Difference between revisions of "Asset"
Jump to navigation
Jump to search
(→ISO/IEC 27000:2012) |
|||
Line 1: | Line 1: | ||
==Definitions== | ==Definitions== | ||
=== European Definitions === | === European Definitions === | ||
− | ====ENISA==== | + | ====[[ENISA]]==== |
{{definition|Anything that has value to the organization, its business operations and their continuity, including Information resources that support the organization's mission. <ref name="ENISAGlos"> [http://www.enisa.europa.eu/activities/risk-management/current-risk/risk-management-inventory/glossary ENISA Risk Glossary]</ref>}}<br /> | {{definition|Anything that has value to the organization, its business operations and their continuity, including Information resources that support the organization's mission. <ref name="ENISAGlos"> [http://www.enisa.europa.eu/activities/risk-management/current-risk/risk-management-inventory/glossary ENISA Risk Glossary]</ref>}}<br /> | ||
Line 8: | Line 8: | ||
--> | --> | ||
=== National Definitions === | === National Definitions === | ||
− | ==== Canada ==== | + | ==== [[Canada]] ==== |
{{definition|A person, structure, facility, information, material or process that has value.<br />Personne, structure, installation, information, matériel ou processus ayant de la valeur. <ref name="canada">[http://www.bt-tb.tpsgc-pwgsc.gc.ca/publications/documents/urgence-emergency.pdf Vocabulaire de la gestion des urgencies/Emergency Management Emergency Management Vocabulary 281 (2012)]</ref>}}<br /> | {{definition|A person, structure, facility, information, material or process that has value.<br />Personne, structure, installation, information, matériel ou processus ayant de la valeur. <ref name="canada">[http://www.bt-tb.tpsgc-pwgsc.gc.ca/publications/documents/urgence-emergency.pdf Vocabulaire de la gestion des urgencies/Emergency Management Emergency Management Vocabulary 281 (2012)]</ref>}}<br /> | ||
− | ====Czech Republic==== | + | ====[[Czech Republic]]==== |
{{definition|Anything that has value to an individual, company or public administration. <ref> [http://www.govcert.cz/download/nodeid-3555/ Cyber Security Explanatory Glossary (2013)]</ref>}} | {{definition|Anything that has value to an individual, company or public administration. <ref> [http://www.govcert.cz/download/nodeid-3555/ Cyber Security Explanatory Glossary (2013)]</ref>}} | ||
<br /> | <br /> | ||
− | ====Kingdom of Saudi Arabia==== | + | ====[[Kingdom of Saudi Arabia]]==== |
{{definition|A major application, general support system, high impact program, physical plant,mission critical system, personnel, equipment, or a logically related group of systems. <ref> [http://www.mcit.gov.sa/Ar/MediaCenter/PubReqDocuments/NISS_Draft_7_EN.pdf Developing National Information Security Strategy for the Kingdom of Saudi Arabia NISS draft 7]</ref>}} | {{definition|A major application, general support system, high impact program, physical plant,mission critical system, personnel, equipment, or a logically related group of systems. <ref> [http://www.mcit.gov.sa/Ar/MediaCenter/PubReqDocuments/NISS_Draft_7_EN.pdf Developing National Information Security Strategy for the Kingdom of Saudi Arabia NISS draft 7]</ref>}} | ||
<br /> | <br /> | ||
− | ==== United States==== | + | ==== [[United States]]==== |
=====DHS===== | =====DHS===== | ||
{{definition|Person, structure, facility, information, material, or process that has value. <ref name="DHSLex"> [http://www.dhs.gov/xlibrary/assets/dhs-risk-lexicon-2010.pdf DHS Risk Lexicon 2010 Edition, September 2010]</ref>}} | {{definition|Person, structure, facility, information, material, or process that has value. <ref name="DHSLex"> [http://www.dhs.gov/xlibrary/assets/dhs-risk-lexicon-2010.pdf DHS Risk Lexicon 2010 Edition, September 2010]</ref>}} | ||
<br /> | <br /> | ||
− | =====NIST===== | + | =====[[NIST]]===== |
{{definition|A major application, general support system, high impact program,physical plant, mission critical system, personnel, equipment, or a logically related group of systems. <ref name="NISTIR7298"> [http://nvlpubs.nist.gov/nistpubs/ir/2013/NIST.IR.7298r2.pdf NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013]</ref>}}<br /> | {{definition|A major application, general support system, high impact program,physical plant, mission critical system, personnel, equipment, or a logically related group of systems. <ref name="NISTIR7298"> [http://nvlpubs.nist.gov/nistpubs/ir/2013/NIST.IR.7298r2.pdf NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013]</ref>}}<br /> | ||
===Standard Definition=== | ===Standard Definition=== | ||
− | ==== ISO/IEC 27000:2012 ==== | + | ==== [[ISO|ISO/IEC 27000:2012]] ==== |
{{definition| Anything that has value to the organization. <ref name="ISO27000-12"> [http://www.iso.org/iso/catalogue_detail?csnumber=56891 ISO/IEC 27000:2012, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref>}} | {{definition| Anything that has value to the organization. <ref name="ISO27000-12"> [http://www.iso.org/iso/catalogue_detail?csnumber=56891 ISO/IEC 27000:2012, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref>}} | ||
<big>This definition has been removed in the revised version of the standard in 2014. <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref></big><br /> | <big>This definition has been removed in the revised version of the standard in 2014. <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref></big><br /> |
Revision as of 00:24, 18 July 2015
Contents
Definitions
European Definitions
ENISA
Anything that has value to the organization, its business operations and their continuity, including Information resources that support the organization's mission. [1]
National Definitions
Canada
A person, structure, facility, information, material or process that has value.
Personne, structure, installation, information, matériel ou processus ayant de la valeur. [2]
Personne, structure, installation, information, matériel ou processus ayant de la valeur. [2]
Czech Republic
Anything that has value to an individual, company or public administration. [3]
Kingdom of Saudi Arabia
A major application, general support system, high impact program, physical plant,mission critical system, personnel, equipment, or a logically related group of systems. [4]
United States
DHS
Person, structure, facility, information, material, or process that has value. [5]
NIST
A major application, general support system, high impact program,physical plant, mission critical system, personnel, equipment, or a logically related group of systems. [6]
Standard Definition
ISO/IEC 27000:2012
Anything that has value to the organization. [7]
This definition has been removed in the revised version of the standard in 2014. [8]
See also
Notes
- ↑ ENISA Risk Glossary
- ↑ Vocabulaire de la gestion des urgencies/Emergency Management Emergency Management Vocabulary 281 (2012)
- ↑ Cyber Security Explanatory Glossary (2013)
- ↑ Developing National Information Security Strategy for the Kingdom of Saudi Arabia NISS draft 7
- ↑ DHS Risk Lexicon 2010 Edition, September 2010
- ↑ NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013
- ↑ ISO/IEC 27000:2012, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary
- ↑ ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary