IA: Information Assurance
Information Assurance (IA) refers to the methodologies for ensuring the security of information systems.

IAE: Information Assurance Engineering
Information Assurance Engineering (IAE) addresses those measures intended to protect and defend information and information systems by ensuring their Availability (protect against denial of service); Integrity (protect against unauthorized data modification); Authentication (protect against spoofing and forgery); Confidentiality (protect against unauthorized disclosure); and Non-Repudiation (protect against denial of transaction participation). This includes providing for restoration of information systems by incorporating protection, detection, and reaction capabilities. For national security systems, IAE is a vital part of systems engineering that helps, in part, meet overall system security requirements.

IASE: Information Assurance Support Environment
Information Assurance Support Environment(IASE) is a U.S. Department of Defense (DoD) clearing-house for information assurance (IA) information.

IATF: Information Assurance Technical Framework
Information Assurance Technical Framework(IATF), defined by the IATTF, is a set of guidelines for ensuring the security of information and information infrastructures. The IATF defines a process for developing a system with information assurance and the
security requirements for the hardware and software components in the system. Applying these principles results in layers of protection in the information infrastructure known as the Defense-in-Depth Strategy.

IATTF: Information Assurance Technical Framework Forum
The Information Assurance Technical Framework Forum (IATFF) is a National Security Agency (NSA) sponsored outreach activity created to foster dialog amongst U.S. Government agencies, U.S. Industry, and U.S. Academia seeking to provide their customers solutions for information assurance problems. The ultimate objective of the IATFF is to agree on a framework for information assurance solutions that meet customers’needs and foster the development and use of solutions that are compatible with the framework.

IceNewk
IceNewk, a variation of ping of death, is a denial of service (DoS) attack caused by an attacker deliberately sending an IP packet larger than the 65,536 bytes allowed by the IP protocol.

ICMP Attack
ICMP Attack is the attack using ICMP weakness. ICMP is used by the IP layer to send one-way informational messages to a host. There is no authentication in ICMP, which leads to attacks using ICMP that can result in a denial of service, or allowing the attacker to intercept packets.

ICMP Bug
Internet Control Message Protocol (ICMP) is used as control messages among network devices. ICMP has many vulnerabilities, or bugs, for attackers to taking advantages. Typical ICMP related attacks are: Ping of death also known as "long ICMP", jolt, sPING, Ping flood, and IceNewk.

ICMP Flood
ICMP flood, also known as Ping flood or Smurf attak, is type of Denial of Service attack that sends large amounts of (or just over-sized) ICMP packets to a machine in order to attempt to crash the TCP/IP stack on the machine and cause it to stop responding to TCP/IP requests.

ICMP Sweep
ICMP sweep, also called ping sweep, is a basic network scanning technique used to determine which of a range of IP addresses map to live hosts (computers). Whereas a single ping will tell you whether one specified host computer exists on the network, a ping sweep consists of ICMP (Internet Control Message Protocol) ECHO requests sent to multiple hosts.

ICMP enumeration
ICMP enumeration refers to using Internet Control Message Protocol (ICMP) messages to enumerate hosts on a network.

ICMP fingerprinting
ICMP fingerprinting refers to using Internet Control Message Protocol (ICMP) messages to fingerprint a host.

ICMP tunneling
ICMP tunneling is a method of using Internet Control Message Protocol (ICMP) to establish a covert channel.

ICRL: Indirect Certificate Revocation List
Indirect Certificate Revocation List (ICRL), a term in X.509, is a revocation list that is not issued directly by a CA but by authority duly authorized by a CA.

ICMP: Internet Control Message Protocol
Internet Control Message Protocol is an Internet Standard protocol that is used to report error conditions during IP datagram processing and to exchange other information concerning the state of the IP network. ICMP is not a secure protocol which has many vulnerabilities.

ICV: Integrity Check Value
Integrity Check Value (ICV), a checksum capable of detecting modification of an information system, is the result of the integrity process. This normally involves the HMAC (Hash Message Authentication Code) algorithm and the MD5 (Message Digest 5) or SHA-1 hash functions.

IDEA: International Data Encryption Algorithm
International Data Encryption Algorithm(IDEA) is an encryption algorithm developed at ETH in Zurich, Switzerland. It uses a block cipher with a 128-bit key, and is generally considered to be very secure. It is considered among the best publicly known algorithms.

Identity
Identity is whom someone or what something is, for example, a user name and password of a computer user.

Identity Card
An identity card is a portable document, typically a plasticized card with digitally-embedded information, that someone is required or encouraged to carry as a means of confirming their identity. Since the World Trade Center tragedy of September 11, 2001, many countries have discussed issuing national identity cards as a way to distinguish terrorists from the law-abiding population.

Identity Chaos
Identity chaos, also known as password chaos, is a situation in which users have multiple identities and passwords across a variety of networks, applications, computers and/or computing devices. To further complicate matters, each of the user's passwords may be subject to different rules, allow access at different security levels, and expire on different dates.

Identity Management
Identity Management is an integrated system of business processes, policies and technologies that enable organizations to facilitate and control their users' access to critical online applications and resources — while protecting confidential personal and business information from unauthorized users.

Identity Theft
Identity theft is a crime in which an imposter obtains key pieces of personal information, such as Social Security or driver's license numbers, in order to impersonate someone else. The information can be used to obtain credit, merchandise, and services in the name of the victim, or to provide the thief with false credentials.

Idle host scan
Idle host scan is a stealth method of scanning a host on a network.

IDS: Intrusion Detection System
Intrusion detection System (IDS) is a type of security management system for computers and networks. An IDS gathers and analyzes information from various areas within a computer or a network to identify possible security breaches, which include both intrusions and misuse.

IIS Lockdown Tool
IIS Lockdown Tool is a downloadable tool for helping administrators secure Internet Information Services (IIS) versions 4 and 5.

IETF: Internet Engineering Task Force
Internet Engineering Task Force (IETF) is the organization that defines standard Internet operating protocols such as TCP/IP. The IETF is supervised by the Internet Society Internet Architecture Board (IAB). IETF members are drawn from the Internet Society's individual and organization membership.

IKE:Internet Key Exchange
The Internet Key Exchange (IKE) is an IPsec (Internet Protocol Security) standard protocol used to ensure security for virtual private network (VPN) negotiation and remote host or network access. Specified in IETF Request for Comments (RFC) 2409, IKE defines an automatic means of negotiation and authentication for IPsec security associations (SA).

IKEv2: Internet Key Exchange version 2
Internet Key Exchange version 2 (IKEv2), a replacement for Internet Key Exchange (IKE), is an IPsec (Internet Protocol Security) standard protocol used to ensure security for virtual private network (VPN) negotiation and remote host or network access.

ILOVEYOU
ILOVEYOU, another name for the LoveLetter worm, is a malicious VBScript program that spreads using the Microsoft Outlook address book.

IM spam
IM Spam, also known as Spim, is the spam delivered through instant messaging (IM) systems.

IM worm
An IM worm is self-replicating malicious code that spreads in instant messaging networks. When an IM worm infects a computer, it locates the address book for the instant messenger client, which is called a buddy list or contact list, and tries to send itself to all the infected person's contacts.

Impersonation
Impersonation refers to the ability of a process to run using a different security context than the one that owns the process.

Incident
An incident as an adverse network event in an information system or network or the threat of the occurrence of such an event.

IMAP: Internet Message Access Protocol
IMAP is a protocol that defines how a client should fetch mail from and return mail to a mail server. IMAP is intended as a replacement for or extension to the Post Office Protocol (POP). It is defined in RFC 1203 (v3) and RFC 2060 (v4).

Incident Handling
Incident Handling is an action plan for dealing with intrusions, cyber-theft, denial of service, fire, floods, and other security-related events. It is comprised of a six-step process: Preparation, Identification, Containment, Eradication, Recovery, and Lessons Learned.

Incident response
Incident response refers to an action taken in response to an incident affecting information security.

Incident response team
Incident response team refers to a group of people who are responsible for handling information security incidents when they occur.

Incremental Backups
Incremental backups only backup the files that have been modified since the last backup. If dump levels are used, incremental backups only backup files changed since last backup of a lower dump level.

Infection
In information security. infection refers to the act of a virus or worm establishing itself in a computer system.

Inetd: Internet Daemon
Inetd (or Internet Daemon) is an application that controls smaller internet services like telnet, ftp, and POP.

Inference Attack
Inference Attacks rely on the user to make logical connections between seemingly unrelated pieces of information.

Information Signature
Information Signature refers to a system to be developed by the Information Awareness Office (IAO) of the U.S. Defense Advanced Research Projects Agency (DARPA) to fight terrorism. The system will use a super database of recorded online transactions and analytical programming that will identify what is referred to as the information signature of a terrorist or terrorist activity before harm can be done.

Information Sniffing
Information sniffing means a computer connected to a network through "promiscuous mode", listening to every bit of traffic that goes by on the network and captures all the data. Normally a computer's network connection ignores traffic that is not addressed to it, but with sniffing software the computer will pick up everything. This is an easy way to pick up clear text passwords. E-mail programs frequently use clear text passwords.

Information Warfare
Information Warfare is the competition between offensive and defensive players over information resources.

Information leakage
Information leakage, in computer security, refers to obtaining useful information through vulnerabilities in hardware or software.

Infosec: Information security
Information security (Infosec) covers subjects of telecommunication and information security systems.

InfraGard
InfraGard is a cooperative effort for protecting critical information security infrastructures in the United States.

Infranet Initiative
The Infranet Initiative is driven by Juniper Networks to develop a high-performance universal public network that would serve as a supplement to the Internet for businesses and other high-demand users. The proposed network, called the infranet, would provide guaranteed security, reliability, and quality of service (QoS) for applications that are too demanding to run reliably over the Internet, such as utility computing, multi-provider VPNs, and inter-enterprise peer-to-peer collaboration.

Ingress Filtering
Ingress Filtering refers to the filtering of inbound traffic.

Input Validation Attacks
Input Validations Attacks are where an attacker intentionally sends unusual input in the hopes of confusing an application.

Insider attack
Insider attack refers to the compromise of network systems by company employees or contractors.

Instant Spam
Instand Spam, also called as IM Spam, is spam delivered through instant messaging (IM).

Integrity
Integrity is the need to ensure that information has not been changed accidentally or deliberately, and that it is accurate and complete.

Integrity Checker
An integrity checker is a defense against Trojan Horses and viruses - a form of intrusion detection where the intruder is active rather than just passive. It is designed to issue an alert if a binary file is altered (compromised) in any way.

Integrity Star Property
Integrity Star Property means that a user cannot read data of a lower integrity level than their own.

Internet Trail
The Internet Trail is the trace, left by your browser, of where you have been on the Internet

Internet Security and Acceleration (ISA) Server
Internet Security and Acceleration (ISA) Server is a firewall and secure application gateway product by Microsoft.

Intrusion
Intrusion is a violation of system security policy by an unauthorized outsider or by an otherwise authorized user. A violation could include improperly accessing the network, accessing certain systems within the network, accessing certain files, or running certain programs.

Intrusion Detection
Intrusion Detection is a security management process for computers and networks, in which information from various areas within a computer or a network are gathered and anlyzed to identify possible security breaches, which include both intrusions and misuse. The hardware or software systems with the intrusion detection functions are called Intrusion Detection System (IDS).

Intrusion Prevention
Intrusion prevention is a preemptive approach to network security used to identify potential threats and respond to them swiftly. In addition to monitor network traffic, intrusion prevention systems also have the ability to take immediate action, based on a set of rules established by the network administrator.

Inverse Mapping
Inverse mapping is a procedure used to create associations between real or virtual objects that involves some type of reversal of another process or concept. Various types of inverse mapping are used in a wide range of mathematical applications.

IP Address
IP address is an identity of a computer or other network device on a TCP/IP network. Networks using the TCP/IP protocol route packets based on the IP address to its destination. For the most TCP/IP networks which are based on the IPv4, the format of an IP address is a 32-bit numeric address written as four numbers separated by periods. IPv6 uses 128-bit binary for addressing purpose. IPv6 addresses are expressed in hexadecimal format (base 16) which allows not only numerals (0-9) but a few characters as well (a-f).

IP Flood
IP Flood is a type of Denial of Service attack whereby the victim or system is flooded with information, using up all available bandwidth thereby preventing legitimate users from access.

IP Forwarding
IP Forwarding is an Operating System option that allows a host to act as a router. A system that has more than one network interface card must have IP forwarding turned on in order for the system to be able to act as a router.

IP Fragmentation Attack
IP Fragmentation Attack is also called Overlapping Fragment Attack. In an Overlapping Fragment Attack, the re-assembled packet starts in the middle of another packet. As the operating system receives these invalid packets, it allocates memory to hold them. This eventually uses all the memory resources and causes the machine to reboot or hang.

IP Sequence Prediction Attack
Using the SYN Flood method, a hacker can establish connection with a victim machine and obtain the IP packet sequence number in an IP Sequence Prediction Attack. With this number, the hacker can control the victim machine and fool it into believing it's communicating with another network machines. The victim machine will provide requested services. Most operating systems now randomize their sequence numbers to reduce the possibility of prediction.

IP Spoofing
IP Spoofing is a technique used to gain unauthorized access to computers, whereby the attacker sends messages to a computer with a forged IP address indicating that the message is coming from a trusted host.There are a few variations on the types of attacks of using IP spoofing.

IP address restriction
IP address restriction refers to controlling access through Internet Protocol (IP) addresses, such as to deny access or to restrict previligies of certain IP addresses.

IP address spoofing
IP address spoofing, also known as IP spoofing, refers to the process of falsifying the source Internet Protocol (IP) address of IP packets.

IP address–based authentication
IP address-based authentication refers to authenticating hosts based on their Internet Protocol (IP) addresses.

IP fragmentation attack
IP fragmentation attack refers to an attack that uses fragmented Internet Protocol (IP) packets.

Iplog
Iplog is an open source tool for logging Transmission Control Protocol/Internet Protocol (TCP/IP) traffic.

IP: Internet Protocol
The Internet Protocol (IP) is a network-layer (Layer 3) protocol in the OSI model that contains addressing information and some control information to enable packets being routed in network. IP is the primary network-layer protocol in the TCP/IP protocol suite. Along with the Transmission Control Protocol (TCP), IP represents the heart of the Internet protocols.

IPS: Intrusion Prevension System
Like an intrusion detection system (IDS), an intrusion prevention system (IPS) monitors network traffic. IPS (intrusion prevension system) technologies are new generation of IDS, which not only detect intrusion but also take actions to automatically block attacks, based on a set of rules established by the network administrator.

IPsec VPN
IPsec VPN refers to the virtual private nework basedon the IPsec technologies, which is the primary layer 3 VPN technology. The IPSec protocol typically works on the edges of a security domain, which encapsulates a packet by wrapping another packet around it. It then encrypts the entire packet. This encrypted stream of traffic forms a secure tunnel across an otherwise unsecured IP network.

IPSec filter
IPSec filter is a rule for filtering Internet Protocol (IP) traffic. The IP filter tells an OS such as Windows that a certain type of IP packet need to have some type of action applied to them. In this case, that action (the filter action) may be to secure the packets. The IP filter list is a collection of individual filters that the filter action is applied to.

IPSec policy
IPSec policy refers to the policy for implementing Internet Protocol Security (IPSec). For example, in Windows OS, IPSec policies govern when and how Windows uses the IPSec protocol. The IPSec policy interacts directly with the IPSec driver. The policy tells Windows such things as which data to secure and which security method to use. IPSec policies work by determining which IP traffic should be secured and which IP packets should be left alone.

IPsec: Internet Protocol Security
IP Security (IPsec) is a group of protocols that provides security services at the network layer by enabling a system to select required security protocols, determine the algorithm(s) to use for the service(s) and put in place any cryptographic keys required to provide the requested services. IPsec can be used to protect one or more "paths" between a pair of hosts, between a pair of security gateways or between a security gateway and a host.

IPSO: IP Security Option
IP Security Option (IPSO) is a U.S. government specification that defines an optional field in the IP packet header that defines hierarchical packet security levels on a per-interface basis.

IPX Spoofing
IPX Spoofing is a procedure used by hackers and other unauthorized users which enables a user to mimic a legitimate Novell NetWare network node, then gain access to data within a private network based on IPX. Spoofing can lead to severe security breaches and damage to the integrity of a company's operations.

ISA Server
Microsoft's ISA Server (Internet Security and Acceleration Server) is the successor to Microsoft's Proxy Server and is part of Microsoft's .NET support. ISA Server provides the two basic services of an enterprise firewall and a Web proxy/cache server. ISA Server's firewall screens all packet-level, circuit-level, and application-level traffic.

ISA Server: Internet Security and Acceleration Server
Microsoft's ISA Server (Internet Security and Acceleration Server) is the successor to Microsoft's Proxy Server 2.0 and is part of Microsoft's .NET support. ISA Server provides the two basic services of an enterprise firewall and a Web proxy/cache server. ISA Server's firewall screens all packet-level, circuit-level, and application-level traffic.

ISACA: Information Systems Audit and Control Association
Information Systems Audit and Control Association (ISACA) is a global organization concerned with information assurance (IA) and control.

ISAKMP: Internet Security Association and Key Management Protocol
The Internet Security Association and Key Management Protocol(ISAKMP), a key protocol in the IPsec architecture, defines payload formats, the mechanics of implementing a key exchange protocol, and the negotiation of a security association.

ISAPI: Internet Server Application Programming Interface
Internet Server Application Programming Interface (ISAPI), an API for Microsoft's IIS (Internet Information Server), enables programmers to develop Web-based applications run faster than conventional CGI programs.

ISC2: International Information Systems Security Certification Consortium
International Information Systems Security Certification Consortium (ISC2 or (ISC)²), is the internationally recognized Standard for educating and certifying information security professionals throughout their careers. Founded in 1989, (ISC)² issues the Certified Information Systems Security Professional (CISSP ®) and related concentrations: Information Systems Security Architecture Professional (ISSAP ®), Information Systems Security Management Professional (ISSMP ®) and Information Systems Security Engineering Professional (ISSEP ®); the Certification and Accreditation Professional (CAP CM); and the Systems Security Certified Practitioner (SSCP ®) credentials to those meeting the necessary competency requirements. Several of (ISC)²'s credentials meet the stringent requirements of ISO/IEC Standard 17024, a global benchmark for assessing and certifying personnel.

Island-hopping
Island-hopping, in information security, refers to the situation of using one compromised system or network to break into another.

ISO 17799
ISO 17799 is an international standard by ISO outlining best practices for information security.

ISSA: Information Systems Security Association
Information Systems Security Association (ISSA) is an independent organization of security professionals.

ISSAP: Information Systems Security Architecture Professional
Information Systems Security Architecture Professional (ISSAP) is a concentation of the Certified Information Systems Security Professional (CISSP) program provided by the International Information Systems Security Certification Consortium (abreviated as ISC2, (ISC)2 or ,(ISC)²). For CISSPs at the top of their fields, an (ISC)² ISSAP credential demonstrates competence in the rigorous requirements for information security architecture. Candidates for the ISSAP must be a CISSP in good standing, pass the ISSAP examination and maintain the credential in good standing.

ISSEP: Information Systems Security Engineering Professional
Information Systems Security Engineering Professional (ISSEP) is a concentation of the Certified Information Systems Security Professional (CISSP) program provided by the International Information Systems Security Certification Consortium (abreviated as ISC2, (ISC)2 or ,(ISC)²). For CISSPs at the top of their fields, an (ISC)² ISSEP credential demonstrates competence in the rigorous requirements for information security engineering. Candidates for the ISSEP must be a CISSP in good standing, pass the ISSEP examination and maintain the credential in good standing.

ISSMP: Information Systems Security Management Professional
Information Systems Security Management Professional (ISSMP) is a concentation of the Certified Information Systems Security Professional (CISSP) program provided by the International Information Systems Security Certification Consortium (abreviated as ISC2, (ISC)2 or, (ISC)²). For CISSPs at the top of their fields, an (ISC)² ISSMP credential demonstrates competence in the rigorous requirements for information security management. Candidates for the ISSMP must be a CISSP in good standing, pass the ISSMP examination and maintain the credential in good standing.

Issue-Specific Policy
An Issue-Specific Policy is intended to address specific needs within an organization, such as a password policy.

IT-ISAC: Information Technology Information Sharing and Analysis Center
IT-ISAC (Information Technology Information Sharing and Analysis Center) is a facility founded in January, 2001 by nineteen prominent IT industry companies (including Oracle, IBM, EDS, and Computer Sciences) to serve as a central repository for security-related information. The group's purpose is to share each organization's information about security attacks and vulnerabilities among all the members.

Itrace: ICMP Traceback
Itrace (ICMP Traceback) is a proposed modification to Internet Control Message Protocol (ICMP) that would enable Internet Protocol (IP) traffic to be traced to its source.

ITSEC: Information Technology Security Evaluation Criteria
Information Technology Security Evaluation Criteria (ITSEC) is a scheme for the evaluation of security products run in the UK by the DTI and CESG. ITSEC was probably the most successful computer security evaluation criteria of the 1990s. It offers greater flexibility than TCSEC and is easier and cheaper to use.

IV: Initialization Vector
An initialization vector (IV), also known as Initialization Value, is a term in Cryptography. IV is a block of bits that is combined with the first block of data in any of several modes of a block cipher. In some cryptosystems, it is random and is sent with the ciphertext; in others, such as a disk encryption subsystem, it is based on some info, such as the file's inode, that does not have to be put in the ciphertext.

IWA: Integrated Windows Authentication
Integrated Windows Authentication(IWA), formerly known as NTLM (NT LAN Manager), is a computer networking security protocol which operates in a variety of Microsoft Windows network protocols for authentication purposes. Like certain other protocols, IWA sits on top of HTTP. Web-browsing software uses it as a single sign-on mechanism, so browsing users can transparently log-on to web services using their Microsoft Windows credentials. Microsoft developed IWA, and it occurs mostly in Microsoft products, though other sets of software have implemented it as well, as in the Mozilla Firefox web-browser, the Apache web-server and the shell utility cURL.