T - Cybersecurity Glossary

This page is having a slideshow that uses Javascript. Your browser either doesn't support Javascript or you have it turned off. To see this page as it is meant to appear please use a Javascript enabled browser.Verticalis WordPress Slider Plugin.

Glossary T

The Federal Information Security Management Act (FISMA)

Requires agencies to integrate IT security into their capital planning and enterprise architecture processes at the agency, conduct annual IT security reviews of all programs ...

Threat Analysis

Process of formally evaluating the degree of threat to an information system or enterprise and describing the nature of the threat.See CNSSI 4009-2015 under threat ...

Time bomb

Resident computer program that triggers an unauthorized act at a predefined time.See CNSSI 4009-2015 for more information.

Tabletop Exercise

A discussion-based exercise where personnel with roles and responsibilities in a particular IT plan meet in a classroom setting or in breakout groups to validate ...

TTP

Tactics, Techniques, and Procedures (TTPs)The behavior of an actor. A tactic is the highest-level description of this behavior, while techniques give a more detailed description ...

Technical Controls

The security controls (i.e., safeguards or countermeasures) for an information system that are primarily implemented and executed by the information system through mechanisms contained in ...

Technical Security Controls

Security controls (i.e., safeguards or countermeasures) for an information system that are primarily implemented and executed by the information system through mechanisms contained in the ...

Telecommuting

The ability for an organization’s employees and contractors to conduct work from locations other than the organization’s facilities. See NIST SP 800-114 under Telework for more information.

Telework

See Telecommuting for more information.

Tempest

A name referring to the investigation, study, and control of unintentional compromising emanations from telecommunications and automated information systems equipment. See FIPS 140-2 for more information.

Third-Party Providers

Service providers, integrators, vendors, telecommunications, and infrastructure support that are external to the organization that operates the manufacturing system. See NISTIR 8183 for more information.

Threats

Any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, or individuals through an information ...

Threat Actor

An individual or a group posing a threat. See NIST SP 800-150 under Threat Actor for more information. See threat actor under NIST SP 800-150 for more information.

Threat Intelligence

Threat information that has been aggregated, transformed, analyzed, interpreted, or enriched to provide the necessary context for decision-making processes. See NIST SP 800-150 for more information.

Timestamp

A token or packet of information that is used to provide assurance of timeliness; the timestamp contains timestamped data, including a time, and a signature ...

Token

The means used to confirm the identity of a user, processor, or device (e.g., user password or token). See NIST SP 800-53 Rev. 4 under Authenticator for more ...

Total Risk

The potential for the occurrence of an adverse event if no mitigating action is taken (i.e., the potential for any applicable threat to exploit a ...

Training

The ‘Training’ level of the learning continuum strives to produce relevant and needed security skills and competencies by practitioners of functional specialties other than IT ...

Transmission

The state that exists when information is being electronically sent from one location to one or more other locations.See NIST SP 800-53 Rev. 5 for more ...

Transmission Control Protocol

TCP is one of the main protocols in TCP/IP networks. Whereas the IP protocol deals only with packets, TCP enables two hosts to establish a ...

Transport Layer Security

An authentication and encryption protocol widely implemented in browsers and Web servers. HTTP traffic transmitted using TLS is known as HTTPS. See NISTIR 7711 under Transport Layer ...