Difference between revisions of "Security"
Jump to navigation
Jump to search
(→US Definition) |
(→United States) |
||
| Line 11: | Line 11: | ||
==== United States==== | ==== United States==== | ||
{{definition|Security is a condition that results from the establishment and maintenance of protective measures that enable an enterprise to perform its mission or critical functions despite risks posed by threats to its use of information systems. <ref name="NISTIR7298"> [http://nvlpubs.nist.gov/nistpubs/ir/2013/NIST.IR.7298r2.pdf NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013]</ref>}} | {{definition|Security is a condition that results from the establishment and maintenance of protective measures that enable an enterprise to perform its mission or critical functions despite risks posed by threats to its use of information systems. <ref name="NISTIR7298"> [http://nvlpubs.nist.gov/nistpubs/ir/2013/NIST.IR.7298r2.pdf NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013]</ref>}} | ||
| − | Protective measures may involve a combination of deterrence, avoidance, prevention, detection, recovery, and correction that should form part of the enterprise’s [[ | + | Protective measures may involve a combination of deterrence, avoidance, prevention, detection, recovery, and correction that should form part of the enterprise’s [[Risk management]] approach. <br /> |
===Standard Definition=== | ===Standard Definition=== | ||
Revision as of 22:18, 18 April 2015
In some languages the terms "Security" and "Safety" are the same.
Contents
Definitions
European Definitions
2009/72/EC
Security means both security of supply and provision of electricity, and technical safety. [1]
Other International Definitions
National Definitions
United States
Security is a condition that results from the establishment and maintenance of protective measures that enable an enterprise to perform its mission or critical functions despite risks posed by threats to its use of information systems. [2]
Protective measures may involve a combination of deterrence, avoidance, prevention, detection, recovery, and correction that should form part of the enterprise’s Risk management approach.
