The IT Law Wiki



An object is

[a] self-contained entity that contains its own data and the functions necessary to manipulate the data.[1]
[a] passive information system-related entity containing or receiving information.[2]

Examples of objects are: records, blocks, files, programs, video displays, printers, network nodes, etc.[3]


An object is "a passive entity that contains or receives information."[4]


An object can be an HTML page, a graphics file, a music file, and so forth.

Internet of things[]

An object is

a ‘thing’ in IoT (in contrast to the digital and network connection shared between these systems). This could be household appliances, wearable technology, security systems or other connected devices.[5]



"Access to an object potentially implies access to the information it contains. Examples of objects are: records, blocks, pages, segments, files, directories, directory trees, and programs, as well as bits, bytes, words, fields, processors, video displays, keyboards, clocks, printers, and network nodes."[6]

Internet of things[]

"Objects can be classified as follows.

Objects have the following characteristics.

  • Ability to sense and/or actuate
  • Small (or not necessarily)
  • Limited capability (or not necessarily)
  • Energy/power limited
  • Connected to physical world
  • Intermittent connectivity
  • Mobile (potentially)
  • Of interest to people
  • Managed by devices, not people."[7]


  1. Internet Banking: Comptroller’s Handbook, at 77.
  2. NICCS, Explore Terms: A Glossary of Common Cybersecurity Terminology (full-text); CNSSI 4009.
  3. NIST Special Publication 800-4, App. D, Glossary.
  4. NIST Special Publication 800-33, at 21; NIST Special Publication 800-27.
  5. Smartex: IoT Glossary of Terms and Standards (full-text).
  6. Department of Defense, National Computer Security Center, Glossary of Computer Security Terms (NCSC-TG-004, Ver. 1) (Oct. 21, 1988).
  7. The Internet of Things-Concept and Problem Statement, at 6-7.

See also[]