CISSP 缩写词表
目录
- CISSP 缩写词表
- SCAP - Security Content Automation Protocol
- BIA - Business Impact Analysis
- CC - Common Criteria 通用准则
- TOE - Target of Evaluation
- EAL - Evaluation Assurance Level
- PP - protection profiles
- ST - Security Target
- FRR - False Rejection Rate
- FAR - False Acceptance Rate
- CER - crossover error rate
- 企业移动设备相关
- COTS - Commercial-off-the-shelf
- AOT - Authorization to Operate
- SIEM - Security Information and Event Management
- SOAR - Security Orchestration, Automation and response
- PKI - Public Key Infrastructure
SCAP - Security Content Automation Protocol
漏洞评估标准
BIA - Business Impact Analysis
业务影响分析
CC - Common Criteria 通用准则
The Common Criteria (ISO/IEC 15408) is a subjective security function evaluation tool that uses protection profiles (PPs) and security targets (STs) and assigns an Evaluation Assurance Level (EAL).
定义了测试和确认系统安全能力的各种级别。
TOE - Target of Evaluation
CC 准则中的受评估对象
EAL - Evaluation Assurance Level
评估保证级别
PP - protection profiles
客户期望的 TOE 具备的安全要求
ST - Security Target
厂商声称的 TOE 将具备的安全特性
FRR - False Rejection Rate
错误拒绝率
FAR - False Acceptance Rate
错误接受率
CER - crossover error rate
交叉错误率,整体的生物识别质量
企业移动设备相关
BYOD - Bring Your Own Device
COPE - Corporate-Owned, Personally Enabled
CYOD - Choose Your Own Device
COMS - Company Owned Mobile Strategy
COBO - Company Owned Business Only
COTS - Commercial-off-the-shelf
商业现货
AOT - Authorization to Operate
操作授权。
授权官员的关键词:DAA(被指定的批准机构),AA(批准机构),SCA(安全控制评估员)
SIEM - Security Information and Event Management
安全信息和事件管理
SOAR - Security Orchestration, Automation and response
事件自动化安全响应
PKI - Public Key Infrastructure
公钥基础设施