Architecture: The set of related physical and logical views (representations) of a system
or a solution. Architecture conveys information about the systems/solution elements,
their interconnections, relationships, and behavior at diverse levels of abstractions and
with different scopes.
Availability: Providing timely assured access to and use of information.
Confidentiality - Answer Protecting authorized restrictions on information access and
disclosure, including means for protecting personal privacy and proprietary
information.
Integrity - Answer Guarding against improper information modification or destruction,
and includes ensuring information non-repudiation and authenticity.
Process - Answer Set of interrelated or interacting activities which transforms inputs
into outputs.
Risk - Answer Effect of uncertainty on objectives.
Security Policy Answer A set of rules that governs all aspects of security-relevant
system and system element behavior.
System Context Answer The specific system elements, boundaries, interconnections,
interactions and environment of operation that define a system.
Systems engineering - Answer Interdisciplinary approach authorizing the total technical
and managerial effort required to transform a set of stakeholder needs, expectations,
and constraints into a solution and to support hat solution throughout its life.
, Systems Security Engineering - Applies scientific, mathematical, engineering, and
measurement principles, concepts, and methods to coordinate, orchestrate, and direct
the activities of various security engineering specialties and other contributing
engineering specialties to provide a fully integrated, system-level perspective of system
security.
Trust Relationship - A mutually dependent relationship between two or more system
elements based upon varying degrees of standards for interaction, action, and
consequence in respect to asset protection.
Trustworthiness- A Deserving of trust to satisfy whatever level of critical need may arise
for some specified component, subsystem, system, network, application, mission,
enterprise or other entity.
Trustworthy - Answer The degree to which confidence exists in a component's security
behavior under all conditions consistent with its stated function.
ICD 503 - Answer Intelligence community Information Technology Systems Security Risk
Management, Certification and Accreditation.
NIST 800-37 - Answer Defines the Federal Risk Management Framework. The
publication is entitled Guide for Applying Risk Management Framework to Federaly
Information Systems. Contains Six steps.
NIST 800-39 - Answer The central risk management publication in the RMF. Contains
four components of risk management, Frame Risk, Assess Risk, Respond to Risk and
Monitor Risk.
NIST 800-39 - Answer Extrapolates the four components with three tiers, Tier-1 -
Organization, Tier 2 - Mission/Business Processes, Tier 3 - Information System.
NIST 800-30 - Answer Guide for conducting risk assessments, entirely focused on the
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Easton. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $11.99. You're not tied to anything after your purchase.