Access - The process of obtaining data from, or placing data into a computer system or storage device.
Anonymous - With respect to data, the condition of not being able to identify data or information with an individual person.
Archiving - The process of saving data for later reference or use.
Asset - Any item that has value.
Audit - An independent examination of a work product or set of work products to assess compliance with specifications, standards, contractual agreements, or other criteria.
Availability - The condition of being useable on demand to support business functions (teaching, research, administration, etc.).
Collection - The process of gathering data from a number of individuals or sources.
Communication - The process of transmitting data or information from one point to another.
Computer Program - A combination of computer instructions and data definitions that enable computer hardware to perform computational or control functions.
Confidentiality - The responsibility of an individual to safeguard the secrecy of data concerning another individual.
CQU - Acronym for the Central Queensland University.
Data - A representation of facts, concepts, or instructions in a manner suitable for communication, interpretation, or processing by humans or by automatic means.
Database - A collection of logically related data stored together in one or more computerised files.
Destruction - The process of rendering an asset completely unusable.
Disclosure - The process of making data or information known.
Electronic Mai - The generation, transmission, and display of correspondence and documents by electronic means.
Employee - An individual employed by Central Queensland University.
Encryption - The process of enciphering or encoding data.
Firewall - A security technique that prevents unauthorised access to information systems and local area networks from external networks.
Hardware - Physical equipment used to process, store, or transit computer programs or data.
Information - The meaning that humans assign to data by means of known conventions that are applied to the data.
Information System - A mechanism used for acquiring, filing, storing and retrieving an organised body of knowledge.
Integrity - (1) The degree to which a system or component prevents unauthorised access to, or modification of, computer programs or data. (2) The accuracy and completeness of data and information.
LAN - Acronym for Local Area Network.
Maintenance - (1) The process of modifying a software system or component after delivery to correct faults, improve performance or other attributes, or adapt to a changed environment. (2) The process of retaining a hardware system or component in, or restoring it to, a state in which it can perform its required functions.
Modification - The process of changing the contents or logical structure of a database or program.
Password - A sequence of characters required for access to a computer system.
Privacy - An individual's right to protection of the data regarding him/her against misuse or unauthorised disclosure.
Release - The authorised disclosure of data or information to an individual or third party.
Removal - The process of changing the location of an asset.
Retention - The process of holding data or information in a secure or intact manner.
Risk Assessment - An evaluation of the chance of vulnerabilities being exploited, based on the effectiveness of existing or proposed safeguards.
Safeguards - Actions or measures taken to offset a particular security concern or threat.
Secure Area - An area where university data is processed and/or stored, or an area housing utilities or service facilities supporting university information equipment
Security - The degree to which data , databases or other assets are protected from exposure to accidental or malicious disclosure, interruption, modification, removal or destruction.
Software - Computer programs, procedures, and associated documentation and data pertaining to the operation of a computer system.
Storage - The process of placing data or information in a location (eg. computer memory, storage device, secure area) for later use or disposal.
Student/client - Any individual who receives a university product or service from a university staff member or university agent. Often referred to as client.
Threat - Any potential event or act that could cause one or more of the following to occur: unauthorised disclosure, destruction, removal, modification or interruption of sensitive information, assets or services, or injury to people. A threat may be deliberate or accidental.
Threat Assessment - An evaluation of the nature, likelihood and consequence of acts or events that could place sensitive data and assets at risk.
University - Any organisation engaged in the planning, funding, management, development or delivery of university services and products.
University Data - Facts that apply to the university status of an individual and/or to the service provided to that individual.
University Staff Member - Any individual employed or engaged in the direct delivery of university services or products to students/clients/staff members.
User - One who uses the services of a computer system.
WAN - Acronym for Wide Area Network.
Contents
Background:
[1]
[2]
[3]
_Section:
[1]
[2]
[3]
[4]
[5]
[6]
[7]
[8]
[9]
_Annex:
[1]
[2]
[3]
[4]
[Index]
Guidelines for Computer Security at CQU, A C Lynn Zelmer, PhD; Editor/Adaptor
Copyright © 1996 CQU Computer Security Committee
Central Queensland University Home Page