Data Loss Prevention — Technology Wiki

Overview

Technology and processes that prevent sensitive data from being lost, misused, or accessed by unauthorised users.

The process of converting plaintext data into ciphertext using an algorithm, making it unreadable without the decryption key.

A communication system where only the communicating users can read the messages, with encryption at both endpoints.

A systematic evaluation of an organisation's information system security by measuring compliance with established criteria.

The practice of protecting systems, networks, and programs from digital attacks, unauthorised access, and data breaches.

Security solutions that control and monitor access for users with elevated permissions to critical systems.

A structured set of guidelines and best practices for meeting regulatory requirements and industry standards.

An auditing framework that evaluates the security, availability, processing integrity, confidentiality, and privacy of service organisations.

The practice of reporting security vulnerabilities to software vendors so they can be fixed before public exploitation.

An authentication method requiring two or more verification factors to gain access to a resource.

A model describing the stages of a cyberattack from reconnaissance through data exfiltration.