SCRM

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviation(s) and Synonym(s):

Supply Chain Risk Management

CNSSI 4009-2015

NIST Cybersecurity Framework Version 1.1

NIST SP 800-160 Vol. 2 Rev. 1

NIST SP 800-161r1

NIST SP 800-172

NIST SP 800-203

NIST SP 800-211

NIST SP 800-37 Rev. 2

NIST SP 800-53 Rev. 5

NIST SP 800-53A Rev. 5

NISTIR 8200

Definition(s):

the implementation of processes, tools or techniques to minimize the adverse impact of attacks that allow the adversary to utilize implants or other vulnerabilities inserted prior to installation in order to infiltrate data, or manipulate information technology hardware, software, operating systems, peripherals (information technology products) or services at any point during the life cycle.
Source(s):
NISTIR 8074 Vol. 2 under Supply Chain Risk Management

Glossary Comments

Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.

Comments about the glossary's presentation and functionality should be sent to secglossary@nist.gov.

See NISTIR 7298 Rev. 3 for additional details.