Security

From CIPedia
Revision as of 18:24, 6 March 2020 by Eluiijf (talk | contribs) (Czech Republic)
Jump to navigation Jump to search

In some languages the terms "Security" and "Safety" are the same.

Definitions

European Definitions

2009/72/EC
Security means both security of supply and provision of electricity, and technical safety. [1]


ENISA

Security comprises all aspects related to defining, achieving, and maintaining data confidentiality, integrity, availability, accountability, authenticity, and reliability (refers to ISO/IEC WD 15443-1). [2]


ENTSOG

Security means both security of supply of natural gas and technical safety. [3]



Other International Definitions

IAEA

Security: The prevention and detection of, and response to, theft, sabotage, unauthorized access, illegal transfer or other malicious acts involving nuclear material, other radioactive substances or their associated facilities. [4]


ITU-T

Security is used in the sense of minimizing the vulnerabilities of assets and resources. [5]


Sécurité: Le terme "sécurité" est utilisé dans le sens d'une minimisation des vulnérabilités d'actifs et de ressources. [6]


Seguridad: El término "seguridad" se emplea en el sentido de reducir al mínimo las vulnerabilidades de los activos y los recursos. [7]


NATO

The measures necessary to achieve protection against espionage, sabotage, subversion and terrorism, as well as against loss or unauthorized disclosure. [8]


National Definitions

Cameroon (Cameroun)

Sécurité: situation dans laquelle quelqu’un, quelque chose n’est exposé à aucun danger. Mécanisme destiné à prévenir un événement dommageable, ou à en limiter les effets. [9]



Czech Republic

Bezpečnost: Vlastnost prvku (např. informační systém), který je na určité úrovni chráněn proti ztrátám, nebo také stav ochrany (na určité úrovni) proti ztrátám. [10]

Security: Property of an element (e.g. an information system) which is at a certain level protected against losses, or also a state of protection (at a certain level) against losses. [11]

Bezpečnost IT zahrnuje ochranu důvěrnosti, integrity a dosažitelnosti při zpracování, úschově, distribuci a prezentaci informací (IT security covers protection of confidentiality, integrity and availability during processing, storage, distribution and presentation of information).

Egypt

Security: A condition that results from the establishment and maintenance of protective measures that ensure a state of inviolability from hostile acts or influences. [12]


Security: With respect to classified matter, the condition that prevents unauthorized persons from having access to official information that is safeguarded in the interests of national security. [12]


Security: Measures taken by a military unit, an activity or installation to protect itself against all acts designed to, or which may, impair its effectiveness. [12]



Finland

Turvallisuus: tila, jossa uhkat ja riskit ovat hallittavissa.

Security is a condition in which the threats and risks are controllable. -unofficial translation- [13]



Germany

Gefahrenabwehr: Unter Gefahrenabwehr versteht man die Gesamtheit der Maßnahmen zur Vermeidung eines Schadens an einem Schutzgut, sowie zur Minimierung eines eingetretenen Schadens. [14]



Haiti

Sécurité: condition dans laquelle, par l’action de l'État, les habitants d'un pays reçoivent la garantie de base de la stabilité et du bien-être nécessaire au développement pacifique et harmonieux de la société. [15]

Dans le monde d'aujourd'hui, cela implique une approche multidimensionnelle et doit envisager des questions d’ordre politique, économique, social, culturel et environnemental, entre autres.

India

Security is the quality or state of being protected from unauthorised access or uncontrolled losses or effects. [16]

Absolute security is impossible to achieve in practice and the quality of a given security system is relative. Within a state-model security system, security is a specific “state" to be preserved under various operations.

Japan

セキュリティ:
(1.) システムを防護するためにとる手段。
(2.) システムを防護するための手段を確立・維持管理に起因するシステムの条件。
(3.) 認可されていないアクセスや認可されていないアクセス、もしくは、偶発的な変更/破壊/損失が無いシステム資源の状態。

(Cyber) security is:
(1.) Measures taken to protect a system.
(2.) The condition of a system that results from the establishment and maintenance of measures to protect the system.
(3.) The condition of system resources being free from unauthorized access and from unauthorized or accidental change, destruction, or loss. [17]



Mexico

Seguridad: Al compartir información por medios digitales, las dependencias y entidades deberán mantener como mínimo, el mismo nivel de garantías y seguridad que se tiene para el intercambio por medios físicos, así como adoptar procesos de ciberseguridad, en términos de lo que establezcan conforme a las disposiciones aplicables las autoridades competentes. [18]



Netherlands

Beveiligen: Onttrekken aan geweld, bedreiging, gevaar of schade door het treffen van maatregelen. [19]



Philippines

Security – A condition that results from the establishment and maintenance of protective measures that enable an enterprise to perform its mission or critical functions despite risks posed by threats to its use of information systems. [20]


Security: The protection of information (digital and hardcopy), assets (physical and intangible) and personnel against internal and external, malicious and accidental threats. [21]

This protection includes detection, prevention and response to threats through the use of security policies, procedures, tools and services.

Poland

Ochrona osób – działania mające na celu zapewnienie bezpieczeństwa życia, zdrowia i nietykalności osobistej [22]

Security - measures to ensure the safety of life, health and physical integrity.


Instytucje bezpieczeństwa: Instytucje odpowiedzialne za ochronę przed szpiegostwem, sabotażem, dywersją i terroryzmem, jakrównież przed utratą lub ujawnieniem tajemnicy. [23]



Slovakia

Bezpečnosť: Stav spoločenského, prírodného, technického, technologického systému alebo iného systému, ktorý v konkrétnych vnútorných a vonkajších podmienkach umožňuje plnenie určených funkcií a ich rozvoj v záujme človeka a spoločnosti. [24]



Sri Lanka

Security: The protection of valuable assets stored on computer systems or transmitted via computer networks. [25]



United States

NIST
Security is a condition that results from the establishment and maintenance of protective measures that enable an enterprise to perform its mission or critical functions despite risks posed by threats to its use of information systems. [26]

Protective measures may involve a combination of deterrence, avoidance, prevention, detection, recovery, and correction that should form part of the enterprise’s Risk Management approach.

Security is a system property. (from: NIST SP 800-27 Rev A) [27]

Security is much more than a set of functions and mechanisms. IT security is a system characteristic as well as a set of mechanisms that span the system both logically and physically.


Information security is: Protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide (A) integrity, which means guarding against improper information modification or destruction, and includes ensuring information non-repudiation and authenticity; (B) confidentiality, which means preserving authorized restrictions on access and disclosure, including means for protecting personal privacy and proprietary information; and (C) availability, which means ensuring timely and reliable access to and use of information. (from: NIST SP 800-66 Rev 1) [27]

Security is much more than a set of functions and mechanisms. IT security is a system characteristic as well as a set of mechanisms that span the system both logically and physically.


DoD
Security:
1. Measures taken by a military unit, activity, or installation to protect itself against all acts designed to, or which may, impair its effectiveness. (JP 3-10)
2. A condition that results from the establishment and maintenance of protective measures that ensure a state of inviolability from hostile acts or influences. (JP 3-10)
3. With respect to classified matter, the condition that prevents unauthorized persons from having access to official information that is safeguarded in the interests of national security. [28]



Venezuela

Seguridad: Condición que resulta del establecimiento y mantenimiento de medidas de protección que garanticen un estado de inviolabilidad de influencias o de actos hostiles específicos que puedan propiciar el acceso a la data de personas no autorizadas o que afecten la operatividad de las funciones de un sistema de computación. [29]



Standard Definition

IETF

(1) A system condition that results from the establishment and maintenance of measures to protect the system.
(2) A system condition in which system resources are free from unauthorized access and from unauthorized or accidental change, destruction, or loss.
(3) Measures taken to protect a system. [30]


Discussion

See also

Notes

  1. ENTSO-E Glossary of Terms
  2. ENISA Risk Glossary
  3. ENTSOG Glossary of Terms
  4. IAEA Nuclear Energy Series No. NP-T-3.12
  5. ITU Security in Telecommunications and Information Technology: An overview of issues and the deployment of existing ITU-T Recommendations for secure telecommunications, ITU-T, Geneva (2012) - ITU-T X-800.
  6. Sécurité dans les télécommunications et les technologies de l’information: Aperçu des problèmes et présentation des Recommandations UIT-T existantes sur la sécurité dans les télécommunications, ITU-T, Geneva (2012) - ITU-T X.800.
  7. Seguridad de las telecomunicaciones y las tecnologías de la información: Exposición general de asuntos relacionados con la seguridad de las telecomunicaciones y la aplicación de las Recomendaciones vigentes del UIT-T, ITU-T, Geneva (2012) - ITU-T X.800.
  8. [http://nso.nato.int/nso/zPublic/ap/aap6/AAP-6.pdf NATO Glossary AAP-06(2014)
  9. LOI N°2010/012 DU 21 DECEMBRE 2010 RELATIVE A LA CYBERSECURITE ET LA CYBERCRIMINALITE AU CAMEROUN
  10. http://www.govcert.cz/download/nodeid-561 Výkladový slovník kybernetické bezpečnosti (2013)
  11. http://www.govcert.cz/download/nodeid-561 Výkladový slovník kybernetické bezpečnosti (2013)
  12. 12.0 12.1 12.2 Glossary of the National Telecom Authority (NTA), Egypt
  13. Vocabulary of Comprehensive Security. Helsinki (TSK 47) (2014)
  14. Glossar, Das Bundesamt für Bevölkerungsschutz und Katastrophenhilfe (BBK)
  15. [http://[www.md.gouv.ht/Livre_Blanc.pdf LIVRE BLANC SUR LA SÉCURITÉ ET LA DÉFENSE NATIONALE POUR LE DÉVELOPPEMENT ÉCONOMIQUE ET SOCIAL DURABLE D’HAÏTI, Juin 2015]
  16. India's DGQA Cyber Security Policy (2015)
  17. http://www.ipa.go.jp/security/rfc/RFC2828EN.html RFC2828 (Japanese translation)
  18. Glosario - El portal único del gobierno. | gob.mx, Mexico
  19. Handreiking Cybercrime (2012)
  20. DND GLOSSARY OF CYBER SECURITY TERMS (v.4)
  21. NHS Cyber security glossary
  22. Dz.U. 1997 Nr 114 poz. 740 USTAWA z dnia 22 sierpnia 1997 r. o ochronie osób i mienia, Poland
  23. AAP-6 SŁOWNIK TERMINÓW I DEFINICJI NATO
  24. BEZPEČNOSTNÁ RADA SLOVENSKEJ REPUBLIKY
  25. National Centre for Cyber Security, Information Security Policy Domains #19: Glossary
  26. NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013
  27. 27.0 27.1 NIST Glossary
  28. Joint Publication 1-02: Department of Defense Dictionary of Military and Associated Terms (2016)
  29. Glosario Informática Forense Venezuela
  30. IETF RFC449 Internet Security Glossary 2