Defense-In-Depth

Defense-In-Depth definition in Computer Security terms:

Acronym(s): None

Definition(s): Information Security strategy integrating people, technology, and operations capabilities to establish variable barriers across multiple layers and missions of the organization.
Source(s): CNSSI 4009-2015 (NIST SP 800-53 Rev. 4)
NIST SP 800-39 (CNSSI 4009)
NIST SP 800-53 Rev. 4
NIST SP 800-30 (CNSSI 4009)

Information security strategy integrating people, technology, and operations capabilities to establish variable barriers across multiple layers and dimensions of the organization.
Source(s): NIST SP 800-161 (CNSSI 4009, NIST SP 800-53 Rev. 4)

Synonym(s): None

 

reference: CSRC Glossary