Passive information system-related entity (e.g., devices, files, records, tables, processes, programs, domains) containing or receiving information. Access to an object (by a subject) implies access to the information it contains.
See NIST SP 800-53 Rev. 4 under Object for more information.
A passive entity that contains or receives information. Note that access to an object potentially implies access to the information it contains.
See NIST SP 800-33 for more information.
Assessment objects identify the specific items being assessed, and as such, can have one or more security defects. Assessment objects include specifications, mechanisms, activities, and individuals which in turn may include, but are not limited to, devices, software products, software executables, credentials, accounts, account-privileges, things to which privileges are granted (including data and physical facilities), etc. See SP 800-53A.
See NISTIR 8011 Vol. 1 under Object, Assessment for more information.
The set of passive entities within the system, protected from unauthorized use.
See NISTIR 6192 under Object for more information.
A passive entity that contains or receives information.
See NISTIR 7316 under Object for more information.