Environment Of Operation

Environment Of Operation definition in Computer Security terms:

Acronym(s): None

Definition(s): The physical, technical, and organizational setting in which an information system operates, including but not limited to: missions/business functions; mission/business processes; threat space; vulnerabilities; enterprise and information security architectures; personnel; facilities; supply chain relationships; information technologies; organizational governance and culture; acquisition and procurement processes; organizational policies and procedures; organizational assumptions, constraints, risk tolerance, and priorities/trade-offs).
Source(s): CNSSI 4009-2015 (NIST SP 800-30 Rev. 1)
NIST SP 800-30

The physical surroundings in which an information system processes, stores, and transmits information.
Source(s): NIST SP 800-137 (NISTIR 7298)
NIST SP 800-171 (Updates to version published June 2015) (NIST SP 800-37)
NIST SP 800-37 Rev. 1
NIST SP 800-39 (NIST SP 800-37)
NIST SP 800-53 Rev. 4 (NIST SP 800-37)
NIST SP 800-53A Rev. 4 (NIST SP 800-37)

Synonym(s): None


reference: CSRC Glossary