"Limiting access to information system resources only to authorized users, programs, processes, or other systems."
NSTISSI 4009
Access Control List (ACL)
Mechanism implementing discretionary and/or mandatory access control between subjects and objects.
NSTISSI 4009
Access Control Mechanism
Security safegard designed to detect and deny unauthorized access and permit authorized access in an IS.
NSTISSI 4009
Access Control Officer (ACO)
Designated individual responsible for limiting access to information systems resources.
NSTISSI 4009
Access Level
"Hierarchical portion of the security level used to identify the sensitivity of IS data and the clearance or authorization of users. Access level, in conjunction with the non-hierarchical categories, forms the sensitivity label of an object. See category."
NSTISSI 4009
Access List
"(IS) Compilation of users, programs, or processes and the access levels and types to which each is authorized. (COMSEC)-Roster of persons authorized admittance to a controlled area."
NSTISSI 4009
Access Period
"Segment of time, generally expressed in days or weeks, during which access rights prevail."
NSTISSI 4009
Access Profile
Associates each user with a list of protected objects the user may access.
NSTISSI 4009
Access Type
"Privilege to perform action on an object. Read, write, execute, append, modify, delete, and create are examples of access types."
NSTISSI 4009
Accessible Space
"Area within which the user is aware of all persons entering and leaving. This area denies the opportunity for concealed TEMPEST surveillance, and delineates the closest point of potential TEMPEST intercept from a vehicle. Preferred term: inspectable space."
NSTISSI 4009
Accountability
"(IS) Process allowing auditing of IS activities to be traced to a source that may then be held responsible. (COMSEC) Principle that an individual is entrusted to safeguard and control equipment, keying material, and information and is answerable to proper authority for the loss or misuse of that equipment or information."
NSTISSI 4009
Accounting Legend Code (ALC)
Numeric code used to indicate the minimum accounting controls required for items of accountable COMSEC material within the COMSEC Material Control System.
NSTISSI 4009
Accounting Number
Number assigned to an item of COMSEC material to facilitate its control.
NSTISSI 4009
Accreditation
Formal declaration by a Designated Approving Authority (DAA) that an IS is approved to operate in a particular security mode using a prescribed set of safeguards at an acceptable level of risk.
NSTISSI 4009
Accreditation Package
Product comprised of a System Security Plan (SSP) and a report documenting the basis for the accreditation decision.
NSTISSI 4009
Accrediting Authority
Synonymous with Designated Approving Authority.
NSTISSI 4009
ACL
Access Control List
ACRONYMS
ACO
Access Control Officer
ACRONYMS
Add-on-Security
"Incorporation of new hardware, software, or firmware safeguards in an operational IS."
NSTISSI 4009
Address Spoofing
"Type of attack in which the attacker steals a legitimate network address of a system and uses it to impersonate the system that owns the address. Impersonating, masquerading, mimicking, and piggybacking are forms of spoofing."
NSTISSI 4009
ADM
Advanced Development Model
ACRONYMS
ADP
Advanced Data Processing
ACRONYMS
ADPS
Automatic Data Processing System
ACRONYMS
Adversary
Person or organization that must be denied access to information.
NSTISSI 4009
Advisory
"Assessment of significant new trends or developments regarding the threat to the IS of an organization. This assessment may include analytical insights into trends, intentions, technologies, or tactics of an adversary targeting ISs."
NSTISSI 4009
AE
Application Entity
ACRONYMS
AFIWC
Air Force Information Warfare Center
ACRONYMS
AIG
Address Indicator Group
ACRONYMS
AIN
Advanced Intelligence Network
ACRONYMS
AIRK
Area Interswitch Rekeying Key
ACRONYMS
AIS
Automated Information System
ACRONYMS
AISS
Automated Information Systems Security
ACRONYMS
AJ
Anti-Jamming
ACRONYMS
AK
Automatic Remote Rekeying
ACRONYMS
AKD/RCU
Automatic Key Distribution/Rekeying Control Unit
ACRONYMS
AKDC
Automatic Key Distribution Center
ACRONYMS
AKMC
Automated Key Management Center
ACRONYMS
AKMS
Automated Key Management System
ACRONYMS
ALC
Accounting Legend Code
ACRONYMS
Alert
Notification of a specific attack directed at the IS of an organization.
NSTISSI 4009
Alternate COMSEC Custodian
Person designated by proper authority to perform the duties of the COMSEC custodian during the temporary absence of the COMSEC custodian.
NSTISSI 4009
AMS
1. Auto-Manual System 2. Autonomous Message Switch
ACRONYMS
ANDVT
Advanced Narrowband Digital Voice Terminal
ACRONYMS
ANSI
American National Standards Institute
ACRONYMS
Anti-jam
Measures ensuring that transmitted information can be received despite deliberate jamming attempts.
NSTISSI 4009
Anti-spoof
Measures preventing an opponent's participation in an IS.
NSTISSI 4009
AOR
area of responsibility
IO Fundamentals
AOSS
Automated Office Support Systems
ACRONYMS
APC
Adaptive Predictive Coding
ACRONYMS
APL
Approved Product List
ACRONYMS
APU
Auxiliary Power Unit
ACRONYMS
ARPANET
Advanced Research Projects Agency Network
ACRONYMS
ASCII
American Standard Code for Information Interchange
ACRONYMS
ASD (C3I)
"Assistant Secretary of Defense for Command, Control, Communications and Intelligence"
ACRONYMS
ASPJ
Advanced Self-Protection Jammer
ACRONYMS
Assembly
"Group of parts, elements, subassemblies, or circuits that are removable items of COMSEC equipment."
NSTISSI 4009
ASSIST
Automated Information System Security Incident Support Team
NSTISSI 4009
Assurance
See information assurance
NSTISSI 4009
ASU
Approval for Service Use
ACRONYMS
ATM
Asynchronous Transfer Mode
ACRONYMS
Attack
"Intentional act of attempting to bypass one or more of the following security controls of an IS: nonrepudiation, authentication, integrity, availability, or confidentiality."
NSTISSI 4009
Attention Character
"In Trusted Computing Base (TCB) design, a character entered from a terminal that tells the TCB the user wants a secure communications path from the terminal to some trusted code to provide a secure service for the user."
NSTISSI 4009
Audit
"Independent review and examination of records and activities to assess the adequacy of system controls, to ensure compliance with established policies and operational procedures, and to recommend necessary changes in controls, policies, or procedures."
NSTISSI 4009
Audit Trail
"Chronological record of system activites to enable the reconstruction and examination of the sequence of events and/or changes in an event. Audit trail may apply to information in an IS, to message routing in a communications system, or to the transfer of COMSEC material."
NSTISSI 4009
Authenticate
"To verify the identity of a user, user device, or other entity, or the integrity of data stored, transmitted, or otherwise exposed to unauthorized modification in an IS, or to establish the validity of a transmission."
NSTISSI 4009
Authentication
"Security measure designed to establish the validity of a transmission, message, or originator, or a means of verifying an individual's authorization to receive specific categories of information."
NSTISSI 4009
Authentication System
Cryptosystem or process used for authentication.
NSTISSI 4009
Authenticator
"Means used to confirm the identity of a station, originator, or individual."
NSTISSI 4009
Authorization
"Access privileges granted to a user, program, or process."
NSTISSI 4009
Authorized Vendor
Manufacturer of INFOSEC equipment authorized to produce quantities in excess of contractual requirements for direct sale to eligible buyers. Eligible buyers are typically U.S. Government organiztions or U.S. Government contractors.
NSTISSI 4009
Authorized Vendor Program
"Program in which a vendor, producing an INFOSEC product under contract to the National Security Agency, is authorized to produce that product in numbers exceeding the contracted requirements for direct marketing and sale to eligible buyers. Eligible buyers are typically U.S. Government organizations or U.S. Government contractors. Products approved for marketing and sale through the Authorized Vendor Program are placed on the Endorsed Cryptographic Products List."
NSTISSI 4009
AUTODIN
Automatic Digital Network
ACRONYMS
Auto-Manual-System
"Programmable, hand-held crypto-equipment used to perform encoding and decoding functions."
NSTISSI 4009
Automated Information Systems
See Information System.
NSTISSI 4009
Automated Information Systems Security
See information systems security.
NSTISSI 4009
Automated Remote Rekeying
Procedure to rekey distant crypto-equipment electronically without specific actions by the receiving terminal operator.
NSTISSI 4009
Automated Security Monitoring
Use of automated procedures to ensure controls are not circumvented or the use of these tools to track actions taken by subjects suspected of misusing the IS.
NSTISSI 4009
AV
Auxiliary Vector
ACRONYMS
Availability
"Timely, reliable access to data and information services for authorized users."
NSTISSI 4009
AVP
Authorized Vendor Program
ACRONYMS
Back Door
Synonymous with trap door.
NSTISSI 4009
Backup
"Copy of files and programs made to facilitate recovery, if necessary."
NSTISSI 4009
Banner
Display on an IS that sets parameters for system or data use.
NSTISSI 4009
Bell-La Padula Security Model
Format-state transition model of a computer security policy that describes a formal set of access controls based on information sensitivity and subject authorizations. See star (*) property and simple security property.
NSTISSI 4009
Benign
Condition of cryptographic data that cannot be compromised by human access.
NSTISSI 4009
Benign Environment
"Nonhostile environment that may be protected from external hostile elements by physical, personnel, and procedural security countermeasures."
NSTISSI 4009
Beyond A1
Level of trust defined by the DoD Trusted Computer System Evaluation Criteria to be beyond the state-of-the-art technology. It includes all the A1-level features plus additional ones not required at the A1-level.
NSTISSI 4009
Binding
Process of associating a specific communications terminal with a specific cryptographic key or associating two related elements of information.
NSTISSI 4009
Biometrics
Automated methods of authenticating or verifying an individual based upon a physical or behavioral characteristic.
NSTISSI 4009
Bit Error Rate
Ratio between the number of bits incorrectly received and the total number of bits transmitted in a telecommunications system.
NSTISSI 4009
BLACK
"Designation applied to information systems, and to associated areas, circuits, components, and equipment, in which national security information is not processed."
NSTISSI 4009
Boundary
"Software, hardware, or physical barrier that limits access to a system or part of a system."
NSTISSI 4009
Brevity List
List containing words and phrases used to shorten messages.
NSTISSI 4009
Browsing
"Act of searching through IS storage to locate or acquire information, without necessarily knowing the existence or format of information being sought."
NSTISSI 4009
Bulk Encryption
Simultaneous encrytption of all channels of a multichannel telecommunications link.
NSTISSI 4009
C&A
Certification and Accreditation
ACRONYMS
C2
command and control
IO Fundamentals
C2W
command and control warfare
IO Fundamentals
C4
"Command, Control, Communications and Computers"
ACRONYMS
CA
Certification Authority
ACRONYMS
CA
civil affairs
IO Fundamentals
Call Back
"Procedure for identifying and authenticating a remote IS terminal, whereby the host system disconnects the terminal and re-establishes contact. Synonymous with dial back."
NSTISSI 4009
Call Sign Cipher
"Cryptosystem used to encipher/decipher call signs, address groups, and address indicating groups."
NSTISSI 4009
Canister
Type of protective package used to contain and dispense key in punched or printed tape form.
NSTISSI 4009
Capability
"Protected identifier that both identifies the object and specifies the access rights to be allowed to the subject who possesses the capability. In a capability-based system, access to protected objects such as files is granted if the would-be subject possesses a capability for the object."
NSTISSI 4009
Cascading
Downward flow of information through a range of security levels greater than the accreditation range of a system network or component.
NSTISSI 4009
Category
Restrictive label applied to classified or unclassified information to limit access.
NSTISSI 4009
CCB
Configuration Control Board
ACRONYMS
CCEP
Commercial COMSEC Endorsement Program
ACRONYMS
CCI
Controlled Cryptographic Item
ACRONYMS
CCI Assembly
"Device embodying a cryptographic logic or other COMSEC design that NSA has approved as a Controlled Cryptographic Item (CCI). It performs the entire COMSEC function, but depends upon the host equipment to operate."
NSTISSI 4009
CCI Component
"Part of a Controlled Cryptographic Item (CCI) that does not perform the entire COMSEC function but depends upon the host equipment, or assembly, to complete and operate the COMSEC function."
NSTISSI 4009
CCI Equipment
Telecommunications or information handling equipment that embodies a Controlled Cryptographic Item (CCI) component or CCI assembly and performs the entire COMSEC function without dependence on host equipment to operate.
NSTISSI 4009
CCO
Circuit Control Officer
ACRONYMS
CDR
Critical Design Review
ACRONYMS
CDRL
Contract Data Requirements List
ACRONYMS
CDS
Cryptographic Device Services
ACRONYMS
Central Office of Record (COR)
Office of a federal department or agency that keeps records of accountable COMSEC material held by elements subject to its oversight.
NSTISSI 4009
CEOI
Communications Electronics Operating Instruction
ACRONYMS
CEPR
Compromising Emanation Performance Requirement
ACRONYMS
CER
1. Cryptographic Equipment Room 2. Communication Equipment Room
ACRONYMS
CERT
Computer Emergency Response Team
ACRONYMS
Certificate
Record holding security information about an IS user and vouches to the truth and accuracy of the information it contains.
NSTISSI 4009
Certificate Management
"Process whereby certificates (as defined above) are generated, stored, protected, transferred, loaded, used, and destroyed."
NSTISSI 4009
Certificate of Action Statement
Statement attached to a COMSEC audit report by which a COMSEC custodian certifies that all actions have been completed.
NSTISSI 4009
Certificate Revocation List
List of invalid certificates (as defined above) that have been revoked by the issuer.
NSTISSI 4009
Certification
"Comprehensive evaluation of the technical and nontechnical security features of an IS and other safeguards, made in support of the accreditation process, to establish the extent to which a particular design and implementation meets a set of specified security requirements."
NSTISSI 4009
Certification Agent
"Individual responsible for making a technical judgment of the system's compliance with stated requirements, identifying and assessing the risks associated with operating the system, coordinating the certification activities, and consolidating the final certification and accreditation packages."
NSTISSI 4009
Certification Authority
"Third level of the Public Key Infrastructure (PKI) Certification Management Authority responsible for issuing and revoking user certificates, and exacting compliance to the PKI policy as defined by the parent Policy Creation Authority (PCA)."
NSTISSI 4009
Certification Authority Workstation
Commercial-off-the-shelf (COTS) workstation with a trusted operating system and special purpose application software that is used to issue certificates.
NSTISSI 4009
Certification Package
Product of the certification effort documenting the detailed results of the certification activities.
NSTISSI 4009
Certification Test and Evaluation (CT&E)
Software and hardware security tests conducted during development of an IS.
NSTISSI 4009
Certified TEMPEST Technical Authority (CTTA)
"An experienced, technically qualified U.S. Government employee who has met established certification requirements in accordance with NSTISSC-approved criteria and has been appointed by a U.S. Government Department or Agency to fulfill CTTA responsibilites."
NSTISSI 4009
CF
Criticality Factor
ACRONYMS
CFD
Common Fill Device
ACRONYMS
Challenge and Reply Authentication
Prearranged procedure in which a subject requests authentication of another and the latter establishes validity with a correct reply.
NSTISSI 4009
Check Word
Cipher text generated by cryptographic logic to detect failures in cryptography.
NSTISSI 4009
Checksum
Value computed on data to detect error or manipulation during transmission. See hash total.
NSTISSI 4009
CI
counterintelligence
IO Fundamentals
CIA
Central Intelligence Agency
ACRONYMS
CIAC
Computer Incident Assessment Capability
ACRONYMS
CIK
Crypto-Ignition Key
ACRONYMS
CINC
Commander in Chief
ACRONYMS
Cipher
"Any cryptographic system in which arbitrary symbols or groups of symbols, represent units of plain text or in which units of plain text are rearranged, or both."
NSTISSI 4009
Cipher Text
Enciphered information.
NSTISSI 4009
Cipher Text Auto-Key
Cryptographic logic that uses previous cipher text to generate a key stream.
NSTISSI 4009
Ciphony
"Process of enciphering audio information, resulting in encrypted speech."
NSTISSI 4009
CIRK
Common Interswitch Rekeying Key
ACRONYMS
CIRT
Computer Security Incident Response Team
ACRONYMS
Civil Affairs
"The activities of a commander that establish, maintain, influence, or exploit relations between military forces and civil authorities, both governmental and nongovernmental, and the civilian populace in a friendly, neutral, or hostile area of operations in order to facilitate military operations and consolidate operational objectives. Civil affairs may include performance by military forces of activities and functions normally the responsibility of local government. These activities may occur prior to, during, or subsequent to other military actions. They may also occur, if directed, in the absence of other military operations. Also called CA. (Joint Pub 1-02)"
IO Fundamentals
CJCS
"Chairman, Joint Chiefs of Staff"
ACRONYMS
CJCSI
Chairman of the Joint Chiefs of Staff Instruction
IO Fundamentals
CJCSM
Chairman of the Joint Chiefs of Staff Manual
IO Fundamentals
CK
Compartment Key
ACRONYMS
CKG
Cooperative Key Generation
ACRONYMS
Classified Information
"Information that has been determined pursuant to Executive Order 12958 or any predecessor order, or by the Atomic Energy Act of 1954, as amended, to require protection against unauthorized disclosure and is marked to indicate its classified status."
NSTISSI 4009
Clearing
"Removal of data from an IS, its storage devices, and other peripheral devices with storage capacity, in such a way that the data may not be reconstructed using common system capabilities (i.e., keyboard strokes); however, the data may be reconstructed using laboratory methods. Cleared media may be reused at the same classification level or at a higher level. Overwriting is one method of clearing."
NSTISSI 4009
CLMD
COMSEC Local Management Device
ACRONYMS
Closed Security Environment
"Environment providing sufficient assurance that applications and equipment are protected against the introduction of malicious logic during an IS life cycle. Closed security is based upon a system's developers operators, and maintenance personnel having sufficient clearances, authorization, and configuration control."
NSTISSI 4009
CM
Configuration Management
ACRONYMS
CMCS
COMSEC Material Control System
ACRONYMS
CMO
civil-military operations
IO Fundamentals
CNA
computer network attack
IO Fundamentals
CNCS
Cryptonet Control Station
ACRONYMS
CND
Computer Network Defense
ACRONYMS
CND
Computer Network Defense
ACRONYMS
CNK
Cryptonet Key
ACRONYMS
COA
course of action
IO Fundamentals
Code
"(COMSEC) System of communication in which arbitrary groups of letters, numbers, or symbols represent units of plain text of varying length."
NSTISSI 4009
Code Book
"Document containing plain text and code equivalents in a systematic arrangement, or a technique of machine encryption using a word substitution technique."
NSTISSI 4009
Code Group
"Group of letters, numbers, or both in a code system used to represent a plain text word, phrase, or sentence."
NSTISSI 4009
Code Vocabulary
"Set of plain text words, numerals, phrases, or sentences for which code equivalents are assigned in a code system."
NSTISSI 4009
Cold Start
Procedure for initially keying crypto-equipment.
NSTISSI 4009
Command and Control
"The exercise of authority and direction by a properly designated commander over assigned and attached forces in the accomplishment of the mission. Command and control functions are performed through an arrangement of personnel, equipment, communications, facilities, and procedures employed by a commander in planning, directing, coordinating, and controlling forces and operations in the accomplishment of the mission. Also called C2. (Joint Pub 1-02)"
IO Fundamentals
Command and Control Warfare
"The integrated use of operations security, military deception, psychological operations, electronic warfare, and physical destruction, mutually supported by intelligence, to deny information to, influence, degrade, or destroy adversary command and control"
IO Fundamentals
Command Authority
"Individual responsible for the appointment of user representatives for a department, agency, or organization and their key ordering privileges."
NSTISSI 4009
Commercial COMSEC Endorsement Program (CCEP)
"Relationship between NSA and industry in which NSA provides the COMSEC expertise (i.e., standards, algorithms, evaluations, and guidance) and industry provides design, development, and production capabilities to produce a type 1 or type 2 product. Products developed under the CCEP may include modules, subsystems, equipment, systems, and ancillary devices."
NSTISSI 4009
Common Fill Device
"One of a family of devices developed to read-in, transfer, or store key."
NSTISSI 4009
Communications Cover
Concealing or altering of characteristic communications patterns to hide information that could be of value to an adversary.
NSTISSI 4009
Communications Deception
"Deliberate transmission, retransmission, or alteration of communications to mislead an adversary's interpretation of the communications. See imitative communications deception and manipulative communications deception."
NSTISSI 4009
Communications Profile
"Analytic model of communications associated with an organization or activity. The model is prepared from a systematic examination of communications content and patterns, the functions they reflect, and the communications security measures applied."
NSTISSI 4009
Communications Security
"The protection resulting from all measures designed to deny unauthorized persons information of value which might be derived from the possession and study of telecommunications, or to mislead unauthorized persons in their interpretation of the results of "
IO Fundamentals
Communications Security (COMSEC)
"Measures taken to deny unauthorized persons information derived from telecommunications and to ensure the authenticity of such telecommunications. Communications security includes cryptosecurity, transmission security, emission security, and physical security of COMSEC material."
NSTISSI 4009
Compartmentalization
A nonhierarchical grouping of sensitive information used to control access to data more finely than with hierarchical security classification alone.
NSTISSI 4009
Compartmented Mode
"INFOSEC mode of operation wherein each user with direct or indirect access to a system, its peripherals, remote terminals, or remote hosts has all of the following: a. Valid security clearance for the most restricted information processed in the system; b. Formal access approval and signed non-disclosure agreements for that information to which a user is to have access; and c. Valid need-to-know for information to which a user is to have access."
NSTISSI 4009
Compromise
"Disclosure of information to unauthorized persons, or a violation of the security policy of a system in which unauthorized intentional or unintentional disclosure, modification destruction, or loss of an object may have occurred."
NSTISSI 4009
Compromising Emanations
"Unintentional signals that, if intercepted and analyzed, would disclose the information transmitted, received, handled, or otherwise processed by information systems equipment. See TEMPEST."
NSTISSI 4009
COMPUSEC
"Computer Security - measures and controls that ensure confidentiality, integrity, and availability of the information processed and stored by a computer."
ACRONYMS
Computer Abuse
"Intentional or reckless misuse, alteration, disruption, or destruction of information processing resources."
NSTISSI 4009
Computer Cryptography
Use of a crypto-algorithm program by a computer to authenticate or encrypt/decrypt information.
NSTISSI 4009
Computer Network Attack
"Operations to disrupt, deny, degrade, or destroy information resident in computers and computer networks, or the computers and networks themselves. Also called CNA. (This term and its definition are approved for inclusion in the next edition of Joint"
IO Fundamentals
Pub 1-02.)
1558
"
Updated:"""
Computer Security
The protection resulting from all measures to deny unauthorized access and exploitation of friendly computer systems. Also called COMPUSEC. (Joint Pub 1-02)
IO Fundamentals
Computer Security
"Measures and controls that ensure confidentiality, integrity, and availability of IS assests, including hardware, software, firmware and information being processed, stored and communicated. "
NSTISSI 4009
Computer Security Incident
See incident.
NSTISSI 4009
Computer Security Subsystem
Hardware/software designed to provide computer security features in a larger system environment.
NSTISSI 4009
COMSEC
Communications Security
ACRONYMS
COMSEC Account
"Administrative entity, identified by an account number, used to maintain accountability, custody, and control of COMSEC material."
NSTISSI 4009
COMSEC Account Audit
"Examination of the holdings, records, and procedures of a COMSEC account ensuring all accountable COMSEC material is properly handled and safeguarded."
NSTISSI 4009
COMSEC Aid
"COMSEC material that assists in securing telecommunications and is required in the production, operation, or maintenance of COMSEC systems and their components. COMSEC keying material, callsign/frequency systems, and supporting documentation, such as operating and maintenance manuals, are examples of COMSEC aids."
NSTISSI 4009
COMSEC Boundary
"Definable perimeter encompassing all hardware, firmware, and software components performing critical COMSEC functions, such as key generation and key handling and storage."
NSTISSI 4009
COMSEC Chip Set
Collection of NSA approved microchips.
NSTISSI 4009
COMSEC Control Program
"Computer instructions or routines controlling or affecting the externally performed functions of key generation, key distribution, message encryption/decryption, or authentication."
NSTISSI 4009
COMSEC Custodian
"Person designated by proper authority to be responsible for the receipt, transfer, accounting safeguarding, and destruction of COMSEC material assigned to a COMSEC account."
NSTISSI 4009
COMSEC End-Item
Equipment or combination of components ready for use in a COMSEC application.
NSTISSI 4009
COMSEC Equipment
"Equipment designed to provide security to telecommunications by converting information to a form unintelligible to an unauthorized interceptor and, subsequently, by reconverting such information to its original form for authorized recipients; also, equipment designed specifically to aid in, or as an essential element of, the conversion process. COMSEC equipment includes crypto-equipment, crypto-ancillary equipment, cryptoproduction equipment, and authentication equipment."
NSTISSI 4009
COMSEC Facility
"Space used for generating, storing, repairing, or using COMSEC material."
NSTISSI 4009
COMSEC Incident
Occurrence that potentially jeopardizes the security of COMSEC material or the secure transmission of national security information.
NSTISSI 4009
COMSEC Insecurity
"COMSEC incident that has been investigated, evaluated, and determined to jeopardize the security of COMSEC material or the secure transmission of information."
NSTISSI 4009
COMSEC Manager
Person who manages the COMSEC resources of an organization.
NSTISSI 4009
COMSEC Material
"Item designed to secure or authenticate telecommunications. COMSEC material includes, but is not limited to key, equipment, devices, documents, firmware, or software that embodies or describes cryptographic logic and other items that perform COMSEC functions."
NSTISSI 4009
COMSEC Material Control System (CMCS)
"Logistics and accounting system through which COMSEC material marked CRYPTO"" is distributed, controlled, and safeguarded. Included are the COMSEC central offices of record, cryptologistic depots, and COMSEC accounts. COMSEC material other than key may be handled through the COMSEC Material Control System."""
NSTISSI 4009
COMSEC Modification
See information systems security equipment modification.
NSTISSI 4009
COMSEC Module
Removable component that performs COMSEC functions in a telecommunications equipment or system.
NSTISSI 4009
COMSEC Monitoring
"Act of listening to, copying, or recording transmissions of one's own official telecommunications to analyze the degree of security."
NSTISSI 4009
COMSEC Profile
"Statement of COMSEC measures and materials used to protect a given operation, system, or organization."
NSTISSI 4009
COMSEC Survey
"Organized collection of COMSEC and communications information relative to a given operation, system, or organization."
NSTISSI 4009
COMSEC System Data
Information required by a COMSEC equipment or system to enable it to properly handle and control key.
NSTISSI 4009
COMSEC Training
"Teaching of skills relating to COMSEC accounting, use of COMSEC aids, or installation, use, maintenance, and repair of COMSEC equipment."
NSTISSI 4009
Concept of Operations (CONOP)
"Document detailing the method, act, process, or effect of using an IS."
NSTISSI 4009
Confidentiality
"Assurance that information is not disclosed to unauthorized persons, processes, or devices."
NSTISSI 4009
Configuration Control
"Process of controlling modifications to hardware, firmware, software, and documentation to ensure the IS is protected against improper modifications prior to, during, and after system implementation."
NSTISSI 4009
Configuration Management
"Management of security features and assurances through control of changes made to hardware, software, firmware, documentation, test, test fixtures, and test documentation throughout the life cycle of an IS."
NSTISSI 4009
Confinement Channel
See covert channel.
NSTISSI 4009
Confinement Property
Synonymous with star (*) property.
NSTISSI 4009
CONOP
Concept of Operations
ACRONYMS
Contamination
The introduction of data of one security classification or security category into data of a lower security classification or different security category.
NSTISSI 4009
Contingency Key
Key held for use under specific operational conditions or in support of specific contingency plans.
NSTISSI 4009
Contingency Plan
"Plan maintained for emergency response, backup operations, and post-disaster recovery for an IS, to ensure the availability of critical resources and to facilitate the continuity of operations in an emergency situation."
NSTISSI 4009
Controlled Access Protection
"The C2 level of protection described in the Trusted Computer System Evaluation Criteria (Orange Book). Its major characteristics are: individual accountability, audit, access control, and object reuse."
NSTISSI 4009
Controlled Cryptographic Item (CCI)
"Secure telecommunications or information handling equipment, or associated cryptographic component, that is unclassified but governed by a special set of control requirements. Such items are marked CONTROLLED CRYPTOGRAPHIC ITEM"" or, where space is limited, ""CCI."""""
NSTISSI 4009
Controlled Security Mode
See multilevel security.
NSTISSI 4009
Controlled Sharing
Condition existing when access control is applied to all users and components of an IS.
NSTISSI 4009
Controlled Space
"Three-dimensional space surrounding IS equipment, within which unauthorized persons are denied unrestricted access and are either escorted by authorized persons or are under continuous physical or electronic surveillance."
NSTISSI 4009
Controlling Authority
Official responsible for directing the operation of a cryptonet and for managing the operational use and control of keying material assigned to the cryptonet.
NSTISSI 4009
CONUS
Continental United States
ACRONYMS
Cooperative Key Generation
"Electronically exchanging functions of locally generated, random components, from which both terminals of a secure circuit construct traffic encryption key or key encryption key for use on that circuit."
NSTISSI 4009
Cooperative Remote Rekeying
Synonymous with manual remote rekeying.
NSTISSI 4009
COR
1. Central Office of Record (COMSEC) 2. Contracting Officer Representative
ACRONYMS
Correctness Proof
A mathematical proof of consistency between a specification and its implementation.
NSTISSI 4009
Cost-Benefit-Analysis
Assessment of the cost of providing protection or security commensurate with the risk and magnitude of asset loss or damage.
NSTISSI 4009
COTS
Commercial-Off-the-Shelf - Refers to commercial products available for general purchase.
ACRONYMS
Counterdeception
"Efforts to negate, neutralize, diminish the effects of, or gain advantage from, a foreign deception operation. Counterdeception does not include the intelligence function of identifying foreign deception operations. (Joint Pub 1-02)"
IO Fundamentals
Counterintelligence
"Information gathered and activities conducted to protect against espionage, other intelligence activities, sabotage, or assassinations conducted by or on behalf of foreign governments or elements thereof, foreign organizations, or foreign persons, or international terrorist activities. Also called CI. (Joint Pub 1-02)"
IO Fundamentals
Countermeasure
"Action, device, procedure, technique, or other measure that reduces the vulnerability of an IS."
NSTISSI 4009
Covert Channel
Unintended and/or unauthorized communications path that can be used to transfer information in a manner that violates an IS security policy. See overt channel and exploitable channel.
NSTISSI 4009
Covert Channel Analysis
Determination of the extent to which the security policy model and subsequent lower-level program descriptions may allow unauthorized access to information.
NSTISSI 4009
Covert Storage Channel
"Covert channel involving the direct or indirect writing to a storage location by one process and the direct or indirect reading of the storage location by another process. Covert storage channels typically involve a finite resource (e.g., sectors on a disk) that is shared by two subjects at different security levels."
NSTISSI 4009
Covert Timing Channel
"Covert channel in which one process signals information to another process by modulating its own use of system resources (e.g., central processing unit time) in such a way that this manipulation affects the real response time observed by the second process."
NSTISSI 4009
CPS
COMSEC Parent Switch
ACRONYMS
CPU
Central Processing Unit
ACRONYMS
Credentials
"Information, passed from one entity to another, used to establish the sending entity's access rights."
NSTISSI 4009
Critical Infrastructures
Those physical and cyber-based systems essential to the minimum operations of the economy and government.
NSTISSI 4009
CRL
Certificate Revocation List
ACRONYMS
CRP
COMSEC Resources Program (Budget)
ACRONYMS
CRR
Certification Requirements Review
ACRONYMS
Cryptanalysis
Operations performed in converting encrypted messages to plain text without initial knowledge of the crypto-algorithm and/or key employed in the encryption.
NSTISSI 4009
CRYPTO
Marking or designator identifying COMSEC keying material used to secure or authenticate telecommunications carrying classified or sensitive U.S. Government or U.S. Government-derived information.
NSTISSI 4009
Crypto-Alarm
Circuit or device that detects failures or aberrations in the logic or operation of crypto-equipment. Crypto-alarm may inhibit transmission or may provide a visible and/or audible alarm.
NSTISSI 4009
Crypto-Algorithm
"Well-defined procedure or sequence of rules or steps, or a series of mathematical equations used to describe cryptographic processes such as encryption/decryption, key generation, authentication, signatures, etc."
NSTISSI 4009
Crypto-Ancillary Equipment
"Equipment designed specifically to facilitate efficient or reliable operation of crypto-equipment, without performing cryptographic functions itself."
NSTISSI 4009
Crypto-Equipment
Equipment that embodies a cryptographic logic.
NSTISSI 4009
Cryptographic
"Pertaining to, or concerned with, cryptography."
NSTISSI 4009
Cryptographic Component
"Hardware or firmware embodiment of the cryptographic logic. A cryptographic component may be a modular assembly, a printed wiring assembly, a microcircuit, or a combination of these items."
NSTISSI 4009
Cryptographic Equipment Room
Controlled-access room in which cryptosystems are located.
NSTISSI 4009
Cryptographic Initialization
"Function used to set the state of a cryptographic logic prior to key generation, encryption, or other operating mode."
NSTISSI 4009
Cryptographic Logic
"The embodiment of one (or more) crypto-algorithm(s) along with alarms, checks, and other processes essential to effective and secure performance of the cryptographic process(es)."
NSTISSI 4009
Cryptographic Randomization
Function that randomly determines the transmit state of a cryptographic logic.
NSTISSI 4009
Cryptography
"Art or science concerning the principles, means, and methods for rendering plain information unintelligible and for restoring encrypted information to intelligible form."
NSTISSI 4009
Crypto-Ignition Key (CIK)
Device or electronic key used to unlock the secure mode of crypto-equipment.
NSTISSI 4009
Cryptology
Field encompassing both cryptography and cryptanalysis.
NSTISSI 4009
Cryptonet
Stations holding a common key.
NSTISSI 4009
Cryptoperiod
Time span during which each key setting remains in effect.
NSTISSI 4009
Cryptosynchronization
Process by which a receiving decrypting cryptographic logic attains the same internal state as the transmitting encrypting logic.
NSTISSI 4009
Cryptosystem
Associated INFOSEC items interacting to provide a single means of encryption or decryption.
NSTISSI 4009
Cryptosystem Assessment
"Process of establishing the exploitability of a cryptosystem, normally by reviewing transmitted traffic protected or secured by the system under study."
NSTISSI 4009
Cryptosystem Evaluation
Process of determining vulnerabilities of a cryptosystem.
NSTISSI 4009
Cryptosystem Review
"Examination of a cryptosystem by the controlling authority ensuring its adequacy of design and content, continued need, and proper distribution."
NSTISSI 4009
Cryptosystem Survey
Management technique in which actual holders of a cryptosystem express opinions on the system's suitability and provide usage information for technical evaluation.
NSTISSI 4009
CSCI
Computer Software Configuration Item
ACRONYMS
CSE
Communications Security Element
ACRONYMS
CSM
Computer Systems Manager
ACRONYMS
CSS
1. COMSEC Subordinate Switch 2. Constant Surveillance Service (Courier) 3. Continuous Signature Service (Courier) 4. Coded Switch System
ACRONYMS
CSSO
Contractor Special Security Officer
ACRONYMS
CSTVRP
Computer Security Technical Vulnerability Report Program
ACRONYMS
CT&E
Certification Test and Evaluation
ACRONYMS
CTAK
Cipher Text Auto-Key
ACRONYMS
CTTA
Certified TEMPEST Technical Authority
ACRONYMS
CUP
COMSEC Utility Program
ACRONYMS
Cyclic Redundancy Check
Error checking mechanism that checks data integrity by computing a polynomial algorithm based checksum.
NSTISSI 4009
DAA
Designated Approving Authority
ACRONYMS
DAC
Discretionary Access Control
ACRONYMS
DAMA
Demand Assigned Multiple Access
ACRONYMS
Dangling Threat
Set of properties about the external environment for which there is no corresponding vulnerability and therefore no implied risk.
NSTISSI 4009
Dangling Vulnerability
Set of properties about the internal environment for which there is no corresponding threat and therefore no implied risk.
NSTISSI 4009
Data Aggregation
The compilation of unclassified individual data systems and data elements that results in the totality of the information being classified.
NSTISSI 4009
Data Encryption Standard (DES)
"Cryptographic algorithm, designed for the protection of unclassified data and published by the National Institute of Standards and Technology in Federal Information Processing Standard (FIPS) Publication 46."
NSTISSI 4009
Data Flow Control
Synonymous with information flow control.
NSTISSI 4009
Data Integrity
"Condition that exists when data is unchanged from its source and has not been accidentally or maliciously modified, altered, or destroyed."
NSTISSI 4009
Data Origin Authentication
Corroborating the source of data is as claimed.
NSTISSI 4009
Data Security
"The protection of data from unauthorized (accidental or intentional) modification, destruction, or disclosure."
NSTISSI 4009
Data Transfer Device (DTD)
"Fill device designed to securely store, transport, and transfer electronically both COMSEC and TRANSEC key, designed to be backward compatible with the previous generation of COMSEC common fill devices, and programmable to support modern mission systems."
NSTISSI 4009
DCID
Director Central Intelligence Directive
ACRONYMS
DCS
1. Defense Communications System 2. Defense Courier Service
ACRONYMS
DCSP
Design Controlled Spare Part(s)
ACRONYMS
DDS
Dual Driver Service (Courier)
ACRONYMS
Deception
"Those measures designed to mislead the enemy by manipulation, distortion, or falsification of evidence to induce him to react in a manner prejudicial to his interests. (Joint Pub 1-02)"
IO Fundamentals
Decertification
Revocation of the certification of an IS item or equipment for cause.
NSTISSI 4009
Decipher
Convert enciphered text to plain text by means of a cryptographic system.
NSTISSI 4009
Decode
Convert encoded text to plain text by means of a code.
NSTISSI 4009
Decrypt
Generic term encompassing decode and decipher.
NSTISSI 4009
Dedicated Mode
"IS security mode of operation wherein each user, with direct or indirect access to the system, its peripherals, remote terminals, or remote hosts, has all of the following: a. valid security clearance for all information within the system; b. formal access approval and signed nondisclosure agreements for all the information stored and/or processed (including all compartments, subcompartments, and/or special access programs); and c. valid need-to-know for all information contained within the IS. When in the dedicated security mode, a system is specifically and exclusively dedicated to and controlled for the processing of one particluar type or classification of information, either for full-time operation or for a specified period of time."
NSTISSI 4009
Default Classification
Temporary classification reflecting the highest classification being processed in an IS. Default classification is included in the caution statement affixed to an object.
NSTISSI 4009
Defense Information Infrastructure
"The shared or interconnected system of computers, communications, data applications, security, people, training, and other support structures serving DOD local, national, and worldwide information needs. The Defense Information Infrastructure connects DOD mission support, command and control, and intelligence computers through voice, telecommunications, imagery, video, and multimedia services. It provides information processing and services to subscribers over the Defense Information Systems Network and includes command and control, tactical, intelligence, and commercial communications systems used to transmit DOD information. Also called DII. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Defensive Information Operations
"The integration and coordination of policies and procedures, operations, personnel, and technology to protect and defend information and information systems. Defensive information operations are conducted through information assurance, physical security, operations security, counter-deception, counter-psychological operations, counterintelligence, electronic warfare, and special information operations. Defensive information operations ensure timely, accurate, and relevant information access while denying adversaries the opportunity to exploit friendly information and information systems for their own purposes. (This term and its definition is approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Degaussing
Procedure that reduces the magnetic flux to virtual zero by applying a reverse magnetizing field. Also called demagnetizing.
NSTISSI 4009
Delegated Development Program
"INFOSEC program in which the Director, National Security Agency, delegates, on a case by case basis, the development and/or production of an entire telecommunications product, including the INFOSEC portion, to a lead department or agency."
NSTISSI 4009
Denial of Service
Result of any action or series of actions that prevents any part of an IS from functioning.
NSTISSI 4009
Depot Maintenance
See full maintenance.
NSTISSI 4009
DES
Data Encryption Standard
ACRONYMS
Descriptive Top-Level Specification
"Top-level specification written in a natural language (e.g., English), and informal design notation, or a combination of the two. Descriptive top-level specification, required for a class B2 and B3 (as defined in the Orange Book, Department of Defense Trusted Computer System Evaluation Criteria, DoD 5200.28-STD) information system, completely and accurately describes a trusted computing base. See formal top-level specification."
NSTISSI 4009
Design Controlled Spare Part
Part or subassembly for a COMSEC equipment or device with an NSA controlled design.
NSTISSI 4009
Design Documentation
"Set of documents, required for Trusted Computer System Evaluation Criteria (TCSEC) classes C1 and above (as defined in the Orange Book, Department of Defense Trusted Computer System Evaluation Criteria, DoD 5200.28-STD), whose primary purpose is to define and describe the properties of a system. As it relates to TCSEC, design documentation provides an explanation of how the security policy of a system is translated into a technical solution via the Trusted Computing Base (TCB) hardware, software, and firmware."
NSTISSI 4009
Designated Approving Authority
Official with the authority to formally assume responsibility for operating a system at an acceptable level of risk. This term is synonymous with designated accrediting authority and delegated accrediting authority.
NSTISSI 4009
DIA
Defense Intelligence Agency
ACRONYMS
Dial Back
Synonymous with call back.
NSTISSI 4009
DIB
Directory Information Base
ACRONYMS
Digital Signature
"Cryptographic process used to assure message originator authenticity, integrity, and nonrepudiation. Same as electronic signature."
NSTISSI 4009
Digital Signature Algorithm
"Procedure that appends data to, or performs a cryptographic transformation of, a data unit. The appended data or cryptographic transformation allows reception of the data unit and protects against forgery, e.g., by the recipient."
NSTISSI 4009
DII
Defense Information Infrastructure
ACRONYMS
Direct Shipment
Shipment of COMSEC material directly from NSA to user COMSEC accounts.
NSTISSI 4009
Directed-Energy Warfare
"Military action involving the use of directed-energy weapons, devices, and countermeasures to either cause direct damage or destruction of enemy equipment, facilities, and personnel, or to determine, exploit, reduce, or prevent hostile use of the electromagnetic spectrum through damage, destruction, and disruption. It also includes actions taken to protect friendly equipment, facilities, and personnel and retain friendly use of the electromagnetic spectrum. Also called DEW. (Joint Pub 1-02)"
IO Fundamentals
DIS
Defense Investigative Service
ACRONYMS
DISA
Defense Information Systems Agency
ACRONYMS
Discretionary Access Control (DAC)
Means of restricting access to objects based on the identity and need-to-know of users and/or groups to which the object belongs. Controls are discretionary in the sense that a subject with the certain access permission is capable of passing that permission (directly or indirectly) to any other subject. See mandatory access control.
NSTISSI 4009
DISN
Defense Information System Network
ACRONYMS
Distinguished Name
Globally unique identifier representing an individual's identity.
NSTISSI 4009
DITSCAP
"DOD Directive 5200.40, DOD Information Technology Security Certification and Accreditation Process (DITSCAP); signed 30 December 1997"
ACRONYMS
DLED
Dedicated Loop Encryption Device
ACRONYMS
DMA
Direct Memory Access
ACRONYMS
DMS
Direct Memory System
ACRONYMS
DOD (or DoD)
Department of Defense
ACRONYMS
DOD Trusted Computer System Evaluation Criteria (TCSEC)
"Document containing basic requirements and evaluation classes for assessing degrees of effectiveness of hardware and software security controls built into an IS. This document, DOD 5200.38-STD, is frequently referred to as the Orange Book."
NSTISSI 4009
DODD
Department of Defense Directive
IO Fundamentals
DOE
Department of Energy
ACRONYMS
Domain
"Unique context (e.g., access control parameters) in which a program is operating; in effect, the set of objects a subject has the priviledge to access."
NSTISSI 4009
Dominate
"Term used to compare IS security levels. Security level S1 is said to dominate security S2, if the hierarchical classification of S1 is greater than, or equal to, that of S2 and the non-hierarchical categories of S1 include all those of S2 as a subset."
NSTISSI 4009
DPL
Deguasser Products List (a section in the INFOSEC Products and Services Catalogue)
ACRONYMS
Drop Accountability
Procedure under which a COMSEC account custodian initially receipts a COMSEC material and then provides no further accounting for it to its central office of record. Local accountability of the COMSEC material may continue to be required. See accounting legend code.
NSTISSI 4009
DSA
Digital Signature Algorithm
ACRONYMS
DSN
Defense Switched Network
ACRONYMS
DSVT
Digital Subscriber Voice Terminal
ACRONYMS
DT&E
Development Test and Evaluation
ACRONYMS
DTD
Data Transfer Device
ACRONYMS
DTLS
Descriptive Top-Level Specification
ACRONYMS
DTS
Diplomatic Telecommunications Service
ACRONYMS
DUA
Directory User Agent
ACRONYMS
E Model
Engineering Development Model
ACRONYMS
EA
electronic attack
IO Fundamentals
EAM
Emergency Action Message
ACRONYMS
EC
Electronic Commerce
ACRONYMS
ECCM
Electronic Counter-Countermeasures
ACRONYMS
ECM
Electronic Countermeasures
ACRONYMS
ECP
Engineering Change Proposal
ACRONYMS
ECPL
Endorsed Cyptographic Products List (a section in the Information Systems Security Products and Services Catalogue)
ACRONYMS
EDAC
Error Detection and Correction
ACRONYMS
EDESPL
Endorsed Data Encryption Standard Products List
ACRONYMS
EDI
Electronic Data Interchange
ACRONYMS
EDM
Engineering Development Model
ACRONYMS
EDR
Engineering Design Review
ACRONYMS
EEFI
essential elements of friendly information
IO Fundamentals
EFD
Electronic Fill Device
ACRONYMS
EFTO
Encrypt For Transmission Only
ACRONYMS
EGADS
"Electronic Generation, Accounting, and Distribution System"
ACRONYMS
EKMS
Electronic Key Management System
ACRONYMS
Electronic Generated Key
"Key generated in a COMSEC device by introducing (either mechanically or electronically) a seed key into the device and then using the seed, together with a software algorithm stored in the device, to produce the desired key."
NSTISSI 4009
Electronic Key Management System (EKMS)
"Interoperable collection of systems being developed by services and agencies of the U.S. Governent to automate the planning, ordering, generating, distributing, storing, filling, using, and destroying of electronic key and management of other types of COMSEC materials."
NSTISSI 4009
Electronic Messaging Services
"Services providing interpersonal messaging capability; meeting specific functional, management, and technical requirements; and yielding a business-quality electronic mail service suitable for the conduct of official government business."
NSTISSI 4009
Electronic Security
Protection resulting from measures designed to deny unauthorized persons information derived from the interception and analysis of noncommunications electromagnetic radiations.
NSTISSI 4009
Electronic Signature
See digital signature.
NSTISSI 4009
Electronic Warfare
"Any military action involving the use of electromagnetic and directed energy to control the electromagnetic spectrum or to attack the enemy. Also called EW. The three major subdivisions within electronic warfare are: electronic attack, electronic protecti"
IO Fundamentals
Element
"Removable item of COMSEC equipment, assembly, or subassembly; normally consisting of a single piece or group of replaceable parts."
NSTISSI 4009
ELSEC
Electronic Security
ACRONYMS
Embedded Computer
Computer system that is an integral part of a larger system.
NSTISSI 4009
Embedded Cryptographic System
Cryptosystem performing or controlling a function as an integral element of a larger system or subsystem.
NSTISSI 4009
Embedded Cryptography
Cryptography engineered into an equipment or system whose basic function is not cryptographic.
NSTISSI 4009
Emissions Security
Protection resulting from measures taken to deny unauthorized persons information derived from intercept and analysis of compromising emanations from crypto-equipment or an IS.
NSTISSI 4009
EMSEC
Emissions Security
ACRONYMS
Encipher
Convert plain text to cipher text by means of a cryptographic system.
NSTISSI 4009
Encode
Convert plain text to cipher text by means of a code.
NSTISSI 4009
Encrypt
Generic term encompassing encipher and encode.
NSTISSI 4009
Encryption Algorithm
Set of mathematically expressed rules for rendering data unintelligible by executing a series of conversions controlled by a key.
NSTISSI 4009
End-Item Accounting
Accounting for all the accountable components of a COMSEC equipment configuration by a single short title.
NSTISSI 4009
Endorsed for Unclassified Cryptographic Item
Unclassified cryptographic equipment that embodies a U.S. Government classified cryptographic logic and is endorsed by NSA for the protection of national security information. See type 2 product.
NSTISSI 4009
Endorsement
NSA approval of a commercially developed product for safeguarding national security information.
NSTISSI 4009
End-to-End Encryption
Encryption of information at its origin and decryption at its intended destination without intermediate decryption.
NSTISSI 4009
End-to-End Security
Safeguarding information in an IS from point of origin to point of destination.
NSTISSI 4009
Entrapment
Deliberate planting of apparent flaws in an IS for the purpose of detecting attempted penetrations.
NSTISSI 4009
Environment
"Aggregate of external procedures, conditions, and objects affecting the development, operation, and maintenance of an IS."
NSTISSI 4009
EO
Executive Order
ACRONYMS
EP
electronic protection
IO Fundamentals
EPL
Evaluated Products List (a section in the INFOSEC Products and Services Catalogue)
ACRONYMS
EPW
enemy prisoner of war
IO Fundamentals
Erasure
Process intended to render magnetically stored information irretrievable by normal means.
NSTISSI 4009
ERTZ
Equipment Radiation TEMPEST Zone
ACRONYMS
ES
electronic warfare support
IO Fundamentals
ET
Execution Team
ACRONYMS
ETL
Endorsed Tools List
ACRONYMS
ETPL
Endorsed TEMPEST Products List
ACRONYMS
EUCI
Endorsed for Unclassified Cryptographic Information
ACRONYMS
EV
Enforcement Vector
ACRONYMS
Evaluated Products List (EPL)
"Equipment, hardware, software, and/or firmware evaluated by the NCSC in accordance with DoD TCSEC and found to be technically compliant at a particular level of trust. The EPL is included in the NSA Information System Security Products and Services Catalogue."
NSTISSI 4009
Event
"(IS) Occurance, not yet assessed, that may affect the performance of an IS."
NSTISSI 4009
EW
electronic warfare
IO Fundamentals
Executive State
"One of several states in which an IS may operate, and the only one in which certain privileged instructions may be executed. Such privileged instructions cannot be executed when the system is operating in other (e.g., user) states. Synonymous with supervisor state."
NSTISSI 4009
Exercise Key
Key used exclusively to safeguard communications transmitted over-the-air during military or organized civil training exercises.
NSTISSI 4009
Exploitable Channel
Channel that allows the violation of the security policy governing an IS and is usable or detectable by subjects external to the trusted computing base. See covert channel.
NSTISSI 4009
Extraction Resistance
Capability of crypto-equipment or secure telecommunications equipment to resist efforts to extract key.
NSTISSI 4009
Fail Safe
Automatic protection of programs and/or processing systems when hardware or software failure is detected.
NSTISSI 4009
Fail Soft
Selective termination of affected nonessential processing when hardware or software failure is determined to be imminent.
NSTISSI 4009
Failure Access
Unauthorized access to data resulting from hardware or software failure.
NSTISSI 4009
Failure Control
Methodology used to detect imminent hardware or software failure and provide fail safe or fail soft recovery.
NSTISSI 4009
FDDI
Fiber Distributed Data Interface
ACRONYMS
FDIU
Fill Device Interface Unit
ACRONYMS
FDO
flexible deterrent option
IO Fundamentals
Fetch Protection
IS hardware provided restriction to prevent a program from accessing data in another user's segment of storage.
NSTISSI 4009
FHA
foreign humanitarian assistance
IO Fundamentals
File Protection
"Aggregate of processes and procedures designed to inhibit unauthorized access, contamination, elimination, modification, or destruction of a file or any of its contents."
NSTISSI 4009
File Security
Means by which access to computer files is limited to authorized users only.
NSTISSI 4009
Fill Device
COMSEC item used to transfer or store key in electronic form or to insert key into a crypto-equipment.
NSTISSI 4009
FIPS
Federal Information Processing Standard
ACRONYMS
FIREFLY
Key management protocol based on public key cryptography.
NSTISSI 4009
Firewall
"System designed to defend against unauthorized access to or from a private network. Firewalls can be implemented in both hardware and software, or a combination of both."
NSTISSI 4009
Firmware
Program recorded in permanent or semipermanent computer memory.
NSTISSI 4009
FIWC
Fleet Information Warfare Center
ACRONYMS
Fixed COMSEC Facility
COMSEC facility located in an immobile structure or aboard a ship.
NSTISSI 4009
Flaw
"Error of commission, omission, or oversight in an IS that may allow protection mechanisms to be bypassed."
NSTISSI 4009
Flaw Hypothesis Methodology
"System analysis and penetration technique in which the specification and documentation for an IS are analyzed to produce a list of hypothetical flaws. The list is prioritized on the basis of the estimated probability that a flaw exists on the ease of exploiting it, and on the extent of control or compromise it would provide. The prioritized list is used to perform penetration testing of a system."
NSTISSI 4009
Flooding
Insertion of a large volume of data resulting in denial of service.
NSTISSI 4009
FOCI
"Foreign Owned, Controlled or Influenced"
ACRONYMS
Formal Access Approval
Documented approval by a data owner allowing access to a particular category of information.
NSTISSI 4009
Formal Development Methodology
Software development strategy that proves security design specifications.
NSTISSI 4009
Formal Proof
Complete and convincing mathematical argument presenting the full logical justification for each proof step and for the truth of a theorem or set of theorems. These formal proofs provide A1 and beyond A1 assurance under the DoD Trusted Computer System Evaluation Criteria (Orange Book).
NSTISSI 4009
Formal Security Policy Model
"Mathematically precise statement of a security policy. Such a model must define a secure state, an initial state, and how the model represents changes in state. The model must be shown to be secure by proving the initial state is secure and all possible subsequent states remain secure."
NSTISSI 4009
Formal Top-Level Specifiction
"Top-level specification written in a formal mathematical language to allow theorems, showing the correspondence of the system specification to its formal requirements, to be hypothesized and formally proven."
NSTISSI 4009
Formal Verification
Process of using format proofs to demonstrate the consistency between formal specification of a system and formal security policy model (design verification) or between formal specification and its high-level program implementation (implementation verification).
NSTISSI 4009
FOUO
"For Official Use Only - Information that has not been given a security classification pursuant to the criteria of an Executive Order, but which may be withheld from public disclosure under the criteria of the Freedom of Information Act, Title 5, U. S. C., Section 552."
ACRONYMS
FQT
Formal Qualification Testing
ACRONYMS
Frequency Hopping
"Repeated switching of frequencies during radio transmission according to a specified algorithm, to minimize unauthorized interception or jamming of telecommunications."
NSTISSI 4009
Front-End Security Filter
Security filter logically separated from the remainder of an IS to protect system integrity. Synonymous with firewall.
NSTISSI 4009
FSRS
Functional Security Requirements Specification
ACRONYMS
FSTS
Federal Secure Telephone Service
ACRONYMS
FTAM
File Transfer Access Management
ACRONYMS
FTLS
Formal Top-Level Specification
ACRONYMS
FTS
Federal Telecommunications System
ACRONYMS
Full Maintenance
"Complete diagonistic repair, modification, and overhaul of INFOSEC equipment, including repair of defective assemblies by piece part replacement. Also known as depot maintenance. See limited maintenance."
NSTISSI 4009
Functional Proponent
See network sponsor.
NSTISSI 4009
Functional Testing
Segment of security testing in which advertised security mechanisms of an IS are tested under operational conditions.
NSTISSI 4009
Gateway
"Interface providing a compatibility between networks by converting transmission speeds, protocols, codes, or security measures."
NSTISSI 4009
GCCS
Global Command and Control System
ACRONYMS
GETS
Government Emergency Telecommunications Service
ACRONYMS
GFE
Government Furnished Equipment
ACRONYMS
GII
global information infrastructure
IO Fundamentals
Global Information Infrastructure
"The worldwide interconnection of communications networks, computers, databases, and consumer electronics that make vast amounts of information available to users. The global information infrastructure encompasses a wide range of equipment, including cameras, scanners, keyboards, facsimile machines, computers, switches, compact disks, video and audio tape, cable, wire, satellites, fiber-optic transmission lines, networks of all types, televisions, monitors, printers, and much more. The friendly and adversary personnel who make decisions and handle the transmitted information constitute a critical component of the global information infrastructure. Also called GII. (This term and its definition modifies the existing term and definition and are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
GOSC
Global Operations Security Center
ACRONYMS
GOTS
Government-Off-The-Shelf
ACRONYMS
Granularity
Relative fineness to which an access control mechanism can be adjusted.
NSTISSI 4009
GTS
Global Telecommunications Service
ACRONYMS
Guard
Processor that limits exchange of information between systems.
NSTISSI 4009
GWEN
Ground Wave Emergency Network
ACRONYMS
Gypsy Verification Environment
"Integrated set of software tools for specifying, coding, and verifying programs written in the Gypsy language."
NSTISSI 4009
Hacker
Unauthorized user who attempts or gains access to an IS.
NSTISSI 4009
Handshaking Procedures
"Dialogue between two IS's for synchronizing, identifying, and authenticating themselves to one another."
NSTISSI 4009
Hard Copy Key
"Physical keying material, such as printed key lists, punched or printed key tapes, or programmable, read-only memories (PROM)."
NSTISSI 4009
Hardwired Key
Permanently installed key.
NSTISSI 4009
Hash Total
Value computed on data to detect error or manipulation. See checksum.
NSTISSI 4009
Hashing
Computation of a hash total.
NSTISSI 4009
Hashword
Memory address containing hash total.
NSTISSI 4009
HDM
Hierarchical Development Methodology
ACRONYMS
High Risk Environment
Specific location or geographic area where there are insufficient friendly security forces to ensure the safeguarding of information systems security equipment.
NSTISSI 4009
High Threat Environment
See high risk environment.
NSTISSI 4009
HN
host nation
IO Fundamentals
HUMINT
human intelligence
IO Fundamentals
HUS
Hardened Unique Storage
ACRONYMS
HUSK
Hardened Unique Storage Key
ACRONYMS
I&C
Installation and Checkout
ACRONYMS
I&M
Improvement and Modification
ACRONYMS
I&W
indications and warning
IO Fundamentals
IASE
Information Assurance Support Environment
ACRONYMS
IATO
Interim Approval to Operate
ACRONYMS
IAW
In Accordance With
ACRONYMS
IBAC
Identity based Access Control
ACRONYMS
ICU
Interface Control Unit
ACRONYMS
ID
Identify
ACRONYMS
Identification
Process that an IS uses to recognize an entity.
NSTISSI 4009
Identity Token
"Smart card, metal key, or other physical object used to authenticate identity."
NSTISSI 4009
Identity Validation
Tests enabling an IS to authenticate users or resources.
NSTISSI 4009
IDS
Intrusion Detection System
ACRONYMS
IEMATS
Improved Emergency Message Automatic Transmission System
ACRONYMS
IFF
"Identification, Friend or Foe"
ACRONYMS
IFFN
"Identification, Friend, Foe, or Neutral"
ACRONYMS
IIRK
Interarea Interswitch Rekeying Key
ACRONYMS
ILS
Integrated Logistics Support
ACRONYMS
Imitative Communications Deception
Introduction of deceptive messages or signals into an adversary's telecommunications signals. See communications deception and manipulative communications deception.
NSTISSI 4009
Impersonating
Form of spoofing.
NSTISSI 4009
Implant
Electronic device or electronic equipment modification designed to gain unauthorized interception of information-bearing emanations.
NSTISSI 4009
Ina Jo
"System Development Corporation's specification and verification methodology, based on a nonprocedural state-transition specification language, Ina Jo. The Ina Jo methodology incorporates user-supplied invariants to produce a formal demonstration that security properties are met."
NSTISSI 4009
Inadvertent Disclosure
Accidental exposure of information to a person not authorized access.
NSTISSI 4009
Incident
"In information operations, an assessed event of attempted entry, unauthorized entry, or an information attack on an automated information system. It includes unauthorized probing and browsing; disruption or denial of service; altered or destroyed input, processing, storage, or output of information; or changes to information system hardware, firmware, or software characteristics with or without the users' knowledge, instruction, or intent. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Incident
(IS) Assessed occurance having actual or potentially adverse effects on an IS.
NSTISSI 4009
Incomplete Parameter Checking
"System flaw that exists when the operating system does not check all parameters fully for accuracy and consistency, thus making the system vulnerable to penetration."
NSTISSI 4009
Indications and Warnings
"Those intelligence activities intended to detect and report time-sensitive intelligence information on foreign developments that could involve a threat to the United States or allied/coalition military, political, or economic interests or to US citizens abroad. It includes forewarning of enemy actions or intentions; the imminence of hostilities; insurgency; nuclear/non-nuclear attack on the United States, its overseas forces, or allied/coalition nations; hostile reactions to US reconnaissance activities; terrorists' attacks; and other similar events. Also called I&W. (This term and its definition modifies the existing term and definition and is approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Indicator
"An action, specific, generalized, or theoretical, that an adversary might be expected to take in preparation for an attack."
NSTISSI 4009
Individual Accountability
"Ability to associate positively the identity of a user with the time, method and degree of access to an IS."
NSTISSI 4009
Information
"1. Facts, data, or instructions in any medium or form. 2. The meaning that a human assigns to data by means of the known conventions used in their representation. (Joint Pub 1-02)"
IO Fundamentals
Information Assurance
"Information operations that protect and defend information and information systems by ensuring their availability, integrity, authentication, confidentiality, and nonrepudiation. This includes providing for restoration of information systems by incorporating protection, detection, and reaction capabilities. Also called IA. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Information Assurance (IA)
"Information Operations (IO) that protect and defend information and information systems by ensuring their availablity, integrity, authentication, confidentiality, and non-repudiation. This includes providing for restoration of information systems by incorporating protection, detection, and reaction capabilites."
NSTISSI 4009
Information Assurance Red Team
"Independent and focused threat-based effort by an interdisciplinary, simulated adversary to expose and exploit vulnerabilities as a means to improve the security posture of ISs."
NSTISSI 4009
Information Assurance Red Team
"Extent to which protective measures, techniques, and procedures must be applied to ISs and networks based on risk, threats, vulnerability, system interconnectivity considerations, and information assurance needs. Levels of protection are: 1. Basic: IS and networks requiring implementation of standard minimum security countermeasures. 2. Medium: IS and networks requiring layering of additional safeguards above the standard minimum security countermeasures. 3. High: IS and networks requiring the most stringent protection and rigorous security countermeasures."
NSTISSI 4009
Information Environment
"The aggregate of individuals, organizations, or systems that collect, process, or disseminate information; also included is the information itself. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Information Environment
"Aggregate of individuals, organizations, or systems that collect, process or disseminate information, also included is the information itself."
NSTISSI 4009
Information Flow Control
Procedure to ensure that information transfers within an IS are not made from a higher security level object to an object of a lower security level.
NSTISSI 4009
Information Operations
Actions taken to affect adversary information and information systems while defending one's own information and information systems. Also called IO. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02.)
IO Fundamentals
Information Operations
Actions taken to affect adversary information and information systems while defending one's own information and information systems.
NSTISSI 4009
Information Security
"Information security is the protection and defense of information and information systems against unauthorized access or modification of information, whether in storage, processing, or transit, and against denial of service to authorized users. Information security includes those measures necessary to detect, document, and counter such threats. Information security is composed of computer security and communications security. Also called INFOSEC. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02)."
IO Fundamentals
Information Superiority
"The capability to collect, process, and disseminate an uninterrupted flow of information while exploiting or denying an adversary's ability to do the same. (This term and its definition modifies the existing term and definition and are approved for inclusion in the next edition of Joint Pub 1 -02.)"
IO Fundamentals
Information System
"The entire infrastructure, organization, personnel, and components that collect, process, store, transmit, display, disseminate, and act on information. (This term and its definition modifies the existing term and definition and is approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Information System
"The entire infrastructure, organization, personnel, and components for the collection, processing, storage, transmission, display, dissemination, and disposition of information."
NSTISSI 4009
Information Systems Security (INFOSEC and/or ISS)
"Protection of information systems against unauthorized access to or modification of information, whether in storage, processing or transit, and against the denial of service to authorized users, including those measures necessary to detect, document, and counter such threats."
NSTISSI 4009
Information Systems Security Equipment Modification
"Modification of any fielded hardware, firmware, software, or portion thereof, under NSA configuration control. There are three classes of modifications: Mandatory (to include human safety); optional/special mission modifications; and repair actions. These classes apply to elements, subassemblies, equipment, systems, and software packages performing functions such as key generation, key distribution, message encryption, decryption, authentication, or those mechanisms necessary to satisfy security policy, labeling, identification, or accountability."
NSTISSI 4009
Information Systems Security Manager
Principal advisor on computer security matters.
NSTISSI 4009
Information Systems Security Officer
"Person responsible to the designated approving authority for ensuring the security of an information system throughout its life cycle, from design through disposal. Synonymous with system security officer."
NSTISSI 4009
Information Systems Security Product
"Item (chip, module, assembly, or equipment), technique , or service that performs or relates to information systems security."
NSTISSI 4009
Information Warfare
Information operations conducted during time of crisis or conflict to achieve or promote specific objectives over a specific adversary or adversaries. Also called IW. (This term and its definition modifies the existing term and definition and will be included in Joint Pub 1-02.)
IO Fundamentals
Information-Based Processes
"Processes that collect, analyze, and disseminate information using any medium or form. These processes may be stand-alone processes or sub-processes which, taken together, comprise a larger system or systems of processes. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
INFOSEC
information security
IO Fundamentals
Initialize
"Setting the state of a cryptographic logic prior to key generation, encryption, or other operating mode."
NSTISSI 4009
Inspectable Space
Three dimensional space surrounding equipment that process classified and/or sensitive information within which TEMPEST exploitation is not considered practical or where legal authority to identify and/or remove a potential TEMPEST exploitation exists. Synonymous with zone of control.
NSTISSI 4009
Integrity
"Quality of an IS that reflects the logical correctness and reliability of the operating system; the logical completeness of the hardware and software implementing protection mechanisms; and the consistency of the data structures and occurrence of the stored data. Note that, in a formal security mode, integrity is interpreted more narrowly to mean protection against unauthorized modification or destruction of information."
NSTISSI 4009
Integrity Check Value
Checksum capable of detecting modification of an IS.
NSTISSI 4009
Intelligence Preparation of the Battlespace
"An analytical methodology employed to reduce uncertainties concerning the enemy, environment, and terrain for all types of operations. Intelligence preparation of the battlespace builds an extensive data base for each potential area in which a unit may be required to operate. The data base is then analyzed in detail to determine the impact of the enemy, environment, an terrain on operations and presents it in graphic form. Intelligence preparation of the battlespace is a continuing process. Also called IPB. (Joint Pub 1-02)"
IO Fundamentals
Interface
Common boundary between independent systems or modules where interactions take place.
NSTISSI 4009
Interface Control Document
Technical document describing interface controls and identifying the authorities and responsibilities for ensuring the operation of such controls. This document is baselined during the preliminary design review and is maintained throughout the IS lifecycle.
NSTISSI 4009
Interim Approval
Temporary authorization granted by a designated approving authority for an IS to process information based on preliminary results of a security evaluation of the system.
NSTISSI 4009
Internal Security Controls
"Hardware, firmware, or software features within an IS that restrict access to resources only to authorized subjects."
NSTISSI 4009
Internet Protocol (IP)
Standard protocol for transmission of data from source to destinations in packet-switched communications network and interconnected systems of such networks.
NSTISSI 4009
Internetwork Private Line Interface
"Network cryptographic unit that provides secure connections, singularly or in simultaneous multiple connections, between a host and a predetermined set of corresponding hosts."
NSTISSI 4009
IO
information operations
IO Fundamentals
IPB
intelligence preparation of the battlespace
IO Fundamentals
IPM
Interpersonal Messaging
ACRONYMS
IPSO
Internet Protocol Security Option
ACRONYMS
IRK
Interswitch Rekeying Key
ACRONYMS
ISDN
Integrated Services Digital Network
ACRONYMS
ISO
International Standards Organization
ACRONYMS
ISS
Information Systems Security
ACRONYMS
ISSE
Information System Security Engineer
ACRONYMS
ISSM
Information System Security Manager
ACRONYMS
ISSO
Information System Security Officer
ACRONYMS
IT
Information Technology
ACRONYMS
IT&E
Integration Test and Evaluation
ACRONYMS
ITAR
International Traffic in Arms Regulation
ACRONYMS
ITSEC
Information Technology Security
ACRONYMS
IW
Information Warfare (INFOWAR)
ACRONYMS
J-2
Intelligence Directorate of a joint staff
IO Fundamentals
J-3
Operations Directorate of a joint staff
IO Fundamentals
J-4
Logistics Directorate of a joint staff
IO Fundamentals
J-5
Plans Directorate of a joint staff
IO Fundamentals
J-6
"Command, Control, Communications, and Computer Systems Directorate of a joint staff"
IO Fundamentals
J-7
Operational Plans and Interoperability Directorate of a joint staff
Joint Program Office for Special Technology Countermeasures
IO Fundamentals
JPOTF
joint psychological operations task force
IO Fundamentals
JRFL
joint restricted frequency list
IO Fundamentals
JSC
Joint Spectrum Center
IO Fundamentals
JTCB
joint targeting coordination board
IO Fundamentals
JTF
joint task force
IO Fundamentals
JWAC
Joint Warfare Analysis Center
IO Fundamentals
KAK
Key-Auto-Key
ACRONYMS
KEK
Key Encryption Key
ACRONYMS
Key
"Usually a sequence of random or pseudorandom bits used initially to set up and periodically change the operations performed in crypto-equipment for the purpose of encrypting or decrypting electronic signals, or for determining electronic counter-countermeasures patterns (e.g., frequency hopping or spread spectrum), or for producing other key."
NSTISSI 4009
Key Card
"Paper card, containing a pattern of punched holes, that establishes key for a specific cryptonet at a specific time."
NSTISSI 4009
Key Distribution Center (KDC)
COMSEC facility generating and distributing key in electrical form.
NSTISSI 4009
Key List
"Printed series of key settings for a specific cryptonet. Key lists may be produced in list, pad, or printed tape format."
NSTISSI 4009
Key Management
"Supervision and control of the process whereby key is generated, stored, protected, transferred, loaded, used, and destroyed."
NSTISSI 4009
Key Material
"Key, code, or authentication information in physical or magnetic form."
NSTISSI 4009
Key Pair
Public Key and its corresponding private key as used in public key cryptography.
NSTISSI 4009
Key Production Key
Key used to intialize a keystream generator for the production of other electronically generated key.
NSTISSI 4009
Key Stream
"Sequence of symbols (or their electrical or mechanical equivalents) produced in a machine or auto-manual cryptosystem to combine with plain text to produce cipher text, control transmission security processes, or produce key."
NSTISSI 4009
Key Tag
Identification information associated with certain types of electronic key.
NSTISSI 4009
Key Tape
Punched or magnetic tape containing key. Printed key in tape form is referred to as a key list.
NSTISSI 4009
Key Updating
Irreversible cryptographic process for modifying key.
NSTISSI 4009
Key-Auto-Key
Cryptographic logic using previous key to produce key.
NSTISSI 4009
Keyboard Attack
See Attack.
NSTISSI 4009
Key-Encryption-Key (KEK)
Key that encrypts or decrypts other key for transmission or storage.
NSTISSI 4009
Keying Material
Key code or authentication information in physical or magnetic form.
NSTISSI 4009
KG
Key Generator
ACRONYMS
KMASE
Key Management Application Service Element
ACRONYMS
KMC
Key Management Center
ACRONYMS
KMID
Key Management Identification Number
ACRONYMS
KMODC
Key Management Ordering and Distribution Center
ACRONYMS
KMP
Key Management Protocol
ACRONYMS
KMPDU
Key Management Protocol Data Unit
ACRONYMS
KMS
Key Management System
ACRONYMS
KMSA
Key Management System Agent
ACRONYMS
KMUA
Key Management User Agent
ACRONYMS
KP
Key Processor
ACRONYMS
KPK
Key Production Key
ACRONYMS
KSOS
Kernelized Secure Operating System
ACRONYMS
KVG
Key Variable Generator
ACRONYMS
Label
See security label.
NSTISSI 4009
Labeled Security Protections
Elementary-level mandatory access control protection features and intermediate-level discretionary access control features in a TCB that uses sensitivity labels to make access control decisions.
NSTISSI 4009
Laboratory Attack
Use of sophisticated signal recovery equipment in a laboratory environment to recover information from data storage media.
NSTISSI 4009
LAN
Local Area Network
ACRONYMS
LEAD
Low-Cost Encryption/Authentication Device
ACRONYMS
LEAF
Law Enforcement Access Field
ACRONYMS
Least Privilege
"Principle requiring that each subject be granted the most restrictive set of privileges needed for the performance of authorized tasks. Application of this principle limits the damage that can result from accident, error, or unauthorized use of an IS."
NSTISSI 4009
Level of Protection
"Extent to which protective measures, techniques, and procedures must be applied to ISs and network-based on risk, threat, vulnerability, system interconnectivity considerations, and information assurance needs. The levels of protection are: 1. Basic; ISs and networks requiring implementation of standard minimum security countermeasures. 2. Median; ISs and networks requiring layering of additional safeguards above the standard minimum security countermeasures. 3. High; ISs and networks requiring the most stringent protection and rigorous security countermeasures."
NSTISSI 4009
Leveraging
"In information operations, the effective use of information, information systems, and technology to increase the means and synergy in accomplishing information operations strategy. (This term and its definition modifies the existing term and definition and will be included in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Limited Maintenance
"COMSEC maintenance restricted to fault isolation, removal, and replacement of plug-in assemblies. Soldering or unsoldering usually is prohibited in limited maintenance. See full maintenance."
NSTISSI 4009
LIMS
Local Information Management Systems
ACRONYMS
Line Conditioning
"Elimination of unintentional signals or noise induced or conducted on a telecommunications or information system signal, power, control, indicator, or other external interface line."
NSTISSI 4009
Line Conduction
"Unintentional signals or noise induced or conducted on a telecommunications or information system signal, power, control, indicator, or other external interface line."
NSTISSI 4009
Link Encryption
Encryption of information between nodes of a communications system.
NSTISSI 4009
List-Oriented
Computer protection in which each protected object has a list of all subjects authorized to access it. See also ticket-oriented.
NSTISSI 4009
LIWA
Land Information Warfare Activity (ARMY)
ACRONYMS
LKG
Loop Key Generator
ACRONYMS
LMD
Local Management Device
ACRONYMS
LMD/KP
Local Management Device/Key Processor
ACRONYMS
LME
Layer Management Entry
ACRONYMS
LMI
Layer Management Interface
ACRONYMS
LOC
line of communications
IO Fundamentals
Local Authority
Organization responsible for generating and signing user certificates.
NSTISSI 4009
Local Management Device/Key Processor (LMD/KP)
An EKMS platform providing automated management of COMSEC material and generating key for designated users.
NSTISSI 4009
LOCK
Logical Co-Processing Kernel
ACRONYMS
Lock and Key Protection System
Protection system that involves matching a key or password with a specific access requirement.
NSTISSI 4009
Logic Bomb
Resident computer program triggering an unauthorized act when particular states of an IS are realized.
NSTISSI 4009
Logical Completeness Measure
Means for assessing the effectiveness and degree to which a set of security and access control mechanisms meets security specifications.
NSTISSI 4009
Long Title
Descriptive title of a COMSEC item.
NSTISSI 4009
Low Probability of Detection
Result of measures used to hide or disguise intentional electromagnetic transmissions.
NSTISSI 4009
Low Probability of Intercept
Result of measures to prevent the intercept of intentional electromagnetic transmissions.
NSTISSI 4009
LPC
Linear Predictive Coding
ACRONYMS
LPD
Low Probability of Detection
ACRONYMS
LPI
Low Probability of Intercept
ACRONYMS
LRIP
Limited Rate Initial Preproduction
ACRONYMS
LSI
Large Scale Integration
ACRONYMS
M&S
modeling and simulation
IO Fundamentals
MAC
1. Mandatory Access Control 2. Message Authentication Code
ACRONYMS
Magnetic Remanence
Magnetic representation of residual information remaining on a magnetic medium after the medium has been cleared. See clearing.
NSTISSI 4009
Mailicious Code
Software or firmware capable of performing an unauthorized function on an IS.
NSTISSI 4009
Maintenance Hook
"Special instructions (trapdoors) in software allowing easy maintenance and additional features development. Since maintenance hooks frequently allow entry into the code without the usual checks, they are a serious security risk if they are not removed prior to live implementation."
NSTISSI 4009
Maintenance Key
Key intended only for in-shop use.
NSTISSI 4009
MAISRC
Major Automated Information Systems Review Council
ACRONYMS
Malicious Applets
Small application programs automatically downloaded and executed that perform an unauthorized function on an IS.
NSTISSI 4009
Malicious Logic
"Hardware, software, or firmware capable of performing an unauthorized function on an IS."
NSTISSI 4009
MAN
1. Mandatory Modification 2. Metroplitan Area Network
ACRONYMS
Mandatory Access Control (MAC)
"Means of restricting access to objects based on the sensitivity of the information contained in the objects and the formal authorization (i.e., clearance, formal access approvals, and need-to-know) or subjects to access information of such sensitivity. See discretionary access control."
NSTISSI 4009
Mandatory Modification
Change to a COMSEC end-item that NSA requires to be completed and reported by a specified date. See optional modification.
NSTISSI 4009
Manipulative Communications Deception
Alteration or simulation of friendly telecommunications for the purpose of deception. See communications deception and imitative communications deception.
NSTISSI 4009
Manual Cryptosystem
Cryptosystem in which the cryptographic processes are performed without the use of crypto-equipment or auto-manual devices.
NSTISSI 4009
Manual Remote Rekeying
"Procedure by which a distant crypto-equipment is rekeyed electrically, with specific actions required by the receiving terminal operator."
NSTISSI 4009
Masquerading
Form of spoofing.
NSTISSI 4009
Master Crypto-Ignition key
A key device with electronic logic and circuits providing the capability for adding more operational CIKs to a keyset (maximum of seven) any time after fill procedure is completed. The master CIK can only be made during the fill procedure as the first CIK.
NSTISSI 4009
Material Symbol
Communications circuit identifier used for key card resupply purposes.
NSTISSI 4009
MATSYM
Material Symbol
ACRONYMS
MCCB
Modification/Configuration Control Board
ACRONYMS
MCEB
Military Communications and Electronics Board
ACRONYMS
MCEB IA
Military Communications and Electronics Board Information Assurance
ACRONYMS
MDC
Manipulation Detection Code
ACRONYMS
MEECN
Minimum Essential Emergency Communication Network
ACRONYMS
Memory Scavenging
The collection of residual information from data storage.
NSTISSI 4009
MEP
Management Engineering Plan
ACRONYMS
MER
Minimum Essential Requirements
ACRONYMS
Message Authentication Code
Data associated with an authenticated message allowing a receiver to verify the integrity of the message.
NSTISSI 4009
Message Externals
"Information outside of the message text, such as the header, trailer, etc."
NSTISSI 4009
Message Indicator
"Sequence of bits transmitted over a communications system for synchronizing crypto-equipment. Some off-line cryptosystems, such as the KL-51 and one-time pad systems, employ message indicators to establish decryption starting points."
NSTISSI 4009
MHS
Message Handling System
ACRONYMS
MI
Message Indicator
ACRONYMS
MIB
Management Information Base
ACRONYMS
MIJI
"Meaconing, Intrusion, Jamming, and Interference"
ACRONYMS
Military Deception
"Actions executed to deliberately mislead adversary military decisionmakers as to friendly military capabilities, intentions, and operations, thereby causing the adversary to take specific actions (or inactions) that will contribute to the accomplishment o"
IO Fundamentals
Military Operations other than War
"Operations that encompass the use of military capabilities across the range of military operations short of war. These military actions can be applied to complement any combination of the other instruments of national power and occur before, during, and after war. Also called MOOTW. (Joint Pub 1-02)"
IO Fundamentals
Mimicking
Form of spoofing.
NSTISSI 4009
MINTERM
Miniature Terminal
ACRONYMS
MLS
Multilevel Security
ACRONYMS
MLS PMO
Multilevel Security Program Management Office
ACRONYMS
MLS WG
Multilevel Security Working Group
ACRONYMS
MOA
Memorandum of Agreement
ACRONYMS
Mode of Operation
"Description of the conditions under which an IS operates based on the sensitivity of information processed and the clearance levels, format access approvals, and need-to-know of its users. Four modes of operation are authorized for processing or transmitting information; dedicated mode, system-high mode, compartmented/partitioned mode, and multilevel mode."
NSTISSI 4009
MOOTW
military operations other than war
IO Fundamentals
MOU
Memorandum of Understanding
ACRONYMS
MRT
Miniature Receiver Terminal
ACRONYMS
MSE
Mobile Subscriber Equipment
ACRONYMS
Multilevel Device
Equipment trusted to properly maintain and separate data of different security categories.
NSTISSI 4009
Multilevel Mode
"INFOSEC mode of operation wherein all the following statements are satisfied concerning the users who have direct or indirect access to the system, its peripherals, remote terminals, or remote hosts; a. some users do not have a valid security clearance for all the information processed in the IS; b. all users have the proper security clearance and appropriate formal access approval for that information to which they have access; and c. all users have a valid need-to-know only for information to which they have access."
NSTISSI 4009
Multilevel Security
Concept of processing information with different classifications and categories that simultaneously permits access by users with different security clearances and denies access to users who lack authorization.
NSTISSI 4009
Mutual Suspicion
"Condition in which two IS's need to rely upon each other to perform a service, yet neither trusts the other to properly protect shared data."
NSTISSI 4009
NACAM
National COMSEC Advisory Memorandum
ACRONYMS
NACSI
National COMSEC Instruction
ACRONYMS
NACSIM
National COMSEC Information Memorandum
ACRONYMS
NAK
Negative Acknowledge
ACRONYMS
National Information Infrastructure
"The nation-wide interconnection of communications networks, computers, databases, and consumer electronics that make vast amounts of information available to users. The national information infrastructure encompasses a wide range of equipment, including cameras, scanners, keyboards, facsimile machines, computers, switches, compact disks, video and audio tape, cable, wire, satellites, fiber-optic transmission lines, networks of all types, televisions, monitors, printers, and much more. The friendly and adversary personnel who make decisions and handle the transmitted information constitute a critical component of the national information infrastructure. Also called NII. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
National Security Information
Information that has been determined pursuant to Executive Order 12958 or any predecessor order to require protection against unauthorized disclosure.
NSTISSI 4009
National Security Systems
"Any telecommunications or information system operated by the US Government, the function, operation, or use of which: 1. involves intelligence activities; 2. involves cryptologic activities related to national security; 3. involves command and control of military forces; 4. involves equipment that is an intregal part of a weapon or weapon system; or 5. is critical to the direct fulfillment of military or intelligence missions and does not include a system that is to be used for routine administrative and business applications (including payroll, finance, logistics, and personnel management applications). (Title 40 U.S.C. Section 1452, Information Technology Management Reform Act of 1996.)"
NSTISSI 4009
NATO
North Atlantic Treaty Organization
ACRONYMS
NCA
National Command Authorities
IO Fundamentals
NCCD
Nuclear Command and Control Document
ACRONYMS
NCSC
National Computer Security Center
ACRONYMS
NDI
Non-Developmental Item
ACRONYMS
Need-to-know
"The necessity for access to, or knowledge or possession of, specific information required to carry out official duties."
NSTISSI 4009
Network
IS implemented with a collection of interconnected network nodes.
NSTISSI 4009
Network Front-End
Device implementing protocols that allow attachment of a computer system to a network.
NSTISSI 4009
Network Reference Monitor
Access control concept referring to an abstract machine that mediates all access to objects within a network by subjects within the network. See reference monitor.
NSTISSI 4009
Network Security
"The protection of networks and their services from unauthorized modification, destruction, or disclosure. It provides assurance the network performs its critical functions correctly and there are no harmful side-effects. "
NSTISSI 4009
Network Security Architecture
Subset of network architecture specifically addressing security-relevant issues.
NSTISSI 4009
Network Security Officer
Individual designated to assure network security. See Information System Security Officer.
NSTISSI 4009
Network Sponsor
"Individual or organization responsible for stating the security policy enforced by the network, designing the network security architecture to properly enforce that policy, and ensuring the network is implemented in such a way that the policy is enforced. For commercial-off-the-shelf systems (COTS), the network sponsor will normally be the vendor. For a fielded network system, the sponsor will normally be the project manager or system administrator."
NSTISSI 4009
Network System
System implemented with a collection of interconnected components. A network system is based on a coherent security architecture and design.
NSTISSI 4009
Network Trusted Computing Base (NTCB)
"Totality of protection mechanisms within a network, including hardware, firmware, and software, the combination of which is responsible for enforcing a security policy. See trusted computing base."
NSTISSI 4009
Network Trusted Computing Base (NTCB) Partition
"Totality of mechanisms within a single network component for enforcing the network policy, as allocated to that component; the part of the NTCB within a single network component."
NSTISSI 4009
Network Weaving
Penetration technique in which different communication networks are linked to access an IS to avoid detection and trace-back.
NSTISSI 4009
NGO
nongovernmental organization
IO Fundamentals
NII
National Information Infrastructure
ACRONYMS
NIMA
National Imagery and Mapping Agency
ACRONYMS
NIPRNET
Not Classified Internet Protocol Router Network
ACRONYMS
NISAC
National Industrial Security Advisory Committee
ACRONYMS
NIST
National Institute of Standards and Technology
ACRONYMS
NKSR
Nonkernel Security Related
ACRONYMS
NLW
N-Level Workstation
ACRONYMS
NLZ
No-Lone Zone
ACRONYMS
NOFORN
No Foreign Dissemination
ACRONYMS
No-Lone Zone
"Area, room, or space that, when staffed, must be occupied by two or more appropriately cleared individuals who remain within sight of each other. See-two-person integrity."
NSTISSI 4009
Noncooperative Remote Rekeying
Synonymous with automatic remote rekeying.
NSTISSI 4009
Nonrepudiation
"Assurance the sender of data is provided with proof of delivery and the recipient is provided with proof of the sender's identity, so neither can later deny having processed the data."
NSTISSI 4009
Nonsecret Encryption
Synonymous with Public Key Cryptography.
NSTISSI 4009
NSA
National Security Agency
ACRONYMS
NSAD
Network Security Architecture and Design
ACRONYMS
NSD
National Security Directive
ACRONYMS
NSDD
National Security Decision Directive
ACRONYMS
NSEP
National Security Emergency Preparedness
ACRONYMS
NSF
Network Security Framework
ACRONYMS
NSI
National Security Information
ACRONYMS
NSTAC
National Security Telecommunications Advisory Committee
ACRONYMS
NSTISSAM
National Security Telecommunications and Information Systems Security Advisory/Information Memorandum
ACRONYMS
NSTISSD
National Security Telecommunications and Information Systems Security Directive
ACRONYMS
NSTISSI
National Security Telecommunications And Information Systems Security Instruction
ACRONYMS
NSTISSP
National Security Telecommunications and Information Systems Security Policy
ACRONYMS
NTCB
Network Trusted Computing Base
ACRONYMS
NTIA
National Telecommunications and Information Administration
ACRONYMS
NTISSAM
National Telecommunications and Information Systems Security Advisory/Information Memorandum
ACRONYMS
NTISSC
National Telecommunications and Information Systems Security Council
ACRONYMS
Null
"Dummy letter, letter symbol, or code group inserted into an encrypted message to delay or prevent its decryption or to complete encrypted groups for transmission or transmission security purposes."
NSTISSI 4009
O&M
Operations and Maintenance
ACRONYMS
OADR
Originating Agency's Determination Required
ACRONYMS
Object
Passive entity that contains or receives information. Access to an object implies access to the information it contains.
NSTISSI 4009
Object Reuse
Reassignment and re-use of a storage medium containing one or more objects after ensuring no residual data remains on the storage medium.
NSTISSI 4009
Offensive Information Operations
"The integrated use of assigned and supporting capabilities and activities, mutually supported by intelligence, to affect adversary decisionmakers to achieve or promote specific objectives. These capabilities and activities include, but are not limited to, operations security, military deception, psychological operations electronic warfare, physical attack and/or destruction, and special information operations, and could include computer network attack. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Off-Line Cryptosystem
Cryptosystem in which encryption and decryption are performed independently of the transmission and reception functions.
NSTISSI 4009
OMB
Office of Management and Budget
ACRONYMS
OMRT
Operations and Maintenance Responsibility Transfer
ACRONYMS
One-Part Code
"Code in which plain text elements and their accompanying code groups are arranged in alphabetical, numerical, or other systematic order, so one listing serves for both encoding and decoding. One-part codes are normally small codes used to pass small volumes of low-sensitivity information."
NSTISSI 4009
One-Time Cryptosystem
Cryptosystem employing key used only once.
NSTISSI 4009
One-Time Pad
Manual one-time cryptosystem produced in pad form.
NSTISSI 4009
One-Time Tape
Punched paper tape used to provide key streams on a one-time basis in certain machine cryptosystems.
NSTISSI 4009
On-Line Cryptosystem
Cryptosystem in which encryption and decryption are performed in association with the transmitting and receiving functions.
NSTISSI 4009
OPCODE
Operations Code
ACRONYMS
Open Security Environment
"Environment that does not provide sufficient assurance that applications and equipment are protected against the loss of confidentiality, integrity, or availability."
NSTISSI 4009
Open Storage
"Storage of classified information within an accredited facility, but not in General Services Administration approved secure containers, while the facility is unoccupied by authorized personnel."
NSTISSI 4009
Operational Data Security
"Protection of data from either accidental or unauthorized intentional modification, destruction, or disclosure during input, processing, storage, transmission, or output operations."
NSTISSI 4009
Operational Key
Key intended for use over-the-air for protection of operational information or for the production or secure electrical transmission of key streams.
NSTISSI 4009
Operational Level of War
"The level of war at which campaigns and major operations are planned, conducted, and sustained to accomplish strategic objectives within theaters or areas of operations. Activities at this level link tactics and strategy by establishing operational objectives needed to accomplish the strategic objectives, sequencing events to achieve the operational objectives, initiating actions, and applying resources to bring about and sustain these events. These activities imply a broader dimension of time or space than do tactics; they ensure the logistic and administrative support of tactical forces, and provide the means by which tactical successes are exploited to achieve strategic objectives. (Joint Pub 1-02)"
IO Fundamentals
Operational Waiver
Authority for continued use of unmodified COMSEC end-items pending the completion of a mandatory modification.
NSTISSI 4009
Operations Code
Code composed largely of words and phrases suitable for general communications use.
NSTISSI 4009
Operations Security
A process of identifying critical information and subsequently analyzing friendly actions attendant to military operations and other activities to: a. Identify those actions that can be observed by adversary intelligence systems. b. Determine indicators hostile intelligence systems might obtain that could be interpreted or pieced together to derive critical information in time to be useful to adversaries. c. Select and execute measures that eliminate or reduce to an acceptable level the vulnerabilities of friendly actions to adversary exploitation. Also called OPSEC. (Joint Pub 1-02)
IO Fundamentals
Operations Security
Process denying information to potential adversaries about capabilities and/or intentions by identifying controlling and protecting unclassified generic activities.
NSTISSI 4009
OPFOR
opposition force
IO Fundamentals
OPLAN
operation plan
IO Fundamentals
OPORD
operation order
IO Fundamentals
OPSEC
Operations Security
ACRONYMS
Optional Modification
"NSA-approved modification not required for universal implementation by all holders of a COMSEC end-item. This class of modification requires all of the engineering/doctrinal control of mandatory modification but is usually not related to security, safety, TEMPEST, or reliability."
NSTISSI 4009
ORA
Organizational Registration Authority
ACRONYMS
Orange Book
The DoD Trusted Computer System Evaluation Criteria (DoD 5200.28-STD).
NSTISSI 4009
ORD
Operations Requirements Document
ACRONYMS
Organizational Maintenance
Limited maintenance performed by a user organization.
NSTISSI 4009
Organizational Registration Authority (ORA)
Entity within the PKI that authenticates the identity and the organizational affiliation of the users.
NSTISSI 4009
OSD
Office of Secretary of Defense
ACRONYMS
OT&E
Operational Test and Evaluation
ACRONYMS
OTAD
Over-the-Air Key Distribution
ACRONYMS
OTAR
Over-the-Air Rekeying
ACRONYMS
OTAT
Over-the-Air Transfer
ACRONYMS
OTP
One-Time Pad
ACRONYMS
OTT
One-Time Tape
ACRONYMS
Overt Channel
Communications path within a computer system or network designed for the authorized transfer of data. See covert channel.
NSTISSI 4009
Over-The-Air Key Distribution
"Providing electronic key via over-the-air rekeying, over-the-air key transfer, or cooperative key generation."
NSTISSI 4009
Over-The-Air Key Transfer
Electronically distributing key without changing traffic encryption key used on the secured communications path over which the transfer is accomplished.
NSTISSI 4009
Over-The-Air Rekeying (OTAR)
Changing traffic encryption key or transmission security key in remote crypto-equipment by sending new key directly to the remote crypto-equipment over the communications path it secures.
NSTISSI 4009
Overwrite Procedure
Process of writing patterns of data on top of the data stored on a magnetic medium.
NSTISSI 4009
P Model
Preproduction Model
ACRONYMS
PA
public affairs
IO Fundamentals
PAA
Policy Approving Authority
ACRONYMS
PAAP
Peer Access Approval
ACRONYMS
Packet Filter
"Type of firewall in which each packet is examined and either allowed to pass through or is rejected, based on local security policy."
NSTISSI 4009
PAE
Peer Access Enforcement
ACRONYMS
PAL
Permissive Action Link
ACRONYMS
Parity
Bit(s) used to determine whether a block of data has been altered.
NSTISSI 4009
Partitioned Security Mode
"IS security mode of operation wherein all personnel have the clearance, but not necessarily formal access approval and need-to-know, for all information handled by an IS."
NSTISSI 4009
Passphrase
"Sequence of characters, longer than the acceptable length of a password, that is transformed by a password system into a virtual password of acceptable length."
NSTISSI 4009
Password
Protected/private alphanumeric string used to authenticate an identity or to authorize access to data.
NSTISSI 4009
PC
Personal Computer
ACRONYMS
PCA
Policy Creation Authority
ACRONYMS
PCMCIA
Personal Computer Memory Card International Association
ACRONYMS
PCZ
Protected Communications Zone
ACRONYMS
PDR
Preliminary Design Review
ACRONYMS
PDS
1. Protected Distribution Systems 2. Practices Dangerous to Security
ACRONYMS
PDU
Protocol Data Unit
ACRONYMS
Penetration
Unauthorized act of bypassing the security mechanisms of a system.
NSTISSI 4009
Penetration Testing
Security testing in which evaluators attempt to circumvent the security features of a system based on their understanding of the system design and implementation.
NSTISSI 4009
Per-Call Key
Unique traffic encryption key generated automatically by certain secure telecommunications systems to secure single voice or data transmissions. See cooperative key generation.
NSTISSI 4009
Perception Management
"Actions to convey and/or deny selected information and indicators to foreign audiences to influence their emotions, motives, and objective reasoning; and to intelligence systems and leaders at all levels to influence official estimates, ultimately resulting in foreign behaviors and official actions favorable to the originator's objectives. In various ways, perception management combines truth projection, operations security, cover and deception, and psychological operations. (Joint Pub 1-02)"
IO Fundamentals
Periods Processing
"Processing of various levels of classified and unclassified information at distinctly different times. Under the concept of periods processing, the system must be purged of all information from one processing period before transitioning to the next."
NSTISSI 4009
Permuter
Device used in crypto-equipment to change the order in which the contents of a shift register are used in various nonlinear combining circuits.
NSTISSI 4009
PES
Positive Enable System
ACRONYMS
Physical Security
"That part of security concerned with physical measures designed to safeguard personnel; to prevent unauthorized access to equipment, installations, material, and documents; and to safeguard them against espionage, sabotage, damage, and theft. (Joint Pub 1-02)"
IO Fundamentals
PKA
Public Key Algorithm
ACRONYMS
PKC
Public Key Cryptography
ACRONYMS
PKI
Public Key Infrastructure
ACRONYMS
PKSD
Programmable Key Storage Device
ACRONYMS
Plain Text
Unencrypted information.
NSTISSI 4009
PNEK
Post-Nuclear Event Key
ACRONYMS
POC
Point of Contact
ACRONYMS
Policy Approving Authority (PAA)
First Level of the PKI Certification Management Authority that approves the security policy of each PCA.
NSTISSI 4009
Policy Creation Authority (PCA)
Second level of the PKI Certification Management Authority that formulates the security policy under which it and its subordinate CAs will issue public key certificates. Also known as a policy certification authority.
NSTISSI 4009
Positive Control Material
"Generic term referring to a sealed authenticator system, permissive action link, coded switch system, positive enable system, or nuclear command and control documents, material, or devices."
NSTISSI 4009
PPL
Preferred Products List (a section in the INFOSEC Products and Services Catalogue)
ACRONYMS
PRBAC
Partition Rule Base Access Control
ACRONYMS
Preproduction Model
"Version of INFOSEC equipment employing standard parts and suitable for complete evaluation of form, design, and performance. Preproduction models are often referred to as beta models."
NSTISSI 4009
Print Suppression
Eliminating the display of characters in order to preserve their secrecy.
NSTISSI 4009
Privacy System
"Commercial encryption system that affords telecommunications limited protection to deter a casual listener, but cannot withstand a technically competent cryptanalytic attack."
NSTISSI 4009
Private Key
"Encryption methodology in which the encryptor and decryptor use the same key, which must be kept secret."
NSTISSI 4009
Privileged Access
"Explicitly authorized access of a specific user, process, or computer to a computer resource(s)."
NSTISSI 4009
Probe
Attempt to gather information about an IS or its users.
NSTISSI 4009
Production Model
INFOSEC equipment in its final mechanical and electrical form.
NSTISSI 4009
PROM
Programmable Read-Only Memory
ACRONYMS
PROPIN
Proprietary Information
ACRONYMS
Proprietary Information
"Material and information relating to or associated with a company's products, business or activities, including but not limited to: financial information; data or statements; trade secrets; product research and development; existing and future product designs and performance specification; marketing plans or techniques; schematics; client lists, computer programs, processes and know-how that have been clearly identified and properly marked by the company as proprietary information, trade secrets or company confidential information. The information must have been developed by the company and not be available to the government or to the public without restriction from another source."
NSTISSI 4009
Protcol
"Set of rules and formats, semantic, syntactic, permitting ISs to exchange information."
NSTISSI 4009
Protected Communications
Telecommunications deriving their protection through use of type 2 products or data encryption standard equipment. See type 2 product.
NSTISSI 4009
Protected Distribution Systems (PDS)
Wire line or fiber optic distribution system used to transmit unencrypted classified national security information through an area of lesser classification or control.
NSTISSI 4009
Protection Philosophy
"Informal description of the overall design of an IS delineating each of the protection mechanisms employed. Combination of formal and informal techniques, appropriate to the evaluation class, used to show the mechanisms are adequate to enforce the security policy."
NSTISSI 4009
Protection Ring
One of a hierarchy of privileged modes of an IS that gives certain access rights to user programs and processes that are authorized to operate in a given mode.
NSTISSI 4009
Protective Packaging
"Packaging techniques for COMSEC material that discourage penetration, reveal a penetration has occured or was attempted, or inhibit viewing or copying of keying material prior to the time it is exposed for use."
NSTISSI 4009
Protective Technologies
"Special tamper-evident features and materials employed for the purpose of detecting tampering and deterring attempts to compromise, modify, penetrate, extract, or substitute information processing equipment and keying material."
NSTISSI 4009
Proxy
Application acting on behalf of another application or system in responding to protocol requests.
NSTISSI 4009
PSL
Protected Services List
ACRONYMS
Psychological Operations
"Planned operations to convey selected information and indicators to foreign audiences to influence their emotions, motives, objective reasoning, and ultimately the behavior of foreign governments, organizations, groups, and individuals. The purpose of psychological operations is to induce or reinforce foreign attitudes and behavior favorable to the originator's objectives. Also called PSYOP. (Joint Pub 1-02)"
IO Fundamentals
PSYOP
psychological operations
IO Fundamentals
Public Affairs
"Those public information, command information, and community relations activities directed toward both the external and internal publics with interest in the Department of Defense. Also called PA. (Joint Pub 1-02)"
IO Fundamentals
Public Cryptography
"Body of cryptographic and related knowledge, study, techniques, and applications that is, or intended to be, in the public domain."
NSTISSI 4009
Public Key Certificate
"Contains the name of a user, the public key component of the user, and the name of the issuer who vouches that the public key component is bound to the named user."
NSTISSI 4009
Public Key Cryptography (PKC)
"Encryption system using a linked pair of keys. What one pair of keys encrypts, the other pair decrypts."
NSTISSI 4009
Public Key Infrastructure (PKI)
"Framework established to issue, maintain, and revoke public key certificates accomodating a variety of security technologies, including the use of software."
NSTISSI 4009
Purging
Rendering stored information unrecoverable by laboratory attack.
NSTISSI 4009
PWDS
Protected Wireline Distribution System
ACRONYMS
QUADRANT
Short name referring to technology that provides tamper-resistant protection to crypto-equipment.
NSTISSI 4009
R&D
Research and Development
ACRONYMS
RA
Risk Assessment
ACRONYMS
RACE
Rapid Automatic Cryptographic Equipment
ACRONYMS
Rainbow Series
Set of publications that interpret Orange Book requirements for trusted systems.
NSTISSI 4009
RAMP
Rating Maintenance Program
ACRONYMS
Randomizer
"Analog or digital source of unpredictable, unbiased, and usually independent bits. Randomizers can be used for several different functions, including key generation or to provide a starting state for a key generator."
NSTISSI 4009
RASP
Remote Access Security Program
ACRONYMS
RC
Request Champion
ACRONYMS
RDT&E
"Research, Development, Test and Evaluation"
ACRONYMS
Read
Fundamental operation in an IS that results only in the flow of information from an object to a subject.
NSTISSI 4009
Read Access
Permission to read information in an IS.
NSTISSI 4009
Real Time Reaction
Immediate response to a penetration attempt that is detected and diagnosed in time to prevent access.
NSTISSI 4009
Recovery Procedures
Actions necessary to restore data files of an IS and computational capability after a system failure.
NSTISSI 4009
RED
"Designation applied to information systems, and associated areas, circuits, components, and equipment in which national security information is being processed."
NSTISSI 4009
RED Signal
"Any electronic emission (e.g., plain text, key, key stream, subkey stream, initial fill, or control signal) that would divulge national security information if recovered."
NSTISSI 4009
RED/BLACK Concept
"Separation of electrical and electronic circuits, components, equipment, and systems that handle national secuirty information (RED), in electrical form, from those that handle non-national security information (BLACK) in the same form."
NSTISSI 4009
Reference Monitor
Access control concept referring to an abstract machine that mediates all accesses to objects by subjects.
NSTISSI 4009
Reference Validation Mechanism
Portion of a trusted computing base whose normal function is to control access between subjects and objects and whose correct operation is essential to the protection of data in the system.
NSTISSI 4009
Release Prefix
"Prefix appended to the short title of U.S.-produced keying material to indicate its foreign releasability. A"" designates material that is releasable to specific allied nations and ""US"" designates material intended exclusively for U.S. use."""
NSTISSI 4009
Remanence
Residual information remaining on storage media after clearing. See magnetic remanence and clearing.
NSTISSI 4009
Remote Rekeying
Procedure by which a distant crypto-equipment is rekeyed electrically. See automatic remote rekeying and manual remote rekeying.
NSTISSI 4009
Repair Action
"NSA-approved change to a COMSEC end-item that does not affect the original characteristics of the end-item and is provided for optional application by holders. Repair actions are limited to minor electrical and/or mechanical improvements to enhance operation, maintenance, or reliability. They do not require an identification label marking, or control but must be fully documented by changes to the maintenance manual."
NSTISSI 4009
Reserve Keying Material
Key held to satisfy unplanned needs. See contigency key.
NSTISSI 4009
Residual Risk
Portion of risk remaining after security measures have been applied.
NSTISSI 4009
Residue
"Data left in storage after information processing operations are complete, but before deguassing or overwriting has taken place."
NSTISSI 4009
Resource Encapsulation
Method by which the reference monitor mediates accesses to an IS resource. Resource is protected and not directly accessible by a subject. Satisfies requirement for accurate auditing of resource usage.
NSTISSI 4009
Risk Analysis
Synonymous with risk assessment
NSTISSI 4009
Risk Assessment
"Process of analyzing threats to and vulnerabilities of an IS, and the potential impact the loss of information or capabilities of a system would have on national security. The resulting analysis is used as a basis for identifying appropriate and cost-effective counter-measures."
NSTISSI 4009
Risk Index
"Difference between the minimum clearance or authorization of IS users and the maximum sensitivity (e.g., classification and categories) of data processed by the system."
NSTISSI 4009
Risk Management
"Process concerned with the identification, measurement, control, and minimization of security risks in information systems to a level commensurate with the value of the assets protected."
NSTISSI 4009
ROE
rules of engagement
IO Fundamentals
RQT
Reliability Qualification Tests
ACRONYMS
S
Secret
ACRONYMS
SA
System Administrator
ACRONYMS
SABI
Secret and Below Interoperability
ACRONYMS
Safeguarding Statement
"Statement affixed to a computer output or printout that states the highest classification being processed at the time the product was produced and requires control of the product, at that level, until determination of the true classification by an authorized person. Synonymous with banner."
NSTISSI 4009
Sample Key
Key intended for off-the-air demonstration use only.
NSTISSI 4009
Sanitize
"Process to remove information from media such that data recovery is not possible. It includes removing all classified labels markings, and activity logs."
NSTISSI 4009
SAO
Special Access Office
ACRONYMS
SAP
1. System Acquisition Plan 2. Special Access Program
ACRONYMS
SAR
Special Access Required
ACRONYMS
SARK
SAVILLE Advanced Remote Keying
NSTISSI 4009
SATE
Security Awareness Training and Education
ACRONYMS
SBU
"Sensitive But Unclassified Information - The designation applied only to information or material, the loss, misuse, or unauthorized access to, or modification of, could adversely affect the national interest or the conduct of Federal programs, or the privacy to which individuals are entitled under Section 552a of Title 5, U. S. Code, but has not been specifically authorized under criteria established by an Executive Order or an act of Congress to be kept classified in the interest of national defense or foreign policy."
ACRONYMS
Scavenging
Searching through object residue to acquire data.
NSTISSI 4009
SCI
Sensitive Compartmented Information - Includes only that intelligence material having special controls indicating restrictive handling for which systems of compartmentation of handling are formally established.
ACRONYMS
SCIF
Sensitive Compartmented Information Facility
ACRONYMS
Scratch Pad Store (SPS)
Temporary key storage in crypto-equipment.
NSTISSI 4009
SDNRIU
Secure Digital Net Radio Interface Unit
ACRONYMS
SDNS
Secure Data Network System
ACRONYMS
SDR
System Design Review
ACRONYMS
SE\CM
Systems Engineering\Configuration Management
ACRONYMS
Secure Communications
Telecommunications deriving security through use of type1 products and/or protected distribution systems.
NSTISSI 4009
Secure Hash Standard
Specification for a secure hash algorithm that can generate a condensed message representation called a message digest.
NSTISSI 4009
Secure Operating System
"Resident software controlling hardware and other software functions in an IS to provide a level of protection or security appropriate to the classification, sensitivity, and/or criticality of the data and resources it manages."
NSTISSI 4009
Secure State
Condition in which no subject can access any object in an unauthorized manner.
NSTISSI 4009
Secure Subsystem
Subsystem containing its own implementation of the reference monitor concept for those resources it controls. Secure subsystem must depend on other controls and the base operating system for the control of subjects and the more primitive system objects.
NSTISSI 4009
Security Fault Analysis
"Assessment, usually performed on IS hardware, to determine the security properties of a device when hardware fault is encountered."
NSTISSI 4009
Security Features Users Guide (SFUG)
Guide or manual explaining how the security mechanisms in a specific system work.
NSTISSI 4009
Security Filter
IS trusted subsystem that enforces security policy on the data passing through it.
NSTISSI 4009
Security Flaw
Error of commission or omission in an IS that may allow protection mechanisms to be bypassed.
NSTISSI 4009
Security Inspection
"Examination of an IS to determine compliance with security policy, procedures, and practices."
NSTISSI 4009
Security Kernel
"Hardware, firmware, and software elements of a trusted computing base implementing the reference monitor concept. Security kernel must mediate all accesses, be protected from modification, and be verifiable as correct."
NSTISSI 4009
Security Label
"Information representing the sensitivity of a subject or object, such as its hierarchical classification (CONFIDENTIAL, SECRET, TOP SECRET) together with any applicable nonhierarchical security categories (e.g., sensitive compartmented information, critical nuclear weapon design information)."
NSTISSI 4009
Security Net Control Station
Management system overseeing and controlling implementation of network security policy.
NSTISSI 4009
Security Perimeter
All components/devices of an IS to be accredited. Separately accredited components generally are not included within the perimeter.
NSTISSI 4009
Security Range
"Highest and lowest security levels that are permitted in or on an IS, system component, subsystem, or network."
NSTISSI 4009
Security Requirements
"Types and levels of protection necessary for equipment, data, information, applications, and facilities to meet security policy."
NSTISSI 4009
Security Requirements Baseline
Description of the minimum requirements necessary for an IS to maintain an acceptable level of security.
NSTISSI 4009
Security Safeguard
"Protective measures and controls prescribed to meet the security requirements specified for an IS. Safeguards may include security features, management constraints, personnel security, and security of physical structures, areas, and devices. See accreditation."
NSTISSI 4009
Security Specification
Detailed description of the safeguards required to protect an IS.
NSTISSI 4009
Security Test & Evaluation
"Examination and analysis of the safeguards required to protect an IS, as they have been applied in an operational environment, to determine the security posture of that system."
NSTISSI 4009
Security Testing
Process to determine that an IS protects data and maintains functionally as intended.
NSTISSI 4009
Seed Key
Initial key used to start an updating or key generation process.
NSTISSI 4009
Self-Authentication
"Implicit authentication, to a predetermined level, of all transmissions on a secure communications system."
NSTISSI 4009
Sensitive Information
"Information, the loss, misuse, or unauthorized access to modification of which would adversely affect the national interest or the conduct of federal programs, or the privacy to which individuals are entitled under 5 U.S.C. Section 552a (the Privacy Act), but that has not been specifically authorized under criteria established by an Executive Order or an Act of Congress to be kept secret in the interest of the national defense or foreign policy. (Systems that are not national security systems, but contain sensitive information are to be protected in accordance with the requirements of the Computer Security Act of 1987 (P.L. 100-235).)"
NSTISSI 4009
Sensitivity Label
Information representing elements of the security label(s) of a subject and an object. Sensitivity labels are used by the trusted computing base (TCB) as the basis for mandatory access control decisions.
NSTISSI 4009
SETA
"Systems Engineering, Testing and Analysis"
ACRONYMS
SFA
Security Fault Analysis
ACRONYMS
SFUG
Security Features Users Guide
ACRONYMS
SHA
Secure Hash Algorithm
ACRONYMS
Shielded Enclosure
Room or container designed to attenuate electromagnetic radiation.
NSTISSI 4009
Short Title
"Identifying combination of letters and numbers assigned to certain COMSEC materials to facilitate handling, accounting, and controlling."
NSTISSI 4009
SI
Special Intelligence
ACRONYMS
Signals Security
Generic term encompassing COMSEC and electronic security.
NSTISSI 4009
SIGSEC
Signals Security
ACRONYMS
Simple Security Property
"Bell-La Padula security model rule allowing a subject read access to an object, only if the security level of the subject dominates the security level of the object."
NSTISSI 4009
Single Point Keying
"Means of distributing key to multiple, local crypto-equipment or devices from a single fill point."
NSTISSI 4009
Single-Level Device
IS device not trusted to properly maintain and separate data to different security levels.
NSTISSI 4009
SIO
special information operations
IO Fundamentals
SIPRNET
Secret Internet Protocol Router Network
ACRONYMS
SISS
Subcommittee on Information Systems Security
ACRONYMS
SMG
Standard Mail Guard
ACRONYMS
SMU
Secure Mobile Unit
ACRONYMS
Sniffer
Software tool that audits and identifies network traffic packets.
NSTISSI 4009
SOF
special operations forces
IO Fundamentals
Software System Test and Evaluation Process
"Process that plans, develops, and documents the quantitative demonstration of the fulfillment of all baseline functional performance, operational, and interface requirements."
NSTISSI 4009
SOW
Statement of Work
ACRONYMS
Special Information Operations
"Information operations that by their sensitive nature, due to their potential effect or impact, security requirements, or risk to the national security of the United States, require a special review and approval process. Also called SIO. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Special Mission Modification
"Mandatory or optional modification that applies only to a specific mission, purpose, operational, or environmental need."
NSTISSI 4009
Speech Privacy
Techniques using fixed sequence permutations or voice/speech inversion to render speech unintelligible to the casual listener.
NSTISSI 4009
SPK
Single Point Key(ing)
ACRONYMS
Split Knowledge
"Separation of data or information into two or more parts, each part constantly kept under control of separate authorized individuals or teams so that no one individual or team will know the whole data."
NSTISSI 4009
SPO
System Program Office
ACRONYMS
Spoofing
"Unauthorized use of legitimate Identification and Authentication (I&A) data, however, it was obtained to mimick a subject different from the attacker. Impersonating, masquerading, piggybacking, and mimicking are forms of spoofing."
NSTISSI 4009
Spread Spectrum
"Telecommunications techniques in which a signal is transmitted in a bandwidth considerably greater than the frequency content of the original information. Frequency hopping, direct sequence spreading, time scrambling, and combinations of these techniques are forms of spread spectrum."
NSTISSI 4009
SPS
Scratch Pad Store
ACRONYMS
SRR
Security Requirements Review
ACRONYMS
SSE
System Security Engineer
ACRONYMS
SSMP
System Security Management Plan
ACRONYMS
SSO
Systems Security Officer
ACRONYMS
SSRS
System Security Requirements Specification
ACRONYMS
ST&E
Security Test and Evaluation
ACRONYMS
Star (*) Property
Bell-La Padula security model rule allowing a subject write access to an object only if the security level of the object dominates the security level of the subject.
NSTISSI 4009
Start-Up KEK
Key-encryption-key held in common by a group of potential communicating entities and used to establish ad hoc tactical networks.
NSTISSI 4009
State Variable
Variable representing either the state of an IS or the state of some system resource.
NSTISSI 4009
STE
Secure Terminal Equipment
ACRONYMS
STO
special technical operations
IO Fundamentals
Storage Object
An object supporting both read and write accesses to an IS.
NSTISSI 4009
Strategic Level of War
"The level of war at which a nation, often as a member of a group of nations, determines national or multinational (alliance or coalition) security objectives and guidance, and develops and uses national resources to accomplish these objectives. Activities atthis level establish national and multinational military objectives; sequence initiatives; define limits and assess risks for the use of military and other instruments of national power; develop global plans or theater war plans to achieve these objectives; and provide military forces and other capabilities in accordance with strategic plans. (Joint Pub 1-02)"
IO Fundamentals
STS
Subcommittee on Telecommunications Security
ACRONYMS
STU
Secure Telephone Unit
ACRONYMS
Subassembly
"Major subdivision of an assembly consisting of a package of parts, elements, and circuits that perform a specific function."
NSTISSI 4009
Subject
"Generally a person, process, or device causing information to flow among objects or changes the system state."
NSTISSI 4009
Subject Security Level
Sensitivity label(s) of the objects to which the subject has both read and write access. Security level of a subject must always be dominated by the clearance level of the user associated with the subject.
NSTISSI 4009
Sub-Registration Authority (SRA)
Individual with primary responsibility for managing the distinguished name process.
NSTISSI 4009
Superencryption
"Process of encrypting encrypted information. Occurs when a message, encrypted off-line, is transmitted over a secured, on-line circuit, or when information encrypted by the originator is multiplexed onto a communications trunk, which is then bulk encrypted."
NSTISSI 4009
Supersession
Scheduled or unscheduled replacement of a COMSEC aid with a different edition.
NSTISSI 4009
Superuser
"Special user who can perform control of processes, devices, networks, and file systems."
NSTISSI 4009
Supervisor State
Synonymous with executive state of an operating system.
NSTISSI 4009
Suppression Measure
"Action, procedure, modification, or device that reduces the level of, or inhibits the generation of, compromising emanations in an IS."
NSTISSI 4009
Surrogate Access
See discretionary access control.
NSTISSI 4009
Syllabary
"List of individual letters, combination of letters, or syllables, with their equivalent code groups, used for spelling out words or proper names not present in the vocabulary of a code. A syllabary may also be a spelling table."
NSTISSI 4009
Synchronous Crypto-Operation
Method of on-line crypto-operation in which crypto-equipment and associated terminals have timing systems to keep them in step.
NSTISSI 4009
System Administrator (SA)
"Individual responsible for the installation and maintenance of the nonsecurity aspects of an information system, providing effective IS utilization, adequate security parameters, and sound implementation of established INFOSEC policy and procedures. "
NSTISSI 4009
System Assets
"Any software, hardware, data, administrative, physical, communications, or personnel resource within an IS."
NSTISSI 4009
System Development Methodologies
Methodologies developed through software engineering to manage the complexity of system development. Development methodologies include software engineering aids and high-level design analysis tools.
NSTISSI 4009
System High
Highest security level supported by an IS.
NSTISSI 4009
System High Mode
"IS security mode of operation wherein each user, with direct or indirect access to the IS, its peripherals, remote terminals, or remote hosts, has all of the following: a. valid security clearance for all information within an IS; b. formal access approval and signed nondisclosure agreements for all the information stored and/or processed (including all compartments, subcompartments and/or special access programs); and c. valid need-to-know for some of the information contained within the IS."
NSTISSI 4009
System Indicator
Symbol or group of symbols in an off-line encrypted message identifying the specific cryptosystem or key used in the encryption.
NSTISSI 4009
System Integrity
"Attribute of an IS when it performs its intended function in an unimpaired manner, free from deliberate or inadvertent unauthorized manipulation of the system. "
NSTISSI 4009
System Low
Lowest security level supported by an IS.
NSTISSI 4009
System Profile
"Detailed security description of the physical structure, equipment component, location, relationship, and general operating environment of an IS."
NSTISSI 4009
System Security
Degree of security as determined by evaluation of the totality of all system elements and INFOSEC countermeasures.
NSTISSI 4009
System Security Engineering
The effort to achieve and maintain optimal security and survivability of a system throughout its life cycle.
NSTISSI 4009
System Security Evaluation
"Risk Assessment of a system, considering its vulnerabilities and perceived security threat."
NSTISSI 4009
System Security Management Plan
Formal document fully describing the responsibilities for security tasks planned to meet system security requirements.
NSTISSI 4009
System Security Officer
Synonymous with information system security officer.
NSTISSI 4009
System Security Plan
Formal document fully describing the planned security tasks required to meet system security requirements.
NSTISSI 4009
TA
Traffic Analysis
ACRONYMS
TACTED
Tactical Trunk Encryption Device
ACRONYMS
TACTERM
Tactical Terminal
ACRONYMS
Tactical Level of War
The level of war at which battles and engagements are planned and executed to accomplish military objectives assigned to tactical units or task forces. Activities at this level focus on the ordered arrangement and maneuver of combat elements in relation to each other and to the enemy to achieve combat objectives. (Joint Pub 1-02)
IO Fundamentals
TAFIM
Technical Architecture Framework for Information Management
ACRONYMS
TAG
TEMPEST Advisory Group
ACRONYMS
TAISS
Telecommunications and Automated Information Systems Security
ACRONYMS
Tampering
Unauthorized modification altering the proper functioning of INFOSEC equipment.
NSTISSI 4009
TC
Team Chief
ACRONYMS
TCB
Trusted Computing Base
ACRONYMS
TCD
Time Compliance Data
ACRONYMS
TCSEC
DoD Trusted Computer System Evaluation Criteria
ACRONYMS
TD
Transfer Device
ACRONYMS
Technical Attack
"Attack that can be perpetrated by circumventing or nullifying hardware or software protection mechanisms, rather than by subverting system personnel or other users."
NSTISSI 4009
TED
Trunk Encryption Device
ACRONYMS
TEK
Traffic Encryption Key
ACRONYMS
Telecommunications
"Preparation, transmission, communication, or related processing of information (writing, images, sounds or other data) by electrical, electromagnetic, electromechanical, electro-optical or electronic means."
NSTISSI 4009
Telecommunications & Automated Information Systems Security
Superceded by information systems security.
NSTISSI 4009
Telecommunications Security
See information systems security.
NSTISSI 4009
TEMP
Test and Evaluation Master Plan
ACRONYMS
TEMPEST
"Short name referring to investigation, study, and control of compromising emanations from IS equipment."
NSTISSI 4009
TEMPEST Test
Laboratory or on-site test to determine the nature of compromising emanations associated with an IS.
NSTISSI 4009
TEMPEST Zone
Designated area within a facility where equipment with appropriate TEMPEST characteristics (TEMPEST zone assignment) may be operated.
NSTISSI 4009
TEP
TEMPEST Endorsement Program
ACRONYMS
Test Key
Key intended for testing of COMSEC equipment or systems.
NSTISSI 4009
TFM
Trusted Facility Manual
ACRONYMS
TFS
Traffic Flow Security
ACRONYMS
Threat
"Any circumstance or event with the potential to harm an IS through unauthorized access, destruction, disclosure, modification of data, and/or denial of service."
NSTISSI 4009
Threat Analysis
Examination of information to identify the elements comprising a threat.
NSTISSI 4009
Threat Assessment
Formal description and evaluation of threat to an IS.
NSTISSI 4009
Threat Monitoring
"Analysis, assessment, and review of audit trails and other information collected for the purpose of searching out system events that may constitute violations of system security."
NSTISSI 4009
Ticket-Oriented
"Computer protection system in which each subject maintains a list of unforgeable bit patterns called tickets, one for each object a subject is authorized to access. See list-oriented."
NSTISSI 4009
TIM
Technical Interchange Meeting
ACRONYMS
Time Bomb
Resident computer program that triggers an unauthorized act at a predefined time.
NSTISSI 4009
Time-Compliance Date
Date by which a mandatory modification to a COMSEC end-item must be incorporated if the item is to remain approved for operational use.
NSTISSI 4009
Time-Dependent Password
Password that is valid only at a certain time of day or during a specified interval of time.
"Program in which NSA acts as the central procurement agency for the development and, in some cases, the production of INFOSEC items. This includes the Authorized Vendor Program. Modification to the INFOSEC end-items used in products developed and/or produced under these programs must be approved by NSA."
NSTISSI 4009
Traffic Analysis
Study of communications patterns.
NSTISSI 4009
Traffic Encryption Key
Key used to encrypt plain text or to superencrypt previously encrypted text and/or to decrypt cipher text.
NSTISSI 4009
Traffic Padding
Generation of spurious communications or data units to disguise the amount of real data units being sent.
NSTISSI 4009
Traffic-Flow Security
Measure used to conceal the presence of valid messages in an on-line cryptosystem or secure communications system.
NSTISSI 4009
Training Key
Cryptographic key for training.
NSTISSI 4009
Tranquility
Property whereby the security level of an object cannot change while the object is being processed by an IS.
NSTISSI 4009
Transmission Security
Component of communications security that results from the application of measures designed to protect transmissions from interception and exploitation by means other than cryptanalysis.
NSTISSI 4009
Transmission Security Key
"Key used in the control of TRANSEC processes, such as frequency hopping and spread spectrum."
NSTISSI 4009
Trap-door
Hidden software or hardware mechanism used to circumvent security controls. Synonymous with Back Door.
NSTISSI 4009
TRB
Technical Review Board
ACRONYMS
TRI-TAC
Tri-Service Tactical Communications System
ACRONYMS
Trojan Horse
"Program containing hidden code that allows the unauthorized collection, falsification, or destruction of information."
NSTISSI 4009
Trusted Computer System
IS employing sufficient hardware and software assurance measures to allow simultaneous processing of a range of classified or sensitive information.
NSTISSI 4009
Trusted Computing Base (TCB)
"Totality of protection mechanisms within a computer system, including hardware, firmware, and software, the combination responsible for enforcing a security policy."
NSTISSI 4009
Trusted Distribution
"Method for distributing trusted computing base (TCB) hardware, software, and firmware components that protects the TCB from modification during distribution."
NSTISSI 4009
Trusted Facility Management
"Administrative procedures, roles, functions, privileges, and databases used for secure system configuration, administration, and operation."
NSTISSI 4009
Trusted Facility Manual
"Document containing the operational requirements; security environment; hardware and software configurations and interfaces; and all security procedures, measures, and contingency plans."
NSTISSI 4009
Trusted Identification Fowarding
Identification method used in IS networks whereby the sending host can verify an authorized user on its system is attempting a connection to another host. The sending host transmits the required user authentication information to the receiving host.
NSTISSI 4009
Trusted Path
Mechanism by which a person using a terminal can communicate directly with the trusted computing base (TCB). Trusted path can only be activated by the person or the TCB and cannot be imitated by untrusted software.
NSTISSI 4009
Trusted Process
Process that has privileges to circumvent the system security policy and has been tested and verified to operate only as intended.
NSTISSI 4009
Trusted Recovery
Ability to ensure recovery without compromise after a system failure.
NSTISSI 4009
Trusted Software
Software portion of a trusted computing base (TCB).
NSTISSI 4009
TS/SCI
Top Secret/Special Compartmented Information
ACRONYMS
TSCM
Technical Surveillance Countermeasures
ACRONYMS
TSEC Nomenclature
System for identifying the type and purpose of certain items of COMSEC material.
NSTISSI 4009
TSK
Transmission Security Key
ACRONYMS
Tunneling
Technology enabling one network to send its data via another network's connections. Tunneling works by incapsulating a network protocol within packets carried by the second network.
NSTISSI 4009
Two-Part Code
"Code consisting of an encoding section, in which the vocabulary items (with their associated code groups) are arranged in alphabetical or other systematic order, and a decoding section, in which the code groups (with their associated meanings) are arranged in a separate alphabetical or numeric order."
NSTISSI 4009
Two-Person Control
"Continuous surveillance and control of positive control material at all times by a minimum of two authorized individuals, each capable of detecting incorrect and unauthorized procedures with respect to the task being performed, and each familiar with established security and safety requirements."
NSTISSI 4009
Two-Person Integrity (TPI)
"System of storage and handling designed to prohibit individual access to certain COMSEC keying material by requiring the presence of at least two authorized persons, each capable of detecting incorrect or unauthorized security procedures with respect to the task being performed. See no-lone zone."
NSTISSI 4009
Type 1 Product
"Classified or controlled cryptographic item endorsed by the NSA for securing classified and sensitive US Government Information, when appropriately keyed. The term refers only to products, and not to information, key, services, or controls. Type 1 products contain classified NSA algorithms. They are available to U.S. Government users, their contractors, and Federally sponsored non-U.S. government activities, subject to export restrictions in accordance with International Traffic in Arms Regulation."
NSTISSI 4009
Type 2 Product
"Unclassified cryptographic equipment, assembly, or component, endorsed by the NSA, for use in national security systems as defined in Title 40 U.S.C. Section 1452."
NSTISSI 4009
Type 3 Algorithm
Cryptographic algorithm registered by the National Institute of Standards and Technology (NIST) and published as a Federal Information Processing Standard (FIPS) for use in protecting unclassified sensitive information or commercial information.
NSTISSI 4009
Type 4 Algorithm
"Unclassified cryptographic algorithm that has been registered by the National Institute of Standards and Technology (NIST), but not published as a Federal Information Processing Standard (FIPS)."
NSTISSI 4009
U
Unclassified
ACRONYMS
U.S.
United States
ACRONYMS
U.S. Person
"United States citizen or a permanent resident alien, an unincorporated association substantially composed of United States citizens or permanent resident aliens, or a corporation incorporated in the United States, except for a corporation directed and controlled by a foreign government or governments."
NSTISSI 4009
U.S.-Controlled Facility
Base or building to which access is physically controlled by U.S. persons who are authorized U.S. Government or U.S. Government contractor employees.
NSTISSI 4009
U.S.-Controlled Space
"Room or floor within a facility that is not a U.S.-controlled facility, access to which is physically controlled by U.S. persons who are authorized U.S. Government or U.S. Government contractor employees. Keys or combinations to locks controlling entrance to U.S.-Controlled spaces must be under the exclusive control of U.S. persons who are U.S. Government or U.S. Government contractor employees."
NSTISSI 4009
UA
User Agent
ACRONYMS
UIRK
Unique Interswitch Rekeying Key
ACRONYMS
UIS
User Interface System
ACRONYMS
Unauthorized Disclosure
Exposure of information to individuals not authorized to receive it.
NSTISSI 4009
Unclassified
Information that has not been determined pursuant to Executive Order 12958 or any predecessor order to require protection against unauthorized disclosure and that is not designated as classified.
NSTISSI 4009
Untrusted Process
Process that has been evaluated or examined for adherence to the security policy. It may include incorrect or malicious code that attempts to circumvent the security mechanisms.
NSTISSI 4009
Updating
"Automatic or manual cryptographic process that irreversibly modifies the state of a COMSEC key, equipment, device or system."
NSTISSI 4009
UPP
User Partnership Program
ACRONYMS
USDE
Undesired Signal Data Emanations
ACRONYMS
User
"Person or process authorized to access an IS. (PKI) Individual defined, registered, and bound to a public key structure by a certification authority (CA)."
NSTISSI 4009
User ID
Unique symbol or character string used by an IS to identify a specific user.
NSTISSI 4009
User Partnership Program
Partnership between the NSA and a U.S. Government agency to facilitate development of secure IS equipment incorporating NSA approved cryptography. The result of this program is the authorization of the product or system to safeguard national security information in the user's specific application.
NSTISSI 4009
User Profile
Patterns of a user's activity that can show changes from normal behavior.
NSTISSI 4009
User Representative
Person authorized by an organization to order COMSEC keying material and interface with the keying system; providing information to key users and ensuring the correct type of key is ordered.
NSTISSI 4009
USG
United States Government
IO Fundamentals
USIA
United States Information Agency
IO Fundamentals
V Model
Advanced Development Model
ACRONYMS
Validation
"Process of applying specialized security test and evaluation procedures, tools, and equipment needed to establish acceptance for joint usage of an IS by one or more departments or agencies and their contractors."
NSTISSI 4009
VAP
Vulnerability Assessment Process
ACRONYMS
Variant
One of two or more code symbols having the same plain text equivalent.
NSTISSI 4009
Verification
"Process of comparing two levels of an IS specification for proper correspondence (e.g., security policy model with top-level specification, top-level specification with source code, or source code with object code)."
NSTISSI 4009
Verified Design
"Computer protection class in which formal security verification methods are used to assure mandatory and discretionary security controls can effectively protect classified and sensitive information stored in, or processed by, the system. Class A1 system is verified design."
NSTISSI 4009
Virtual Password
"IS password computed from a passphrase meeting the requirements of password storage (e.g., 64 bits)."
NSTISSI 4009
Virtual Private Network (VPN)
"Protected IS link utilizing tunneling, security controls (see information assurance), and end-point address translation giving the user the impression a dedicated line exists between nodes."
NSTISSI 4009
Virus
"Self replicating, malicious program segment that attaches itself to an application program or other executable system component and leaves no obvious signs of its presence."
NSTISSI 4009
VIT
VINSON Trunk Terminal
ACRONYMS
VPN
Virtual Private Network
ACRONYMS
VST
VINSON Subscriber Terninal
ACRONYMS
Vulnerability
"1. The susceptibility of a nation or military force to any action by any means through which its war potential or combat effectiveness may be reduced or its will to fight diminished. 2. The characteristics of a system which cause it to suffer a definite degradation (incapability to perform the designated mission) as a result of having been subjected to a certain level of effects in an unnatural (manmade) hostile environment. 3. In information operations, a weakness in information system security design, procedures, implementation, or internal controls that could be exploited to gain unauthorized access to information or an information system. (This term and its definition modifies the existing term and definition and are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Vulnerability
"Weakness in an IS, system security procedures, internal controls, or implentation that could be exploited."
NSTISSI 4009
Vulnerability Analysis
"In information operations, a systematic examination of an information system or product to determine the adequacy of security measures, identify security deficiencies, provide data from which to predict the effectiveness of proposed security measures, and confirm the adequacy of such measures after implementation. (This term and its definition are approved for inclusion in the next edition of Joint Pub 1-02.)"
IO Fundamentals
Vulnerability Assessment
"Systematic examination of an IS or product to determine the adequacy of security measures, identify security proficiencies, provide data from which to predict the effectiveness of proposed security measures, and confirm the adequacy of such measures after implementation."
NSTISSI 4009
WAN
Wide Area Network
ACRONYMS
WG
Working Group
ACRONYMS
Work Factor
"Estimate of the effort or time needed by a potential perpetrator, with specified expertise and resources, to overcome a protective measure."
NSTISSI 4009
Worm
"Independent program that replicates from machine to machine across network connections, often clogging networks and computer systems as it spreads."
NSTISSI 4009
Write
Fundamental operation in an IS that results only in the flow of information from a subject to an object. See access type.
NSTISSI 4009
Write Access
Permission to write to an object in an IS.
NSTISSI 4009
WWMCCS
Worldwide Military Command and Control System
ACRONYMS
XDM/X Model
Experimental Development Model/Exploratory Development Model.
ACRONYMS
Zero Fill
"To fill unused storage locations in an IS with the representation of the character denoting 0."""""
NSTISSI 4009
Zeroize
To remove or eliminate the key from a crypto-equipment or fill device.