Defence-in-Depth

From CIPedia
Jump to: navigation, search


Definitions

International Definitions

IAEA

Defence in depth is implementing several layers of defence, including both administrative aspects (procedures, instructions, sanctions, access control rules, confidentiality rules) and technical aspects (multiple layers of protection together with measures for detection and delay) that adversaries would have to overcome or circumvent to achieve their objectives. [1]

Defence in depth is the combination of multiple layers of systems and measures that have to be overcome or circumvented before nuclear security is compromised.


National Definitions

Oman

Defense In-Depth is the approach of using multiple layers of security to guard against failure of a single security component. [2]


United Arab Emirates

Defence in Depth: The strategy of forming layers of protection for an asset. [3]


United States

NIST
Defense-in-Depth is an information security strategy integrating people, technology, and operations capabilities to establish variable barriers across multiple layers and missions of the organization. [4]


Standard Definition

ISA-62443-1-1

Defense-in-depth is the provision of multiple security protocols, especially in layers, with the intent to delay if not prevent an attack. [5]

Other definitions

OWASP

Defense-in-depth: A principle for building systems stating that multiple defensive mechanisms at different layers of a system are usually more secure than a single layer of defense. [6]


See also

Notes

  1. IAEA - Nuclear Security Series Glossary Version 1.3 (November 2015)
  2. Oman CERT Glossary
  3. Abu Dhabi Safety and Security Planning Manual
  4. NIST Special Publication 800-53 Rev 4: Security and Privacy Controls for Federal Information Systems and Organizations (April 2013)
  5. ISA99 Committee Master Glossary.
  6. OWASP Glossary