|
The ISO 17799 Glossary of Information Security Terms and Phrases
[
B
|
C
|
D
|
E
|
F
|
G
|
H
|
I
|
J
|
K
|
L
|
M
|
N
|
O
|
P
|
Q
|
R
|
S
|
T
|
U
|
V
|
W
|
X
|
Y
|
Z
]
A
ACCESS CONTROL (Chapter 9)
Access control refers to the rules and deployment mechanisms which control access to information systems, and physical access to premises. The entire subject of Information Security is based upon Access Control, without which Information Security cannot, by definition, exist.
ADMISSIBLE EVIDENCE
Admissible Evidence is 'evidence' that is accepted as legitimate in a court of law. From an Information Security perspective, the types of 'evidence' will often involve the production of a system's log files.
ANTI-VIRUS SOFTWARE (Chapter 8)
Software designed to detect, and potentially eliminate, viruses, as well as repairing or quarantining files which have already been infected by virus activity
AUDIT LOG (Chapter 9)
Computer files containing details of amendments to records, which may be also used in the event of system recovery being required. Enabling this feature usually incurs some system overhead, but it does permit subsequent review of all system activity.
AUDIT TRAIL (Chapter 9)
A record or series of records, which allows the processing carried out by a computer or clerical system to be accurately identified. Often enables verification of the authenticity of amendments, including details of the users who created and authorised them.
AUDITOR (Chapter 12)
The person employed to verify, usually independently, the quality and integrity of the work that has been undertaken within a particular area.
AUTHENTICATION (Chapter 9)
Authentication refers to the verification of the authenticity of either a person or of data. Authentication techniques usually form the basis for all forms of access control to systems or data.
AVAILIBILITY (Chapter 11)
Ensuring that information systems and the necessary data are available for use when they are needed.
|
