Glossary

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Glossary terms and definitions last updated: March 28, 2023

This Glossary only consists of terms and definitions extracted verbatim from NIST's cybersecurity- and privacy-related publications--Federal Information Processing Standards (FIPS), NIST Special Publications (SPs), and NIST Internal/Interagency Reports (IRs)--as well as from Committee on National Security Systems (CNSS) Instruction CNSSI-4009. Only terms that are defined in final publications—not drafts—are included here.

Multiple definitions. Some terms have multiple definitions. Terminology changes over time, and may differ based on the topic being addressed. Always refer to the source publication for the authoritative term and definition, and to see that information in its proper context.
Inclusive language. We recognize that some NIST publications contain potentially biased terminology. As we revise publications, we are reviewing and editing that language based on NIST’s inclusive language guidance. New publications in development will also follow that guidance.

The Glossary may be expanded to include relevant terms in external or supplemental sources, such as applicable laws and regulations. Recommendations for publications to be considered by NIST can be sent to secglossary@nist.gov. HOWEVER, terms without a source publication will not be independently added to this Glossary.

See NISTIR 7298 Rev. 3 for additional details about this Glossary.
Download the Glossary in JSON format (updated daily 6:15 pm ET; see metadata).

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Showing 516 matching records.

3DES

8DPSK

D/A

D/RTBH

D/S

D2D

DAA

DAC

DACL

DACUM

DAD

DAG

Daily Use Account

damage

damage-limiting operations

DAML

DANE

DAO

DAPA

DAR

DARPA

DARPA Agent Markup Language

DAS

DASH7

Dashboard

DAST

data

Data Access

Data Access Object

data action

Data Actions

data aggregation

Data and Information Reference Model

data asset

Data Block (Block)

Data Center Group

Data Center Security: Server Advanced

Data Collector

Data Diode

Data Domain Virtual Edition

data element

Data Encryption Algorithm

Data Encryption Standard

Data Execution Prevention

data flow control

data governance

Data Group

Data Historian

Data in Transit

data integrity

Data integrity authentication

Data Link Layer

data linking

data loss

data loss prevention

data mining

Data Object

data origin authentication

Data Processing

Data Processing Ecosystem

data provenance

Data Radio Bearer

Data Security Standard

Data Security Standard Payment Card Industry

Data Segment (Segment)

data spillage

data subjects

data tag

Data Transfer Device

data transfer solution

data use agreement

Data-at-Rest

Database

Database Administrator

Database Management System

Data-encryption key

Datagram Congestion Control Protocol

Datagram Transport Layer Security

Dataset

Date of Birth

DATO

DBA

DBL

dBm

DBMS

DC Servo Drive

DC3

DCCP

DCE

DCG

DCID

DCISE

DCMS

DCO

DCOM

DCO-RA

DCRTM

DCS

DCS:SA

DD VE

DDIL

DDMS

DDNS

DDoS

DE.AE

DEA

Deactivated state

Dead Peer Detection

Decentralized Autonomic Data

Decentralized Autonomous Organization

Decentralized Exchange

decentralized finance

Decentralized Identifier

Decentralized network

decertification

Decibels referenced to one milliwatt

decipher

Decision or branch coverage

decision tree

decode

decrypt

Decryption

Decryption-Verification

Dedicated Proxy Server

Deep Packet Inspection

default classification

Defect

Defect Check

Defect Type

Defense Courier Service

Defense Cyber Crime Center

Defense Discovery Metadata Standard (DDMS)

Defense Federal Acquisition Regulations Supplement

Defense Industrial Base

Defense Industrial Base Cybersecurity Sharing

Defense Information System Network

Defense Information Systems Agency

Defense Intelligence Agency

Defense Science Board

defense-in-breadth

defense-in-depth

defensive cyberspace operation response action (DCO-RA)

defensive cyberspace operations (DCO)

Defensive Design

DeFi

degauss

Degradation

Degraded Cybersecurity State

de-identification

de-identified information

delay (path delay)

Delegation Signer

deleted file

Delivery Status Notification

delivery-only client (DOC)

Dell Remote Access Controller

Dell Trusted Device

demilitarize

demilitarized zone (DMZ)

DeNB

denial of service (DoS)

Denied, Disrupted, Intermittent, and Limited Impact

Deny by Default

DEP

Department of Commerce

Department of Defense

Department of Defense Directive

Department of Defense information network operations

Department of Defense information networks (DODIN)

Department of Defense Instruction

Department of Defense Manual

Department of Energy

Department of Health and Human Services

Department of Homeland Security

Department of Transportation

Department/Agency

deprecated

Deprecated Identifier Name

depth

DER

De-registration (of a key)

derived credential

Derived Personal Identity Verification (PIV)

Derived Personal Identity Verification Credential

Derived PIV Application

Derived PIV Credential

Derived PIV Credential Management System

Derived PIV Credentials

Derived Relationship Mapping

derived requirement

Derived Test Requirement

Derived PIV Credential Issuer

DES

descriptive label

design

design characteristics

design margin

design principle

Designated Accrediting Authority

designated approval authority (DAA)

designated cipher function

designing for cyber resiliency and survivability

Desired State

Desired State Specification

Destination Address

Destination Network Address Translation

Destination-based Remotely Triggered Black-Holing

destroy

Destroyed state

Destruction

DET

detailed assessment

Detect

detect (CSF function)

Detect, Anomalies and Events

Deterministic Algorithm

Deterministic Random Bit Generator

DETL

developer

Developers Alliance for Standards Harmonization

Developing the Curriculum

Development Kit

development life cycle (SDLC)

Development Operations (DevOps)

Development, Security, and Operations

Device

Device Cybersecurity Capability

Device Cybersecurity Capability Core Baseline

device distribution profile

Device Identifier

Device Identifier Composition Engine

Device Identity

device registration manager

Device Role

Device-To-Device

DevID

Devkit

DevOps

DevSecOps

DEX

DFA

DFARS

DFW

DHCP

DHE

DHHS

DHK

DHkey

DHS

DIA

Diabetes Technology Social

DIACAP

Diagnostics

DIB

DIB CS

DICE

DICOM

Dictionary

Dictionary Contributor

Dictionary Creator

Dictionary Maintainer

Dictionary Management Documents

Dictionary Search

Dictionary User

DID

Differential Analysis aided Power Attack

Differential Fault Attack

Differential Power Analysis

Differential Quaternary Phase Shift Keying

Differentiated Services Code Point

Diffie Hellman (algorithm)

Diffie-Hellman

Diffie-Hellman Key

Diffie-Hellman key exchange

Digest

Digital

Digital asset

Digital Authentication

Digital Certificate

Digital Evidence

Digital Fingerprint

digital forensics

Digital Imaging and Communications in Medicine

digital media

Digital Policy

Digital Policy Management

Digital Rights Management

Digital Security by Design

Digital Signal Processor

digital signature

Digital Signature Algorithm

Digital Signature Standard

Digital Subscriber Line

Digital Versatile Disc-Recordable

Digital Video Disc

Digital Video Recorder

Digitization

DIMA

DIMM

direct BLACK wireline

Direct Digital Manufacturing

direct identifying data

Direct Memory Access

Direct Platform Data

Direct Random String

Directed Acyclic Graph

Directly Attached Storage

directly identifying variables

Director Central Intelligence Directive

Director of National Intelligence