Individual or (system) process authorized to access an information system.
Sources:
FIPS 200 under USER from CNSSI 4009
NIST SP 800-18 Rev. 1 under User from CNSSI 4009

  An individual (person), organization, device or process. Used interchangeably with “party.”
Sources:
FIPS 186-5 under Entity

  2. An individual who is required to use COMSEC material in the performance of his/her official duties and who is responsible for safeguarding that COMSEC material. See hand receipt holder and local element.
Sources:
CNSSI 4009-2015 from CNSSI 4005, NSA/CSS Manual Number 3-16 (COMSEC)

  Individual, or (system) process acting on behalf of an individual, authorized to access a system.
Sources:
NIST SP 800-172A from CNSSI 4009-2015 - Adapted
NIST SP 800-53 Rev. 5
NIST SP 800-53A Rev. 5

  Individual or group that interacts with a system or benefits from a system during its utilization.
Sources:
NIST SP 800-160v1r1 from ISO/IEC 25010:2011

  1. Individual, or (system) process acting on behalf of an individual, authorized to access an information system.
Sources:
CNSSI 4009-2015

  An individual (person), organization, device or process. Used interchangeably with “party”.
Sources:
NIST SP 800-102 under Entity
NIST SP 800-89 under Entity

  See Information System User
Sources:
NIST SP 800-128 under User

  An individual (person), organization, device, or process.
Sources:
NIST SP 800-175B Rev. 1 under Entity

  An FCKMS role that utilizes the key-management services offered by an FCKMS service provider.
Sources:
NIST SP 800-152 under User

  An individual (person), organization, device, or process. “Party” is a synonym.
Sources:
NIST SP 800-56B Rev. 2 under Entity

  An individual (person), organization, device or process.
Sources:
NIST SP 800-57 Part 1 Rev. 5 under Entity

  A human (person/individual/user), organization, device or process.
Sources:
NIST SP 800-57 Part 2 Rev.1 under Entity

  A human entity.
Sources:
NIST SP 800-57 Part 2 Rev.1 under User

  See system user.
Sources:
NIST SP 800-128

  Individual, or (system) process acting on behalf of an individual, authorized to access an information system. [Note: With respect to SecCM, an information system user is an individual who uses the information system functions, initiates change requests, and assists with functional testing.]
Sources:
NIST SP 800-128 under Information System User from CNSSI 4009

  An individual (person). Also see Entity.
Sources:
NIST SP 800-57 Part 1 Rev. 5 under User

  A person, device, service, network, domain, manufacturer, or other party who might interact with an IoT device.
Sources:
NIST SP 800-213 under Entity
NISTIR 8259A under Entity
NISTIR 8259B under Entity

  An individual (person), organization, device, or process; used interchangeably with “party.”
Sources:
NIST SP 800-133 Rev. 2 under Entity

  See organizational user and non-organizational user.
Sources:
NIST SP 800-53 Rev. 5
NIST SP 800-53A Rev. 5

  A person or entity with authorized access.
Sources:
NIST SP 800-66r2 from HIPAA Security Rule - §164.304

  Person who interacts with the product.
Sources:
NISTIR 8040 under User from ISO 9241-11:1998

  A person, organization, or other entity which requests access to and uses the resources of a computer system or network.
Sources:
NISTIR 4734 under User

  The entity, human or machine, that is identified by the userID, authenticated prior to system access, the subject of all access control decisions, and held accountable via the audit reporting system.
Sources:
NISTIR 5153 under User

  the set of people, both trusted (e.g., administrators) and untrusted, who use the system.
Sources:
NISTIR 6192 under User

  A consumer of the services offered by an RP.
Sources:
NISTIR 8149 under User

  A person, team, or organization that accesses or otherwise uses an OLIR.
Sources:
NIST IR 8278Ar1 under User
NIST IR 8278r1 under User