Difference between revisions of "Information Security"
(→Guatemala) |
|||
Line 61: | Line 61: | ||
{{definition|ინფორმაციული უსაფრთხოება – საქმიანობა, რომელიც იცავს ინფორმაციას და ინფორმაციულ სისტემებს მისაწვდომობის, ერთიანობის, აუთენტიფიკაციის, კონფიდენციალურობის და განგრძობადი მუშაობის უზრუნველყოფით. <ref>[http://csbd.gov.ge/doc/cyber_security_politics.docx cyber_security_politics.docx (2012)]</ref><br/><br/>Information security - an activity that protects information and information systems' access, [[integrity]], [[authentication]], [[confidentiality]], and the [[availability|continuing of work]]. <br />(''raw translation - CIPedia looks for a proper translation in English'')}}<br/> | {{definition|ინფორმაციული უსაფრთხოება – საქმიანობა, რომელიც იცავს ინფორმაციას და ინფორმაციულ სისტემებს მისაწვდომობის, ერთიანობის, აუთენტიფიკაციის, კონფიდენციალურობის და განგრძობადი მუშაობის უზრუნველყოფით. <ref>[http://csbd.gov.ge/doc/cyber_security_politics.docx cyber_security_politics.docx (2012)]</ref><br/><br/>Information security - an activity that protects information and information systems' access, [[integrity]], [[authentication]], [[confidentiality]], and the [[availability|continuing of work]]. <br />(''raw translation - CIPedia looks for a proper translation in English'')}}<br/> | ||
==== [[Guatemala]] ==== | ==== [[Guatemala]] ==== | ||
− | {{definition|Seguridad de la información: La seguridad de la información garantiza la confidencialidad, | + | {{definition|Seguridad de la información: La seguridad de la información garantiza la [[Confidentiality|confidencialidad]], [[Availability|disponibilidad]] e [[Integrity|integridad]] de la información, por medio de la aplicación y gestión de controles apropiados que implican la consideración de una amplia gama de amenazas, con el objetivo de garantizar el éxito organizacional y la continuidad, minimizando las consecuencias de los incidentes de seguridad de la información. Fuente: ISO/IEC 27000:2016 <ref>[http://mingob.gob.gt/wp-content/uploads/2018/06/version-digital.pdf La Estrategia Nacional de Seguridad Cibernética (June 2018)]</ref>}}<br /><br/> |
− | disponibilidad e integridad de la información, por medio de la aplicación y gestión de controles apropiados que implican la consideración de una amplia gama de amenazas, con el objetivo de garantizar el éxito organizacional y la continuidad, minimizando las consecuencias de los incidentes de seguridad de la información. Fuente: ISO/IEC 27000:2016 <ref>[http://mingob.gob.gt/wp-content/uploads/2018/06/version-digital.pdf La Estrategia Nacional de Seguridad Cibernética (June 2018)]</ref>}}<br /><br/> | + | |
==== [[Italy]] ==== | ==== [[Italy]] ==== | ||
{{definition|Information Security: Often complex security measures to ensure integrity, confidentiality and availability of information classified as state secret or blankets and related information and communication systems, for example through user authentication. <ref>[https://www.sicurezzanazionale.gov.it/sisr.nsf/wp-content/uploads/2013/12/Glossario-intelligence-2013.pdf IL LINGUAGGIO DEGLI ORGANISMI INFORMATIVI Glossario (2013)]</ref>}}It includes the necessary safeguards to detect and counter intrusions. <br/><br/> | {{definition|Information Security: Often complex security measures to ensure integrity, confidentiality and availability of information classified as state secret or blankets and related information and communication systems, for example through user authentication. <ref>[https://www.sicurezzanazionale.gov.it/sisr.nsf/wp-content/uploads/2013/12/Glossario-intelligence-2013.pdf IL LINGUAGGIO DEGLI ORGANISMI INFORMATIVI Glossario (2013)]</ref>}}It includes the necessary safeguards to detect and counter intrusions. <br/><br/> |
Revision as of 11:50, 21 June 2018
Contents
- 1 Definitions
- 1.1 European Definitions
- 1.2 Other International Definitions
- 1.3 National Definitions
- 1.3.1 Albania
- 1.3.2 Argentina
- 1.3.3 Australia
- 1.3.4 Austria
- 1.3.5 Belarus
- 1.3.6 Brazil
- 1.3.7 Croatia
- 1.3.8 Cuba
- 1.3.9 Czech Republic
- 1.3.10 Denmark
- 1.3.11 Egypt
- 1.3.12 Finland
- 1.3.13 France
- 1.3.14 Germany
- 1.3.15 Georgia
- 1.3.16 Guatemala
- 1.3.17 Italy
- 1.3.18 Jamaica
- 1.3.19 Japan
- 1.3.20 Mongolia
- 1.3.21 Montenegro
- 1.3.22 Netherlands
- 1.3.23 Norway
- 1.3.24 Philippines
- 1.3.25 Portugal
- 1.3.26 Russian Federation
- 1.3.27 Serbia
- 1.3.28 Uganda
- 1.3.29 Ukraine
- 1.3.30 United States
- 1.3.31 Uruguay
- 1.4 Other Definitions
- 1.5 Standard Definition
- 2 Notes
Definitions
European Definitions
Other International Definitions
IAEA
Note: In addition, other properties such as authenticity, accountability, non-repudiation and reliability can also be involved.
NATO
United Nations
World Bank
In a computing context, the term security implies cybersecurity.
National Definitions
Albania
Argentina
Australia
Austria
Informationssicherheit / Netzwerksicherheit ist ein Überbegriff zu IKT-Sicherheit und bezieht sich auf alle relevanten Informationen einer Organisation oder eines Unternehmens einschließlich von nicht elektronisch verarbeiteten Informationen. Es bezeichnet somit die Summe der Eigenschaften einer Organisation, die dem Schutz der Vertraulichkeit, Verfügbarkeit und Integrität der Informationen dienen. [10]
Information may be available as spoken text, paper documents or other directly readable media or as electronically processed data in ICT systems.
Belarus
(The state of the protection of balanced interests of the individual, society, and the state from external and internal threats in the information space)
Brazil
Information Security is the protection of information systems against denial of service to authorised users, as well as against intrusion and unauthorised modification of data or information stored in processing or in transit, covering even the safety of human resources, documentation and material, of the areas and facilities of communications and computing, as well as to prevent, detect, deter and document any threats to its development.
Croatia
Information security is the state of confidentiality, integrity and availability of information, which is achieved by implementation of stipulated information security measures and standards and by organisational support for jobs of planning, implementation, assessment and update of measures and standards. [13] [14]
Cuba
Czech Republic
Security (protection) of confidentiality, integrity and availability of information. [17]
Denmark
Egypt
Finland
Information Security are arrangements aiming at ensuring the availability, integrity and confidentiality of information. -unofficial translation- [20]
Information security refers to the administrative, technical and other measures that protect and secure information, services, systems and telecommunications and manage their risks in all security situations. [22]
Tietoturvallisuus on myös asiantila, jossa tietojen, tietojärjestelmien ja tietoliikenteen luottamuksellisuuteen, eheyteen ja käytettävyyteen kohdistuvat uhkat eivät aiheuta merkittävää riskiä (Information security is also a condition in which threats against the confidentiality and integrity of information, information systems and telecommunications security do not pose a significant risk).
France
Sécurité des systèmes d’information: Ensemble des mesures techniques et non techniques de protection permettant à un système d’information de résister à des événements susceptibles de compromettre la disponibilité, l’intégrité ou la confidentialité des données stockées, traitées ou transmises et des services connexes que ces systèmes offrent ou qu’ils rendent accessibles. [24]
Germany
IT security is the condition in which availability, integrity and confidentiality of information and Information Technology are ensured by appropriate safeguards. [26]
Georgia
Information security - an activity that protects information and information systems' access, integrity, authentication, confidentiality, and the continuing of work.
(raw translation - CIPedia looks for a proper translation in English)
Guatemala
Italy
It includes the necessary safeguards to detect and counter intrusions.
Jamaica
Note: The terms information security, computer security and information assurance are understood for these purposes as being interchangeable.
Japan
Mongolia
Montenegro
Information security means the condition of confidentiality, integrity and availability of data. Information security focuses on data, regardless of their form: electronic, print or other forms of data.
Netherlands
- Integriteit is de eigenschap dat de nauwkeurigheid en volledigheid van bedrijfsmiddelen wordt beveiligd.
- Vertrouwelijkheid is de eigenschap dat informatie niet beschikbaar wordt gesteld of wordt ontsloten aan onbevoegde personen, entiteiten of processen.
- Beschikbaarheid is het kenmerk dat iets toegankelijk en bruikbaar is op verzoek van een bevoegde entiteit.
Het treffen en onderhouden van een samenhangend pakket aan maatregelen om de beschikbaarheid, integriteit en vertrouwelijkheid te borgen. [35]
Bijzondere Informatie wordt onderscheiden in Staatsgeheimen en in niet-Staatsgeheime Bijzondere Informatie. Er is sprake van een Staatsgeheim als het belang van de Staat of zijn bondgenoten in het geding is en indien kennisname door niet-gerechtigden kan leiden tot schade aan deze belangen. Er is sprake van niet-Staatsgeheime Bijzondere Informatie indien kennisname door nietgerechtigden kan leiden tot nadeel aan het belang van één of meer ministeries.
Norway
ICT security is how business-critical electronic networks and systems that process data or communicate with each other are protected. [39]
Philippines
Portugal
Russian Federation
(raw translation) Information security of the Russian Federation (hereinafter - information security) - the state of protection of the individual, society and state from internal and external IT threats, which provide realisation of constitutional rights and freedoms of man and citizen, decent quality and standard of living of citizens, sovereignty, territorial integrity and sustainable socio-economic development of the Russian Federation, the defense and security of the state.
Information security (raw translation): the state of protection of the individual, the organization and the state and their interests from threats, destructive and other negative impacts in the information space.
Serbia
Uganda
Ukraine
United States
FISMA
NIST
Uruguay
Other Definitions
East-West Institute (Russia-US)
Кибербезопасность: свойство (киберпространства, иберсистемы), противостоять, намеренным и/или, ненамеренным угрозам, а также, реагировать на них и, восстанавливаться после воздействия этих угроз. [52]
Standard Definition
ISO/IEC 27000:2014
IETF
Notes
- ↑ NATO - EU - UN glossary
- ↑ IAEA - Nuclear Security Series Glossary Version 1.3 (November 2015)
- ↑ NATO - EU - UN glossary
- ↑ NATO - EU - UN glossary
- ↑ Cyber Security Glossary, World Bank (2015)
- ↑ PROJEKT LIGJ PËR SIGURINË KIBERNETIKE
- ↑ Oficina Nacional de Tecnologías de Información ADMINISTRACION PUBLICA NACIONAL Disposición 3/2013 - Apruébase la “Política de Seguridad de la Información Modelo” (2013)
- ↑ Protective Security Policy Framework - Glossary Oct 2017
- ↑ Austrian Cyber Security Strategy, Federal Chancellery of the Republic of Austria, Vienna (2013)
- ↑ Österreichische Strategie für Cyber Sicherheit (2013)
- ↑ Концепция Националъной Безопасности, Министерство Внутренних Дел Рецпублики Беларусъ, 2010
- ↑ GUIA DE REFERÊNCIA PARA A SEGURANÇA DAS INFRAESTRUTURAS CRÍTICAS DA INFORMAÇÃO Versão 01 (Nov. 2010)/ Decreto Nº 3.505, de 13 de junho de 2000. Presidência da República, Casa Civil, Subchefia para Assuntos Jurídicos. Institui a Política de Segurança da Informação nos órgãos e entidades da Administração Pública Federal. Brasília, 2000.
- ↑ Article 2 of the Information Security Act
- ↑ National Cyber Security Strategy draft (2015)
- ↑ Glossary of Cyber terms/Glosario de términos, Centro de Seguridad del Ciberespacio
- ↑ Zákon č. 181/2014 Sb. o kybernetické bezpečnosti a o změně souvisejících zákonů (zákon o kybernetické bezpečnosti)
- ↑ Cyber Security Explanatory Glossary (2013)
- ↑ Danish Cyber Security Strategy, 2014
- ↑ Glossary of the National Telecom Authority (NTA), Egypt
- ↑ Vocabulary of Comprehensive Security. Helsinki (TSK 47) (2014)
- ↑ Yhteikunnan Turvallisuusstrategia, Valtioneuvoston periaatepäätös 16.12.2010
- ↑ Security Strategy for Society, Government Resolution 16.12.2010
- ↑ Information systems defence and security: France's Strategy
- ↑ La Stratégie de la France en matière de défense et de sécurité des systèmes d’information (2011)
- ↑ Cyber-Sicherheitsstrategie für Deutschland 2016
- ↑ Unpublished working glossary of UP KRITIS and BSI, 2014
- ↑ cyber_security_politics.docx (2012)
- ↑ La Estrategia Nacional de Seguridad Cibernética (June 2018)
- ↑ IL LINGUAGGIO DEGLI ORGANISMI INFORMATIVI Glossario (2013)
- ↑ Jamaica's National Cyber Security Strategy
- ↑ The Second National Strategy on Information Security, Japan, 2009
- ↑ Security Concept of Mongolia EN.pdf The Concept of National Security of Mongolia, Government of Mongolia
- ↑ Strategija o bezbjednosti 2013-2017 (2012)
- ↑ NEN-ISO/IEC-27001 en 27002
- ↑ Zakboekje Preventie Cybercrime (2008
- ↑ Cybersecuritybeeld Nederland 2016
- ↑ Algemene Beveiligingseisen voor Defensieopdrachten (ABDO), 2006
- ↑ Nasjonal strategi for informasjonssikkerhet (2012)
- ↑ Cyber Security Strategy for Norway (2012)
- ↑ DND GLOSSARY OF CYBER SECURITY TERMS (v.4)
- ↑ Glossário Centro National de Cibersegurança Portugal
- ↑ Glossário Centro National de Cibersegurança Portugal
- ↑ Указ Президента Российской Федерации от 05.12.2016 № 646 "Об утверждении Доктрины информационной безопасности Российской Федерации"
(Presidential Decree of 12.5.2016 number 646 "On approval of the Doctrine of the Russian Federation Information Security") - ↑ КОНЦЕПЦИЯ СТРАТЕГИИ КИБЕРБЕЗОПАСНОСТИ РОССИЙСКОЙ ФЕДЕРАЦИИ (Draft Cyber Security Strategy 2016)
- ↑ ЗАКОН О ИНФОРМАЦИОНОЈ БЕЗБЕДНОСТИ (Law on Information Security), Serbia
- ↑ National Information Security Policy (2011)
- ↑ Ukraine, Submission to the United Nations General Assembly Resolution A/58/373, 2003
- ↑ The Federal Information Security Modernization Act of 2014 (FISMA)44 U.S.C. § 3552(b)(2).
- ↑ NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013/NIST SP 800 series
- ↑ NIST Special Publication 800-53 Rev 4: Security and Privacy Controls for Federal Information Systems and Organizations (April 2013)
- ↑ Glossary CERTuy
- ↑ RUSSIA-‐U.S. BILATERAL ON CYBERSECURITY: CRITICAL TERMINOLOGY FOUNDATIONS
- ↑ ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary
- ↑ IETF RFC449 Internet Security Glossary 2