Difference between revisions of "Vulnerability"
Jump to navigation
Jump to search
(→European Definitions) |
|||
| Line 2: | Line 2: | ||
=== European Definitions === | === European Definitions === | ||
{{definition|A characteristic of an element of the [[CI]]’s design, implementation, or operation that renders it susceptible to disruption or destruction by a [[threat]] and includes [[dependencies]] on other types of [[infrastructure]]. <ref>[http://eur-lex.europa.eu/LexUriServ/site/en/com%/2006/com2006_0787en01.pdf EC COM(2006) 787 final, Directive of the Council on the identification and designation of European Critical Infrastructure and the assessment of the need to improve their protection, EC, Brussels 12.12.2006.]</ref>}} | {{definition|A characteristic of an element of the [[CI]]’s design, implementation, or operation that renders it susceptible to disruption or destruction by a [[threat]] and includes [[dependencies]] on other types of [[infrastructure]]. <ref>[http://eur-lex.europa.eu/LexUriServ/site/en/com%/2006/com2006_0787en01.pdf EC COM(2006) 787 final, Directive of the Council on the identification and designation of European Critical Infrastructure and the assessment of the need to improve their protection, EC, Brussels 12.12.2006.]</ref>}} | ||
| + | |||
=== Other International Definitions === | === Other International Definitions === | ||
| − | |||
==== UNISDR ==== | ==== UNISDR ==== | ||
{{definition|The characteristics and circumstances of a community, [[system]] or [[asset]] that make it susceptible to the damaging effects of a [[hazard]] <ref> [http://www.unisdr.org/files/7817_UNISDRTerminologyEnglish.pdf 2009 UNISDR Terminology on Disaster Risk Reduction]</ref>. }} | {{definition|The characteristics and circumstances of a community, [[system]] or [[asset]] that make it susceptible to the damaging effects of a [[hazard]] <ref> [http://www.unisdr.org/files/7817_UNISDRTerminologyEnglish.pdf 2009 UNISDR Terminology on Disaster Risk Reduction]</ref>. }} | ||
| Line 11: | Line 11: | ||
Vulnerability varies significantly within a community and over time. This definition identifies vulnerability as a characteristic of the element of interest (community, system or asset) which is independent of its [[exposure]]. However, in common use the word is often used more broadly to include the element’s [[exposure]].</big> | Vulnerability varies significantly within a community and over time. This definition identifies vulnerability as a characteristic of the element of interest (community, system or asset) which is independent of its [[exposure]]. However, in common use the word is often used more broadly to include the element’s [[exposure]].</big> | ||
| + | |||
=== National Definitions === | === National Definitions === | ||
| Line 16: | Line 17: | ||
==== US Definition ==== | ==== US Definition ==== | ||
{{definition|A physical feature or operational attribute that renders an entity open to exploitation or susceptible to a given [[hazard]] <ref> [http://www.dhs.gov/xlibrary/assets/dhs-risk-lexicon-2010.pdf DHS Risk Lexicon 2010 Edition, September 2010]</ref>.}} | {{definition|A physical feature or operational attribute that renders an entity open to exploitation or susceptible to a given [[hazard]] <ref> [http://www.dhs.gov/xlibrary/assets/dhs-risk-lexicon-2010.pdf DHS Risk Lexicon 2010 Edition, September 2010]</ref>.}} | ||
| + | |||
===Standard Definition=== | ===Standard Definition=== | ||
==== ISO/IEC 27000:2014 ==== | ==== ISO/IEC 27000:2014 ==== | ||
{{definition|Weakness of an [[asset]] or [[control]] that can be exploited by one or more [[threat|threats]] <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref>.}} | {{definition|Weakness of an [[asset]] or [[control]] that can be exploited by one or more [[threat|threats]] <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref>.}} | ||
| + | |||
==See also== | ==See also== | ||
Revision as of 15:01, 10 September 2014
Contents
Definitions
European Definitions
A characteristic of an element of the CI’s design, implementation, or operation that renders it susceptible to disruption or destruction by a threat and includes dependencies on other types of infrastructure. [1]
Other International Definitions
UNISDR
The characteristics and circumstances of a community, system or asset that make it susceptible to the damaging effects of a hazard [2].
There are many aspects of vulnerability, arising from various physical, social, economic, and environmental factors. Examples may include poor design and construction of buildings, inadequate protection of assets, lack of public information and awareness, limited official recognition of risks and preparedness measures, and disregard for wise environmental management.
Vulnerability varies significantly within a community and over time. This definition identifies vulnerability as a characteristic of the element of interest (community, system or asset) which is independent of its exposure. However, in common use the word is often used more broadly to include the element’s exposure.
National Definitions
US Definition
A physical feature or operational attribute that renders an entity open to exploitation or susceptible to a given hazard [3].
Standard Definition
ISO/IEC 27000:2014
See also
Notes
- ↑ EC COM(2006) 787 final, Directive of the Council on the identification and designation of European Critical Infrastructure and the assessment of the need to improve their protection, EC, Brussels 12.12.2006.
- ↑ 2009 UNISDR Terminology on Disaster Risk Reduction
- ↑ DHS Risk Lexicon 2010 Edition, September 2010
- ↑ ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary
