Ah yes... application whitelisting. The eternal problem we face too (merely trying to keep our PCI and IRAP accreditation ticking along). Linux not having a lot of alternatives here and the few it has not enjoying a lot of positive comment when researched. (Throw in distro problems, variant kernel revs and extensions and it all gets even uglier). In fact having called for it, ASD then wrote this document https://www.asd.gov.au/publications/protect/top_4_mitigations_linux.htm admitting obliquely that maybe app whitelisting was a non-starter in Linux and you could compensate in other ways. Nothing I like more than a requirement the authors know you can't meet... but you'll be held to it anyway.
Biting the hand that feeds IT
