Category overview
Cybersecurity — Election Security Glossary
572 election security terms in the Cybersecurity category, with definitions sourced from NIST, CISA, EAC, and 30+ authoritative documents.
Election infrastructure — the systems, networks, and processes that support voter registration, ballot production, and vote counting — was formally designated critical infrastructure by the U.S. Department of Homeland Security in 2017. That designation brought election security into the same federal framework as power grids and water systems, and with it came an expanded vocabulary. The terminology of cybersecurity now sits alongside the established language of election administration, and officials, journalists, and researchers must navigate both.
The defining characteristic of election cybersecurity is that the primary threat is not financial loss but loss of integrity. Confidentiality matters — voter registration data is sensitive — but the most significant risk is the possibility that data or systems are altered without detection. An election system that produces incorrect results because of a software vulnerability, a malware infection, or a supply chain compromise undermines public confidence in ways that have no direct analogue in commercial cybersecurity.
This shapes how security controls are prioritized. Encryption protects the integrity and confidentiality of data in transit and at rest. Multi-factor authentication prevents unauthorized access to election management systems even when passwords are compromised. Penetration testing identifies vulnerabilities before adversaries do. These are not theoretical measures: CISA advisories and post-election after-action reports consistently document phishing campaigns targeting election officials, ransomware incidents affecting county government networks, and reconnaissance activity against voter registration systems.
Incident response planning is equally central. Commercial organizations can often absorb a security incident and recover over days or weeks. Election officials do not have that flexibility: elections run on fixed legal deadlines, and a security incident on election day requires a response plan that has been tested, refined, and communicated in advance. The incident response vocabulary — indicators, containment, remediation, communication protocols — is operational knowledge for election security teams, not abstract theory.
Supply chain security has emerged as a particular concern for election systems, which incorporate hardware and software components from multiple vendors. A compromise introduced at any point in a supply chain — a backdoored firmware update, a malicious component in voting machine hardware — can propagate to the final product in ways that are difficult to detect through standard testing. The terms in this category reflect that expanded attack surface: from advanced persistent threats sponsored by nation-states to commodity malware deployed by opportunistic criminals.
Key Concepts
Cybersecurity
The practice of protecting election systems, networks, and data from digital attacks, unauthorized access, and disruption.
Encryption
A mathematical process that renders data unreadable without the corresponding key, protecting ballot data and voter records in transit and at rest.
Malware
Malicious software designed to disrupt, damage, or gain unauthorized access to computer systems, including election management infrastructure.
Phishing
Deceptive communications — typically email — crafted to trick election officials into revealing credentials or installing malicious software.
Multi-Factor Authentication
An authentication method requiring two or more independent verification factors, a key control for protecting election management systems.
Vulnerability
A weakness in a system, process, or configuration that could be exploited to compromise the security or integrity of election infrastructure.
Ransomware
Malware that encrypts victim data and demands payment for the decryption key; a documented threat to county government networks supporting elections.
Penetration Testing
Authorized simulation of cyberattacks conducted to identify security weaknesses in election systems before adversaries can exploit them.
Incident Response Plan
Documented procedures for detecting, containing, and recovering from security incidents, essential for election officials operating under fixed legal deadlines.
Supply Chain Attack
A cyberattack that compromises less-secure elements of a supply chain — hardware, firmware, or software — to ultimately target the election system using those components.
How These Terms Relate
These concepts form a layered security posture for election infrastructure. Vulnerabilities are the foundation: weaknesses that exist in any system become the entry points adversaries exploit. Malware, phishing, and supply chain attacks are the methods used to exploit those weaknesses — each targeting a different layer of election operations, from official email accounts to the voting systems themselves. Encryption, multi-factor authentication, and penetration testing are defensive controls applied before an incident occurs to reduce the attack surface and limit the damage a successful intrusion can cause. When defenses are breached and a security event — such as a ransomware deployment — does occur, the incident response plan governs how officials detect, contain, and communicate about the situation. Cybersecurity as a discipline integrates all of these elements into a coherent operational posture: one that accounts for the unique pressures of administering elections on fixed legal deadlines and under intense public scrutiny.
All Cybersecurity Terms (572)
A 42 terms
AMCIS
Cybersecurity
A NICE Framework category consisting of specialty areas responsible for highly specialized review and evaluation of incoming cybersecurity information to determine its usefulness for intelligence.
Full definition →
Accreditation Boundary
Cybersecurity
(C. F. D.) 1. Identifies the information resources covered by an accreditation decision, as distinguished from separately accredited information resources that are interconnected or with which informa…
Full definition →
Accreditation Package (c.f.d.)
Cybersecurity
Product comprised of a system security plan (SSP) and a report documenting the basis for the accreditation decision. Rationale: The RMF uses a new term to refer to this concept, and it is called RMF s…
Full definition →
Activation Data
Cybersecurity
A pass-phrase, personal identification number (PIN), biometric data, or other mechanisms of equivalent authentication robustness used to protect access to any use of a private key, except for private …
Full definition →
Active Attack
Cybersecurity
An attack on the authentication protocol where the Attacker transmits data to the Claimant, Credential Service Provider, Verifier, or Relaying Party. Examples of active attacks include man-in-the midd…
Full definition →
Active Cyber Defense
Cybersecurity
Synchronized, real-time capability to discover, detect, analyze, and mitigate threats and vulnerabilities.
Full definition →
Advanced Encryption Standard (AES)
Cybersecurity
A U. S. Government-approved cryptographic algorithm that can be used to protect electronic data. The AES algorithm is a symmetric block cipher that can encrypt (encipher) and decrypt (decipher) inform…
Full definition →
Advanced Persistent Threat (APT)
Cybersecurity
An adversary who possesses sophisticated levels of expertise and significant resources that allow it to create opportunities to achieve its objectives by using multiple attack vectors (e.g., cyber, ph…
Full definition →
Adware
Cybersecurity
Usually refers to unwanted advertisements or malware (malicious software)
Full definition →
Alert
Cybersecurity
Notification that a specific attack has been directed at an organization’s information systems.
Full definition →
All-source Intelligence
Cybersecurity
Intelligence products and/or organizations and activities that incorporate all sources of information, most frequently human resources intelligence, imagery intelligence, measurement and signature int…
Full definition →
Anti-csrf
Cybersecurity
Related pairs of tokens given to users to validate their requests and prevent issue requests from attackers via the victim
Full definition →
Anti-spoof
Cybersecurity
Countermeasures taken to prevent the unauthorized use of legitimate identification & authentication (I&A) data, however it was obtained, to mimic a subject different from the attacker.
Full definition →
Antivirus Software
Cybersecurity
A program that monitors a computer or network to detect or identify major types of malicious code and to prevent or contain malware incidents. Sometimes by removing or neutralizing the malicious code.
Full definition →
Approval to Operate (ATO) (c.f.d.)
Cybersecurity
The official management decision issued by a designated accrediting authority (DAA) or principal accrediting authority (PAA) to authorize operation of an information system and to explicitly accept th…
Full definition →
Asymmetric Cryptography
Cybersecurity
also: Public Key Cryptography
Encryption system that uses a public and private key pair for cryptographic operation. The private key is generally stored in a user's digital certificate and used typically to decrypt or digitally si…
Full definition →
Asymmetric Encryption
Cybersecurity
Encryption is which a different key are used fo r decryption than the one used for encryption, e.g., in PUBLIC-KEY ENCRYPTION. Cf. SYMMETRIC ENCRYPTION.
Full definition →
Asymmetric Key
Cybersecurity
Two related keys, a public key and a private key that are used to perform complementary operations, such as encryption and decryption or signature generation.
Full definition →
Attack
Cybersecurity
An attempt to gain unauthorized access to system services, resources, or information, or an attempt to compromise system integrity, availability, or confidentiality.
Full definition →
Attack Method
Cybersecurity
The manner or technique and means an adversary may use in an assault on information or an information system.
Full definition →
Attack Mode
Cybersecurity
also: Attack Method
The steps that an adversary takes or may take to plan, prepare for, and execute an attack.
Full definition →
Attack Pattern
Cybersecurity
Similar cyber events or behaviors that may indicate an attack has occurred or is occurring, resulting in a security violation or a potential security violation.
Full definition →
Attack Sensing and Warning (as&w)
Cybersecurity
Detection, correlation, identification, and characterization of intentional unauthorized activity with notification to decision makers so that an appropriate response can be developed.
Full definition →
Attack Signature
Cybersecurity
A specific sequence of events indicative of an unauthorized access attempt.
Full definition →
Attack Surface
Cybersecurity
The set of ways in which an adversary can enter a system and potentially cause damage.
Full definition →
Attack Tree
Cybersecurity
A branching, hierarchical data structure that represents a set of potential approaches to achieving an event in which system security is penetrated or compromised in a specified way.
Full definition →
Attack Vector
Cybersecurity
Mechanism or method used by an attacker to gain access to a target’s computer system and/or deliver an effect.
Full definition →
Attacked
Cybersecurity
Indicates that a cyber actor has attempted to degrade, destroy, disrupt, manipulate, or otherwise detrimentally affect the operation of a system or network. However, manipulation or deletion of data s…
Full definition →
Attacker
Cybersecurity
A party who acts with malicious intent to compromise an information system.
Full definition →
Attribute-based Authorization
Cybersecurity
A structured process that determines when a user is authorized to access information, systems, or services based on attributes of the user and of the information, system, or service.
Full definition →
Attribution
Cybersecurity
Identification of technical evidence of a cyber event and/or the assignment of responsibil- ity for a cyber event. The technical source may be different from the responsible actor.
Full definition →
Authentication Mechanism
Cybersecurity
Hardware or software-based mechanisms that force users to prove their identity before accessing data on a device.
Full definition →
Authentication Period
Cybersecurity
The period between any initial authentication process and subsequent re-authentication processes during a single terminal session or during the period data is being accessed.
Full definition →
Authentication Protocol
Cybersecurity
1. A well specified message exchange process between a claimant and a verifier that enables the verifier to confirm the claimant’s identity.
Full definition →
Authenticity
Cybersecurity
The property of being genuine and being able to be verified and trusted; confidence in the validity of a transmission, a message, or message originator. See authentication.
Full definition →
Authorization
Cybersecurity
Access privileges granted to a user, program, or process or the act of granting those privileges.
Full definition →
Authorization Boundary
Cybersecurity
All components of an information system to be authorized for operation by an authorizing official and excludes separately authorized systems, to which the information system is connected.
Full definition →
Authorization Package
Cybersecurity
See security authorization package
Full definition →
Authorization to Operate
Cybersecurity
(ATO) The official management decision given by a senior organizational official to authorize operation of an information system and to explicitly accept the risk to organizational operations (includi…
Full definition →
Authorize Processing
Cybersecurity
See authorization.
Full definition →
Authorizing Official Designated Representative
Cybersecurity
An organizational official acting on behalf of an authorizing official in carrying out and coordinating the required activities associated with security authorization.
Full definition →
Availability
Cybersecurity
The percentage of time during which a system is operating properly and available for use.
security
Full definition →
B 28 terms
BC Services Card
Cybersecurity
The card has an embedded chip and other security features that could potentially provide a secure voter authentication mechanism for remote Internet voting in the future. The BC Services Card was laun…
Full definition →
BLACK Data
Cybersecurity
Data that is protected by encryption so that it can be transported or stored without fear of compromise. Also known as encrypted data.
Full definition →
Backdoor
Cybersecurity
An undocumented way of gaining access to computer system. A backdoor is a potential security risk.
Full definition →
Backdoored
Cybersecurity
Password-hashing function based on the Blowfish cipher and presented at USENIX in 1999
Full definition →
Banner
Cybersecurity
Display on an information system that sets parameters for system or data use.
Full definition →
Bastion Host
Cybersecurity
A special purpose computer on a network where the computer is specifically designed and configured to withstand attacks.
Full definition →
Beaconing
Cybersecurity
A process through which a system or program sends a message announcing its presence online. This term is typically used in a cyber threat context to indicate a compromised system communicating with an…
Full definition →
Behavior Analysis
Cybersecurity
The act of examining malware interactions within its operating environment including file systems, the registry (if on Windows), the network, as well as other processes and Operating System components…
Full definition →
Behavior Monitoring
Cybersecurity
also: Behavioral Monitoring
The extent to which an individual practices several types of cybersecurity measures to avoid or attenuate the types of cyber threats that they are vulnerable to
Full definition →
Biocertification
Cybersecurity
Refers to the use of biometric data for authentication and access control to improve cybersecurity
Full definition →
Biometric
Cybersecurity
Use unique physical or behavioral traits like fingerprints, facial features, and voice patterns for cybersecurity authentication
Full definition →
Blended Attack
Cybersecurity
A type of attack that combines multiple attack methods against one or more vulnerabilities.
Full definition →
Blind Signature
Cybersecurity
A digital signature method, due to David Ch aum, enabling a person to sign a document digitally without being able to read its contents. Blind signatures are useful in voting because they permit a vot…
Full definition →
Blue
Cybersecurity
Team 1. The group responsible for defending an enterprise’s use of information systems by maintaining its security posture against a group of mock attackers (i.e., the Red Team). Typically the Blue Te…
Full definition →
Blue Team
Cybersecurity
A group that defends an enterprise's information systems when mock attackers (i.e., the Red Team) attack, typically as part of an operational exercise conducted according to rules established and…
Full definition →
Bluejacking
Cybersecurity
An attack in which someone sends unsolicited messages to a Bluetooth-enabled device
Full definition →
Bootkits
Cybersecurity
A bootkit is a type of malware that infects a computer's boot process, giving the attacker control over the system. Bootkits are a major security threat because they can bypass standard security measu…
Full definition →
Border Gateway Protocol
Cybersecurity
A protocol designed to optimize routing of information exchanged through the internet.
Full definition →
Bot
Cybersecurity
also: Zombie
A computer that has been compromised with malware to perform activities under the remote command and control of an administrator.
Full definition →
Botnet
Cybersecurity
A network of compromised computers (or bots) under unified command and control.
Full definition →
Brute Force Password Attack
Cybersecurity
A method of accessing an obstructed device through attempting multiple combinations of numeric and/or alphanumeric passwords. (SP 800-72) (NISTIR)
Full definition →
Bruteforce
Cybersecurity
An attack is a method that uses trial and error to crack passwords, login credentials, and encryption keys
Full definition →
Buffer Overflow
Cybersecurity
A condition at an interface under which more input can be placed into a buffer or data holding area than the capacity allocated, overwriting other information. Attackers exploit such a condition to cr…
Full definition →
Buffer Overflow Attack
Cybersecurity
A method of overloading a predefined amount of space in a buffer, which can potentially overwrite and corrupt data in memory. (SP 800-72) (NISTIR)
Full definition →
Build Security in
Cybersecurity
A set of principles, practices, and tools to design, develop, and evolve information systems and software that enhance resistance to vulnerabilities, flaws, and attacks.
Full definition →
Bulk Encryption
Cybersecurity
Simultaneous encryption of all channels of a multi-channel telecommunications link.
Full definition →
Bulletproof Hosting
Cybersecurity
"Bulletproof" provision of services or storage space without the usual content restrictions. This content can include hard (child) pornography, phishing sites, and other illegal content. The operators…
Full definition →
Byte
Cybersecurity
A unit of digital information consisting of 8 bits (binary digits: each bit corresponds to a choice between two alternatives).
Full definition →
C 114 terms
CCM
Cybersecurity
See Counter with Cipher-Block Chaining-Message Authentication Code
Full definition →
CS
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Addresses problems, installs, configures, troubleshoots, and provides maintenance and training in response to customer requirements or inquiri…
Full definition →
Catphish
Cybersecurity
The fabrication of a false online identity by a cybercriminal for the purposes of deception, fraud, or exploitation
Full definition →
Cbc/mac
Cybersecurity
See Cipher Block Chaining-Message Authentication Code.
Full definition →
Certificate of Accreditation
Cybersecurity
Document issued by NVLAP to a laboratory that has met the criteria and conditions for accreditation.
testing
Full definition →
Challenge and Reply Authentication
Cybersecurity
Prearranged procedure in which a subject requests authentication of another and the latter establishes validity with a correct reply.
Full definition →
Challenge-response Protocol
Cybersecurity
An authentication protocol where the verifier sends the claimant a challenge (usually a random value or a nonce) that the claimant combines with a secret (often by hashing the challenge and a shared s…
Full definition →
Channel
Cybersecurity
(KPC) A key management infrastructure (KMI) Communication Channel that provides 1) Information Integrity Service; 2) either Data Origin Authentication Service or Peer Entity Authentication Service, as…
Full definition →
Check Word
Cybersecurity
Cipher text generated by cryptographic logic to detect failures in cryptography.
Full definition →
Cipher Block Chaining-message Authentication Code
Cybersecurity
(CBC-MAC) A secret-key block-cipher algorithm used to encrypt data and to generate a Message Authentication Code (MAC) to provide assurance that the payload and the associated data are authentic. (SP …
Full definition →
Ciphertext
Cybersecurity
Data or information in its encrypted form.
Full definition →
Claimant
Cybersecurity
A party whose identity is to be verified using an authentication protocol.
Full definition →
Clearance
Cybersecurity
A formal security determination by an authorized adjudicative office that an individual is authorized access, on a need to know basis, to a specific level of classified information (TOP SECRET, SECRET…
Full definition →
Closed Security Environment
Cybersecurity
Environment providing sufficient assurance that applications and equipment are protected against the introduction of malicious logic during an information system life cycle. Closed security is based u…
Full definition →
Cmaas
Cybersecurity
A NICE Framework category consisting of specialty areas responsible for specialized denial and deception operations and collection of cybersecurity information that may be used to develop intelligence…
Full definition →
Code Book
Cybersecurity
Document containing plain text and code equivalents in a systematic arrangement, or a technique of machine encryption using a word substitution technique. (CNSSI-4009) (NISTIR)
Full definition →
Codebook
Cybersecurity
Document containing plain text and code equivalents in a systematic arrangement, or a technique of machine encryption using a word substitution technique.
Full definition →
Collect & Operate
Cybersecurity
A NICE Workforce Framework category consisting of specialty areas responsible for specialized denial and deception operations and collection of cybersecurity information that may be used to develop in…
Full definition →
Collection Operations
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Executes collection using appropriate strategies and within the priorities established through the collection management process.
Full definition →
Collision
Cybersecurity
Two or more distinct inputs produce the same output. Also see Hash Function. (SP 800-57 Part 1) (NISTIR)
Full definition →
Commodity Malware
Cybersecurity
Malware that is widely available for purchase, or free download, which is not customised and is used by a wide range of different threat actors.
Full definition →
Comprehensive National Cybersecurity Initiative
Cybersecurity
A US Government-wide initiative to establish a front line of cyber defense, demonstrate the resolve to secure US cyberspace and set the conditions necessary for long-term success, shape the future env…
Full definition →
Compromised
Cybersecurity
Indicates that a victim system has installed malware, connected to a malicious Internet Protocol address, or provided a cyber actor unauthorized access to collect data or execute commands.
Full definition →
Computer Cryptography
Cybersecurity
Use of a crypto-algorithm program by a computer to authenticate or encrypt/decrypt information.
Full definition →
Computer Incident Response Team (cirt)
Cybersecurity
Group of individuals usually consisting of security analysts organized to develop, recommend, and coordinate immediate mitigation actions for containment, eradication, and recovery resulting from comp…
Full definition →
Computer Network Attack (CNA)
Cybersecurity
Actions taken through the use of computer networks to disrupt, deny, degrade, or destroy information resident in computers and computer networks, or the computers and networks themselves.
Full definition →
Computer Network Defense Analysis
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Uses defensive measures and information collected from a variety of sources to identify, analyze, and report events that occur or might occur …
Full definition →
Computer Network Defense Infrastructure Support
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Tests, implements, deploys, maintains, reviews, and administers the infrastructure hardware and software that are required to effectively mana…
Full definition →
Computer Network Operations
Cybersecurity
(CNO) Comprised of computer network attack, computer network defense, and related computer network exploitation enabling operations.
Full definition →
Computer Security (compusec) (c.f.d.)
Cybersecurity
Measures and controls that ensure confidentiality, integrity, and availability of the information processed and stored by a computer. Rationale: Term has been replaced by the term “cybersecurity”.
Full definition →
Comsec Control Program
Cybersecurity
Computer instructions or routines controlling or affecting the externally performed functions of key generation, key distribution, message encryption/decryption, or authentication. (CNSSI-4009) (NISTI…
Full definition →
Comsec Equipment
Cybersecurity
Equipment designed to provide security to telecommunications by converting information to a form unintelligible to an unauthorized interceptor and, subsequently, by reconverting such information to it…
Full definition →
Comsec Software
Cybersecurity
Includes all types of COMSEC material, except key, in electronic or physical form. this includes all classifications of unencrypted software, and all associated data used to design, create, program, o…
Full definition →
Container
Cybersecurity
A file containing an encrypted file system. When a password is entered, the container appears transparently as a normal drive to the user. When the user logs off, the container is closed, and the data…
Full definition →
Content Signing Certificate
Cybersecurity
A certificate issued for the purpose of digitally signing information (content) to confirm the author and guarantee that the content has not been altered or corrupted since it was signed by use of a c…
Full definition →
Continuity of Operations (coop)
Cybersecurity
also: COOP
An effort within individual executive departments and agencies to ensure that Primary Mission Essential Functions (PMEFs) continue to be performed during a wide range of emergencies, including localiz…
Full definition →
Continuity of the Economy (cote)
Cybersecurity
An effort to ensure that critical data and technology would be available, with priority for critical functions across corporations and industry sectors, to get the economy back up and running after a …
Full definition →
Cooperative Key Generation
Cybersecurity
(CKG) Electronically exchanging functions of locally generated, random components, from which both terminals of a secure circuit construct traffic encryption key or key encryption key for use on that …
Full definition →
Counter with Cipher Block Chaining-message Authentication Code (CCM)
Cybersecurity
A mode of operation for a symmetric key block cipher algorithm. It combines the techniques of the Counter (CTR) mode and the Cipher Block Chaining-Message Authentication Code (CBC-MAC) algorithm to pr…
Full definition →
Countermeasure
Cybersecurity
Actions, devices, procedures, or techniques that meet or oppose (i.e., counters) a threat, a vulnerability, or an attack by eliminating or preventing it, by minimizing the harm it can cause, or by dis…
Full definition →
Covert Channel
Cybersecurity
An unintended or unauthorized intra-system channel that enables two cooperating entities to transfer information in a way that violates the system's security policy but does not exceed the entities' a…
Full definition →
Crimeware
Cybersecurity
A class of malware designed specifically to automate cybercrime
Full definition →
Critical Infrastructure
Cybersecurity
The physical and cyber systems and assets that are so vital to the United States that their incapacity or destruction would have a debilitating impact on our physical or economic security or public he…
Full definition →
Critical Infrastructure Resilience Strategy
Cybersecurity
A proposed strategy that will set programmatic and budgetary priorities for a five-year national risk management cycle.
Full definition →
Critical Security Parameter (CSP)
Cybersecurity
Security-related information (e.g., secret and private cryptographic keys, and authentication data such as passwords and personal identification numbers (PINs)) whose disclosure or modification can co…
Full definition →
Critical Technology Security Centers
Cybersecurity
Proposed entities/programs that provide the U. S. government with the capacity to test the security of critical technologies and, when appropriate, assist in identifying vulnerabilities, as well as de…
Full definition →
Cross Site Scripting (XSS)
Cybersecurity
A vulnerability that allows attackers to inject malicious code into an otherwise benign website. These scripts acquire the permissions of scripts generated by the target website and can therefore comp…
Full definition →
Crypto Indicia
Cybersecurity
A class of VVPAT system in which encrypted strings or symbols, such as barcodes or hash codes, are printed on the paper record for secu rity purposes, generally to prevent forgery or alteration of the…
Full definition →
Crypto-siphoning
Cybersecurity
A digital currency in which transactions are verified and records maintained by a decentralized system using cryptography, rather than by a centralized authority.
Full definition →
Cryptocurrency
Cybersecurity
A type of digital currency in which encryption techniques are used to secure transactions and control the creation of additional units while operating independently of a central bank.
Full definition →
Cryptographic
Cybersecurity
Pertaining to, or concerned with, cryptography.
Full definition →
Cryptographic Erase
Cybersecurity
A method of sanitization in which the media encryption key (MEK) for the encrypted Target Data is sanitized, making recovery of the decrypted Target Data infeasible.
Full definition →
Cryptographic Hash
Cybersecurity
A cryptographic algorithm that computes a numerical hash value based on a data file or electronic message. It should be infeasible in practice to find two distinct data files or messages that will res…
Full definition →
Cryptographic Hash Function
Cybersecurity
A function that maps a bit string of arbitrary length to a fixed length bit string. Approved hash functions satisfy the following properties:
Full definition →
Cryptographic Initialization
Cybersecurity
Function used to set the state of a cryptographic logic prior to key generation, encryption, or other operating mode.
Full definition →
Cryptographic Key
Cybersecurity
Value used to control cryptographic operations, such as decryption, encryption, signature generation or signature verification.
Full definition →
Cryptographic Material (cryptomaterial) (slang Crypto)
Cybersecurity
All material, including documents, devices, or equipment that contains cryptographic information and is essential to the encryption, decryption, or authentication of telecommunications.
Full definition →
Cryptographic Module Validation Program (cmvp)
Cybersecurity
Validates cryptographic modules to Federal Information Processing Standard (FIPS) 140-2 and other cryptography-based standards. The CMVP is a joint effort between National Institute of Standards and T…
Full definition →
Cryptographic Product
Cybersecurity
A cryptographic key (public, private, or shared) or public key certificate, used for encryption, decryption, digital signature, or signature verification; and other items, such as compromised key list…
Full definition →
Cryptographic System (cryptosystem)
Cybersecurity
Associated information security (INFOSEC) items interacting to provide a single means of encryption or decryption.
Full definition →
Cryptography
Cybersecurity
Discipline that embodies the principles, means, and methods for the transformation of data in order to hide their semantic content, prevent their unauthorized use, prevent their undetected modificatio…
Full definition →
Cryptojacking
Cybersecurity
A type of cybercrime that involves the unauthorized use of a target's devices (computers, smartphones, tablets, or even servers) by cybercriminals to mine for cryptocurrency
Full definition →
Cryptology
Cybersecurity
The mathematical science that deals with cryptanalysis and cryptography.
Full definition →
Cryptomalware
Cybersecurity
Is malware that encrypts data on the targets device and demands a ransom to restore it
Full definition →
Cyber
Cybersecurity
Relating to, involving, or characteristic of computers, computer networks, information and communications technology (ICT), virtual systems, or computer-enabled control of physical components.
Full definition →
Cyber Actor/cyber Operator
Cybersecurity
A person who employs the functions of computer networks, systems, devices, or services.
Full definition →
Cyber Attack
Cybersecurity
An attack, via cyberspace, targeting an enterprise’s use of cyberspace for the purpose of disrupting, disabling, destroying, or maliciously controlling a computing environment/infrastructure; or destr…
Full definition →
Cyber Caliphate
Cybersecurity
Cyber-hacker group self-identifying as the digital army for ISIS
Full definition →
Cyber Campaign
Cybersecurity
A cyber operation or series of cyber operations conducted by a single responsible party with the intention of achieving a strategic objective.
Full definition →
Cyber Crime
Cybersecurity
Cyber-dependent crime (crimes that can only be committed through the use of ICT devices, where the devices are both the tool for committing the crime and the target of the crime);or cyber–enabled crim…
Full definition →
Cyber Crime Marketplace
Cybersecurity
The totality of products and services that support the cyber crime ecosystem.
Full definition →
Cyber Defense
Cybersecurity
A set of processes and measures to detect, monitor, protect, analyze, and defend against network infiltrations. See Cyber Security.
Full definition →
Cyber Deterrence
Cybersecurity
The prevention of cyber action by credibly demonstrating the ability and willingness to deny benefits or impose costs to convince the adversary that restraint will result in better outcomes than will …
Full definition →
Cyber Disruption
Cybersecurity
An event that is likely to cause or is causing the temporary loss of normal cyber operations or services.
Full definition →
Cyber Effect
Cybersecurity
The manipulation, disruption, denial, degradation, or destruction of data, computers, infor- mation or communication systems, networks, physical or virtual infrastructure controlled by computers or in…
Full definition →
Cyber Espionage
Cybersecurity
Cyber operation whose primary purpose is to steal information for national security or commercial purposes. Cyber Response and Recovery Fund A new fund, administered by the Federal Emergency Managemen…
Full definition →
Cyber Exercise
Cybersecurity
A planned event during which an organization simulates a cyber disruption to develop or test capabilities such as preventing, detecting, mitigating, responding to or recovering from the disruption.
Full definition →
Cyber Incident
Cybersecurity
also: Incident
Actions taken through the use of an information system or network that result in an actual or potentially adverse effect on an information system, network, and/or the information residing therein. See…
Full definition →
Cyber Influence
Cybersecurity
The use of cyber operations to shape the perceptions or behavior of targeted audiences while maintaining plausible deniability.
Full definition →
Cyber Operation
Cybersecurity
An umbrella term to describe cyber attack, cyber espionage, cyber influence, or cyber defense, and intrusions or activities with unknown intent.
Full definition →
Cyber Operations
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Performs activities to gather evidence on criminal or foreign intelligence entities in order to mitigate possible or real-time threats, protec…
Full definition →
Cyber Operations Planning
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Performs in-depth joint targeting and cyber planning process. Gathers information and develops detailed Operational Plans and Orders supportin…
Full definition →
Cyber Resilience
Cybersecurity
The overall ability of systems and organisations to withstand cyber events and, where harm is caused, recover from them. (UK 2016)
Full definition →
Cyber Response and Recovery Fund
Cybersecurity
A new fund, administered by the Federal Emergency Management Agency but directed by the Cybersecurity and Infrastructure Security Agency. Cyber Recovery Fund disbursement would be triggered by a “cybe…
Full definition →
Cyber Risk
Cybersecurity
Risk of financial loss, legal liability, reputational damage, regulatory action, operational dis- ruption, or damage from the failure of the digital technologies employed for informational and/or oper…
Full definition →
Cyber Security
Cybersecurity
The protection of information systems against unauthorized access to or modification of information contained therein, and against the denial of service to authorized users, including those measures n…
Full definition →
Cyber Security Challenge
Cybersecurity
Competitions encouraging people to test their skills and to consider a career in cyber. (UK 2016)
Full definition →
Cyber State of Distress
Cybersecurity
A proposed federal declaration that would trigger additional financial and material assistance. The declaration would be used exclusively for responding to, or preemptively preparing for, cyber incide…
Full definition →
Cyber Threat
Cybersecurity
A capability and intent that intentionally compromises the confidentiality, integrity, reliabil- ity, or availability of digital devices, systems, networks, or data in transit or at rest.
Full definition →
Cyber Threat Intelligence (CTI)
Cybersecurity
The collecting, processing, organizing, and analyzing data into actionable information that relates to capabilities, opportunities, actions, and intent of adversaries in the cyber domain to meet a spe…
Full definition →
Cyber-aware
Cybersecurity
An emerging field that addresses the intersection of cybersecurity and biosecurity, focusing on protecting biological data, processes, and systems from cyber threats and malicious activities
Full definition →
Cyber-health/cyber-hygiene
Cybersecurity
Practice of risk mitigation online; includes taking steps such as changing passwords frequently and installing antivirus software
Full definition →
Cyber-kinetic Warfare
Cybersecurity
In which enemy forces can detect or interfere with electronic devices and use them to cause physical harm
Full definition →
Cyber-physical System
Cybersecurity
Systems with integrated computational and physical components; ‘smart’ systems. (UK 2016)
Full definition →
Cyberattack
Cybersecurity
Action taken in cyberspace that creates noticeable denial effects (i.e., degradation, disrup- tion, or destruction) in cyberspace or manipulation that leads to denial that appears in a physical domain…
Full definition →
Cybercrime
Cybersecurity
A cyber operation that is primarily motivated by reasons other than national security or geopolitical objectives.
Full definition →
Cyberespionage
Cybersecurity
Or cyber spying, is a type of cyberattack in which an unauthorized user attempts to access sensitive or classified data or intellectual property (IP) for economic gain, competitive advantage or politi…
Full definition →
Cyberforensic
Cybersecurity
The process of collecting, analyzing, and preserving digital evidence to investigate cybercrimes and other incidents
Full definition →
Cyberinvest
Cybersecurity
A £6.5m industry and government scheme to support cutting-edge cyber security research and protect the UK in cyberspace. (UK 2016)
Full definition →
Cybersecuring
Cybersecurity
The process of hardening technologies, processes, and controls to protect systems, networks, programs, devices and data from cyber attacks
Full definition →
Cybersecurity
Cybersecurity
Measures taken to protect computer systems and data from attach and unauthorized access or use.
Full definition →
Cybersecurity Adjacent
Cybersecurity
A number of roles that have cybersecurity responsibilities which typically form only part of their overall responsibilities within an organization.
Full definition →
Cybersecurity-aware
Cybersecurity
Knowing what security threats are and acting responsibly to avoid potential risks.
Full definition →
Cyberspace
Cybersecurity
The interdependent network of information technology infrastructures, and includes the Internet, telecommunications networks, computer systems, and embedded processors and controllers in critical indu…
Full definition →
Cyberspace Attack
Cybersecurity
Cyberspace actions that create various direct denial effects (i.e. degradation, disruption, or destruction) and manipulation that leads to denial that is hidden or that manifests in the physical domai…
Full definition →
Cyberspace Capability
Cybersecurity
A device, computer program, or technique, including any combination of software, firmware, or hardware, designed to create an effect in or through cyberspace.
Full definition →
Cyberspace Defense
Cybersecurity
Actions normally created within DoD cyberspace for securing, operating, and defending the DoD information networks. Specific actions include protect, detect, characterize, counter, and mitigate.
Full definition →
Cyberspace Operations
Cybersecurity
(CO) The employment of cyberspace capabilities where the primary purpose is to achieve objectives in or through cyberspace.
Full definition →
Cyberspace Solarium Commission
Cybersecurity
Final Report, March 2020
Full definition →
Cyberspace Superiority
Cybersecurity
The degree of dominance in cyberspace by one force that permits the secure, reliable conduct of operations by that force, and its related land, air, maritime, and space forces at a given time and plac…
Full definition →
Cyberthreats
Cybersecurity
Refers to anything that has the potential to cause serious harm to a computer system
Full definition →
Cyberwarfare
Cybersecurity
Typically defined as a set of actions by a nation or organization to attack countries or institutions' computer network systems with the intention of disrupting, damaging, or destroying infrastructure…
Full definition →
Cyberwarrior
Cybersecurity
An individual who participates in cyberwarfare, motivated either by personal, patriotic, or religious reasons, but not due to professional requirement
Full definition →
Cyclic Redundancy Check
Cybersecurity
also: CRC
(CRC) A type of checksum algorithm that is not a cryptographic hash but is used to implement data integrity service where accidental changes to data are expected.
Full definition →
D 43 terms
DDOS Attack
Cybersecurity
Distributed Denial-of-service ATTACK
Full definition →
DEF CON
Cybersecurity
An attack that prevents or impairs the authorized use of information system resources or services.
Full definition →
DOS Attack
Cybersecurity
Denial-of-service ATTACK
Full definition →
Data Accuracy
Cybersecurity
(1) Data accuracy is defined in terms of ballot position error rate. This rate applies to the voting functions and supporting equipment that capture, record, store, consolidate and report the specific…
testingsecurity
Full definition →
Data Administration
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Develops and administers databases and/or data management systems that allow for the storage, query, and utilization of data.
Full definition →
Data Encryption Algorithm (DEA)
Cybersecurity
The DEA cryptographic engine that is used by the Triple Data Encryption Algorithm (TDEA). (SP 800-67) (NISTIR)
Full definition →
Data Encryption Standard (DES)
Cybersecurity
also: DES
Cryptographic algorithm designed for the protection of unclassified data and published by the National Institute of Standards and Technology (NIST) in Federal Information Processing Standard (FIPS) Pu…
Full definition →
Data Hosting
Cybersecurity
The activity or business of providing hardware, systems, software, and infrastructure to store and manage access to data.
Full definition →
Data Integrity
Cybersecurity
Invulnerability of the system to accidental intervention or deliberate, fraudulent manipulation that would result in errors in the processing of data. It is distinguished from data accuracy which enco…
security
Full definition →
Data Origin Authentication
Cybersecurity
The corroboration that the source of data received is as claimed. See also non-repudiation and peer entity authentication service
Full definition →
Database
Cybersecurity
A structured collection of data that includes data and metadata (data about the data). Databases are managed by database management systems. The election database stores all of the requisite informati…
Full definition →
Ddos
Cybersecurity
A cybercrime in which the attacker floods a target with internet traffic to prevent users from accessing connected online services and sites
Full definition →
Ddos Attacks
Cybersecurity
Distributed denial of service attacks A DoS attack where the victim is simultaneously attacked by many different systems.
Full definition →
De-perimeterization
Cybersecurity
An information security strategy to strengthens an organization's security posture by implementing multiple levels of protection, including inherently secure computer systems and protocols, high-level…
Full definition →
Deauthentication
Cybersecurity
To revoke the authentication of; to cause no longer to be authenticated.
Full definition →
Decryption
Cybersecurity
also: Decipher
Process of changing encrypted text into plain text.
Full definition →
Deepfake
Cybersecurity
A digital picture or video that has been maliciously edited using an algorithm in a way that makes the video appear authentic.
Full definition →
Defend Forward
Cybersecurity
The proactive observing, pursuing, and countering of adversary operations and imposing of costs in day-to-day competition to disrupt and defeat ongoing malicious adversary cyber campaigns, deter futur…
Full definition →
Defensive Cyber Campaign
Cybersecurity
A coordinated set of actions across the U. S. government, utilizing any or all available instruments of U. S. national power, to respond to an adversary cyber campaign, mitigate its potential effects,…
Full definition →
Defensive Cyber Operations (DCO)
Cybersecurity
Missions to preserve the ability to utilize one’s own network capabilities and protect data, computers, cyberspace-enabled devices, and other designated systems by defeating ongoing or imminent malici…
Full definition →
Defensive Cyberspace Operation Response Action
Cybersecurity
(DCO-RA) Deliberate, authorized defensive measures or activities taken outside of the defended network to protect and defend Department of Defense (DoD) cyberspace capabilities or other designated sys…
Full definition →
Defensive Cyberspace Operations
Cybersecurity
(DCO) Passive and active cyberspace operations intended to preserve the ability to utilize friendly cyberspace capabilities and protect data, networks, net-centric capab ilities, and other designated …
Full definition →
Demilitarized Zone (DMZ)
Cybersecurity
1. Perimeter network segment that is logically between internal and external networks. Its purpose is to enforce the internal network’s Information Assurance (IA) policy for external information excha…
Full definition →
Denial-of-service Attack
Cybersecurity
Abbreviated DOS. Department of Health and Human Services The government body charged under HAVA with maki ng payments to states to make polling places accessible to the disabled. 42 U. S. C §15421. Ab…
Full definition →
Deterrence
Cybersecurity
Dissuading someone from doing something by making them believe that the costs to them will exceed their expected benefit.
Full definition →
Digital Certificate
Cybersecurity
A technology by which systems and their users can employ the security applications of Public Key Infrastructure (PKI). PKI is a set of roles, policies, and procedures needed to create, manage, distrib…
Full definition →
Digital Citizenship
Cybersecurity
The position or status of being an internet user, particularly as it pertains to knowledge of responsible behaviors pertaining to internet use, including internet safety, digital footprint, online med…
Full definition →
Digital Literacy
Cybersecurity
The ability to use information and communication technologies to find, evaluate, create, and communicate information, requiring both cognitive and technical skills. A device that records votes by mean…
Full definition →
Digital Signature
Cybersecurity
An asymmetric key operation where the private key is used to digitally sign an electronic document and the public key is used to verify the signature. Digital signatures provide data authentication an…
Full definition →
Direct Recording Electronic (DRE) Voting Machine
Cybersecurity
also: DRE
A vote-capture device that allows:
Full definition →
Disconnection
Cybersecurity
The termination of an interconnection between two or more IT systems. A disconnection may be planned (e.g., due to changed business needs) or unplanned (i.e., due to an attack or other contingency). (…
Full definition →
Disinformation
Cybersecurity
False information deliberately spread to deceive.
Full definition →
Disruptionware
Cybersecurity
A category of malware designed to suspend operations within a target through the compromise of the availability, integrity, and confidentiality of the systems, networks, and data
Full definition →
Distinguishing Identifier
Cybersecurity
Information which unambiguously distinguishes an entity in the authentication process.
Full definition →
Distributed Denial of Service
Cybersecurity
(DDoS) A denial of service technique that uses numerous hosts to perform the attack.
Full definition →
Distributed Denial-of-service (ddos) Attack
Cybersecurity
An email authentication, policy, and reporting protocol that verifies the authenticity of the sender of an email and blocks and reports fraudulent accounts.
Full definition →
Domain-based Message Authentication, Reporting & Conformance
Cybersecurity
An email authentication, policy, and reporting protocol that verifies the authenticity of the sender of an email and blocks and reports fraudulent accounts. SOURCE: Cyberspace Solarium Commission Fina…
Full definition →
Dos
Cybersecurity
The act of publicly providing personally identifiable information about an individual or organization, usually via the Internet and without their consent
Full definition →
Dos Attacks
Cybersecurity
Denial of service attacks Have the goal of causing a loss of a specific service to users or at least to considerably restrict the accessibility of the service.
Full definition →
Downloader
Cybersecurity
Initial component of a malware infection, may lead to an infection with further malicious programs. The downloader downloads the actual virus, Trojan, etc., and launches it on the infected system.
Full definition →
Drive-by Infection
Cybersecurity
Infection of a computer with malware simply by visiting a website. Often the websites concerned contain reputable offerings and have already been compromised beforehand for the purposes of spreading t…
Full definition →
Dual-use Certificate
Cybersecurity
A certificate that is intended for use with both digital signature and data encryption services. (SP 800-32) (NISTIR)
Full definition →
Dynamic Attack Surface
Cybersecurity
The automated, on-the-fly changes of an information system's characteristics to thwart actions of an adversary.
Full definition →
E 29 terms
Eavesdropping Attack
Cybersecurity
An attack in which an Attacker listens passively to the authentication protocol to capture information which can be used in a subsequent active attack to masquerade as the Claimant. (SP 800-63) (NISTI…
Full definition →
Education and Training
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Conducts training of personnel within pertinent subject domain; develop, plan, coordinate, deliver, and/or evaluate training courses, methods,…
Full definition →
Election Infrastructure
Cybersecurity
Information and communications technology and systems used by or on behalf of the federal government or a state or local government in managing the election process, including voter registration datab…
Full definition →
Election Integrity
Cybersecurity
An election that is professional, impartial, and transparent in its preparation and administration throughout the electoral cycle.
Full definition →
Election Public Key Certificate
Cybersecurity
A digital certificate created at the time an ELECTION SIGNATURE KEY is created for each TABULATOR. The certificate is signed with the signing (private) key corresponding to the election signature key.…
Full definition →
Election Public Key Deletion Record
Cybersecurity
An electronic record created when the signing key corresponding to an ELECTION SIGNATURE KEY is destroyed. See CRYPTOGRAPHY.
Full definition →
Election-specific Termscommon Cyber Termsmisused/confusing Terms Common Terms
Cybersecurity
Internet Protocol (IP) address or e-mail in an attempt to mislead the recipient as to the origin of the original communication or as a means of malicious redirection. systems, and embedded processors …
Full definition →
Electronic
Cybersecurity
DEVICES associated with voting systems may be targ eted by malware. Malware is inclusive of viruses, worms, Trojan horses, and malicious m obile code, as well as combinations of these, known as blende…
Full definition →
Electronic Authentication
Cybersecurity
(e- authentication) The process of establishing confidence in user identities electronically presented to an information system.
Full definition →
Electronic Credentials
Cybersecurity
Digital documents used in authentication that bind an identity or an attribute to a subscriber's authenticator.
Full definition →
Embedded Cryptography
Cybersecurity
Cryptography engineered into an equipment or system whose basic function is not cryptographic. (CNSSI-4009) (NISTIR)
Full definition →
Emergency Action Plan
Cybersecurity
(EAP) A plan developed to prevent loss of national intelligence; protect personnel, facilities, and communications; and recover operations damaged by terrorist attack, natural disaster, or similar eve…
Full definition →
Encrypted Key
Cybersecurity
Key that has been encrypted in a system approved by the National Security Agency (NSA) for key encryption.
Full definition →
Encryption
Cybersecurity
also: Encipher
Process of obscuring information by changing plain text into ciphertext for the purpose of security or privacy.
Full definition →
Encryption Algorithm
Cybersecurity
Set of mathematically expressed rules for rendering data unintelligible by executing a series of conversions controlled by a key.
Full definition →
Encryption Certificate
Cybersecurity
A certificate containing a public key that can encrypt or decrypt electronic messages, files, documents, or data transmissions, or establish or exchange a session key for these same purposes. Key mana…
Full definition →
Encryption File System
Cybersecurity
also: EFS
Encryption FILE SYSTEM
Full definition →
End-to-end Encryption
Cybersecurity
Communications encryption in which data is encrypted when being passed through a network, but routing information remains visible.
Full definition →
Entropy
Cybersecurity
A measure of the amount of uncertainty that an Attacker faces to determine the value of a secret. Entropy is usually stated in bits. (SP 800-63) (NISTIR)
Full definition →
Escalation of Privilege
Cybersecurity
An attack where the attacker is using some means to bypass security controls in order to attain a higher privilege level on the target system.
Full definition →
Escrow
Cybersecurity
Something (e.g., a document, an encryption key) that is "delivered to a third person to be given to the grantee only upon the fulfillment of a condition." (FIPS 185) (NISTIR)
Full definition →
Executive Order 13636
Cybersecurity
Executive Order that calls for the Federal Government to closely coordinate with critical infrastructure owners and operators to improve cybersecurity information sharing; develop a technology-neutral…
Full definition →
Exploit Code
Cybersecurity
(or exploit) A program, a script or a line of code with which vulnerabilities in a computer system can be used to advantage.
Full definition →
Exploitation
Cybersecurity
The act of extracting and gathering intelligence data.
Full definition →
Exploitation Analysis
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Analyzes collected information to identify vulnerabilities and potential for exploitation.
Full definition →
Exploited
Cybersecurity
Indicates that a malicious actor has conducted additional activities on a compromised system, such as collecting data, deploying more malware, or establishing persistent access. Some documents—within …
Full definition →
Exposure
Cybersecurity
The condition of being unprotected, thereby allowing access to information or access to capabilities that an attacker can use to enter a system or network.
Full definition →
External Information System (or Component)
Cybersecurity
(or component) An information system or component of an information system that is outside of the authorization boundary established by the organization and for which the organization typically has no…
Full definition →
External Information System Service
Cybersecurity
An information system service that is implemented outside of the authorization boundary of the organizational information system (i.e., a service that is used by, but not a part of, the organizational…
Full definition →
F 14 terms
F Ull Disk Encryption (FDE)
Cybersecurity
The process of encrypting all the data on the hard disk drive used to boot a computer, including the computer’s operating system, and permitting access to the data only after successful authentication…
Full definition →
FAQ
Cybersecurity
A government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services
Full definition →
FIPS (federal Information Processing Standards)
Cybersecurity
Standards issued by US Government for use in government agencies. FIPS 140 covers encryption standards.
Full definition →
FTP (file Transfer Protocol)
Cybersecurity
A standard network protocol used to transfer computer files between a client and server on a computer network, usually the Internet. Election offices will upload and download files, such as sample bal…
Full definition →
Fancy Bear
Cybersecurity
Russian cyberespionage group, also known as APT 28
Full definition →
Fifth-generation Wireless Network (5G)
Cybersecurity
A set of wireless software and hardware technologies that will produce a significant improvement in data speed, volume, and latency (delay in data transfer) over fourth-gener- ation (4G and 4G LTE) ne…
Full definition →
File Encryption
Cybersecurity
The process of encrypting individual files on a storage medium and permitting access to the encrypted data only after proper authentication is provided. (SP 800-111) (NISTIR)
Full definition →
Final Goods Assembler
Cybersecurity
The entity that is most responsible for the placement of a product or service into the stream of commerce.
Full definition →
Fips-approved Security Method
Cybersecurity
A security method (e.g., cryptographic algorithm, cryptographic key generation algorithm or key distribution technique, random number generator, authentication technique, or evaluation criteria) that …
Full definition →
Fips-validated Cryptography
Cybersecurity
A cryptographic module validated by the Cryptographic Module Validation Program (CMVP) to meet requirements specified in FIPS 140-2 (as amended).
Full definition →
Firefly
Cybersecurity
Key management protocol based on public key cryptography. (CNSSI-4009) (NISTIR)
Full definition →
Firewall
Cybersecurity
A gateway system designed to prevent unauthorized access to a private network or intranet that is connected to the internet.
Full definition →
Flooding
Cybersecurity
An attack that attempts to cause a failure in a system by providing more input than the system can process properly.
Full definition →
Forensically Clean
Cybersecurity
Digital media that is completely wiped of all data, including nonessential and residual data, scanned for malware, and verified before use. (SP 800-86) (NISTIR)
Full definition →
H 15 terms
Hash
Cybersecurity
Algorithm that maps a bit string of arbitrary length to a fixed-length bit string.
Full definition →
Hash Function
Cybersecurity
A function that maps a bit string of arbitrary length to a fixed-length bit string. Approved hash functions satisfy the following properties: 1. (one-way) It is computationally infeasible to find any …
Full definition →
Hash Total
Cybersecurity
Value computed on data to detect error or manipulation. See Checksum. (CNSSI-4009) (NISTIR)
Full definition →
Hash Value
Cybersecurity
also: Cryptographic Hash Value
A numeric value resulting from applying a mathematical algorithm against a set of data such as a file.
Full definition →
Hash Value/result
Cybersecurity
See message digest.
Full definition →
Hash-based Message Authentication Code (hmac)
Cybersecurity
A message authentication code that uses a cryptographic key in conjunction with a hash function.
Full definition →
Hashing
Cybersecurity
The process of using a mathematical algorithm against data to produce a numeric value that is representative of that data.
Full definition →
Hashmarking
Cybersecurity
A method of counting votes where for each vote counted one person reads the vote, and one or more people make tally marks is sets of five marks for each candidate or yes/no vote.
Full definition →
Hashword
Cybersecurity
(C. F. D.) Memory address containing hash total. Rationale: Listed for deletion in 2010 version of CNSS 4009.
Full definition →
Homomorphic Encryption
Cybersecurity
A special form of encryption in which the sum of two numbers can be determined even though the numbers are encrypted, and without decr ypting the numbers. Homomorphic encryption can be used in verific…
Full definition →
Honeytokens
Cybersecurity
Is data that looks attractive to cyber criminals but is actually false or of no value
Full definition →
Hop Point
Cybersecurity
A compromised or commercially purchased intermediary system that is used as a proxy to disguise the attacker’s true point of origin.
Full definition →
Hostile Act
Cybersecurity
An action or attempted action taken by an adversary that is designed to harm, disrupt, or compromise the security, integrity, or availability of systems, networks, or operations, particularly in the c…
threatelection-security
Full definition →
Hunt Forward
Cybersecurity
U. S. efforts with allies and partners to conduct threat hunting and pursue adversaries on allied and partner networks.
Full definition →
Hunt and Incident Response Team
Cybersecurity
A set of teams within the Cybersecurity and Infrastructure Security Agency that provides onsite incident response, free of charge, to organizations that require immediate investiga- tion and resolutio…
Full definition →
I 31 terms
IA Product
Cybersecurity
Product whose primary purpose is to provide security services (e.g., confidentiality, authentication, integrity, access control, non-repudiation of data); correct known vulnerabilities; and/or provide…
Full definition →
IP Security (ipsec)
Cybersecurity
(IPSec) Provide(s) interoperable, high quality, cryptographically-based security for IPv4 and IPv6. The set of security services offered includes access control, connectionless integrity, data origin …
Full definition →
Identity Certificate
Cybersecurity
A certificate that provides authentication of the identity claimed. Within the National Security System (NSS) public key infrastructure (PKI), identity certificates may be used only for authentication…
Full definition →
Identity and Access Management
Cybersecurity
The methods and processes used to manage subjects and their authentication and authorizations to access specific objects.
Full definition →
Identity-based Access Control
Cybersecurity
Access control based on the identity of the user (typically relayed as a characteristic of the process acting on behalf of that user) where access authorizations to specific objects are assigned based…
Full definition →
Impact
Cybersecurity
also: Consequence
The effect on organizational operations, organizational assets, individuals, other organizations, or the Nation (including the national security interests of the United States) of a loss of confidenti…
Full definition →
Incident
Cybersecurity
An occurrence that results in actual or potential jeopardy to the confidentiality, integrity, or availability of an information system or the information the system processes, stores, or transmits or …
Full definition →
Incident Response Plan
Cybersecurity
The documentation of a predetermined set of instructions or procedures to detect, respond to, and limit consequences of a malicious cyber attack against an organization’s information systems(s).
Full definition →
Indicator
Cybersecurity
Recognized action, specific, generalized, or theoretical, that an adversary might be expected to take in preparation for an attack.
Full definition →
Information Assurance (IA)
Cybersecurity
Professional (C. F. D.) Individual who works IA issues and has real world experience plus appropriate IA training and education commensurate with their level of IA responsibility.
Full definition →
Information Assurance Compliance
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Oversees, evaluates, and supports the documentation, validation, and accreditation processes necessary to assure that new IT systems meet the …
Full definition →
Information Security
Cybersecurity
also: IS
Protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide - integrity, confidentiality, and availability.
security
Full definition →
Information System Boundary
Cybersecurity
See authorization boundary.
Full definition →
Information System Resilience
Cybersecurity
The ability of an information system to continue to: (i) operate under adverse conditions or stress, even if in a degraded or debilitated state, while maintaining essential operational capabilities; a…
Full definition →
Information Systems Security Operations
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Oversees the information assurance program of an information system in or outside the network environment; may include procurement duties (e.g…
Full definition →
Infrastructure
Cybersecurity
The framework of interdependent networks and systems comprising identifiable industries, institutions (including people and procedures), and distribution capabilities that provide a reliable flow of p…
Full definition →
Initialization Vector (IV)
Cybersecurity
A vector used in defining the starting point of an encryption process within a cryptographic algorithm. (FIPS 140-2) (NISTIR)
Full definition →
Initialize
Cybersecurity
Setting the state of a cryptographic logic prior to key generation, encryption, or other operating mode. (CNSSI-4009) (NISTIR)
Full definition →
Initiator
Cybersecurity
The entity that initiates an authentication exchange. (FIPS 196) (NISTIR)
Full definition →
Innovation Base of the United States
Cybersecurity
The American network of knowledge, capabilities, and people—including those in aca- demia, National Laboratories, and the private sector—that turns ideas into innovations, transforms discoveries into …
Full definition →
Input Validation Attacks
Cybersecurity
Input Validations Attacks are where an attacker intentionally sends unusual input in the hopes of confusing an application.
Full definition →
Insider
Cybersecurity
Any person with authorized access to any United States Government resource to include personnel, facilities, information, equipment, networks, or systems.
Full definition →
Interim Approval to Operate
Cybersecurity
(IATO) (C. F. D.) Temporary authorization granted by principal accrediting authority (PAA) or authorizing official (AO) for an information system to process information based on preliminary results of…
Full definition →
Interim Approval to Test (iatt)
Cybersecurity
Temporary authorization to test an information system in a specified operational information environment within the time frame and under the conditions or constraints enumerated in the written authori…
Full definition →
Interim Authorization to Test
Cybersecurity
(IATT) Temporary authorization to test an information system in a specified operational information environment within the timeframe and under the conditions or constraints enumerated in the written a…
Full definition →
Intrusion
Cybersecurity
also: Penetration
A security event, or a combination of multiple security events, that constitutes a security incident in which an intruder gains, or attempts to gain, access to a system or system resource without havi…
Full definition →
Intrusion Detection Systems (IDS)
Cybersecurity
(IDS), (network-based) IDSs which detect attacks by capturing and analyzing network packets. Listening on a network segment or switch, one network-based IDS can monitor the network traffic affecting m…
Full definition →
Intrusion Set
Cybersecurity
A group of cyber security incidents that share similar cyber actors, methods, or signatures.
Full definition →
Investigate
Cybersecurity
A NICE Framework category consisting of specialty areas responsible for the investigation of cyber events and/or crimes of IT systems, networks, and digital evidence
Full definition →
Ioas
Cybersecurity
Refers to the series of behaviors that a cybercriminal exhibits prior to executing a cyberattack.
Full definition →
in the Wild
Cybersecurity
A term that can be used to describe malware in general use (thereby making attribution difficult) or an unpatched or unknown vulnerability discovered in an information system.
Full definition →
J 4 terms
Jamming
Cybersecurity
An attack that attempts to interfere with the reception of broadcast communications.
Full definition →
Joint Authorization
Cybersecurity
Security authorization involving multiple authorizing officials.
Full definition →
Joint Cyber Planning Cell
Cybersecurity
A proposed cell within the Cybersecurity and Infrastructure Security Agency that would facilitate comprehensive operational planning of defensive, non-intelligence cybersecurity campaigns across agenc…
Full definition →
Jurisdiction
Cybersecurity
A geographic location for which elections are conducted; e.g., Nanaimo, British Columbia, or Estonia. Machine code Code used by a computer to cause an operation. Machine code is converted from source …
Full definition →
K 13 terms
Kerberos
Cybersecurity
A widely used authentication protocol developed at the Massachusetts Institute of Technology (MIT). In “classic” Kerberos, users share a secret password with a Key Distribution Center (KDC). The user,…
Full definition →
Key
Cybersecurity
A numerical value used to control cryptographic operations, such as decryption, encryption, signature generation, or signature verification. Usually a sequence of random or pseudorandom bits used init…
Full definition →
Key Bundle
Cybersecurity
The three cryptographic keys (Key1, Key2, Key3) that are used with a Triple Data Encryption Algorithm (TDEA) mode. (SP 800-67) (NISTIR)
Full definition →
Key Encryption Key (KEK)
Cybersecurity
A key that encrypts other key (typically traffic encryption keys (TEKs)) for transmission or storage.
Full definition →
Key Escrow System
Cybersecurity
The system responsible for storing and providing a mechanism for obtaining copies of private keys associated with encryption certificates, which are necessary for the recovery of encrypted data.
Full definition →
Key Logger
Cybersecurity
A program designed to record which keys are pressed on a computer keyboard used to obtain passwords or encryption keys and thus bypass other security measures. (SP 800-82) (NISTIR)
Full definition →
Key Management
Cybersecurity
Activities involving the handling of cryptographic keys and other related security parameters (e.g., passwords) during the entire life cycle of the keys, including their generation, storage, establish…
Full definition →
Key Management Device
Cybersecurity
A unit that provides for secure electronic distribution of encryption keys to authorized users.
Full definition →
Key Pair
Cybersecurity
A public key and its corresponding private key; a key pair is used with a public key algorithm.
Full definition →
Key Processor
Cybersecurity
(KP) The high-assurance cryptographic component in electronic key management system (EKMS) designed to provide for the local generation of keying material, encryption, and decryption of key, key load …
Full definition →
Keyed Hash-based Message Authentication Code (hmac)
Cybersecurity
A message authentication code that uses a cryptographic key in conjunction with a hash function.
Full definition →
Keying Material
Cybersecurity
Key, code, or authentication information in physical, electronic, or magnetic form. It includes key tapes and list, codes, authenticators, one-time pads, floppy disks, and magnetic tapes containing ke…
Full definition →
Knowledge Management
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Manages and administers processes and tools that enable the organization to identify, document, and access intellectual capital and informatio…
Full definition →
L 6 terms
Laboratory Attack (c.f.d.)
Cybersecurity
Use of sophisticated signal recovery equipment in a laboratory environment to recover information from data storage media. Rationale: Term is no longer used in revised version of NIST SP 800- 88. lawf…
Full definition →
Least Privilege
Cybersecurity
The principle that a security architecture should be designed so that each entity is granted the minimum system resources and authorizations that the entity needs to perform its function.
Full definition →
Legal Advice and Advocacy
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Provides legally sound advice and recommendations to leadership and staff on a variety of relevant topics within the pertinent subject domain;…
Full definition →
Link Encryption
Cybersecurity
Encryption of information between nodes of a communications system.
Full definition →
Logic Defect
Cybersecurity
Fault in software, firmware, or hardwired logic.
Full definition →
London Process
Cybersecurity
Measures resulting from the 2011 London Conference on Cyberspace. (UK 2016)
Full definition →
M 22 terms
Malicious Cyber Activity
Cybersecurity
Activities, other than those authorized by or in accordance with U. S. law, that seek to compromise or impair the confidentiality, integrity, or availability of computers, information or communication…
Full definition →
Malicious Logic
Cybersecurity
Hardware, firmware, or software that is intentionally included or inserted in a system for a harmful purpose.
Full definition →
Malvertising
Cybersecurity
A malicious attack that involves injecting harmful code into legitimate online advertising networks
Full definition →
Malware
Cybersecurity
also: Malicious Applet
Software or firmware intended to perform an unauthorized process that will have adverse impact on the confidentiality, integrity, or availability of a system. For example, a virus, worm, Trojan horse,…
Full definition →
Malware Detection Software
Cybersecurity
Software, such as “antivirus software, antispyware software, and rootkit detection,” which “can identify common known malware that attempts to infect an ELECTRONIC DEVICE, as well as identify infectio…
Full definition →
Malware/malicious Code
Cybersecurity
Comes from the terms "malicious" and" software". Generic term for software which carries out harmful functions on a computer. This comprises amongst others viruses, worms, Trojan horses. See also Malw…
Full definition →
Man-in-the-middle Attack
Cybersecurity
(MitM) A form of active wiretapping attack in which the attacker intercepts and selectively modifies communicated data to masquerade as one or more of the entities involved in a communication associat…
Full definition →
Mandatory Access Control (MAC)
Cybersecurity
An access control policy that is uniformly enforced across all sub jects and objects within the boundary of an information system. A subject that has been gr anted access to information is constrained…
Full definition →
Message Authentication
Cybersecurity
Form of authentication in which information is authenticated through cryptographic techniques that use keys.
Full definition →
Message Authentication Code (MAC)
Cybersecurity
A cryptographic checksum on data that uses a symmetric key to detect both accidental and intentional modifications of the data. See checksum.
Full definition →
Message Digest
Cybersecurity
The result of applying a hash function to a message. Also known as a “hash value” or “hash output”.
Full definition →
Min-entropy
Cybersecurity
A measure of the difficulty that an Attacker has to guess the most commonly chosen password used in a system. (SP 800-63) (NISTIR)
Full definition →
Minimalist Cryptography
Cybersecurity
Cryptography that can be implemented on devices with very limited memory and computing capabilities, such as RFID tags. (SP 800-98) (NISTIR)
Full definition →
Mitm
Cybersecurity
A man-in-the-middle attack is a cyberattack where the attacker secretly relays and possibly alters the communications between two parties who believe that they are directly communicating
Full definition →
Mixing
Cybersecurity
An electronic process implemented prior to counting involving encryption and decryption which removes any links between a marked ballot and the identity of the voter who cast it; used by some Internet…
Full definition →
Module
Cybersecurity
A structural unit of a software program that serves a specific function for the program or helps make the program modular.
Full definition →
Moving Target Defense
Cybersecurity
The presentation of a dynamic attack surface, increasing an adversary's work factor necessary to probe, attack, or maintain presence in a cyber target.
Full definition →
Multi-Factor Authentication
Cybersecurity
Authentication mechanism requiring two or more of: something you know, something you have, or something you are.
Full definition →
Multi-level Security (MLS)
Cybersecurity
Concept of processing information with different classifications and categories that simultaneously permits access by users with different security clearances and denies access to users who lack autho…
Full definition →
Multifactor Authentication
Cybersecurity
Authentication using two or more factors to achieve authentication. Factors include: (i) something you know (e.g. password/personal identification number (PIN)); (ii) something you have (e.g., cryptog…
Full definition →
Multilevel Security (MLS)
Cybersecurity
Concept of processing information with different classifications and categories that simultaneously permits access by users with different security clearances and denies access to users who lack autho…
Full definition →
Mutual Authentication
Cybersecurity
The process of both entities involved in a transaction verifying each other.
Full definition →
N 17 terms
NICCS
Cybersecurity
A property achieved through cryptographic methods to protect against an individual or entity falsely denying having performed a particular action related to data.
Full definition →
NPPD
Cybersecurity
An open-standard authorization protocol or framework that provides applications the ability for secure designated access
Full definition →
National Critical Functions
Cybersecurity
The functions of government and the private sector that are so vital to the United States that their disruption, corruption, or dysfunction would have a debilitating effect on security, national econo…
Full definition →
National Cybersecurity Assistance Fund
Cybersecurity
A proposed organization that would be charged with certifying critical information tech- nologies against frameworks based on identified and vetted security standards and with supporting and endorsing…
Full definition →
National Cybersecurity Certification and Labeling Authority
Cybersecurity
A proposed organization that would be charged with certifying critical information technologies against frameworks based on identified and vetted security standards and with supporting and endorsing p…
Full definition →
National Infrastructure Protection Plan (nipp)
Cybersecurity
The National Infrastructure Protection Plan 2013, involving stakeholders from all 16 critical infrastructure sectors, all 50 states, and from all levels of government and industry, provides a clear ca…
Full definition →
National Protection and Programs Directorate (nppd) (dhs/nppd)
Cybersecurity
[The DHS division] that leads the DHS mission to reduce risk to the Nation’s critical physical and cyber infrastructure through partnerships that foster collaboration and interoperability. (Source: DH…
Full definition →
National Security Industrial Sector
Cybersecurity
The worldwide industrial complex that enables research and development, as well as the design, production, delivery, and maintenance of military weapons systems, subsystems, and components or parts, t…
Full definition →
Network Defense
Cybersecurity
Programs, activities, and the use of tools necessary to facilitate them (including those governed by NSPD-54/HSPD-23 and NSD-42) conducted on a computer, network, or information or communications syst…
Full definition →
Network Services
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Installs, configures, tests, operates, maintains, and manages networks and their firewalls, including hardware (e.g., hubs, bridges, switches,…
Full definition →
No Indicia
Cybersecurity
A class of VVPAT system in which no encrypted strings or symbols, such as barcodes or hash codes, are printed on the paper record for secu rity purposes, to preserve voter-verifiability. Unfortunately…
Full definition →
Non-person Entity (NPE)
Cybersecurity
An entity with a digital identity that acts in cyberspace, but is not a human actor. This can include organizations, hardware devices, software applications, and information artifacts.
Full definition →
Non-state Actor
Cybersecurity
An organization or individual that is not affiliated with a nation-state.
Full definition →
Nonce
Cybersecurity
A random or non-repeating value that is included in data exchanged by a protocol, usually for the purpose of guaranteeing the transmittal of live data rather than replayed data, thus detecting and pro…
Full definition →
Norm
Cybersecurity
A collective expectation for the proper behavior of actors with a given identity.
Full definition →
Notary Repository
Cybersecurity
An REPOSITORY which distributes software integrity information, such as digital signatures and hash values. 2007 VVSG.
Full definition →
Nsa-approved Cryptography
Cybersecurity
Cryptography that consists of: (i) an approved algorithm; (ii) an implementation that has been approved for the protection of classified information in a particular environment; and (iii) a supporting…
Full definition →
O 15 terms
ODNI
Cybersecurity
The proactive approach to securing networks and systems from attacks by actively seeking out vulnerabilities and weaknesses
Full definition →
Off-line Attack
Cybersecurity
An attack where the Attacker obtains some data (typically by eavesdropping on an authentication protocol run, or by penetrating a system and stealing security files) that he/she is able to analyze in …
Full definition →
Off-line Cryptosystem
Cybersecurity
Cryptographic system in which encryption and decryption are performed independently of the transmission and reception functions.
Full definition →
Offensive Cyber
Cybersecurity
The use of cyber capabilities to disrupt, deny, degrade or destroy computers networks and internet connected devices. (UK 2016)
Full definition →
Offensive Cyber Operations
Cybersecurity
Cyberspace operations intended to project power by the application of force in or through cyberspace.
Full definition →
Offensive Cyberspace Operations
Cybersecurity
(OCO) Cyberspace operations intended to project power by the application of force in or through cyberspace.
Full definition →
One-way Hash Algorithm
Cybersecurity
Hash algorithms which map arbitrarily long inputs into a fixed-size output such that it is very difficult (computationally infeasible) to find two different hash inputs that produce the same output. S…
Full definition →
Ongoing Assessment and Authorization
Cybersecurity
See information security continuous monitoring (ISCM). ongoing authorization See information security continuous monitoring (ISCM).
Full definition →
Online Attack
Cybersecurity
An attack against an authentication protocol where the Attacker either assumes the role of a Claimant with a genuine Verifier or actively alters the authentication channel. The goal of the attack may …
Full definition →
Online Cryptosystem
Cybersecurity
Cryptographic system in which encryption and decryption are performed in association with the transmitting and receiving functions.
Full definition →
Openioc
Cybersecurity
An extensible XML schema that enables you to describe the technical characteristics that identify a known threat, an attacker's methodology, or other evidence of compromise.
Full definition →
Organizational Information Security Continuous Monitoring
Cybersecurity
Ongoing monitoring sufficient to ensure and assure effectiveness of security controls related to systems, networks, and cyberspace, by assessing security control implementation and organizational secu…
Full definition →
Over-the-air Key Transfer
Cybersecurity
(OTAT) Electronically distributing key without changing traffic encryption key used on the secured communications path over which the transfer is accomplished.
Full definition →
Over-the-air Rekeying (otar)
Cybersecurity
Changing traffic encryption key or transmission security key in remote cryptographic equipment by sending new key directly to the remote cryptographic equipment over the communications path it secures…
Full definition →
Oversight & Development
Cybersecurity
A NICE Framework category consisting of specialty areas providing leadership, management, direction, and/or development and advocacy so that all individuals and the organization may effectively conduc…
Full definition →
P 36 terms
Packer
Cybersecurity
Compression program or compression algorithm of a program. Originally intended to optimize the size of a program on the hard drive. Malware often uses upstream packers to prevent recognition by anti- …
Full definition →
Packet
Cybersecurity
The logical unit of network communications produced by the transport layer.
Full definition →
Passive Attack
Cybersecurity
An attack that does not alter systems or data.
Full definition →
Password
Cybersecurity
A string of characters (letters, numbers, and other symbols) used to authenticate an identity or to verify access authorization.
Full definition →
Passwordless
Cybersecurity
An authentication method in which a user can log in to a computer system without the entering a password or any other knowledge-based secret
Full definition →
Payload
Cybersecurity
The input data to the CCM generation-encryption process that is both authenticated and encrypted. (SP 800-38C) (NISTIR)
Full definition →
Peer Entity Authentication
Cybersecurity
The process of verifying that a peer entity in an association is as claimed.
Full definition →
Peer Entity Authentication Service
Cybersecurity
A security service that verifies an identity claimed by or for a system entity in an association.
Full definition →
Penetration
Cybersecurity
also: Intrusion
See intrusion.
Full definition →
Penetration Testing
Cybersecurity
also: Pen Testing
An evaluation method that enables researchers to search for vulnerabilities in a system. Election systems, such as the Voter Registration system, are periodically submitted to Penetration Tests to det…
Full definition →
Per-call Key
Cybersecurity
Unique traffic encryption key generated automatically by certain secure telecommunications systems to secure single voice or data transmissions. See cooperative key generation (CKG).
Full definition →
Perimeter
Cybersecurity
(C. F. D.) 1. Encompasses all those components of the system that are to be accredited by the DAA, and excludes separately accredited systems to which the system is connected. Rationale: Listed for de…
Full definition →
Persistence
Cybersecurity
The ability of malware (malicious software) to maintain access to a compromised system even after mitigation steps have been taken. Achieving some degree of persistence eliminates the need to reinfect…
Full definition →
Persistent Engagement
Cybersecurity
The concept by which U. S. Cyber Command implements defend forward. It is based on the idea that adversaries are in constant contact in cyberspace. Its elements are enabling partners and acting as far…
Full definition →
Phaas
Cybersecurity
A model where cybercriminals offer pre-packaged phishing tools and resources, like malicious email templates, landing pages, and hosting, to others, effectively lowering the barrier to entry for launc…
Full definition →
Phishing
Cybersecurity
The practice of attempting to acquire authentication credentials or other personal information by posing as a trustworthy or legitimate entity. Process
Full definition →
Plain Text
Cybersecurity
Unencrypted information that may be input to an encryption operation.
Full definition →
Policy Based Access Control
Cybersecurity
(PBAC) A form of access control that uses an authorization policy that is flexible in the types of evaluated parameters (e.g., identity, role, clearance, operational need, risk, he uristics).
Full definition →
Policy Decision Point (PDP)
Cybersecurity
A system entity that makes authorization decisions for itself or for other system entities that request such decisions.
Full definition →
Policy Enforcement Point
Cybersecurity
(PEP) A system entity that requests and subsequently enforces authorization decisions.
Full definition →
Practice Statement
Cybersecurity
A formal statement of the practices followed by an authentication entity (e.g., RA, CSP, or Verifier). It usually describes the policies and practices of the parties and can become legally binding. (S…
Full definition →
Precursor
Cybersecurity
A sign that an attacker may be preparing to cause an incident. See indicator.
Full definition →
Presidential Policy Directive 8 (ppd-8)
Cybersecurity
[Presidential Directive that] facilitates an integrated, all-of-Nation approach to national preparedness for the threats that pose the greatest risk to the security of the Nation, including acts of te…
Full definition →
Principal Authorizing Official
Cybersecurity
(PAO) A senior (federal) official or executive with the authority to oversee and establish guidance for the strategic implementation of cybersecurity and risk management within their mission areas (i.…
Full definition →
Privacy System
Cybersecurity
Commercial encryption system that affords telecommunications limited protection to deter a casual listener, but cannot withstand a technically competent cryptanalytic attack. (CNSSI-4009) (NISTIR)
Full definition →
Private Key
Cybersecurity
The secret part of an asymmetric key pair that is typically used to digitally sign or decrypt data.
Full definition →
Privileged Account
Cybersecurity
An information system account with approved authorizations of a privileged user.
Full definition →
Proactive Cyber Defense
Cybersecurity
A continuous process to manage and harden devices and networks according to known best practices.
Full definition →
Program
Cybersecurity
(C. F. D.) Computer instructions or routines controlling or affecting the externally performed functions of key generation, key distribution, message encryption/decryption, or authentication. Rational…
Full definition →
Proxy
Cybersecurity
An application that “breaks” the connection between client and server. The proxy accepts certain types of traffic entering or leaving a network and processes it and forwards it.
Full definition →
Proxyjacking
Cybersecurity
A malicious technique where an attacker gains control over a target's proxy server, allowing them to intercept and manipulate the targets internet traffic
Full definition →
Public Key
Cybersecurity
Public part of an asymmetric key pair that is typically used to verify digital signatures or encrypt data.
Full definition →
Public Key Cryptography
Cybersecurity
also: Asymmetric Cryptography
(PKC) Encryption system that uses a public-private key pair for encryption and/or digital signature.
Full definition →
Public Key Enabling (PKE)
Cybersecurity
The incorporation of the use of certificates for security services such as authentication, confidentiality, data integrity, and non-repudiation.
Full definition →
Public Key Encryption
Cybersecurity
also: Public Key Cryptography
A framework consisting of standards and services to enable secure, encrypted communication and authentication over potentially insecure networks such as the Internet.
Full definition →
Public Key Infrastructure
Cybersecurity
also: PKI
A set of roles, policies, and procedures used to establish greater trust in the authenticity of a digital certificate and for use in creating, managing, distributing, using, storing, and revoking digi…
Full definition →
Q 3 terms
Qna
Cybersecurity
A cybercrime business model in which ransomware developers sell ransomware code or malware to other hackers, called “affiliates,” who then use the code to initiate their own ransomware attacks.
Full definition →
Quantum Computer
Cybersecurity
A collection of interacting quantum mechanical systems, such as superconductors or trapped ions, that can be manipulated to process information.
Full definition →
Quarantine
Cybersecurity
Store files containing malware in isolation for future disinfection or examination. (SP 800-69) (NISTIR)
Full definition →
R 18 terms
RED Data
Cybersecurity
Date that is not protected by encryption. Also known as unencrypted data.
Full definition →
RED Key
Cybersecurity
Key that has not been encrypted in a system approved by NSA for key encryption or encrypted key in the presence of its associated key encryption key (KEK) or transfer key encryption key (TrKEK). Encry…
Full definition →
Ransomeware
Cybersecurity
Malware that holds the victim’s device (computer, phone, etc.) and data for ransom (a sum of money or other payment), by means of encrypting the files on the device or preventing access to the device.
Full definition →
Ransomware
Cybersecurity
Malware that holds the victim’s device (computer, phone, etc.) and data for ransom, by means of encrypt- ing the files on the device or preventing access to the device. Election office computers shoul…
Full definition →
Reconnaissance
Cybersecurity
An action to discover malicious tools or vulnerabilities in a targeted system or network.
Full definition →
Red
Cybersecurity
Team A group of people authorized and organized to emulate a potential adversary’s attack or exploitation capabilities against an enterprise’s security posture. The Red Team’s objective is to improve …
Full definition →
Red Team
Cybersecurity
A group of people authorized and organized to emulate a potential adversary’s attack or exploitation capabilities against an enterprise’s security posture.
Full definition →
Red Team Exercise
Cybersecurity
An exercise, reflecting real-world conditions, that is conducted as a simulated attempt by an adversary to attack or exploit vulnerabilities in an enterprise's information systems.
Full definition →
Reexamination
Cybersecurity
In most states, a voting system once certifie d remains certified. Some state provide for automatic expiration of certification, e.g. Tenness ee, which requires recertification every eight years. Tenn…
Full definition →
Regenerative Cyber Defense
Cybersecurity
The process for restoring capabilities after a successful, large scale cyberspace attack, ideally in a way that prevents future attacks of the same nature.
Full definition →
Relay
Cybersecurity
A relay is a system acting as an interim station for the provision of a service. In connection with malware and spam, relays are used to conceal the real sender and prevent blocking. Open SMTP relays …
Full definition →
Replay Attacks
Cybersecurity
An attack that involves the capture of transmitted authentication or access control information and its subsequent retransmission with the intent of producing an unauthorized effect or gaining unautho…
Full definition →
Responder
Cybersecurity
The entity that responds to the initiator of the authentication exchange. (FIPS 196) (NISTIR)
Full definition →
Rijndael
Cybersecurity
Cryptographic algorithm specified in the Advanced Encryption Standard (AES). (FIPS 197) (NISTIR)
Full definition →
Risk Adaptable Access Control
Cybersecurity
(RAdAC) A form of access control that uses an authorization policy that takes into account operational need, risk, and heuristics.
Full definition →
Risk Executive (function)
Cybersecurity
An individual or group within an organization that helps to ensure that (i) security risk- related considerations for individual information systems, to include the authorization decisions for those s…
Full definition →
Role-based Access Control
Cybersecurity
(RBAC) Access control based on user roles (i.e., a collection of access authorizations a user receives based on an explicit or implicit assumption of a given role). Role permissions may be inherited t…
Full definition →
Rootkit
Cybersecurity
A set of tools used by an attacker after gaining root-level access to a host to conceal the attacker’s activities on the host and permit the attacker to maintain root-level access to the host through …
Full definition →
S 64 terms
S/mime
Cybersecurity
A set of specifications for securing electronic mail. Secure/ Multipurpose Internet Mail Extensions (S/MIME) is based upon the widely used MIME standard and describes a protocol for adding cryptograph…
Full definition →
SA
Cybersecurity
A cyberattack tactic that frightens people into visiting spoofed or infected websites or downloading malicious software (malware)
Full definition →
STEM
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Applies knowledge of priorities to define an entity.
Full definition →
Salt
Cybersecurity
A non-secret value that is used in a cryptographic process, usually to ensure that the results of computations for one instance cannot be reused by an attacker.
Full definition →
Scanned/scanning
Cybersecurity
Scanning a system involves attempting to identify the security vulnerabilities the system may have by sending it specific network traffic and observing its responses. The definition is reasonably spec…
Full definition →
Script Kiddie
Cybersecurity
A less skilled individual who uses ready-made scripts, or programs, that can be found on the Internet to conduct cyber attacks, such as web defacements. (UK 2016)
Full definition →
Secaas
Cybersecurity
A cloud-based method of outsourcing your cybersecurity
Full definition →
Secret Key
Cybersecurity
A cryptographic key that is used with a (symmetric) cryptographic algorithm that is uniquely associated with one or more entities and is not made public. The use of the term “secret” in this context d…
Full definition →
Secret Key (symmetric) Cryptographic Algorithm
Cybersecurity
A cryptographic algorithm that uses a single key (i.e., a secret key) for both encryption and decryption.
Full definition →
Sector Risk Management Agency
Cybersecurity
A proposed designation for a federal agency that codifies the minimum roles and respon- sibilities of a sector-specific agency.
Full definition →
Secure Communication Protocol
Cybersecurity
A communication protocol that provides the appropriate confidentiality, authentication, and content-integrity protection.
Full definition →
Secure Communications Interoperability Protocol
Cybersecurity
(SCIP) product National Security Agency (NSA) certified secure voice and data encryption devices that provide interoperability with both national and foreign wired and wireless products.
Full definition →
Secure DNS (secdns)
Cybersecurity
Configuring and operating DNS servers so that the security goals of data integrity and source authentication are achieved and maintained. (SP 800-81) (NISTIR)
Full definition →
Secure Hash Algorithm (SHA)
Cybersecurity
A hash algorithm with the property that is computationally infeasible 1) to find a message that corresponds to a given message digest, or 2) to find two different messages that produce the same messag…
Full definition →
Secure Hash Standard
Cybersecurity
The standard specifying hash algorithms that can be used to generate digests of messages. The digests are used to detect whether messages have been changed since the digests were generated.
Full definition →
Secure Sockets Layer
Cybersecurity
also: SSL
A protocol for exchanging information securely over a network using public-key encryption to transmit a symmetric key so that subsequent da ta can be encrypted and decrypted quickly. Abbreviated SSL.
Full definition →
Secure/multipurpose Internet Mail Extensions (s/mime)
Cybersecurity
(S/MIME) A set of specifications for securing electronic mail. S/MIME is based upon the widely used MIME standard and describes a protocol for adding cryptographic security services through MIME encap…
Full definition →
Security Assertion Markup Language (saml)
Cybersecurity
A protocol consisting of XML-based request and response message formats for exchanging security information, expressed in the form of assertions about subjects, between on-line business partners.
Full definition →
Security Authorization (to Operate)
Cybersecurity
See authorization to operate (ATO).
Full definition →
Security Authorization Boundary
Cybersecurity
See Authorization Boundary. (NISTIR)
Full definition →
Security Authorization Package
Cybersecurity
Documents the results of the security control assessment and provides the authorizing official with essential information needed to make a risk-based decision on whether to authorize operation of an i…
Full definition →
Security Automation
Cybersecurity
The use of information technology in place of manual processes for cyber incident response and management.
Full definition →
Security Controls
Cybersecurity
Management, operational, and technical controls (i.e., safeguards or countermeasures) prescribed for an information system to protect the confidentiality, integrity, and availability of the system and…
security
Full definition →
Security Perimeter
Cybersecurity
A physical or logical boundary that is defined for a system, domain, or enclave; within which a particular security policy or security architecture is applied.
Full definition →
Security Program Management
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Manages information security (e.g., information security) implications within the organization, specific program, or other area of responsibil…
Full definition →
Security Service
Cybersecurity
A capability that supports one, or many, of the security goals. Examples of security services are key management, access control, and authentication.
Full definition →
Security Strength
Cybersecurity
A metric associated with the amount of work required to break a cryptographic algorithm or system.
Full definition →
Shared Secret
Cybersecurity
A fact or idea that both the voter and the election administrator know, but that few or no other individuals will know.
Full definition →
Significant Consequences
Cybersecurity
Loss of life, significant responsive actions against the United States, significant damage to property, serious adverse U. S. foreign policy consequences, or serious economic impact on the United Stat…
Full definition →
Significant Cyber Incident
Cybersecurity
A cyber incident that is (or group of related cyber incidents that together are) likely to result in demonstrable harm to the national security interests, foreign relations, or econ- omy of the United…
Full definition →
Skimming
Cybersecurity
The unauthorized use of a reader to read tags without the authorization or knowledge of the tag’s owner or the individual in possession of the tag. (SP 800-98) (NISTIR)
Full definition →
Slowloris
Cybersecurity
An attack tool designed to take down a server by flooding it with incomplete HTTP requests, without using much of bandwidth
Full definition →
Smart Card
Cybersecurity
A credit card-sized card with embedded integrated circuits that can store, process, and communicate information.
Full definition →
So/dev
Cybersecurity
An intelligence hub for the company, gathering data from across the organization's networks, servers, endpoints and other digital assets and using intelligent automation to identify, prioritize and re…
Full definition →
Social Engineering
Cybersecurity
Misleading users into providing information that can be used to compromise the security of a system. Usually low-tech. Social engineering of election officials includes emails and phone calls requesti…
Full definition →
Software Assurance and Security Engineering
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Develops and writes/codes new (or modifies existing) computer applications, software, or specialized utility programs following software assur…
Full definition →
Software Installation
Cybersecurity
The software actually running in a VOTING DEVICE may differ from the software that was certified for that device or which was origina lly installed in the device. An important component of voting syst…
Full definition →
Spearphish
Cybersecurity
A malicious attack, spear phishing is a targeted form of phishing that uses personalized emails or messages to trick a specific individual or organization into revealing sensitive information or downl…
Full definition →
Spyware
Cybersecurity
Software that is secretly or surreptitiously installed into an information system to gather information on individuals or organizations without their knowledge; a typ e of malicious code.
Full definition →
Start-up KEK Key
Cybersecurity
Encryption-key held in common by a group of potential communicating entities and used to establish ad hoc tactical networks. (CNSSI-4009) (NISTIR)
Full definition →
Strategic Planning and Policy Development
Cybersecurity
In the NICE Workforce Framework, cybersecurity work where a person: Applies knowledge of priorities to define an entity. (From: NICE Workforce Framework) (NICCS)
Full definition →
Striped Core
Cybersecurity
A network architecture in which user data traversing a core IP network is decrypted, filtered and re-encrypted one or more times.
Full definition →
Strong Authentication
Cybersecurity
A method used to secure computer systems and/or networks by verifying a user’s identity by requiring two-factors in order to authenticate (something you know, something you are, or something you have)…
Full definition →
Structured Query Language (SQL) Injection
Cybersecurity
An attack technique that attempts to subvert the relationship between a webpage and its supporting data- base, typically in order to trick the database into executing malicious code.
Full definition →
Subscriber
Cybersecurity
An entity that (1) is the subject named or identified in a certificate issued to such an entity, and (2) holds a private key that corresponds to a public key listed in that certificate.
Full definition →
Superencryption
Cybersecurity
Process of encrypting encrypted information. Occurs when a message, encrypted off-line, is transmitted over a secured, online circuit, or when information encrypted by the originator is multiplexed on…
Full definition →
Supply Chain Attack
Cybersecurity
Attacks that allow the adversary to utilize implants or other vulnerabilities inserted prior to installation in order to infiltrate data, or manipulate information technology hardware, software, opera…
Full definition →
Supply Chain Compromise
Cybersecurity
An occurrence within the supply chain whereby an adversary jeopardizes the confidential- ity, integrity, or availability of a system or the information that the system processes, stores, or transmits.
Full definition →
Supply Chain Management
Cybersecurity
A cross-functional approach to procuring, producing, and delivering products and services to customers.
Full definition →
Supply Chain Risk
Cybersecurity
The risk that an adversary may sabotage, maliciously introduce unwanted function, or otherwise subvert the design, integrity, manufacturing, production, distribution, installation, operation, or maint…
Full definition →
Surveilling
Cybersecurity
The practice of monitoring computer networks and systems for threats, while surveillance is the act of observing them. In the context of cybersecurity, "surveillance" refers to the continuous monitori…
Full definition →
Symmetric
Cybersecurity
(Secret) Encryption Algorithm Encryption algorithms using the same secret key for encryption and decryption.
Full definition →
Symmetric (Secret) Encryption Algorithm
Cybersecurity
also: Symmetric Cryptography
Encryption algorithms using the same secret key for encryption and decryption.
Full definition →
Symmetric Cryptography
Cybersecurity
also: secret key cryptography
Encryption system that uses the same key for encryption and decryption. This key must be kept secret.
Full definition →
Symmetric Encryption
Cybersecurity
Encryption is which the same key is used fo r both encryption and decryption, as opposed to ASYMMETRIC ENCRYPTION.
Full definition →
Symmetric Key
Cybersecurity
A cryptographic key that is used to perform both the cryptographic operation and its inverse, for example to encrypt and decrypt, or create a message authentication code and to verify the code.
Full definition →
Synchronous Crypto- Operation
Cybersecurity
Method of on-line cryptographic operation in which cryptographic equipment and associated terminals have timing systems to keep them in step.
Full definition →
System Administration
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Installs, configures, troubleshoots, and maintains server configurations (hardware and software) to ensure their confidentiality, integrity, a…
Full definition →
System Indicator
Cybersecurity
Symbol or group of symbols in an off-line encrypted message identifying the specific cryptosystem or key used in the encryption.
Full definition →
Systemically Important Critical Infrastructure (sici)
Cybersecurity
A proposed designation of critical infrastructure entities that manage systems and assets whose disruption could have cascading, destabilizing effects on U. S. national security, economic security, an…
Full definition →
Systems Development
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Works on the development phases of the systems development lifecycle.
Full definition →
Systems Requirements Planning
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Consults with customers to gather and evaluate functional requirements and translates these requirements into technical solutions; provides gu…
Full definition →
Systems Security Analysis
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Conducts the integration/testing, operations, and maintenance of systems security.
Full definition →
Systems Security Architecture
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Develops system concepts and works on the capabilities phases of the systems development lifecycle; translates technology and environmental co…
Full definition →
T 29 terms
TAXII (trusted Automated Exchange of Indicator Info)
Cybersecurity
TAXII is not an information sharing program and does not define trust agreements. Rather, it is a set of specifications for exchanging cyberthreat information to help organizations share information w…
Full definition →
TRB
Cybersecurity
A type of malware that conceals its true content to fool a user into thinking it's a harmless file
Full definition →
TSA
Cybersecurity
A form of cybersquatting (sitting on sites under someone else's brand or copyright) that targets Internet users who incorrectly type a website address into their web browser
Full definition →
Tailored Trustworthy Space
Cybersecurity
A cyberspace environment that provides a user with confidence in its security, using automated mechanisms to ascertain security conditions and adjust the level of security based on the user's con…
Full definition →
Targeted/targeting
Cybersecurity
A cyber actor’s targeting of a particular victim can refer to any aspect of the actor’s attempts to select a system to conduct operations against, learn about, find vulnerabilities, gain access, or co…
Full definition →
Targets
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Applies current knowledge of one or more regions, countries, non-state entities, and/or technologies.
Full definition →
Technical Security Material
Cybersecurity
Equipment, components, devices, and associated documentation or other media which pertain to cryptography, or to the security of telecommunications and information systems.
Full definition →
Technology Research and Development
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Conducts technology assessment and integration processes; provides and supports a prototype capability and/or evaluates its utility.
Full definition →
Test and Evaluation
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Develops and conducts tests of systems to evaluate compliance with specifications and requirements by applying principles and methods for cost…
Full definition →
Threatscape
Cybersecurity
The spectrum of possible cybersecurity threats
Full definition →
Threshold Cryptography
Cybersecurity
A form of cryptography useful in secure verifi able voting schemes to prevent malfeasance by requiring multiple parties in order to decrypt a message so that decryption cannot be accomplished by any s…
Full definition →
Timestomping
Cybersecurity
A technique used in cybersecurity and digital forensics, where attackers modify the timestamps of files and directories on a computer system to hide their actions or impede investigations
Full definition →
Token
Cybersecurity
also: authentication token
Something a user possesses and controls, typically a key or password, that is used to authenticate an identity.
Full definition →
Traditional Key
Cybersecurity
Term used to reference symmetric key wherein both ends of a link or all parties in a cryptonet have the same exact key. 256-bit advanced encryption standard (AES), high assurance internet protocol enc…
Full definition →
Traffic Analysis
Cybersecurity
(TA) Gaining knowledge of information by inference from observable characteristics of a data flow, even if the information is not directly available (e.g., when the data is encrypted). These character…
Full definition →
Traffic Encryption Key (TEK)
Cybersecurity
Key used to encrypt plain text or to superencrypt previously encrypted text and/or to decrypt cipher text.
Full definition →
Transfer Key Encryption Key (trkek)
Cybersecurity
A key used to move key from a Key Processor to a data transfer device (DTD)/secure DTD2000 system (SDS)/simple key loader (SKL).
Full definition →
Transport Layer Security (TLS)
Cybersecurity
Protocol A security protocol providing privacy and data integrity between two communicating applications. The protocol is composed of two layers: the TLS Record Protoco l and the TLS Handshake Protoco…
Full definition →
Trap Door
Cybersecurity
1. A means of reading cryptographically protected information by the use of private knowledge of weaknesses in the cryptographic algorithm used to protect the data. 2. In cryptography, one-to-one func…
Full definition →
Triple
Cybersecurity
DES (3DES) (C. F. D.) An implementation of the data encryption standard (DES) algorithm that uses three passes of the DES algorithm instead of one as used in ordinary DES applications. Triple DES prov…
Full definition →
Triple DES
Cybersecurity
An implementation of the Data Encryption Standard (DES) algorithm that uses three passes of the DES algorithm instead of one as used in ordinary DES applications. Triple DES provides much stronger enc…
Full definition →
Triple Data Encryption Algorithm
Cybersecurity
(TDEA) An approved cryptographic algorithm as required by FIPS PUB 140-2. TDEA s pecifies both the DEA cryptographic engine employed by TDEA and the TDEA algorithm itself.
Full definition →
Trojan Horse
Cybersecurity
A computer program that appears to have a useful function, but also has a hidden and potentially mali- cious function that evades security mechanisms, sometimes by exploiting legitimate authorizations…
Full definition →
Troll
Cybersecurity
A person or group of people that invites discord on the internet by starting arguments or posting inflammatory, extraneous, or off-topic messages in an online community with the deliberate intent of p…
Full definition →
Trusted Identification Forwarding
Cybersecurity
Identification method used in information system networks whereby the sending host can verify an authorized user on its system is attempting a connection to another host. The sending host transmits th…
Full definition →
Trusted Operating System
Cybersecurity
An operating system in which there exists a level of confidence (based on rigorous analysis and testing) that the security principals and mechanisms (e.g., separation, isolation, least privilege, disc…
Full definition →
Two-factor Authentication
Cybersecurity
Authentication mechanism requiring two or more of the following: something you know (e.g., Password), something you have (e.g., Token), something that identifies who you are (e.g., biometrics).
Full definition →
Type Accreditation (c.f.d.)
Cybersecurity
A form of accreditation that is used to authorize multiple instances of a major application or general support system for operation at approved locations with the same type of computing environment. I…
Full definition →
Type Authorization
Cybersecurity
An official authorization decision to employ identical copies of an information system or subsystem (including hardware, software, firmware, and/or applications) in specified environments of operation…
Full definition →
U 7 terms
UK 2016
Cybersecurity
U. K. Government, National Cyber Security Strategy 2016-2021, Nov. 1, 2016
Full definition →
Unencrypted Key
Cybersecurity
Key that has not been encrypted in a system approved by the National Security Agency (NSA) for key encryption or encrypted key in the presence of its ass ociated key encryption key (KEK) or transfer k…
Full definition →
Unsigned Data
Cybersecurity
Data included in an authentication token, in addition to a digital signature. (FIPS 196) (NISTIR)
Full definition →
Update (a Certificate)
Cybersecurity
(a key) Automatic or manual cryptographic process that irreversibly modifies the state of a COMSEC key, equipment, device, or system.
Full definition →
Us-cert
Cybersecurity
(United States Computer Emergency Readiness Team) A partnership between the Department of Homeland Security (DHS) and the public and private sectors, established to protect the nation's internet infra…
Full definition →
User Partnership Program (UPP)
Cybersecurity
Partnership between the NSA and a U. S. government agency to facilitate development of secure information system equipment incorporating NSA-approved cryptography. The result of this program is the au…
Full definition →
User Representative (risk Management)
Cybersecurity
The key management entity (KME) authorized by an organization and registered by the Central Facility Finksburg (CFFB) to order asymmetric key (including secure data network system (SDNS) key and messa…
Full definition →
V 5 terms
Verifier
Cybersecurity
An entity that verifies the claimant’s identity by verifying the claimant’s possession and control of a token using an authentication protocol. To do this, the Verifier may also need to validate crede…
Full definition →
Verifier Impersonation Attack
Cybersecurity
A scenario where the Attacker impersonates the Verifier in an authentication protocol, usually to capture information that can be used to masquerade as a Claimant to the real Verifier. (SP 800-63) (NI…
Full definition →
Virus
Cybersecurity
A malicious computer program that may replicate itself on a computer network, insert or attach copies of itself into computer programs, and cause harm to computers or systems by corrupting, stealing, …
Full definition →
Vulnerability
Cybersecurity
Weakness in an information system, system security procedures, internal controls, or implementation that could be exploited or triggered by a threat source.
Full definition →
Vulnerability Assessment and Management
Cybersecurity
In the NICE Framework, cybersecurity work where a person: Conducts assessments of threats and vulnerabilities, determines deviations from acceptable configurations, enterprise or local policy, assesse…
Full definition →
W 13 terms
Wardriving
Cybersecurity
Attackers searching for wireless networks with vulnerabilities while moving around an area in a moving vehicle
Full definition →
Wargaming
Cybersecurity
An interactive technique that immerses potential cyber incident responders in a simulated cyber scenario
Full definition →
Watering Hole Attack
Cybersecurity
In a watering hole attack, the attacker compromises a site likely to be visited by a particular target group, rather than attacking the target group directly.
Full definition →
Weaponeering
Cybersecurity
A term borrowed from military doctrine that refers to the process of analyzing target vulnerabilities and matching them with specific cyber capabilities (weapons) to achieve a desired effect or object…
Full definition →
Weaponization
Cybersecurity
An attacker creates malware or malicious payloads to use against the target by designing new forms of malware. Modifying existing programs to better match the vulnerabilities they're trying to exploit
Full definition →
Weaponize
Cybersecurity
To develop an exploit against a vulnerability into an attack tool that can be deployed against a target
Full definition →
White
Cybersecurity
Team 1. The group responsible for refereeing an engagement between a Red Team of mock attackers and a Blue Team of actual defenders of their enterprise’s use of information systems. In an exercise, th…
Full definition →
White Team
Cybersecurity
A group responsible for refereeing an engagement between a Red Team of mock attackers and a Blue Team of actual defenders of information systems.
Full definition →
Whole-of- Government
Cybersecurity
U. S. government agencies working across boundaries and through interagency coopera- tion to achieve shared goals and/or an integrated government response.
Full definition →
Whole-of-nation
Cybersecurity
Concerted and cooperative efforts among partners across agencies and the private sector to facilitate ease of operation and/or reach common goals.
Full definition →
Wi-fi Protected Access-2 (wpa2)
Cybersecurity
(WPA2) The approved Wi-Fi Alliance interoperable implementation of the IEEE 802.11i security standard. For federal government use, the implementation must use federal information processing standards …
Full definition →
Wicys
Cybersecurity
A novel cybersecurity attack technique that weaponizes legitimate, public-facing Windows Domain Controllers (DCs) to form a powerful, stealthy distributed denial-of-service (DDoS) botnet
Full definition →
Wired Equivalent Privacy (WEP)
Cybersecurity
A security protocol, specified in the IEEE 802.11 standard, that is designed to provide a WLAN with a level of security and privacy comparable to what is usually expected of a wired LAN. WEP is no lon…
Full definition →
Z 3 terms
Zero Day Attack
Cybersecurity
An attack that exploits a previously unknown hardware, firmware, or software vulnerability.
Full definition →
Zero-day Vulnerability
Cybersecurity
A computer-software vulnerability unknown to the manufacturer, typically used in targeted attacks
Full definition →
Zombie
Cybersecurity
A program that is installed on a system to cause it to attack other systems. (SP 800-83) (NISTIR)
Full definition →