Keyword Index and Glossary of Core Ideas: Difference between revisions

Keyword Index and Glossary of Core Ideas

Air-Gapped Network

Air gapping is a security measure that isolates a secure network from unsecure networks physically, electrically and electromagnetically.

See also: Sneakernet

Jump to top of Glossary

Antivirus

Software which attempts to identify and delete or isolate malware. Antivirus software may use both a database containing signatures of known threats and heuristics to identify malware. Usually run as a background service to scan files and email copied to the protected system.

References:

• Anderson
• Computing Research Association
• HP TippingPoint DVLabs
• Johnson, E.
• McAfee
• Schneier
• Symantec
• Trend Micro

Jump to top of Glossary

Best Practices

The processes, practices, and systems identified in public and private organizations that performed exceptionally well and are widely recognized as improving an organization's performance and efficiency in specific areas. Successfully identifying and applying best practices can reduce business expenses and improve organizational efficiency. GAO Glossary

• National Infrastructure Advisory Council

Black Hat

A black hat is a computer hacker who works to harm others (e.g., steal identities, spread computer viruses, install bot software).

See also: White Hat

References:

• Anderson, [2]

Jump to top of Glossary

Blacklist

A list of computers, IP addresses, user names or other identifiers to block from access to a computing resource.

See also: Whitelist

References:

• Moore and Clayton
• Moore et. al.
• Schneier

Jump to top of Glossary

Botnet

A portmanteau of "robot" and "network." Refers to networks of sometimes millions of infected machines that are remotely controlled by malicious actors. A single infected computer may be referred to as a zombie computer. The owners of the computer remotely controlled is often unaware of the infection. The owners of a botnet may use the combined network processing power and bandwidth to send SPAM, install malware and mount DDoS attacks or may rent out the botnet to other malicious actors.

References:

• Anderson, [2]
• Anderson et. al.
• Bauer and van Eeten
• Bohme and Kataria
• Bohme and Schwartz
• Cetron and Davies
• Clarke
• Computing Research Association
• Franklin et. al.
• Gandal
• HP TippingPoint DVLabs
• Johnson, E.
• Korns
• Kramer et. al
• McAfee
• National Infrastructure Advisory Council
• National Research Council
• Nye
• Shackelford
• Schneier
• Sklerov
• Symantec
• Thomas and Martin
• Trend Micro

Jump to top of Glossary

Casus Belli

The justification for going to war. From the Latin "casus" meaning "incident" or "event" and "belli" meaning "of war."

References:

• Bellovin
• Brown
• Cornish
• Dunlap
• Kramer et. al
• Schmitt
• Sklerov
• Todd

Jump to top of Glossary

Civilian Participation

The involvement of non-military persons in warfare. While civilians have often provided support to the military in kinetic wars, in cyber warfare civilians are able to remotely participate in direct attacks against opponents. This raises complicated questions of law when the combatants are not uniformed military personnel.

References:

• Barkham
• Brown
• Burstein
• Cornish et. al
• DHS, [2]
• DoD
• Dörmann
• Dunlap
• Hollis
• Schmitt, 2
• Sklerov
• Todd
• Watts

Jump to top of Glossary

Combatant Status

The legal status of combatants in warfare. Existing law distinguishes between uniformed military and civilian status.

References:

• Arora et. al.
• Barkham
• Brown
• Schmitt, 2
• DoD Office of General Counsel
• Hollis
• Todd
• Watts

Jump to top of Glossary

Communications Privacy Law

Laws which regulate access to electronic communications. In the United States, the Electronic Communications Privacy Act (ECPA) protects electronic communications while in transit and prohibits the unlawful access and disclosure of communication contents.

References:

• Burstein
• Johnson, V.
• Nojeim
• Nye
• Swire, [2]

Jump to top of Glossary

Computer Emergency Response Team

A group of experts brought together to deal with computer security issues. The Computer Emergency Response Team (CERT) mandate is to develop and promote best management practices and technology applications to “resist attacks on networked systems, to limit damage, and to ensure continuity of critical services.” (Software Engineering Institute 2008). CERT may be formed by governments to handle security at the national level or by academic institutions or individual corporations.

References:

• Arora et. al.
• Center for Strategic and International Studies
• Madnick et. al.
• Telang and Wattal

Jump to top of Glossary

Computer Network Attack

Includes actions taken via computer networks to disrupt, deny, degrade, or destroy the information within computers and computer networks and/or the computers/networks themselves. Joint Doctrine for Information Operations JP 3-13 at I-9 (1998)

References:

• Anderson
• Anderson and Moore
• Clarke
• DCSINT
• DHS, [2]
• DoD, [2]
• DoD Office of General Counsel
• Dörmann
• Grady and Parisi
• Cornish et. al.
• GAO
• Gandal
• Korns
• Kramer et. al
• McAfee
• National Cyber Defense Initiative
• National Infrastructure Advisory Council
• National Research Council
• National Science & Tech. Council
• PCCIP
• Rotenberg et. al
• Schmitt, [2], [3]
• Schneier
• Verizon
• Watts
• White House

Jump to top of Glossary

COTS Software

Commercial Off The Shelf Software. Software that is prepackaged and sold as a commodity rather than custom written for a specific user/organization or purpose. Examples include operating systems, database management programs, email servers, application servers and office product suites. DoD at 18.

References:

• DHS
• DoD
• Kramer et. al
• National Research Council
• PITAC
• Verizon

Jump to top of Glossary

Credit Card Fraud

Theft of goods or services using false or stolen credit card information.

See Also: Shoulder Surfing

References:

• Anderson
• Epstein and Brown
• Franklin et. al.
• Lenard and Rubin, [2]
• Moore and Clayton, [2], [3]
• Moore et. al.
• Romanosky et. al.
• Schwartz and Janger
• Thomas and Martin
• U.S. Secret Service
• Schneier
• Swire

Jump to top of Glossary

Crimeware

Software tools designed to aid criminals in perpetrating online crime. Refers only to programs not generally considered desirable or usable for ordinary tasks. Thus, while a criminal may use Internet Explorer in the commission of a cybercrime, the Internet Explorer application itself would not be considered crimeware.

References:

• Computer Economics
• Bauer and van Eeten, [2]
• Epstein and Brown
• Franklin et. al
• Gandal
• Kobayashi
• Symantec
• van Eeten and Bauer

Jump to top of Glossary

Cyber Crime

In its broadest definition, cybercrime includes all crime perpetrated with or involving a computer. Symantec defines it as any crime that is committed using a computer or network, or hardware device. The computer or device may be the agent of the crime, the facilitator of the crime, or the target of the crime. The crime may take place on the computer alone or in addition to other locations. Symantec

References:

• Anderson
• Anderson et. al.
• Bohme
• Computing Research Association
• DHS, [2]
• Epstein and Brown
• FSSCC
• Grady and Parisi
• Hollis
• HP TippingPoint DVLabs
• Johnson, E.
• Korns
• Kramer et. al
• McAfee
• Moore and Clayton
• Moore et. al.
• National Infrastructure Advisory Council
• Schneier, [2]
• Sklerov
• Symantec
• Trend Micro
• U.S. Secret Service

Jump to top of Glossary

Cyber Security as an Externality

Economists define externalities as instances where an individual or firm’s actions have economic consequences for others for which there is no compensation. One important distinction is between positive and negative externalities. Instances of the latter are most commonly discussed, such as the environmental pollution caused by a plant, which may have impacts on the value of neighboring homes. Important examples of positive externalities are so common in communications networks that there is a class of "network externalities. For instance, the simple act of installing telephone service to one additional customer creates positive externalities on everyone on the telephone network because they can now each reach one additional person. Several attributes of computer security suggest that it is an externality. Most importantly, the lack of security on one machine can cause adverse effects on another. The most obvious example of this is from electronic commerce, where credit card numbers stolen from machines lacking security are used to commit fraud at other sites.

References:

• Anderson
• Anderson and Moore
• Bohme
• Camp and Wolfram, 2
• DHS
• Gandal
• Grady and Parisi
• Johnson, E.
• Moore and Clayton
• National Research Council
• Powell
• Schneier
• van Eeten and Bauer
• Varian, 2

Jump to top of Glossary

Cyber Security as a Public Good

In economics, a public good is a good that is non-rivalrous and non-excludable. Non-rivalry means that consumption of the good by one individual does not reduce availability of the good for consumption by others; and non-excludability that no one can be effectively excluded from using the good.

References:

• Anderson
• Bohme
• Camp and Wolfram
• Computing Research Association
• DHS, [2]
• Kobayashi
• National Infrastructure Advisory Council
• National Research Council
• PITAC
• Powell
• Schneier
• Varian, 2

Jump to top of Glossary

Cyber Terrorism

A criminal act perpetrated by the use of computers and telecommunications capabilities, resulting in violence, destruction and/or disruption of services to create fear by causing confusion and uncertainty within a given population, with the goal of influencing a government or population to conform to a particular political, social, or ideological agenda. FBI