Key Owner

A person authorized by an FCKMS service provider or FCKMS service

Information Owner

Official with statutory or operational authority for specified information

Remote Access

Access to an organizational information system by a user (or an information system)

Flash ROM

Non-volatile memory that is writable.
NIST SP 800-101 Rev. 1

Risk Assessment

The process of identifying risks to organizational operations, organizational assets,

Replay Attacks

An attack in which the Attacker is able to replay previously captured messages


The means used to confirm the identity of a user, processor, or device

Threat Intelligence

Threat information that has been aggregated, transformed, analyzed, interpreted


A token or packet of information that is used to provide assurance of timeliness


Updated code from Microsoft that addresses a specific security problem.


The time or phase difference between the data signal and the ideal clock.

Information Leakage

The intentional or unintentional release of information to an untrusted environment.


Individually Identifiable Health Information Information that is a subset of health information

Key Pair

A public key and its corresponding private key; a key pair is used with a public key

Key Rotation

Changing the key, i.e., replacing it by a new key. The places that use the key or keys

Key Recovery

A function in the lifecycle of keying material; mechanisms and processes

Life Cycle

Evolution of a system, product, service, project, or other human-made entity

Key Revocation

A function in the lifecycle of keying material; a process whereby a notice is made


A weighted factor based on a subjective analysis of the probability that a given threat


A type of threat action whereby an unauthorized entity gains access to a system


A protocol defined in IETF RFCs 2440 and 3156 for encrypting messages