Confidentiality

From CIPedia
Jump to: navigation, search


Definitions

International definitions

IAEA

Confidentiality is the property that information is not made available or disclosed to unauthorized individuals, entities, or processes. [1]


ITU-T

Confidentiality is the property that information is not made available or disclosed to unauthorized individuals, entities, or processes. [2]

Confidentialité: Propriété d'une information qui n'est ni disponible, ni divulguée aux personnes, entités ou processus non autorisés. [3]

Confidencialidad: Propiedad que garantiza que la información no se pone a disposición ni se divulga a personas, entidades o procesos no utorizados. [4]

机密性: 防止信息提供或泄露给未经授权的个人、实体或过程的特性. [5]


National Definitions

Argentina

Confidencialidad: se garantiza que la información sea accesible sólo a aquellas personas autorizadas a tener acceso a la misma. [6]


Australia

Confidentiality: The limiting of official information to authorised users for approved purposes the confidentiality requirement is determined by reference to the likely consequences of unauthorised disclosure of official information. [7]


Brazil

Confidencialidade: propriedade de que a informação não esteja disponível ou revelada a pessoa física, sistema, órgão ou entidade não autorizado e credenciado. [8]
Confidentiality is the property that information is not available or disclosed to an unauthorized and non-accredited individual, system, agency or entity.

Burkina-Faso

Confidentialité: Propriété cruciale associée aux données sensibles (mot de passe, …) et à certaines applications (EDI, messageries électroniques, …). [9]
Elle est généralement assurée par les techniques de cryptage.

Cameroon (Cameroun)

Confidentialité: maintien du secret des informations et des transactions afin de prévenir la divulgation non autorisée d’informations aux non destinataires permettant la lecture, l’écoute, la copie illicite d’origine intentionnelle ou accidentelle durant leur stockage, traitement ou transfert. [10]

Colombia

Confidencialidad: Propiedad de la información que determina que esté disponible a personas autorizadas. [11]

Confidencialidad: Propiedad de la información, por la que se garantiza que está accesible únicamente a personal autorizado a acceder a dicha información. [12]


Czech Republic

Vlastnost, že informace není dostupná nebo není odhalena neautorizovaným jednotlivcům, entitám nebo procesům. [13]

Characteristic that information is not available or is not disclosed to unauthorized individuals, entities or processes. [14]


Ecuador

Confidencialidad: Se garantiza que la información sea accesible sólo a aquellas personas autorizadas a tener acceso a la misma. [15]


France

Confidentialité: Propriété d’une information qui n’est ni disponible, ni divulguée aux personnes, entités ou processus non autorisés. [16]


Guatemala

Confidencialidad: Propiedad que la información no está disponible o divulgada a personas o entidades no autorizadas. Fuente: ISO/IEC 27000:20016 [17]


Hong Kong

機密性 : 確保數據受到保護及只向獲授權一方披露的情況。

Confidentiality: Confidentiality is the need to ensure that information is disclosed only to those who are authorised to view it. [18]


Iceland

Leynd: Vernd upplýsinga gegn óviðkomandi aðgangi, bæði á meðan þær eru sendar milli staða og þar sem þær eru vistaðar. [19]
.

India

The condition in which sensitive data is kept secret and disclosed only to authorized parties. [20]

Islamic Republic of Afghanistan

Confidentiality: Authorized persons or systems only can access information systems and data, and the confidential information pertaining to information systems or confidential information in the system will not be disclosed by unauthorized persons or systems. [21]

Japan

データの守秘性: (例えば、権限のない任意のシステム主体に対して)情報が利用されない、または権限のない個人、主体、またはプロセスに開示されない特性.

The property that information is not made available or disclosed to unauthorized individuals, entities, or processes. [22]

Kingdom of Saudi Arabia

Preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information. (NISTIR 7298r2 Glossary of Key Information Security Terms) [23]

Luxembourg

Confidentialité: propriété d’une information qui n’est ni disponible, ni divulguée aux personnes, entités ou processus non autorisés. [24]

Netherlands

Met vertrouwelijkheid wordt gedoeld op het waarborgen dat informatie alleen toegankelijk is voor degenen, die hiertoe zijn geautoriseerd. [25] [26]

Vertrouwelijkheid is de mate waarin toegang tot informatie beperkt is tot degenen die daartoe bevoegd zijn. [27]

Mexico

Confidencialidad: Las dependencias y entidades deben garantizar, en términos de las disposiciones jurídicas aplicables, la no divulgación de datos o información a terceros o a sistemas no autorizados. [28]


Morocco

Confidentialité: Objectif de sécurité permettant de s’assurer que les informations transmises ou stockés ne sont accessibles qu’aux personnes autorisées à en prendre connaissance. [29]

Norway

Assurance that specific information is not disclosed to unauthorised persons, and that only authorised persons have access. [30]
Konfidensialitet: Sikkerhet for at nærmere angitt informasjon ikke avsløres for uvedkommende, og at kun autoriserte personer får tilgang til denne. [31]

Oman

Confidentiality is the need to ensure that information is disclosed only to those who are authorized to view it. [32]


Peru

Confiabilidad: Se define como el grado en que un equipo o sistema físico realiza la función que se espera de él, bajo condiciones y rangos de operación definidos. [33]


Senegal

Confidentialité: le fait de s'assurer que l'information n'est accessible qu'à ceux dont l'accès est autorisé. [34]


Serbia

тајност је својство које значи да податак није доступан неовлашћеним лицима. [35]


Tanzania

Data confidentiality - means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, perusal, inspection, recording or destruction. [36]


Turkey

Gizlilik: Bilginin yetkisiz kişiler, varlıklar ya da süreçlere kullanılabilir yapılmama ya da açıklanmama özelliğini. [37]

Confidentiality: The characteristic of preventing the use or disclosure of information to unauthorized persons, entities or processes. [38]

Information systems and data can be accessed by authorized persons or systems only, and the confidential information pertaining to information systems or confidential information in the system will not be disclosed by unauthorized persons or systems. [39]

Gizlilik: Bilişim sistem ve verilerine sadece yetkili kişi veya sistemlerce erişilebilmesini; bilişim sistemlerine ait veya sistemdeki gizli verinin yetkisiz kişi veya sistemlerce ifşa edilmemesini. [40]

United States

DHS
Confidentiality is a property that information is not disclosed to users, processes, or devices unless they have been authorized to access the information. [41]

FISMA
Confidentiality means preserving authorized restrictions on access and disclosure, including means for protecting personal privacy and proprietary information. [42]

NIST
Preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information. [43]

The property that sensitive information is not disclosed to unauthorized individuals, entities, or processes. [44]

A requirement that private or confidential information not be disclosed to unauthorized individuals. (from: NIST SP 800-12) [44]

The security goal that generates the requirement for protection from intentional or accidental attempts to perform unauthorized data reads. (from: NIST SP 800-27 rev A.) [44]

The term 'confidentiality' means preserving authorized restrictions on access and disclosure, including means for protecting personal privacy and proprietary information. (from: NIST SP 800-59) [44]

The security objective that generates the requirement for protection from intentional or accidental attempts to perform unauthorized data reads. Confidentiality covers data in storage, during processing, and while in transit. (from: NIST SP 800-33) [44]


Standard Definition

IETF

(Data) The property that data is not disclosed to system entities unless they have been authorized to know the data. [45]


ISA-62443-*

Confidentiality is preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information. [46]


ISO/IEC 27000:2014

Property that information is not made available or disclosed to unauthorized individuals, entities, or processes. [47]


See also

Notes

  1. IAEA - Nuclear Security Series Glossary Version 1.3 (November 2015)
  2. ITU Security in Telecommunications and Information Technology: An overview of issues and the deployment of existing ITU-T Recommendations for secure telecommunications, ITU-T, Geneva (2012) - ITU-T X-800.
  3. Sécurité dans les télécommunications et les technologies de l’information: Aperçu des problèmes et présentation des Recommandations UIT-T existantes sur la sécurité dans les télécommunications, ITU-T, Geneva (2012) - ITU-T X.800.
  4. Seguridad de las telecomunicaciones y las tecnologías de la información: Exposición general de asuntos relacionados con la seguridad de las telecomunicaciones y la aplicación de las Recomendaciones vigentes del UIT-T, ITU-T, Geneva (2012) - ITU-T X.800.
  5. 关于电信安全的若干议题综述 及相关ITU-T建议书应用简介, ITU-T, Geneva (2012) - ITU-T H.235.
  6. Oficina Nacional de Tecnologías de Información ADMINISTRACION PUBLICA NACIONAL Disposición 3/2013 - Apruébase la “Política de Seguridad de la Información Modelo” (2013)
  7. Protective Security Policy Framework - Glossary Oct 2017
  8. GUIA DE REFERÊNCIA PARA A SEGURANÇA DAS INFRAESTRUTURAS CRÍTICAS DA INFORMAÇÃO Versão 01 (Nov. 2010)/ Instrução Normativa Nº 1, de 13 de junho de 2008. Gabinete de Segurança Institucional da Presidência da República.
  9. CIRT-BF Glossary
  10. LOI N°2010/012 DU 21 DECEMBRE 2010 RELATIVE A LA CYBERSECURITE ET LA CYBERCRIMINALITE AU CAMEROUN
  11. Glosario MINTIC – ICT Ministry of Colombia
  12. Glosario Policia Colombia
  13. Výkladový slovník kybernetické bezpečnosti (2013)
  14. Cyber Security Explanatory Glossary (2013)
  15. ESQUEMA GUBERNAMENTAL DE SEGURIDAD DE LA INFORMACION EGSI 2013
  16. ANSSI Glossaire
  17. La Estrategia Nacional de Seguridad Cibernética (June 2018)
  18. Glossary for Information Security Terms/資訊保安詞彙表
  19. [1]
  20. India's DGQA Cyber Security Policy (2015)
  21. National Cyber Security Strategy of Afghanistan (2014)
  22. http://www.ipa.go.jp/security/rfc/RFC2828EN.html RFC2828 (Japanese translation)
  23. Cyber Security Framework Saudi Arabian Monetary Authority Version 1.0 May 2017
  24. [From French Glossary]
  25. Cyber Security Beeld Nederland 2018
  26. ABDO 2017
  27. Zakboekje Preventie Cybercrime (2008
  28. Glosario - El portal único del gobierno. | gob.mx, Mexico
  29. DIRECTIVE NATIONALE DE LA SECURITE DES SYSTEMES D'INFORMATION, Marocco 2013
  30. Cyber Security Strategy for Norway (2012)
  31. Nasjonal strategi for informasjonssikkerhet (2012)
  32. Oman CERT Glossary
  33. RESOLUCIÓN DE CONSEJO DIRECTIVO ORGANISMO SUPERVISOR DE LA INVERSIÓN EN ENERGÍA OSINERG Nº 270-2014-OS/CD
  34. STRATÉGIE NATIONALE DE CYBERSÉCURITÉ DU SÉNÉGAL (SNC2022)
  35. ЗАКОН О ИНФОРМАЦИОНОЈ БЕЗБЕДНОСТИ (Law on Information Security), Serbia
  36. [THE UNITED REPUBLIC OF TANZANIA/MINISTRY OF FINANCE -ICT SECURITY GUIDELINES (2012)]
  37. 2016-2019 UlUSAL SİBER GÜVENLİk STRATEJİSİ (Sept. 2016)
  38. Turkey's National Cyber Security Strategy 2016-2019 (2016)
  39. Turkey's National Cyber Security Strategy and 2013-2014 Action Plan
  40. UlUSAL SİBER GÜVENLİk STRATEJİSİ VE
  41. DHS/NICSS Glossary
  42. The Federal Information Security Modernization Act of 2014 (FISMA)44 U.S.C. § 3552(b)(2).
  43. NIST Special Publication 800-53 Rev 4: Security and Privacy Controls for Federal Information Systems and Organizations (April 2013) / 44 U.S.C., Sec. 3542
  44. 44.0 44.1 44.2 44.3 44.4 NIST Glossary
  45. IETF RFC449 Internet Security Glossary 2
  46. ISA-62443 series
  47. ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary