Incident

From CIPedia
Revision as of 09:37, 24 September 2020 by Eluiijf (talk | contribs) (Australia)
Jump to navigation Jump to search

Definitions

European Definitions

European Commission

Incident means any event having an actual adverse effect on the security of network and information systems. [1]


ENISA

Incident is an event that has been assessed as having an actual or potentially adverse effect on the security or performance of a system. [2]


Other International Definitions

National Definitions

Argentina

Incidente: Emergencia que requiere la implementación especial de planes en sus distintas fases, en coordinación con todos los servicios de emergencia y autoridades, que se circunscribe a un punto de impacto acotado, que puede implicar o no, un gran número de víctimas y daños en bienes materiales, y cuya respuesta no excede los medios operativos locales. [3]



Australia

Incident is an emergency event or series of events which requires a response from one or more of the statutory response agencies. [4]


Cyber incident is a single event or a series of events that threatens the integrity, availability or confidentiality of digital information. [5]



Austria

„Sicherheitsvorfall“ alle Ereignisse, die tatsächlich nachteilige Auswirkungen auf die Sicherheit von Netz- und Informationssystemen haben. [6]



Belgium

„Incident”: elke gebeurtenis met een daadwerkelijk schadelijk effect op de beveiliging van netwerk- en informatiesystemen. [7]


«Incident»: tout événement ayant un impact négatif réel sur la sécurité des réseaux et des systèmes d'information. [8]



Bulgaria

„инцидент“ означава събитие, което има реално неблагоприятно въздействие върху сигурността на мрежите и информационните системи. [9]


Incident shall denote an unforeseeable or unlikely event, limited in terms of duration or spatial effect, with a high intensity of forces or caused by human activity, threatening the life or health of humans, property or the environment. [10]

Инцидент: е непредвидимо или трудно прогнозируемо, ограничено по време и пространство действие, с висока интензивност на сили или вследствие на човешка дейност, застрашаващо живота или здравето на хора, имуществото или околната среда. [11]



Burkina-Faso

Incident: un evènement inattendu. [12]



Canada

An event caused by either human action or a natural phenomenon that requires a response to prevent or minimize loss of life or damage to property or the environment and reduce economic and social losses.

Événement d’origine humaine ou causé par un phénomène naturel qui nécessite une intervention afin de prévenir ou de réduire au minimum les décès et les dommages aux biens et à l’environnement et de réduire les pertes économiques et sociales. [13]



Croatia

„Incident” znači bilo koji događaj koji ima stvaran negativni učinak na sigurnost mrežnih i informacijskih sustava. [14]



Cyprus

«συμβάν»: κάθε γεγονός που έχει στη πραγματικότητα μια δυσμενή επίπτωση στην ασφάλεια συστημάτων δικτύου και πληροφοριών [15]



Czech Republic

„Incidentem“ jakákoliv událost, která má reálný negativní dopad na bezpečnost sítí a informačních systémů. [16]


Incident: V prostředí ICT je incidentem myšlena událost, která je obvykle spojená s výpadkem sítě, služby nebo se zhoršením jejich kvality. [17]

Incident in the ICT environment assumed to be an event which is usually related to the outage of a network, service, or to a deterioration of its quality. [18]



Denmark

»Hændelse«: enhver begivenhed, der har en egentlig negativ indvirkning på sikkerheden i net- og informationssystemer. [19]


Hændelser er ulykker (såsom brand, sammenstyrtning og udslip), der kan ske i relation til risikoobjekter og som kan føre til skader på personer, ejendom eller miljø. [20]



Estonia

„Intsident“– sündmus, mis tegelikult kahjustab võrgu- ja infosüsteemide turvalisust. [21]<



Finland

’Poikkeamalla’ mitä tahansa tapahtumaa, joka tosiasiassa vaikuttaa haitallisesti verkko- ja tietojärjestelmien turvallisuuteen. [22]


Häiriötilanne: uhka tai tapahtuma, joka vaarantaa yhteiskunnan elintärkeitä toimintoja ja jonka hallinta edellyttää viranomaisten ja muiden toimijoiden tavanomaista laajempaa tai tiiviimpää yhteistoimintaa ja viestintää.

Incident is a threat or an event which endangers vital operations of society and whose management requires wider or closer cooperation and communication than usual between the authorities and other actors. -unofficial translation- [23]



France

«Incident»: tout événement ayant un impact négatif réel sur la sécurité des réseaux et des systèmes d'information. [24]



Germany

„Sicherheitsvorfall“ alle Ereignisse, die tatsächlich nachteilige Auswirkungen auf die Sicherheit von Netz- und Informationssystemen haben. [25]


Eine nicht geplante Unterbrechung eines IT Service oder eine Qualitätsminderung eines IT Service. [26]



Greece

«συμβάν»: κάθε γεγονός που έχει στη πραγματικότητα μια δυσμενή επίπτωση στην ασφάλεια συστημάτων δικτύου και πληροφοριών [27]



Hungary

„Biztonsági esemény”: minden olyan esemény, amely ténylegesen kedvezőtlen hatást gyakorol a hálózati és információs rendszerek biztonságára. [28]



Ireland

‘Incident’ means any event having an actual adverse effect on the security of network and information systems. [29]



Italy

«Incidente», ogni evento con un reale effetto pregiudizievole per la sicurezza della rete e dei sistemi informativi. [30]



Latvia

“Incidents” ir jebkāds notikums, kas faktiski nelabvēlīgi ietekmē tīklu un informācijas sistēmu drošību. [31]



Lithuania

Incidentas– įvykis, turintis faktinį neigiamą poveikį tinklų ir informacinių sistemų saugumui. [32]


Incident shall mean an event, act or omission which gives rise or may give rise to an unauthorized access to an information system or electronic communications network, disruption or change of the operation (including takeover of control) of an information system or electronic communications network, destruction, damage, deletion or the change of electronic information, removal or limiting of the possibility to use electronic information and, also, which gives rise or may give rise to the appropriation, publication, dissemination or any other use of non-public electronic information by persons unauthorized to do so. [33]

(Cyber incident) Kibernetinis incidentas – įvykis ar veika, kuri sukelia ar gali sukelti neteisėtą prisijungimą ar sudaryti sąlygas neteisėtai prisijungti prie informacinės sistemos, elektroninių ryšių tinklo ar pramoninių procesų valdymo sistemos, sutrikdyti ar pakeisti, įskaitant valdymo perėmimą, informacinės sistemos, elektroninių ryšių tinklo ar pramoninių procesų valdymo sistemos veikimą, sunaikinti, sugadinti, ištrinti ar pakeisti elektroninę informaciją, panaikinti ar apriboti galimybę naudotis elektronine informacija, taip pat sudaryti sąlygas pasisavinti ar kitaip panaudoti neviešą elektroninę informaciją tokios teisės neturintiems asmenims. [34]



Luxembourg

«Incident»: tout événement ayant un impact négatif réel sur la sécurité des réseaux et des systèmes d'information. [35]


Incident: Situation qui peut être, ou conduire à, une perturbation, une perte, une urgence ou une crise. [36]



Malta

“Inċident” tfisser kwalunkwe avveniment li proprju għandu effett negattiv fuq is-sigurtà tan-netwerks u tas-sistemi tal-informazzjoni. [37]



Mexico

Incidente: Toda aquella situación anómala, que suele coincidir con situaciones que quedan controladas. [38]



Netherlands

Een incident is een gebeurtenis waarbij informatie, informatiesystemen of -diensten verstoord worden, uitvallen of misbruikt worden. [39]


Incident: Onder incident wordt verstaan elke gebeurtenis, die niet tot de standaardoperatie van een IT-service behoort en die een interruptie in of een vermindering van de kwaliteit van die service kan veroorzaken. [40]


„Incident”: elke gebeurtenis met een daadwerkelijk schadelijk effect op de beveiliging van netwerk- en informatiesystemen. [41]


Incident is een ongewenste gebeurtenis die tot schade - financieel of anderszins - heeft geleid.

An incident is an unwanted event which has caused financial or other damage. [42]

Een (cyber) incident is een ICT-verstoring in de dienstverlening waardoor de te verwachten beschikbaarheid van de dienstverlening geheel of gedeeltelijk is verdwenen en/of het ongeoorloofd openbaren, verkrijgen en/of wijzigen van informatie. [43]


[HEALTH sector] Incident: Een onbedoelde gebeurtenis tijdens het zorgproces die tot schade aan de patiënt heeft geleid of zou kunnen leiden. [44]



New Zealand

Incident is (1) an occurrence that needs a response from one or more agencies (it may or may not be an emergency); (2) the first official level of agency response. [45]



Oman

An incident as an adverse network event in an information system or network or the threat of the occurrence of such an event. [46]



Philippines

Incident:
(a) An assessed occurrence that actually or potentially jeopardizes the confidentiality, integrity, or availability of an information system; or the information the system processes, stores, or transmits; or
(b) that constitutes a violation or imminent threat of violation of security policies, security procedures, or acceptable usepolicies. [47]



Poland

Incydent – każde zdarzenie, które ma lub może mieć niekorzystny wpływ na cyberbezpieczeństwo. [48]


incydent krytyczny [Critical incident] – incydent skutkujący znaczną szkodą dla bezpieczeństwa lub porządku publicznego, interesów międzynarodowych, interesów gospodarczych, działania instytucji publicznych, praw i wolności obywatelskich lub życia i zdrowia ludzi, klasyfikowany przez właściwy CSIRT MON, CSIRT NASK lub CSIRT GOV. [48]


Incydent poważny [Serious incident] – incydent, który powoduje lub może spowodować poważne obniżenie jakości lub przerwanie ciągłości świadczenia usługi kluczowej. [48]


Incydent istotny [Significant incident] – incydent, który ma istotny wpływ na świadczenie usługi cyfrowej w rozumieniu art. 4 rozporządzenia wykonawczego Komisji (UE) 2018/151 z dnia 30 stycznia 2018 r. ustawiającego zasady stosowania dyrektywy Parlamentu Europejskiego i Rady (UE) 2016/1148 w odniesieniu do dalszego doprecyzowania elementów, jakie mają być uwzględnione przez dostawców usług cyfrowych w zakresie zarządzania istniejącymi ryzykami dla bezpieczeństwa sieci i systemów informatycznych, oraz parametrów służących do określenia, czy incydent ma istotny wpływ (Dz. Urz. UE L 26 z 31.01.2018, str. 48), zwanego dalej „rozporządzeniem wykonawczym 2018/151”. [48]


„Incydent” oznacza każde zdarzenie, które ma rzeczywiście niekorzystny wpływ na bezpieczeństwo sieci i systemów informatycznych. [49]



Portugal

«Incidente», um evento com um efeito adverso real na segurança das redes e dos sistemas de informação. [50]


[Definição] Incidente: (1) Um evento com um efeito adverso real na segurança das redes e dos sistemas de informação; (2) Ações tomadas através da utilização de uma rede de computadores que que resultam num efeito atual ou potencialmente adverso sobre um sistema de informação e/ou a informação aí armazenada. [51]



Romania

„Incident” înseamnă orice eveniment care are un efect real negativ asupra securității rețelelor și a sistemelor informatice. [52]



Serbia

инцидент је унутрашња или спољна околност или догађај којим се угрожава или нарушава информациона безбедност. [53]



Singapore

An event that occurs by chance or due to a combination of unforeseen circumstances, which, if not handled in an appropriate manner, can escalate into an emergency or disaster. [54]

An incident precedes an emergency or disaster.

Slovakia

„Incident“ je každá udalosť, ktorá má skutočne nepriaznivý vplyv na bezpečnosť sietí a informačných systémov. [55]



Slovenia

„Incident“ pomeni vsak dogodek, ki ima dejanski negativen učinek na varnost omrežij in informacijskih sistemov. [56]


Mimoriadna udalosť: Závažná, časovo ťažko predvídateľná a priestorovo ohraničená príhoda spôsobená vplyvom živelnej pohromy, technickej alebo technologickej havárie, prevádzkovej poruchy, prípadne úmyselného konania človeka, ktorá vyvolala narušenie stability systému alebo prebiehajúcich dejov a činností, ohrozuje životy a zdravie osôb, hmotné a kultúrne statky či životné prostredie. [57]



Spain

«Incidente»: todo hecho que tenga efectos adversos reales en la seguridad de las redes y sistemas de información. [58]



Sweden

Incident : en händelse med en faktisk negativ inverkan på säkerheten i nätverks- och informationssystem. [59]




Switzerland

Ein Ereignis ist ein Geschehen, dessen Auswirkungen beobachtbar sind. [60]

Un événement est un fait ayant des conséquences observables. [61]

L’evento è un avvenimento con conseguenze accertabili. [62]


Cyber incident: An intentional or unintentional event which, in cyberspace, results in a process that may adversely affect the integrity, confidentiality or availability of data and information and may lead to malfunctions. [63]

Cyber-Vorfall: Beabsichtigtes oder unbeabsichtigtes Ereignis, das im CyberRaum zu einem Vorgang führt, der die Integrität, Vertraulichkeit oder Verfügbarkeit von Daten und Informationen beeinträchtigt und zu Fehlfunktionen führen kann. [64]

Cyberincident: Événement voulu ou non qui conduit à un processus nuisant à l’intégrité, la confidentialité ou la disponibilité de données et d’informations et pouvant occasionner des défauts de fonctionnement. [65]

Incidente informatico: Evento intenzionale o fortuito che causa un processo nel cyberspazio che può compromettere l’integrità, l’accessibilità o la confidenzialità di dati e informazioni e può causare malfunzionamenti. [66]


Tanzania

Incident: An occurrence or event, either human-caused or by natural phenomena, that requires action by emergency response personnel to prevent or minimise loss of life or damage to property and/or natural resources. [67]



United States

DHS
Incident is an occurrence, caused by either human action or natural phenomenon, that may cause harm and require action, which can include major disasters, emergencies, terrorist attacks, terrorist threats, wild and urban fires, floods, hazardous materials spills, nuclear accidents, aircraft accidents, earthquakes, hurricanes, tornadoes, tropical storms, war-related disasters, public health and medical emergencies, cyber attacks, cyber failure/accident, and other occurrences requiring an emergency response. [68]


White House
Cyber incident: An event occurring on or conducted through a computer network that actually or imminently jeopardizes the integrity, confidentiality, or availability of computers, information or communications systems or networks, physical or virtual infrastructure controlled by computers or information systems, or information resident thereon. [69]

For purposes of this directive, a cyber incident may include a vulnerability in an information system, system security procedures, internal controls, or implementation that could be exploited by a threat source.

FISMA
Incident is an occurrence that (A) actually or imminently jeopardizes, without lawful authority, the integrity, confidentiality, or availability of information or an information system; or (B) constitutes a violation or imminent threat of violation of law, security policies, security procedures, or acceptable use policies. [70]

FISMA also uses the terms “security incident” and “information security incident” in place of incident.

NIST
A violation or imminent threat of violation of computer security policies, acceptable use policies, or standard security practices. [71]

This document points to several ICT-related definitions of incident.

NFPA-1600
An event that has the potential to cause interruption, disruption, loss, emergency, crisis, disaster, or catastrophe. [72]


DoD
Incident is an occurrence, caused by either human action or natural phenomena, that requires action to prevent or minimize loss of life, or damage, loss of, or other risks to property, information, and/or natural resources. [73]


US-CERT
Incident is an event (or series of events) that significantly affects (or has the potential to significantly affect) organizational assets and services and requires the organization (and possibly other stakeholders) to respond in some way to prevent or limit adverse impacts. [74]


NIST
Incident:  An occurrence that actually or potentially jeopardizes the confidentiality, integrity, or availability of an information system or the information the system processes, stores, or transmits or that constitutes a violation or imminent threat of violation of security policies, security procedures, or acceptable use policies. (from: NIST SP 800-128) [75]


Incident:  A violation or imminent threat of violation of computer security policies, acceptable use policies, or standard security practices. (from: NIST SP 800-61 Rev 2) [75]


Incident: An occurrence that results in actual or potential jeopardy to the confidentiality, integrity, or availability of an information system or the information the system processes, stores, or transmits or that constitutes a violation or imminent threat of violation of security policies, security procedures, or acceptable use policies. (from: CNSSI 4009-2015 [75]


Standard Definition

ISO/PAS 22399:2007

Event that might be, or could lead to, an operational interruption, disruption, loss, emergency or crisis. [76]


ISO 22300:2012(en)

Situation that might be, or could lead to, a disruption, loss, emergency or crisis.[77] [78]

Other Definitions

Ontario (Canada)

Incident is an occurrence or event that requires an emergency response to protect people, property, the environment, the economy and/or services. [79]

Incident: Événement qui exige une intervention d'urgence afin de protéger les personnes, les biens, l’environnement, l’économie ou les services. [79]


See also

Notes

  1. DIRECTIVE (EU) 2016/1148 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 6 July 2016 concerning measures for a high common level of security of network and information systems across the Union
  2. ENISA Risk Glossary
  3. SUBSECRETARÍA DE PROTECCIÓN CIVIL Y ABORDAJE INTEGRAL DE EMERGENCIAS Y CATÁSTROFES (1/2015)
  4. Multi-agency incident management, Emergency Management Australia - Manual 17 (2011)
  5. Australia's Cyber Security Strategy 2020
  6. Directive (EU) 2016/1148 -DE
  7. Directive (EU) 2016/1148 - - NL
  8. Directive (EU) 2016/1148 - - FR
  9. Directive (EU) 2016/1148 – BG
  10. Disaster Protection Act; Promulgated, State Gazette, No.102/19.12.2006 (2006)
  11. ЗАКОН за защита при бедствия
  12. CIRT-BF Glossary
  13. Vocabulaire de la gestion des urgencies/Emergency Management Emergency Management Vocabulary 281 (2012)
  14. Directive (EU) 2016/1148 - HR
  15. Directive (EU) 2016/1148 - EL
  16. Directive (EU) 2016/1148 - CS
  17. Výkladový slovník kybernetické bezpečnosti (2013)
  18. Cyber Security Explanatory Glossary (2013)
  19. Directive (EU) 2016/1148 - DA
  20. [HÅNDBOG I RISIKOBASERET DIMENSIONERING, Beredskabsstyrelsen, Denmark (2004)]
  21. Directive (EU) 2016/1148 - ET
  22. Directive (EU) 2016/1148 - FI
  23. Vocabulary of Comprehensive Security. Helsinki (TSK 47) (2014)
  24. Directive (EU) 2016/1148 - FR
  25. [ http://eur-lex.europa.eu/legal-content/DE/TXT/PDF/?uri=CELEX:32016L1148&from=EN Directive (EU) 2016/1148 -DE ]
  26. BSI Glossary
  27. Directive (EU) 2016/1148 – EL
  28. Directive (EU) 2016/1148 - HU
  29. Directive (EU) 2016/1148 - EN
  30. Directive (EU) 2016/1148 - IT
  31. Directive (EU) 2016/1148 - LV
  32. Directive (EU) 2016/1148 - LT
  33. GOVERNMENT OF THE REPUBLIC OF LITHUANIA RESOLUTION NO 796 of 29 June 2011 ON THE APPROVAL OF THE PROGRAMME FOR THE DEVELOPMENT OF ELECTRONIC INFORMATION SECURITY (CYBER-SECURITY) FOR 2011–2019
  34. LIETUVOS RESPUBLIKOS KIBERNETINIO SAUGUMO ĮSTATYMAS 2014 m. gruodžio 11 d. Nr. XII-1428 Vilnius
  35. Directive (EU) 2016/1148 - FR
  36. Glossaire
  37. Directive (EU) 2016/1148 - MT
  38. GUÍA PARA LA PRESENTACIÓN DEL ESTUDIO DE RIESGO MODALIDAD ANALISIS DE RIESGO, Mexico
  39. Cyber Security Beeld Nederland 2018
  40. ABDO 2017
  41. Directive (EU) 2016/1148 - NL
  42. Zakboekje Preventie Cybercrime (2008
  43. NCSC, Cyber Security Beeld Nederland 5 (2015)
  44. Patiëntveiligheid Definitielijst (2005)
  45. The New Zealand Coordinated Incident Management System, Department of the Prime Minister and Cabinet, New Zealand. (2014)
  46. Oman CERT Glossary
  47. DND GLOSSARY OF CYBER SECURITY TERMS (v.4)
  48. 48.0 48.1 48.2 48.3 U S TAWA z dnia o krajowym systemie cyberbezpieczeństwa / Polish (draft) law on the national cybersecurity system (2018)
  49. Directive (EU) 2016/1148 - PL
  50. Directive (EU) 2016/1148 - PT
  51. Glossário Centro National de Cibersegurança Portugal
  52. Directive (EU) 2016/1148 - RO
  53. ЗАКОН О ИНФОРМАЦИОНОЈ БЕЗБЕДНОСТИ (Law on Information Security), Serbia
  54. Singapore Standard SS 540: 2008 on Business Continuity
  55. Directive (EU) 2016/1148 - SK
  56. Directive (EU) 2016/1148 - SL
  57. BEZPEČNOSTNÁ RADA SLOVENSKEJ REPUBLIKY
  58. Directive (EU) 2016/1148 - ES
  59. Directive (EU) 2016/1148 - SV
  60. Glossar der Risikobegriffe, Bundesamt für Bevölkerungsschutz BABS, 29.4.2013
  61. Glossaire des risques, Office fédéral de la protection de la population, 29.4.2013
  62. Glossario sui rischi, Ufficio federale della protezione della popolazione UFPP, 29.4.2013
  63. SN002 - National strategy for Switzerland’s protection against cyber risks (NCS) 2018-2022 (2018)
  64. SN002 - Nationale Strategie zum Schutz der Schweiz vor Cyber-Risiken (NCS) 2018-2022 (2018)
  65. SN002 - Stratégie nationale de protection de la Suisse contre les cyberrisques (SNPC) 2018-2022 (2018)
  66. SN002 - Strategia nazionale per la protezione della Svizzera contro i cyber-rischi (SNPC) 2018-2022 (2018)
  67. United Republic of Tanzania National Operational Guidelines for Disaster Management 2003
  68. DHS Risk Lexicon 2010 Edition, September 2010
  69. Presidential Policy Directive PPD-41, 2016
  70. The Federal Information Security Modernization Act of 2014 (FISMA)44 U.S.C. § 3552(b)(2).
  71. NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013/ NIST SP 800-61
  72. NFPA-1600
  73. Joint Publication 1-02: Department of Defense Dictionary of Military and Associated Terms (2016)
  74. Cyber Resilience Review (CRR): Method Description and Self-Assessment User Guide (2016)
  75. 75.0 75.1 75.2 NIST Glossary
  76. ISO/PAS 22399:2007 Societal security - Guideline for incident preparedness and operational continuity management.
  77. ISO 22300:2012(en) Societal security — Terminology
  78. ISO 22301:2012 Societal security -- Business continuity management systems --- Requirements
  79. 79.0 79.1 Province of Ontario’s Emergency Management Glossary of Terms