Use Case 6: Restrict registry access

Scenario: You want to control registry access for your banking software from use case 4. Create two application permissions so that only the Banksoftware.exe is allowed to read the registry in the specified key.

Proceed as shown in the figure:

1. Start out with entering a description and a Comment if required on the General tab.

2. On the Filter tab, enter banksoftware.exe as Accessing application. As Access mode select Read registry and enter the key in the Registry key text box (in the example HKEY_CURRENT_USER\SOFTWARE\Bank Software\).

   

   

3. Specify the following on the Action tab:

   • Select Do not block and check the Block access by other applications box to ensure that only your own banking software has read access to the registry key.
   • The Generate audit events when access is denied is the default option.