security control and privacy control

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviation(s) and Synonym(s):

Definition(s):

  See security control and privacy control.
Source(s):
NIST SP 800-37 Rev. 2 under control

  measure that is modifying risk. (Note: controls include any process, policy, device, practice, or other actions which modify risk.)
Source(s):
NISTIR 8053 under control ISO/IEC 27000:2014

  The means of managing risk, including policies, procedures, guidelines, practices, or organizational structures, which can be of an administrative, technical, management, or legal nature. An attribute assigned to an asset t hat reflects its relative importance or necessity in acheiving or contributing to the achievement of stated goals.
Source(s):
NIST SP 800-160 Vol.2 under control

Glossary Comments

Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.

Comments about the glossary's presentation and functionality should be sent to secglossary@nist.gov.

See NISTIR 7298 Rev. 3 for additional details.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

Computer Security Resource Center

Computer Security Resource Center

security control and privacy control

Glossary Comments