U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.


Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

ICT Supply Chain Compromise


  An ICT supply chain compromise is an occurrence within the ICT supply chain whereby an adversary jeopardizes the confidentiality, integrity, or availability of a system or the information the system processes, stores, or transmits. An ICT supply chain compromise can occur anywhere within the system development life cycle of the product or service. NOTE:  System includes physical or electronic system or network of organizations, people, technology, activities, information, and resources. It also includes system or network components. In the context of ICT supply chain, system encompasses both the system that traverses the supply chain and the organization’s ICT supply chain infrastructure. NOTE: ICT supply chain is a system transforming natural resources, raw materials, and components into a finished ICT product or service from supplier to the end customer. NOTE: Development life cycle in general includes design, manufacturing, production, distribution, acquisition, installation, operations, maintenance, and decommissioning.
NIST SP 800-161