| |
|
Glossary of Data Communications Terms
Courtesy Enterprise-Wide Computing, Inc.
|
Term:
audit of computer security
Definition:
as defined by NBS (now NIST) Special Publication 500-57, an
independent evaluation of the controls employed to ensure:
1. The appropriate protection of the organization's
information assets (including hardware, software, firmware,
and data) from all significant anticipated threats or
hazards; 2. The accuracy and reliability of the data
maintained on or generated by an automated data-processing
system; and 3. The operational reliability and performance
assurance for accuracy and timeliness of all components of
the automated data-processing system. An examination of
data security procedures and measures for the purpose of
evaluating their adequacy and compliance with established
policy.
|
| |
|