Difference between revisions of "Compromised Asset"

From Open Risk Manual
(Created page with "== Definition == '''Compromised Asset''' is any information asset that were compromised during a Cyber Incident. “Compromised” refers to any loss of confidentiality/...")
 
 
Line 1: Line 1:
 
== Definition ==
 
== Definition ==
'''Compromised Asset''' is any information asset that were compromised during a [[Cyber Incident]].  
+
'''Compromised Asset''' is any information asset that was compromised during a [[Cyber Incident]].  
  
“Compromised” refers to any loss of confidentiality/possession, integrity/authenticity, availability/utility (primary security attributes). Naturally, an incident can involve multiple assets and affect multiple attributes of those assets.
+
''Compromised'' refers to any loss of (primary security attributes):
 +
* confidentiality/possession
 +
* integrity/authenticity
 +
* availability/utility  
 +
 
 +
 
 +
Naturally, an incident can involve multiple assets and affect multiple attributes of those assets.
  
 
== References ==
 
== References ==

Latest revision as of 12:52, 3 November 2021

Definition

Compromised Asset is any information asset that was compromised during a Cyber Incident.

Compromised refers to any loss of (primary security attributes):

  • confidentiality/possession
  • integrity/authenticity
  • availability/utility


Naturally, an incident can involve multiple assets and affect multiple attributes of those assets.

References

  • VERIS
Retrieved from "https://www.openriskmanual.org/wiki/index.php?title=Compromised_Asset&oldid=27105"
  • Creative Commons Attribution-NonCommercial-ShareAlike
  • Powered by MediaWiki
  • Powered by Semantic MediaWiki