Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Glossary
A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

Security Assurance

Abbreviations / Acronyms / Synonyms:

Assurance

Definitions:

  Measure of confidence that the security features, practices, procedures, and architecture of an information system accurately mediates and enforces the security policy.
Sources:
NIST SP 800-39 under Assurance from CNSSI 4009

  The grounds for confidence that the set of intended security controls in an information system are effective in their application.
Sources:
NIST SP 800-137 under Assurance

  Grounds for confidence that the set of intended security controls in an information system are effective in their application.
Sources:
NIST SP 800-39 under Assurance

  Grounds for confidence that the other four security goals (integrity, availability, confidentiality, and accountability) have been adequately met by a specific implementation. “Adequately met” includes (1) functionality that performs correctly, (2) sufficient protection against unintentional errors (by users or software), and (3) sufficient resistance to intentional penetration or by-pass.
Sources:
NIST SP 800-12 Rev. 1 under Assurance

  Grounds for justified confidence that a [security or privacy] claim has been or will be achieved.
Sources:
NIST SP 800-53A Rev. 5 under Assurance from ISO/IEC 15026-1:2019 - Adapted

  The grounds for confidence that an entity meets its security objectives.
Sources:
NISTIR 7316 under Assurance