Glossary
Term Description
Chain Of Evidence
The “sequencing” of the chain of evidence follows this order: collection and identification; analysis; storage; preservation; presentation in court; return to owner. Chain of evidence shows who obtained the evidence; where and when the evidence was obtained; who secured the evidence; who had control or possession of the evidence. The process by which an object is uniquely identified in a court of law.
Challenge Handshake Authentication Protocol (CHAP)
A secure login procedure for dialin access that avoids sending in a password in the clear by using cryptographic hashing. One of the authentication protocols used over PPP links. CHAP encrypts usernames and passwords.
Checksum
A computed value that depends on the contents of a packet. This value is sent along with the packet when it is transmitted. The receiving system computes a new checksum based on receiving data and compares this value with the one sent with the packet. If the two values are the same, the receiver has a high degree of confidence that the data was received correctly. Value computed on data to detect error or manipulation during transmission. (. See hash total. )
Cipher
A system that hides the true meaning of a message. Ciphers use a variety of techniques to alter and/or rearrange the characters or words of a message to achieve confidentiality. Any cryptographic system in which arbitrary symbols or groups of symbols, represent units of plain text, or in which units of plain text are rearranged, or both.
Cipher Text
A message that has been encrypted for transmission. Enciphered information.
CISM
Certified Information Security Manager (A professional certification from ISACA)Certified Information Security Manager.
CISSP
Certified Information Systems Security Professional (A professional certification from ISC2)Certified Information Systems Security Professional.
Class
An implementation of an abstract data type. A definition of the data structures, methods, and interface of software objects. A template for the instantiation (creation) of software objects. In the context of object-oriented programming terminology and techniques, a collection of common methods from a set of objects that defines the behavior of those objects.
Classification
A label that is applied to a resource to indicate its sensitivity or value to an organization and therefore designate the level of security necessary to protect that resource. The determination that certain information requires protection against unauthorized disclosure in the interest of national security, coupled with the designation of the level of classification Top Secret, Secret, or Confidential.
Classified information
Information that has been determined pursuant to Executive Order 12958 or any predecessor Order, or by the Atomic Energy Act of 1954, as amended, to require protection against unauthorized disclosure and is marked to indicate its classified status. Information that has been determined pursuant to Executive Order 12958 or any predecessor order, or by the Atomic Energy Act of 1954, as amended, to require protection against unauthorized disclosure and is marked to indicate its classified status.