NISTIR 7298 Revision 1, Glossary of Key Information Security Terms

More documents

Recommendations

Info

NIST IR 7298 Revision 1, Glossary of Key Information Security Terms Cryptographic Module Security Policy – Cryptographic Module Validation Program (CMVP) – Cryptographic Net – Stations holding a common key. SOURCE: CNSSI-4009 A precise specification of the security rules under which a cryptographic module will operate, including the rules derived from the requirements of this standard (FIPS 140-2) and additional rules imposed by the vendor. SOURCE: FIPS 140-2 Validates cryptographic modules to Federal Information Processing Standard (FIPS) 140-2 and other cryptography-based standards. The CMVP is a joint effort between National Institute of Standards and Technology (NIST) and the Communications Security Establishment (CSE) of the government of Canada. Products validated as conforming to FIPS 140-2 are accepted by the federal agencies of both countries for the protection of sensitive information (United States) or Designated Information (Canada). The goal of the CMVP is to promote the use of validated cryptographic modules and provide federal agencies with a security metric to use in procuring equipment containing validated cryptographic modules. SOURCE: FIPS 140-2 Cryptographic Period – Time span during which each key setting remains in effect. SOURCE: CNSSI-4009 Cryptographic Product – A cryptographic key (public, private, or shared) or public key certificate, used for encryption, decryption, digital signature, or signature verification; and other items, such as compromised key lists (CKL) and certificate revocation lists (CRL), obtained by trusted means from the same source which validate the authenticity of keys or certificates. Protected software which generates or regenerates keys or certificates may also be considered a cryptographic product. SOURCE: CNSSI-4009 Cryptographic Randomization – Function that randomly determines the transmit state of a cryptographic logic. SOURCE: CNSSI-4009 Cryptographic Security – Component of COMSEC resulting from the provision of technically sound cryptographic systems and their proper use. SOURCE: CNSSI-4009 Cryptographic Strength – A measure of the expected number of operations required to defeat a cryptographic mechanism. SOURCE: SP 800-63 Pg 54
NIST IR 7298 Revision 1, Glossary of Key Information Security Terms Cryptographic Synchronization – Process by which a receiving decrypting cryptographic logic attains the same internal state as the transmitting encrypting logic. SOURCE: CNSSI-4009 Cryptographic System – Associated information assurance items interacting to provide a single means of encryption or decryption. SOURCE: CNSSI-4009 Cryptographic System Analysis – Process of establishing the exploitability of a cryptographic system, normally by reviewing transmitted traffic protected or secured by the system under study. SOURCE: CNSSI-4009 Cryptographic System Evaluation – Process of determining vulnerabilities of a cryptographic system and recommending countermeasures. SOURCE: CNSSI-4009 Cryptographic System Review – Examination of a cryptographic system by the controlling authority ensuring its adequacy of design and content, continued need, and proper distribution. SOURCE: CNSSI-4009 Cryptographic System Survey – Management technique in which actual holders of a cryptographic system express opinions on the system's suitability and provide usage information for technical evaluations. SOURCE: CNSSI-4009 Cryptographic Token – A token where the secret is a cryptographic key. SOURCE: SP 800-63 A portable, user-controlled physical device (e.g., smart card or PCMCIA card) used to store cryptographic information and possibly also perform cryptographic functions. SOURCE: CNSSI-4009 Cryptography – The discipline that embodies the principles, means, and methods for the transformation of data in order to hide their semantic content, prevent their unauthorized use, or prevent their undetected modification. SOURCE: SP 800-59 Cryptography – The discipline that embodies principles, means, and methods for providing information security, including confidentiality, data integrity, non-repudiation, and authenticity. SOURCE: SP 800-21 Pg 55
Page 2 and 3:
NIST IR 7298 Revision 1 Glossary of
Page 4 and 5: NIST IR 7298 Revision 1, Glossary o
Page 104 and 105:
NIST IR 7298 Revision 1, Glossary o
Page 106 and 107:
Page 108 and 109:
Page 110 and 111:
Page 112 and 113:
Page 114 and 115:
Page 116 and 117:
Page 118 and 119:
Page 120 and 121:
Page 122 and 123:
Page 124 and 125:
Page 126 and 127:
Page 128 and 129:
Page 130 and 131:
Page 132 and 133:
Page 134 and 135:
Page 136 and 137:
Page 138 and 139:
Page 140 and 141:
Page 142 and 143:
Page 144 and 145:
Page 146 and 147:
Page 148 and 149:
Page 150 and 151:
Page 152 and 153:
Page 154 and 155:
Page 156 and 157:
Page 158 and 159:
Page 160 and 161:
Page 162 and 163:
Page 164 and 165:
Page 166 and 167:
Page 168 and 169:
Page 170 and 171:
Page 172 and 173:
Page 174 and 175:
Page 176 and 177:
Page 178 and 179:
Page 180 and 181:
Page 182 and 183:
Page 184 and 185:
Page 186 and 187:
Page 188 and 189:
Page 190 and 191:
Page 192 and 193:
Page 194 and 195:
Page 196 and 197:
Page 198 and 199:
Page 200 and 201:
Page 202 and 203:
Page 204 and 205:
Page 206 and 207:
Page 208 and 209:
Page 210 and 211:
NIST IR 7298, Glossary of Key Infor
show all

NISTIR 7298 Revision 1, Glossary of Key Information Security Terms

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?