Resultado de
un conjunto de medidas aplicadas a un sistema informático y orientadas a evitar
accesos, manipulaciones, pérdidas, modificaciones o conocimiento de la
información que contiene por personal no autorizado. [CESID:1997]
Measures and controls that
ensure confidentiality, integrity, and availability of IS assets including
hardware, software, firmware, and information being processed, stored, and
communicated. [CNSSI_4009:2010]
1. (I) Measures to implement
and assure security services in a computer system, particularly those that assure
access control service.
2. (O) "The protection
afforded to an automated information system in order to attain the applicable
objectives of preserving the integrity, availability and confidentiality of
information system resources (includes hardware, software, firmware,
information/data, and telecommunications)." [SP12]
[RFC4949:2007]