This page covers terminology related to legal and security aspects.

Information Security #

Means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide availability, confidentiality, and integrity.

Confidentiality\\ #

Ensuring that information is accessible only to those authorized to have access (ISO 17799)

Information Availability\\ #

Ensuring timely and reliable access to and use of information. (Source: [SOURCE: Title III of the E-Government Act, entitled the Federal Information Security Management Act of 2002 (FISMA)])

Information Confidentiality #

Preserving authorized restrictions on access and disclosure, including means for protecting personal privacy and proprietary information;

Information Integrity #

Guarding against improper information modification or destruction, and includes ensuring information nonrepudiation and authenticity;

Privacy #

Information privacy is the assured, proper, and consistent collection, processing, communication, use and disposition of disposition of personal information (PI) and personally- identifiable information (PII) throughout its life cycle. (Source: adapted from OASIS)

Co-residence #

Sharing of hardware or software resources by cloud customers

Protection Asset #

The target of protection in a security analysis. (was: Asset)

Security Target #

A document specifying criteria for the evaluation of security in order to substantiate a vendor's claims for the security properties of a product (a term used in Common Criteria).