Appendix B. Definitions
| Terminology | Definition |
|---|---|
| Access Control | A security service that prevents the unauthorized use of information system resources (Information Assurance Technical Framework [IATF], 2000). |
| Access Control List | Mechanism implementing discretionary and/or mandatory access control between subjects and objects (IATF, 2000). |
| Accountability | The security goal that generates the requirement for actions of an entity to be traced uniquely to that entity. This supports nonrepudiation, deterrence, fault isolation, intrusion detection and prevention, and after-action recovery and legal action (IATF, 2000). |
| Application-Level Firewall | A firewall system in which service is provided by processes that maintain complete TCP connection state and sequencing; ... |
Get Professional Penetration Testing now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
