Moderate-Impact System

Moderate-Impact System definition in Computer Security terms:

Acronym(s): None

Definition(s): An information system in which at least one security objective (i.e., confidentiality, integrity, or availability) is assigned a FIPS PUB 199 potential impact value of moderate and no security objective is assigned a FIPS PUB 199 potential impact value of high.
Note: For National Security Systems, CNSSI No. 1253 does not adopt this FIPS PUB 200 high water mark across security objectives.
Source(s): CNSSI 4009-2015 (FIPS 200)

An information system in which at least one security objective (i.e., confidentiality, integrity, or availability) is assigned a FIPS Publication 199 potential impact value of moderate and no security objective is assigned a FIPS Publication 199 potential impact value of high.
Source(s): NIST SP 800-53 Rev. 4 (FIPS 200)

An information system in which at least one security objective (i.e., confidentiality, integrity, or availability) is assigned a FIPS 199 potential impact value of moderate and no security objective is assigned a FIPS 199 potential impact value of high.
Source(s): NIST SP 800-60 Vol 1 Rev. 1 (FIPS 200)

Synonym(s): None

 

reference: CSRC Glossary