of-Sales Systems
Banking and Retail ATM and point of sale (POS) systems needed for transactions are targeted for the sensitive personal and financial data they contain. These systems are vulnerable because of their public facing locations. Physical security is not enough. Carbon Black App Control provides the security you need to protect customer data and transactions on these vulnerable fixed function devices.
Software Asset Management
Software Asset Management (SWAM) identifies IT assets and security threats on a continuous, real-time basis. Without visibility into all the software running in your environment, there is no way to identify security gaps, or even what security is being used and by whom. VMware Carbon Black App Control provides the visibility needed to enable your SWAM strategic plan.
[VMware Carbon Black] helps keep us all on the same page and reduces operational IT deficit when it comes to catching up on things we didn't know about.
- Mark Fournier, Director of IT Infrastructure, United States Senate Federal Credit Union
[VMware Carbon Black] bolsters our outreach efforts with the rest of the organization, giving people a clear indicator when an app doesn’t meet approval.
- Mark Fournier, Director of IT Infrastructure, United States Senate Federal Credit Union
Related Resources
Application Control and Critical Infrastructure Protection: Datasheet
App Control ensures that only trusted and approved software is allowed to execute on an organization’s critical systems and endpoints.
Carbon Black App Control Learning Path
Dive deep into our guided and curated learning path to get hands-on.
Related Products
VMware Carbon Black Cloud secures your Endpoints and Workloads.
VMware Carbon Black Endpoint
Cloud-native endpoint protection
VMware Carbon Black Workload
Advanced security purpose-built for workloads
VMware Carbon Black Container
Advanced security for the full lifecycle of Kubernetes applications
VMware Carbon Black EDR
On-premises endpoint detection and response (EDR)
Ready to Get Started?
See how VMware Carbon Black can help simplify and fortify your security stack today and tomorrow.