SCA

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviations / Acronyms / Synonyms:

Security Control Assessor

CNSSI 4009-2015

Side-Channel Attack

NIST IR 8454

software composition analysis

NIST SP 800-204C

SRxCryptoAPI

NIST TN 2060

Supply Chain Assurance

NIST SP 1800-34C

Definitions:

  The individual, group, or organization responsible for conducting a security control assessment.
Sources:
NIST SP 800-137 under Security Control Assessor
NIST SP 800-30 Rev. 1 under Security Control Assessor
NIST SP 800-39 under Security Control Assessor

  An attack enabled by leakage of information from a physical cryptosystem. Characteristics that could be exploited in a side-channel attack include timing, power consumption, and electromagnetic and acoustic emissions.
Sources:
NIST SP 800-63-3 under Side-Channel Attack

  Confidence that the supply chain will produce and deliver elements, processes, and information that function as expected.
Sources:
NISTIR 7622 under Supply Chain Assurance from DoD Key Practices and Implementation Guide - Adapted

Glossary Comments

Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.

Comments about the glossary's presentation and functionality should be sent to secglossary@nist.gov.

See NISTIR 7298 Rev. 3 for additional details.