Difference between revisions of "Information Security"
Jump to navigation
Jump to search
(→United Nations) |
(→Netherlands) |
||
| Line 54: | Line 54: | ||
{{definition|Information security is taking and maintaining a coherent set of [[Measure|measures]] to guarantee the [[availability]], [[integrity]] and [[confidentiality]] of information.<br/><br/>Het treffen en onderhouden van een samenhangend pakket aan maatregelen om de beschikbaarheid, integriteit en vertrouwelijkheid te borgen. <ref>[http://www.pblq.nl/media/63123/HEC%20Zakboekje%20preventie%20cybercrime.pdf Zakboekje Preventie Cybercrime (2008]</ref>}}<br /> | {{definition|Information security is taking and maintaining a coherent set of [[Measure|measures]] to guarantee the [[availability]], [[integrity]] and [[confidentiality]] of information.<br/><br/>Het treffen en onderhouden van een samenhangend pakket aan maatregelen om de beschikbaarheid, integriteit en vertrouwelijkheid te borgen. <ref>[http://www.pblq.nl/media/63123/HEC%20Zakboekje%20preventie%20cybercrime.pdf Zakboekje Preventie Cybercrime (2008]</ref>}}<br /> | ||
| + | {{definition|Informatiebeveiliging is het proces van vaststellen van de vereiste kwaliteit van informatie(systemen) in termen van [[Confidentiality|vertrouwelijkheid]], [[Availability|beschikbaarheid]], [[Integrity|integriteit]], [[Non-repudiation|onweerlegbaarheid]] en controleerbaarheid alsook het treffen, onderhouden en controleren van een samenhangend packet van bijbehorende (fysieke, organisatorische en logische) beveiligingsmaatregelen. <ref>[https://www.ncsc.nl/actueel/Cybersecuritybeeld+Nederland/cybersecuritybeeld-nederland-2016.html Cybersecuritybeeld Nederland 2016]</ref>}}<br /> | ||
==== [[Norway]] ==== | ==== [[Norway]] ==== | ||
Revision as of 14:27, 28 September 2016
Contents
Definitions
European Definitions
The protection of information against unauthorised disclosure, transfer, modification or destruction, whether accidental or intentional. [1]
Other International Definitions
NATO
The protection of information against unauthorised disclosure, transfer, modification or destruction, whether accidental or intentional (INFOSEC). [2]
United Nations
Information security is the protection of information systems against unauthorized access to or modification of information, whether in storage, processing or transit, and against the denial of service to authorized users or the provision of service to unauthorized users, including those measures necessary to detect, document, and counter such threats. [3]
National Definitions
Austria
Information security or network security are umbrella terms for ICT security, referring to the entire relevant information of an organisation or an enterprise, including information that has not been processed electronically. Hence, it describes the entirety of characteristics of an organisation ensuring the confidentiality, availability and integrity of information. [4]
Informationssicherheit / Netzwerksicherheit ist ein Überbegriff zu IKT-Sicherheit und bezieht sich auf alle relevanten Informationen einer Organisation oder eines Unternehmens einschließlich von nicht elektronisch verarbeiteten Informationen. Es bezeichnet somit die Summe der Eigenschaften einer Organisation, die dem Schutz der Vertraulichkeit, Verfügbarkeit und Integrität der Informationen dienen. [5]
Informationssicherheit / Netzwerksicherheit ist ein Überbegriff zu IKT-Sicherheit und bezieht sich auf alle relevanten Informationen einer Organisation oder eines Unternehmens einschließlich von nicht elektronisch verarbeiteten Informationen. Es bezeichnet somit die Summe der Eigenschaften einer Organisation, die dem Schutz der Vertraulichkeit, Verfügbarkeit und Integrität der Informationen dienen. [5]
Information may be available as spoken text, paper documents or other directly readable media or as electronically processed data in ICT systems.
Brazil
Segurança da Informação: proteção dos sistemas de informação contra a negação de serviço a usuários autorizados, assim como contra a intrusão, e a modificação desautorizada de dados ou informações, armazenados, em processamento ou em trânsito, abrangendo, inclusive, a segurança dos recursos humanos, da documentação e do material, das áreas e instalações das comunicações e computacional, assim como as destinadas a prevenir, detectar, deter e documentar eventuais ameaças a seu desenvolvimento. [6]
Information Security is the protection of information systems against denial of service to authorised users, as well as against intrusion and unauthorised modification of data or information stored in processing or in transit, covering even the safety of human resources, documentation and material, of the areas and facilities of communications and computing, as well as to prevent, detect, deter and document any threats to its development.
Information Security is the protection of information systems against denial of service to authorised users, as well as against intrusion and unauthorised modification of data or information stored in processing or in transit, covering even the safety of human resources, documentation and material, of the areas and facilities of communications and computing, as well as to prevent, detect, deter and document any threats to its development.
Croatia
Informacijska sigurnost – stanje povjerljivosti, cjelovitosti i raspoloživosti podataka koje se postiže primjenom odgovarajućih sigurnosnih mjera.
Information security is the state of confidentiality, integrity and availability of information, which is achieved by implementation of stipulated information security measures and standards and by organisational support for jobs of planning, implementation, assessment and update of measures and standards. [7] [8]
Information security is the state of confidentiality, integrity and availability of information, which is achieved by implementation of stipulated information security measures and standards and by organisational support for jobs of planning, implementation, assessment and update of measures and standards. [7] [8]
Czech Republic
Bezpečností informací zajištění důvěrnosti, integrity a dostupnosti informací. [9]
Security (protection) of confidentiality, integrity and availability of information. [10]
Security (protection) of confidentiality, integrity and availability of information. [10]
Denmark
Informationssikkerhed er en bred betegnelse for de samlede for - anstaltninger til at sikre informationer i forhold til fortrolighed, integritet (ændring af data) og tilgængelighed. I arbejdet indgår blandt andet organisering af sikkerhedsarbejdet, påvirkning af adfærd, processer for behandling af data, styring af leverandører samt tekniske sikringsforanstaltninger. . [11]
Finland
Tietoturva, tietoturvallisuus: järjestelyt, joilla pyritään varmistamaan tiedon saatavuus, eheys ja luottamuksellisuus.
Information Security are arrangements aiming at ensuring the availability, integrity and confidentiality of information. -unofficial translation- [12]
Information Security are arrangements aiming at ensuring the availability, integrity and confidentiality of information. -unofficial translation- [12]
France
Information systems security: All technical and non-technical protective measures enabling an information system to withstand events likely to compromise the availability, integrity or confidentiality of stored, processed or transmitted data and of the related services that these systems offer or make accessible. [13]
Sécurité des systèmes d’information: Ensemble des mesures techniques et non techniques de protection permettant à un système d’information de résister à des événements susceptibles de compromettre la disponibilité, l’intégrité ou la confidentialité des données stockées, traitées ou transmises et des services connexes que ces systèmes offrent ou qu’ils rendent accessibles. [14]
Sécurité des systèmes d’information: Ensemble des mesures techniques et non techniques de protection permettant à un système d’information de résister à des événements susceptibles de compromettre la disponibilité, l’intégrité ou la confidentialité des données stockées, traitées ou transmises et des services connexes que ces systèmes offrent ou qu’ils rendent accessibles. [14]
Germany
IT security is the condition in which availability, integrity and confidentiality of information and Information Technology are ensured by appropriate safeguards. [15]
Georgia
ინფორმაციული უსაფრთხოება – საქმიანობა, რომელიც იცავს ინფორმაციას და ინფორმაციულ სისტემებს მისაწვდომობის, ერთიანობის, აუთენტიფიკაციის, კონფიდენციალურობის და განგრძობადი მუშაობის უზრუნველყოფით. [16]
Information security - an activity that protects information and information systems' access, integrity, authentication, confidentiality, and the continuing of work.
(raw translation - CIPedia looks for a proper translation in English)
Information security - an activity that protects information and information systems' access, integrity, authentication, confidentiality, and the continuing of work.
(raw translation - CIPedia looks for a proper translation in English)
Jamaica
Information security is the protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction. [17]
Note: The terms information security, computer security and information assurance are understood for these purposes as being interchangeable.
Montenegro
Informaciona bezbjednost podrazumijeva stanje povjerljivosti, cjelovitosti i dostupnosti podataka. Informaciona bezbjednost se fokusira na podatke bez obzira na njihovu formu: elektronski, štampani ili drugi oblici podataka. [18]
Information security means the condition of confidentiality, integrity and availability of data. Information security focuses on data, regardless of their form: electronic, print or other forms of data.
Information security means the condition of confidentiality, integrity and availability of data. Information security focuses on data, regardless of their form: electronic, print or other forms of data.
Netherlands
Informatiebeveiliging is het behouden van de vertrouwelijkheid, integriteit en beschikbaarheid van informatie. [19]
- Integriteit is de eigenschap dat de nauwkeurigheid en volledigheid van bedrijfsmiddelen wordt beveiligd.
- Vertrouwelijkheid is de eigenschap dat informatie niet beschikbaar wordt gesteld of wordt ontsloten aan onbevoegde personen, entiteiten of processen.
- Beschikbaarheid is het kenmerk dat iets toegankelijk en bruikbaar is op verzoek van een bevoegde entiteit.
Information security is taking and maintaining a coherent set of measures to guarantee the availability, integrity and confidentiality of information.
Het treffen en onderhouden van een samenhangend pakket aan maatregelen om de beschikbaarheid, integriteit en vertrouwelijkheid te borgen. [20]
Het treffen en onderhouden van een samenhangend pakket aan maatregelen om de beschikbaarheid, integriteit en vertrouwelijkheid te borgen. [20]
Informatiebeveiliging is het proces van vaststellen van de vereiste kwaliteit van informatie(systemen) in termen van vertrouwelijkheid, beschikbaarheid, integriteit, onweerlegbaarheid en controleerbaarheid alsook het treffen, onderhouden en controleren van een samenhangend packet van bijbehorende (fysieke, organisatorische en logische) beveiligingsmaatregelen. [21]
Norway
IKT-sikkerhet: Hvordan elektroniske nettverk og systemer som behandler data eller kommuniserer med hverandre, og som virksomhetene er avhengig av for å fungere effektivt, skal beskyttes. [22]
ICT security is how business-critical electronic networks and systems that process data or communicate with each other are protected. [23]
ICT security is how business-critical electronic networks and systems that process data or communicate with each other are protected. [23]
Russian Federation
информационная безопасность – состояние защищенности личности, организации и государства и их интересов от угроз, деструктивных и иных негативных воздействий в информационном пространстве [24]
Information security (raw translation): the state of protection of the individual, the organization and the state and their interests from threats, destructive and other negative impacts in the information space.
Information security (raw translation): the state of protection of the individual, the organization and the state and their interests from threats, destructive and other negative impacts in the information space.
Uganda
Information security is the protection information and information systems from unauthorized access, use, disclosure, disruption, modification or destruction. [25]
United States
NIST
The protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide confidentiality, integrity, and availability. [26]
An embedded, integral part of the enterprise architecture that describes the structure and behavior for an enterprise’s security processes, information security systems, personnel and organizational subunits, showing their alignment with the enterprise’s mission and strategic plans. [27]
Uruguay
Seguridad informática: Conjunto de medidas preventivas y reactivas que tienen como objetivo mantener la confidencialidad, disponibilidad e integridad de la información soportada en medios informáticos. [28]
Standard Definition
ISO/IEC 27000:2014
Preservation of confidentiality, integrity and availability of information. [29]. In addition, other properties, such as authenticity, accountability, non-repudiation, and reliability can also be involved.
Notes
- ↑ NATO - EU - UN glossary
- ↑ NATO - EU - UN glossary
- ↑ NATO - EU - UN glossary
- ↑ Austrian Cyber Security Strategy, Federal Chancellery of the Republic of Austria, Vienna (2013)
- ↑ Österreichische Strategie für Cyber Sicherheit (2013)
- ↑ GUIA DE REFERÊNCIA PARA A SEGURANÇA DAS INFRAESTRUTURAS CRÍTICAS DA INFORMAÇÃO Versão 01 (Nov. 2010)/ Decreto Nº 3.505, de 13 de junho de 2000. Presidência da República, Casa Civil, Subchefia para Assuntos Jurídicos. Institui a Política de Segurança da Informação nos órgãos e entidades da Administração Pública Federal. Brasília, 2000.
- ↑ Article 2 of the Information Security Act
- ↑ National Cyber Security Strategy draft (2015)
- ↑ Zákon č. 181/2014 Sb. o kybernetické bezpečnosti a o změně souvisejících zákonů (zákon o kybernetické bezpečnosti)
- ↑ Cyber Security Explanatory Glossary (2013)
- ↑ Danish Cyber Security Strategy, 2014
- ↑ Vocabulary of Comprehensive Security. Helsinki (TSK 47) (2014)
- ↑ Information systems defence and security: France's Strategy
- ↑ La Stratégie de la France en matière de défense et de sécurité des systèmes d’information (2011)
- ↑ Unpublished working glossary of UP KRITIS and BSI, 2014
- ↑ cyber_security_politics.docx (2012)
- ↑ Jamaica's National Cyber Security Strategy
- ↑ Strategija o bezbjednosti 2013-2017 (2012)
- ↑ NEN-ISO/IEC-27001 en 27002
- ↑ Zakboekje Preventie Cybercrime (2008
- ↑ Cybersecuritybeeld Nederland 2016
- ↑ Nasjonal strategi for informasjonssikkerhet (2012)
- ↑ Cyber Security Strategy for Norway (2012)
- ↑ КОНЦЕПЦИЯ СТРАТЕГИИ КИБЕРБЕЗОПАСНОСТИ РОССИЙСКОЙ ФЕДЕРАЦИИ (Draft Cyber Security Strategy 2016)
- ↑ National Information Security Policy (2011)
- ↑ NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013/NIST SP 800 series
- ↑ NIST Special Publication 800-53 Rev 4: Security and Privacy Controls for Federal Information Systems and Organizations (April 2013)
- ↑ Glossary CERTuy
- ↑ ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary
