Applications that are signed with a valid certificate and include the permissions attribute in the manifest for the main JAR file are allowed to run with security prompts. All other applications are blocked. Unsigned applications could perform numerous types of attacks on a system.
Navigate to the system-level 'deployment.properties' file for JRE.
Add the key 'deployment.security.level=VERY_HIGH' to the 'deployment.properties' file.
Add the key 'deployment.security.level.locked' to the 'deployment.properties' file.
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.