Defence-in-Depth

From CIPedia
Revision as of 16:53, 29 December 2016 by Eluiijf (talk | contribs)
Jump to navigation Jump to search


Definitions

International Definitions

IAEA

Implementing several layers of defence, including both administrative aspects (procedures, instructions, sanctions, access control rules, confidentiality rules) and technical aspects (multiple layers of protection together with measures for detection and delay) that adversaries would have to overcome or circumvent to achieve their objectives. [1]



National Definitions

Oman

Defense In-Depth is the approach of using multiple layers of security to guard against failure of a single security component. [2]



United States

NIST
Defense-in-Depth is an information security strategy integrating people, technology, and operations capabilities to establish variable barriers across multiple layers and missions of the organization. [3]



See also

Notes

  1. IAEA - Nuclear Security Series Glossary Version 1.3 (November 2015)
  2. Oman CERT Glossary
  3. NIST Special Publication 800-53 Rev 4: Security and Privacy Controls for Federal Information Systems and Organizations (April 2013)
Retrieved from "https://websites.fraunhofer.de/CIPedia/index.php?title=Defence-in-Depth&oldid=7120"