U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Glossary
A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

malware

Abbreviation(s) and Synonym(s):

Malicious Code
malicious code and malicious logic
Malware

Definition(s):

  See Malicious Code.
Source(s):
NIST SP 800-12 Rev. 1 under Malware from NIST SP 800-53
NIST SP 800-128 under Malware
NIST SP 800-53 Rev. 4 [Superseded] under Malware

  Software or firmware intended to perform an unauthorized process that will have adverse impact on the confidentiality, integrity, or availability of an information system. A virus, worm, Trojan horse, or other code-based entity that infects a host. Spyware and some forms of adware are also examples of malicious code.
Source(s):
NIST SP 1800-21B under Malware from NIST SP 800-53 Rev. 4
NIST SP 800-128 under malicious code from NIST SP 800-53
NISTIR 7621 Rev. 1 under Malware from NIST SP 800-53 Rev. 4 - “Malicious Code”
CNSSI 4009-2015 [Superseded] under malicious code from NIST SP 800-53 Rev. 4
NIST SP 800-53 Rev. 4 [Superseded] under Malicious Code

  A program that is inserted into a system, usually covertly, with the intent of compromising the confidentiality, integrity, or availability of the victim’s data, applications, or operating system or of otherwise annoying or disrupting the victim.
Source(s):
NIST SP 800-137 under Malware from NISTIR 7298
NIST SP 800-28 Version 2 under Malware
NIST SP 800-45 Version 2 under Malware

  Software designed and operated by an adversary to violate the security of a computer (includes spyware, virus programs, root kits, and Trojan horses).
Source(s):
NIST SP 800-152 under Malware

  Software or firmware intended to perform an unauthorized process that will have adverse impact on the confidentiality, integrity, or availability of a system. A virus, worm, Trojan horse, or other code-based entity that infects a host. Spyware and some forms of adware are also examples of malicious code.
Source(s):
NIST SP 800-12 Rev. 1 under Malicious Code from NIST SP 800-53
NIST SP 800-172 under malicious code
NIST SP 800-172A under malicious code
NIST SP 800-171 Rev. 2 under malicious code
NIST SP 800-171 Rev. 1 [Superseded] under malicious code

  A program that is written intentionally to carry out annoying or harmful actions, which includes Trojan horses, viruses, and worms.
Source(s):
NIST SP 800-28 Version 2 under Malicious Code

  A virus, worm, Trojan horse, or other code-based malicious entity that successfully infects a host.
Source(s):
NIST SP 800-61 Rev. 2 under Malware

  A program that is covertly inserted into another program with the intent to destroy data, run destructive or intrusive programs, or otherwise compromise the confidentiality, integrity, or availability of the victim’s data, applications, or operating system.
Source(s):
NIST SP 800-83 Rev. 1 under Malware

  See Malicious malicious Ccode.
Source(s):
NIST SP 800-128

  Software or firmware intended to perform an unauthorized process that will have adverse impact on the confidentiality, integrity, or availability of an information system. A virus, worm, Trojan horse, or other code-based entity that infects a host. Spyware and some forms of adware are also examples of malicious code (malware).
Source(s):
NIST SP 800-82 Rev. 2 under Malware from NIST SP 800-53

  Software or firmware intended to perform an unauthorized process that will have adverse impact on the confidentiality, integrity, or availability of an information system. A virus, worm, Trojan horse, or other code-based entity that infects a host.  Spyware and some forms of adware are also examples of malicious code.
Source(s):
NIST SP 800-128 under Malicious Code from NIST SP 800-53

  Software or firmware intended to perform an unauthorized process that will have adverse impacts on the confidentiality, integrity, or availability of a system. A virus, worm, Trojan horse, or other code-based entity that infects a host. Spyware and some forms of adware are also examples of malicious code.
Source(s):
NIST SP 800-53 Rev. 5 under malicious code

  A program that is inserted into a system, usually covertly, with the intent of compromising the confidentiality, integrity, or availability of the victim’s data, applications, or operating system.
Source(s):
NIST SP 1800-10B under Malware from NIST SP 800-111
NIST SP 1800-25B under Malware from NIST SP 800-111
NIST SP 1800-26B under Malware from NIST SP 800-111

  Hardware, firmware, or software that is intentionally included or inserted in a system for a harmful purpose.
Source(s):
CNSSI 4009-2015 [Superseded] under malicious logic from IETF RFC 4949 Ver 2

  See malicious code and malicious logic.
Source(s):
CNSSI 4009-2015 [Superseded]

  See “Malware.”
Source(s):
NIST SP 800-114 [Superseded] under Malicious Code

  A computer program that is covertly placed onto a computer with the intent to compromise the privacy, accuracy, or reliability of the computer’s data, applications, or OS. Common types of malware threats include viruses, worms, malicious mobile code, Trojan horses, rootkits, and spyware.
Source(s):
NIST SP 800-114 [Superseded] under Malware

  See “Malware”.
Source(s):
NIST SP 800-69 [Withdrawn] under Malicious Code

  A computer program that is covertly placed onto a computer with the intent to compromise the privacy, accuracy, or reliability of the computer’s data, applications, or operating system.
Source(s):
NIST SP 800-69 [Withdrawn] under Malware