Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

security domain

Abbreviation(s) and Synonym(s): Definition(s):

  A domain within which behaviors, interactions, and outcomes occur and that is defined by a governing security policy. Note: A security domain is defined by rules for users, processes, systems, and services that apply to activity within the domain and activity with similar entities in other domains.
Source(s):
NIST SP 800-160 [Superseded]

  See security domain.
Source(s):
NIST SP 800-27 Rev. A under domain [Withdrawn]
NIST SP 800-33 under domain

  A domain that implements a security policy and is administered by a single authority.
Source(s):
CNSSI 4009-2015 (CNSSP No. 24 - CNSSI No. 1253F Attachment 3 )
NIST SP 800-137 under Security Domain (CNSSI 4009)
NIST SP 800-37 Rev. 1 under Security Domain (CNSSI 4009)
NIST SP 800-53 Rev. 4 under Security Domain (CNSSI 4009)

  A set of subjects, their information objects, and a common security policy.
Source(s):
NIST SP 800-27 Rev. A [Withdrawn]
NIST SP 800-33

  A system or subsystem that is under the authority of a single trusted authority. Security domains may be organized (e.g., hierarchically) to form larger domains.
Source(s):
NIST SP 800-57 Part 1 Rev. 3 under Security domain [Superseded]
NIST SP 800-57 Part 1 Rev. 4 under Security domain

  An environment or context that includes a set of system resources and a set of system entities that have the right to access the resources as defined by a common security policy, security model, or security architecture. See security domain.
Source(s):
CNSSI 4009-2015 under domain (NIST SP 800-53 Rev. 4)

  A domain within which behaviors, interactions, and outcomes occur and that is defined by a governing security policy.  Note: A security domain is defined by rules for users, processes, systems, and services that apply to activity within the domain and activity with similar entities in other domains.
Source(s):
NIST SP 800-160 [Superseded]