D Flashcards
Data classification
The assignment of a level of sensitivity to data (or information) that results in the specification of controls for each level of classification. Levels of sensitivity of data are assigned according to predefined categories as data are created, amended, enhanced, stored or transmitted. The classification level is an indication of the value or importance of the data to the enterprise.
Data custodian
The individual(s) and department(s) responsible for the storage and safeguarding of computerized data.
Data integrity
The degree to which a collection of data is complete, consistent and accurate
Data leakage
Unauthorized transmission of data from an organization either electronically or physically
Data loss prevention
Detecting and addressing data breaches, exfiltration or unwanted destruction of data
Data mining
Generally, the use of computers to analyze large data sets to look for patterns that assist people in making business decisions
Data normalization
A structured process for organizing data into tables in such a way that it preserves the relationships among the data.
Data owner
The individual(s) who has responsibility for the integrity, accurate reporting and use of computerized data
Data warehouse
A generic term for a system that stores, retrieves and manages large volumes of data.
Decentralization
The process of distributing computer processing to different locations within an enterprise
Decryption key
A digital piece of information used to recover plaintext from the corresponding ciphertext by decryption
Defense in depth
The practice of layering defenses to provide added protection. Defense in depth increases security by raising the effort needed in an attack. This strategy places multiple barriers between an attacker and enterprise
computing and information resources.
Degauss
The application of variable levels of alternating current for the purpose of demagnetizing magnetic recording media.
Demilitarized zone (DMZ)
A small, isolated network that serves as a buffer zone between trusted and untrusted networks
Denial-of-service attack (DoS)
An assault on a service from a single source that floods it with so many requests that it becomes overwhelmed and is either stopped completely or operates at a significantly reduced rate