Term:Threat

From FISMApedia
Revision as of 01:27, 27 October 2009 by DanPhilpott (talk) (1 revision)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

CNSSI 4009

Threat - Any circumstance or event with the potential to adversely impact an IS through unauthorized access, destruction, disclosure, modification of data, and/or denial of service.

DoDI 8551.01

Threat - Any circumstance or event with the potential to cause harm to an IT system in the form of destruction, disclosure, adverse modification of data, and/or denial of service ( reference (f)). E2.1.20.

DSS Glossary

Threat - The sum of the potential strengths, capabilities, and strategic objectives of any adversary that can limit or negate United States. Mission accomplishment or reduce force, system, or equipment effectiveness.

GAO-09-232G

Threat - Any circumstance or event with the potential to adversely impact entity operations (including mission, functions, image, or reputation), entity assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service.

NIST FIPS 200

Threat - Any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. Also, the potential for a threat-source to successfully exploit a particular information system vulnerability. [CNSS Instruction 4009 Adapted]

NIST IR 7298

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission, functions, image, or reputation), agency assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. SOURCE: SP 800-53; CNSSI-4009 Adapted

NIST IR 7298

Threat - Any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. Also, the potential for a threat-source to successfully exploit a particular information system vulnerability. SOURCE: FIPS 200; CNSSI-4009 Adapted

NIST IR 7328 Draft

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission, functions, image, or reputation), agency assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. [CNSS Inst. 4009, Adapted]

NIST SP 800-16

Threat - an activity, deliberate or unintentional, with the potential for causing harm to an automated information system or activity.

NIST SP 800-18r1

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission, functions, image, or reputation), agency assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. [CNSS Inst. 4009, Adapted]

NIST SP 800-26

Threat - Threat is an event or activity, deliberate or unintentional, with the potential for causing harm to an IT system or activity.

NIST SP 800-27rA

Threat - Any circumstance or event with the potential to harm an information system through unauthorized access, destruction, disclosure, modification of data, and/or denial of service. Threats arise from human actions and natural events.

NIST SP 800-28v2

Threat - A possible danger to a computer system, which may result in the interception, alteration, obstruction, or destruction of computational resources, or other disruption to the system.

NIST SP 800-30

Threat - The potential for a threat-source to exercise (accidentally trigger or intentionally exploit) a specific vulnerability.

NIST SP 800-32

Threat - Any circumstance or event with the potential to cause harm to an information system in the form of destruction, disclosure, adverse modification of data, and/or denial of service. (NS4009)

NIST SP 800-33

Threat - The potential for a "threat source" (defined below) to exploit (intentional) or trigger (accidental) a specific vulnerability.

NIST SP 800-37r1 Draft

Threat - Any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, or the Nation through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service.

NIST SP 800-37

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission, functions, image, or reputation), agency assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. [CNSS Inst. 4009, Adapted]

NIST SP 800-39 Draft 2

Threat - Any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, or the Nation through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service.

NIST SP 800-40

Threat - Any circumstance or event, deliberate or unintentional, with the potential for causing harm to a system.

NIST SP 800-47

Threat - The potential for a threat-source to exercise (accidentally trigger or intentionally exploit) a specific vulnerability.

NIST SP 800-53A

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission, functions, image, or reputation), agency assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. [CNSS Inst. 4009, Adapted]

NIST SP 800-53r1

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission, functions, image, or reputation), agency assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service.

NIST SP 800-53r2

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission, functions, image, or reputation), agency assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. [CNSS Inst. 4009, Adapted]

NIST SP 800-53r3

Threat - Any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, or the Nation through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. [CNSSI 4009, Adapted]

NIST SP 800-57P2

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission function, image, or reputation), agency assets or individuals through an information system via unauthorized access, destruction, disclosure, modification of data, and/or denial of service (SP800-53).

NIST SP 800-60r1V1

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission, functions, image, or reputation), agency assets, individuals, other organizations, or the Nation through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. [CNSS Inst. 4009, Adapted]

NIST SP 800-60r1V2

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission, functions, image, or reputation), agency assets, individuals, other organizations, or the Nation through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. [CNSS Inst. 4009, Adapted]

NIST SP 800-61r1

Threat - The potential source of an adverse event.

NIST SP 800-61

Threat - The potential source of an adverse event.

NIST SP 800-66

Threat - The potential for a threat source to exercise (accidentally trigger or intentionally exploit) a specific vulnerability. [NIST SP 800-6630]

NIST SP 800-82 Final Draft

Threat - Any circumstance or event with the potential to adversely impact agency operations (including mission, functions, image, or reputation), agency assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. [NIST SP 800-53 Revision 1, Recommended Security Controls for Federal Information Systems, July 2006.]

NSTISSI 1000

Threat - Any circumstance or event with the potential to harm an IS through unauthorized access, destruction, disclosure, modification of data, and/or denial of service.

Retrieved from "http://fismapedia.org/index.php?title=Term:Threat&oldid=43693"