Difference between revisions of "Cyber Attack"
Jump to navigation
Jump to search
| Line 60: | Line 60: | ||
==== [[Philippines]] ==== | ==== [[Philippines]] ==== | ||
{{definition|Cyber attack:<br/> (a) Is an attack via cyberspace, targeting an enterprise‘s use of cyberspace for the purpose of disrupting, disabling, destroying, or maliciously controlling a computing environment/infrastructure; <br/><br/>(b) destroying the integrity of the data or stealing controlled information; A hostile act using computer or related networks or systems, and intended to disrupt and/ or destroy an adversary's critical cyber systems, assets, or functions. <ref>[http://www.dnd.gov.ph/miss/PDF/downloadables/Cybersecurity%20Glossary%20(Edited).pdf DND GLOSSARY OF CYBER SECURITY TERMS (v.4)]</ref>}}<br/><br/> | {{definition|Cyber attack:<br/> (a) Is an attack via cyberspace, targeting an enterprise‘s use of cyberspace for the purpose of disrupting, disabling, destroying, or maliciously controlling a computing environment/infrastructure; <br/><br/>(b) destroying the integrity of the data or stealing controlled information; A hostile act using computer or related networks or systems, and intended to disrupt and/ or destroy an adversary's critical cyber systems, assets, or functions. <ref>[http://www.dnd.gov.ph/miss/PDF/downloadables/Cybersecurity%20Glossary%20(Edited).pdf DND GLOSSARY OF CYBER SECURITY TERMS (v.4)]</ref>}}<br/><br/> | ||
| + | ==== [[Poland]] ==== | ||
| + | {{definition|Ccyberatak – celowe zakłócenie prawidłowego funkcjonowania [[Cyberspace|cyberprzestrzeni]].<br/><br/>Cyber attack - deliberate disruption of the proper functioning of [[cyberspace]]. <ref>[http://rcb.gov.pl/wp-content/uploads/NPOIK-dokument-główny.pdf 2013 Narodowy Program Ochrony Infrastruktury Krytycznej] </ref>}}<br /><br /> | ||
====[[Portugal]] ==== | ====[[Portugal]] ==== | ||
{{definition|[Definição] Ciberataque: Ataque realizado através das tecnologias de informação no ciberespaço dirigido contra um ou vários sistemas, com o objetivo de prejudicar a segurança das tecnologias de informação e da comunicação (confidencialidade, integridade e disponibilidade), em parte ou totalmente. <ref>[https://www.cncs.gov.pt/recursos/glossario/ Glossário Centro National de Cibersegurança Portugal]</ref>}}<br /><br/> | {{definition|[Definição] Ciberataque: Ataque realizado através das tecnologias de informação no ciberespaço dirigido contra um ou vários sistemas, com o objetivo de prejudicar a segurança das tecnologias de informação e da comunicação (confidencialidade, integridade e disponibilidade), em parte ou totalmente. <ref>[https://www.cncs.gov.pt/recursos/glossario/ Glossário Centro National de Cibersegurança Portugal]</ref>}}<br /><br/> | ||
| Line 91: | Line 93: | ||
* Test reference. --> | * Test reference. --> | ||
[[Category:Security]] | [[Category:Security]] | ||
| − | {{#set:defined by=EU|defined by=Albania|defined by=Austria|defined by=Bulgaria|defined by=Canada|defined by=Chile|defined by=Colombia|defined by=Germany|defined by=Japan|defined by=New Zealand|defined by=Nigeria|defined by=Philippines|defined by=Portugal|defined by=Romania|defined by=Switzerland|defined by=Turkey|defined by=United Kingdom|defined by=United States|defined by=NIST|defined by=ITU-T|defined by=NATO}} | + | {{#set:defined by=EU|defined by=Albania|defined by=Austria|defined by=Bulgaria|defined by=Canada|defined by=Chile|defined by=Colombia|defined by=Germany|defined by=Japan|defined by=New Zealand|defined by=Nigeria|defined by=Philippines|defined by=Poland|defined by=Portugal|defined by=Romania|defined by=Switzerland|defined by=Turkey|defined by=United Kingdom|defined by=United States|defined by=NIST|defined by=ITU-T|defined by=NATO}} |
Revision as of 23:35, 23 December 2016
Contents
- 1 Definitions
- 1.1 European/EU Definitions
- 1.2 Other International Definitions
- 1.3 National Definitions
- 2 See also
- 3 Notes
Definitions
European/EU Definitions
CIPS / ISEC
Attacks against information systems carried out by using malicious software, including botnets. [1]
Other International Definitions
ITU-T
(Cyber) attack are the activities undertaken to bypass or exploit deficiencies in a system's security mechanisms. [2]
By a direct attack on a system they exploit deficiencies in the underlying algorithms, principles, or properties of a security mechanism. Indirect attacks are performed
when they bypass the mechanism, or when they make the system use the mechanism incorrectly.
Attaque: Activités entreprises pour contourner ou exploiter des déficiences constatées dans les mécanismes de sécurité d'un système. [3]
Ataque: Actividades realizadas para obviar los mecanismos de seguridad de un sistema o aprovechar sus deficiencias. [4]
攻击: 为绕过一个系统的安全机制或利用其漏洞而采取的行动. [5]
NATO
CCD-CoE (Tallinn manual)
Cyber attack is a cyber operation, whether offensive of defensive, that is reasonable expected to cause injury or death to persons or damage or destruction to objects. [6]
National Definitions
Albania
Sulm kibernetik – konsiderohet çdo përpjekje e drejtuar/qëllimshme për të marrë akses, manipuluar, ndërhyrë ose dëmtuar integritetin, konfidencialitetin, sigurinë dhe/ose disponibilitetin e të dhënave, të një aplikimi ose të të dhënave të sistemit kompjuterik, pa patur autoritet ligjor për ta bërë këtë. [7]
Austria
Cyber attack refers to an attack carried out in cyberspace through tools, services, or applications in cyberspace, which is directed against one or several IT system(s). Its aim is to undermine the objectives of ICT security protection (confidentiality, integrity and availability) partly or totally. [8]
Ein Cyber Angriff ist ein Angriff mit Mitteln der IT im Cyber Raum, der sich gegen einen oder mehrere andere IT-Systeme richtet und zum Ziel hat, die Schutzziele der IKT Sicherheit als Teil oder Ganzes zu verletzen. [9]
Ein Cyber Angriff ist ein Angriff mit Mitteln der IT im Cyber Raum, der sich gegen einen oder mehrere andere IT-Systeme richtet und zum Ziel hat, die Schutzziele der IKT Sicherheit als Teil oder Ganzes zu verletzen. [9]
Bulgaria
Кибер атака: злонамерена дейност, която цели да разруши, да осигури контрол над компютърна среда/инфраструктура, да наруши интегритет на данни или открадне контролирана информация. [10]
(НАТО) Действия, предприети за нарушаване, отхвърляне, влошаване или разрушаване на информация, намираща се в компютър и/или компютърна мрежа или на компютъра и/или компютърната мрежа. [11]
(НАТО) Действия, предприети за нарушаване, отхвърляне, влошаване или разрушаване на информация, намираща се в компютър и/или компютърна мрежа или на компютъра и/или компютърната мрежа. [11]
Canada
Cyber attacks include the unintentional or unauthorized access, use, manipulation, interruption or destruction (via electronic means) of electronic information and/or the electronic and physical infrastructure used to process, communicate and/or store that information. [12]
Les cyberattaques comprennent l’accès involontaire ou non autorisé à des renseignements électroniques et/ou des infrastructures électroniques ou matérielles utilisés pour traiter, communiquer ou entreposer cette information, ainsi que leur utilisation, leur manipulation, leur interruption ou leur destruction (par voie électronique). [13]
Les cyberattaques comprennent l’accès involontaire ou non autorisé à des renseignements électroniques et/ou des infrastructures électroniques ou matérielles utilisés pour traiter, communiquer ou entreposer cette information, ainsi que leur utilisation, leur manipulation, leur interruption ou leur destruction (par voie électronique). [13]
Chile
Ciberataque: es una expresión del ciberconflicto consistente en acciones hostiles desarrolladas en el ciberespacio con el objetivo de irrumpir, explotar, denegar, degradar o destruir la infraestructura tecnológica, componente lógico o interacciones de éste y pueden tener distintos niveles según su duración, frecuencia y daño generado. [14]
Colombia
Ataque cibernético: Acción organizada y/o premeditada de una o más personas para causar daño o problemas a un sistema informático a través del ciberespacio. [15]
Cyberattack: organised and / or premeditated misconduct or one or more individuals to cause damage to a computer system problems through cyberspace.
Germany
National Cyber Security Strategy 2016
Ein Cyber-Angriff ist eine Einwirkung auf ein oder mehrere andere informationstechnische Systeme im oder durch den Cyber-Raum, die zum Ziel hat, deren IT-Sicherheit durch informationstechnische Mittel ganz oder teilweise zu beeinträchtigen. (2016) [16]
National Cyber Security Strategy 2011
A cyber attack is an IT attack in cyberspace directed against one or several other IT systems and aimed at damaging IT security. [17]
Ein Cyber-Angriff ist ein IT-Angriff im Cyber-Raum, der sich gegen einen oder mehrere andere IT-Systeme richtet und zum Ziel hat, die IT-Sicherheit zu brechen. [18]
Ein Cyber-Angriff ist ein IT-Angriff im Cyber-Raum, der sich gegen einen oder mehrere andere IT-Systeme richtet und zum Ziel hat, die IT-Sicherheit zu brechen. [18]
BSI
Cyber attacks are attacks carried out in cyberspace through tools, services, or applications in cyberspace; in the process, cyberspace can be origin, target or the environment of the attack. [19]
Japan
攻撃: インテリジェントな脅威、すなわちセキュリティサービスを回避し、システムのセキュリティポリシーを侵害する故意の試み(特に、方式あるいは技法という意味において)としてのインテリジェントな動作によってもたらされるセキュリティシステムへの攻撃.
(Cyber) attack is an assault on system security that derives from an intelligent threat, i.e., an intelligent act that is a deliberate attempt (especially in the sense of a method or technique) to evade security services and violate the security policy of a system. [20]
(Cyber) attack is an assault on system security that derives from an intelligent threat, i.e., an intelligent act that is a deliberate attempt (especially in the sense of a method or technique) to evade security services and violate the security policy of a system. [20]
New Zealand
Cyber attack is an attempt to undermine or compromise the function of a computer-based system, access information, or attempt to track the online movements of individuals without their permission. [21]
Nigeria
Cyber attack (usually) involves the use of malicious codes to alter digital codes, logic or data, resulting in disruptive consequences that can compromise the confidentiality, integrity, and availability of data and lead to manipulation of information systems and internetwork infrastructure. [22]
Philippines
Cyber attack:
(a) Is an attack via cyberspace, targeting an enterprise‘s use of cyberspace for the purpose of disrupting, disabling, destroying, or maliciously controlling a computing environment/infrastructure;
(b) destroying the integrity of the data or stealing controlled information; A hostile act using computer or related networks or systems, and intended to disrupt and/ or destroy an adversary's critical cyber systems, assets, or functions. [23]
(a) Is an attack via cyberspace, targeting an enterprise‘s use of cyberspace for the purpose of disrupting, disabling, destroying, or maliciously controlling a computing environment/infrastructure;
(b) destroying the integrity of the data or stealing controlled information; A hostile act using computer or related networks or systems, and intended to disrupt and/ or destroy an adversary's critical cyber systems, assets, or functions. [23]
Poland
Ccyberatak – celowe zakłócenie prawidłowego funkcjonowania cyberprzestrzeni.
Cyber attack - deliberate disruption of the proper functioning of cyberspace. [24]
Cyber attack - deliberate disruption of the proper functioning of cyberspace. [24]
Portugal
[Definição] Ciberataque: Ataque realizado através das tecnologias de informação no ciberespaço dirigido contra um ou vários sistemas, com o objetivo de prejudicar a segurança das tecnologias de informação e da comunicação (confidencialidade, integridade e disponibilidade), em parte ou totalmente. [25]
Romania
Atac cybernetic: acţiune ostilă desfăşurată în spaţiul cibernetic de natură să afecteze securitatea cibernetică.
Cyber attack: hostile action to affect the cyberspace and Cyber Security. [26]
Cyber attack: hostile action to affect the cyberspace and Cyber Security. [26]
Switzerland
Cyber attacks are carried out on computers, networks and data. They are aimed at disrupting the integrity of the data or the functioning of the infrastructure and restricting or interrupting their availability. They also seek to compromise the confidentiality or authenticity of information by means of unauthorised reading, deletion or modification of data, connections or server services are overloaded, information channels spied upon or surveillance and processing systems are manipulated in a targeted manner. [27]
Turkey
Siber saldırı: Ulusal siber uzayda bulunan bilişim sistemlerinin gizlilik, bütünlük veya erişilebilirliğini ortadan kaldırmak amacıyla, siber uzayın her hangi bir yerindeki kişi ve/veya bilişim sistemleri tarafından kasıtlı olarak yapılan işlemleri. [28]
United Kingdom (UK)
Cyber attack is the deliberate exploitation of computer systems, digitally-dependent enterprises and networks to cause harm. [29]
Cyber attack can refer to anything from small-scale email scams through to sophisticated largescale attacks with diverse political and economic motives. Large-scale attacks may have a number of interrelated aims such as: gaining unauthorised access to sensitive information; causing disruption to IT infrastructure; or causing physical disruption (e.g. to industrial systems). [30]
United States
NIST
Cyber attack is an attack, via cyberspace, targeting an enterprise’s use of cyberspace for the purpose of disrupting, disabling, destroying, or maliciously controlling a computing environment/infrastructure; or destroying the integrity of the data or stealing controlled information. [31]
An attack is an attempt to gain unauthorized access to system services, resources, or information, or an attempt to compromise system integrity, availability, or confidentiality. [32]
See also
Notes
- ↑ CIPS and Programme Prevention of and Fight against Crime (ISEC)
- ↑ ITU Security in Telecommunications and Information Technology: An overview of issues and the deployment of existing ITU-T Recommendations for secure telecommunications, ITU-T, Geneva (2012) - ITU-T H.235.
- ↑ Sécurité dans les télécommunications et les technologies de l’information: Aperçu des problèmes et présentation des Recommandations UIT-T existantes sur la sécurité dans les télécommunications, ITU-T, Geneva (2012) - ITU-T H.235.
- ↑ Seguridad de las telecomunicaciones y las tecnologías de la información: Exposición general de asuntos relacionados con la seguridad de las telecomunicaciones y la aplicación de las Recomendaciones vigentes del UIT-T, ITU-T, Geneva (2012) - ITU-T H.235.
- ↑ 关于电信安全的若干议题综述 及相关ITU-T建议书应用简介, ITU-T, Geneva (2012) - ITU-T H.235.
- ↑ Tallinn Manual on the International Law Applicable to Cyber Warfare (2013)
- ↑ Dokumenti i Politikave për Sigurinë Kibernetike 2015 - 2017
- ↑ Austrian Cyber Security Strategy, Federal Chancellery of the Republic of Austria, Vienna (2013)
- ↑ Österreichische Strategie für Cyber Sicherheit (2013)
- ↑ „Кибер устойчива България 2020” - Republic of Bulgaria: national cyber security strategy "Cyber Resilient Bulgaria 2020"(2016)
- ↑ „Кибер устойчива България 2020” - Republic of Bulgaria: national cyber security strategy "Cyber Resilient Bulgaria 2020"(2016)
- ↑ Canada’s Cyber Security Strategy (2010). For a Stronger and More Prosperous Canada (2010)
- ↑ Stratégie de cybersécurité du Canada: renforcer le Canada et accroître sa prospérité. (2010)
- ↑ BASES PARA UNA POLÍTICA NACIONAL DE CIBERSEGURIDAD, MARZO DE 2015, Chile
- ↑ Lineamientos de política para ciberseguridad y ciberdefensa (2011)
- ↑ Cyber-Sicherheitsstrategie für Deutschland 2016
- ↑ Cyber Security Strategy for Germany (2011)
- ↑ Cyber-Sicherheitstrategie für Deutschland (2011)
- ↑ Unpublished working glossary of UP KRITIS and BSI, 2014
- ↑ RFC2828 (Japanese translation)
- ↑ New Zealand’s Cyber Security Strategy (2011)
- ↑ National Cybersecurity Policy and Strategy (2014)
- ↑ DND GLOSSARY OF CYBER SECURITY TERMS (v.4)
- ↑ 2013 Narodowy Program Ochrony Infrastruktury Krytycznej
- ↑ Glossário Centro National de Cibersegurança Portugal
- ↑ Hotărârea nr. 271/2013 pentru aprobarea Strategiei de securitate cibernetică
- ↑ National strategy for the protection of Switzerland against cyber risks (2012)
- ↑ 2016-2019 ULUSAL SİBER GÜVENLİK STRATEJİSİ
- ↑ National Cyber Security Strategy 2016, HM Government
- ↑ Cyber Security in the UK, Postnote Number 389, September 2011
- ↑ NIST Special Publication 800-53 Rev 4: Security and Privacy Controls for Federal Information Systems and Organizations (April 2013)
- ↑ NIST Special Publication 800-82 Rev 2: Guide to Industrial Control Systems (ICS) Security (May 2015)
