Difference between revisions of "Incident"
Jump to navigation
Jump to search
m (→Netherlands) |
m (→Lithuania) |
||
Line 23: | Line 23: | ||
==== [[Lithuania]] ==== | ==== [[Lithuania]] ==== | ||
− | {{definition|Incident shall mean an [[event]], act or omission which gives rise or may give rise to an unauthorized access to an information system or electronic communications network, [[disruption]] or change of the operation (including takeover of control) of an information system or electronic communications network, destruction, [[damage]], deletion or the change of electronic information, removal or limiting of the possibility to use electronic information and, also, which gives rise or may give rise to the appropriation, publication, dissemination or any other use of non-public electronic information by persons unauthorized to do so. <ref>[http://www.ird.lt/doc/teises_aktai_en/EIS%28KS%29PP_796_2011-06-29_EN_PATAIS.pdf GOVERNMENT OF THE REPUBLIC OF LITHUANIA RESOLUTION NO 796 of 29 June 2011 ON THE APPROVAL OF THE PROGRAMME FOR THE DEVELOPMENT OF ELECTRONIC INFORMATION SECURITY (CYBER-SECURITY) FOR 2011–2019]</ref><br /><br />(Cyber | + | {{definition|Incident shall mean an [[event]], act or omission which gives rise or may give rise to an unauthorized access to an information system or electronic communications network, [[disruption]] or change of the operation (including takeover of control) of an information system or electronic communications network, destruction, [[damage]], deletion or the change of electronic information, removal or limiting of the possibility to use electronic information and, also, which gives rise or may give rise to the appropriation, publication, dissemination or any other use of non-public electronic information by persons unauthorized to do so. <ref>[http://www.ird.lt/doc/teises_aktai_en/EIS%28KS%29PP_796_2011-06-29_EN_PATAIS.pdf GOVERNMENT OF THE REPUBLIC OF LITHUANIA RESOLUTION NO 796 of 29 June 2011 ON THE APPROVAL OF THE PROGRAMME FOR THE DEVELOPMENT OF ELECTRONIC INFORMATION SECURITY (CYBER-SECURITY) FOR 2011–2019]</ref><br /><br />(Cyber incident) Kibernetinis incidentas – įvykis ar veika, kuri sukelia ar gali sukelti neteisėtą prisijungimą ar sudaryti sąlygas neteisėtai prisijungti prie informacinės sistemos, elektroninių ryšių tinklo ar pramoninių procesų valdymo sistemos, sutrikdyti ar pakeisti, įskaitant valdymo perėmimą, informacinės sistemos, elektroninių ryšių tinklo ar pramoninių procesų valdymo sistemos veikimą, sunaikinti, sugadinti, ištrinti ar pakeisti elektroninę informaciją, panaikinti ar apriboti galimybę naudotis elektronine informacija, taip pat sudaryti sąlygas pasisavinti ar kitaip panaudoti neviešą elektroninę informaciją tokios teisės neturintiems asmenims. <ref>[http://www.ird.lt/doc/teises_aktai_en/EIS%28KS%29PP_796_2011-06-29_EN_PATAIS.pdf LIETUVOS RESPUBLIKOS KIBERNETINIO SAUGUMO ĮSTATYMAS 2014 m. gruodžio 11 d. Nr. XII-1428 Vilnius]</ref>}} |
<br /> | <br /> | ||
Revision as of 22:19, 4 December 2015
Contents
Definitions
European Definitions
ENISA
Incident is an event that has been assessed as having an actual or potentially adverse effect on the security or performance of a system. [1]
Other International Definitions
National Definitions
Australia
Incident is an emergency event or series of events which requires a response from one or more of the statutory response agencies. [2]
Bulgaria
Incident shall denote an unforeseeable or unlikely event, limited in terms of duration or spatial effect, with a high intensity of forces or caused by human activity, threatening the life or health of humans, property or the environment. [3]
Инцидент: е непредвидимо или трудно прогнозируемо, ограничено по време и пространство действие, с висока интензивност на сили или вследствие на човешка дейност, застрашаващо живота или здравето на хора, имуществото или околната среда. [4]
Инцидент: е непредвидимо или трудно прогнозируемо, ограничено по време и пространство действие, с висока интензивност на сили или вследствие на човешка дейност, застрашаващо живота или здравето на хора, имуществото или околната среда. [4]
Canada
An event caused by either human action or a natural phenomenon that requires a response to prevent or minimize loss of life or damage to property or the environment and reduce economic and social losses.
Événement d’origine humaine ou causé par un phénomène naturel qui nécessite une intervention afin de prévenir ou de réduire au minimum les décès et les dommages aux biens et à l’environnement et de réduire les pertes économiques et sociales. [5]
Événement d’origine humaine ou causé par un phénomène naturel qui nécessite une intervention afin de prévenir ou de réduire au minimum les décès et les dommages aux biens et à l’environnement et de réduire les pertes économiques et sociales. [5]
Czech Republic
V prostředí ICT je incidentem myšlena událost, která je obvykle spojená s výpadkem sítě, služby nebo se zhoršením jejich kvality. [6]
Incident in the ICT environment assumed to be an event which is usually related to the outage of a network, service, or to a deterioration of its quality. [7]
Incident in the ICT environment assumed to be an event which is usually related to the outage of a network, service, or to a deterioration of its quality. [7]
Finland
Häiriötilanne: uhka tai tapahtuma, joka vaarantaa yhteiskunnan elintärkeitä toimintoja ja jonka hallinta edellyttää viranomaisten ja muiden toimijoiden tavanomaista laajempaa tai tiiviimpää yhteistoimintaa ja viestintää.
Incident is a threat or an event which endangers vital operations of society and whose management requires wider or closer cooperation and communication than usual between the authorities and other actors. -unofficial translation- [8]
Incident is a threat or an event which endangers vital operations of society and whose management requires wider or closer cooperation and communication than usual between the authorities and other actors. -unofficial translation- [8]
Lithuania
Incident shall mean an event, act or omission which gives rise or may give rise to an unauthorized access to an information system or electronic communications network, disruption or change of the operation (including takeover of control) of an information system or electronic communications network, destruction, damage, deletion or the change of electronic information, removal or limiting of the possibility to use electronic information and, also, which gives rise or may give rise to the appropriation, publication, dissemination or any other use of non-public electronic information by persons unauthorized to do so. [9]
(Cyber incident) Kibernetinis incidentas – įvykis ar veika, kuri sukelia ar gali sukelti neteisėtą prisijungimą ar sudaryti sąlygas neteisėtai prisijungti prie informacinės sistemos, elektroninių ryšių tinklo ar pramoninių procesų valdymo sistemos, sutrikdyti ar pakeisti, įskaitant valdymo perėmimą, informacinės sistemos, elektroninių ryšių tinklo ar pramoninių procesų valdymo sistemos veikimą, sunaikinti, sugadinti, ištrinti ar pakeisti elektroninę informaciją, panaikinti ar apriboti galimybę naudotis elektronine informacija, taip pat sudaryti sąlygas pasisavinti ar kitaip panaudoti neviešą elektroninę informaciją tokios teisės neturintiems asmenims. [10]
(Cyber incident) Kibernetinis incidentas – įvykis ar veika, kuri sukelia ar gali sukelti neteisėtą prisijungimą ar sudaryti sąlygas neteisėtai prisijungti prie informacinės sistemos, elektroninių ryšių tinklo ar pramoninių procesų valdymo sistemos, sutrikdyti ar pakeisti, įskaitant valdymo perėmimą, informacinės sistemos, elektroninių ryšių tinklo ar pramoninių procesų valdymo sistemos veikimą, sunaikinti, sugadinti, ištrinti ar pakeisti elektroninę informaciją, panaikinti ar apriboti galimybę naudotis elektronine informacija, taip pat sudaryti sąlygas pasisavinti ar kitaip panaudoti neviešą elektroninę informaciją tokios teisės neturintiems asmenims. [10]
Netherlands
Incident is een ongewenste gebeurtenis die tot schade - financieel of anderszins - heeft geleid.
An incident is an unwanted event which has caused financial or other damage.[11]
Een (cyber) incident is een ICT-verstoring in de dienstverlening waardoor de te verwachten beschikbaarheid van de dienstverlening geheel of gedeeltelijk is verdwenen en/of het ongeoorloofd openbaren, verkrijgen en/of wijzigen van informatie. [12]
An incident is an unwanted event which has caused financial or other damage.[11]
Een (cyber) incident is een ICT-verstoring in de dienstverlening waardoor de te verwachten beschikbaarheid van de dienstverlening geheel of gedeeltelijk is verdwenen en/of het ongeoorloofd openbaren, verkrijgen en/of wijzigen van informatie. [12]
New Zealand
Incident is (1) an occurrence that needs a response from one or more agencies (it may or may not be an emergency); (2) the first official level of agency response. [13]
Singapore
An event that occurs by chance or due to a combination of unforeseen circumstances, which, if not handled in an appropriate manner, can escalate into an emergency or disaster. [14]
An incident precedes an emergency or disaster.
United States
DHS
An occurrence, caused by either human action or natural phenomenon, that may cause harm and require action, which can include major disasters, emergencies, terrorist attacks, terrorist threats, wild and urban fires, floods, hazardous materials spills, nuclear accidents, aircraft accidents, earthquakes, hurricanes, tornadoes, tropical storms, war-related disasters, public health and medical emergencies, cyber attacks, cyber failure/accident, and other occurrences requiring an emergency response. [15]
NIST
A violation or imminent threat of violation of computer security policies, acceptable use policies, or standard security practices. [16]
This document points to several ICT-related definitions of incident.
NFPA-1600
An event that has the potential to cause interruption, disruption, loss, emergency, crisis, disaster, or catastrophe. [17]
Standard Definition
ISO/PAS 22399:2007
Event that might be, or could lead to, an operational interruption, disruption, loss, emergency or crisis. [18]
ISO 22300:2012(en)
Other Definitions
Ontario (Canada)
Incident is an occurrence or event that requires an emergency response to protect people, property, the environment, the economy and/or services. [20]
Incident: Événement qui exige une intervention d'urgence afin de protéger les personnes, les biens, l’environnement, l’économie ou les services. [20]
Incident: Événement qui exige une intervention d'urgence afin de protéger les personnes, les biens, l’environnement, l’économie ou les services. [20]
See also
Notes
- ↑ ENISA Risk Glossary
- ↑ Multi-agency incident management, Emergency Management Australia (1998)
- ↑ Disaster Protection Act; Promulgated, State Gazette, No.102/19.12.2006 (2006)
- ↑ ЗАКОН за защита при бедствия
- ↑ Vocabulaire de la gestion des urgencies/Emergency Management Emergency Management Vocabulary 281 (2012)
- ↑ http://www.govcert.cz/download/nodeid-561 Výkladový slovník kybernetické bezpečnosti (2013)
- ↑ Cyber Security Explanatory Glossary (2013)
- ↑ Vocabulary of Comprehensive Security. Helsinki (TSK 47) (2014)
- ↑ GOVERNMENT OF THE REPUBLIC OF LITHUANIA RESOLUTION NO 796 of 29 June 2011 ON THE APPROVAL OF THE PROGRAMME FOR THE DEVELOPMENT OF ELECTRONIC INFORMATION SECURITY (CYBER-SECURITY) FOR 2011–2019
- ↑ LIETUVOS RESPUBLIKOS KIBERNETINIO SAUGUMO ĮSTATYMAS 2014 m. gruodžio 11 d. Nr. XII-1428 Vilnius
- ↑ Zakboekje Preventie Cybercrime (2008
- ↑ NCSC, Cyber Security Beeld Nederland 5 (2015)
- ↑ The New Zealand Coordinated Incident Management System, Department of the Prime Minister and Cabinet, New Zealand. (2014)
- ↑ Singapore Standard SS 540: 2008 on Business Continuity
- ↑ DHS Risk Lexicon 2010 Edition, September 2010
- ↑ NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013/ NIST SP 800-61
- ↑ NFPA-1600
- ↑ ISO/PAS 22399:2007 Societal security - Guideline for incident preparedness and operational continuity management.
- ↑ ISO 22300:2012(en) Societal security — Terminology
- ↑ 20.0 20.1 Province of Ontario’s Emergency Management Glossary of Terms