Definitions[]
A security violation is
| “ | an event that may result in disclosure of sensitive information to unauthorized individuals. A security violation may also result in unauthorized modification or destruction of system data, loss of computer system processing capability, or loss or theft of computer system resources.[1] | ” |
| “ | a security incident involving: (1) any action that results in or could reasonably be expected to result in an unauthorized disclosure or compromise of classified information (including national intelligence); (2) any knowing, willful, or negligent action to classify or continue the classification of information contrary to the requirements of Executive Order 12958, as amended, or its implementing directives; or (3) any knowing, willful, or negligent action to create or continue a Special Access Program contrary to the requirements of Executive Order 12958, as amended.[2] | ” |
| “ | [a]ny knowing, willful, or negligent action that could reasonably be expected to result in an unauthorized disclosure of classified information; or, any knowing, willful, or negligent action to classify or continue the classification of information contrary to the requirements of Executive Order (EO) 13526, "Classified National Security Information," or its implementing directives; or, any knowing, willful, or negligent action to create or continue a special access program contrary to the requirements of EO 13526.[3] | ” |
References[]
- ↑ This definition uses content from the Information Security Guide 2 - Glossary, which is made available under the Creative Commons Attribution License 3.0 Unported.
- ↑ Intelligence Community Standard 700-01, at 9.
- ↑ Glossary of Security Terms, Definitions, and Acronyms, at 220.