U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Glossary
A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

IS

Abbreviation(s) and Synonym(s):

Information Security
Information System

Definition(s):

  The protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide confidentiality, integrity, and availability.
Source(s):
NIST SP 800-12 Rev. 1 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 800-128 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 800-137 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 800-18 Rev. 1 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 800-30 Rev. 1 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 800-37 Rev. 1 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 800-39 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 800-53 Rev. 4 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 800-53A Rev. 4 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 800-60 Vol. 1 Rev. 1 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 800-60 Vol. 2 Rev. 1 under Information Security from 44 U.S.C., Sec. 3542
NIST SP 1800-25B under Information Security from FIPS 199, 44 U.S.C., Sec. 3542
NIST SP 1800-26B under Information Security from FIPS 199, 44 U.S.C., Sec. 3542
NIST SP 1800-27B under Information Security from FIPS 200
NIST SP 1800-27C under Information Security from FIPS 200
NISTIR 7621 Rev. 1 under Information Security from 44 U.S.C., Sec. 3542
NISTIR 8170 under Information Security from 44 U.S.C., Sec. 3541

  A discrete set of resources organized for the collection, processing, maintenance, use, sharing, dissemination, or disposition of information.
Source(s):
NIST SP 800-34 Rev. 1 under Information System from 44 U.S.C., Sec. 3502

  The term 'information system' means a discrete set of information resources organized for the collection, processing, maintenance, use, sharing, dissemination, or disposition of information.
Source(s):
NIST SP 800-59 under Information System from 44 U.S.C., Sec. 3502 (8)

  The term 'information security' means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide integrity, confidentiality, and availability.
Source(s):
NIST SP 800-59 under Information Security from 44 U.S.C., Sec. 3542 (b)(1)

  An interconnected set of information resources under the same direct management control that shares common functionality. A system normally includes hardware, software, information, data, applications, communications, and people.
Source(s):
NIST SP 800-66 Rev. 1 under Information System from 45 C.F.R., Sec. 164.304

  The ability of an information system to continue to: (i) operate under adverse conditions or stress, even if in a degraded or debilitated state, while maintaining essential operational capabilities; and (ii) recover to an effective operational posture in a time frame consistent with mission needs.
Source(s):
NIST SP 800-53 Rev. 4 under Information System

  A computer-based system used by an issuer to perform the functions necessary for PIV Card or Derived PIV Credential issuance as per [FIPS 201-2].
Source(s):
NIST SP 800-79-2 under Information System

  A discrete set of information resources organized for the collection, processing, maintenance, use, sharing, dissemination, or disposition of information.
Source(s):
NIST SP 800-137 under Information System from 44 U.S.C., Sec. 3502
NIST SP 800-18 Rev. 1 under Information System from 44 U.S.C., Sec. 3502, OMB Circular A-130, Appendix III
NIST SP 800-30 Rev. 1 under Information System from 44 U.S.C., Sec. 3502
NIST SP 800-37 Rev. 1 under Information System from 44 U.S.C., Sec. 3502
NIST SP 800-39 under Information System from 44 U.S.C., Sec. 3502
NIST SP 800-53 Rev. 4 under Information System from 44 U.S.C., Sec. 3502
NIST SP 800-53A Rev. 4 under Information System from 44 U.S.C., Sec. 3502
NIST SP 800-60 Vol. 1 Rev. 1 under Information System from 44 U.S.C., Sec. 3502, OMB Circular A-130, Appendix III
NIST SP 800-60 Vol. 2 Rev. 1 under Information System from 44 U.S.C., Sec. 3502, OMB Circular A-130, Appendix III
NIST SP 800-66 Rev. 1 under Information System from 44 U.S.C., Sec. 3502
NIST SP 1800-25B under Information System from FIPS 200, 44 U.S.C., Sec. 3502
NIST SP 1800-26B under Information System from FIPS 200, 44 U.S.C., Sec. 3502
NISTIR 7622 under Information System from 44 U.S.C., Sec. 3502
NISTIR 8170 under Information System from 44 U.S.C., Sec. 3502
NISTIR 8286 under Information System from OMB Circular A-130 (2016)

  A discrete set of information resources organized for the collection, processing, maintenance, use, sharing, dissemination, or disposition of information. [Note: Information systems also include specialized systems such as industrial/process controls systems, telephone switching and private branch exchange (PBX) systems, and environmental control systems.]
Source(s):
NIST SP 800-128 under Information System from 44 U.S.C., Sec. 3502

  A discrete set of information resources organized for the collection, processing, maintenance, use, sharing, dissemination, or disposition of information. Note: Information systems also include specialized systems such as industrial/process controls systems, telephone switching and private branch exchange (PBX) systems, and environmental control systems.
Source(s):
NIST SP 800-53 Rev. 4 under Information System from 44 U.S.C., Sec. 3502

  An information system is a discrete set of information resources organized expressly for the collection, processing, maintenance, use, sharing, dissemination, or disposition of information. Information systems also include specialized systems such as industrial/process controls systems, telephone switching/private branch exchange (PBX) systems, and environmental control systems.
Source(s):
NIST SP 800-161 under Information System from NIST SP 800-53 Rev. 4

  A discrete set of information resources organized for the collection, processing, maintenance, use, sharing, dissemination, or disposition of information. [Note: Information systems also include specialized systems such as industrial/process controls systems, telephone switching and private branch exchange (PBX) systems, and environmental control systems.]
Source(s):
NIST SP 800-12 Rev. 1 under Information System from 44 U.S.C., Sec. 3502