A user account with full privileges on a computer. See NIST SP 800-69
A standard that defines the way in which Internet communications
facilitates the adjudication of different interconnected system security policies
Accepting, avoiding, mitigating, sharing, or transferring risk to organizational operations
Performs packet sniffing and network traffic analysis
Layer of the TCP/IP protocol stack that is responsible for routing packets
Bitwise logical “exclusive-or”, where 0⊕ 0 = 0, 0⊕ 1 = 1, 1⊕ 0 = 1, and 1⊕ 1 = 0.
Grounds for belief or disbelief; data on which to base proof or to establish truth or falsehood.
Risk Management Framework A structured approach used to oversee and manage risk
Cipher-based Message Authentication Code
The process of managing risks to organizational operations organizational assets
The level of risk an entity is willing to assume in order to achieve a potential desired
Prioritizing, evaluating, and implementing the appropriate risk-reducing controls
A family of functions and their inverses that is parameterized by cryptographic keys
A general term referring to the actions taken to render data written on media unrecoverable
Any telecommunications or information system that is defined as a national security
Software programs or parts of programs obtained from remote systems
Studying log entries to identify events of interest or suppress log entries
For the purposes of this Recommendation, a value in a set that has an equal probability
A record of the events occurring within an organization’s systems and networks.
Removing all entries from a log that precede a certain date and time.
Consists of the information passed down from the previous layer.
Access control based on user roles (i.e., a collection of access authorizations a user
To write data on a medium, such as a magnetic tape, magnetic disk, or optical disk.
Devices, such as virtual private network gateways and modem servers
An authentication and accounting system used to control access to an ISP.
The consolidation of similar log entries into a single entry containing a count of the number