Difference between revisions of "Information Security"
Jump to navigation
Jump to search
| Line 31: | Line 31: | ||
* Integriteit is de eigenschap dat de nauwkeurigheid en volledigheid van bedrijfsmiddelen wordt beveiligd. | * Integriteit is de eigenschap dat de nauwkeurigheid en volledigheid van bedrijfsmiddelen wordt beveiligd. | ||
* Vertrouwelijkheid is de eigenschap dat informatie niet beschikbaar wordt gesteld of wordt ontsloten aan onbevoegde personen, entiteiten of processen. | * Vertrouwelijkheid is de eigenschap dat informatie niet beschikbaar wordt gesteld of wordt ontsloten aan onbevoegde personen, entiteiten of processen. | ||
| − | * Beschikbaarheid is het kenmerk dat iets toegankelijk en bruikbaar is op verzoek van een bevoegde entiteit. | + | * Beschikbaarheid is het kenmerk dat iets toegankelijk en bruikbaar is op verzoek van een bevoegde entiteit.<br /> |
| + | |||
| + | ==== Norway ==== | ||
| + | {{definition|ICT security is how business-critical electronic networks and systems that process data or communicate with each other are protected. <ref>[https://www.regjeringen.no/globalassets/upload/fad/vedlegg/ikt-politikk/cyber_security_strategy_norway.pdf Cyber Security Strategy for Norway (2012)]</ref><br />IKT-sikkerhet: Hvordan elektroniske nettverk og systemer som behandler data eller kommuniserer med hverandre, og som virksomhetene er avhengig av for å fungere effektivt, skal beskyttes. <ref>[https://www.regjeringen.no/globalassets/upload/fad/vedlegg/ikt-politikk/nasjonal_strategi_infosikkerhet.pdf Nasjonal strategi for informasjonssikkerhet (2012)]</ref>}}<br /> | ||
====United States==== | ====United States==== | ||
| Line 52: | Line 55: | ||
[[Category:Protection]] | [[Category:Protection]] | ||
[[Category:Resilience]] | [[Category:Resilience]] | ||
| − | {{#set:defined by=EU|defined by=NATO|defined by=UN|defined by=Croatia|defined by=Czech Republic|defined by=Germany|defined by=Jamaica|defined by=Netherlands|defined by=United States|defined by=ISO}} | + | {{#set:defined by=EU|defined by=NATO|defined by=UN|defined by=Croatia|defined by=Czech Republic|defined by=Germany|defined by=Jamaica|defined by=Netherlands|defined by=Norway|defined by=United States|defined by=ISO}} |
Revision as of 17:29, 15 June 2015
Contents
Definitions
European Definitions
The protection of information against unauthorised disclosure, transfer, modification or destruction, whether accidental or intentional. [1]
Other International Definitions
NATO
The protection of information against unauthorised disclosure, transfer, modification or destruction, whether accidental or intentional (INFOSEC). [2]
UN
Information security is the protection of information systems against unauthorized access to or modification of information, whether in storage, processing or transit, and against the denial of service to authorized users or the provision of service to unauthorized users, including those measures necessary to detect, document, and counter such threats. [3]
National Definitions
Czech Republic
Security (protection) of confidentiality, integrity and availability of information (Zajištění (ochrana) důvěrnosti, integrity a dostupnosti informací). [4]
Croatia
Information security is the state of confidentiality, integrity and availability of information, which is achieved by implementation of stipulated information security measures and standards and by organisational support for jobs of planning, implementation, assessment and update of measures and standards. [5]
Germany
IT security is the condition in which availability, integrity and confidentiality of information and Information Technology are ensured by appropriate safeguards. [6]
Jamaica
Information security is the protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction. [7]
Note: The terms information security, computer security and information assurance are understood for these purposes as being interchangeable.
Netherlands
Informatiebeveiliging is het behouden van de vertrouwelijkheid, integriteit en beschikbaarheid van informatie. [8]
- Integriteit is de eigenschap dat de nauwkeurigheid en volledigheid van bedrijfsmiddelen wordt beveiligd.
- Vertrouwelijkheid is de eigenschap dat informatie niet beschikbaar wordt gesteld of wordt ontsloten aan onbevoegde personen, entiteiten of processen.
- Beschikbaarheid is het kenmerk dat iets toegankelijk en bruikbaar is op verzoek van een bevoegde entiteit.
Norway
ICT security is how business-critical electronic networks and systems that process data or communicate with each other are protected. [9]
IKT-sikkerhet: Hvordan elektroniske nettverk og systemer som behandler data eller kommuniserer med hverandre, og som virksomhetene er avhengig av for å fungere effektivt, skal beskyttes. [10]
IKT-sikkerhet: Hvordan elektroniske nettverk og systemer som behandler data eller kommuniserer med hverandre, og som virksomhetene er avhengig av for å fungere effektivt, skal beskyttes. [10]
United States
The protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide confidentiality, integrity, and availability. [11]
Standard Definition
ISO/IEC 27000:2014
Preservation of confidentiality, integrity and availability of information. [12]. In addition, other properties, such as authenticity, accountability, non-repudiation, and reliability can also be involved.
Notes
- ↑ [http://www.cimic-coe.org/wp-content/uploads/2014/06/NATO-EU-UN-glossary-on-DCB-and-CP.pdf NATO - EU - UN glossary
- ↑ [http://www.cimic-coe.org/wp-content/uploads/2014/06/NATO-EU-UN-glossary-on-DCB-and-CP.pdf NATO - EU - UN glossary
- ↑ [http://www.cimic-coe.org/wp-content/uploads/2014/06/NATO-EU-UN-glossary-on-DCB-and-CP.pdf NATO - EU - UN glossary
- ↑ Cyber Security Explanatory Glossary (2013)
- ↑ Article 2 of the Information Security Act
- ↑ Unpublished working glossary of UP KRITIS and BSI, 2014
- ↑ Jamaica's National Cyber Security Strategy
- ↑ NEN-ISO/IEC-27001 en 27002
- ↑ Cyber Security Strategy for Norway (2012)
- ↑ Nasjonal strategi for informasjonssikkerhet (2012)
- ↑ NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013/NIST SP 800 series
- ↑ ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary
