The IT Law Wiki

Security domain

32,080pages on
this wiki
Add New Page
Add New Page Talk0

Definitions Edit

A security domain is

[a] collection of entities to which applies a single security policy executed by a single authority.[1]
[a] set of users, rules, processes, systems, and services whose behavior and interactions are governed by a common security policy. A domain that implements a security policy and is administered by a single authority.[2]
[w]ithin an information system, the set of objects that is accessible. Access is determined by the controls associated with information properties such as its security classification, security compartment, or sensitivity. The controls are applied both within an Information System (IS) and in its connection to other classified or unclassified Information Systems.[3]

Overview Edit

A security domain is the determining factor in the classification of an enclave of servers/computers. A network with a different security domain is maintained separate from other networks.

References Edit

  1. FIPS 188, §3.2.
  2. CNSSI 4009, at 65.
  3. Glossary of Security Terms, Definitions, and Acronyms, at 216-17.

Also on Fandom

Random Wiki