U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

    Glossary
A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

Threat Assessment/Analysis

Abbreviation(s) and Synonym(s):

Definition(s):

  Process of formally evaluating the degree of threat to an information system or enterprise and describing the nature of the threat.
Source(s):
CNSSI 4009-2015 under threat assessment
NIST SP 800-30 Rev. 1 under Threat Assessment from CNSSI 4009
NIST SP 800-39 under Threat Assessment from CNSSI 4009
NISTIR 7622 from CNSSI 4009

  Formal description and evaluation of threat to an information system.
Source(s):
NIST SP 800-18 Rev. 1 under Threat Assessment from CNSSI 4009
NIST SP 800-53 Rev. 5 under threat assessment from CNSSI 4009-2015
NIST SP 800-53A Rev. 5 under threat assessment from CNSSI 4009-2015

  See threat assessment.
Source(s):
CNSSI 4009-2015 under threat analysis

  Assessment to evaluate the actual or potential effect of a threat to a system. Note: The threat assessment may include identifying and describing the nature of the threat.
Source(s):
NIST SP 800-160 Vol. 1 under threat assessment

  Assessment to evaluate the actual or potential effect of a threat to a system. Note: The threat assessment may include identifying and describing the nature of the threat.
Source(s):
NIST SP 800-160 Vol. 1 under threat assessment

  Formal description and evaluation of threat to a system or organization.
Source(s):
NIST SP 800-161r1 under threat assessment from NIST SP 800-53 Rev. 5 - adapted