Disclosure

Divulging of, or provision of access to, data.

Control

The part of the ICS used to perform the monitoring and control of the physical process.

DH

A method used to securely exchange or establish secret keys across an insecure network.

PIN

A memorized secret typically consisting of only decimal digits.

Exfiltration

The unauthorized transfer of information from an information system.

Forensics

The practice of gathering, retaining, and analyzing computer-related data for investigative purposes

Intranet

A computer network, especially one based on Internet technology

Pseudonym

A name assigned through a formal process by a federal department or agency to a federal employee for the purpose of the employee’s protection

Extranet

A computer network that an organization uses for application data traffic between the organization and its business partners.

Format

Pre-established layout for data.

Cyberspace

A global domain within the information environment consisting of the interdependent network

Normalization

Converting each log data field to a particular data representation and categorizing it consistently.

Log Conversion

Parsing a log in one format and storing its entries in a second format.

PSK

A single secret key used by IPsec endpoints to authenticate endpoints to each other

Interface

In a service-oriented architecture, a specification of the operations that a service offers its clients.

Null

Dummy letter, letter symbol, or code group inserted into an encrypted message to delay or prevent its decryption

Default Classification

Classification reflecting the highest classification being processed in an information system.

Algorithm Identifier

A PIV algorithm identifier is a one-byte identifier that specifies a cryptographic algorithm and key size.

Decryption

The process of transforming ciphertext into plaintext using a cryptographic algorithm and key.

Aggregated Information

Information elements collated on a number of individuals, typically used for the purposes of making comparisons or identifying patterns.

Certificate Status Authority

A trusted entity that provides on-line verification to a Relying Party of a subject certificate’s trustworthiness

Threat Analysis

Process of formally evaluating the degree of threat to an information system or enterprise and describing the nature of the threat.

Evaluation Assurance Level

Set of assurance requirements that represent a point on the Common Criteria predefined assurance scale.

Enclave Boundary

Point at which an enclave’s internal network service layer connects to an external network’s service layer