Inaudible ultrasound attack can stealthily control your phone, smart speaker bleepingcomputer.com/news/security/… 16 hours ago

Microsoft pushes OOB security updates for Windows Snipping tool flaw bleepingcomputer.com/news/microsoft… 19 hours ago

New CISA tool detects hacking activity in Microsoft cloud services bleepingcomputer.com/news/security/… 2 days ago

Mandiant: Move, Patch, Get Out the Way: 2022 Zero-Day Exploitation Continues at an Elevated Pace mandiant.com/resources/blog… 3 days ago

Should the US ban TikTok? Can it? A cybersecurity expert explains the risks the app poses and the challenges to blo… twitter.com/i/web/status/1… 3 days ago

Archive for the ‘Glossary’ Category

More InfoSec Glossary: Freely Available ISO 27000 PDF

Posted by Jaime Raphael Licauco, CISSP, GSEC on November 2, 2009

The ISO 27000 (Information security management systems — Overview and vocabulary) document is part of ISO’s Publicly Available Standards. Because of this, you may download it, store it on your PC, and print out one copy of the file, but aren’t allowed to transfer or place it on a network without the authorization of the copyright owner. You can read the whole License Agreement, and download the ISO 27000 document here.

Another place to check out for InfoSec definitions is at the Software and Systems Engineering Vocabulary (SE VOCAB) Site. This is a project of the IEEE Computer Society, and ISO/IEC JTC 1/SC7.

SITE NEWS
It has been a very busy couple of months for the Admins of Infosec.ph. In behalf of the other Admins, thank you for all your comments and support. Some of the comments have specific questions which we choose not to publish. For these kinds of more specific questions and comments, you may e-mail us at infosecphils@gmail.com.

For news updates, kindly check out our Facebook Page, and our Twitter page.

Posted in Free, Glossary, ISMS | Tagged: 27000, Glossary, ISMS, ISO | 5 Comments »

ISO’s Glossary of IT Security Terminology

Posted by Jaime Raphael Licauco, CISSP, GSEC on August 24, 2009

Since I haven’t put up my own Glossary of IT Security Terms, and there are tons of reputable sources on the web, I’ll will be linking to them instead.

First up is the ISO/IEC Joint Technical Committee 1, Sub-Committee 27’s Standing Document 6: Glossary of IT Security Terminology. It is a freely downloadable zipped Excel file with around 1,700 rows of definitions (some of which repeat depending on the reference material and working group). It also references the source document, and it is as of April 29, 2009. A Sample of the document follows:

Term:
Biometric

Definition:
automated recognition of individuals based on their behavioural and biological characteristics NOTE Definition from [2].

Stds/TRs/Drafts:
ISO/IEC FDIS 19792: 2009-04-16

WG:
WG3

Please note that FDIS stands for Final Draft International Standard. Working group 3 works on “Security Evaluation Criteria.” Please see here for more on the different Working Groups of SC27. The recently published ISO/IEC 19792’s title is, “Information technology — Security techniques — Security evaluation of biometrics”.

Posted in Glossary | Tagged: Glossary, IEC, ISO, JTC 1, SC 27, Security | Leave a Comment »

InfoSec Philippines

Information Security, Technology News and Opinions

Categories

Archives

Pages

Subscribe

Twitter Updates

Archive for the ‘Glossary’ Category

More InfoSec Glossary: Freely Available ISO 27000 PDF

ISO’s Glossary of IT Security Terminology