Difference between revisions of "Information Security"
Jump to navigation
Jump to search
| Line 13: | Line 13: | ||
=== National Definitions === | === National Definitions === | ||
| + | ==== Brazil ==== | ||
| + | {{definition| Segurança da Informação: proteção dos sistemas de informação contra a negação de serviço a usuários autorizados, assim como contra a intrusão, e a modificação desautorizada de dados ou informações, armazenados, em processamento ou em trânsito, abrangendo, inclusive, a segurança dos recursos humanos, da documentação e do material, das áreas e instalações das comunicações e computacional, assim como as destinadas a prevenir, detectar, deter e documentar eventuais ameaças a seu desenvolvimento. <ref>[http://www.biblioteca.presidencia.gov.br/publicacoes-oficiais-1/catalogo/orgao-essenciais/gabinete-de-seguranca-institucional/guia-de-referencia-para-seguranca-de-infraestruturas-criticas-da-informacao/at_download/file GUIA DE REFERÊNCIA PARA A SEGURANÇA DAS INFRAESTRUTURAS CRÍTICAS DA INFORMAÇÃO Versão 01 (Nov. 2010)/ Decreto Nº 3.505, de 13 de junho de 2000. Presidência da República, Casa Civil, Subchefia para Assuntos Jurídicos. Institui a Política de Segurança da Informação nos órgãos e entidades da Administração Pública Federal. Brasília, 2000.]</ref><br /><br />Information Security is the protection of information systems against denial of service to authorised users, as well as against intrusion and unauthorised modification of data or information stored in processing or in transit, covering even the safety of human resources, documentation and material, of the areas and facilities of communications and computing, as well as to prevent, detect, deter and document any [[Threat|threats]] to its development.}} <br /> | ||
====Czech Republic==== | ====Czech Republic==== | ||
{{definition|Security (protection) of [[confidentiality]], [[integrity]] and [[availability]] of information (Zajištění (ochrana) důvěrnosti, integrity a dostupnosti informací). <ref> [http://www.govcert.cz/download/nodeid-3555/ Cyber Security Explanatory Glossary (2013)]</ref>}} | {{definition|Security (protection) of [[confidentiality]], [[integrity]] and [[availability]] of information (Zajištění (ochrana) důvěrnosti, integrity a dostupnosti informací). <ref> [http://www.govcert.cz/download/nodeid-3555/ Cyber Security Explanatory Glossary (2013)]</ref>}} | ||
| Line 55: | Line 57: | ||
[[Category:Protection]] | [[Category:Protection]] | ||
[[Category:Resilience]] | [[Category:Resilience]] | ||
| − | {{#set:defined by=EU|defined by=NATO|defined by=UN|defined by=Croatia|defined by=Czech Republic|defined by=Germany|defined by=Jamaica|defined by=Netherlands|defined by=Norway|defined by=United States|defined by=ISO}} | + | {{#set:defined by=EU|defined by=NATO|defined by=UN|defined by=Brazil|defined by=Croatia|defined by=Czech Republic|defined by=Germany|defined by=Jamaica|defined by=Netherlands|defined by=Norway|defined by=United States|defined by=ISO}} |
Revision as of 01:22, 19 June 2015
Contents
Definitions
European Definitions
The protection of information against unauthorised disclosure, transfer, modification or destruction, whether accidental or intentional. [1]
Other International Definitions
NATO
The protection of information against unauthorised disclosure, transfer, modification or destruction, whether accidental or intentional (INFOSEC). [2]
UN
Information security is the protection of information systems against unauthorized access to or modification of information, whether in storage, processing or transit, and against the denial of service to authorized users or the provision of service to unauthorized users, including those measures necessary to detect, document, and counter such threats. [3]
National Definitions
Brazil
Segurança da Informação: proteção dos sistemas de informação contra a negação de serviço a usuários autorizados, assim como contra a intrusão, e a modificação desautorizada de dados ou informações, armazenados, em processamento ou em trânsito, abrangendo, inclusive, a segurança dos recursos humanos, da documentação e do material, das áreas e instalações das comunicações e computacional, assim como as destinadas a prevenir, detectar, deter e documentar eventuais ameaças a seu desenvolvimento. [4]
Information Security is the protection of information systems against denial of service to authorised users, as well as against intrusion and unauthorised modification of data or information stored in processing or in transit, covering even the safety of human resources, documentation and material, of the areas and facilities of communications and computing, as well as to prevent, detect, deter and document any threats to its development.
Information Security is the protection of information systems against denial of service to authorised users, as well as against intrusion and unauthorised modification of data or information stored in processing or in transit, covering even the safety of human resources, documentation and material, of the areas and facilities of communications and computing, as well as to prevent, detect, deter and document any threats to its development.
Czech Republic
Security (protection) of confidentiality, integrity and availability of information (Zajištění (ochrana) důvěrnosti, integrity a dostupnosti informací). [5]
Croatia
Information security is the state of confidentiality, integrity and availability of information, which is achieved by implementation of stipulated information security measures and standards and by organisational support for jobs of planning, implementation, assessment and update of measures and standards. [6]
Germany
IT security is the condition in which availability, integrity and confidentiality of information and Information Technology are ensured by appropriate safeguards. [7]
Jamaica
Information security is the protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction. [8]
Note: The terms information security, computer security and information assurance are understood for these purposes as being interchangeable.
Netherlands
Informatiebeveiliging is het behouden van de vertrouwelijkheid, integriteit en beschikbaarheid van informatie. [9]
- Integriteit is de eigenschap dat de nauwkeurigheid en volledigheid van bedrijfsmiddelen wordt beveiligd.
- Vertrouwelijkheid is de eigenschap dat informatie niet beschikbaar wordt gesteld of wordt ontsloten aan onbevoegde personen, entiteiten of processen.
- Beschikbaarheid is het kenmerk dat iets toegankelijk en bruikbaar is op verzoek van een bevoegde entiteit.
Norway
ICT security is how business-critical electronic networks and systems that process data or communicate with each other are protected. [10]
IKT-sikkerhet: Hvordan elektroniske nettverk og systemer som behandler data eller kommuniserer med hverandre, og som virksomhetene er avhengig av for å fungere effektivt, skal beskyttes. [11]
IKT-sikkerhet: Hvordan elektroniske nettverk og systemer som behandler data eller kommuniserer med hverandre, og som virksomhetene er avhengig av for å fungere effektivt, skal beskyttes. [11]
United States
The protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide confidentiality, integrity, and availability. [12]
Standard Definition
ISO/IEC 27000:2014
Preservation of confidentiality, integrity and availability of information. [13]. In addition, other properties, such as authenticity, accountability, non-repudiation, and reliability can also be involved.
Notes
- ↑ [http://www.cimic-coe.org/wp-content/uploads/2014/06/NATO-EU-UN-glossary-on-DCB-and-CP.pdf NATO - EU - UN glossary
- ↑ [http://www.cimic-coe.org/wp-content/uploads/2014/06/NATO-EU-UN-glossary-on-DCB-and-CP.pdf NATO - EU - UN glossary
- ↑ [http://www.cimic-coe.org/wp-content/uploads/2014/06/NATO-EU-UN-glossary-on-DCB-and-CP.pdf NATO - EU - UN glossary
- ↑ GUIA DE REFERÊNCIA PARA A SEGURANÇA DAS INFRAESTRUTURAS CRÍTICAS DA INFORMAÇÃO Versão 01 (Nov. 2010)/ Decreto Nº 3.505, de 13 de junho de 2000. Presidência da República, Casa Civil, Subchefia para Assuntos Jurídicos. Institui a Política de Segurança da Informação nos órgãos e entidades da Administração Pública Federal. Brasília, 2000.
- ↑ Cyber Security Explanatory Glossary (2013)
- ↑ Article 2 of the Information Security Act
- ↑ Unpublished working glossary of UP KRITIS and BSI, 2014
- ↑ Jamaica's National Cyber Security Strategy
- ↑ NEN-ISO/IEC-27001 en 27002
- ↑ Cyber Security Strategy for Norway (2012)
- ↑ Nasjonal strategi for informasjonssikkerhet (2012)
- ↑ NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013/NIST SP 800 series
- ↑ ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary
