Cybersecurity Terminology

ResourcesTerms & Definitions

tabletop exercise
- A discussion-based exercise where personnel meet in a classroom setting or breakout groups and are presented with a scenario to validate the content of plans, procedures, policies, cooperative agreements or other information for managing an incident.
tailored trustworthy space
- A cyberspace environment that provides a user with confidence in its security, using automated mechanisms to ascertain security conditions and adjust the level of security based on the user's context and in the face of an evolving range of threats.
targets
- In the NICE Framework, cybersecurity work where a person: Applies current knowledge of one or more regions, countries, non-state entities, and/or technologies.
technology research and development
- In the NICE Framework, cybersecurity work where a person: Conducts technology assessment and integration processes; provides and supports a prototype capability and/or evaluates its utility.
test and evaluation
- In the NICE Framework, cybersecurity work where a person: Develops and conducts tests of systems to evaluate compliance with specifications and requirements by applying principles and methods for cost-effective planning, evaluating, verifying, and validating of technical, functional, and performance characteristics (including interoperability) of systems or elements of systems incorporating information technology.
threat
- A circumstance or event that has or indicates the potential to exploit vulnerabilities and to adversely impact (create adverse consequences for) organizational operations, organizational assets (including information and information systems), individuals, other organizations, or society.
threat agent
- An individual, group, organization, or government that conducts or has the intent to conduct detrimental activities.
threat analysis
- The detailed evaluation of the characteristics of individual threats.
threat assessment
- The product or process of identifying or evaluating entities, actions, or occurrences, whether natural or man-made, that have or indicate the potential to harm life, information, operations, and/or property.
threatscape
- the spectrum of possible cybersecurity threats
Threatware
- a general term encompassing all types of malicious software on computers and electronic devices
ticket
- In access control, data that authenticates the identity of a client or a service and, together with a temporary encryption key (a session key), forms a credential.
Timestomping
- a technique used in cybersecurity and digital forensics, where attackers modify the timestamps of files and directories on a computer system to hide their actions or impede investigations
traffic light protocol
- A set of designations employing four colors (RED, AMBER, GREEN, and WHITE) used to ensure that sensitive information is shared with the correct audience.
Trojan
- a type of malware that conceals its true content to fool a user into thinking it's a harmless file
trojan horse
- A computer program that appears to have a useful function, but also has a hidden and potentially malicious function that evades security mechanisms, sometimes by exploiting legitimate authorizations of a system entity that invokes the program.
Trojanize
- To convert into a Trojan
Typosquatting
- a form of cybersquatting (sitting on sites under someone else's brand or copyright) that targets Internet users who incorrectly type a website address into their web browser

Interested in Cybersecurity?


    EDR SecurityMDR SecurityRansomeware ProtectionDNS/Web FilteringPenetration TestingSecurity AwarenessVulnerability AssessmentsPassword ManagementDarkweb MonitoringMultifactor (MFA)Other

    microsoft-logo
    ibm-logo
    dell-logo
    hp-logo
    sentinel-logo
    vmware-logo
    Skip to content