Studying log entries to identify events of interest or suppress log entries
For the purposes of this Recommendation, a value in a set that has an equal probability
A record of the events occurring within an organization’s systems and networks.
Removing all entries from a log that precede a certain date and time.
Consists of the information passed down from the previous layer.
Access control based on user roles (i.e., a collection of access authorizations a user
To write data on a medium, such as a magnetic tape, magnetic disk, or optical disk.
Devices, such as virtual private network gateways and modem servers
An authentication and accounting system used to control access to an ISP.
The consolidation of similar log entries into a single entry containing a count of the number
Business Continuity Plan. The documentation of a predetermined set of instructions
A hardware address that uniquely identifies each component of an IEEE 802-based
The result of applying a cryptographic hash function to data (e.g., a message).
A computer program that can run independently, can propagate a complete working
Any device that can connect to an ICS network via radio or infrared waves
Finding relationships between two or more log entries. See NIST SP 800-92
The process of discovering active and responding hosts on a network
A code computed from data and comprised of redundant bits of information
Process intended to render magnetically stored information irretrievable by normal means.
A person authorized by an FCKMS service provider or FCKMS service
A weighted factor based on a subjective analysis of the probability that a given threat
Official with statutory or operational authority for specified information
Access to an organizational information system by a user (or an information system)
Non-volatile memory that is writable.
NIST SP 800-101 Rev. 1
The process of identifying risks to organizational operations, organizational assets,
An attack in which the Attacker is able to replay previously captured messages
An authentication and encryption protocol widely implemented in browsers