D
Official with the authority to formally assume responsibility for operating a system at an acceptable level of risk. This term is synonymous with authorizing official, designated accrediting authority, and delegated accrediting authority. [US National Information Assurance (IA) Glossary, NIST 800 series]
Controls that regulate how users delegate access permissions or make files/information accessible to other users. The basis of this kind of security is that an individual user, or program operating on the user’s behalf is allowed to specify explicitly the types of access other users (or programs executing on their behalf) may have to information under the user’s control. [NIST 800 series, US National Information Assurance (IA) Glossary, FIPS Pubs]
Converts digital data to analog data. [Sedona Conference]
Another term for compact disk. [Sedona Conference]
[AIIM]
Any storage device, such as a hard disk, that provides the capability to access and/or manipulate data as required without having to access all preceding records to reach it. In contrast to direct or random access, sequential access devices, such as tape drives, require all preceding records to be read to reach the required data. [FISCAM]
A magnetic tape generally used to record audio but can hold up to 40 gigabytes (or 60 CDs) of data if used for data storage. Has the disadvantage of being a serial access device. Often used for backup. [Sedona Conference]
[FISCAM, PCI-DSS]
A merchant's legal business name as differentiated from the names of a company's principals or other entity that owns or manages the business. A DBA that is significantly different from the principals' or other entity's name can result in an unrecognizable merchant name, or descriptor, on a cardholder's monthly credit card statement, which can in turn lead to potential copy requests and chargebacks. Compliance validation levels are based on the transaction volume of a DBA or chain of stores (not of the corporation that owns several chains). [PCI-DSS, VISA Glossary of Terms]
Tasks related to creating, maintaining, organizing, and retrieving information from a database. [Centers for Medicare & Medicaid Services (CMS)]
A software product that aids in controlling and using the data needed by application programs. Database Management Systems are a set of programs that control the organization, storage, and retrieval of data. DBMSs organize data in a database, manage all requests for database actions (such as queries or updates from users), and permit centralized control of security and data integrity. The database management system also controls the security and data integrity of the database. [FISCAM, Centers for Medicare & Medicaid Services (CMS), AIIM, Sedona Conference]
An optional service, which is facilitated by a merchant at the point of sale with either a third party agent or through its merchant bank. The DCC allows a cardholder to see the transaction amount in his or her billing currency and the merchant's pricing currency. This way, the cardholder knows exactly how much the goods or services cost, and is able to make value judgments quickly and easily. [VISA Glossary of Terms]
[GAO/PCIE Financial Audit Manual]
DCOs are components of a particular control objective. [CobiT]
A denial-of-service (DoS) attack from multiple sources. See also DoS attack. [Network Frontiers, ISACA, NIST 800 Series]
The cryptographic engine that is used by the Triple Data Encryption Algorithm (TDEA). [NIST 800 series]
A NIST Federal Information Processing Standard and a commonly used secret-key cryptographic algorithm for encrypting and decrypting data. DES has been used commonly for data encryption in the forms of software and hardware implementation. The conversion of data into an unintelligible form so that it is readable except by authorized users is called data encryption. The DES is an approved FIPS cryptographic algorithm which is as required by FIPS 140-1. The National Institute of Standards and Technology Data Encryption Standard was adopted by the U.S. Government as Federal Information Processing Standard (FIPS) Publication 46-1, which allows only hardware implementations of the data encryption algorithm. See also private key cryptosystems. [NIST 800 series, Centers for Medicare & Medicaid Services (CMS), US National Information Assurance (IA) Glossary]
A network protocol that automatically assigns IP addresses to clients logging onto a TCP/IP network. [Network Frontiers, NIST 800 Series, NIST 800 Series]
See Definitive Hardware Store, Department of Homeland Security. [de facto]
An IBM standard for transmission and storage of voice, text or video over networks. [Sedona Conference]
DIRKS: A Strategic Approach to Managing Business Information (also known as the DIRKS Manual) provides government agencies with practical guidance on managing business information and records. It complies with the eight-step methodology recommended in the Australian Standard for Records Management, AS ISO 15489 – 2002. The DIRKS Manual is primarily for use by Australian Government agency information and records management project teams and consultants. [de facto]
The Defense Information Systems Agency is a combat support agency responsible for planning, engineering, acquiring, fielding, and supporting global net-centric solutions to serve the needs of the President, Vice President, the Secretary of Defense, and other DoD Components, under all conditions of peace and war. The designated core missions of DISA are communications, joint command and control, defensive information operations, combat support computing, and joint interoperability support. See also http://www.disa.mil for more information. [de facto]
A type of backup tape which can hold up to 80 GB depending on the data file format. [Sedona Conference]
[AIIM]
Commonly it is the network segment between the Internet and a private network. It allows access to services from the Internet and the internal private network while denying access from the Internet directly to the private network. Firewall protection is usually implemented for the DMZ network, and an additional firewall layer protects the internal private network. A typical DMZ contains one or more servers intended for public access (web server, e-mail server, etc.), and prevents direct connections to the internal network from public untrusted networks. [Workgroup for Electronic Data Interchange, ISACA, Centers for Medicare & Medicaid Services (CMS), US National Information Assurance (IA) Glossary, NIST 800 Series]
A hierarchical database that is distributed across the Internet that allows names to be resolved into IP addresses (and vice versa) to locate services such as web and e-mail servers. [ISACA]
A denial-of-service assault against a computing resource. An action (or series of actions) that prevents any part of a system from functioning in accordance with its intended purpose. This includes any action that causes unauthorized destruction, modification, delay, or interruption of service. See also interdiction. [Network Frontiers, ISACA, Centers for Medicare & Medicaid Services (CMS), US National Information Assurance (IA) Glossary, NIST 800 Series]
[AIIM]
An analysis of the variations of the electrical power consumption of a cryptographic module, using advanced statistical methods and/or other techniques, for the purpose of extracting information correlated to cryptographic keys used in a cryptographic algorithm. [NIST 800 series, FIPS Pubs]
The measurement of the resolution of display in printing systems. A typical CRT screen provides 96 dpi, which provides 9,216 dots per square inch (96x96). When a paper document is scanned, the resolution, or level of detail, at which the scanning was performed is expressed in DPI. Typically, documents are scanned at 200 or 300 DPI. [Sedona Conference]
A memory technology which is periodically “refreshed” or updated – as opposed to “static” RAM chips which do not require refreshing. The term is often used to refer to the memory chips themselves. [Sedona Conference]
[AIIM]
Establishing (and implementing as needed) procedures to restore any loss of data and application processing capabilities. A written set of procedures setting out the measures to be taken to minimize the risks and effects of disasters such as fire, flood or earthquake etc, and to recover, save and secure the vital records should such a disaster occur. A written plan for processing critical applications in the event of a major hardware or software failure or destruction of facilities. See also continuity plan. [HIPAA, DIRKS, FISCAM, Centers for Medicare & Medicaid Services (CMS), US National Information Assurance (IA) Glossary, NIST 800 Series]
One or more locations in which the definitive and approved versions of all software configuration items are securely stored. The DSL may also contain associated CIs such as licenses and documentation. The DSL is a single logical storage area even if there are multiple locations. All software in the DSL is under the control of change and release management and is recorded in the CMDB. Only software from the DSL is acceptable for use in a release. [ITIL]
A special purpose computer (or technique) which digitally processes signals and electrical/analog waveforms. [Sedona Conference]
An information system or analytic model designed to help managers and professionals be more effective in their decision-making. [FISCAM]
The security standard utilized by the Payment Card Industry. [PCI-DSS]
Fill device designed to securely store, transport, and transfer electronically both COMSEC and TRANSEC key, designed to be backward compatible with the previous generation of COMSEC common fill devices, and programmable to support modern mission systems. [US National Information Assurance (IA) Glossary]
[AIIM]
[AIIM]
[ISACA]
PC applications used to prepare direct print output or output suitable for printing presses. [Sedona Conference]
[GAO/PCIE Financial Audit Manual]
See Digital Video disk. [AIIM, Sedona Conference]
A plastic disk, like a CD, on which data can be written and read. DVDs are faster, can hold more information, and can support more data formats than CDs. [Sedona Conference]
Site and content © Copyright 2003-2009 Network Frontiers, LLC. All rights reserved.