Identifying a list of all approved software on a system is a step in the following practices:
Passively testing security controls
Host software baselining
Application baseline defines the level or standard of security that will be implemented and maintained for the
application. It may include requirements of hardware components, operating system versions, patch levels,
installed applications and their configurations, and available ports and services. Systems can be compared to
the baseline to ensure that the required level of security is being maintained.