threat analysis

  Process of formally evaluating the degree of threat to an information system or enterprise and describing the nature of the threat.
Source(s):
CNSSI 4009-2015 under threat assessment
NIST SP 800-161 CNSSI 4009, NIST SP 800-53A Rev. 4
NIST SP 800-30 Rev. 1 under Threat Assessment CNSSI 4009
NIST SP 800-39 under Threat Assessment CNSSI 4009
NIST SP 800-53A Rev. 4 under Threat Assessment CNSSI 4009
NISTIR 7622 CNSSI 4009, NIST SP 800-53A

  Formal description and evaluation of threat to an information system.
Source(s):
NIST SP 800-18 Rev. 1 under Threat Assessment CNSSI 4009
NIST SP 800-53 Rev. 4 under Threat Assessment CNSSI 4009

  See threat assessment.
Source(s):
CNSSI 4009-2015 under threat analysis

  The examination of threat sources against system vulnerabilities to determine the threats for a particular system in a particular operational environment.
Source(s):
NIST SP 800-33 under threat analysis [Withdrawn]
NIST SP 800-27 Rev. A under threat analysis [Withdrawn]

  Assessment to evaluate the actual or potential effect of a threat to a system. Note: The threat assessment may include identifying and describing the nature of the threat.
Source(s):
NIST SP 800-160 under threat assessment [Superseded]

  Assessment to evaluate the actual or potential effect of a threat to a system. Note: The threat assessment may include identifying and describing the nature of the threat.
Source(s):
NIST SP 800-160 under threat assessment [Superseded]