Jeudi 11 Juin 2026 02:25:38 GMT+02:00
Netcrook
WIKICROOK
TERMES TECHNIQUES
.com.myA commercial second-level domain under Malaysia’s .my country-code namespace..ENCRTA file extension associated with some Gunra ransomware activity..env fileA configuration file often used in Laravel to store environment settings and sensitive credentials..htaccessA per-directory Apache configuration file that can change server behavior without editing the main config..ics fileA common attachment type used to distribute calendar invitations..LNK fileA Windows shortcut file that can be abused to disguise what a user is actually launching..NET FrameworkA Microsoft runtime used by many Windows applications, including code paths targeted by startup abuse..NET infostealerMalware implemented in Microsoft’s .NET environment that public information indicates was used to steal information..NET loaderA managed-code malware stage that can load additional components at runtime..NET resourceEmbedded data inside a .NET program, often used for images, strings, or hidden configuration..NET resource filesPackaged application data stored inside or alongside a .NET assembly..NET resource sectionA .NET assembly feature used to store embedded resources, which malware can abuse to hide data or configuration..NET resourcesEmbedded data inside a .NET assembly that applications can load at runtime..pth fileA Python startup file that can execute code when the interpreter begins loading site paths..pydA Windows Python extension module stored as a shared library that CPython can import..rdp fileA connection file that can store Remote Desktop settings and redirection requests..soA Linux shared library format that can also serve as a Python extension module.@antvA JavaScript package namespace associated with visualization tooling and related libraries./etc/ld.so.preloadA preload file that can force shared objects to load before others in dynamically linked programs./etc/shadowA protected Linux file that stores password hashes and account metadata.0-dayA vulnerability that is being used or can be used before a reliable fix is broadly available.0x800f0922A Windows Update installation-failure code with multiple possible causes, including disk-space or component-related issues.2.0 systemA stereo speaker configuration with two main channels and no subwoofer.2.1 systemA speaker setup with two main channels plus a subwoofer for deeper bass.24/7 contact pointA national channel available around the clock for urgent cooperation requests in cyber investigations.2FAAuthentification à deux facteurs, une méthode de connexion qui exige une seconde étape de vérification en plus du mot de passe.3D accelerationthe use of dedicated hardware to help render three-dimensional graphics.3D captureA workflow that uses multiple views or images to help rebuild a spatial scene.3D modelA digital three-dimensional representation often derived from imaging data for visualization or planning.3D printabledesigned so a part can be manufactured on a 3D printer.3D printerA machine that builds physical objects layer by layer from digital instructions.3D printingA method of building objects layer by layer from a digital model.3D scanningThe process of capturing an object’s shape in digital form.3D SensingA class of depth measurement that helps systems understand position, shape, and relative space.5E ModelAn instructional sequence of Engage, Explore, Explain, Elaborate, and Evaluate used to structure active learning.5GThe fifth generation of mobile network technology, used for higher-speed and lower-latency communications.6GThe next major mobile-network generation, with research tied to AI, sensing, and new service models.8-bit CPUA processor architecture that handles data in 8-bit chunks, with limited memory and modest performance.80386an Intel-era 32-bit processor architecture often used as a reference point for compatibility and retrocomputing.8080an early Intel microprocessor used as a reference point in classic computing.À double usageTechnologie pouvant servir à la fois au travail défensif et à des abus nuisibles.A2A protocolAn open interoperability standard intended to support communication between agents and platforms, subject to identity, permissions, and policy controls.AArch64The 64-bit execution state used by ARM processors.ABAPSAP’s application language and development environment for building and extending enterprise systems.AbstentionA model behavior where the system declines to answer when it lacks enough confidence or evidence.AbstractionA simplified way of organizing complexity so the system is easier to understand and maintain.Abus d’identifiantsUtilisation de noms d’utilisateur et de mots de passe valides pour accéder à des systèmes sans autorisation.Abus de comptes validesUtilisation d’identifiants volés ou compromis pour accéder à des systèmes sans déclencher d’alertes évidentes liées à des logiciels malveillants.Abus de comptes validesUtilisation d’identifiants volés ou légitimes pour se fondre dans le décor et contourner les défenses périmétriques.Abus de l'accès à distanceUtilisation abusive d'outils comme les VPN ou les plateformes d'administration à distance pour se déplacer au sein d'un réseau.Abus de logiciels de confianceUne tactique consistant pour les attaquants à utiliser des programmes légitimes en apparence ou signés afin de faire paraître normale une activité malveillante.Abus de routeurL’utilisation de routeurs compromis pour masquer le trafic, préparer des attaques ou relayer des activités malveillantes.Abus du bureau à distanceUtilisation abusive d’outils d’accès à distance ou de identifiants volés pour atteindre des systèmes internes.Abus du canal de supportL’utilisation des outils du support, des chats ou des tickets comme point d’entrée pour l’ingénierie sociale ou la diffusion de logiciels malveillants.AbuseRepeated misuse of a service, feature, or workflow in ways that create loss or friction.Abuse detectionsecurity monitoring that looks for misuse, suspicious patterns, or policy violations.Abuse handlingThe process a provider uses to review and respond to misuse reports.Abuse reportingA process for flagging malicious content so a platform can review and remove it.Acceptable Use Policy (AUP)Rules that define how a service may and may not be used, including bans on abuse.Acceptable-use policyWritten rules that define permitted behavior for a system.Acceptance criteriaClear conditions that define when a change is complete and correct.AcceptorThe listener configuration that defines how a broker accepts incoming connections.Accès à distanceOutils ou services qui permettent aux administrateurs de gérer des systèmes depuis l’extérieur du réseau.Accès au niveau rootLe privilège administratif le plus élevé sur un serveur de type Unix, permettant un contrôle étendu du système.Accès avec autorisationUn modèle où les fonctionnalités sont disponibles uniquement pour les utilisateurs ou organisations approuvés.Accès avec compte valideUtilisation de noms d’utilisateur et de mots de passe légitimes pour entrer dans un environnement cible.Accès conditionnelUn contrôle de sécurité qui applique des règles telles que MFA, des vérifications de l’appareil ou des limites de localisation avant d’accorder l’accès.Accès de confiance pour le cyber (TAC)Un cadre fondé sur l’identité et la confiance pour limiter l’IA à capacité cyber aux utilisateurs approuvés.Accès initialLe premier point d'appui qu'un attaquant obtient à l'intérieur d'un système ou d'un réseau cible.Accès mainteneurAutorisations qui permettent à des contributeurs de confiance de gérer le code, les versions et les paramètres du dépôt.Accès non autoriséAccès à un système ou à un compte sans autorisation, souvent le point de départ d’un incident de sécurité.Accès privilégiéDes autorisations élevées qui peuvent contrôler des comptes, des serveurs, des sauvegardes ou des paramètres cloud.Accès utilisateur invitéParamètres d’accès public ou non authentifié dans les portails cloud, susceptibles d’exposer des données en cas de mauvaise configuration.Access abuseMisusing legitimate credentials or sessions for unauthorized activity.Access barrierA condition that makes it harder for smaller participants to use a technology, platform, or service.Access BrokerA criminal actor that obtains or resells access to compromised systems for later use.Access brokeringThe resale or transfer of unauthorized access to another party.Access control list (ACL)A rule set that defines which users or systems are allowed to access a resource.Access control segmentationSeparating users, systems and permissions so a failure in one area does not spread everywhere.Access controlsSecurity rules that limit who can view, use, or move sensitive data.Access inequalityUneven ability to obtain care because of geography, transport, or service distribution.Access keyA long-lived credential used to authenticate programmatic requests to a cloud account.Access loggingRecorded system activity that helps investigators determine who entered a system, when, and what they did.Access monitoringWatching for unusual logins, account changes, or unauthorized use patterns.Access networkThe part of a telecom system that connects users and providers to the core network.Access pointAny public entry route, such as a domain or URL, used to reach an online service.Access policyA rule that controls who can reach data, services, or administrative functions.Access reviewthe process of checking account permissions and activity for signs of abnormal or unsafe use.Access tierA permission level that controls who can use a product or feature.Access Token ManipulationA method for impersonating another user or process by abusing authentication tokens already present on a system.Access-control bypassA failure where a user reaches something the system was meant to block.AccessibilityDesigning systems so candidates with disabilities can use them without unfair barriers.Accessibility permissionA powerful Android setting that can be abused for screen reading and device control.Accessibility ServiceAn Android feature for assistive use that can be abused for broader device control.AccessibilityServiceAn Android service/API designed for assistive apps, but often abused by malware for screen reading, overlays, and input automation.Account abuseMisuse of legitimate accounts for actions not allowed by the service.Account authorizationA permission step that lets one service access data from another service on a user’s behalf.Account blockinga control that prevents suspicious identities from using a platform.Account compromiseUnauthorized access to an online account after credentials or authentication are abused.Account DiscoveryReconnaissance activity that identifies valid users and accounts inside a target environment.Account HijackUnauthorized takeover of an account, often used for impersonation or fraud.Account hijackingTaking control of an online account by using stolen credentials, cookies, or session data.Account hygieneBasic practices that help keep an account secure, such as unique passwords and careful access review.Account integrityThe degree to which an online account remains accurate, protected, and free from unauthorized changes.Account LinkageThe connection between two services that allows data to move between them.Account linkingThe requirement to connect or open multiple accounts within one product flow.Account lockoutA control that temporarily blocks access after too many failed sign-ins.Account onboardingThe signup process that creates and initialises a new user account.Account recovery flowThe process used to regain access to an account, which attackers may try to abuse if they control related identifiers.Account reuseusing the same login across multiple services, which can increase exposure if credentials are misused.Account sessionThe active authenticated state that determines which user identity an app is using.Account takeoverunauthorized control of a user account, often used for fraud or lateral movement.Account Takeover (ATO)Unauthorized control of a real user account by someone who is not the owner.AccountabilityThe ability to trace decisions back to named owners, evidence, and documented controls.AccreditationFormal authorization that a system meets required security controls before operational use.ACLAccess control list; rules that limit which systems can reach a service or interface.ACMEAn automation protocol used to request and renew TLS certificates.ACNItaly’s national cybersecurity authority, used here as the reference point for NIS scope organization.Acquirente UnicoThe entity associated with hosting and managing the SII infrastructure and related market data processes.acte d’exécutionUn instrument juridique utilisé pour appliquer les règles de l’UE de manière plus détaillée et opérationnelle.ActionThe command an automation performs after it is triggered.Activation eventA trigger that starts an extension, including conditions that can fire when a workspace or matching folder is opened.Activation windowThe limited period during which an offer can be started or completed.Active DirectoryLe service d’annuaire de Microsoft pour les utilisateurs, les appareils et les autorisations dans les réseaux d’entreprise.Active exploitationWhen attackers are already using a vulnerability in real-world attacks.Active sessionsCurrent logins that show where an account is in use and can help spot unwanted access.activeTabA Chrome permission that grants temporary access to the active tab after a user gesture.ActiveXA Microsoft component model used in older browser and application integrations, often tied to legacy risk.Activité d’identitéComportement des utilisateurs et des comptes, comme les connexions, les changements de privilèges et les événements d’authentification.Activity clusterAn analyst label for related malicious activity that may involve different samples or operators.Actuated Experience Labthe lab named as the project's research home.ActuatorA component that creates physical movement, such as a motor in a simple robot.Ad blockerA tool that prevents many ads and tracking elements from loading in a browser or app.Ad fraudDeceptive activity that creates fake ad interactions to generate money or distort campaign results.Ad inventoryThe available advertising space or impressions a publisher can sell to marketers.Ad-supported tierA lower-priced plan that includes advertising in exchange for reduced subscription cost.Adaptateur TRRS/TRSUn connecteur ou un câble utilisé pour relier différentes normes de prises audio, pouvant parfois affecter le routage des canaux et l'alimentation.Adaptive AIA system that changes content or recommendations based on user behavior, role, or prior interaction.Adaptix C2A dual-use offensive framework designed for authorized testing that can be repurposed as operator tooling in malicious campaigns.AdaptixC2A publicly known post-exploitation framework that can be repurposed as operator tooling in intrusions.ADASAdvanced Driver Assistance Systems, features that support the driver but do not replace human responsibility.adbdLe démon Android qui gère les commandes de débogage et fournit un accès au shell via ADB.ADCApplication Delivery Controller, a device that manages and optimizes application traffic between users and backend services.Additive manufacturingA layer-by-layer production method that turns digital designs into physical objects.Adjacent networkA network position close enough to reach a service without full internet exposure.Admin AccessPrivileged login rights used to configure and control a device.Admin APIA privileged management interface that uses secret credentials for authenticated actions.Admin credentialsHigh-privilege account secrets that can control sensitive systems and settings.Admin panelA web-based management interface used to control a device or service.Admin surfaceThe privileged interface used by editors or operators to manage a platform.AdminBinUn chemin d'exécution backend privilégié utilisé pour des actions administratives.AdministrateurLa personne responsable de la gestion des contrôles techniques et opérationnels d’une plateforme.Administrateur de place de marchéLa personne qui contrôle les opérations techniques, les accès ou la maintenance d’une plateforme.Administrative accessAccounts that can change website settings, content, or server configuration.Administrative accountAn account with elevated permissions to manage a system or appliance.Administrative digitizationMoving office and paperwork workflows into digital systems.Administrative sanctiona penalty imposed by a regulator for breaching legal or regulatory obligations.Administrative shareA built-in Windows share often used for management tasks, but risky if abused remotely.Administrator accountThe highest-privilege role in WordPress, able to manage users, settings, and site components.Administrator roleThe highest-privilege WordPress role on a single site, with broad management powers.Adoption frictionBarriers that slow the shift from an existing tool to a new one.Adresse IPUn identifiant réseau numérique qui peut aider les enquêteurs à retracer l’hébergement, le routage ou l’exposition, mais qui ne permet pas, à lui seul, d’identifier un attaquant.ADS-BA radio broadcast system aircraft use to share identification and position data.Advanced huntingA query-based investigation feature used to search recent security telemetry.Advanced Metering Infrastructure (AMI)The communications and data system that connects smart meters with utility operations.Advanced Persistent Threat (APT)A long-term, often well-resourced intrusion campaign designed to stay hidden and maintain access.Advanced ProtectionAn Android security framework that includes stronger safeguards for higher-risk users.Advanced Protection ModeAn Android security mode that applies stronger protections for higher-risk users.Adversaire-au-milieuUne attaque par relais où un attaquant intercepte le trafic entre un utilisateur et un service légitime.Adversarial attackA technique that tries to mislead an AI model through manipulated inputs or data.Adversarial inputA specially designed input intended to confuse or mislead an AI model into making a faulty decision.Adversarial TrainingA robustness technique that trains models against crafted attacks, usually by adding extra optimization steps during training.Adversary emulationSimulating attacker behavior to test defenses, detections, and response procedures.Adversary-in-the-Middle (AitM)An attack where a criminal proxy captures or relays authentication traffic between a user and a service.Adverse ImpactA process outcome that disproportionately harms a protected group, even without intent.Advisory IDA unique identifier used to track a security advisory across tools and workflows.AdwareSoftware focused on unwanted advertising, redirects, and content manipulation for monetization.AEADAuthenticated encryption with associated data; it provides confidentiality and integrity together, but not parser safety.AerodynamicsThe study of how air moves around objects and affects their behavior.AES-CTRA mode that turns AES into a stream cipher by encrypting counter values and XORing the result with data.AES-CTR/AES-GCMEncryption modes linked in technical analysis to M3rx tooling, but not proven for this specific incident.AES-GCMAn authenticated encryption mode that provides confidentiality plus integrity checking.Affichage e-paperUne technologie d’écran à faible consommation qui conserve une image visible sans rafraîchissement continu.AffiliateAn operator who uses RaaS tooling to launch intrusions in exchange for a share of profits.Affiliate activityRecords showing how outside partners are recruited, coordinated, or paid inside a RaaS program.Affiliate codeA tracking token used to attribute a purchase or referral to a partner.Affiliate ModelA structure in which independent actors carry out attacks using a shared criminal brand, infrastructure, or malware family.Affirmation de ransomwareUne déclaration publique d’un acteur malveillant ou d’un flux alléguant une attaque ou un événement d’extorsion.Affirmation non vérifiéeUne allégation rapportée qui n’a pas encore été confirmée de manière indépendante par des preuves techniques.AFPApple Filing Protocol, un protocole Apple de partage de fichiers hérité, en cours d’abandon pour les sauvegardes réseau.AGCMItaly’s competition and market authority, which can help shape how consumer rules are applied.AGCOMItaly’s communications regulator, involved here as the body that can step in when negotiations fail.Age assuranceThe umbrella term for methods used to estimate or verify a user’s age online.Age gatingControls that restrict access based on a user’s age or age category.Age verificationA process used to confirm or estimate a user's age before access is granted.Age-Aware DesignProduct design that adapts safeguards, language, and controls to the needs of younger users.Age-sensitive defaultsProduct settings designed to be safer or less intrusive for younger users.AgeismBias or discrimination based on age, especially against older people.Agence excessiveUn schéma de conception d’IA risqué où un modèle peut effectuer des actions au-delà de ce qui est sûr ou prévu.Agent AIAn AI setup that chains multiple steps or tools to complete a task with limited supervision.Agent distributionThe process of sending software, code, or policy from a central server to managed endpoints.Agent frameworkSoftware that coordinates multi-step AI workflows, tool calls, and branching logic.Agent hijackingA form of attack where a tool-using AI system is manipulated into taking unintended actions.Agent identityA cloud identity object used to represent an AI agent for authentication, authorization, and audit purposes.Agent modeAn AI feature that can take multi-step actions with external tools or services.Agent orchestrationThe coordination of one or more AI agents across multi-step workflows and tool calls.Agent RegistryA system of record that tracks AI agents, their owners, permissions, and lifecycle state.Agent SDKA developer toolkit for building AI agents that can use tools, files, and command execution in automated workflows.Agent securityControls that limit what an autonomous AI agent can access, decide, and execute.Agent sprawlThe rapid growth of many AI agents across an organization, making oversight harder.Agent Trust Protocol (ATP)Un protocole ouvert en cours d’élaboration, décrit comme prenant en charge l’identité des agents IA, leur périmètre et la vérification de leurs actions.Agent-Level Code InjectionA scenario where malicious code is pushed or inserted into software agents running on endpoints.Agent-nativeA design approach where AI agents can carry out multi-step tasks, not just single prompts or autocomplete.AgentforceSalesforce’s agent platform for building AI systems that can search context and execute workflows.Agentic AutomationAI-driven workflows where software agents can take actions, not just generate answers.Agentic codingAI-assisted development where a tool can plan, edit, test, and submit code changes with limited human prompting.Agentic commerceA model where an AI agent acts on behalf of a human principal to complete purchases or transactions.Agentic CRMA CRM operating model where automated agents can carry out business actions with limited human intervention.Agentic Detection and Response (ADR)Security monitoring designed to observe and defend autonomous AI workflows.Agentic development platformA tool stack where AI agents can plan and carry out development tasks across multiple interfaces.Agentic harnessA framework that lets AI models carry out tasks with tool use and workflow constraints.Agentic infrastructureA system in which search can interpret inputs and take actions on behalf of a user.Agentic loopThe repeated retrieve-reason-act-observe cycle used by many AI agents.Agentic modelAn AI system capable of autonomous reasoning and action across tasks, which may include security research or remediation use cases.Agentic orchestrationCoordinating multiple agents so they can complete linked tasks across systems.Agentic platformA system where AI agents can perform tasks across multiple tools, often with shared context and orchestration.Agentic SOCA security operations model in which AI agents help carry out detection, investigation, and response tasks alongside human analysts.Agentic softwareSystems that can take actions with limited human prompting, often by using tools or services.Agentic systemsAI systems that can take actions, call tools, or chain tasks with limited human prompting.Agentic WebA model where AI agents can coordinate tasks and take actions across systems with limited human input.Agentic workflowAn AI process that can take structured actions, reason over context, and move through multiple steps with oversight.AGENTS.mdA repository instruction file that can shape how AI coding tools interpret and act on project guidance.AGIArtificial General Intelligence, a hypothetical system with broad human-like cognitive ability.AgileAn iterative software development method based on short cycles and frequent adaptation.Agile delivery modelA flexible delivery approach that uses short cycles, feedback, and iteration to produce working results.Agrégateur OSINTUn service qui collecte des renseignements publics, comme des публикаций de sites de fuites, sans vérifier chaque affirmation.AGV (Automated Guided Vehicle)A mobile industrial vehicle that moves materials through a plant using automated guidance.AI acceleratorSpecialized hardware, often a GPU, built to speed up machine learning and inference workloads.AI ActLa loi de l’Union européenne qui établit un cadre fondé sur les risques pour les systèmes d’IA.AI adoptionThe point at which AI becomes part of everyday work and decision-making, not just an available tool.AI agentA system that can plan tasks and use tools or services with limited supervision.AI agent skillA packaged capability that extends an AI agent with a specific function or workflow.AI agentsSoftware systems that can perform tasks, make decisions, or carry out actions with limited supervision.AI Assistant panelA malicious-tool interface that uses model labels or language-model functions to draft campaign content.AI BOMA machine-readable inventory of the components, dependencies, and metadata that make up an AI system.AI Center of ExcellenceA centralized team that sets standards, coordinates expertise, and helps AI projects scale safely across an organization.AI Center of Excellence (CoE)A centralized team that standardizes AI practices, governance, and enablement across an organization.AI chat agentA conversational assistant inside a platform that can answer questions or support workflows.AI co-pilotAn AI assistant embedded in a workflow to help humans summarize, search, or decide, usually with guardrails.AI coding agentSoftware that can help write, edit, or run code with limited user guidance.AI coding assistantSoftware that helps generate, explain, or modify code with machine-generated suggestions.AI componentA Windows-managed AI-related module, model, or runtime that can be handled separately from the core system.AI control layerA security and governance layer placed around model use to enforce rules, monitoring, and safe behavior.AI Control TowerA centralized governance layer for tracking, securing, and measuring AI assets and activity.AI controlsSettings that let users enable or disable browser features powered by artificial intelligence.AI CopilotAn AI assistant that can help draft code or suggest fixes, but still requires human review.AI CredentialA secret or identity token that lets an AI system access other systems.AI CreditsA usage unit for metered AI services that helps translate model activity into billable consumption.AI cybersecurityThe practice of protecting AI systems, their data, and their integrations from misuse, compromise, or unsafe behavior.AI debtThe backlog of fixes and controls created when AI systems are deployed before governance, monitoring, and security mature.AI dependencyReliance on external AI services or models for core business tasks.AI factoryAn integrated infrastructure stack that turns compute, data, and software into AI services at scale.AI FinOpsCost-management practices for monitoring and controlling AI spend.AI fluencyThe ability to understand how AI systems work well enough to use, govern, and evaluate them responsibly.AI fluency surveysSelf-reported assessments that try to measure how confident people feel about using AI tools.AI FOMOPeur de manquer l’adoption de l’IA, poussant souvent les organisations à avancer avant que les contrôles soient prêts.AI for securityThe use of AI to assist detection, triage, and response in security operations, with its own governance needs.AI infrastructureThe combined compute, storage, networking, power, cooling, and operations needed to run AI systems in production.AI LifecycleThe stages of an AI system, from data preparation and training to deployment and monitoring.AI management systemAn organised set of policies, roles, and processes used to govern how AI is developed or used.AI marketingThe use of artificial intelligence to assist marketing tasks such as planning, segmentation, forecasting, and optimization.AI ModeGoogle Search’s experimental search experience for alternate query handling and responses.AI modelsoftware that learns patterns from data to make predictions or decisions.AI observabilityMonitoring AI systems in production for traces, latency, token usage, errors, and workflow behavior.AI OverviewAn AI-generated summary shown in Google Search to answer or synthesize a query.AI OverviewsGoogle Search summaries generated with AI and paired with supporting links.AI ownershipAn operating model where an organization keeps meaningful control over where AI runs, how it is accessed, and how it is governed.AI PlatformA software layer that supports the development, deployment, and governance of AI-driven features and workflows.AI power userIn this article, a small subset of employees who use AI tools heavily; the term is used as a working description, not a formal definition.AI readinessThe degree to which people, processes, and controls are prepared to adopt AI in daily operations.AI risk managementThe process of identifying, monitoring, and reducing harm from AI systems across their lifecycle.AI RMFLe cadre de gestion des risques liés à l’IA du NIST, une approche sur tout le cycle de vie pour identifier, mesurer et gouverner les risques de l’IA.AI ROIThe business value produced by AI compared with the cost, effort, and risk of running it.AI SBOMAn expanded inventory for AI systems that can include models, datasets, licenses, and operational dependencies.AI security debtThe buildup of unmanaged risk when AI adoption outpaces governance and security controls.AI skillA packaged set of instructions and supporting files that extends what an AI agent can do.AI SOCA security operations model that uses AI to assist with triage, correlation, investigation, or response.AI sovereigntyA governance idea centered on control over AI data, models, operations, and decision paths.AI supply chainThe ecosystem of software, models, data, and services involved in creating and running AI systems.AI systemA machine-based system that can generate predictions, content, recommendations, or decisions.AI technology stackThe full environment around an AI system, including hardware, cloud services, data pipelines, and application layers.AI trustPublic confidence that an AI system will behave predictably, fairly, and in line with expectations.AI usage controlPolicy enforcement around how employees interact with generative AI tools, including prompts, uploads, and data sharing.AI verificationChecking whether an AI system’s output is accurate, safe, and fit for use.AI voice cloningA synthetic speech method that imitates a specific voice instead of producing a generic one.AI web summarizationA feature that uses an AI model to condense web content into a shorter, readable summary.AI website builderA tool that uses automated generation to draft pages, text, or layouts for a website.AI work redesignThe process of changing tasks, responsibilities, and workflows so AI can be used in a more effective way.AI workflowA sequence of model-driven steps, which may include user prompts, tool calls, data retrieval, and automated actions.AI workloadA computing task that uses artificial intelligence models, often requiring high-density hardware and more power.AI writing assistantA text-generation tool that helps draft or edit written content.AI-assisted adversariesThreat actors that use AI to speed up or scale parts of an attack chain.AI-Assisted Command ReviewThe practice of checking model-generated commands before execution to reduce operational risk.AI-assisted developmentUsing AI tools to speed up coding, testing, and software assembly.AI-assisted securityDefensive tooling that uses machine learning or automation to support detection, triage, or response.AI-assisted vulnerability discoveryThe use of machine learning or agent-based tooling to help find software flaws more quickly.AI-Assisted WorkflowA process where AI helps with triage, summarization, or recommendations while humans retain control.AI-drivenA label for automated scoring, correlation, or prioritization methods that use machine learning or similar techniques.AI-driven detectionSecurity analytics that use machine learning or related methods to flag unusual behavior.AI-driven system componentsMicrosoft’s broad term here for Windows features with AI-related refinements, though the exact component is not identified in the excerpt.AI-generated codeSource code produced or drafted by a model and requiring human validation.AI-generated contentText, audio, images, or video produced or materially altered by artificial intelligence systems.AI-native securitySecurity practices designed for systems built around artificial intelligence.AI-native softwareSoftware designed so AI is part of the workflow, not just an add-on feature.AI-native telcoA telecom model designed around AI from the start, with software and automation embedded into core operations.AI-OSINTL’utilisation d’outils d’IA pour soutenir des tâches de renseignement en sources ouvertes, telles que le tri, l’extraction et la synthèse.AI-related psychosisA cautious clinical label for psychosis-like experiences discussed in connection with AI use, not a confirmed diagnosis here.AIOpsAI-assisted IT operations that use correlation and automation to reduce manual triage.Air-gapped deploymentA system isolated from public networks to reduce exposure and tighten operational control.Air-tightSealed closely enough to prevent noticeable air leakage.Aircraft trackingThe process of monitoring aircraft movement using flight data and receivers.Airflowthe movement of air that carries dust, chips, or other particles.Airflow managementThe planning of air movement through a space to support ventilation and reduce buildup.AIVSSA risk-scoring framework used to prioritize security issues in AI and agentic systems.AJAXA web mechanism that sends and receives data without reloading the page, often used by dynamic plugins.AJAX endpointA server-side handler that processes asynchronous web requests, often used by plugins for background actions.AkiraA ransomware actor associated with Windows and VMware ESXi environments and disruptive host activity.Alert EnrichmentAdding external or internal context to a raw alert so analysts can judge its importance faster.Alert fatigueThe reduction in analyst attention and effectiveness caused by too many security alerts, many of them low value.Alert noiseA high volume of low-value alerts that makes it harder for analysts to identify real threats.Alert overloadA condition where security teams face more findings than they can realistically review.Alert TriageThe first-pass evaluation of an alert to decide whether it needs deeper investigation or immediate action.Algebraic number theoryA branch of mathematics that studies number systems using algebraic structures, sometimes useful in proof construction.Algocraziaa term used to describe the growing influence of algorithms over decisions and visibility.Algorithme de tradingLogique logicielle qui automatise la saisie et l’exécution des ordres sur les marchés électroniques.Algorithmic accountabilityThe idea that organizations may be answerable for harms linked to automated decisions.Algorithmic amplificationThe boost a platform gives to content that matches user behavior signals.Algorithmic biasSystematic unfairness in automated decisions caused by data, model design, or deployment choices.Algorithmic designThe rules and logic that determine how automated systems present content to users.Algorithmic ethicsThe practice of making AI systems transparent, accountable, fair, and subject to human oversight.Algorithmic governanceoversight rules for systems that make or support decisions using algorithms.Algorithmic managementUsing software rules and metrics to direct work and evaluate performance.Algorithmic PersonalizationUsing data and models to tailor content, offers, or rankings to individual users.Algorithmic TransparencyThe ability to inspect, explain, and review how an AI system reaches outcomes.Algorithmic welfareAutomated or AI-assisted decision systems used in benefits, eligibility, or social support workflows.Alignement du modèleTravail visant à maintenir le comportement d’un système d’IA plus proche de ses objectifs et de ses limites prévus.AlignmentThe process of shaping AI behavior so outputs follow intended goals and constraints.allowBypass()An Android VPN API option that can permit bypass behavior in supported configurations.AllowlistA security control that permits only approved sources, commands, or destinations and blocks everything else by default.AllowlistingA control that permits only approved software to run on a device.Alternative platforma service outside mainstream moderation systems that can host or monetize content.Altoids tinA small metal mint container often reused by makers as a compact enclosure.Aluminium usiné dans la masseUn bloc massif d’aluminium usiné pour devenir une pièce sur mesure plutôt que moulé dans un moule.Always-on agentAn AI system that remains active in the background and can act without waiting for each user prompt.Always-On VPNAn Android mode that keeps a VPN active and can block traffic that is not using the tunnel.Amateur nuclear physicsNonprofessional experimentation involving nuclear-related devices, measurements, or demonstrations.Ambient lightLight already present in the environment, such as sunlight or outdoor daylight.AML/CFTContrôles de lutte contre le blanchiment d'argent et le financement du terrorisme utilisés pour réduire les flux financiers illicites.Amministrazione condivisaa collaborative model in which public bodies and social organizations share responsibility for public-interest action.AmplificationThe process by which platforms, shares, or reposts increase the reach of harmful material.AMSIAntimalware Scan Interface, a Windows mechanism that lets security tools inspect content before it runs.ANACItaly’s national anti-corruption authority with a central role in public procurement oversight.Analog photographyPhotography that captures images on film instead of a digital sensor.Analyse de la blockchainLe processus de traçage des transferts de cryptomonnaie à travers les données du registre public.Analyse de secretsUn contrôle conçu pour détecter des identifiants ou jetons exposés dans le contenu d’un dépôt.Analyse des logiciels malveillantsAnalyse automatisée de fichiers utilisée pour détecter du contenu malveillant avant ou après le téléversement.Analytics platformthe system used to collect, process, and interpret behavior or usage data.Analytique prédictiveMéthodes statistiques et d’apprentissage automatique utilisées pour prévoir des résultats futurs à partir de données.Ancillary servicesExtra functions or support services billed alongside the main connection.Ancrage de révisionVerrouiller un outil ou un modèle sur un commit ou une version spécifique afin de réduire le risque lié à la chaîne d’approvisionnement.Ancrage de versionVerrouiller un système sur une version connue afin de réduire les mises à jour inattendues et la dérive de confiance.Ancrage des dépendancesVerrouiller un projet sur des versions de paquets spécifiques afin de réduire le risque lié aux mises à jour inattendues.AndroidA mobile operating system built on top of the Linux kernel.Android 12+Android devices running version 12 or later, which are eligible for this rollout.Android Accessibility ServicesA legitimate Android feature that can help users interact with apps, but can be abused if a malicious app gains permission.Android AutoGoogle’s phone-projected car interface for navigation, calls, messages, and media.Android banking trojanMalware built to target financial apps and steal credentials or payment access.Android Debug Bridge (ADB)A developer tool that can also become a useful sign of suspicious device access.Android FrameworkThe privileged Android layer that provides core services between apps and the operating system.Android malwareMalicious software built to run on Android devices and abuse mobile permissions or app workflows.Android RATMalware that gives an attacker remote interactive control over an Android device.Android Security BulletinGoogle’s monthly advisory that lists fixed vulnerabilities and the patch level that addresses them.Android trojanMalicious software that disguises itself as a normal app while performing harmful actions in the background.ANGLEA graphics translation layer used by Chrome to handle web graphics on different back ends.Angular Language ServiceAn editor feature that provides Angular template intelligence such as completions and diagnostics.AnisotropieRésistance dépendante de la direction, courante dans les pièces imprimées car les couches ne se lient pas de manière égale dans toutes les directions.Annex SLThe shared structure used across many ISO management standards, making integration more practical.Annonce sur un site de fuiteUne publication publique visant à faire pression sur la victime, signaler un accès ou forcer une négociation.Annulation d’échoTraitement audio qui réduit le retour en supprimant d’un signal le son réfléchi ou répété.AnomalyA pattern that differs from expected behavior and may warrant closer review.Anomaly detectionA method for flagging records or behavior that do not match expected patterns.Anonymity infrastructureSystems designed to reduce traceability, such as proxies, VPNs, or layered tunnels.Anonymized signalsUsage data stripped of direct identifiers before analysis.Anonymous attackAn exploit attempt that does not require a valid user account or login.Anonymous BrowsingA Reddit mobile-app mode that allows browsing without logging in while disabling several account-tied actions.Anonymous exploitationAbuse of a flaw without needing a valid login or authenticated session.Anonymous userA visitor without an authenticated account, often the most concerning starting point for internet-facing exploitation.Anthropomorphic chatbotA conversational AI designed to sound or behave in a humanlike way.AnthropomorphismAttributing human traits to non-human systems, including chatbots and AI assistants.AnthropomorphizationThe tendency to treat a machine as if it had human understanding or feelings.Anti-abuse controlA safeguard meant to make mass signup, spam, or automation harder.Anti-analysisEvasion techniques meant to frustrate scanners, sandboxes, researchers, or automated detection.Anti-analysis checksTests malware uses to detect sandboxes, virtual machines, or other lab environments.Anti-ForensicActions designed to hide attacker activity, erase logs, or complicate investigation.Anti-forensic behaviorActions intended to erase traces, hinder analysis, or slow incident scoping.Anti-ForensicsTechniques used to hide attacker activity, erase evidence, or weaken incident response visibility.Anti-jailbreakSafeguards that try to stop users from bypassing safety rules in an AI system.Anti-spoofingNetwork controls that block packets with forged source addresses and reduce abuse of reflected traffic.AntitrustRègles du droit de la concurrence qui peuvent être déclenchées lorsque la tarification ou la coordination commence à restreindre un comportement équitable du marché.AntivirusSoftware that scans a device or files for known malware and suspicious behavior.AnycastA routing method where the same IP is announced from multiple locations to direct traffic to the nearest or best path.Apache CalciteAn open-source framework used for SQL parsing, planning, and optimization.Apache FlinkA stream-processing engine designed for low-latency work on live and bounded data streams.Apache IcebergAn open table format that uses metadata to make large analytical datasets easier to query.Apache IncubatorThe Apache process for bringing new community projects under its governance model.Apache KafkaAn event-streaming platform for publishing, storing, and moving data in real time.APDUApplication Protocol Data Unit, the message format used in smart card and NFC exchanges.APIUne interface applicative qui permet aux logiciels d’échanger des données ou de demander des actions par programmation.API abuseMisuse of application interfaces to automate fraud, extract data, or disrupt services.API aliasA stable name that points to a model version, which can shift without code changes.API audit trailA record of requests and actions made through an application programming interface, useful for tracing misuse.API authenticationThe process of proving a system or user is allowed to connect to a service.API authorizationRules that decide what a client can access or change after it has authenticated.API de géolocalisationUne norme du navigateur qui permet aux sites web de demander la localisation d’un utilisateur après obtention de l’autorisation.API endpointA specific application interface used to receive and process requests.API exposureThe risk created when an application programming interface is reachable in ways that were not fully intended or protected.API hashingAn obfuscation method that replaces readable function names with hashes to hinder analysis.API integrationThe connection of one system to another so data and actions can move between them.API inventoryA complete list of exposed endpoints, versions, and dependencies used for governance and security.API pathThe route a request takes into a service’s backend, often separate from the visible user interface.API policyA governance rule set that defines which software interfaces can be used and under what conditions.API Restart ManagerUne fonctionnalité de Windows qui peut aider les logiciels à interagir avec des fichiers déjà ouverts par d’autres processus.API temps réelUne interface conçue pour des interactions en direct à faible latence, comme la parole à la parole ou la transcription en continu.API-driven platformA service architecture that uses application interfaces to connect functions, systems, and third-party tools.API-driven workflowA process where software actions are handled through application programming interfaces rather than only through a web page.API-firstA design approach that treats interfaces as a primary part of the product from the start.APKThe package format used to install Android apps, including apps installed outside official stores.APK sideloadingInstalling an Android app outside the official app store, a common malware delivery route.App category rulesPolicy boundaries that separate navigation, audio media, and video behavior in car software.App ecosystemthe collection of tools, documentation, and applications built around a platform.App groupAn Apple mechanism that lets related apps share a common container for files and other data.App Group ContainerA shared local storage area on Apple platforms used by apps and extensions with the proper entitlement.App handoffThe transfer of an active task or session from one device to another.App install promptA request that pushes a user toward downloading a native application instead of continuing in the browser.App IntentsA framework that lets apps expose actions to system features like Siri and Shortcuts.App launch interceptionA method of observing or altering what opens when a user starts an app.App SandboxAn OS control that limits an app’s access to system resources, with some entitlement-based exceptions.App signingCryptographic signing that identifies the publisher of an Android app, but does not guarantee safety.App StoreApple’s official distribution channel for iPhone and iPad apps, with review and policy controls.App Store submissionsapps uploaded for review before they can appear in the store.App supply chainThe chain of code, dependencies, vendors, and updates that shape how an app is built and delivered.App-Bound EncryptionA Chrome protection that ties encrypted browser data to the browser’s own identity through a privileged service.AppDomainManagerA .NET Framework component that helps control how application domains start and behave.AppDomainManager hijackingA .NET abuse method that can change how assemblies are loaded and executed.Append-only logA data structure where new entries are added without rewriting earlier ones, often used for auditability and replication.AppleThe company associated with the Apple II line and later Macintosh and MacBook systems.Apple IIAn early personal computer from Apple, widely remembered as one of the defining machines of the home-computing era.Apple IntelligenceApple’s AI layer for personal context, app actions, and privacy-aware processing.Apple siliconApple’s ARM-based chip family used in newer Macs, designed to replace Intel processors.AppleScriptApple’s scripting language for automating actions and controlling applications on macOS.ApplianceA purpose-built device or virtual system, often used for network, storage, or management functions.Appliance VPNUn dispositif ou service d’accès à distance qui peut devenir une voie d’intrusion s’il est vulnérable ou non corrigé.Application allowlistingA control that permits only approved software to run on a system.Application Delivery Controller (ADC)A system that directs and optimizes application traffic across servers and services.Application exposée au publicLogiciel ou service exposé à Internet et souvent ciblé pour un accès initial.Application PasswordsWordPress credentials designed for API and automation access rather than interactive logins.Application processthe steps a person completes to request a financial product.Application restrictionA limit that narrows where or how an API key can be used.Application ServerSoftware that runs web applications and manages the services they depend on.Application transfrontalière de la loiAction coordonnée des forces de l’ordre s’étendant sur plus d’un pays.Application-layer denial of serviceAn attack that targets request handling, state, or processing capacity instead of raw network bandwidth.AppraisalA structured review used to evaluate whether an organization meets a framework’s defined practices.Apprenticeship pipelineThe training path that turns beginners into experienced professionals through practice and mentorship.Apprentissage automatique adversarialDes attaques qui cherchent à manipuler ou à contourner des systèmes d’IA à l’aide d’entrées ou de données conçues à cet effet.Apprentissage centré sur l’humainUne approche qui place les personnes, le jugement et le contexte au centre de l’utilisation de la technologie.Apprentissage continuUne approche de formation qui considère le développement des compétences comme un besoin opérationnel permanent, et non comme un événement ponctuel.Approbation conditionnelleUne voie d’exemption étroite qui peut permettre à des appareils spécifiques de poursuivre le processus d’examen lié à la sécurité nationale.Approche centrée sur l’humainUne méthode de conception et de gestion qui place le jugement, la supervision et les besoins humains au centre.Approval criteriathe rules used to decide whether an applicant qualifies.Approval gateA control that requires human confirmation before an agent performs a sensitive action.Approval workflowa step-by-step process for authorizing sensitive actions.AppSecApplication security work that aims to find and fix weaknesses across the software lifecycle.APS Application CatalogPlesk’s application-management layer for browsing, installing, and maintaining packaged web apps.APS CatalogA Plesk application-management feature used for app discovery, installation, and related control workflows.APTAn advanced persistent threat, typically a well-resourced actor that favors stealth, patience, and repeated access attempts.APT28A threat cluster widely associated with GRU unit 26165 in public technical tracking.APUAccelerated Processing Unit, a chip that combines CPU and GPU functions.Arbitrary file readingA flaw that may let an attacker access local files beyond the intended scope of the application.Arbitrary file writeA flaw that can let an attacker alter or create files on a target system.Architectural GovernanceThe controls, rules, and review paths that shape how systems are built and changed.Architectural riskSecurity risk shaped by how a system is designed, connected, and governed.Architecture modulaireUne conception de système composée de parties séparables qui peuvent être mises à jour ou régionalisées sans tout remplacer.architecture Moon-to-MarsLe cadre à long terme de la NASA pour construire des systèmes qui prennent en charge d’abord les missions lunaires, puis, à terme, les missions vers Mars.Architecture zero trustUn modèle qui suppose l’absence de confiance implicite et exige une vérification continue des utilisateurs, des appareils et des services.Archive attachmentA compressed file sent through email or messaging that can conceal scripts or the next stage of malware.Archive nestingMultiple layers of folders or compressed content inside one file, used to complicate inspection.Archive parsingThe process of reading compressed files, a common security risk because the content may be attacker-controlled.archive RARUn conteneur de fichier compressé souvent utilisé pour dissimuler des pièces jointes ou regrouper des charges utiles.Archive recursionSecurity inspection that checks deeply nested folders and files inside compressed attachments.Archive stagingHiding a next-stage file inside a compressed package such as a ZIP to move it through filters and into execution.Archive-based deliveryA method that hides malware inside a compressed file such as a ZIP archive.ARERAItaly’s energy regulator, which oversees consumer information and market transparency tools.Arista EOSArista's network operating system used to manage and control network infrastructure devices.ArmoringProtective layers added to a cable, especially in shallow water, to reduce physical damage.Arnaque à l’usurpation d’identitéFraude qui se fait passer pour une marque de confiance ou une équipe d’assistance afin de voler de l’argent ou des identifiants.Artefact de hachageUne empreinte numérique de longueur fixe ou une valeur d’enregistrement utilisée pour identifier ou mettre en corrélation des données.Artefact de sessionDonnées liées à une session de connexion qui peuvent aider à révéler ou confirmer un accès non autorisé.Artefact médico-légalUn journal, un fichier ou un enregistrement de télémétrie qui peut aider à confirmer ce qui s’est passé lors d’un incident.Artemis IIMission d’essai habitée de la NASA utilisée pour valider son architecture d’exploration lunaire.Article 12(5) GDPRThe rule that lets a controller refuse or charge for requests that are manifestly unfounded or excessive, if that is proven.Article 123-bis TUFProvision governing corporate governance disclosure and ownership transparency.Article 15The EU rule that gives press publishers a right linked to the online use of their content.Article 15 GDPRThe right of access that lets a person ask whether their data is being processed and obtain related information.Article 50The AI Act provision that sets transparency rules for certain AI-generated and manipulated content.Article 82 GDPRThe compensation rule that can apply when a GDPR breach causes actual damage.Article 85 GDPRThe provision that requires Member States to reconcile data protection with freedom of expression and information, including journalistic processing.Artifact fingerprintA hash or identifier used to correlate a file, sample, or message across systems.Artifact hubA repository platform used to store and share code, models, datasets, or other files.Artifact integrityThe ability of a document or record to stay accurate and unchanged in meaning over time.Artificial consciousnessThe idea that a machine could possess subjective experience or awareness.Artificial emotionsEngineered emotional signals or responses that may simulate feeling without proving it.Artificial intelligenceSoftware that helps process data, detect patterns, or prioritize events.Artificial satelliteA human-made object placed into orbit around Earth or another body.Artificial streamsNon-genuine plays generated to inflate metrics or trigger payouts.AS9100A quality management standard for aviation, space, and defense organizations.Ascendance des processusLa relation parent-enfant entre les processus en cours d’exécution, souvent utilisée pour repérer des chaînes de scripts suspectes.ASGIA Python interface standard for asynchronous web applications and servers.ASHXA generic ASP.NET handler extension often used for lightweight request processing.ASL-style scaling controlsA tiered safety approach that increases safeguards as model capability rises.ASLRA protection that randomizes memory locations to make exploitation harder.ASNAutonomous System Number; an identifier for a network operator that can help analysts group related infrastructure.ASPXA standard ASP.NET page extension that IIS can route through normal web handling.Assembly languageA low-level programming language that maps closely to machine instructions.Assertion failureA program stop triggered when internal conditions are violated, commonly leading to an immediate crash.Assessment noticean administrative notice that can request payment or formal clarification.Assessment proceduresStructured methods used to check whether security requirements are implemented as intended.AssessmentsStructured reviews used to measure risk, gaps, and control maturity.Asset classificationorganizing assets by relevance or criticality to support security decisions.Asset criticalityA measure of how important a system or component is to operations, safety, or recovery.Asset discoveryThe process of identifying devices, services, and systems that are actually present and reachable.Asset freezea legal hold on funds or property that prevents transfer or withdrawal.Asset managementThe process of tracking and controlling hardware and software so security risk can be measured and reduced.Asset VisibilityThe ability to discover and track devices, software, and communications across a network.AssistA usage unit tied to AI skill actions, used for metering and billing in ServiceNow’s AI packaging.Assistive inputTechnology designed to help people interact with computers more easily.Assistive technologyTools such as screen readers or alternative input devices that help people use digital services.Association d’identitéLa pratique consistant à relier un service à une seule connexion centrale, comme un compte Google.Assume-BreachA design mindset that plans for possible compromise and limits damage through layered controls.AssuranceEvidence that a system meets a required safety or security standard for a specific use.Assurance frameworkA general set of standards and review processes used to evaluate whether a system meets security expectations.AsteriskOpen-source software used as the core engine for building PBX and telephony systems.AstroturfingCoordinated activity that creates the appearance of spontaneous grassroots support.Asymétrie de l'informationUne situation où un camp en sait plus que l'autre, ce qui crée de l'incertitude.At-Rest ProtectionSecurity measures that protect stored data on a device, such as encryption and file-protection settings.Atari clonea machine built to reproduce or closely follow the behavior of Atari-compatible systems.ATGAutomatic tank gauge, a computerized device used to monitor underground storage tanks.ATT&CKLe cadre de MITRE pour décrire les techniques et comportements des adversaires.ATT&CK T1102.002A MITRE technique for using web services as a bidirectional communication channel.Attack automationThe use of tools that speed up or scale malicious tasks, reducing attacker effort.Attack chainA sequence of linked steps that together can produce unauthorized or risky behavior.Attack chainingLinking multiple weaknesses into one plausible compromise path.Attack costthe financial impact of a cyber event, including response, recovery, and operational strain.Attack disruptionAutomated defensive action designed to contain suspicious or compromised activity.Attack PathA route an attacker may follow by combining weaknesses, permissions, and exposure to reach a target.Attack success rateThe share of test attempts in which an adversarial method achieves its intended outcome.Attack Surface ManagementThe practice of discovering and monitoring internet-exposed assets so organizations can reduce unnecessary risk.Attack surface reductionThe practice of shrinking the ways an attacker can reach systems, services, or data.Attack Surface Reduction (ASR)Security rules that block common abuse paths before code can run.Attack techniqueA method used to gain access, evade detection, or maintain control during an intrusion.Attack vectorThe path or method an attacker uses to reach a target system or workflow.Attack WindowThe period between a vulnerability becoming known and it being safely fixed or mitigated.attaque centrée sur l’identitéUn modèle d’intrusion qui repose sur des identifiants volés, l’ingénierie sociale ou l’abus de comptes plutôt que sur un simple logiciel malveillant.attaque de disponibilitéUne tactique qui perturbe l’accès aux systèmes ou aux fichiers sans nécessairement en modifier le contenu.Attaque de la chaîne d’approvisionnementUn chemin de compromission qui cible un composant amont de confiance, un fournisseur ou un processus de livraison.Attaque de la chaîne d’approvisionnementUne compromission du développement, du packaging, de la signature ou de la distribution logicielle, permettant à du code malveillant d’atteindre les utilisateurs via une voie de confiance.Attaque de la chaîne d’approvisionnement logicielleUne compromission visant les outils, les dépendances ou le processus de compilation utilisés pour produire un logiciel.Attention economyA digital environment where platforms compete to capture and monetize user attention.Attention measurementMetrics and methods used to assess how much audience attention an ad or content item receives.Attention mechanismA technique that helps a model focus more on the parts of the input that matter most for a prediction.AttestationA signed statement that describes how an artifact was produced or approved.Attestation d'artefactUne déclaration signée décrivant comment un artefact logiciel a été construit et d'où il provient.Attribute-Based Access ControlA policy model that grants access based on user, data, or context attributes.AttributionLe processus consistant à relier un incident à un acteur de menace spécifique, souvent sur la base de preuves incomplètes ou incertaines.Attribution hygieneThe practice of separating claims, assumptions, and verified facts when reporting cyber incidents.ATXUn format de boîtier courant pour PC de bureau qui définit la taille de base de la carte mère et les attentes de disposition pour les boîtiers compatibles.Audience growthThe increase in followers, readers, or viewers over a given period.Audience selectorA setting that controls which people can view a post or status update.Audita structured review that checks whether controls are working as intended.Audit baselineA record of normal system activity used to spot unusual or suspicious behavior.Audit loggingRecords of administrative and user actions that help prove what happened in a system.Audit logsRecords of actions, access, and administrative events used for security review and investigations.Audit RightsContractual and technical rights to inspect logs, actions, and access patterns for accountability.Audit trailA record of system actions that helps teams reconstruct what happened and why.Audit visibilityThe ability to review records of actions, changes, and access events for security oversight.AuditabilityThe ability to trace actions, decisions, and data handling after the fact.Auditable controlsSecurity or compliance measures that can be checked with records, logs, and repeatable verification.Augmented intelligenceAI used to support human judgment rather than replace it.Augmented perceptionTechnology-assisted ways of understanding the environment through digital tools and data.Authenticated attackerAn actor who already has valid access credentials or a logged-in session.Authenticated Domain UserA user who has valid domain credentials, even if that account does not have administrator rights.Authenticated local attackerA user who already has valid access on the target system before attempting abuse.Authenticated userA user who has successfully logged in or otherwise proved identity to the system.Authenticated VulnerabilityA flaw that can be triggered only after a user or attacker has logged in or otherwise gained legitimate access.Authenticated Workflow EditorA user who has logged in and has permission to create or modify workflows.AuthenticationA check that confirms a message, device, or user is legitimate before action is taken.Authentication anomalyA login pattern that deviates from normal behavior and may indicate abuse.Authentication codeA login-related credential that can help prove access to a service.Authentication FailureA weakness in login or account verification that can let an unauthorized user get in.Authentication hardeningSecurity measures that make logins harder to abuse, such as strong passwords and reduced credential reuse.Authentication logsRecords of sign-ins that help investigators spot suspicious access or credential abuse.Authentication methods policyThe admin control plane used to govern which verification methods users can register and use.Authentication middlewareCode that helps verify identity, but may not protect every endpoint by itself.Authentication overrideA GlobalProtect feature that changes how repeated authentication is handled in some deployments.Authentication override cookieA session mechanism used to reduce repeated logins in some remote-access setups.Authentication override cookiesSession-related cookies that can affect how a user re-establishes access.Authentication PortalA PAN-OS feature used to verify users before granting access.Authentication stateData that helps a client remember a logged-in session or trusted identity.Authentication SurfaceThe parts of a system that process login, trust, or identity requests.Authentication telemetryLogin and session records that help investigators trace access and validate claims.Authentication tokenA digital proof of identity or authorization that may be reusable until it expires or is revoked.Authentication verificationThe process of checking whether a user or system is properly identified before access is granted.Authenticityevidence that something is genuine rather than merely presented as genuine.Authentification à un seul facteurUne méthode de connexion qui repose sur une seule preuve d'identité, comme un mot de passe.Authentification des e-mailsDes contrôles SPF, DKIM et DMARC qui aident à vérifier si un message est légitime.Authentification forte du client (SCA)Une règle qui exige une vérification supplémentaire pour de nombreux paiements numériques afin de réduire la fraude.Authentification multifacteurUn contrôle de connexion qui exige plus d’une preuve d’identité.Authentification multifacteur (MFA)Une méthode de connexion qui exige plus d’une preuve d’identité.Authentification multifacteur (MFA)Un contrôle de connexion qui exige plus d’une preuve d’identité avant d’accorder l’accès.Authentification multifactorielleUne mesure de protection de connexion qui exige plus d’une preuve d’identité, réduisant l’impact des mots de passe volés.Authentification mutuelleUne vérification où les deux parties confirment leur identité avant qu’une connexion sécurisée ne soit acceptée.Authentification résistante au phishingMéthodes de connexion qui reposent sur une preuve cryptographique plutôt que sur des codes réutilisables ou de simples approbations.AuthN/AuthZAuthentification et autorisation, les vérifications qui confirment l’identité et contrôlent l’accès.Authoritative DNS serverA server that provides the official records for a domain it controls.Authoritative recordThe approved source of truth for a piece of information inside an organization.Authority effectThe tendency to trust a system more because its answers sound confident, fluent, or polished.Authority to Operate (ATO)Formal approval for a system to be used in a federal environment.AuthorizationThe check that decides whether a caller is allowed to access a resource or function.Authorization bypassA security failure that lets a user or attacker skip access controls they should face.Authorization FailureA security breakdown where a request is not properly checked for permission.Authorization headerAn HTTP header commonly used to send authentication credentials with a request.Authorization scopeThe legal and operational boundary that defines what a tool may be used on.Authorization timelinethe time needed for permits and approvals before a project can begin or expand.Authorization TokenA credential that can prove identity or grant access to privileged functions.Authorship verificationMethods used to assess who wrote a text or how it was produced.Auto-linked passa digital pass that is connected automatically to a related account or trip record.Auto-loadingA convenience workflow that fetches and selects model components automatically from a repository.Auto-provisioningAutomated assignment of access or permissions based on predefined policy logic.Auto-updateA mechanism that installs software updates automatically, reducing the time systems remain exposed to known bugs.AutofillA browser feature that inserts saved form data or passwords into web pages for convenience.AutoloaderA PHP mechanism that loads code files or classes when referenced; in this incident, Composer’s behavior was part of the execution path for malicious code.AutoloadingA mechanism that loads classes or files automatically when an application needs them.Automated containmentPre-approved actions that isolate or limit a threat at machine speed.Automated pentestingsoftware-driven security testing that repeats checks across systems to find weaknesses at scale.Automated remediationSecurity actions carried out through software workflows, such as password rotation or firmware updates.Automated systemA machine designed to carry out tasks with limited direct human control.Automated testingProgrammed checks that help confirm code behaves as expected.Automatic Attack DisruptionAn automated containment capability that can take response actions when a compromise is detected.Automatic detectionMachine-based identification of content without relying only on creator disclosure.Automatic reward deliveryA system that grants a perk without manual redemption by the user.Automatic Tank Gauge (ATG)An electronic system used to monitor fuel tank levels and related inventory or leak-detection functions.Automatic tutorial generatorA system that produces learning material such as explanations, exercises, or step-by-step guidance with automation.AutomationUsing software to carry out repetitive security tasks with minimal manual effort.Automation biasThe tendency to trust machine outputs too quickly, even when human judgment should intervene.Automation projectA workflow change that uses software or AI to perform tasks with less manual effort.Automation systemSoftware that performs routine tasks with limited human intervention.AutomationsPredefined actions or workflows that can run with limited human intervention.Automatisation d’OutlookContrôle programmatique d’Outlook via des interfaces intégrées que des logiciels malveillants peuvent détourner.Autonomous agentSoftware that can make decisions and act with limited direct human intervention.Autonomous AI agentsAI tools designed to operate with delegated authority rather than only answering prompts.Autonomous platformA system that can carry out predefined actions with limited human intervention.Autonomous softwarePrograms that can make decisions or take actions with limited human input.Autonomous systemA machine that can make decisions with limited human input.Autonomous System Number (ASN)An identifier for a routed network block, useful when tracking where infrastructure is hosted or moved.Autonomous validationVendor framing for automated testing of security controls after changes or updates.Autonomous weapon systemA weapon platform that can select and apply force to targets without direct human intervention after activation.Autonomous weaponsWeapons systems that can select and engage targets without direct human intervention.AutonomyThe ability of a system to make decisions or take actions with limited human intervention.Autonomy benchmarkA test that measures how independently an AI system can complete multi-step work without human guidance.AutoplayA feature that starts the next piece of content automatically, reducing deliberate choice and increasing drift in attention.Autorisation côté serveurVérifications d’autorisation effectuées par le serveur avant que des données ne soient renvoyées ou modifiées.Autorisations du siteParamètres du navigateur qui permettent aux utilisateurs d’autoriser, de bloquer ou de limiter l’accès pour des sites web individuels.Autorité de contrôleUn organisme public qui supervise le respect de la protection des données et peut enquêter sur les plaintes ou prendre des mesures d’exécution.Autorizzazione unicaA single authorization process designed to simplify multi-step permitting.Autostart mechanismAny startup path, such as Run keys or Startup folders, that causes software to launch automatically.AVN, PR:N, UI:N: CVSS metrics indicating network reachability, no required privileges, and no user interaction.Availability impactHarm caused when systems or data become inaccessible to legitimate users.Availability issueA security problem that disrupts normal operation, such as freezing, crashing, or service interruption.Availability riskThe chance that a vulnerability or failure disrupts normal service or system operation.Availability windowThe period during which a title or feature can be accessed.Aversion aux algorithmesUne tendance à se méfier des systèmes automatisés après les avoir vus commettre des erreurs.Avis à la victimeUne publication publique qui peut prétendre à une compromission ou faire pression sur une cible, souvent utilisée pour influencer les négociations ou attirer l’attention.AVRA family of small 8-bit microcontrollers often used in embedded and hobbyist hardware.AWS access keyA long-term credential used to authenticate programmatic requests to AWS services.AWS access keysLong-term credentials used to call AWS APIs; if exposed, they can be abused for cloud actions.AWS GovCloudAn isolated AWS region family designed for sensitive U.S. government workloads.AWS Lambda function URLA dedicated HTTPS endpoint that lets a Lambda function be invoked directly.AWS_IAMAn AWS authorization mode that limits access to authenticated and permitted identities.AWU (Agentic Work Unit)A vendor-defined metric for completed agent actions, not token volume.Azure Blob StorageA Microsoft cloud storage service that can be abused as a covert communication channel.Azure RBACAzure’s role-based access system that controls what an identity can do on specific resources and scopes.Azure-hosted infrastructureCloud resources on Microsoft Azure that can be abused to relay malicious traffic or host attacker services.B2BEntreprise à entreprise ; en cybersécurité, cela désigne généralement un forum professionnel pour les fournisseurs, les opérateurs et les décideurs.B2B bankingFinancial services designed for companies rather than individual consumers.BabukA ransomware family whose leaked code has influenced later criminal tooling.Babuk lineageA ransomware family model known for enterprise targeting, leak-site pressure, and extortion-focused operations.Babuk-derivedCode or behavior influenced by the leaked Babuk ransomware family.Bac à sableUn environnement contrôlé pour tester des outils ou des workflows sans affecter les systèmes en production.BackdoorLogiciel malveillant pouvant fournir un accès ou un contrôle à distance après l’infection.Backend APIThe server-side interface that processes requests and should enforce security rules.Backend networkA protected internal segment where services are kept away from direct public access.Backend operationsInternal databases, panels, and administrative systems that support day-to-day use of a service.Background executionApp activity that continues without active user interaction, often restricted by the operating system.Background updateA security fix applied with minimal user interaction, depending on platform and settings.BacklightThe light source behind many LCDs that makes images visible in low-light conditions.BacklogA queue of pending work that has not yet been completed.BackportUn correctif adapté d'un code plus récent pour fonctionner sur une version logicielle plus ancienne prise en charge.BackportingApplying a fix to an older supported release instead of only the newest version.Backup archiveA stored copy of business data kept for recovery after deletion, corruption, or cyberattack.Backup ContinuityThe ability of a backup process to keep working without interruption over time.Backup disruptionTampering with backups or snapshots to make recovery harder after an attack.Backup hygieneRegular habits that keep copies current, usable, and easy to restore.Backup immutabilityA backup control that prevents alteration or deletion, improving recovery after ransomware.Backup ModuleThe FreePBX component that creates and restores system backups and related configuration data.Backup Recovery TestingRegularly verifying that backups can actually be restored after a ransomware incident.Backup restorationThe process of returning systems and data from backups after an incident, ideally from isolated copies.Backup sabotageActions that interfere with backups or restore points to make recovery harder after encryption.Backup serverInfrastructure used to store recovery copies, which attackers may try to disable or encrypt first.Backup strategyThe approach an organization uses to copy and restore data after an attack, outage, or accidental loss.Backup TamperingActions taken to weaken recovery, such as deleting or corrupting backups and shadow copies.BackupsIndependent copies of data kept so information can be restored after loss, corruption, or destruction.Badge d’authenticitéUn signal de confiance utilisé pour indiquer qu’un créateur, un compte ou un élément a été examiné.Balance patchAn update that adjusts gameplay systems to improve fairness, variety, or competitive pacing.BalayageLe processus qui consiste à évacuer les gaz d’échappement et à les remplacer par une charge fraîche dans un moteur à deux temps.Baltic Air PolicingNATO’s standing mission for protecting the airspace of Baltic allies.Banana RATMalware described in this campaign as targeting customers at 16 Brazilian banks.Bandi tipoStandard tender templates used to standardize procurement clauses across contracts.Bank distributionThe role banks play in delivering a financial product to customers.Banking dataFinancial or account-related information that can be abused for fraud, impersonation, or resale.Banking malwareMalicious software built to steal financial information or interfere with banking activity.Base accountA basic account tier with a limited set of core functions and rules.Base distributionthe foundational Linux distribution used as a starting point.Baselinethe normal pattern used to compare behavior before and after a change.Baseline ArchitectureThe current-state view of systems, processes, and technology before planned change.Baseline controlsMinimum security measures expected as a starting point for compliance and resilience.Baseline securitythe minimum set of protections expected across systems or organizations.Baseline servicingIn this article, a Windows servicing path used for certain urgent updates; restart requirements depend on the update and platform.Bash dropperA shell script that starts a multi-step attack chain by running additional commands or payloads.Basic authenticationA simple HTTP authentication method that sends credentials with a request.Batch workflowA process that handles many files or URLs in one run, such as multiple downloads or conversions.Battery agingThe gradual decline in performance and capacity over time, even in storage.Battlefield AIAn umbrella term for AI used in military environments and operational decision-making.Bayesian networkA probabilistic model that maps conditional dependencies between variables.BCDBinary-coded decimal, a way of representing decimal digits with binary bits.BDATAn SMTP command used with CHUNKING to send message data in blocks instead of one large transfer.BDAT/CHUNKINGAn SMTP extension for sending large messages in chunks, using the BDAT command.BDNCPThe national public contracts database used to support transparency and contract oversight.BeaconCobalt Strike's payload for post-exploitation control and command-and-control communication.BeaconingRegular contact from malware to attacker infrastructure to receive commands or report status.Bearer artifactA file or token that grants access to whoever possesses it, if still valid.Bearer authenticationA model where possession of the token or key is enough to make a valid request.Bearer cookieA session cookie that grants access to whoever possesses it until it expires or is revoked.Bearer tokenA credential that grants access to a system to whoever presents it, until it is revoked or expires.Behavior monitoringDetection based on suspicious runtime actions rather than file signatures alone.Behavior-based analyticsDetection methods that look for patterns over time instead of relying only on static rules.Behavior-based detectionSecurity that looks at actions and patterns, not just known malware signatures.Behavior-Driven Development (BDD)A method for describing expected system behavior before implementation.Behavioral analysisDetection based on how a client acts over time, rather than on a single static signal.Behavioral AnalyticsDetection based on unusual patterns in device use, timing, location, or session behavior.Behavioral detectionSecurity monitoring that looks for suspicious actions, not just known malware signatures.Behavioral DriftA change in how an AI system acts over time as prompts, tools, or conditions change.Behavioral huntingAn investigation approach that looks for suspicious actions and patterns instead of relying only on known malicious file signatures.Behavioral SteeringShaping user decisions through ranking, defaults, timing, or friction rather than direct force.Below 50a threshold showing more negative responses than positive ones.BenchmarkA comparison baseline used to measure performance over time or against peers.Benchmark-specific resultA performance claim that applies to a particular test setup, not necessarily to every real-world use.BenchmarkingControlled evaluation of a system against defined tasks to measure capability and consistency.BenchtopSmall enough to fit on a workbench, usually indicating a compact experimental setup.Benchya small boat-shaped model used to test 3D printer quality and calibration.Beneficial ownershipThe natural person or people who ultimately own or control a company or legal entity.Beneficiary management systemSoftware used to track aid recipients, entitlements, and distribution workflows.Best effortA loose formulation that can signal intent without defining a strict compliance threshold.Beta channelA preview channel for builds that are typically closer to release.Beta firmwarePre-release software used for testing before a stable public launch.BIA (Business Impact Analysis)A method for identifying critical processes and the consequences of their interruption.BiaisDistorsion systématique dans la sortie d’une IA qui peut refléter des données ou des choix de conception défaillants.Bid requestA message sent into the ad-tech market when an ad impression is being auctioned; abnormal spikes can signal invalid traffic.Bidirectional couplingA two-way data relationship in which the physical system updates the model and the model can inform actions in return.Bien Web accessible au publicUn site accessible depuis Internet qui peut être exposé à des failles d’application web, à l’abus d’identifiants ou à des analyses hostiles.Big-bang cutoverA full-system switch where all users and functions move at the same time.Big-bang replacementA modernization method that tries to replace an entire system at once.Bilingual feedcontent presented in two languages side by side.BIMBuilding Information Modeling, a digital method for managing design and construction data.BinaryA compiled software file that contains machine code and can be analyzed even when source code is unavailable.Binary protocolAn older Memcached communication format that is deprecated and associated with security issues.BIND 9Open-source DNS software used to answer domain-name queries and manage DNS infrastructure.Binding operational directiveA mandatory CISA instruction for covered federal executive-branch agencies.binding.gypA Node.js build configuration file used to define how native addons are compiled.Biobanka repository that stores biological samples and related data for research use.BiomeA distinct game environment or region with its own content and design rules.BiomécaniqueL'étude de la manière dont le corps se déplace et génère de la force pendant le mouvement.Biometric bypassA technique or tool intended to defeat a biometric control without legitimate identity proof.Biometric categorisationClassification of people using biometric data into sensitive categories or groupings.Biometric dataData processed to uniquely identify a person using physical, physiological, or behavioral traits.Biometric identificationA 1:N process that matches a sample against stored templates to establish identity.Biometric identifierA physical or behavioral trait, such as a voiceprint, used to recognize a person.Biometric templateA stored representation of biometric features used for matching or verification.Biometric verificationA 1:1 process that confirms a claimed identity, such as opening a secured door.BiosecurityProtective controls meant to reduce misuse of biological research, materials, and tools.BIPAIllinois’s Biometric Information Privacy Act, which governs collection and handling of biometric data.BipartisanSupported by members of both major political parties, which can help a bill gain durability.BitB phishingA technique that renders a fake browser-style window inside a webpage to imitate a real login prompt.Bitcoina decentralized digital currency that uses cryptography and distributed consensus to record transfers.BitLockerMicrosoft’s full-disk encryption feature for protecting data stored on Windows volumes.BITSBackground Intelligent Transfer Service, a Windows component used for file transfers that can be monitored for suspicious job behavior.bitsadminA Windows command-line utility for managing BITS transfers, including creating and monitoring background download jobs.BitstreamLes données de configuration chargées dans un FPGA pour définir sa logique.BitTorrent DHTA decentralized lookup network that helps peers find each other without a central tracker.Black boxa system whose internal logic is difficult to inspect or explain.Black HatA major cybersecurity conference series focused on technical research, briefings, and training.Blade compatibilityWhether a blade fits and functions properly with a given machine setup.Blanchiment de confianceUn schéma d’attaque qui utilise des marques ou des services familiers pour faire paraître légitime un chemin malveillant.BLEBluetooth Low Energy, a short-range wireless standard designed for low power device communication.Blind spotA short period when a security control is not effectively observing or enforcing policy.Block Public AccessAn AWS control that helps prevent unintended public exposure of S3 resources.BlockchainA distributed ledger used to record and verify transactions across a network.Blue Screen of Death (BSOD)A Windows stop screen that appears when the operating system hits a fatal error.BlueField DPUA data processing unit that offloads networking, storage, and security tasks from the host CPU.BlueprintA formal document that lays out a plan, framework, or set of security expectations.Bluetooth pairingThe process of connecting two devices over Bluetooth for wireless audio.Board accountabilityThe expectation that senior leadership oversees cybersecurity risk and compliance decisions.Board governanceThe oversight role directors use to evaluate strategy, risk, and accountability.Board of directorsThe group that oversees strategy, accountability, and major business decisions.Board reportingStructured risk reporting designed to help leaders make decisions, not just review technical activity.Board support packageThe hardware-specific code and drivers needed for an operating system to run on a particular device.Board visibilityThe degree to which directors know and trust a potential successor.Board-level repairTroubleshooting and fixing faults on the circuit board instead of replacing the whole device.Boardroomthe executive layer responsible for strategy, oversight and risk decisions.Boardroom dialogueA two-way discussion focused on decisions, trade-offs, and oversight rather than a one-way status update.BOD 22-01A federal directive that drives accelerated remediation of KEV-listed vulnerabilities.Bogue de sécurité mémoireUne erreur de programmation impliquant un accès mémoire invalide, comme un use-after-free ou un comportement hors limites.Boiling pointthe temperature at which a liquid turns into vapor under set pressure.BOLABroken object-level authorization, a flaw where an API fails to verify whether a user can access a specific record.Bonjour/mDNSUn système de découverte de réseau local qui aide les appareils à annoncer et à trouver automatiquement des services.Boot chainThe sequence of low-level components that start a system before the main operating system loads.Boot Chain IntegrityThe assurance that firmware and startup components have not been tampered with.Boot integrityChecks that help ensure only trusted code starts when a device powers on.Boot-Critical StructureA disk component needed during startup, such as a boot record or partition layout, that attackers may target to prevent recovery.Boot-start serviceA Windows component configured to load during system startup for persistence.BootloaderLow-level software that starts a device and loads the next stage of code.Botautomated software that performs repetitive actions at machine speed.Bot APIA programming interface that allows software bots to automate actions inside a platform.Bot scriptsAutomated programs used to simulate listening behavior or other user activity.Bot tokenA credential used by automation or a bot to authenticate actions in a system.Bot trafficAutomated web activity generated by software rather than a person.BotnetA remotely managed network of compromised devices used to carry out coordinated malicious activity.Bottlenecka point in a system that limits overall performance.Boundary controlA security mechanism that limits how systems communicate across trust zones.Boundary settingDefining what is allowed, expected, or prohibited in a security or policy context.Bounded failureA management approach that allows mistakes inside controlled limits so teams can learn safely.Bounds checkingDefensive validation that ensures data stays within expected limits and helps prevent crashes and memory corruption.BPOExternalisation des processus métier, dans laquelle un tiers prend en charge des tâches opérationnelles de back-office.Brancha local extension of a company that operates without being a separate legal entity.Brand hijackingAbuse of a brand’s trust or name to mislead users or hide malicious activity.Brand monitoringTracking public mentions of an organization to spot abuse, impersonation, or extortion claims early.Brand reuseThe use of a known threat name or label to create trust, fear, or confusion in a criminal campaign.Brand signalingThe use of familiar names, logos, or associations to create trust or credibility in a hostile environment.Brand spoofingUsing a trusted company’s name or appearance to trick users into approving malicious activity.Brand trustthe confidence a brand builds when its decisions, claims, and outcomes remain credible.BrandjackingA deception tactic that uses a lookalike name or identity to borrow trust from a known project or vendor.Breach analysisThe process used to determine whether an impermissible disclosure creates reportable risk.Breach impactThe likely damage if an account, workflow, or agent is successfully compromised.Breach notificationThe process of informing affected people and regulators after a qualifying data incident.Breach notification serviceA service that helps users check whether an email address appears in a known data breach.Breach resaleThe repeated sale of previously stolen data, often under a new label to attract buyers.Breach trackerA public registry used to record significant data security incidents.Bretton Woodsthe postwar monetary framework whose collapse helped define the modern fiat era.BRICKSTORMA backdoor reported in this case as a FreeBSD variant deployed on a pfSense firewall.Bridge technologya system that helps move from early research toward broader deployment.BrineConcentrated saltwater left over after desalination, often requiring separate handling or disposal.Bring Your Own PowerA policy approach that asks new facilities to secure their own energy capacity.Broad consentA consent model that can cover future research uses not fully defined at collection time.Broken Function-Level AuthorizationAn API flaw where sensitive functions can be called without the proper permission check.Broken Object-Level AuthorizationA flaw where an API fails to stop users from reaching other users’ records or objects.Broker federationA mechanism that links brokers so they can share or forward messages.Brokered authenticationA sign-in model where a trusted app mediates identity and single sign-on.BrokeringArranging or facilitating a controlled export, even without manufacturing the item.Brownfield sitePreviously developed land that may need cleanup or remediation before reuse.Browser artifactsData stored by a browser on the host, such as history, bookmarks, or profile-linked local records.Browser bloatExtra built-in features that expand complexity, settings, and sometimes the local trust surface.Browser bundlePackaged web assets, usually JavaScript files, delivered to a browser as part of an application.Browser choice screenA selection prompt that asks users to pick a browser instead of inheriting one default.Browser cookieA small token used by websites to recognize a logged-in session.Browser engineThe core software that renders web pages and executes browser functions.Browser extensionA small add-on that runs inside a browser and can interact with pages and user activity.Browser ExtensionsAdd-ons that customize browser behavior, but can also expand the attack surface if overprivileged.Browser fingerprintingMethods that combine technical signals to identify a browser or device, often more persistently than a simple user-agent check.Browser hijackingUnauthorized control over browser behavior, such as page changes, redirects, or injected content.Browser IsolationA containment method that separates risky web activity from the endpoint to reduce the chance of local compromise or leakage.Browser permissionsSettings that determine which sites or data an extension can read, change, or observe.Browser policyAn admin setting that controls how a browser feature behaves across managed devices.Browser profileA separate browser environment with its own extensions, settings, and stored data.Browser promotionproduct messaging or interface behavior that steers users toward one browser.Browser sandboxA containment layer meant to limit what compromised browser components can touch.Browser sessionThe active authenticated state a user maintains while interacting with web apps, sites, and cloud services.Browser VisibilityThe ability to observe browser activity, sessions, and extension behavior for security and governance purposes.Browser warningA security alert that helps users avoid known or suspected malicious websites.Browser-based threatmalicious activity delivered through a web browser instead of a separate application.Browser-in-the-Browser (BitB)A phishing technique that mimics a browser login window inside a webpage to trick users.Browser-layer controlSecurity policy enforced inside the browser session, close to the user’s actions.Browser-lockA tactic that makes a browser feel trapped or hard to exit, often to pressure the victim.Browser-mediated accessData access delivered through a web browser rather than a native mobile app.Browser-only VPNA privacy feature that protects traffic generated inside the browser, not necessarily the whole device.Browser-scoped protectionSecurity coverage limited to activity generated inside the browser, not the whole device.Browser-side telemetryData collected from browser activity that can help reveal hidden tools, extensions, and web-based workflows.Browsing contextData from the current page, tabs, or recent activity that an AI feature may use with permission.Browsing hygieneBasic habits such as checking links and slowing down before clicking.BrushbotA bot that uses brush-like contact points to create movement from vibration and friction.Brute-Force AttackRepeated trial-and-error attempts to guess a secret value, such as a token or password.Brute-force protectionControls that slow or block repeated login attempts to make password guessing harder.BSODBlue Screen of Death; the Windows crash screen shown after a fatal system error.Bucket policyA JSON-based rule set that controls who can access an S3 bucket and what actions they can take.Budapest ConventionAn international cybercrime treaty used for cross-border cooperation and electronic evidence requests.Budget capA spending limit that helps stop or slow usage once an approved threshold is reached.Buffer overflowA memory bug where more data is written than a buffer can safely hold, sometimes leading to crashes or code execution.Bug bountyUn programme qui récompense les signalements valides de failles de sécurité par des chercheurs indépendants.Bug checkMicrosoft’s term for the stop-code event that halts Windows when safe operation fails.Build argumentA value passed into a container build that should not be used for secrets.Build backendPython packaging logic that helps turn source code into installable distributions during the build process.Build channelA release track that determines how mature, stable, or experimental a software build is.Build numberA version marker that identifies the exact Windows state after an update is installed.Build pipelinethe automated process that compiles, tests, and prepares software for release.Build practiceThe process and steps used to assemble hardware or software projects.Build versionThe specific software revision a player installs or runs.Build-versus-buyThe decision between creating software internally or purchasing it from a vendor.build.rsA Rust build script that Cargo can execute during compilation, creating a pre-build execution point.Bulbe olfactifLe premier relais majeur du cerveau pour le traitement des signaux olfactifs.Bulk Electric System (BES)The high-impact generation and transmission network that supports large-scale electric reliability.Bulk exportA large-scale extraction of records from a system, often a key signal in data-theft incidents.Bulletproof hostingHosting designed or operated in a way that tolerates abuse and makes takedowns harder.BunA JavaScript runtime that can execute JavaScript outside the browser.BundlingPackaging multiple products together, often lowering cost while concentrating user reliance in one ecosystem.Burden of proofThe duty to substantiate a refusal with evidence and documented reasoning.BurnoutA work-related state of exhaustion and reduced effectiveness linked to prolonged stress.Bus propriétaireUne interface matérielle non standard conçue pour un écosystème spécifique plutôt que pour une large compatibilité.Business associateA vendor that handles PHI on behalf of a covered healthcare entity and has its own compliance duties.Business contact recordsData such as names, emails, roles, and relationship details used for professional communication.Business Data CloudA governed data layer that supplies business context and semantics for enterprise AI workflows.Business email compromiseA fraud pattern where attackers hijack or impersonate email accounts to redirect payments or deceive staff.Business impactThe operational, financial, or reputational effect of a technical issue on the organization.Business impact analysisA method for identifying critical services and ranking what must return first after downtime.Business IntelligenceTools and methods used to analyze data for decisions.Business Intelligence (BI)Reporting and analytics systems used to turn enterprise data into decision support.Business interruptionA pause or slowdown in normal operations after systems, people, or services are disrupted.Business outcomesMeasurable results such as efficiency, revenue growth, faster decisions, or better service delivery.Business Process Outsourcing (BPO)Contracting an outside company to run functions such as payroll, HR, or logistics.Business Relationship Management (BRM)A discipline focused on aligning business goals, technology execution, and shared ownership.Business valueThe measurable benefit a technology must deliver to justify investment and operational change.BYODBring Your Own Device; a policy where personal devices are used for work access.BYOVDBring Your Own Vulnerable Driver; a technique where an attacker loads a legitimate but flawed signed driver to gain powerful system access.Bypass 2FAA token setting that allows publishing without an interactive two-factor prompt.BytecodeAn intermediate instruction format that is usually interpreted rather than read as normal program code.C-SCRMGestion des risques liés à la chaîne d’approvisionnement en cybersécurité, le processus consistant à identifier et à réduire les risques cyber liés aux fournisseurs.C2Command-and-control, the channel malware uses to receive instructions and send data back to operators.C2PAUne norme de provenance du contenu qui aide à associer des métadonnées vérifiables aux fichiers multimédias.Câble à fibre optiqueUn brin de verre ou de plastique qui transporte des signaux lumineux, le plus souvent utilisé pour les réseaux de données.CacheStored data used to speed access or decisions, sometimes at the cost of freshness.Cache poisoningContaminating a shared cache so later jobs may reuse unsafe data or artifacts.Cached credentialsLocally stored secrets that can be reused without re-entering the original login flow.CachingThe local storage of state or data so a system can reuse it later, sometimes creating stale results if not refreshed correctly.CADLogiciel de conception assistée par ordinateur et fichiers utilisés pour modéliser numériquement des pièces et des assemblages.CAD fileA computer-aided design model that defines a part’s geometry before it is manufactured.CAD filesComputer-aided design files that can contain detailed layouts, drawings, and operational facility information.Cadastral databasic registration information about a person, such as name and identifier fields.CadenceLe rythme auquel un cycliste tourne les pédales, généralement mesuré en tours par minute.Cadre de gestion des risquesUn ensemble structuré de pratiques pour identifier, hiérarchiser et réduire les risques de sécurité.Cadre de gestion des risques liés à l’IAUne approche fondée sur le cycle de vie pour identifier, mesurer et réduire les risques dans les systèmes d’IA.Cadre de gestion des risques liés à l’IA (AI RMF)Un cadre du NIST pour identifier et gérer les risques tout au long du cycle de vie de l’IA.cage de FaradayUn blindage conçu pour bloquer les champs électromagnétiques, bien que la fuite magnétique à basse fréquence constitue un défi distinct.CAIOChief AI Officer, a senior executive role focused on AI strategy and coordination across the organization.Calage des lumièresLe moment auquel les lumières d'admission, de transfert et d'échappement s'ouvrent et se ferment dans un moteur.Calendar artifactA meeting entry or invite stored inside a calendar system.CalibrationThe tuning step that helps a system produce accurate results.Calibration driftGradual loss of measurement accuracy over time.Call centerA centralized phone operation that can be used for legitimate service or abusive social engineering.Call screeningA phone-control layer that filters or flags suspicious calls before they fully reach the user.Call spoofingA technique that makes an incoming call appear to come from a different phone number.Call trackingSoftware that records and attributes incoming calls for business or marketing analysis.Callback phishingA scam that pushes the target to call an attacker-controlled number or contact route.Caller ID spoofingA technique that makes a call appear to come from a different number or identity than the real one.CalPhishingPhishing delivered through calendar invites or calendar objects.CAMFabrication assistée par ordinateur ; logiciel qui génère des trajectoires d’outils à partir d’une conception.Camera Roll BackupAn automatic upload workflow that saves device photos and videos to cloud storage.Campagne d’extorsionUne tactique de pression qui utilise des menaces, des données volées ou une exposition publique pour exiger un paiement ou une conformité.Canal clandestinUn chemin involontaire utilisé pour transférer des données en violation d’une politique de sécurité.Canal de diffusionLe support utilisé pour envoyer une arnaque, comme les applications de messagerie, les e-mails ou les SMS.Canal de distributionLe mécanisme utilisé pour livrer des logiciels aux utilisateurs, y compris les sites web officiels, les miroirs ou les systèmes de mise à jour.Canal officielUn site web, une application ou un moyen de contact vérifié utilisé pour confirmer les paiements, l’état d’un compte ou les notifications de sécurité.Candidate findingA potential security issue identified for further human review before it is treated as confirmed.Candidate screeningThe process of filtering applicants before interviews or final selection.Canone Unico Patrimonialea municipal levy connected to certain uses of public space and infrastructure.Canone zeroA pricing label meaning a service has no regular monthly fee, usually within defined conditions.Canonical literatureWidely recognized works that are often used in education for language, interpretation, and cultural analysis.Canonical PathThe normalized file path used to verify that access stays inside an approved directory.CAP_SYS_ADMINA powerful Linux capability required for many sensitive administrative actions.CAP_SYS_PTRACEA Linux capability that can permit sensitive process inspection beyond ordinary user limits.Capability checkA server-side test that verifies a user has the right permission before sensitive actions run.Capability levelA score for how well a specific practice area is implemented and controlled.Capability thresholdA predefined level of model ability that triggers stronger review, controls, or deployment limits.Capability thresholdsPredefined levels of model performance that trigger extra safety controls.Capability-based designA security model where a system is limited to specific actions or resources it is explicitly allowed to use.Capacité du réseau électriqueLa quantité d’infrastructures électriques disponible pour acheminer l’électricité de manière fiable vers un site ou une région.Capacity constraintsProvider limits that can slow or block requests when demand exceeds available service capacity.Capacity gapThe mismatch between the volume and speed of threats and a team’s ability to handle them continuously.Capacity planningPreparing a service to handle expected spikes in demand.Capacity-buildingThe process of strengthening an institution’s ability to train, coordinate, and respond effectively.Capexcapital expenditure used to build or expand long-term industrial capacity.Capital expendituremoney spent on long-term assets such as hardware, software, or security platforms.Capital socialeThe relationships, trust, and shared norms that help people participate in society.Capped-spend optiona pricing setup that limits charges beyond a defined threshold.CAPTCHAA human-verification challenge that can also be used as an anti-bot or anti-analysis gate.CAPTCHA gatingUsing CAPTCHA challenges as an access barrier that can also make automated analysis more difficult.Capteur de collisionUn dispositif qui aide un véhicule à déterminer si les conditions d'impact atteignent les seuils de déclenchement.Capture d’écran de chat partagéUne vue d’une conversation Claude basée sur un lien, que toute personne disposant de l’URL peut ouvrir tant qu’elle n’est pas déspartagée.Carbon resistorA resistor made with carbon-based material, commonly found in older electronics.Carburetora mechanical device that mixes air and fuel before combustion.Card emulationAn Android capability that lets a device behave like a contactless card in NFC interactions.Card skimmingThe theft of payment details, often by malicious code placed in a checkout flow.Career ladderThe sequence of roles and promotions that lets a worker move from junior to senior responsibility.CarrackA large, multi-masted sailing ship used in Europe during the 15th to 17th centuries, often adapted for war.Carrier billingA payment method where some mobile operators let charges be added to a phone bill.Carrier supportNetwork operator compatibility that can determine whether RCS encryption is available for a conversation.Carte de débit contrefaiteUne fausse carte de paiement créée à partir de données de carte volées pour effectuer des retraits ou des achats frauduleux.Cartographie des compétencesLe processus consistant à identifier les capacités qu’une équipe possède déjà et les lacunes qui subsistent.Cartographie du coupleLa logique de contrôle qui traduit les entrées du conducteur en sortie moteur selon différentes vitesses ou modes.Carton onduléUn matériau multicouche à base de papier, souvent utilisé pour les boîtes et les prototypes rapides ; léger, peu coûteux et sensible à l’humidité.Cartridge-based softwareContent delivered through a removable module, commonly used in handheld consoles and similar devices.CASCloud Authentication Service, an external identity check used in some login flows.Cascading failureA sequence in which one failure triggers additional failures in linked systems.Case triageThe first-stage sorting of a report so it reaches the right team quickly.Cash flowThe movement of money into and out of a business over time.CassazioneItaly’s highest court for legal interpretation in many civil and criminal matters.CatalogThe metadata and policy layer that helps control how tables are found, read, and written.Catalog assetAn older product that still generates value through continued sales or licensing.Catalog managementThe process of adding, removing, and updating items in a service library.Catalog pollutionThe buildup of low-value or repetitive content that makes discovery harder on a platform.Catalog rotationThe planned addition and removal of content over time.Catena del valorethe sequence of activities through which an organization creates and delivers value.CB radioA short-range voice radio system that uses shared channels for communication.CBDCcentral bank digital currency, a digital form of money issued by a monetary authority.CBS.logA Windows log file that records component-based servicing activity, including update install details.ccTLDCountry-code top-level domain; a country-specific domain ending such as .rs.CdAThe board of directors or management body responsible for overseeing strategic decisions and risk governance.CDB listA lookup file used to enrich detections with reusable context such as users, hosts, IPs, or domains.CDIOChief Digital and Information Officer, a role that usually combines enterprise IT leadership with digital change programs.CDMA2000Une famille radio 3G qui prenait en charge les anciens services voix et données dans les réseaux mobiles hérités.CDNA content delivery network that distributes web content through shared infrastructure for speed and scale.CDN edge IPA public IP address used by a content delivery network to serve traffic from shared infrastructure.CDOChief Digital Officer, an executive role centered on digital transformation and adoption.CE MarkingAn EU conformity marking indicating that a product meets applicable EU requirements.Center of MassThe balance point of a build; shifting it can change stability and movement.Central bank digital currencyA digital form of money issued by a central bank.Centralizationcombining multiple functions into one system or account for easier management.Centralized loggingCollecting logs from multiple systems into one place for monitoring, detection, and investigation.Centralized platformA shared system that receives, validates, or routes invoices through a single service.Centre de mise à jour des pluginsLe chemin de distribution que Jenkins utilise pour publier les versions des plugins et leurs métadonnées.CEO confidence indexa survey score used to measure executive sentiment over time.Ceramic substrateA heat-resistant base material used for some electronic applications.Certificat de signature de codeUn certificat numérique qui permet à un éditeur de signer un logiciel afin que les systèmes puissent vérifier son identité et son intégrité.Certificate Authoritya trusted entity that issues digital certificates used in internet authentication.Certificate Authority (CA)A trusted system that issues and manages digital certificates for users or services.Certificate chainThe linked path of trust that connects a signing certificate back to a trusted authority.Certificate lifecycleThe process of issuing, validating, revoking, and expiring digital certificates.Certificate profileA trust setting that uses certificates to help verify identity or device posture.Certificate repositoryA backend store that holds certificates and related metadata for lookup and validation.Certificate reuseRepeated use of the same TLS certificate across multiple servers or domains, which can reveal infrastructure links.Certificate rolloverThe planned replacement of one cryptographic certificate with another.Certificate sharingReusing a certificate across functions or features, which can create security risk if the setup is not properly isolated.Certificate TransparencyA public logging system that helps detect mis-issued certificates.CertificationA formal credential used to demonstrate knowledge or practical skill in a specific technical area.Certification frameworkA structured process for assessing whether a product or service meets defined security requirements.Certified PatchesTargeted fixes that are reviewed and packaged for safer remediation of specific software issues.Certified training pathsStructured learning routes that help make skills measurable and repeatable.CertutilA Windows certificate utility that can also be abused for encoding or file transfer behavior.Cessazione del rapporto di lavorothe end of the employment relationship.CFDI/XMLFormat de facture électronique du Mexique, généralement stocké en XML et utilisé pour la facturation commerciale.cgroups v1A Linux control-group subsystem used to manage and isolate process resources.ChaCha20A fast symmetric encryption algorithm sometimes used in ransomware to encrypt files.Chain of custodyDocumentation showing how evidence was collected, transferred and stored so its integrity can be trusted in court.Chain of DelegationThe sequence that shows how authority moves from a human request to an agent action and any tool or sub-agent calls in between.Chaînage de confianceUn schéma d’ingénierie sociale qui combine plusieurs services apparemment légitimes pour donner l’impression qu’un appât est sûr.Chaîne cinématique à réduction fixeUne configuration d’entraînement électrique simple qui utilise un seul rapport de transmission au lieu de passer par plusieurs vitesses.Chaîne de type hachageUne valeur hexadécimale qui peut ressembler à un condensat cryptographique, mais qui nécessite du contexte avant de pouvoir être traitée comme un indicateur.Chaîne de valeurLe réseau d’organisations et de processus qui contribuent à fournir un produit ou un service aux utilisateurs finaux.Challenge-responseA verification step where the server issues a challenge and the client proves possession of a private key.Change controlThe process of approving, testing, and managing system changes in a controlled environment.Change trackingmethods for recording and reviewing modifications to systems or code.Changement permissifUne catégorie de la FCC pour certaines modifications d’appareils, y compris certaines mises à jour logicielles ou micrologicielles, qui peuvent ne pas nécessiter une nouvelle autorisation complète.Channel distributionA sales model that moves products or services through a partner network.ChargebackA payment reversal after a cardholder disputes a transaction.Charging controlThe logic or circuitry that manages how a battery is charged.Chat ControlUn intitulé courant pour les propositions de l’UE sur la sécurité des enfants, qui pourraient affecter la manière dont les services de messagerie détectent et analysent les contenus.Chat historyStored conversation records that remain available after messages are sent.Chat safetyControls and safeguards intended to reduce harm in text, voice, video, or image-based player communication.Chat templateA formatting layer that turns structured messages into a model-ready prompt.ChatbotA conversational interface that lets users interact with software through natural language.Chatbot dependenceA pattern of excessive reliance on conversational AI for comfort, routine, or emotional support.ChatflowA reusable workflow artifact used to define behavior in Flowise.Checkout FlowThe sequence of pages and form fields where payment data is entered and transmitted.Checkout integrityThe assurance that the payment page has not been altered by unauthorized code or hidden scripts.Checkout pageThe ecommerce page where buyers enter shipping, billing, and payment details.Checkout pathThe sequence of pages and actions used to complete a purchase online.Checkpoint cumulative updateA newer servicing model for some Windows 11 branches that changes how update content is packaged and delivered.CheckpointingSaving application or workflow state so it can be resumed later from the same point.ChemLockCISA’s voluntary program that offers security help to chemical facilities.Cheval de Troie bancaireLogiciel malveillant conçu pour voler des identifiants financiers, des données de paiement ou des accès de session liés aux opérations bancaires.Cheval de Troie d'accès à distance (RAT)Logiciel malveillant qui donne à un attaquant le contrôle à distance d’un appareil infecté et peut permettre un accès persistant après compromission.Chiffrement de bout en boutUne conception cryptographique dans laquelle seul l’expéditeur et le destinataire peuvent lire le contenu du message.Chiffrement de bout en bout (E2EE)Une configuration cryptographique dans laquelle seul l’expéditeur et le destinataire peuvent déchiffrer le contenu du message.Child processA program launched by another process; useful for spotting suspicious follow-on execution.Child process lineageThe chain of processes spawned by a parent tool, useful for spotting abnormal activity.Child profileA restricted account designed for minors, usually with simplified content access and limited settings.Chilling effectBehavioral self-censorship caused by the feeling of being watched or tracked.Choice architecturethe way an interface shapes decisions through layout, defaults, and prompts.Chord recognitionSoftware or methods that identify musical chords from audio or symbolic input.CHROChief Human Resources Officer, the executive responsible for workforce planning, people strategy, and organizational change.Chrome CanaryGoogle’s most experimental Chrome release channel, used for early testing and likely to contain unstable behavior.Chrome extensionA browser add-on that can add features, modify pages, and request permissions inside Chrome.Chrome extension permissionsControls that define what a browser add-on can read or modify.Chrome Web StoreGoogle’s marketplace for Chrome extensions, with formal review and complaint workflows.ChromiumThe open-source browser project whose fixes can be inherited by Edge.Chromium cookiesSession data stored by Chromium-based browsers that can sometimes be reused to impersonate a logged-in user.ChrootA containment technique that limits a process’s view of the filesystem to a chosen directory.CHUA radio time signal associated with broadcasting accurate time.Chunked exfiltrationBreaking stolen data into smaller transfers, which can help traffic blend in more easily.Chunked Transfer EncodingAn HTTP method that sends data in chunks rather than one fixed-length body.CHUNKINGAn SMTP extension that allows message bodies to be transferred in chunks rather than as one continuous block.Churnthe rate at which customers stop using a service.CI environmentAutomated build and test systems where secrets and dependencies often meet.CI pipelineAutomated build and test flow used to check code changes before release.CI runnerAn automated build environment that can hold secrets and execute package installation steps.CI secretsSensitive credentials used by automated builds, such as tokens, keys, or deployment passwords.CI/CDIntégration continue et déploiement continu, le pipeline automatisé utilisé pour construire et livrer les logiciels.CI/CD pipelineAn automated path for continuously integrating code changes and delivering them through testing and deployment steps.CI/CD runnerAn automated build or deployment system that may hold sensitive secrets during software delivery.CI/CD secretsAuthentication tokens and keys used by automated build and release systems.CIDOChief Information and Digital Officer, a title often used when technology and digital transformation are managed together.CIEThe Italian electronic identity card, which can also be used to access digital public services.CIFSA Linux file-sharing protocol used to access SMB network shares.cifs.upcallA helper used in some CIFS configurations to assist with authentication or name resolution.CIOCadre supérieur responsable de la stratégie informatique, des opérations et souvent de la transformation numérique.CIRCIAThe Cyber Incident Reporting for Critical Infrastructure Act of 2022, which directs mandatory reporting rules for covered entities.Circuit debuggingThe process of finding why a circuit is not behaving as expected.Circular economyan economic model that aims to reduce waste and keep materials in use longer.Circular supply chainA supply model designed to keep products and materials in use for as long as possible.CISAThe U.S. Cybersecurity and Infrastructure Security Agency, the federal body leading this rulemaking process.CISA KEVThe Known Exploited Vulnerabilities catalog used to track flaws that require urgent remediation.CISA KEV catalogA U.S. government list of vulnerabilities known to be exploited in the wild and prioritized for remediation.CISODirecteur de la sécurité de l’information, le cadre qui aide à définir les priorités de sécurité et supervise le risque cybernétique.Citizen forensicsPublic, crowd-driven analysis of digital clues, images, timelines, or records.Civil Investigative Demand (CID)A compulsory legal request used by regulators to obtain documents, data, or testimony during an investigation.Civil liabilityLegal responsibility that can arise when a system's use causes harm, error, or disputed outcomes.Claim FeedUn flux de renseignement sur les menaces qui recense les noms présumés des victimes et les métadonnées associées dans les écosystèmes de ransomware.Claim HashA hexadecimal identifier used to tag or correlate a posted attack claim in monitoring systems.Claim of responsibilityA statement by an actor saying it carried out an attack; it is not proof on its own.Claim posta public listing that alleges an incident, which still requires independent verification.Claim recordAn online post or listing that asserts involvement in an incident, but does not by itself prove it.Claim referenceA unique identifier, often hexadecimal, used to reference a specific ransomware claim or case.Claim VerificationThe process of checking whether an alleged incident is backed by technical evidence.Claim-postA public extortion post that names a victim or target without proving compromise, breach scope, or data theft.Claimsrequests for payment or coverage after a loss or incident.Class LoadingIn Java, the process of loading classes at runtime; unsafe loading paths can become execution risks.Classement de la place de marchéLa logique qui décide quels annonces, produits ou résultats apparaissent en premier aux utilisateurs.ClassificationA process that assigns an input to one of several possible labels.Classified informationGovernment-protected material whose disclosure could damage national security.Classified systemA computing environment approved to handle sensitive government information under strict security rules.ClasspathThe runtime search path Java uses to find classes and JAR files when an application starts.ClaudeAnthropic’s AI model family used for tasks such as coding, analysis, and tool-assisted workflows.Claude CodeThe product name used for the coding workflow mentioned alongside the release.Clause 8.1The ISO 14001 section on operational planning and control, including external-provider communication.Clé APIUn identifiant secret utilisé par des logiciels ou des services pour authentifier des requêtes ; s’il est exposé, il peut être abusé.Clean coreAn ERP strategy that limits custom changes so upgrades, security fixes, and governance stay manageable.Clean room recoveryRebuilding systems in an isolated environment to avoid restoring hidden compromise.Clear instructionsStep-by-step guidance that helps a builder complete assembly correctly.CleartextInformation stored or transmitted without encryption, making it directly readable if accessed.Cleartext credentialsLogin data stored or transmitted without encryption.Cleartext passwordA password stored in readable form rather than being protected by modern hashing controls.CLIA command-line interface that lets users run software through text commands in a terminal.Click-tracking URLA rewritten link used to record clicks and inspect destinations before or during delivery.ClickFixA social-engineering technique that tricks users into running commands by mimicking verification or support prompts.Client countA business metric that can signal market demand, retention, or changes in service access.Client retentionthe ability to keep customers over time through dependable service.Client zeroAn internal test environment where an organization validates a new tool before wider rollout.Client-side attackAbuse that targets a user’s browser or local session behavior.Client-Side EncryptionEncryption performed on the user’s device before files are uploaded to a remote service.Client-side hookA hook stored on the user’s machine, where it can be triggered by normal Git activity.Client-side injectionThe insertion of code that runs in the user’s browser rather than only on the server.Client-side JavaScriptCode delivered to and executed in the browser, where it can reveal implementation details through bundled assets.Client-side vulnerabilityA flaw in local application code, not in the network service itself.Clinical Decision SupportSoftware that helps inform care decisions without replacing professional judgment.Clinical efficacyEvidence that a tool produces useful patient outcomes in practice, not just in theory.Clinical outcomesmeasurable results that show whether care is improving.Clinical protocolA structured medical procedure or workflow used in patient care or treatment.Clinical researchMedical investigation that uses patient data or participation to generate evidence.Clinical validationEvidence that a medical tool works safely and effectively in the environment where it will be used.Clipboard hijackingManipulating clipboard contents so pasted data is changed before use.ClipperMalware that monitors clipboard contents and can swap copied text, often to hijack cryptocurrency payments.Clipper malwareMalware that swaps copied cryptocurrency addresses with attacker-controlled ones.Clock signalthe periodic timing pulse that coordinates hardware operations.Clonage vocalParole générée par machine qui imite la voix d’une personne précise à partir d’échantillons enregistrés.Clone siteA copycat website that imitates a known service or forum, often to confuse users or capture data.close_notifyA TLS alert that signals the end of an encrypted session.Closed-loop remediationA workflow that tracks a weakness from detection through fix and verification.ClosingThe final step in an M&A transaction when ownership formally transfers.Cloud account abuseUnauthorized use of cloud identities, tokens, or service accounts to reach data and systems.CLOUD ActA U.S. law that can create legal access risk for data handled by U.S.-jurisdiction providers.Cloud and AI Development ActA policy and regulatory framework tied to Europe’s push for more control over cloud and AI infrastructure.Cloud authorizationThe permissions that control what a user or app can do inside cloud services.Cloud CamouflageThe practice of blending malicious activity into legitimate cloud traffic to make detection harder.Cloud computingA model where computing resources are delivered over networks from centralized infrastructure rather than local machines.Cloud concentrationHeavy dependence on a small number of cloud providers, which can increase outage and lock-in risk.Cloud concentration riskthe danger that many services depend on a small number of providers.Cloud credentialsSecrets or tokens that authorize access to cloud services and APIs.Cloud de périphérieUn modèle de service distribué qui rapproche les fonctions de calcul et de sécurité des utilisateurs finaux.Cloud enterpriseLarge-scale organizational use of cloud services to run applications, data, and shared platforms.Cloud ExposureMisconfigurations, excessive access, or reachable assets that can expand attack surface in cloud environments.Cloud federationA setup where multiple cloud environments work together through shared rules and interoperability.Cloud Files APIThe Windows interface used to manage placeholder files and cloud-sync behavior.Cloud gamingUn modèle de service dans lequel les jeux s’exécutent sur des serveurs distants et sont diffusés en streaming vers l’appareil de l’utilisateur.Cloud hosting abuseuse of legitimate cloud infrastructure to blend malicious activity with normal traffic.Cloud IAMContrôles de gestion des identités et des accès qui définissent qui peut accéder aux ressources cloud et ce qu’il peut faire.Cloud identityA permission-bearing account, role, or credential used to access cloud resources.Cloud infrastructureThe centralized compute and storage layer that powers model training and inference.Cloud lock-inDependence on one cloud provider that makes migration or diversification difficult.Cloud MarketplaceA cloud provider’s catalog for discovering, purchasing, and deploying validated software packages.Cloud Metadata EndpointA special URL on some cloud platforms that may expose instance or workload metadata; if reachable via SSRF, it can sometimes lead to credential disclosure.Cloud migrationThe move of applications, data, or services into cloud environments.Cloud multi-tenantUn modèle de cloud partagé dans lequel plusieurs clients utilisent la même plateforme avec des contrôles de données séparés.Cloud PCA hosted Windows desktop delivered from Microsoft’s cloud and assigned to a user by license.Cloud repatriationThe relocation of workloads or data away from a cloud environment when cost, policy, or risk makes that necessary.Cloud savesGame data stored online and synced across devices.Cloud secretsCredentials such as API keys, tokens, and access keys used to reach cloud services.Cloud service abuseUsing legitimate online services as part of malicious operations, often to blend into normal traffic.Cloud sovereigntyA model of cloud control that focuses on jurisdiction, operations, and dependency management, not just data location.Cloud sunsetThe retirement of a vendor-hosted online service that a product depends on for some features.Cloud tokenA bearer credential that can authorize access to cloud APIs or protected services.Cloud-delivered protectionSecurity updates and detections that are fetched from online threat intelligence services.Cloud-initiated actionA remote control or recovery step triggered through a cloud-managed service.Cloud-nativeA way of building and running applications for dynamic environments, often using containers, microservices, immutable infrastructure, declarative APIs, and automation.CloudTrailAWS logging service used to review account activity and investigate credential use.ClusterA group of linked systems that work together and share data or workload.Cluster consistencyThe property of multiple database nodes holding the same trusted view of data.ClusterFuzzGoogle’s distributed infrastructure for running fuzzing jobs at scale and managing results.CMDBA configuration management database that stores IT assets and the relationships between them.CMMCThe Department of Defense cybersecurity framework for protecting contractor data across the supply chain.CMMIA framework for assessing and improving organizational capability and process maturity.CMMSComputerized Maintenance Management System; software used to manage work orders, assets, maintenance tasks, and parts.CMSSystème de gestion de contenu ; la couche web utilisée pour publier et modifier le contenu d’un site, ses liens et ses pages.CN CCommande numérique par ordinateur ; une méthode où une machine suit des instructions numériques pour couper ou façonner un matériau.Co-creationA process in which humans and AI contribute together to a creative result instead of using AI only as a back-end utility.Co-creation hubA collaborative workspace where client teams and technical teams build and test ideas together.Co-useAn adult and child using a device or app together, which can make digital experiences more understandable and less passive.CO2 creditsInstruments that represent a claimed reduction or removal of carbon dioxide, often used in climate accounting.Coatinga surface layer applied to change appearance, durability, or function.Cobalt StrikeA dual-use security tool often abused by intruders for command-and-control.Cobalt Strike BeaconA post-exploitation payload used for remote command-and-control activity.COBITUn cadre de gouvernance IT qui sépare la gouvernance de la gestion et aide à définir les responsabilités.COBOLA long-lived programming language designed for business and transaction processing.Cockpit rigA larger setup that combines multiple controls to resemble a real vehicle or aircraft station.Code d'initialisationUn secret de récupération utilisé pour obtenir un certificat émis ou terminer une étape d'inscription.Code de hachageUne sortie de longueur fixe d’une fonction de hachage, souvent utilisée pour comparer l’intégrité des données ou étiqueter des éléments.Code distantCode récupéré depuis un dépôt externe et exécuté localement par l’outil ou le framework d’un utilisateur.Code provenanceThe ability to trace where code changes came from and who approved them.Code qualityThe reliability, clarity, and maintainability of software, which also affects security.Code reviewManual examination of code to catch defects and security problems before merge.Code vulnerabilityA weakness in software that could be abused to break security or integrity.CodebaseThe full set of source code that makes up a software product or system.CODEOWNERSA repository control that assigns specific reviewers to particular files or paths.CodexOpenAI’s coding-focused agentic environment used to support software tasks.Codingwriting instructions a computer can execute, often the first step toward understanding software behavior.Coding copilotAn AI assistant built into or alongside developer tools to suggest code or edits.CoentrepriseUne société ou un projet détenu conjointement utilisé pour partager l’investissement, les opérations ou le contrôle.CoercionPressure used to force someone into unwanted action.Coercive diplomacyThe use of pressure to influence behavior without relying on direct force.Cognitive autonomyThe ability to make independent judgments without overreliance on external systems.Cognitive debtThe growing gap between how software changes and how well a team understands it.Cognitive defenseSecurity practices that help protect judgment, trust, and decision-making from manipulation.Cognitive diversityVariation in how people think, solve problems, and notice patterns; in AI teams, it can expose blind spots that homogeneous groups may miss.Cognitive loadThe amount of mental effort being used at a given moment.Cognitive offloadingThe delegation of mental tasks to an external tool or system.Cognitive outcomesMeasurable results related to learning, memory, understanding, or thinking skills.Cognitive resilienceThe ability to stay focused, adapt, and make sound decisions under stress or uncertainty.Cognitive warfareoperations that aim to influence perception, judgment, and decision-making.Coherence timethe period during which a qubit can preserve its quantum state.CohorteUn groupe défini admis ou répertorié ensemble dans le cadre d’un déploiement de programme.Collecte d’identifiantsLa collecte de noms d’utilisateur, de mots de passe, de jetons ou de données de session utilisés pour accéder à des comptes.Collectiblean item valued primarily for ownership, rarity, or trading appeal rather than direct utility.Collective defenseA security model in which many organizations share visibility and support to improve protection for all members.Collective intelligenceA combined judgment formed from many independent contributors.Colocationa model where multiple customers place their equipment in the same third-party facility.Color detectionA method of identifying objects or states by reading visible light patterns.Command and controlThe remote infrastructure attackers use to manage infected devices.Command and control (C2)The remote infrastructure malware uses to receive instructions and send data back to operators.Command and Scripting InterpreterA class of tools that can execute commands or scripts, making them attractive for abuse.Command executionThe act of running shell or system commands, which can create high impact if misused.Command InjectionA flaw where untrusted input is turned into operating-system commands.Command structurethe hierarchy that defines authority and decision-making.Command URIA clickable VS Code link type that can trigger editor commands when content is trusted.Command-and-controlThe communication layer attackers use to direct compromised systems or campaign operations.Command-and-control (C&C) infrastructureThe servers or services attackers use to coordinate compromised systems.Command-Line AuditingA logging control that captures the arguments used to launch a process, improving investigation detail.Command-line executionRunning instructions in tools like PowerShell or Terminal, often a high-risk step when triggered by a webpage.Command-line interfaceA text-based way to use software from a terminal, common in developer and admin workflows.Command-line utilityA small program operated through typed commands rather than a graphical interface.Commande et contrôle (C2)L’infrastructure qu’un attaquant utilise pour envoyer des instructions aux systèmes compromis et en recevoir des données en retour.Commercializationthe stage where a technology moves from development toward practical market use.Commercialization gapThe period when a product has promise but has not yet reached stable market adoption or revenue.CommissionThe percentage fee taken from each payment transaction.Commit Hash PinningLocking an external action to one immutable commit instead of a moving tag or branch.Commit SHAThe unique hash of a specific Git commit, used to pin an exact revision.Commit SHA pinningLocking a third-party action or dependency to a specific commit hash to reduce tampering risk.Commodity malwareMalware designed for broad reuse and sale rather than a single, custom-targeted operation.Common failure domainA shared technical environment where one issue can affect multiple entities or services at once.Common modelA shared template or structure designed to make reporting more consistent across organizations.CommonJSA Node.js module system that loads packages with require().Community clinic networkA distributed set of local care points linked to a shared health system.ComodatoLoan-for-use model where devices are provided temporarily rather than permanently.Companion chatbotAn AI system built for ongoing conversation, often with a social or emotional tone.ComparabilitéLa capacité de comparer différentes entreprises à l’aide du même type d’information.CompartmentalizationA security practice that limits access to sensitive information to people with a specific need to know.Compartmentalized compliancea split approach that can create gaps between teams and processes.Compatibilité ascendanteUne fonctionnalité qui permet à du matériel plus récent d’exécuter des logiciels ou des jeux conçus pour une génération plus ancienne.Compatibilité des pilotesLe fait que le logiciel qui contrôle un matériel puisse le reconnaître et le faire fonctionner correctement.Compatibilitythe ability of two systems or components to work together correctly.Compatibility boundaryThe point where a program’s demands meet a device’s limits.Compatibility cutoffThe point at which a new OS version stops supporting older hardware or software dependencies.Compatibility driftSmall software changes that cause apps or tools to behave differently over time.Compatibility layerSoftware or an interface that helps different systems work together.CompauthMicrosoft’s composite authentication signal for weighing multiple mail-trust indicators together.Compensating controlA defensive measure used when immediate patching is not possible, such as access restriction or interface shutdown.Compensating controlsExtra safeguards such as segmentation or monitoring used when ideal patching is not possible.CompensationThe total pay package for a role, often including salary, bonus, and other incentives.Compensatory toolAn aid that helps a learner manage a difficult skill by supporting or substituting part of the task.Compétence d’interprétationLa capacité à lire le contexte, l’ambiguïté, le ton et le sens plutôt que de s’appuyer uniquement sur des signaux techniques bruts.Competency mappingThe process of matching training depth to the needs of different roles.Competency-based hiringA method that evaluates role-specific abilities using structured, job-related criteria.Competenza amministrativaThe authority assigned to a public body to handle a specific procedure or decision.Competenze di governancethe skills and controls used to guide, oversee, and manage technology responsibly.Competitivenessthe ability of an economy or sector to attract people, investment, and activity.Compiled Python extensionA native module that Python can load like a regular package component, even though it is delivered as shared-library code.Complementary infrastructureA system that can coexist with an existing model and support some of the same functions in different ways.Complete mediationA control pattern where every access request is checked for authorization.CompletenessThe presence of all expected parts, documentation, and materials in a kit.Complex CalculationA feature path that builds expressions from form fields and can become risky if input handling is weak.ComplianceThe process of meeting legal, regulatory, and internal policy requirements.Compliance APIA programmatic interface that gives organizations access to audit-related data for governance and review.Compliance auditan audit that checks whether legal, regulatory, or policy obligations are being met.Compliance burdenThe time, staff effort, and process overhead needed to meet legal and regulatory requirements.Compliance evidenceRecords and documentation that show controls were defined, applied, and maintained.Compliance exposureThe risk of regulatory attention, remediation costs, or formal findings when requirements are not met.Compliance perimeterThe operational boundary used to decide which assets, relationships, and processes are governed.Compliance regimeThe set of legal or policy requirements an organization must follow.Compliance supportHelp with mapping security work to regulatory or contractual requirements.Comportement à l’exécutionLes actions qu’un système effectue pendant son exécution, comme l’accès au réseau, les modifications de fichiers ou la création de processus.Composable architectureA system built from smaller parts that can be combined and updated more flexibly.ComposerA PHP dependency manager used with Packagist.Composite alertA detection signal that combines multiple telemetry points to reduce false positives and surface more meaningful activity.CompréhensionCompréhension réelle du sens, et non simple répétition ou réception d’une réponse qui semble correcte.Compression bombA small compressed input that expands into a much larger workload when processed.Compromise vulnerabilityHow easily a system can be manipulated or steered into unsafe behavior.Compromised siteA legitimate website altered or abused to deliver malicious content or redirects.Compromission d'identifiantsExposition de mots de passe ou d’identifiants de connexion pouvant permettre à des attaquants d’usurper l’identité des utilisateurs ou d’accéder à des comptes.Compromission de la chaîne d'approvisionnementTerme de MITRE désignant la manipulation de produits ou de mécanismes de livraison avant qu’ils n’atteignent l’utilisateur final.Compromission de la chaîne d’approvisionnement logicielleUne attaque qui cible le chemin emprunté par les logiciels pour parvenir aux utilisateurs, comme les téléchargements, les mises à jour ou la distribution de paquets.Compromission de la messagerie d’entreprise (BEC)Fraude dans laquelle des attaquants usurpent des comptes de confiance pour inciter des personnes à envoyer de l’argent ou des données.Compromission du help-deskUne situation dans laquelle des attaquants abusent des workflows de support pour réinitialiser des comptes ou modifier des paramètres de sécurité.Compromission par navigationUne technique d’accès initial dans laquelle un utilisateur est exposé à du contenu malveillant par une navigation Web normale.Compte privilégiéUn compte disposant d’autorisations élevées pouvant accéder à des systèmes ou à des données sensibles.Computational capacityThe processing power needed to build and run AI systems at scale.Computational diagnosticsUse of algorithms and models to help interpret medical data and support clinical decisions.ComputeThe processing capacity, usually from chips and servers, needed to train and run AI systems.Compute capacityThe usable processing power available for training or running AI systems.Compute hijackingUnauthorized use of someone else’s processing resources for an attacker’s goals.Compute ModuleA Raspberry Pi form factor intended for custom products and embedded integration.Compute OptimizerAn AWS service that recommends rightsizing and other resource-efficiency changes.Compute unitsParallel processing blocks in GPU-style hardware that handle workloads in chunks.Computer Misuse Act 1990The UK’s main cybercrime law covering unauthorized access, system impairment, and related tool offences.Computer visionTechnology that lets machines interpret images and video as structured information.ComputervredebreukDutch legal term for unauthorized access to computer systems.Concept mapA visual structure that links ideas and shows relationships between topics.Concurrent maintainabilityA design property that lets critical systems be serviced without shutting down the whole facility.Concurrent playersPeople active on a platform at the same moment.Concurrent sessionsMultiple active login sessions on one host at the same time.Condition-based executionCode that runs only when certain checks are met, helping it avoid analysis.ConditioningProcessing that reduces bias and improves the usability of raw noisy data.ConductivityA material's ability to carry electrical current.ConfabulationNIST’s term for confidently presented false or erroneous AI output.Confidential computingA security approach that processes data inside protected hardware so the operator has less visibility into the contents.Confidentialité avocat-clientL'obligation de protéger les informations liées à la représentation d'un client contre toute divulgation non autorisée.ConfidentialityThe security property that keeps sensitive data from being read by unauthorized parties.CONFIG_RXGKThe build-time kernel option that enables RXGK support in a system image.config.jsonA model configuration file that can shape how Transformers loads and initializes a model.config.xmlA Notepad++ settings file that stores configuration and preference data.ConfigurationThe specific settings or setup that determine how a system behaves.Configuration baselineA known-good record of files, modules, and settings used to detect unauthorized server changes.Configuration driftUnplanned changes that move a system away from its intended secure state over time.Configuration exposureThe risk created by how a product is set up, which can make a feature reachable to abuse.Configuration FileA settings file that controls how an application behaves and is often user-writable.Configuration file poisoningTampering with settings files so a program behaves in a malicious or unintended way.Configuration hardeningAdjusting device settings to reduce exposure, such as disabling unnecessary services or enforcing stronger authentication.Configuration hygieneThe practice of keeping settings, defaults, and documentation aligned with current platform behavior.Configuration integrityThe trustworthiness of device settings, accounts, and administrative controls.Configuration ItemAny tracked component in IT operations, such as a server, application, or service.Configuration managementThe practice of keeping security settings, permissions, and service options under control.Configuration remnantsLeftover settings or account traces found on a device.Configuration reviewThe process of checking settings to make sure exposed services are only doing what they need to do.Configuration riskSecurity exposure created when systems are set up with unsafe or inconsistent settings.ConfinementMesures prises pour limiter tout accès, toute propagation ou tout dommage supplémentaires pendant un incident.Confirmation biasThe tendency to favor information that supports a pre-existing belief.Confirmation humaineUn contrôle qui exige qu’une personne approuve une action sensible avant son exécution.Confirmed factsinformation verified enough to support a decision.Confirmed incidentA validated security case that has been reviewed and classified as real.Conformity AssessmentThe process used to show a product meets applicable legal and technical requirements before market placement.Conformity assessment bodiesMember-state designated bodies involved in evaluating whether certain products meet CRA requirements.Confused deputyA trusted system is tricked into using its authority on behalf of an attacker.ConjectureA mathematical statement believed to be true but not yet fully proven.Connected appA third-party integration that may access cloud data if approved by a user or administrator.Connected applicationsThird-party tools linked to a platform through permissions, APIs, or tokens.Connected appsExternal services or accounts an AI system can read from or act within.Connected devicesHardware that communicates with other systems over local or remote networks.Connected displaysExternal screen support that lets a device extend its workspace beyond the built-in display.Connected hardwareA physical device that relies on networked services or updates.Connected TVInternet-connected television that can deliver streamed video and digital ads.Connected TV (CTV)A television that runs internet-connected apps and services through a dedicated software platform.Connected-app permissionsAccess rights that let an assistant interact with other services.ConnecteurUn lien qui permet à un système d’IA d’interagir avec des applications, des sources de données ou des outils externes.Connection URLThe database connection string where host, options, and other settings are passed to the driver.ConPTYThe Windows pseudoconsole layer that separates terminal user interface handling from shell execution plumbing.Consensusthe process by which a distributed system agrees on the valid state of transactions.Consensus adoptionA decision made without formal objection from participating states, even when political differences remain.ConsentFreely given, specific, informed, and unambiguous agreement for processing; often difficult to rely on in employment settings.Consent bannerA notice interface used to present tracking choices and collect user consent where required.Consent boundaryThe point where a user approves what data or actions an app may access.Consent fatigueThe weakening of user attention after repeated approvals, which can make risky actions easier to slip through.Consent FlowThe sequence of prompts and choices used to obtain user permission for a feature.Consent managementThe workflow for recording, enforcing, and updating a person’s permission choices for data use.Consent PhishingA social-engineering tactic that tricks users into granting a malicious app access to cloud resources.Considérant 26Le passage du RGPD qui encadre l’identifiabilité en tenant compte des moyens réalistes, du coût, du temps et des technologies disponibles.Consistencythe ability of a system to produce stable, repeatable results.ConsolidationA market process where smaller players merge, exit, or are absorbed by larger firms.ConstraintA rule that fixes size, angle, position, or relation inside a sketch so the model stays controlled.Consultative useAn AI mode that supports human decision-making without taking action itself.Consumer-grade 3D printerAn affordable desktop machine made for hobby or light-use fabrication.Consumption pricingA billing model where charges track actual usage, such as requests, credits, or runtime activity.Contact hygieneThe practice of keeping address books accurate, current, and free of unintended recipients.Contact impersonationA scam method that pretends to be someone in a victim's personal network.Contact leakUnauthorized disclosure of details such as email addresses or phone numbers.Container EscapeA break-out from a container into the underlying host system.Container imageA packaged runtime snapshot used to deploy applications, which can carry bundled dependencies into production.Container registryA service that stores and distributes container images for deployment and automation.Container runtimeThe software layer that runs and isolates containers on a host system.Container scannerA tool that inspects images for vulnerabilities, bad practices, or risky components.Containment CheckA safeguard that verifies a computed path stays inside an approved directory.Contamination controlMeasures that limit unwanted substances or mixed material in a recovery stream.Contamination croisée de résineMélange non désiré d’une résine dans une autre, ce qui peut affecter la polymérisation et la qualité de la pièce.Contempt ordera court action used to enforce compliance with a judicial order.Content APIA read-oriented interface designed to serve published content to clients and applications.Content classifierA filter that scans input for suspicious patterns, unsafe commands, or hidden payloads.Content deliveryThe process used to publish digital items to users through a platform.Content Delivery Network (CDN)A distributed network that delivers web content through nearby edge servers.Content depthThe amount of context, detail, and substance a post provides.Content distribution systemthe path content follows from creation to editing, approval, publication, and reuse.Content integrityThe assurance that published web content has not been altered without authorization.Content management systemSoftware used to create, edit, publish, and organize website content.Content moderationPlatform actions that remove, label, limit, or demote posts, accounts, or links.Content poisoningMalicious alteration of trusted site content to mislead users or deliver harmful payloads.Content provenancethe ability to track where content came from and how it moved through a digital system.Content Security PolicyA browser control that limits what scripts, files, and remote resources a page can load.Content Security Policy (CSP)A browser control that limits which scripts and resources a page may load.Content URIAn Android mechanism for sharing files through controlled, permissioned references.Content-based detectionA parsing method that identifies file type by inspecting internal structure rather than relying only on the extension.Content-Encodingdeflate: An HTTP header that indicates compressed content using the Deflate algorithm.Content-management systemSoftware used to publish and update website content, often a target for attackers.Content-Security-PolicyA browser control that restricts where scripts and other content can load from.Contenu synthétiqueTexte, audio, images ou vidéo générés ou modifiés par l’IA, pouvant nécessiter des vérifications d’authenticité.ContextThe surrounding facts that make a brief update easier to interpret.Context engineA system that supplies models with relevant background data so responses can be grounded in specific evidence.Context GroundingConnecting an AI system to trusted data sources so responses stay relevant to an organization’s information.Context IsolationSeparating trusted instructions from untrusted content to reduce interference and leakage.Context layerThe metadata, signals, and supporting information an AI system uses to make better decisions.Context lossthe removal of surrounding details that help a statement remain accurate and understandable.Context menu keya keyboard key that opens the right-click style menu.Context scopingLimiting what data, files, or systems an AI model can use for a task.Context switchingThe productivity loss that happens when responders must jump between multiple tools or tasks.Contexte de la pageInformations du navigateur, telles que le contenu, le titre ou l’URL, qui peuvent être transmises à un assistant pour en faire un résumé.Contextual moderationReview that interprets a post in its community setting, not just by isolated keywords.ContiA ransomware family referenced in reporting as the basis for Gunra’s reported locker lineage.Conti lineageA label used when later ransomware tools appear to share code or tradecraft with Conti.Contingency planningThe process of preparing systems, people, and procedures to keep services running during disruption.Continuité des activitésla discipline de planification qui maintient les opérations essentielles en fonctionnement pendant une perturbation.ContinuityThe ongoing flow of activity that keeps a community or project visible over time.Continuity of careOngoing coordination that keeps treatment consistent across services and settings.Continuity planningpreparation for keeping essential services running during an incident.Continuous Access EvaluationA mechanism that can re-check sessions after login and shorten some replay windows.Continuous DeliveryA software delivery practice where code is kept in a deployable state through automated build and test steps.Continuous detectionAlways-on monitoring that looks for suspicious activity in near real time.Continuous monitoringOngoing checks that track whether an AI system is still performing as expected.Continuous responseRapid or automated containment actions triggered by detection logic.Continuous Threat Detection (CTD)A monitoring approach that continuously discovers assets, traffic, and suspicious behavior in an OT environment.Continuous trainingOngoing instruction that helps workers keep pace with new tools, risks, and procedures as the workplace changes.Contournement de l’authentificationUne faille qui permet à un attaquant de contourner le processus normal de connexion.Contournement de la 2FAUne défaillance dans le flux d’authentification qui permet à un utilisateur d’ignorer ou de contourner une vérification de second facteur.Contract disclosureThe information presented to a customer so terms, costs, and obligations are understandable before acceptance.Contract logisticsOutsourced warehousing, transport, or fulfillment handled by a third-party provider.Contract summaryThe document that records the key terms, duration, and pricing logic of an energy offer.Contractual freedomThe principle that parties should still be able to negotiate their own deal terms.Contradictory processA procedure in which each side can examine and challenge the evidence.Contrat relationnelUn accord juridiquement exécutoire fondé sur des objectifs communs, la flexibilité et une coordination continue.Contrat transactionnelUn accord fixe centré sur des tâches, des livrables et des pénalités spécifiés.Contrib moduleAn optional PostgreSQL add-on that extends functionality but also expands the attack surface.ControlA safeguard or process designed to reduce security risk.Control and complianceGuardrails that limit automated actions and keep them aligned with policy.Control environmentThe combination of policies, leadership, and procedures that influences how well risks are managed.Control flowThe order in which a program executes its instructions.Control logicThe rules that determine how a machine responds to sensor input.Control loopthe feedback process that keeps a robot stable and responsive.Control mappingThe process of turning policy or regulatory requirements into technical actions.Control maturityThe depth and reliability of an organization’s security controls, such as identity protection, logging, and access management.Control PanelThe device settings area where administrative functions and protections are managed.Control pointThe place in a system where a rule, check, or decision is applied.Control segmentThe ground infrastructure that manages satellites, signals, and system updates.Control surfaceThe set of points where a system can be checked, reviewed, or governed.Control-planeThe management layer used to configure cloud resources and permissions.Contrôle d'accès défaillantUne faille où un système ne parvient pas à empêcher les utilisateurs d'accéder à des actions ou à des données auxquelles ils ne devraient pas avoir accès.Contrôle d’accèsRègles qui définissent qui ou quoi peut lire, modifier ou exécuter des actions à l’intérieur d’un système.Contrôle des applicationsPolitique de sécurité qui restreint les exécutables et les bibliothèques pouvant s’exécuter sur un appareil.Contrôle parentalParamètres permettant aux adultes de gérer l’accès en ligne, les dépenses et les fonctions de communication pour les enfants.Contrôleur JenkinsLe serveur Jenkins central qui gère les plugins, les tâches et l’orchestration des builds.Controlled accessRestricted use of a system or tool, usually limited to approved users, environments, or purposes.Controlled environmentA restricted testing setup designed to limit unintended side effects.Controlled research programA limited-access environment used to test sensitive capabilities under supervision.Controlled Unclassified Information (CUI)Sensitive government-related information that is not classified but still requires protection.ControllerThe organization that decides why and how personal data is processed.Controller-managed architectureA setup where a central controller coordinates multiple access points or devices.Controllo dell'energiaThe ability to influence production, movement, pricing, and access to energy resources.Controls Analytics Model (CAM)A FAIR extension focused on the effectiveness and value of controls.Conversation contextThe information an assistant uses to generate its next output.Conversational searchA search interface that accepts natural-language questions instead of only keywords.Convolutional Neural Network (CNN)A deep learning model that is strong at finding local patterns and textures in images.Conway's LawThe idea that software architecture often reflects the communication structure of the organization that builds it.CookieSmall data stored by a browser to remember state or user-related information across requests.Cookie bakingThe process of preparing cookies with heat, timing, and basic kitchen equipment.Cookie de sessionUn jeton de navigateur qui peut maintenir une session utilisateur ouverte et qui peut être abusé s’il est volé.Cooling designThe way a system moves heat away from its components.Cooling loadThe amount of cooling capacity needed to keep servers within safe operating temperatures.Cooling modA hardware change meant to improve heat removal and stability.Coordinated disclosureA process for privately sharing security findings with maintainers before public release.Coordinated vulnerability disclosureA structured process for reporting and fixing security flaws before wider exposure.Coordination LatencyThe delay created when teams must manually align evidence, ownership, and action across multiple systems.Copie fantômeUn instantané de restauration Windows que les ransomwares peuvent supprimer pour gêner la récupération.Copie instantanée des volumesUne fonctionnalité d’instantané de Windows que les rançongiciels ciblent souvent pour entraver la récupération.Copies fantômesInstantanés de récupération Windows que certaines familles de ransomware suppriment pour rendre la restauration plus difficile.CopilotMicrosoft’s AI assistant used inside Edge and related Microsoft products.Copilot+ PCA Windows device class with hardware support for Microsoft’s AI-oriented features.Copper switch-offThe planned retirement of legacy copper access networks in favor of newer connectivity infrastructure.Copy-on-WriteUn mécanisme de sécurité qui copie les données partagées avant qu’elles ne soient modifiées.Copy-on-write (COW)A memory-safety mechanism that duplicates data before modification to avoid unintended shared writes.CopyleftA license model that can require derivative works to keep the same freedoms.Copyright clearanceThe process of confirming that data or media can be used legally for training, publishing, or distribution.CoreThe main application code of a platform, separate from add-on components.Core protocolApache Artemis' native messaging protocol used for client and broker communication.Core security releaseA coordinated update that delivers fixes for a serious vulnerability in Drupal core across maintained versions.CoreutilsA set of basic command-line tools used for everyday file and text operations.CoreXYA printer motion layout that coordinates belts to move the toolhead efficiently in two axes.Corporate endpointA company-managed laptop or workstation that can hold sensitive credentials and access tokens.Corporate structurethe legal framework that defines how a company is formed and governed.CorpusThe collection of documents, pages, or texts used to train, fine-tune, or feed an AI system.CorrélationLe processus de mise en relation de points de données distincts afin d’identifier des modèles, des relations ou une signification.Correlation artifactA label or identifier used to match events across logs, reports, or samples during analysis.Correlation handleA string used to link related posts, logs, or cases before its technical meaning is fully confirmed.Correlation KeyA value used to match related records across systems or feeds without proving that a security incident actually occurred.Correlation MarkerA reference value used to group related events or records in a feed or database.Correlation metadataIdentifier details that help track a case, but do not by themselves confirm technical compromise.Correlation PivotA detail such as a hash, timestamp, or alias that analysts can use to connect separate security records.Correlation TokenA value used to link records or events in a dataset without proving compromise.Corroborationindependent evidence that confirms whether a claim is true, such as logs, samples, or forensic findings.Corrugatedshaped with repeated ridges and grooves.CORSA browser mechanism that controls which origins can make requests to a web service.Cost Anomaly DetectionA service or method that flags unusual spending patterns for review.Cost Optimization HubAn AWS service that aggregates recommendations for reducing cloud spend.Couche d'identitéLes contrôles d’authentification et d’autorisation qui déterminent qui peut se connecter et ce qu’il peut faire.Counter-UASDefensive tools and procedures used to detect, track, and defeat unauthorized drones.Counterfeit installerA fake setup file or page designed to imitate legitimate software distribution.Counterfeit storefrontA fake sales site built to collect money or data while pretending to be a real merchant.CounterintelligenceSecurity work aimed at detecting and stopping foreign intelligence collection or recruitment efforts.CountLoaderA malware loader used to stage follow-on malicious payloads.Country-code top-level domainA domain suffix assigned to a country or territory, such as .ms.Coupon codea short token that applies a discount during signup or checkout.Court of Justice of the European UnionThe court that can rule on disputes involving EU law compliance.Coûts récupérablesCoûts qui peuvent être justifiés dans le cadre de la mise à disposition des données, y compris les coûts de diffusion et de stockage.Cover entityHome Assistant’s device type for openings and closings such as blinds or shades.Coverage limitsThe maximum amount an insurer will pay for a covered loss.Coverage restrictiona limit on when, how, or how much a policy will pay.cPanelUne interface de contrôle d’hébergement web utilisée pour l’administration au niveau du compte.cpdavdA cPanel daemon used for remote management functions and related services, making it a sensitive part of the hosting stack.CPFBrazil's taxpayer identification number used widely in identity checks and administrative records.cpsrvdLe serveur d’applications pour cPanel, WHM et Webmail.CPUThe central processing unit, the main chip that executes most computer instructions.CPU architectureThe processor design a device uses, which affects whether a malware sample can run on it.CPU consumptionThe processing load created by encryption, routing, and app activity on the device.CRAThe EU Cyber Resilience Act, a regulation that raises cybersecurity obligations for products with digital elements.CrackdownA targeted enforcement action aimed at disrupting a criminal operation.Crash dumpA file or memory snapshot created during a system failure to help with root-cause analysis.Crash loopA repeated cycle where a system fails, restarts, and fails again before normal use is possible.CREATE privilegeA database permission that can allow certain users to install trusted extensions such as pgcrypto.CreateFileWUne API Windows utilisée pour ouvrir ou créer des fichiers et des périphériques, y compris des paramètres qui contrôlent le partage.Credential AccessAn attack objective focused on obtaining usernames, passwords, tokens, or other login material.Credential coercionA technique that tricks a device into authenticating to a location chosen by an attacker.Credential dumpingThe extraction of passwords, hashes, or tokens from memory or system files.Credential exposureLeakage of authentication material such as passwords, tokens, or keys that can be reused for unauthorized access.Credential hygieneThe practice of reducing account risk through strong passwords, MFA, rotation, and monitoring.Credential LeakUnauthorized disclosure of secrets such as passwords, API keys, or session tokens.Credential materialSecrets such as tokens, keys, or other authentication data that can unlock internal systems.Credential phishingA tactic that tries to steal usernames, passwords, or session details through fake login prompts or messages.Credential reviewChecking and resetting passwords, keys, and tokens after a suspected compromise.Credential RevocationInvalidating a secret so it can no longer be used if it has been exposed or misused.Credential sprawlThe uncontrolled spread of secrets, tokens, and keys across laptops, pipelines, and cloud services.Credential stealerMalware designed to collect secrets such as API keys, tokens, or passwords.Credential storeA local browser or system location where saved usernames and passwords may be kept.Credential-phishingFake login flows designed to capture usernames, passwords, or authentication codes.Credential-stealing malwareMalicious code designed to collect secrets such as tokens, passwords, or keys.Credential-stealing wormMalware designed to collect secrets and use them to spread further.Credentialed accessEntry gained using valid account details, often after theft, reuse, or phishing.CredibilityThe degree to which a creator is seen as trustworthy, authentic, and worth listening to.Credibility issueA loss of trust that can arise when a standard is announced before its rules are fully specified.Credit carda payment product that lets a customer borrow up to a set limit.Credit depletionThe rapid use of allotted units before a billing period ends.Credit freezeA restriction on access to a credit file that makes it harder for criminals to open new accounts.Credit monitoringA service that watches for signs of identity misuse after a breach and alerts the affected person.Credit ratingAn assessment of how likely an organization is to meet its financial obligations.Crime-as-a-ServiceAn underground business model where hacking tools, access, or services are sold or rented to other criminals.Crisis communicationThe controlled release of accurate updates during a disruptive incident.Crisis powersspecial authorities used during shortages or emergencies to coordinate supply and prioritize critical uses.CriticalA severity label for issues that can have severe security impact and often demand urgent remediation.Critical business functionA service or process the organization depends on to operate and meet obligations.Critical dependencyA supplier, process, or service whose failure can materially affect business continuity.Critical entityAn organization whose disruption could have serious societal or economic impact.Critical flawA high-severity vulnerability that can have serious security impact if exploited.Critical Information InfrastructureEssential systems whose disruption can affect national security, public safety, or core services.Critical manufacturingAn infrastructure sector where cyber disruption can affect production and supply chains.Critical Patch UpdateOracle’s quarterly security release cycle for supported products, including Java.Critical Patch Update (CPU)Oracle’s broader quarterly patch release, often used as the main catch-up point for supported products.Critical providerA third-party service whose disruption could materially affect regulated operations.Critical raw materialsMaterials considered strategically important because supply disruptions can affect industry and technology.Critical sectorA sector whose disruption could have major effects on society, the economy, or public services.Critical sectorsEssential industries or services whose disruption can affect public safety, security, or economic stability.Critical security patchA fix for a high-severity vulnerability that could cause major harm if left unaddressed.Critical Security Patch Update (CSPU)An Oracle security release issued outside the normal quarterly cadence for urgent fixes.Critical supplierA third party whose role can materially affect how an essential service is delivered.Critical vulnerabilityA flaw that can allow arbitrary code execution during normal browsing, according to Chromium severity guidance.CRITICAL_PROCESS_DIEDWindows stop code 0xEF, used when an essential process ends unexpectedly or is corrupted.Critical-severity vulnerabilityA flaw with the highest-priority risk profile, often associated with major impact if exploited.CriticalityThe degree to which a sector or service is vital to society, based on systemic relevance and disruption impact.Criticité critiqueUne classification de risque de premier niveau utilisée pour les vulnérabilités qui nécessitent une attention immédiate.CRLF InjectionA bug caused by unsafe carriage return and line feed characters entering a line-oriented protocol or header.CRMCustomer relationship management software used to store accounts, opportunities, and sales activity.Cross-border collaborationJoint action between authorities in different countries to investigate or disrupt cybercrime.Cross-border complianceThe challenge of applying local rules to services operating across multiple jurisdictions.Cross-border controlsOversight rules that govern activity across different jurisdictions.Cross-border cooperationcoordinated work between authorities in different countries.Cross-border integrationthe process of connecting business, technical, and legal workflows across countries.Cross-border paymentsTransfers that move between countries and often face extra cost, delay, or compliance friction.Cross-border routingThe movement of traffic through networks or servers outside the user's country.Cross-device syncthe process of keeping data aligned across multiple connected devices.Cross-Functional CollaborationShared work between departments such as IT, security, legal, and operations to keep AI use coordinated.Cross-platformCapable of operating across more than one environment or operating system.Cross-platform malwareMalware designed to operate on more than one operating system.Cross-platform releaseA product build designed to run on multiple operating systems, often with separate packaging and testing.Cross-service data fusionCombining information from multiple apps or services to power one feature or decision.Cross-session memoryInformation retained from one chat to influence future chats.Cross-site request forgery (CSRF)An attack that tricks a logged-in user into submitting an unwanted action.Cross-site scripting (XSS)A web flaw where unsanitized input is rendered as script in another user’s browser.Cross-Site WebSocket HijackingAn attack where a malicious website abuses a vulnerable WebSocket endpoint in another session.Crown-jewel systemA highly important asset whose compromise would cause major operational, financial, or strategic harm.CRTcathode ray tube, the display technology used in older television sets.Cryocoolera device designed to remove heat and produce extreme cold for specialized hardware or experiments.Crypto agilityThe ability to replace or upgrade cryptographic algorithms without rebuilding the whole system.Crypto ATMA kiosk that lets users buy cryptocurrency, often with cash or a debit card.Crypto clipperMalware that targets copied cryptocurrency wallet text and can replace it before a transaction is pasted.Crypto operatorA business that provides services for buying, selling, storing, or transferring digital assets.Crypto walletSoftware or hardware used to manage digital assets and the keys that control them.Crypto-AgilityThe ability to replace cryptographic algorithms without major disruption to systems or services.Crypto-assetsDigital assets whose legal and tax treatment can change across jurisdictions and over time.CryptocurrencyDigital money recorded on a blockchain, often used in darknet trade because it moves outside traditional banking rails.Cryptocurrency fraudDeceptive schemes that use crypto assets or crypto-themed pitches to steal money or data.Cryptocurrency railA digital payment path used for transferring funds without traditional banking intermediaries.Cryptographic agilityThe ability to replace or update cryptographic algorithms and keys without major disruption.Cryptographic attestationA proof mechanism that helps verify a system is running trusted code in a genuine protected environment.Cryptographic barrierAn encryption or lock mechanism that prevents access without the right credentials or keys.Cryptographic digestThe output of a hash function, often used to compare or correlate files.Cryptographic hashA fixed-length digital fingerprint of data that can help identify a file or record, but does not prove compromise.Cryptographic inventoryA map of where and how cryptographic algorithms are used across an organization.Cryptographic migrationThe process of moving systems and data to stronger or future-resistant encryption methods.Cryptographically relevant quantum computerA quantum machine powerful enough to break some widely used public-key cryptography.Cryptographically uniqueGenerated so each instance differs in a way that frustrates simple reuse of detections.CryptojackingUnauthorized use of a device’s computing power to mine cryptocurrency.CryptolectA coded group language that signals belonging while making meaning less obvious to outsiders.CryptominerSoftware that uses a device's processing power to generate cryptocurrency, often without clear user consent.CSDDDEU due-diligence policy that pushes companies to monitor and manage risks across business relationships.CSIRTA computer security incident response team that coordinates technical response to security incidents.CSOChief Security Officer ; un rôle de direction axé sur le leadership en matière de sécurité, la gestion des risques et la protection des actifs.CSPContent Security Policy, un contrôle du navigateur qui limite les sources à partir desquelles les scripts et autres ressources peuvent être chargés.CSRFA web attack that tricks a trusted user’s browser into sending unwanted actions to a site.CTFMONA Windows process tied to the Text Services Framework and input handling.ctfmon.exeA Windows process tied to text input and language services.CTICyber threat intelligence used to describe threats, actors, behaviors, and indicators for defense planning.CTI feedCyber threat intelligence content that tracks attacker activity, claims, and indicators.CTOChief Technology Officer, a senior role focused on technical architecture and engineering strategy.CUCMCisco Unified Communications Manager, Cisco’s enterprise call-control and communications platform.CUIControlled Unclassified Information, sensitive government-related data that is not classified but still requires protection.culture de l'IALa capacité à comprendre, évaluer et utiliser l'intelligence artificielle avec discernement.Cumulative security updateAn update package that bundles security fixes and other changes into one release.Cumulative updateA release that bundles multiple security and reliability fixes together.Cumulative update modelA patching approach that bundles fixes into a single monthly release for deployment.CUPItalian public-administration acronym used to identify a project in official documentation.Curated archiveA selected collection assembled to represent a larger body of material.Curationthe act of selecting and organizing content into a meaningful collection.Current accountA traditional bank account used for everyday payments and money management.Current processThe running application instance affected by the flaw, often carrying the user’s permissions.CurriculumThe planned set of subjects, skills, and learning goals a school teaches.Curve25519An elliptic curve used in modern cryptography, especially for secure key agreement.CustodyThe rule set that decides who holds and protects the private keys or recovery path.Custom HTML TagA GTM feature that can run arbitrary HTML or JavaScript, which increases flexibility and risk.Custom Malware ImplantTailored malicious software built for a specific operation, target, or intrusion chain.Custom MCPA Flowise feature for connecting to Model Context Protocol servers through a configurable integration path.Custom permissionsAdmin-defined rules that narrow or disable access to specific features.Custom Primary PasswordEdge's browser-specific extra password used to protect access to saved passwords.Custom Python componentsUser-defined code blocks that extend an application’s behavior, but also increase risk if abused.Custom templateA controlled GTM option for deploying tags with more guardrails than arbitrary HTML snippets.Custom URI SchemeAn app-specific protocol prefix such as claude-cli://.Customer impactThe practical effect a security or fraud decision has on real users.Customer journeyThe full path from browsing to purchase to support after the sale.Customer retentionthe effort to keep existing users subscribed over time.Customer-facing workflowA process that directly interacts with users, clients, or buyers.CutoverThe transition point from an old system or process to a new one during migration.Cutover sequencingthe planned order of actions used to move an ERP system into production.CVEUn identifiant standardisé utilisé pour suivre les vulnérabilités divulguées publiquement.CVE-2022-0492The vulnerability identifier associated with this Linux kernel cgroups v1 issue.CVE-2023-27532A vulnerability that Microsoft has associated with an earlier Qilin Linux/ESXi variant for credential theft.CVE-2024-21182The vulnerability identifier used to track this WebLogic security issue across advisories and scanners.CVE-2025-12659The vulnerability identifier used to track this specific Simcenter Femap memory-corruption issue.CVE-2026-46376The identifier for the FreePBX vulnerability affecting UCP access through userman.CVSSUn cadre ouvert pour évaluer la gravité des vulnérabilités de 0,0 à 10,0 ; 8,8 se situe dans la plage Élevée, pas Critique.CVSS 10The highest base severity score in CVSS, signaling maximum criticality.CVSS 10.0The highest severity rating in the Common Vulnerability Scoring System, used for critical flaws.CVSS 3.1A scoring system used to rate vulnerability severity and compare risk across different issues.CVSS 9,8Un score de gravité critique indiquant un risque proche du maximum.CVSS v3.1A standard scoring system used to rate the severity of software vulnerabilities.CVSS v4A vulnerability scoring system that rates severity and includes deployment-dependent conditions.CVSS v4.0A vulnerability scoring system used to rate severity and prioritize remediation.CVSSv3A scoring system used to rate the severity of software vulnerabilities.CWECommon Weakness Enumeration, une taxonomie utilisée pour classer les schémas de faiblesses logicielles.CWE-113A weakness category for improper handling of CRLF sequences in HTTP headers, which can disrupt request processing.CWE-116Improper encoding or escaping of output.CWE-1188A weakness class for resources initialized with insecure default settings.CWE-125Classification MITRE pour les failles de lecture hors limites pouvant exposer de la mémoire sensible.CWE-190MITRE’s weakness category for integer overflow or wraparound defects.CWE-204A weakness class for observable response differences that reveal sensitive state or data.CWE-208A weakness category for observable timing discrepancies that can leak sensitive state.CWE-22The weakness category for path traversal or path manipulation bugs.CWE-23MITRE’s category for relative path traversal weaknesses in file handling.CWE-266A weakness class for incorrect privilege assignment, where software gives an actor more power than intended.CWE-284A weakness class for improper access control, where a system fails to enforce who is allowed to do what.CWE-287A weakness category for improper authentication or missing authorization checks.CWE-306A weakness class for missing authentication on a critical function.CWE-312A weakness category for storing sensitive information in cleartext.CWE-334A weakness where the possible random values are too limited, making guessing attacks easier.CWE-346A weakness category for failures to properly validate the origin of data or communication.CWE-400A weakness category for uncontrolled resource consumption that can lead to service disruption.CWE-444A weakness category for inconsistent interpretation of HTTP requests.CWE-470A weakness pattern where externally controlled input is used to choose classes or code to load.CWE-476A weakness classification for null pointer dereference issues.CWE-489The weakness class for Active Debug Code left available in a product.CWE-494A weakness class for downloading code without sufficiently verifying its origin or integrity.CWE-502a weakness class for deserialization of untrusted data, often linked to code execution risk.CWE-522A weakness category for insufficiently protected credentials, sometimes used to describe clear-text secret exposure.CWE-532A weakness pattern involving sensitive information being written into logs.CWE-552A weakness involving files or directories accessible to external parties.CWE-59A weakness involving improper link resolution before file access.CWE-620A weakness class for password changes that do not properly verify the current user’s identity.CWE-73A weakness involving external control of a file name or path.CWE-749A weakness class for exposed methods or functions that are not properly restricted and can be abused.CWE-77Une catégorie de faiblesse liée à une gestion incorrecte des éléments spéciaux d’une commande.CWE-770A weakness class for software that fails to limit resource consumption.CWE-78The weakness category for improper neutralization of special elements used in an OS command.CWE-787A weakness class for writes that go outside the bounds of a memory buffer.CWE-79A weakness class for improper neutralization of input during web page generation.CWE-798The weakness category for hard-coded credentials embedded in software.CWE-822A weakness class involving untrusted pointer dereference in privileged code.CWE-862A weakness category for products that do not enforce authorization checks properly.CWE-88A weakness class involving improper handling of argument delimiters, which can lead to argument injection.CWE-89The weakness category for SQL injection, used to classify flaws involving improper handling of SQL commands.CWE-93The weakness class for software that fails to properly neutralize CRLF sequences.Cyber AB MarketplaceThe ecosystem directory where CMMC participants and service providers are listed.Cyber attacka malicious digital event that can disrupt systems, data, or operations.Cyber competencesthe skills needed to understand, prevent, detect, and respond to cyber threats.Cyber Crime Risk OrderA proposed UK measure intended to place restrictions on cyber offenders.Cyber defenceThe protective side of cyber operations focused on preventing, detecting, and responding to hostile activity.Cyber DefenseDefensive security work aimed at preventing, detecting, and responding to attacks on systems and data.Cyber deterrenceThe use of cyber defense, resilience, and response capabilities to discourage digital aggression.Cyber eventA security-related occurrence that may be suspicious, attempted, or disruptive, but is not yet confirmed as an incident.Cyber forcea dedicated organization designed to conduct and coordinate cyber missions.Cyber insuranceInsurance that may cover costs linked to cyber incidents, often with underwriting questions about security controls and recovery planning.Cyber literacyThe ability to understand cyber risk, control trade-offs, and the business impact of security decisions.Cyber maturityThe level of readiness, governance, and operational capability a sector or organization has to manage cyber risk.Cyber reasoning systeman AI-driven system intended to find and patch software vulnerabilities.Cyber Resilience ActAn EU regulation that adds cybersecurity duties across the lifecycle of products with digital elements, including secure design and vulnerability handling.Cyber Resilience Act (CRA)An EU regulation that sets cybersecurity requirements for connected products sold in the market.Cyber riskthe chance that digital systems, identities, or data will be disrupted, stolen, or abused.Cyber skills frameworkA common reference model for defining cybersecurity roles, tasks, and competencies.Cyber threat intelligenceInformation about digital threats used to guide defense and prioritization.Cyber winningsProfits or gains derived from cybercrime activity.Cyber workforceThe number of people employed in security-related roles across a region or sector.Cyber-enabled financial fraudFraud that uses digital systems, fake communications, or compromised accounts to steal money.Cyber-enabled fraudfraud that relies on digital systems, online accounts, or networked services to reach victims.Cyber-extortionCoercion that uses stolen access, data threats, or disruption pressure to force payment or leverage.Cyber-physical riskThreats that affect both digital systems and the physical processes they control, such as energy networks.Cyber-physical securityProtection of systems where digital compromise can affect physical operations or outcomes.Cyber-Physical Systems (CPS)Systems where software interacts with physical processes, such as industrial equipment or facility controls.Cyber-surveillance itemSoftware, hardware, or related technology that can be used to monitor or intercept communications.CyberattackA malicious attempt to disrupt, steal from, or gain unauthorized access to a system.Cybercrimecriminal activity carried out through or against digital systems and services.Cybercrime DivisionThe specialist law-enforcement unit focused on digital offending and online investigations.Cybercrime ecosystemThe interconnected services, identities, and infrastructure that help online crime operate.Cybercrime infrastructurethe services and systems that help malicious operations scale.Cybercrime treatyAn international agreement meant to coordinate how states address crimes committed through or against digital systems.CyberdeckA custom portable computer, usually built for a distinctive look and hands-on use.CyberespionageIntrusion activity focused on secret collection, surveillance, or long-term intelligence gathering rather than immediate destruction.Cybersecurity certificationA formal process that evaluates whether products or services meet defined security requirements.Cybersecurity CollaborationCoordinated sharing of security knowledge, practices, and lessons between organizations.Cybersecurity maturityHow consistently an organization or sector manages risks, capabilities, and operational readiness over time.Cybersecurity ModernizationUpdating security policy, tools, and controls to match current threats and technology.Cybersecurity procurementthe process of selecting and buying security tools and services.Cybersecurity resilienceThe ability to prepare for, respond to, and recover from security problems with limited disruption.Cybersecurity supply chain risk management (C-SCRM)Managing risks from products, services, suppliers, and acquisition decisions across the full lifecycle.Cybersecurity teamA group responsible for protecting systems, data, and operational resilience.Cybersecurity workforceThe professionals who build, operate, and defend security programs.CyberspaceThe interconnected digital environment made up of networks, systems, devices, and communications infrastructure.Cyberviolence of genderHarmful conduct online that targets a person because of gender, often through intimidation, humiliation, or coercion.Cycle de vie des donnéesLe parcours complet des données, de la collecte à la conservation, au partage et à la suppression.Cycle detectionA method for recognizing repeated traversal paths and preventing infinite loops.Cyclone separatora device that uses spinning air to separate heavier particles from airflow.CycloneDXAn open BOM standard used to describe supply-chain components in a machine-readable format.CYDA compact low-cost display board used in hobby electronics builds.CythonA toolchain that can compile Python-oriented source into C and then into a binary module.D.Lgs. 138/2024Italy’s legislative decree that transposes NIS2 into national law.D.Lgs. 24/2023the Italian legislative decree that frames whistleblowing rules in this context.d20A 20-sided die used in tabletop games to generate outcome ranges.D2D PHYDie-to-Die Physical Layer, the package-level interface used for high-speed links between silicon dies.DAC8EU directive that strengthens tax transparency rules affecting crypto activity.Daemon modeA background service mode that listens for network requests and performs actions without a logged-in user session.Daily driverThe primary computer or operating system a person uses every day.Danger d’asphyxieUn danger causé par le déplacement de l’oxygène par un autre gaz, comme le CO2, dans un espace clos.DAOA decentralized organization that uses on-chain rules to coordinate decisions and resources.Dark dataInformation that is generated but not properly stored, indexed, or made available for later use.Dark PatternAn interface trick that nudges users toward choices they may not have made freely.Dark patternsInterface tactics that steer users toward choices they may not have intended to make.Dark web forumsHidden online marketplaces and discussion spaces used to trade illicit data and services.Darknet MarketplaceUn marché en ligne caché, souvent construit sur Tor, utilisé pour échanger des biens, des services et des données illicites.DarkroomA controlled workspace used for handling and processing light-sensitive film or paper.DASDistributed Antenna System, une conception de couverture utilisée pour améliorer la puissance du signal à l’intérieur des bâtiments ou dans les zones denses.Dash CamA vehicle-mounted camera used to record driving conditions, and sometimes additional data depending on configuration.DashboardAn interactive view that presents key metrics, trends, and business status at a glance.Dashboard file editingA WordPress feature that lets administrators edit plugin and theme files from the control panel.Dashboard ServerA TCP/IP remote-control interface in PolyScope 5 that accepts commands over port 29999.Dashboard sprawlThe buildup of overlapping monitoring views that can slow down decision-making.DASTDynamic Application Security Testing, qui teste une application en cours d’exécution à la recherche de failles.Data ActUn règlement de l’UE qui fixe des règles relatives à l’accès aux données, au partage, à l’interopérabilité et aux obligations associées dans l’ensemble du bloc.Data analytics platformSoftware designed to process, query, and analyze large data sets for business or operational insight.Data ArchitectThe role that designs the overall data structure, flow, and long-term arrangement.Data architectureThe high-level blueprint for how an organization collects, stores, integrates, and uses data.Data at RestStored data that remains protected until the device or profile is unlocked.Data boundaryThe approved limits for where company information may go and how it may be handled.Data brokerA company that aggregates and sells personal data, often combining information from apps, advertisers, and other intermediaries.Data brokerageThe buying and selling of personal records, often outside the victim's awareness.Data centerA facility that houses servers, storage, networking, cooling, and backup power systems to keep digital services running.Data center loadThe electrical demand created by server farms, cooling systems, and supporting infrastructure.Data classificationThe process of sorting information by sensitivity so the right controls can be applied.Data ControllerThe organization that decides why and how personal data is processed under GDPR.Data debtThe accumulated cost of poor data quality, inconsistent formats, and neglected governance over time.Data DestructionA class of attack in which files or systems are intentionally deleted or overwritten to prevent recovery.Data diodeA hardware device that allows network traffic in only one direction.Data driftChanges in input data over time that can reduce model accuracy or trustworthiness.Data EgressUnauthorized or unusual outbound transfer of data from a network, often a warning sign before extortion.Data Encrypted for ImpactA ransomware technique in which files are encrypted to disrupt operations and pressure the victim.Data EngineerThe specialist who builds pipelines and prepares data so it can be used reliably.Data exportThe bulk extraction of records from a SaaS platform, often a key warning sign in extortion cases.Data export monitoringDetection of unusual copying, downloading, or extraction of information from internal systems.Data exposureA situation where information becomes accessible in an unintended way, even if theft is not confirmed.Data fabricA governed data architecture that connects distributed sources while keeping policy and access controls consistent.Data flowThe path information follows between a user device, a website, and third-party services.Data freshnessHow current a dataset is, which affects whether AI outputs reflect reality.Data FusionThe process of combining multiple data sources into one analytical view for investigation or decision-making.Data Governance ActEU framework related to data governance, circulation, and reuse.Data gravityThe tendency of large data sets to attract processing, storage, and services toward the place where the data already lives.Data in motionInformation being transferred between systems, such as through email, browsers, APIs, or cloud applications.Data in transitInformation moving across networks, such as between a sender and recipient.Data integrityThe property that information remains accurate, complete, and unaltered except by authorized change.Data InteroperabilityThe ability of separate systems to exchange and use data consistently without manual rework.Data lakehouseA data architecture that combines lake-like flexibility with warehouse-like structure and performance.Data leakunauthorized disclosure of information, whether through theft, exposure, or accidental release.Data Leak SiteA public page used by threat actors to name victims and pressure payment.Data leakageThe unintended exposure of sensitive information through prompts, logs, outputs, or connected services.Data literacyThe ability to interpret data critically and understand its limits, privacy implications, and security context.Data LoaderA bulk Salesforce tool for importing or exporting large amounts of data.Data localityThe practice of keeping data within a defined place or jurisdiction to meet security, privacy, or compliance needs.Data localizationa requirement that certain data remain within a specific country or region.Data manipulationAltering, inserting, or hiding data so systems or operators act on false information.Data maturityThe level of quality, control, and usability in an organization's data environment.Data migrationThe transfer and validation of business data from older systems into the new platform.Data modelingThe process of defining data structures and relationships at conceptual, logical, and physical levels.Data ownershipThe assignment of responsibility for maintaining, approving, and correcting data.Data PipelineThe collection, processing, and transfer chain that moves information from a shopper’s activity into a business decision.Data planeThe runtime path where live requests are processed and access decisions are enforced.Data poisoningThe deliberate corruption of training or fine-tuning data to degrade or steer a model.Data processingThe steps that turn raw information into usable output.Data protectionMeasures that limit how personal or sensitive information is collected, used, and retained.Data protection regulatorThe authority that enforces privacy law and can issue sanctions for weak handling of personal information.Data provenanceThe record of where data came from, who changed it, and whether it can be trusted.Data qualityThe accuracy, completeness, and consistency of data used to train or run AI systems.Data readinessThe state of having structured, validated, and usable data before AI is put into production.Data resaleThe criminal sale of stolen information to other actors who may reuse it in later abuse.Data retentionThe practice of keeping information for a defined period, which can increase exposure if sensitive data is stored longer than needed.Data sanitizationThe process of removing or destroying stored data so it cannot be easily recovered.Data segmentationSeparating datasets so that more sensitive records are harder to reach without extra authorization.Data sovereigntyThe principle that data should be governed and processed under rules aligned with a chosen legal or organizational control model.Data StewardThe person responsible for data quality, business meaning, and day-to-day stewardship.Data subject communicationThe notice sent to affected individuals after a breach when the risk to them is high enough to require it.Data theftUnauthorized copying or exfiltration of information, often used for extortion.Data validationThe process of checking whether inputs are complete, accurate, and suitable for analysis.Data visualizationThe presentation of data in visual form so patterns or activity are easier to see.Data-in-motionInformation being transmitted between systems, where interception or tampering risks are highest.Data-Leak Site (DLS)A public site used to publish victim names and, in some cases, stolen files as extortion leverage.Data-Loss Prevention (DLP)Controls designed to detect and limit unauthorized movement of sensitive data.Data-Only ExtortionAn attack model that relies on theft and leak threats without encrypting systems.Data-planeThe layer where actual data operations happen, such as reading a secret from a vault.Data-theft extortionA criminal model where attackers steal information and pressure victims with disclosure threats.Database abstraction APIA shared software layer that helps applications talk to databases through a common interface.Database abstraction layerFramework code that standardizes database access across different engines.Database secretsCredentials or keys stored in application or configuration data that can help an attacker deepen access.Datakit libraryA third-party component used for CAD data exchange and file parsing inside engineering tools.dataLayerA structured JavaScript layer that GTM uses to pass events and values to tags.DatasourceA connected database or service that a BI platform reads from or queries.DAVEDiscord’s audio and video encryption protocol used to support encrypted calls across its client ecosystem.DAVE ProtocolDiscord’s approach for applying end-to-end protection to real-time voice and video sessions.DaybreakOpenAI’s cyber program for defensive AI use cases and security-focused workflows.DBthe Secure Boot database of approved boot components allowed to run during startup.DBIRVerizon’s Data Breach Investigations Report, an annual analysis of breach and incident patterns.DBXThe revocation database tied to Secure Boot trust decisions.DC LocatorThe Windows process that helps clients discover the right domain controller to contact.DCOMDistributed Component Object Model, a Windows technology that can use RPC for remote component communication.DD-WRTA Linux-based router firmware used on some consumer and small-office networking devices.DDoSDistributed Denial of Service, an attack that tries to overwhelm a service with traffic and disrupt availability.DDoS-for-hireA criminal service that rents attack capacity to paying customers.Dé-identificationSuppression des identifiants des données afin de réduire le risque de les relier à une personne.Dead dropA hidden storage point where malware can retrieve instructions without exposing attacker-owned servers.Dead-drop C2A method where malware exchanges commands through shared online storage or other third-party services.Dead-drop resolverA public, durable location malware can query for instructions or next-step infrastructure.Debit cardA payment card linked to a bank account and used for purchases or withdrawals.Debug interfaceA low-level hardware path used during development to inspect or control a chip.Debugger-based techniqueA method that uses debugging behavior to inspect a running process and observe data in memory.DecarbonizationThe effort to reduce greenhouse-gas emissions by shifting energy use toward cleaner sources and more efficient systems.Decentralized cryptocurrencyA digital asset managed by a distributed network rather than a single authority.Decentralized identifier (DID)A cryptographically verifiable identifier that is not dependent on a central registry.Decentralized routingA design that spreads traffic across multiple relays or nodes instead of one central exit point, reducing single-operator trust.Deception controlsHoneypots, honey tokens, and decoys used to detect attacker behavior.Deceptive pageAny webpage designed to mislead visitors about its purpose or identity.Decision architectureThe rules, roles, and controls that determine how decisions are made and approved.Decision capabilitythe ability to turn information into timely, coordinated action.Decision hygieneThe habit of using clear criteria, review points, and evidence instead of intuition alone.Décision non réversibleUn choix qu’il est difficile ou coûteux d’annuler une fois mis en œuvre.Decision provenanceThe record of how a decision was made, including inputs, approvals, and actions.Décision réversibleUn choix qui peut être annulé ou ajusté avec un coût limité s’il s’avère erroné.Decision speedThe time it takes an organization to reach and act on a business decision, often used as a value metric.Decision supportAI-assisted guidance that should be reviewed before it is turned into action.Decision-making authorityThe power to make meaningful calls, not just observe from the sidelines.Decision-support systemA tool that helps people make choices by generating recommendations, predictions, or rankings.Déclaration d’extorsionUne déclaration publique par un attaquant alléguant un accès, un vol ou une compromission.Declarative APIAn interface where users describe the desired end state and the system figures out how to get there, common in infrastructure automation.Declarative backendA setup where developers describe the desired backend state, and the platform handles much of the implementation.DecoderA log-parsing component that extracts structured fields from raw telemetry.Decoherencethe loss of quantum behavior caused by interaction with the environment.DecommissionedTaken out of active service or official support.DecommissioningThe controlled shutdown of a system, including data handling, access removal, and documentation.DeconflictionCoordination that reduces overlap, confusion, or operational compromise across activities.DécoupeUne ouverture dans un boîtier ou un panneau destinée à laisser passer un connecteur, un port, un lecteur ou un autre composant.Decoy access pointa realistic but controlled login target used to detect suspicious sign-in attempts.Decryptora tool intended to reverse encryption, which can fail if the malware did not preserve the needed file state.Dedicated controllerHardware built for a specific kind of game or task, rather than general use.Dedicated hardwareEquipment designed for one task instead of general-purpose use.Dedicated Leak Site (DLS)Un site criminel utilisé pour publier ou menacer de publier des données volées afin de faire pression sur les victimes.DeduplicationRemoving repeated reports that describe the same underlying issue.Deed RATA remote access trojan used to maintain control of compromised systems and adapt to detection pressure.DeepfakeAudio ou vidéo synthétique généré par l’IA pour imiter une personne réelle à des fins de tromperie ou d’usurpation d’identité.DeeplinkA URI designed to open an app directly and pass it parameters.Défaillance corréléeLorsque une faiblesse partagée affecte simultanément de nombreux systèmes connectés.DefamationA legal claim or offense involving statements that may harm a person's reputation under national law.Default administrative credentialA vendor-set login that should be changed during setup but can become a takeover risk if left unchanged.Default biasThe tendency to keep the preselected option even when alternatives are available.Default browserthe browser a system opens for links unless the user changes it.Default configurationThe out-of-the-box settings a system uses before administrators change limits, timeouts, or protections.Default credentialsPre-set usernames and passwords that should be changed before production use.Default settingthe preselected option a system uses unless someone changes it.Defect detectionThe process of finding bugs or incorrect behavior before software reaches production or causes disruption.Defender for EndpointMicrosoft's enterprise endpoint security platform for detection, investigation, and response.Defender tamperingAttempts to disable or weaken security tools so malicious activity is less likely to be detected.Defender XDRMicrosoft’s cross-domain detection and response platform for endpoints, identities, email, and applications.Défense en profondeurutiliser plusieurs contrôles de sécurité pour qu’une seule défaillance ne fasse pas tomber la protection.Defense impairmentTechniques that reduce the visibility or effectiveness of security tools and monitoring.Defense in depthA security strategy that layers multiple controls so one failure does not expose everything.Defense spendingPublic expenditure used to support military capability, readiness, procurement, and related security functions.Defense-in-depthA security approach that layers controls so one failure does not become total compromise.Defensive cybersecurity modelAn AI system restricted for security research and vulnerability analysis rather than general public use.Defensive monitoringcontinuous review of alerts and account behavior to spot intrusions early.DeficitThe gap between public spending and revenue, used in EU fiscal monitoring as a key budget indicator.DéfigurationModification non autorisée du contenu visible d’un site web afin d’intimider, de tromper ou de revendiquer le contrôle.DehumanizationLanguage that treats people as less than human, often to normalize contempt or abuse.Délai de mise en production des changementsLe temps entre le début d’un changement et son déploiement en production.Délai de rétablissement du serviceLe temps nécessaire pour rétablir un service normal après un incident ou une panne.DELEGATE-52A benchmark that tests language models on repeated, document-centered editing tasks across many domains.Delegated AccessAccess that an app receives on behalf of a user, rather than through a shared password.Delegated AdministrationA setup where one party is allowed to manage resources on behalf of another.Delegated AIAn AI system asked to carry out multi-step work with limited human intervention.Delegated authorityPermission granted to software to act on behalf of a user or organization.Delegated cognitionThe practice of offloading judgment or reasoning to an external system.Delegated lawA legislative mechanism that gives the government authority to draft detailed rules within limits set by parliament.Delegated permissionsAccess rights granted to an application so it can act within the limits of a user’s consent.Delegated user privilegesPermissions used on a user’s behalf, instead of broad app-only access.DélégationLe transfert d'autorité d'une entité à une autre, souvent avec des limites.Delivery OptimizationA Windows component that helps distribute update content efficiently across supported network paths.Delta syncSynchronization based on differences rather than full re-transfer.Demand forecastingA predictive method for estimating future demand so organizations can plan resources and inventory.Demand-based pricinga pricing model where cost changes according to buyer interest and market demand.Demand-side policya strategy that tries to shape what buyers need and purchase, not only where products are made.Démarrage sécuriséUn mécanisme qui aide à garantir que seul un firmware de confiance démarre sur un appareil.Démocratisation des donnéesÉlargir l’accès aux données à davantage d’utilisateurs tout en conservant la supervision et les contrôles.DemuxerA component that separates audio, video, and subtitle streams from a media container.Déni de serviceUne situation dans laquelle un système ou un service devient indisponible ou instable pour les utilisateurs légitimes.Déni de service (DoS)Une attaque qui perturbe la disponibilité normale afin que les utilisateurs ne puissent pas accéder de manière fiable à un service.Denial-of-serviceAn attack outcome that makes a service unavailable, often by crashing it or exhausting resources.Denial-of-service (DoS)An attack that disrupts the normal availability of a service.Density lensA view that measures innovation output relative to population or geographic size.Dépassement de tampon sur la pileUne faille de sécurité mémoire où une entrée trop volumineuse écrase des données sur la pile.DependencyAn external component a system relies on to function, such as a library, package, or service.Dependency chainThe linked services and suppliers that an organization relies on to keep systems running.Dependency chain abuseA supply-chain attack that targets trusted software dependencies to insert malicious code.Dependency confusionA supply-chain attack where a build system may fetch a malicious public package instead of an intended internal one.Dependency governanceThe process of identifying and managing the external relationships a service relies on.Dependency graphA map of how systems, services, and components rely on each other.Dependency inventoryA list of software components and third-party services a system relies on.Dependency managementThe practice of tracking and updating the third-party components a system relies on.Dependency MappingA way of documenting which systems, vendors, and services rely on each other so cascading failures can be assessed.Dependency resolutionThe process package managers use to choose and fetch required libraries.Dependency riskExposure that spreads through software libraries or shared components used by many systems.Dependency trackingthe practice of identifying and monitoring software components that a system relies on.Dependency TrustThe assumption that upstream code, packages, and release artifacts are authentic and safe to use.Dependency-chain abuseAn attack pattern where trusted third-party packages become the delivery path for malicious code.DeployerThe person or organization that uses an AI system in a real-world setting.Deployment pathThe specific method used to install software, such as a portal install or managed rollout.Dépôt adossé à GitUn conteneur de projet contrôlé par versions qui stocke des fichiers, l’historique et les mises à jour comme un dépôt de code.Dépôt GitHubUn espace de stockage de code et de configuration où les fichiers स्रोत, l’automatisation et les métadonnées sont gérés.DeprecationThe planned retirement of a feature or service that will no longer be supported.Déréférencement d’un pointeur NULLUn bogue où le logiciel tente d’utiliser un pointeur manquant, provoquant souvent un crash.Dérive de transcriptionDe petites erreurs de reconnaissance qui s’accumulent et déforment le sens de la sortie vocale en texte en direct.Désalignement agentiqueUn mode de défaillance dans lequel un système d’IA disposant d’objectifs et d’outils fait des choix nuisibles pour poursuivre son objectif.DesalinationThe process of removing salt from seawater or other saline water to produce fresh water.Déséquilibre structurelUn décalage persistant entre la demande en matière de sécurité et les personnes ou ressources disponibles pour y répondre.DeserializationTurning stored data back into objects, which can be dangerous if attacker-controlled input is accepted.Desktop resizingA layout change that adjusts available screen space for another window or panel.Desktop stackThe collection of components that make a graphical desktop function.Desktop themeVisual settings that change how a user interface looks, including colors, icons, and window decorations.Desktop wind tunnelA compact version designed for smaller-scale observation and experimentation.Destination URLThe web address a link actually opens, which may differ from the visible text.DetectionMethods used to identify whether content may have been created or modified by AI.Detection and responsethe processes used to spot suspicious activity and contain it quickly.Détection de similarité visuelleAnalyse de sécurité qui compare la conception d’une page, les logos et la mise en page afin d’identifier des sites clonés ou frauduleux.Detection engineeringBuilding and tuning alerts, rules, and logic to spot attacker behavior.Détection et réponse sur les terminaux (EDR)Outil de sécurité qui surveille l’activité des terminaux afin de détecter et de contenir les comportements suspects.Détection laserUne méthode de mesure qui utilise une lumière cohérente pour détecter des changements physiques très faibles.Deterministic controlA repeatable rule layer such as approvals, logging, or validation that helps keep AI behavior predictable.Deterministic ControlsSecurity checks that produce consistent, rule-based outcomes rather than probabilistic ones.DeterrenceA policy effect that aims to discourage harmful behavior through consequences.Détournement de sessionPrise de contrôle d’une session de compte authentifiée afin d’effectuer des actions en tant qu’utilisateur légitime.Dev branchA development ref that may contain unstable or unreviewed code.Developer DashboardThe control panel used to manage, upload, and update extension packages.Developer endpointA workstation used by software engineers that often contains valuable credentials and access tokens.Developer pipelineThe chain of tools and processes used to build, test, and ship code.Developer portalThe interface used to register apps and manage access settings.Developer previewAn early access release that lets developers test features before a wider launch.Developer tool trust chainThe set of tools, plugins, and services that a development workflow depends on and implicitly trusts.Development chemicalsThe chemical solutions used to process exposed film into a visible image.Développement d’exploitsLe processus de création de code ou d’étapes qui exploitent une faille logicielle.Développement expérimentalTravaux de prototypage, de test et de validation menés avant un déploiement à grande échelle.Device activationThe moment a new device is first set up and registered for use.Device Authorization GrantAn OAuth login flow for devices that cannot easily display a keyboard or full browser.Device Bound Session Credentials (DBSC)A protocol that ties a web session to a specific device so the session is harder to reuse elsewhere.Device Code FlowAn OAuth method that lets a user sign in on one device by entering a code on another device.Device compatibilityThe phone’s ability to support eSIM, bands, and carrier requirements for a plan.Device control policyRules that limit which external devices can connect to endpoints, helping reduce USB abuse.Device integrityconfidence that hardware and low-level software have not been altered.Device intelligenceContext about a device’s state, risk, configuration, or lifecycle that helps guide security decisions.Device lifecycleThe period a device stays in active use before replacement or resale.Device linkingThe process of pairing devices so they can share trusted actions.Device objectA Windows driver interface that can expose callable functionality to user-mode programs.Device postureThe security and compliance state of an endpoint used in access decisions.Device registrationthe process that links a new device to an account.Device retirementRemoving vulnerable equipment from service when mitigation is not enough to reduce risk.Device takeover (DTO)A fraud model where malware aims to control a victim device interactively rather than only stealing data.Device-based authenticationA check that requires a local device sign-in method, such as a password or biometric prompt, before revealing sensitive data.Device-bound passkeyA passkey that stays on one device or security key instead of syncing through the cloud.Device-Bound Session Credentials (DBSC)A browser session-binding method that ties session refresh to a device-held cryptographic key.Device-code flowAn OAuth sign-in method for devices with limited input, where the user completes authentication on another device.Device-code phishingA technique where attackers abuse legitimate device authentication flows to obtain usable access tokens or session access.Device-facing web appA website or web tool that interacts with connected hardware rather than only displaying content.DevSecOpsUne approche de livraison logicielle qui intègre la sécurité dans les flux de travail de développement et d’exploitation.DGAShort for Domain Generation Algorithm, a method malware uses to generate many possible domain names.Diagnostic bundleA collected package of logs and system state used for troubleshooting and forensic review.DiameterA telecom authentication, authorization, and accounting protocol that relies on transport security such as TLS, DTLS, or IPsec.DictationSpeech-to-text input that turns spoken words into typed text.Differential privacyA training method that protects individual data points by limiting what the model can reveal.Diffraction gratingan optical component with a repeating structure that affects how light is directed.Diffusion des capacitésLa propagation d’une compétence technique avancée à un plus grand nombre d’acteurs, ce qui peut accroître à la fois l’innovation et le risque d’usage abusif.DigestUne sortie compacte d’une fonction de hachage qui peut servir d’empreinte pour des données ou des artefacts.Digest pinningLocking an image reference to an exact immutable digest to improve reproducibility.Digital accessibilityDesigning digital services so people can perceive, navigate, and use them without unnecessary barriers.Digital administrationGovernment services delivered through interconnected IT platforms and processes.Digital artifactan online object that carries cultural, personal, or social meaning.Digital assetA value-bearing instrument that exists in digital form and is transferred electronically.Digital citizenshipMeaningful participation in civic and social life through digital tools.Digital collectiblea virtual item valued mainly for rarity, design, or collector appeal.Digital colonialismA power imbalance where data and digital value are extracted from one group or region by another.Digital competenceThe practical skill set needed to use digital tools safely, critically, and effectively.Digital constitutionalismthe application of constitutional principles to digital platforms and technologies.Digital convergenceThe blending of telecom services with adjacent digital sectors and platforms.Digital CredentialA machine-readable proof of achievement or certification that can be shared or verified electronically.Digital cultureThe shared habits and attitudes that shape how people use technology in an organization.Digital detoxA deliberate break from digital devices or platforms to reduce overstimulation.Digital distributionSoftware delivery through an online platform rather than physical media.Digital divideThe gap between people who can benefit from digital services and those who cannot.Digital ecosystema connected environment of systems, services, and actors that share operational dependencies.Digital euroA proposed central bank digital money model for everyday payments in the euro area.Digital evidenceData from devices, systems, or networks that can support an investigation or legal case.Digital factorya production environment that uses connected systems and live data to manage operations.Digital forensicsThe process of collecting and analyzing electronic evidence after an incident.Digital frictionRepeated IT slowdowns or failures that interrupt work and drive users toward workarounds.Digital gapThe distance between available technology and the ability to use it effectively.Digital governmentThe use of digital tools to improve public services, with an emphasis on outcomes rather than technology alone.Digital identityThe online representation of a user or service, built around authentication, access rights, and trust relationships.Digital identity methodsSPID, CNS, Fisconline, and Entratel are access methods used in Italy’s e-invoicing and tax portals.Digital infrastructureThe underlying services and systems that support online communication and access.Digital labelingApplying machine-readable and human-readable markers to indicate sensitivity or handling rules.Digital labor platformA system that helps match workers to tasks and may also manage payments, ratings, or task distribution.Digital learningTeaching and learning delivered through online tools and connected platforms.Digital literacyThe ability to use and evaluate digital tools and online content safely and effectively.Digital Markets ActEU law aimed at limiting gatekeeper behavior and improving competition.Digital Markets Act (DMA)The EU framework used to regulate designated gatekeeper platforms.Digital Networks ActAn EU digital policy framework linked here to rules affecting telecom infrastructure and market regulation.Digital OmnibusAn EU legislative package that revises parts of the AI Act’s rollout and compliance timing.Digital organizerA compact handheld device used for basic personal information such as contacts and calendar entries.Digital overstimulationA condition where repeated digital inputs overwhelm attention and make focus harder to maintain.Digital parentingCaregiver-centered guidance and supervision intended to reduce online and technology-related harm.Digital paymentsElectronic methods used to pay for goods and services without cash.Digital persistenceThe tendency for online content to remain available, copied, or recoverable after the original action.Digital preservationKeeping software or data usable for future study.Digital Product PassportA product data framework designed to make key information about a product more transparent and traceable.Digital Product Passport (DPP)A machine-readable product record that carries lifecycle and compliance data across the supply chain.Digital receiptAn electronic proof of purchase, often stored as an image or PDF.Digital resilienceThe capacity of systems and institutions to keep operating, recover, and adapt after disruption.Digital Services ActAn EU law that imposes duties on online platforms, especially larger services.Digital SkimmingBrowser-side theft of payment or form data during checkout by malicious JavaScript.Digital surveillanceMonitoring activity through connected tools, logs, or dashboards.Digital traceInformation left behind by online activity, such as messages, views, and timestamps.Digital trustThe confidence users and systems place in an online identity, content source, or organization.Digital workflowA process carried out through apps or websites instead of in person or on paper.Digitalizzazione PAThe digitization of public administration services, workflows, and systems.Direct liquid coolingA method that uses liquid near hot components to remove heat more efficiently than air alone.Direct messages (DMs)Private one-to-one or small-group messages inside a social platform.Direct revenueMoney earned from customers who buy a product outright.Direct store delivery (DSD)A distribution model where suppliers deliver products directly to retail locations instead of using a central warehouse.Direct supplierA third party that provides goods or services directly to an organization and can affect its security posture.Direct syscallsA technique where malware calls operating system services more directly to reduce visibility to some defenses.Directive 2004/48/ECThe EU framework for enforcing intellectual-property rights across member states.Directive 2023/970The EU legal instrument that strengthens equal-pay enforcement through transparency obligations.Directory traversalA flaw that lets an attacker manipulate file paths to reach locations outside the intended folder.Directory treeA file-and-folder listing that can reveal how internal data is organized.Directory-stored contact informationProfile data such as phone numbers or email addresses kept in the identity directory, which may not equal a security enrollment.Dirigente ScolasticoThe school head responsible for operational management, documentation, and day-to-day safety oversight.Disciplined planningCareful preparation that keeps the message, visuals, and goals aligned.DisclosureThe act of revealing AI use in a creative work, as required by the awards rules discussed in the article.Disclosure obligationsUK rules requiring firms to handle inside information carefully and disclose it to the market when required.Disclosure policyA rule that requires creators or platforms to label AI-assisted or AI-generated content.Disclosure windowThe period between a security announcement and the arrival of a public fix, when risk can spike.Discord webhookA webhook endpoint that can receive automated messages or data over HTTPS.DiscoveryThe process of finding and inventorying systems, services, and dependencies across an environment.Discovery activityPost-compromise probing used to map systems, accounts, and network structure.Discovery surfaceany place where users first find a product, link, or service.Discrete geometryThe study of geometric problems involving finite point sets, distances, and combinatorial structure.DiscrezionalitàThe degree of choice an operator has when deciding how to act.DisinformationFalse or misleading content shared with the intent to influence, deceive, or manipulate audiences.DisintermediationThe reduction of intermediaries in a payment or financial flow.Disk Structure WipeAn attack technique that corrupts or erases boot-critical disk structures so a system may no longer start normally.Disk WipeA destructive technique that erases storage contents, often leaving the affected system unusable.Disk-based detectionSecurity scanning that mainly looks for suspicious files stored on a drive.Display panelThe flat screen module that produces the image in a laptop or monitor.DisplayLinkA technology used to deliver display output through an adapter or dock-like device.DisponibilitéLa propriété de sécurité qui permet aux systèmes et services de rester utilisables quand on en a besoin.Disruption operationa coordinated action meant to interrupt criminal infrastructure rather than only arrest suspects.Dist-tagA registry label, such as latest, that points installs toward a chosen package version.Distillationa separation process that uses different boiling points to divide a mixture into parts.Distributed computingA system design that spreads processing across multiple sites, servers, or nodes.Distributed contextInformation spread across multiple sources or channels that must be recombined for a task.Distributed denial-of-service (DDoS)An attack that floods a service with traffic from many sources to make it unavailable.Distributed Hash Table (DHT)A decentralized lookup system that helps peers find each other without a central directory.DistributionA phase where holders move assets toward the market, increasing potential sell-side supply.Distribution chainThe path a malicious file takes from lure to download to execution.Distribution constraintsLimits on where and how a digital service or promotion can be offered.Distribution strategyThe approach used to bring products to market through brokers, partners, or direct channels.Divulgation coordonnée des vulnérabilités (CVD)Un processus consistant à partager et corriger une vulnérabilité avant sa publication.Divulgation d’incidentSignalement public d’un incident de ransomware, qui peut différer de la détection interne.Divulgation d’informationsUne faiblesse qui révèle des données à quelqu’un qui ne devrait pas pouvoir les voir.Divulgation de victimeUne publication publique affirmant qu’une cible a été compromise ou ciblée pour une extorsion.divulgation ESGRapport structuré sur les facteurs environnementaux, sociaux et de gouvernance.DIY builda project assembled by an individual rather than bought as a finished product.DIY electronicsHands-on building or modifying of electronic devices by individuals or small communities.DIY reuseReusing an existing part for a new purpose instead of buying a replacement.DIY routerA router assembled or configured by the user rather than bought as a fixed appliance.DKIMA signing method that helps verify whether an email was altered in transit.DLL hijackingA technique that abuses how Windows loads libraries so malicious code runs through a trusted application.DLL search order hijackingA Windows technique where a malicious library is placed where software looks first.DLL search-order hijackingA Windows technique where a malicious library is placed where a legitimate program will load it first.DLL side-loadingA technique where a legitimate program loads a malicious library from an attacker-controlled location.DLL sideloadingUne technique où un programme légitime charge une bibliothèque malveillante depuis un emplacement qu’il recherche.DLPData Loss Prevention; tools and policies that identify, monitor, and protect sensitive data in use, in motion, and at rest.DMADigital Markets Act, a rulebook aimed at making large digital platforms more contestable and interoperable.DMARCUne norme d’authentification des e-mails qui aide à réduire l’usurpation d’identité en vérifiant si un message est conforme aux domaines d’envoi autorisés.DNA synthesisThe process of manufacturing custom genetic sequences from digital design.DNSThe service that translates names into IP addresses and helps systems locate network resources.DNS ClientThe Windows service that resolves domain names to IP addresses, included by default in Windows client and server editions and running by default.DNS fast fluxA technique that rapidly changes the IP addresses behind a domain to make malicious infrastructure harder to block.DNS filteringA control that blocks or redirects domain requests before a site loads.DNS HijackingA change to DNS settings that redirects traffic to an attacker-controlled destination.DNS historyA record of past domain-to-IP mappings and related name-server changes.DNS leakA situation where DNS queries bypass the intended protected path and may reveal visited domains.DNS logsRecords showing domain lookups, useful for tracing suspicious infrastructure and campaign activity.DNS over HTTPS (DoH)A method that sends DNS queries inside encrypted HTTPS traffic to reduce exposure in transit.DNS poisoningA technique that alters name resolution so requests go to an unintended destination.DNS QNAMEThe domain name requested in a DNS query, often one of the most revealing pieces of privacy-sensitive metadata.DNS rebindingAn attack technique that uses changing DNS answers to make a browser talk to an internal service.DNS SRV RecordA DNS record that advertises which servers provide a specific service, such as Active Directory.DNS tamperingUnauthorized changes to domain-name records that can redirect traffic or disrupt services.DNS telemetryLogs and signals from DNS traffic that can help spot suspicious resolution patterns.DNS TTL"Time To Live" - the period a DNS answer may be cached before it must be refreshed.DNS-based backdoorA covert control channel that uses DNS traffic for remote communication.DOCANVIDIA’s software platform for building and managing services on BlueField and ConnectX infrastructure.Docker daemonThe background service that manages Docker containers and can carry host-level privilege if exposed.Docker DesktopAn application that provides a local environment for running and managing Docker containers on Windows and macOS.DockerfileA text file that defines how a Docker image is built, layer by layer.DockingA user interface mode that anchors an app panel to a fixed part of the screen.DocLangA proposed open document specification intended for machine-readable AI and agentic workflows.DoclingA document-processing toolkit that converts files such as PDFs into structured data.Document fraudThe creation, alteration, or use of forged documents to mislead authorities or other parties.Document integrityThe ability of a file to remain accurate, complete, and faithful to its intended content after edits.Document parserSoftware that extracts text and structure from files such as PDFs, images, or office documents.DocumentationWritten technical information that helps people understand, maintain, or restore a system.DomainA human-readable internet address that can be registered and used to host websites, redirects, or malicious landing pages.Domain controllerA server that handles authentication and access control in a Windows domain.Domain expertiseSpecialized knowledge that helps teams judge whether an AI output makes sense in the real process being changed.Domain frontingA technique that makes web traffic appear tied to one domain while the encrypted request is directed elsewhere.Domain hoppingSwitching domains quickly to stay reachable after enforcement.Domain registrationthe act of reserving an internet name for a website.Domain ReputationA security metric used to assess whether a domain appears trustworthy.Domain rotationrepeated creation of new domains to avoid blocking and keep a campaign online.Domain-JoinedA system connected to an Active Directory domain and governed by its authentication and trust rules.Domain-joined serverA machine that is managed as part of a Windows domain and shares its trust environment.Domain-Wide CompromiseA broader intrusion pattern that can affect multiple connected systems or accounts across an organization.Données à caractère personnelInformations relatives à une personne physique identifiée ou identifiable au titre du RGPD.Données backendLes enregistrements et journaux stockés derrière un site, y compris les utilisateurs, vendeurs et transactions.Données de sessionInformations qui suivent une session utilisateur authentifiée ou en cours.Données GPSInformations de localisation et de temporisation dérivées de la navigation par satellite, y compris des trajets ou des enregistrements de position.Données privilégiéesInformations telles que les communications avec des clients ou les pièces d’un dossier, susceptibles de présenter une sensibilité accrue dans les environnements juridiques.DORAThe EU resilience rulebook for ICT risk management in the financial sector and its suppliers.Dossier de santé électronique (EHR)Un système numérique de dossier patient utilisé par les professionnels de santé pour stocker et gérer les informations cliniques.DossieraggioAn Italian term for compiling personal dossiers or using personal information in a harmful or abusive way; here, it suggests a digitized version of that practice.Double extorsionUne tactique d’extorsion qui combine le chiffrement des fichiers avec la menace de publier des données volées.Double-extortionA ransomware tactic that combines file encryption with threats to leak stolen data.Double-freeA memory bug where the same block is released twice, often causing crashes.DoubleClickGoogle ad-tracking and redirect infrastructure that can log clicks before sending a browser onward.DownloaderMalware that retrieves the next-stage payload from attacker-controlled infrastructure.Downstreama distribution or project that reuses upstream code.Downstream browserA browser product built on top of a shared upstream codebase such as Chromium.Downstream exposureRisk that spreads from one compromised provider to its customers or partners through shared access or trusted tools.Downstream impactindirect effects that may follow when an upstream system or account environment is disrupted.Downstream processingThe later industrial steps that convert recovered material into a usable form.Downstream WorkflowA later process or system that consumes data from an upstream platform.DowntimeThe period when systems or production lines are unavailable and operations stall.DoxingThe exposure of private or sensitive personal information, often to harass, shame, or extort a target.DoxxingPublishing private identity details to intimidate, harass, or target someone.DPAPIWindows Data Protection API, used to protect data for a specific user or machine context.DPIAA privacy impact review used to assess risks before deploying higher-risk processing.DPOThe Data Protection Officer, a role that advises on privacy compliance and monitors data-protection duties.DPUA data processing unit that can offload selected networking or security tasks from the main host.Draft billProposed legislation that has been introduced for debate but is not yet enacted.Draggable popupA movable on-page window used in BitB attacks to make the fake dialog feel more authentic.DRBGDeterministic random bit generator, the cryptographic engine that expands seed material into usable random bits.DriftA change over time in input data or model behavior that can reduce accuracy and reliability.Drift DetectionMonitoring for changes in model behavior or input patterns that can reduce reliability over time.Drive contentionSlowdowns that happen when multiple tasks compete for disk access.Drive-by visitA web visit that triggers security-relevant behavior simply by loading a malicious page.DriverSoftware that lets the operating system communicate with hardware and often runs with elevated trust.Driver blocklistA policy list that prevents known-vulnerable drivers from loading on protected systems.Driver packageThe signed software bundle that contains a device driver and its installation metadata.Driver rollbackReturning a device to a previous driver version after a newer one causes problems.Driver updateA software package that updates hardware support code on a device.Driver update policyAdministrative settings that control whether drivers are approved, deferred, reviewed, or blocked.Driver versioningThe practice of tracking and updating client libraries, which is critical when a vulnerability is fixed in a specific release.Driver-oriented interfaceA design approach that aims to reduce complexity while someone is driving.Droit sectorielRègles qui régissent un secteur d’activité spécifique, comme les machines, les dispositifs médicaux ou les transports.Droits de décisionL’autorité d’approuver, de diriger, de standardiser ou de bloquer un choix métier ou technologique.DropperA small malicious component that installs or launches a later-stage payload.DrupalAn open-source content management system used to build and manage websites.Drupal coreThe main codebase of the Drupal content management system, separate from optional contributed modules.DSALa loi européenne sur les services numériques, un ensemble de règles de gouvernance des plateformes axé sur la sécurité, la transparence et les contenus illicites.DSARA data subject access request; a formal request for a copy of personal data and related processing details.DSMSynology DiskStation Manager, the operating system that runs on Synology NAS devices.DSPDigital Signal Processor, a dedicated processor used for specialized tasks such as audio or signal workloads.DSXNvidia’s platform for designing, simulating, and operating AI factory environments.DTLSDatagram Transport Layer Security, a secure transport protocol used for datagram traffic.Dual extortionA tactic that combines encryption with threats to release stolen data.Dual SIMA setup where one phone can use two mobile lines, such as a home line and a travel line.Dual useTechnology that can help defenders while also being useful to attackers.Dual-Homed HostA device connected to two networks, often creating a bridge between IT and OT.Dual-stackA network setup that supports both IPv4 and IPv6, which can create leak risks if a VPN handles the two protocols unevenly.Dual-use itemA product or technology with both civilian and security-related uses.Dual-use riskThe possibility that a tool can help defenders and attackers alike.Dual-use softwareLegitimate tools that can support both normal operations and malicious activity depending on who controls them.Dual-use technologyTools or systems that can serve both civilian and military purposes.Due diligencePre-deal review used to test legal, technical, and operational risk before closing.Due processThe legal safeguards that limit how state power can be used against people or organizations.Durcissement des identitésContrôles de sécurité qui protègent les comptes grâce à l’AMF, à la revue des privilèges et à la surveillance des identifiants.Dust extractiona system that removes dust and chips before they spread through a workspace.dVPNA decentralized virtual private network that distributes network functions across multiple participants or nodes.dwShareModeUn paramètre de CreateFileW qui contrôle si d’autres processus peuvent partager le fichier ouvert.DXDigital transformation, the use of technology to reshape business operations and outcomes.Dynamic AnalysisTesting an app while it runs to observe real behavior and security signals.Dynamic code loadingLoading additional code after install, which can make malware harder to inspect.Dynamic linkerThe Linux component that loads shared libraries into programs when they start.Dynamic linker hijackingA technique that manipulates how Linux loads libraries so malicious code can intercept trusted behavior.Dynamic PricingPricing that changes with demand, inventory, timing, or location, and does not necessarily depend on personal data.Dynamic Tool GenerationThe process of generating customized scripts or offensive tooling on demand, which can make detection harder.Dynamic validationLive verification that a suspected weakness is actually exploitable or operationally relevant.Dynamic workflowsAdaptive task paths that can change based on context or operator choice.DyslexiaA learning disorder that commonly affects accurate and fluent word reading.e-ArchivingA European approach to preserving digital records through shared technical specifications and exchange formats.E-discoveryThe process of collecting and reviewing digital evidence for litigation.e-evidenceThe EU framework for faster access to electronic evidence held by service providers across borders.E-money tokenA digital token intended to maintain a stable value and often linked to a fiat currency such as the euro.E-papera low-power display that holds an image with very little energy use.e-procurementElectronic procurement systems used to publish, manage, and analyze buying processes.E-skimmingMalicious code inserted into a web page to capture payment or personal data as a user enters it.E2EEEnd-to-end encryption, a design that keeps message content readable only on the sender’s and recipient’s devices.EaglesoftUne plateforme logicielle dentaire pouvant stocker les données opérationnelles dans un dossier partagé basé sur un serveur.EAMEnterprise Asset Management, software for tracking, maintaining, and optimizing organizational assets.Early accessa limited release period before the general public can play.Early warningRapid notification intended to reduce the time between detection and response.Early-stageThe phase when a company is newly formed and still proving its product and market fit.Ease of adoptionHow quickly and smoothly users can start getting value from a product.East-West TrafficInternal traffic that moves between systems inside a data center rather than entering or leaving it.eBPFUn environnement d’exécution du noyau pour des programmes isolés et de l’instrumentation, qui peut aussi être détourné à des fins de furtivité.EC3Europol’s European Cybercrime Centre, which coordinates support for cybercrime investigations.Écart d’airUne séparation physique entre des systèmes qui empêche la communication réseau ordinaire.ECCSAP’s legacy ERP core, widely used in older on-premises deployments.ECDHElliptic Curve Diffie-Hellman, a method for deriving a shared secret without sending it directly.ECIESElliptic Curve Integrated Encryption Scheme, a cryptographic method used by some ransomware families to encrypt files.ECN-2A film development process used for certain color negative motion-picture films.Economic resourcesAssets or services that can be made available to a listed party.Ecosistema Dati Sanitari (EDS)A national data layer intended to support services built around health-record data.ECUUnité de contrôle électronique ; l’ordinateur embarqué qui gère des fonctions du véhicule telles que le couple, les capteurs et les modes.EDA softwareElectronic design automation software used to draft, check, and prepare circuit boards.Edge AIAI workloads that run near devices or sensors instead of only in a central data center.Edge applianceA security or network device that sits at the boundary of an organization’s systems.Edge caseAn unusual or less common scenario that can break assumptions in software or AI behavior.Edge computingComputing performed near the device or data source to reduce delay and localize processing.Edge DeviceHardware placed at the boundary between internal networks and external connections.Edge inferenceRunning AI models on local devices near the robot instead of only in the cloud.Edge routerA device that routes traffic between an internal network and external networks, often sitting at the perimeter.Edge-cloudA hybrid setup that splits work between local edge nodes and centralized cloud services.EDIelectronic data interchange, a structured way for businesses to exchange documents.Editorial contentMaterial written in a more structured, opinionated, or analysis-driven style.Editorial disciplineThe practice of verifying claims and avoiding overstatement.Editorial governanceThe process of assigning responsibility, approval, and traceability for published content.EDPBThe European Data Protection Board, which issues guidance to support consistent privacy interpretation.EDROutils de détection et de réponse sur les terminaux qui surveillent les appareils à la recherche de signes de compromission et facilitent l’investigation.EDR (Endpoint Detection and Response)Security tools that monitor endpoints for suspicious behavior and help responders contain attacks.EDR TelemetryEndpoint detection and response data that helps analysts trace suspicious activity.EdTechtechnology products and services built for teaching, learning, or education management.Educational equityFair access to learning opportunities and outcomes across different groups.EdutainmentA learning style that blends education and entertainment to improve engagement and retention.EEASThe European External Action Service, the EU body that hosts INTCEN and supports foreign and security policy.Efficiencythe proportion of material removed under a defined test condition.Effort controlsA feature name for settings that influence how much effort a model is allowed to apply to a task.EFIelectronic fuel injection, a method that uses electronics to regulate fuel delivery.EFI System PartitionA boot-related disk partition used by UEFI systems; low free space can interfere with some Windows update installs.EFI System Partition (ESP)A small boot partition on UEFI-based systems that stores files needed during startup.EGAEnhanced Graphics Adapter, a legacy IBM graphics standard that expanded color and resolution options.Egress controlSecurity rules that limit where data can leave a network and how outbound traffic is handled.Egress filteringA control that limits or monitors outbound network traffic to reduce stealthy data transfer.EHDSthe European Health Data Space, a common framework for health data use and exchange across the EU.EHRElectronic Health Record, the digital system used to store and manage patient clinical data.eIDASThe EU framework for electronic identification and trust services, including electronic signatures.eIDAS 2The EU framework that expands digital identity and trust services for interoperable use across borders.Election integrityMeasures and conditions that help keep voting information trustworthy.Electric transportvehicles that use electrical power for movement, such as e-bikes or go-karts.ElectrodeA conductive part where electrical current enters or leaves a reaction.ElectrolysisA process that uses electricity to drive a chemical reaction.ElectrolyteA medium that carries ions and helps an electrochemical reaction proceed.Electronic evidenceDigital material such as logs, messages, files and account data that can support a cybercrime investigation.Electronic invoiceA structured digital invoice processed through online administrative systems.Electronic invoicingDigital creation and exchange of invoices in a machine-readable form.Electronic kitsProducts sold as components that the buyer assembles into a working device.Electronic prescriptiona digital medical order that can be created, transmitted, and archived electronically.Electronic Protected Health InformationDigital health data that is regulated because it can identify a patient.Electronic Protected Health Information (ePHI)Health data in electronic form that is protected under U.S. healthcare privacy rules.Electronic sealA cryptographic mechanism that binds data to a legal person and helps prove origin and integrity.Electronic Shelf LabelsDigital price displays that receive updates wirelessly from a central system.Electronic signatureA trust-service mechanism used to sign digital documents with legal and evidentiary significance.Electronic WarfareUse of the electromagnetic spectrum to disrupt, deceive, or protect military systems.Electronic wasteDiscarded electronics that may still contain usable parts or materials.Électronique de commandeLa couche de calcul et de détection qui traite les entrées et gère le comportement du système de sécurité.Electroplatinga process that uses electric current to deposit a thin metal layer onto a surface.Elevation of PrivilegeA vulnerability that can let an attacker gain more permissions than intended.ELFThe standard executable and object file format used by Linux and many Unix-like systems.Eligibility checka review that confirms whether an applicant meets basic requirements.Eligibility criteriaThe rules that determine who can qualify for a promotion or service.Eligibility ruleA condition that must be met before a product offer becomes available.Eligibility rulesThe conditions that determine whether a user or device qualifies for an offer.Eliza effectThe tendency to read understanding, intent, or empathy into a system that is only simulating conversation.ELTSExtended long-term support, a maintenance option for older software branches.ELV (Extra Low Voltage)Low-voltage electrical systems often used in building controls, security, and communications.EmailA store-and-forward messaging system that remains a core digital communication channel.Email collectionThe practice of accessing and gathering messages, attachments, and mailbox content for intelligence or theft.Email deliverabilityThe ability of a message to reach recipients successfully and be accepted by mail systems.Email Forwarding RuleA mailbox setting that automatically sends incoming mail to another address, sometimes abused for persistence.Email Security GatewayA system that inspects and filters email traffic before it reaches users or internal servers.Émanation magnétiqueÉnergie magnétique émise par du matériel qui peut parfois être mesurée ou modulée.EmbargoA temporary confidentiality period used to coordinate a fix before a vulnerability becomes public.Embedded cameraA device where imaging, processing, and storage are tightly integrated into one compact system.Embedded databaseA database component built into an application, often shipped as part of the app itself.Embedded displayA screen built into a device to present status, settings, or operational information.Embedded financeFinancial services placed inside a non-bank purchase journey.Embedded hardwareA system built into another object to perform a specific function.Embedded libraryShared code used inside many products, where a small flaw can have wide downstream impact.Embedded LinuxLinux adapted for small devices where size, power use, and hardware fit matter as much as software.Embedded NUL byteA zero byte inside a string that can cause C-style functions to stop processing early.Embedded operating systemSoftware built for dedicated devices, with features and hardware support tailored to a specific platform.Embedded payloadsMalicious code or data hidden inside another file format to reduce visibility.Embedded securityThe practice of protecting small dedicated devices from tampering or misuse.Embedded storageMemory built directly into hardware, often used in phones, consoles, and compact systems.Embedded systemA dedicated computing device built into hardware to perform a specific function, often with limited resources.EmbeddingA machine-learning representation that turns code patterns into numerical vectors for comparison and classification.EmbeddingsNumeric representations of content that help AI systems search and compare meaning.Embodied robotA robot that perceives and acts in the physical world through sensors and actuators.Emergency remediationA fast-tracked response used when a vulnerability is urgent enough to override normal change cycles.eMMCEmbedded flash storage built into a device rather than inserted as a removable card.Emoji pickerThe built-in Windows panel used to insert emojis into text fields.Emotional regulationThe ability to manage emotional responses and recover from distress.Employee feedbackComments meant to guide improvement, clarify standards, or recognize performance.empreinte de 256 bitsUne taille de sortie cryptographique égale à 64 caractères hexadécimaux.Empreinte de taille SHA-256Une valeur hexadécimale de 64 caractères qui peut identifier un fichier ou un artefact, mais qui nécessite du contexte pour être significative.EMRDossier médical électronique, un système numérique utilisé pour stocker et gérer les informations de santé des patients.EMSECLa pratique consistant à protéger les systèmes contre les émissions électromagnétiques exploitables.ÉmulationReproduction du comportement d’un système sur une autre plateforme.Emulatorsoftware that imitates another computer system so older programs can run on different hardware.Emulator stationA device configured to run or present software that imitates another platform.EMVThe global standard behind chip-based and contactless card payments used in many transit systems.Enablement packageA lightweight mechanism that activates a newer Windows feature release on compatible devices.EnclosureA surrounding structure that helps isolate equipment from the rest of the environment.Enclosure integrationThe process of fitting boards, displays, inputs, and power parts into a fixed case.Encoded dataInformation transformed to hide its meaning from casual inspection or simple text filtering.Encoded Frame TransformA client-side technique that encrypts media after encoding but before network transmission.Encrypted ChannelNetwork communication protected by encryption, which can hide command-and-control details from simple inspection.Encrypted exfiltrationThe theft of data over channels designed to hide content from inspection.Encrypted platformA messaging service that protects message content from casual inspection.Encrypted tunnelA protected connection that keeps traffic hidden from observers on the network path.Encrypted vaultA protected store of secrets that is readable only with the correct decryption path.Encryptiona method that converts readable data into protected form so only authorized users can recover it.Encryption for ImpactA technique where files are encrypted to disrupt business operations and pressure victims.Encryption in transitProtection applied to data while it moves across a network.Encryption indicatorA visible lock or label that helps show whether a chat is currently protected.Encryption Key in MemoryA key temporarily present in RAM during decryption, where malware may try to capture it.Encryption KeysThe cryptographic material that controls access to protected data and often determines who can actually read it.EncryptorThe ransomware component that locks files by encrypting them.EncyclicalA formal teaching document issued by the Pope on doctrinal, ethical, or social questions.End of lifeThe stage when a product is no longer actively developed or routinely supported.End-of-lifeThe stage when a vendor stops providing normal updates or support for a product.End-of-Life (EOL)A point at which a product is no longer actively supported by its manufacturer.End-of-support (EOS)The stage at which a product no longer receives vendor updates or official technical assistance.End-use reviewAn assessment of how an exported item may be used after it reaches the buyer.EndpointA user device or server that can be investigated for signs of compromise.Endpoint agentSoftware installed on a device to enforce policy, collect telemetry, or receive updates.Endpoint compromiseA situation where a user’s device is taken over or manipulated by malicious code.Endpoint consistencyThe ability of software to behave similarly across different devices.Endpoint detectionSecurity monitoring on laptops, servers, and other devices to spot suspicious behavior and malware activity.Endpoint encryptionProtection that converts data on laptops or removable media into unreadable form without the correct key.Endpoint hygieneSecurity practices that keep user devices patched, managed, and controlled.Endpoint inventoryA live record of devices and installed software used to find out where risk still exists.Endpoint isolationDisconnecting a suspected-compromised device to slow or stop further attacker activity.Endpoint managementThe process of inventorying, updating, and securing devices such as laptops and tablets.Endpoint management serverCentralized software that administers policy, updates, and security settings for many devices.Endpoint MonitoringSecurity observation focused on the device itself rather than only on network traffic or centralized logs.Endpoint protectionSecurity software that detects, blocks, or removes malicious code on devices.Endpoint resilienceThe ability of a device fleet to recover quickly from software faults or bad updates.Endpoint SecurityThe protection of user devices, which remains critical even when network transit is encrypted.Endpoint security platformSoftware that protects laptops, servers, and other endpoints with detection, prevention, and response controls.Endpoint security softwareProtection software on a device that detects, blocks, and remediates malicious activity.Energy communityA local or collective model in which participants produce, share, or use energy together.Energy coststhe price burden businesses and households face for power, fuel and related inputs.Energy efficiencyThe practice of delivering computing capacity with less electricity, often through better design, cooling, and operations.Energy managementThe planning and control of electricity use so operations stay efficient, stable, and reliable.Energy management systemA structured way to track, improve, and document energy performance.Energy securityThe ability to keep power supplies reliable despite shocks, disruptions, or price spikes.Energy transitionthe shift from fossil-based systems toward cleaner and more efficient energy models.EnforcementThe practical process of making a rule work consistently in everyday use.Enforcement actionA platform measure such as content removal, suspension, or account termination under policy rules.EngagementMeasurable interaction such as clicks, likes, comments, shares, or time spent.Engagement algorithmRanking logic that prioritizes content likely to keep users active.Engagement loopa repeated interaction pattern designed to encourage continued use.Engagement mechanicsProduct features that keep users interacting, such as autoplay, alerts, or ranking loops.Engagement modela design approach that tries to keep users active by optimizing interaction and time spent.Engagement optimizationDesign that prioritizes attention, clicks, or time spent in an app or service.Engineering judgmentThe human decision-making that weighs tradeoffs, risk, and system behavior before code goes live.Enhanced Filtering for ConnectorsA Microsoft Exchange Online control that helps preserve original sender context in complex mail routes.ENISAThe EU cybersecurity agency that publishes practical guidance for turning legal obligations into controls.enregistrement MXUn enregistrement DNS qui identifie l’endroit où un domaine reçoit les e-mails.enregistrement SPFUne règle d’authentification des e-mails qui aide à définir quels serveurs peuvent envoyer des messages pour un domaine.Enregistrements de transactionJournaux ou historique montrant des paiements, des transferts ou des activités de compte pouvant aider les enquêtes.EnrichmentAdding context to an alert, such as asset identity, data sensitivity, or threat intelligence, so it can be prioritized correctly.Ente proprietarioThe public body or authority that owns the school building and usually handles structural remediation.Enterprise adoptionBusiness use of a tool or platform inside organizations, often measured through procurement or spend.Enterprise AIAI systems designed to support business operations, decision-making, and service delivery inside organizations.Enterprise AI governanceRules and controls that define what data, actions, and outputs are allowed in business AI systems.Enterprise Architecture (EA)A discipline for aligning business goals, information flows, applications, and technology across an organization.Enterprise content management (ECM)Software and processes used to store, organize, and control business documents and content.Enterprise controlsSecurity and administration features such as identity management, audit logs, and retention settings.Enterprise deploymentThe process of rolling software out in a business environment with controls for access, monitoring, and administration.Enterprise inventoryA complete list of systems, tools, and dependencies used across the organization.Enterprise leadershipThe ability to lead across finance, operations, people, and risk, not only technology.Enterprise membershipThe identity and access layer that determines who can reach enterprise-scoped resources.Enterprise platformCore business software that supports shared operations, integrations, and large-scale workflows.Enterprise riskOrganizational risk treated as a leadership issue, including technology, security, operations, and compliance.Enterprise Risk Management (ERM)A framework for identifying, evaluating, and managing risks across an organization.Enterprise workflowA business process where software supports work such as review, approvals, and document handling.EntitlementA permission layer that determines which benefits an account can access.Entitlement checkA verification step that confirms a user has the right to access content.Entitlement checksControls that verify whether a user is allowed to access content or features.EntitlementsThe access rights that determine what a user or system can see, change, or execute.Entity ListA U.S. export-control mechanism that limits trade with listed entities for national security or foreign policy reasons.Entity resolutionThe process of matching records so a system knows which real-world business or person they refer to.Entra IDMicrosoft’s cloud identity platform used to authenticate users and protect access to services.Entra ID tokenA cloud authentication artifact that can grant access to Microsoft identity-backed resources.Entropy sourceA physical or algorithmic process that provides unpredictable input for random-bit generation.Entry bonusA promotional reward offered to attract new customers, often subject to terms and deadlines.Entry-level roleA junior job designed for newcomers, usually containing routine tasks and on-the-job learning.Environment variablesProcess-level values often used for configuration and, sometimes, sensitive secrets.Environmental certificationA formal framework used to verify sustainability-related claims.Environmental controlsmeasures that manage heat, humidity, dust, and other conditions that affect storage reliability.Environmental management systemThe policies and processes used to manage environmental impacts.Environnement de déploiementUne cible protégée, telle que la production ou la préproduction, avec ses propres règles d’accès et secrets.Ephemeral contentMedia or posts that disappear after a short time, reducing long-term exposure.Ephemeral storageTemporary storage that disappears when a container, Pod, or process is stopped or replaced.ePHIInformations de santé protégées électroniques, qui incluent des données sensibles sur les patients sous forme numérique.Epic modernizationA large-scale healthcare IT program focused on updating or expanding the Epic electronic health record environment.Epistemic integrityThe ability of a system to preserve accuracy and honest disagreement when needed.Épithélium nasalLe tissu qui tapisse la cavité nasale et où commence la détection des odeurs.EPSSExploit Prediction Scoring System, a model that estimates the chance a CVE will be exploited soon.Équilibrage dynamiqueLa capacité d’une pièce en rotation à tourner de manière fluide sans vibration nuisible.Equinix FabricA software-defined interconnection platform for linking clouds, partners, and enterprise infrastructure.équipe bleueLe volet défensif qui surveille, enquête et répond aux menaces et aux exercices.EquityA requirement that performance remain fair across different patient groups and clinical contexts.Equity crowdfundingA funding model where many investors buy small ownership stakes in a company.Equivalent hardwarenewer hardware chosen to serve a role similar to older or classic platforms.ERPEnterprise software that centralizes business functions such as orders, pricing, finance, and production.Error 524A timeout condition in web delivery where the edge reaches the origin but does not get a timely response.EscaladeLe processus consistant à acheminer les problèmes de sécurité importants vers les bonnes personnes pour qu’elles prennent des mesures et apportent une réponse.Escalade de privilègesUne faille qui peut permettre à un acteur de passer d’un accès limité à des autorisations plus élevées.Escalade humaineUn chemin de repli qui dirige les cas sensibles ou incertains vers une personne.Escalade locale de privilègesUne faille qui permet à un utilisateur avec peu de privilèges d’obtenir des privilèges système plus élevés, souvent ceux de root.Escalation handlingThe process of routing a task to a human or higher authority when automation should stop.Escalation pathThe predefined route for moving a security finding from detection to action at the right level.Escalation pathwayA defined route that hands a risky case from automation to a human responder.Escalation routeThe path used to move urgent issues to the right decision-makers quickly.EscapingEncoding output so the browser treats it as text instead of executable code.ESDCThe European Security and Defence College, an EU training network for security and defence topics.eSIMUn profil SIM numérique installé sur un appareil sans carte physique.ESP-in-TCPA TCP-based encapsulation mode for ESP traffic used in some IPsec deployments.ESP/xfrmUn chemin de sécurité réseau Linux utilisé avec IPsec pour traiter le chiffrement des paquets.ESP32A Wi‑Fi and Bluetooth microcontroller family often used in embedded and IoT projects.ESP32-C3Un microcontrôleur basse consommation avec Wi‑Fi, Bluetooth Low Energy et des fonctions de sécurité intégrées.Espionage campaignCyber activity focused on covert access, monitoring, or information collection.ESPRThe EU Ecodesign for Sustainable Products Regulation, the legal framework behind the DPP.Esprit critiqueL’habitude de questionner les affirmations, de vérifier les preuves et d’éviter la confiance automatique.Esquema Nacional de Seguridad (ENS)Spain’s public-sector security framework for protecting information systems and data.ESRExtended Support Release, Mozilla’s channel for organizations that want longer stability and security-focused updates.Essential and important entitiesNIS2-covered organizations that face cybersecurity and reporting obligations based on their role and impact.Essential entityAn NIS2 category for organizations subject to heightened cybersecurity obligations.Essential serviceA function whose interruption would significantly affect normal operations.EstimateA calculated figure that is not the same as a confirmed audited total.ESUExtended Security Updates, a paid bridge that provides security patches after standard support ends.ESXiPlateforme de virtualisation de VMware, parfois ciblée car une seule compromission peut perturber de nombreuses machines virtuelles.EthereumA public blockchain platform that supports smart contracts and transaction-based execution.EtherHidingA technique that stores malware-related instructions in blockchain smart contracts.Ethernetwired networking used for stable, local connections.Ethical hackingauthorized security testing aimed at finding weaknesses before they are abused.Étiquetage de transparenceUn avis qui identifie un contenu généré par l’IA ou modifié par l’IA.Étiquette de sensibilitéUne balise de classification qui marque un contenu comme confidentiel, restreint ou autrement protégé.ETLA pipeline pattern for extracting data from sources, transforming it, and loading it into target systems.ETS 2a carbon pricing system designed to extend emissions costs into additional sectors of the economy.ETWEvent Tracing for Windows, Microsoft’s logging framework for system and application activity.ETW patchingTampering with Windows Event Tracing to reduce security visibility and complicate detection.ETW tamperingInterfering with Event Tracing for Windows to reduce forensic visibility.EU AI ActA European Union law that sets risk-based requirements for certain AI systems.EUCCThe European Union Cybersecurity Certification scheme for evaluating ICT products against security and assurance requirements.EUCSthe European Union cybersecurity certification scheme for cloud services, intended to standardize assurance levels.eUICCLa puce intégrée qui stocke et gère un ou plusieurs profils SIM.EUIPOThe European Union Intellectual Property Office, which handles EU trade-mark filings.European Accessibility ActEU law that sets accessibility requirements for certain products and services.European Health Data Space (EHDS)The EU framework for interoperable access, exchange, and reuse of health data.European Service ModuleThe Orion module that provides power, propulsion, thermal control, air, and water support.eval()A PHP function that executes a string as code, making it dangerous when input reaches it unsafely.Évasion de sandboxUne sortie d'un environnement d'exécution restreint vers le système hôte.Évasion des défensesActions entreprises pour dissimuler une activité malveillante ou affaiblir les contrôles de sécurité.Evasion techniquesMethods used to avoid detection by security tools, analysts, or automated filters.Event 4698A Windows audit event that can record the creation of a scheduled task when enabled.Event fraudscams that take advantage of heightened demand around concerts, tournaments, and other large gatherings.Event listingA web page that publishes conference or meeting details and may direct users to related resources.Event LogA structured record of actions generated by business systems and used as the raw material for process analysis.Event MonitoringSalesforce telemetry for auditing logins, API use, and data-access activity.Event ViewerA Windows log viewer used to inspect system, application, and crash-related events.Event-log wipingThe clearing of system logs to reduce forensic visibility and slow incident investigation.Evidence handlingpreserving digital data so it can be analyzed, shared, and used in investigations.EVM compatibilitySupport for Ethereum-style tools and contracts across blockchains that implement the same execution model.Examen hors bandeVérifier séparément les journaux, les sauvegardes et les enregistrements réseau afin de confirmer si un incident est réel et jusqu’où il s’est propagé.Example.comA reserved documentation domain often used in samples and templates, not a real registration target.Exception handlingThe process of defining when a rule does not apply, such as for disability, health, education, or emergencies.Exchange Emergency Mitigation ServiceMicrosoft’s system for delivering temporary mitigations to Exchange servers before a full fix is available.Exchange serverA mail and calendaring platform that can become a high-value entry point if exposed or poorly patched.ExclusionA policy condition or event that is not covered.Exclusive Economic Zone (EEZ)A maritime area where a coastal state has certain resource and regulatory rights, but not full sovereignty like territorial waters.Executable codeCode that can be run by a computer system, whether generated by a person or a model.Execution chainThe sequence of steps a malicious file or script follows after a user opens or runs it.Exécution dans le terminalExécution de commandes dans une interface en ligne de commande, souvent utilisée dans les processus d’installation pour les développeurs.Exécution de codeLa capacité à faire exécuter à un système cible des commandes ou une logique de programme contrôlées par l’attaquant.Exécution de code à distanceUne faille qui peut permettre à un attaquant d’exécuter des commandes sur un système cible depuis un autre endroit.Exécution de code à distance (RCE)Une faille qui peut permettre à un attaquant d’exécuter des commandes sur un système cible depuis un emplacement distant.Exécution de code arbitraireUne condition dans laquelle un attaquant peut exécuter du code de son choix sur un système cible.Execution disciplineThe operational habits that turn strategy into repeatable delivery, monitoring, and improvement.Execution governanceControls that limit what an AI system can actually do, not just what it can read or be told.Exécution par l’utilisateurUn modèle d’attaque dans lequel une personne ouvre ou interagit avec un fichier qui déclenche la chaîne malveillante.Execution policyA PowerShell setting that controls script handling, but is not a complete security boundary.Execution profilingChecks a program makes to understand where it is running before deciding what to do next.Execution surfaceAny place in a system where code can be made to run.Executive accountabilityThe expectation that senior leaders can answer for risk decisions and outcomes.Executive communicationThe practice of delivering concise, decision-focused updates to senior leadership.Executive orderA presidential directive that can steer federal agency behavior and procurement priorities without passing a new law.Executive Order (EO)A directive issued by the U.S. President to guide federal executive action.Executive Order 13870A U.S. policy directive tied to strengthening and recognizing the cybersecurity workforce.Executive sponsorshipVisible leadership support that helps keep a project aligned and accountable.Executive spoofingA fraud pattern that imitates a senior leader to pressure staff into risky action.Executive useAn AI mode that helps carry out tasks inside a workflow, increasing operational dependence.Exercice sur tableUn exercice fondé sur la discussion, utilisé pour répéter les décisions, les rôles et les communications pendant une crise.ExfiltrationLe transfert non autorisé de données hors d’un réseau ou d’un système.Exfiltration de donnéesLe retrait non autorisé de données d’un réseau vers un emplacement contrôlé par un attaquant.Exfiltration to Cloud StorageA technique where stolen data is sent to a cloud storage service instead of a traditional attacker server.Exfiltration vers le cloudTransfert de données volées vers un stockage cloud ou des outils de transfert cloud en vue de leur extraction.ExifToolA utility and library used to read and write metadata in many file types, including images and documents.EximA mail transfer agent that routes and receives email using SMTP.Exit nodeThe server where routed traffic leaves an anonymizing network and reaches its destination.Exit planA documented path for moving workloads or data away from a provider without losing continuity or evidence.Exit strategyThe plan for safely replacing or removing a system and its data.Expansionary policyMonetary actions intended to stimulate the economy, often by increasing liquidity or lowering borrowing costs.Experience taxThe hidden burden users pay in wasted time, repeated steps, and lost confidence.Experimental channela higher-risk preview track where features may shift, expand, or disappear.ExplainabilityThe ability to make model outputs understandable enough for human review, oversight, and audit.Explainer videoA short video format used to simplify a product, service, or idea.Explicit-dynamics simulationSoftware used to model fast, high-energy events such as blasts and impacts.ExploitCode ou méthode utilisé pour tirer parti d’une vulnérabilité.Exploit chainMultiple flaws combined to achieve a larger attack outcome than one bug would provide alone.Exploit chainingLinking multiple vulnerabilities or techniques together to reach a larger attack goal.Exploit codeCode that demonstrates or automates the abuse of a vulnerability.Exploit engineeringThe process of turning a vulnerability into a working attack method.Exploit frameworkA toolset that packages one or more exploits for delivery against vulnerable targets.Exploit in the wildReal-world abuse of a flaw by attackers outside of a lab setting.Exploit synthesisThe process of turning a weakness into code or steps that demonstrate impact.Exploit timelineThe time between disclosure of a flaw and active exploitation by attackers.Exploit validationTesting whether a suspected weakness can be reliably triggered into a real security impact.Exploit windowThe period between vulnerability discovery and effective patching or mitigation.Exploit zero-dayCode ou activité qui exploite une faille inconnue avant qu’un correctif ne soit disponible.ExploitabilityA measure of how likely a vulnerability is to be turned into a working attack.Exploitability IndexA Microsoft prioritization field used to help defenders judge patch urgency.Exploitation attemptA probe or action meant to test whether a weakness can be used in practice.Exploited vulnerabilityA flaw that an attacker has actively used to gain unauthorized access or control.Export controlA legal system that restricts or conditions the transfer of sensitive goods and technology.Export controlsRules that restrict how sensitive technology can be shared or transferred.Exposition de l'accès à distanceServices exposés à Internet tels que les VPN ou les portails web qui peuvent devenir des points d'entrée s'ils sont mal sécurisés.ExposureThe condition of a system or service being reachable in a way that could increase attack risk.Exposure controlLimiting who can reach a service, often by restricting it to trusted networks or hosts.Exposure learninggaining familiarity through repeated contact with language.Exposure managementThe process of finding and reducing security weaknesses across systems and services.Exposure reductionSecurity work that limits what is reachable, vulnerable, or overly privileged in an environment.Exposure windowThe time a vulnerable system remains unpatched and therefore at risk.ext/standardPHP’s built-in extension that provides core functions shipped with the interpreter.Extended Life Cycle subscriptionA paid support tier that extends coverage beyond the standard maintenance window.Extended Producer Responsibility (EPR)A policy approach that assigns producers responsibility for the waste stage of their products.Extended ProtectionMicrosoft’s Exchange hardening feature that uses channel-binding tokens to reduce credential relay and MITM risk.Extended Security Updates (ESU)Microsoft’s paid channel for security patches after mainstream support ends.ExtensionAn add-on for an application, such as a code editor, that can expand functionality and, if abused, provide a trusted foothold.Extension allowlistA policy that permits only approved extensions to run in a managed environment.Extension ecosystemA platform design that lets plugins or add-ons expand functionality, but also expands attack surface.Extension hostThe runtime in VS Code where extensions execute their code and react to editor events.Extension managementThe process of installing, reviewing, and controlling add-ons that modify browser behavior or access.Extension messagingThe channel Chrome extensions use to exchange data, which must be validated before trust is given.Extension PHPUn module qui ajoute des capacités à PHP, souvent écrit en C et susceptible d’introduire des risques liés à la sécurité mémoire.External accessA Teams communication mode that can connect people outside the organization under defined controls.External validationTesting a model on independent data to see whether it still performs well outside development.External verificationIndependent checking used to confirm that safety or compliance claims are credible.extinction de la 2G/3GLa mise hors service des réseaux mobiles hérités afin de libérer du spectre et de réduire la charge de maintenance.ExtorsionUne tactique coercitive qui exige un paiement ou une action en menaçant de causer un préjudice, une divulgation ou une perturbation.Extorsion de donnéesUne tactique où des attaquants menacent de divulguer des fichiers pour forcer un paiement ou des concessions.Extorsion par site de fuiteUne tactique de pression qui menace de divulguer publiquement des données pour forcer un paiement ou obtenir des concessions.Extorsion secondaireUne tactique qui ajoute des menaces de publication ou de fuite de données pour accroître la pression liée à la rançon.Extortion attackA coercive intrusion in which stolen data or system access is used to pressure a victim.Extortion attemptA coercive demand made after unauthorized access, usually intended to pressure a victim into payment or compliance.Extortion brandingA threat label used to pressure victims after theft, disruption, or unauthorized access.Extortion EconomyA criminal setup that combines intrusion, pressure, and payment tactics to force victims into compliance.Extortion EntryA public post or listing that pressures a victim by claiming access, theft, or imminent data release.Extortion feedAn online venue that aggregates or publishes attack claims used to pressure alleged victims.Extortion groupA threat actor that uses threats, leaks, or disruption to force payment or leverage.Extortion leak siteA criminal publication page used to shame victims and increase pressure by threatening or posting stolen data.Extortion listingA public post naming an alleged victim to increase pressure and force negotiation.Extortion PostA public claim used by a threat actor to pressure a target, often before any independent verification.Extortion siteA web page used by threat actors to pressure victims, often through threats of publication.Extortion TrackerA public feed that records claims, leak notices, or victim names used to pressure targets.Extortion-driven intrusionAn attack model focused on pressure, theft, or coercion rather than only encryption.Extortion-onlyA criminal model focused on data theft and coercion rather than encrypting files for ransom.ExtortionwareA tactic where criminals pressure a victim by threatening to release stolen data or cause disruption.Extraction rootThe directory where an archive is supposed to unpack, and the boundary defenders expect code to enforce.ExtraditionUne procédure juridique qui transfère une personne d’un pays à un autre pour qu’elle soit poursuivie ou punie.ExtruderThe component that pushes printing material into the hot end at a controlled rate.Eye trackingTechnology that measures gaze direction and can be used as an input signal.F5 BIG-IPA network appliance used for traffic management, load balancing, and edge security functions.FabShort for fabrication plant, the facility where semiconductor wafers are produced.FabricationThe process of making or assembling a physical project.Facial recognitionA biometric method that compares facial features to verify or identify a person.Facteurs humainsL’étude de la manière dont les personnes perçoivent, réagissent et interagissent en toute sécurité avec les systèmes.FactoringA financing service where businesses sell receivables to improve cash flow.Factory historyThe production background that shapes how a product is made and remembered.Fail openA design mistake where a validation error is treated as success.Faille de logique métierUne faiblesse dans la manière dont les règles d’une application fonctionnent, souvent manquée par les scanners.FailoverThe process of switching traffic to a backup path or system when the primary path is unavailable.Failover readiness scoreA weakest-link recovery score across infrastructure-as-code, network, data, workload, and sovereignty layers.Failure forwardA mode that sends a failed login into an internal subrequest instead of a simple redirect.Failure modeThe specific way a system or component breaks down under stress or abnormal use.Failure modesDistinct ways a system can malfunction, misbehave, or be manipulated.FAIRA cyber risk quantification model that expresses risk in financial loss terms.FAIR dataResearch data designed to be Findable, Accessible, Interoperable, and Reusable.Fair remunerationa payment framework that compensates rightsholders for covered online uses of protected content.Fake appA mobile app that imitates another service or brand to mislead users.Fake identityA fabricated persona used to conceal the real operator.Fake installerA fraudulent setup package designed to imitate legitimate software and trigger unsafe execution.Fake login pageA fraudulent sign-in screen designed to capture credentials by impersonating a real service.Fake profileA fabricated or impersonated account used to mislead other users.Fake support scamfraud that uses bogus technical-help contacts to trick victims into calling or paying.FakeUpdatesA fake browser-update prompt used to trick users into downloading malware.FallbackA switch to a less secure transport, such as moving from RCS to SMS when encryption conditions are not met.Fallback behaviorA backup path a system uses when the primary model or service cannot handle a request.Fallback modelA safer secondary model used when a request is blocked or needs a more conservative response.Fallback PathA lower-security route a message can use when the preferred encrypted service is unavailable.Fallback planningpreparing an alternate option when a preferred model or service is removed.Fallback routingThe practice of sending flagged requests to a safer or more constrained model.Fallback workflowsManual or alternate processes used when automation is unavailable.False contentMaterial presented as genuine even though it is misleading or inauthentic.False declineA legitimate purchase blocked by a fraud control.False negativeA missed detection, where malicious activity is not flagged.False positiveAn issue flagged by a tool or analyst that does not turn out to be a real vulnerability.False positivesBenign events that a security system incorrectly flags as suspicious or malicious.FamicomNintendo’s Japanese family computer console, the predecessor to the NES abroad.Fascicolo Sanitario ElettronicoItaly’s electronic health folder used to consolidate patient data across care settings.Fascicolo Sanitario Elettronico (FSE)Italy's electronic health record framework for clinical and administrative documents.Fast fluxA technique that rapidly changes the IP addresses behind a domain to make blocking and takedown harder.Fast-fluxA defensive term for infrastructure that rapidly shifts DNS mappings or IP targets to make malicious hosting harder to block.FastAPIA Python framework for building APIs; leaked code can expose routes, auth patterns, and secrets.fatigue liée à l’IARésistance ou lassitude qui peut apparaître lorsque les outils d’IA sont déployés trop souvent ou trop rapidement.fatigue MFAdemandes de connexion répétées utilisées pour tromper les utilisateurs et les pousser à approuver des demandes d’accès.Fatture e corrispettiviThe government portal used to review stamp-duty calculations and manage related payments.Favor impugnationisThe principle that favors allowing an appeal to be heard when possible.FCCU.S. communications regulator that can impose sanctions under federal telecommunications rules.FCIFederal Contract Information, or non-public information generated for or provided by the government under contract.FDMUne méthode d’impression 3D qui construit des objets couche par couche à partir de filament fondu.Feature detectionA web development approach that tests for actual browser capabilities instead of relying on identity strings.Feature extractionThe step of converting raw sound into measurable data for analysis.Feature flagA switch that enables or disables specific software behavior without changing the main product version.Feature gateA control that limits whether a hardware or software capability can be used.Feature layeringAdding new functions on top of an existing hardware design.Feature minimizationA design approach that removes or limits nonessential modules to reduce complexity and potential exposure.Feature retirementThe planned removal of a product capability from future releases or service versions.Feature-gated codeSoftware that is only present or active when a specific build option or configuration is enabled.Federated modelAn operating model where authority is shared across teams, with central guidance and local execution.FederationA setup that lets one identity or directory system coordinate access across multiple services.FedRAMPA U.S. government program and authorization framework for cloud services used by federal agencies.FeedbackThe response a device gives after a user action.Feedback loopThe cycle of acting, measuring results, and adjusting based on new information.Feedback PoisoningManipulating training or feedback data so a model learns distorted or unsafe behavior.FeedstockThe raw material used as input for a chemical or industrial process.Fenêtre de contexteLa quantité d’informations qu’un modèle peut prendre en compte à un moment donné.Fenêtre de correctifLe délai entre la divulgation d'une faille et l'installation d'une mise à jour corrective.Ferme de laptopsUn ensemble de laptops hébergés utilisés pour faire croire que des opérateurs distants sont présents localement.FERPAU.S. law that governs privacy and disclosure of education records.Fetch-decode-execute cyclethe repeated sequence a CPU uses to retrieve, interpret, and run instructions.FFmpegAn open-source multimedia framework used to process, convert, and stream audio and video data.Fiat currencyGovernment-issued money whose supply is not fixed by a commodity standard.Fiat moneycurrency whose value depends on state backing and public confidence rather than a physical commodity.Fiat systemMoney whose value is backed by government authority and public trust rather than a physical commodity.Fibre dédiéeCâble optique réservé à un usage spécifique, plutôt que de transporter un trafic de communications ordinaire.Fichier polyglotteUn fichier conçu pour être valide selon plus d’une interprétation de format.fichier STEPUn format de données produit ISO 10303 utilisé pour échanger des modèles 3D et des informations de fabrication entre systèmes.FidelityHow closely a replica matches the original in form, scale, and detail.Fidget toyA small object designed to be handled repeatedly for tactile engagement.FIDOA standards family for stronger, phishing-resistant authentication methods.Field mappingMeasuring a signal across space to show how it changes from point to point.Field of ViewThe area a sensor can observe at one time, which strongly affects what it can detect.Field trialA controlled rollout method that enables features for limited builds or user groups.FilamentThe plastic material used by FDM printers, usually stored on a spool.File encryptionA ransomware action that locks files so they cannot be opened without a key.File encryption for impactA technique where attackers lock data or systems to disrupt operations.File extension retentionWhen encrypted files keep their original names, making visual detection harder.File hashA fixed-length digital fingerprint that can help compare files or artifacts, but only if its origin is known.File header validationChecking a file’s internal structure or signature to verify what it really is, rather than trusting the filename alone.File intake workflowA process that lets outside users submit files through a website or transfer portal.File integrityAssurance that a digital file has not been altered unexpectedly or maliciously.File integrity monitoringa control that watches for unexpected changes to files, which can help spot intrusion or tampering.File organizationThe method used to arrange records for storage and retrieval.File shareShared network storage used by multiple users or departments to access and save documents.File sharingMoving digital content from one person, app, or device to another.File state triagethe process of classifying files by how they were affected before choosing a recovery path.File TreeA directory listing used to show victims what files may have been accessed.File-integrity monitoringA control that tracks unauthorized or unexpected changes to files and can help spot ransomware activity.File-system changesModifications to files, names, or extensions that can reveal ransomware activity.File-transfer toolingSoftware used to move data between systems, which can be abused for bulk exfiltration.Fileless executionRunning code from memory or transient objects instead of a normal on-disk file.Fileless malwareA broad label for attacks that rely on scripts, memory, or other nontraditional payload handling instead of a classic dropped executable.Fileless threatAn attack style that relies more on memory, scripts, or legitimate tools than on a traditional malware file.FileProviderAn Android component used to expose files safely between apps when configured correctly.FilesystemThe structured storage layer where a system keeps files, folders, and application data.Filesystem driverLow-level software that can intercept file operations before applications see the data.Filesystem IntegrityThe property that files and directories remain unmodified except through authorized actions.Filter bubblean information loop that keeps showing users similar content and viewpoints.Filtrage des sortiesUne couche de sécurité qui bloque ou réécrit les mauvaises réponses après leur génération par le modèle.Finalité du règlementLe moment où un paiement devient irréversible et réglé.Financial Market InfrastructureThe systems and institutions that support financial markets, including exchanges and settlement services.Financial riskthe chance that a security issue leads to monetary loss or business disruption.Financial sectorbanks and related institutions that handle payments, accounts, and sensitive customer trust.Financial servicesinstitutions and platforms that handle money, payments, or related operations.Findingsthe issues or weaknesses identified during a security assessment.Fine-grained PATA GitHub personal access token that can be limited to specific repositories and permissions.Fine-grained personal access tokenA GitHub token that can be limited to specific repositories and permissions.FingerprintingIdentifying or tracking a device or user by combining small technical clues.FinOpsA practice for managing cloud and AI spending through forecasting, visibility, and policy controls.FintechFinancial technology services that support digital payments, wallets, or online banking.Fintech APIA software interface that lets financial tools exchange data and services automatically.Fire OSAmazon’s Android-derived operating system used on Fire TV devices.Firefox ESRBranche du navigateur de support à long terme de Mozilla, conçue pour les organisations qui ont besoin d’une cadence de changement plus lente.FirewallThe request-level security layer that decides whether a route needs authentication.Firewall inspectionThe process of examining network traffic before it is allowed or blocked by policy rules.Firm powerElectricity supply that is available continuously and predictably, regardless of weather or time of day.Firmware analysisInspection of device firmware to find secrets, logic flaws, or security weaknesses.Firmware backupA saved copy of device settings or low-level software used for recovery or transfer.Firmware baselineThe approved software version set that defines a device’s current security state.Firmware integrityThe assurance that device firmware has not been altered without authorization.Firmware recoveryA repair step that restores device software after a failed update or software corruption.Firmware rollupA single device update that bundles multiple fixes into one coordinated release.Firmware signingA trust control that verifies embedded-device updates before installation.Firmware updateVendor-provided code that patches or changes the software embedded in a hardware device.Firmware update mechanismThe part of a device that receives and installs new software, often the first place attackers target if authenticity checks are weak.Firmware updatesLow-level software patches that fix bugs and security issues in hardware.Firmware UpgradeabilityThe ability to safely update device software in the field without breaking core functions.First principlesa method of solving problems by starting from basic facts and rules.First-party dataData collected directly by a brand or publisher from its own audience or users, often used to improve targeting and measurement.First-person shooterA game genre shown from the player’s viewpoint, usually centered on movement and action.Fischer-Tropsch processA chemical method for converting simple feedstocks into hydrocarbon chains.Five EyesAn intelligence-sharing alliance of Australia, Canada, New Zealand, the UK, and the US.Fixed buildThe specific software version that includes the security patch and should replace the vulnerable release.Fixed-price tariffA contract model that keeps the energy price stable for a set period.Flash encryptionA feature that encrypts stored firmware and data on the device to reduce physical tampering risk.Flat-rate subscriptionA fixed-fee plan that does not change with normal use volume.Fleet-wide impactA security failure that can affect many managed devices through one central system.Fleet-wide verificationChecking that a patch or configuration change actually reached all managed devices, not just some of them.Flight joystickA hand controller used in flight simulation to manage directional input and movement.FlowA configuration setting that affects how a VLESS connection is handled in practice.Flow controlA protocol feature that limits how much data can be sent before the receiver catches up.FlowrateThe amount of material delivered over time, which affects print consistency.Flussi informativistructured information flows used to move relevant facts to the right oversight functions.Flux d’informations sur les menacesUn flux de surveillance qui collecte et organise des revendications, indicateurs ou observations de menaces cyber pour les défenseurs.Flux de déploiementLe processus utilisé pour publier une application web ou une page en ligne, souvent via des outils cloud automatisés.Flux de fuitesUne source de surveillance qui suit les revendications publiques liées aux ransomwares et l’activité des sites de fuite.Flux de gestion des habilitationsLe processus administratif utilisé pour collecter, vérifier et gérer les données relatives aux qualifications professionnelles.Flux de recrutementL’ensemble des étapes utilisées pour sourcer, sélectionner, évaluer et choisir des candidats pour un poste.Flux de renseignements sur les menacesUn flux de données de sécurité qui agrège des observations à des fins de surveillance et d’enquête, sans constituer une preuve définitive.Flux de surveillance des revendicationsUn service qui suit les publications publiques d’extorsion et l’activité des sites de fuite, sans prouver indépendamment une compromission.Flux de traitement des facturesLe processus métier qui reçoit, valide, vérifie et paie les factures.Flux de travail des comptesLa séquence utilisée pour créer, vérifier et gérer l’accès des utilisateurs.Flux de travail en radiologieLes systèmes et processus utilisés pour gérer l'imagerie, la visualisation et les dossiers associés.FOCUSthe FinOps Open Cost and Usage Specification, an open standard for normalizing technology billing data.Focus managementThe way a web interface controls keyboard and screen-reader attention during pop-ups or dialogs.Follow-on phishingSecondary scams that exploit fear or confusion after a cyber incident claim.Follow-the-sun modelA support structure that hands work between time zones to provide continuous coverage.FOMOFear of missing out; a pressure tactic that can push users into hasty clicks or sign-ins.Fonction de transfert liée à la tête (HRTF)La manière dont la tête et l’oreille externe filtrent le son avant qu’il n’atteigne le tympan, en façonnant la localisation.Fonctionnalité à activation volontaireUn paramètre de sécurité que les utilisateurs doivent activer manuellement plutôt que de le recevoir par défaut.FootholdInitial usable access inside an account or environment that can support further activity.FootprintThe pad pattern on a PCB that matches the shape and pinout of a specific component.Forced BrowsingA web access flaw where a user can reach protected resources by requesting them directly.ForecastingUsing data and models to predict future production, demand, or system behavior.Foreground serviceAn Android service allowed to keep running with a visible notification, commonly used for ongoing tasks.Forensic analysisThe process of examining systems and evidence to understand what happened.Forensic ConfirmationEvidence-based validation that an incident really occurred, using logs, artifacts, and analysis.Forensic copyA duplicate created to preserve evidence while minimizing changes to the original device.Forensic identifierA label or hash-like value used to track an incident record, file, or post, not proof of compromise by itself.Forensic imagingCapturing a disk or memory snapshot so investigators can preserve evidence.Forensic investigationThe process of collecting and analyzing evidence to determine what happened and why.Forensic loggingSecurity data kept to help reconstruct events after a suspected incident.Forensic preservationProtecting logs, images, and records so investigators can reconstruct what happened.Forensic ReadinessPreparing systems and procedures so digital evidence can be preserved quickly after an incident.Forensic scopeThe verified boundary of what was accessed, copied, encrypted, or otherwise affected.Forensic triageRapid evidence gathering to determine what happened and what to preserve.Forensic validationThe process of checking logs and system evidence to confirm what really happened.Forensic verificationTechnical checking used to confirm the authenticity and reliability of digital material.Forensics by DesignAn approach that builds evidence collection, traceability, and auditability into a system before an incident happens.ForkUne version dérivée d’un projet qui conserve une partie de l’idée originale mais en modifie l’implémentation.Form factorThe physical size and shape of a device, which often constrains what upgrades are practical.Form-loginA common username-and-password login flow built into Symfony.Format conteneurUne enveloppe qui contient des flux multimédias et des métadonnées dans un seul fichier.Formation basée sur les rôlesFormation à la sécurité adaptée aux risques et responsabilités spécifiques de différentes fonctions professionnelles.Formation fondée sur les justificationsFormation qui enseigne non seulement quoi faire, mais aussi pourquoi un comportement est considéré comme sûr ou dangereux.FortiAuthenticatorFortinet’s identity and access management platform for authentication and access services.FortiGateA Fortinet security appliance often used for firewalling and VPN access.FortiSandboxFortinet’s sandboxing and malware-analysis product used to inspect suspicious files and behavior.Forward SecrecyA property that limits the damage of later key exposure by changing session keys over time.Forward-deployed engineer (FDE)An embedded technical specialist who helps adapt and operate AI systems inside a customer environment.Foucault pendulumA swinging mass that reveals Earth’s rotation through the slow turning of its swing plane.Foundation modelA large pretrained AI system that can be adapted for many tasks.FoundryA company or facility that manufactures chips designed by other firms.Fournisseur de services gérés (MSP)Une entreprise qui exploite ou prend en charge à distance des systèmes informatiques pour des organisations clientes.FPGAUne puce reconfigurable qui peut être programmée pour se comporter comme du matériel sur mesure.Fragment partagéUn morceau de données de paquet qui peut être détenu ou référencé par plus d’une partie du système.Fragmentationa split regulatory environment where different local rules create inconsistent operational requirements.Fragmentation riskThe chance that separate policies or incentives create uneven and less effective outcomes.Fragmented regulationA legal setup where overlapping or uneven rules create uncertainty across jurisdictions.Frame rigidityThe ability of a structure to resist flex and vibration while a machine is operating.FrameworkA structured method for applying repeatable rules or practices.Framework agreementA cooperative arrangement that sets principles and working methods without creating a fully binding treaty.FramingThe way bits are organized into readable message units.FranchigiaA tax-free threshold that can reduce or eliminate tax on small gains up to a set amount.Franchise Disclosure Document (FDD)A formal disclosure package used in franchising that describes key terms and business information.FRANDConditions « équitables, raisonnables et non discriminatoires » utilisées par le Data Act pour encadrer la compensation et les conditions de partage.FraudDeceptive activity intended to obtain money, value, or unauthorized access through dishonest means.Fraud alertA notice placed on a credit file that tells lenders to take extra steps before approving new credit.Fraud campaignA coordinated set of scams designed to steal money or information.Fraud controlsSecurity measures used to detect or block suspicious payment activity.Fraud ecosystemThe people, tools, and processes that work together to sustain a scam.Fraud infrastructureThe tools and contact channels used to run deceptive operations.Fraud screeningControls used to detect suspicious transactions or scam patterns.Free downloadA file made publicly available at no cost, which can greatly widen access to sensitive data.Free-for-Teacher (FFT)Un niveau de compte Canvas public et en libre-service, avec moins de fonctionnalités que les environnements institutionnels.FreeBSDA Unix-like operating system often used as the base for servers and appliances.Freedom of enterpriseA legal concept protecting the ability to conduct commercial activity without unjustified interference.FreemiumA business model that offers basic features for free and charges for upgrades or higher limits.FreePBXA web-based management interface used to administer Asterisk-based PBX systems.Freight ReroutingThe diversion of a shipment from its intended path or destination through fraudulent instructions.Frequent flyer programan airline loyalty system that tracks travel activity and rewards customers.Fresh waterLow-salinity water suitable for drinking, agriculture, or industrial use.FrictionThe resistance between surfaces that can help turn vibration into forward motion.Front companyA business used to hide true ownership, intent, or operational control behind a plausible public identity.FrontendThe user-facing part of an application, where controls can be shown, hidden, or disabled.Frontier AIHighly capable AI systems at the leading edge of current model development.Frontier AI modelA highly capable model at the leading edge of current systems, often monitored closely for misuse risk.Frontière d'authentificationLe point où un utilisateur prouve son identité avant d'accéder à des services protégés.Frontière de privilègesLa ligne qui sépare les actions de faible confiance des actions administratives nécessitant un niveau de confiance plus élevé sur un système.Frontière du piloteLa ligne de confiance où l’application des règles en mode noyau peut garantir ou briser l’isolation.FsTx Auto Recovery UtilityA Windows recovery component named in the mitigation path for YellowKey.FTTHFiber to the Home, a broadband model that delivers fiber directly to premises.Fuel degradationthe gradual decline of fuel properties during storage or exposure to time.Fuite de donnéesUn incident au cours duquel des données protégées sont consultées ou exposées sans autorisation.Full-disk encryptionProtection that makes data unreadable if a device is lost or stolen.Full-page cacheA system that stores complete web pages to reduce server work and speed delivery.Full-stack AI cloudA managed service model that combines chips, data-center hardware, software, and operations for AI workloads.Fume controlMeasures used to limit airborne vapors, odors, or particles in a workspace.Function creepThe gradual expansion of a system beyond its original, approved purpose.Function.callerA JavaScript feature that can reveal calling relationships and become dangerous if exposed in a sandbox.Functional visual artworkAn object designed to be both useful and aesthetically expressive.Fundamental rightscore legal protections such as privacy, expression, and due process.FURMStanford’s framework for Fair, Useful, Reliable AI Models used to evaluate AI use.Further processingReusing data for a new purpose beyond the original one, subject to legal limits.FusorAn experimental fusion device often discussed in amateur nuclear physics circles.Fuzzingautomated testing that feeds varied inputs into software to uncover crashes and security bugs.GAGeneral Availability, the mainstream release branch used for broadly deployed production software.GafgytA long-running malware family that commonly targets embedded Linux devices.GaleraMariaDB’s replication layer for keeping cluster nodes in sync through shared transaction state.Gallery viewA standard grid layout that shows multiple meeting participants at once.Game engineCore software framework that powers rendering, physics, scripting, and asset handling.Game loopThe repeated cycle that updates input, game state, and display in an interactive program.GameChatFonction de communication de Nintendo pour les appels vocaux, le partage d’écran et les appels vidéo sur Switch 2.GamertagA platform identity used to connect a player to account activity and saved data.Gap analysisA comparison between required controls and the current state to identify missing or weak areas.GatekeeperUn contrôle macOS qui vérifie les applications avant qu’elles soient autorisées à s’exécuter.Gatekeeper platformA dominant service that controls access to users, traffic, or market reach.GatewayA service that bridges clients and devices, often acting as a communication intermediary.Gateway applianceA device or virtual system that mediates traffic and access between users and internal services.GATT characteristicsBluetooth attributes that can be read from or written to, depending on the permissions set on the device.GCHQUK Government Communications Headquarters, the intelligence agency that includes the country’s cyber security mission.Geiger counterA radiation detector used to register ionizing events.GemA packaged Ruby library that can be published and reused by applications.GEM/TOSthe graphical environment and operating system family associated with Atari ST computers.GeminiGoogle’s conversational AI assistant, designed to handle spoken requests and natural language tasks.Gen ZA younger demographic cohort that is highly active on social and short-form video platforms.General-purpose AIA model built for many tasks, not a single clinical function.General-purpose AI modelAn AI model designed to perform many tasks across different applications.General-purpose computingUsing a device for tasks beyond calls and messaging, such as file work or software tools.General-purpose technologyA technology that can improve many sectors at once by changing how work, production, and decisions are organized.GeneralizationThe ability of a model to work well on new data that differs from what it saw during training.Génération d’exploitLe processus consistant à transformer une vulnérabilité en code d’attaque fonctionnel.Generative AI governanceRules and controls that limit how employees use AI tools with company data.Generative AI ProfileNIST guidance for managing generative AI risk through governance, testing, and documentation.Generative Engine Optimization (GEO)The practice of making content more likely to be selected and reused by AI-generated answer systems.Generative mediaAI-created or AI-edited content produced from prompts or existing material.Generative modelAn AI system that creates new text, images, or other content instead of only classifying data.Geo ZonesA location-based control that helps constrain which connections are eligible in a given geography.Geo-blockingRestricting content based on location or IP address.Geoinsightlocation-based analysis that blends network, market, and quality data.GeoJSONA format for encoding geographic shapes, including field boundaries and polygons.GeolocationThe process of estimating a device's physical position using signals such as GPS, Wi-Fi, Bluetooth, or cellular networks.Geolocation datainformation that identifies or helps infer where a device or user is located.Geomarketingmarketing strategy informed by geography and local demand patterns.GeopatriationThe movement of workloads or data toward providers or regions seen as lower-risk from a geopolitical standpoint.Geopolitical riskdisruption risk created by international tension, regulation, or cross-border conflict.GéorepérageVérifications basées sur la localisation qui restreignent ou modifient le comportement d’un logiciel malveillant selon la région de l’appareil ou du réseau.Gestion des appareils mobiles (MDM)Logiciel utilisé pour configurer, sécuriser et surveiller les appareils mobiles au sein d’une organisation.Gestion des botsContrôles utilisés pour identifier et gérer le trafic automatisé, qu’il soit utile ou malveillant.Gestion des changementsLe processus utilisé pour contrôler les mises à jour des systèmes afin que la fiabilité et la sécurité ne soient pas perturbées.Gestion des correctifsLe processus d’application de correctifs logiciels pour réduire un risque de sécurité connu.Gestion des identités et des accèsLes contrôles qui vérifient les utilisateurs et gèrent ce à quoi ils peuvent accéder dans un système.Gestion des liens symboliquesLa logique qu’un programme utilise lorsqu’il travaille avec des liens symboliques, qui peut être exploitée si elle est mal contrôlée.Gestion des risques de la chaîne d’approvisionnementLa pratique qui consiste à suivre les risques liés aux fournisseurs, aux composants et aux dépendances dans la technologie et les opérations.Gesture inputInteraction based on hand or body movement instead of touch controls.get_dumpable()A kernel state check that helps determine whether a process can be inspected.Ghost CMSAn open-source, headless content management system used to publish and deliver web content.Gifford-McMahon cryocoolera cryogenic refrigeration system that uses a repeating compression and expansion cycle to reach very low temperatures.gigafactory d’IAUne installation à grande échelle conçue pour prendre en charge l’entraînement et le déploiement d’IA avancée à l’échelle industrielle.Gigawatt-scale capacityA large-power data-center target that signals industrial-scale AI infrastructure rather than a small private deployment.GINA V2 web componentThe browser-facing part of the secure mail workflow referenced in the vulnerability set.Git historyThe full record of past commits, which can preserve old secrets even after cleanup.Git hooksLocal scripts that can run automatically on events like checkout, commit, or merge.Git TagA marker in a code repository that identifies a specific release point or version.GitHub access tokenA credential used to authenticate to GitHub services and APIs.GitHub ActionReusable automation code that runs inside a GitHub workflow.GitHub ActionsA workflow automation system used to build, test, and deploy code in CI/CD pipelines.GitHub AppAn integration model designed for automated access with narrower, auditable permissions.GitHub organizationA grouping of repositories under one administrative namespace on GitHub.GitHub PagesA hosting feature for publishing static websites and project documentation.GitHub personal access tokenA password-like credential used for GitHub API or command-line access.GitHub ReleasesUne fonctionnalité de publication logicielle qui fournit des liens de téléchargement stables pour les artefacts et des fichiers empaquetés.GitHub tokenA credential used for GitHub authentication; its access depends on token type, scope, and permissions.GITHUB_TOKENA workflow credential available to GitHub Actions jobs for repository-related tasks.GitLabA DevOps platform used for source control, collaboration, and CI/CD automation.Glass substrateA rigid base material used in electronics that can serve as the foundation for circuit structures.GlobalProtectPalo Alto Networks' remote access framework used for portal and gateway-based connectivity.GlobalProtect gatewayThe component that enforces VPN access and security policy for connected users.GlobalProtect portalThe component that distributes configuration and helps initiate remote access.GNSSGlobal Navigation Satellite System, the broader category that includes GPS and other satellite navigation constellations.GNU SASLAn open-source library that implements SASL functionality for applications that need network authentication.GnuTLSA TLS library that applications can use to encrypt network traffic.Go (Golang)A programming language often used in modern malware because it compiles cleanly across platforms.Go-based encryptorRansomware written in Go, a language often chosen for broad system compatibility.Go-based ransomwareMalicious software written in the Go language, often chosen for speed and cross-platform reach.Go-to-market motionThe repeatable process used to position, sell, and distribute a product to the right audience.Gogna digitaleOnline shaming that can spread rapidly through reposts, comments, and algorithmic amplification.Golden ImageA known-good system template used to rebuild compromised machines quickly after destructive activity.Golden sourceA trusted reference point for a business entity that reduces conflicting copies.Good-faith researchsecurity testing done with the intent to improve defenses, not cause harm.Google HomeGoogle’s smart-home platform for controlling connected devices through the user’s account and integrations.Google Kubernetes Engine (GKE)Google Cloud’s managed Kubernetes service for running container workloads.Google Password ManagerA Google service that stores and syncs passwords and passkeys across devices.Google Password Manager (GPM)Google’s credential vault for storing and syncing passwords and passkeys across devices.Google Play ProtectAndroid’s built-in scanning and warning system for harmful apps.Google Play system updateA delivery path for some Android security fixes that does not require a full OEM firmware update.Google SitesGoogle’s website publishing service, which can be abused to host lookalike pages.Google Tag ManagerA tag management system that lets sites deploy and update scripts through container snippets.Google Tag Manager (GTM)A tag-management platform used to deploy scripts and tracking code without frequent site-code edits.Google TakeoutA Google tool that lets users download data from supported services.GosSOPKARussia’s state framework for detecting and responding to cyberattacks on important information resources.GouvernanceLes politiques et les contrôles qui encadrent la manière dont les décisions technologiques sont prises et examinées.Gouvernance de l’IALes politiques, les rôles et les contrôles utilisés pour gérer la manière dont l’IA est approuvée, surveillée et auditée.Gouvernance des donnéesLes règles et contrôles qui déterminent comment les données sont collectées, protégées, utilisées et auditées.Gouvernance des identitésContrôles qui gèrent qui obtient l’accès aux systèmes, aux données et aux autorisations au fil du temps.Gouvernance interfonctionnelleUne supervision qui réunit plusieurs départements afin de maintenir l’alignement entre l’apprentissage et les priorités de l’entreprise.Govern FunctionThe CSF 2.0 function focused on oversight, accountability, and aligning cyber decisions with business goals.GovernabilityThe quality of being controllable, auditable, and safe to operate within policy boundaries.Governance by Designan approach that builds review, accountability, and oversight into planning from the beginning.Governance continuitythe ability to keep decision-making stable during leadership or organizational change.Governance frameworkA structured set of policies and controls for managing risk, access, and accountability.Governance latencyThe delay between a control being needed and a decision being made, which can push teams toward workarounds.Governance layerControls that track, restrict, and document how AI systems are used inside an organization.Governance metadataPolicy-related information attached to content to guide handling, access, or training use.Governed analyticsA model for self-service analytics that stays inside access, quality, and audit controls.Governed identityA controlled enterprise identity used to manage what a non-human system can access.Government sector targetingOperations aimed at public institutions that may contain sensitive policy, identity, or national-security data.GPGGNU Privacy Guard, a toolset for signing and verifying software and messages.GPG public keyThe public part of a key pair used to verify the authenticity of signed updates and files.GPOGroup Policy Object, a Windows domain feature used to manage settings across many systems.GPSA satellite navigation system that provides positioning, navigation, and timing through one-way broadcasts.GPS spoofingThe use of counterfeit satellite signals to mislead a receiver about its location or time.GPTGUID Partition Table, a disk-partitioning scheme commonly used with UEFI systems.GPT (GUID Partition Table)A disk partitioning scheme commonly used with UEFI boot mode on Windows systems.GPT-5.5Le modèle polyvalent d’OpenAI utilisé dans le programme d’accès cyber.GPT-5.5-CyberUne variante à prévisualisation limitée et plus permissive pour des workflows autorisés spécialisés.GPUGraphics Processing Unit, a processor built for parallel computation and widely used in AI training and inference.GPU clusterA tightly connected group of graphics processors designed to handle large parallel AI workloads.GPU processThe browser component that handles graphics work and can be security-sensitive.GPU utilizationThe percentage of time a graphics processor is actively busy versus waiting.GPUaaSGPU-as-a-Service, where accelerator hardware is rented on demand for AI processing.Graceful degradationA design approach where services continue in reduced form instead of failing completely.Grand modèle de langageUn système d’IA entraîné à générer du texte et du code, et parfois à aider à produire des résultats liés à la sécurité.Grand modèle de langage (LLM)Un système d’IA entraîné sur du texte qui peut générer et transformer du langage, du code et des instructions.Granular access tokenA scoped npm credential used for specific packages, organizations, or release tasks.Granular traceabilityDetailed tracking that records the movement and status of items through each stage of a process.GranulesSmall plastic pellets used as feedstock in some 3D-printing systems.Graph analysisA detection method that maps links between accounts, devices, wallets, and beneficiaries.Graph-Based AnalysisA method that maps relationships between people, accounts, devices, wallets, and companies to uncover hidden links.Graphics acceleratorhardware designed to handle visual processing tasks more efficiently than the CPU alone.GraphRAGA graph-based retrieval method that adds structure and relationships to AI search and answer systems.Gravité élevéeUn niveau de risque élevé pour des failles pouvant tout de même avoir un impact grave sur la sécurité.GravitonAWS’s custom processor family, used here to improve cloud price-performance.Gravity batteryAn energy-storage system that uses lifted mass to hold energy.Gray-box testingSecurity testing with partial internal knowledge of a system.GRCGovernance, risk management, and compliance, combined into one control framework.Green Dealthe EU policy framework aimed at reducing emissions and accelerating the transition to a lower-carbon economy.Green supply chaina supply chain designed to lower environmental impact across sourcing, production, and delivery.GreenhushingLimiter ou retenir la communication publique sur les activités de durabilité.Grid CongestionPressure on power transmission networks that can delay or limit new high-demand connections.Grid connectionThe process of linking a facility to the electricity network, including technical and regulatory approval steps.Grid deploymentUsing a power source in a setup connected to or intended for a power grid.Grid integrationThe process of fitting new generation sources into the electricity system without harming stability.Grid interconnectionThe process of linking a facility to the electricity network so it can draw power at the required scale.Grid modernizationUpgrading electric infrastructure with sensors, software, and communications to improve efficiency and reliability.Grid OperatorAn entity responsible for running and maintaining electricity transmission or distribution networks.Grid optimizationTechniques that help electricity networks balance supply, demand, and constraints more efficiently.Grid pressureStrain placed on a shared electricity network by large consumers.GroomingGradual trust-building used to manipulate someone, often through secrecy, attention, or emotional pressure.Gross interest rateThe stated rate before taxes or deductions are applied.Ground segmentThe terrestrial systems that communicate with, monitor and control satellites in orbit.Ground stationEarth-based equipment used to track, receive, and communicate with spacecraft.Grounded Knowledge SourceA curated information base used to help an AI system produce more accurate and consistent answers.GroundingUsing indexed content at response time to help an AI system produce a more relevant answer.Group Key ManagementThe process of creating and updating shared encryption keys for multi-user sessions.Group PolicyA Windows management feature that can control settings across many computers.Group Policy ObjectA Windows administration feature that can be abused to push commands or changes across many systems.Groupe de chantage uniquementUn groupe de menace qui se concentre sur la coercition par les données volées et la divulgation publique plutôt que sur le chiffrement des fichiers.GRULe service de renseignement militaire de la Russie, souvent associé à l’espionnage et aux opérations cyber.GSOCGlobal Security Operations Center; a centralized function for monitoring, triage, and response across regions.Guaranteed CapacityAn enterprise purchasing model that reserves access to AI compute under commitment terms.GuardrailA control designed to limit unsafe or unintended system behavior.GuardrailsPolicy limits that help block unsafe prompts, outputs, or actions in AI systems.Guerre hybrideUne stratégie qui combine des pressions cyber, électroniques, informationnelles et physiques pour produire un effet stratégique.GuestA virtual machine running inside a hosted virtualization environment.Guest-to-host escapeAn exploit that breaks out of a virtual machine and reaches the host system.GuidelineA recommended approach that allows judgment based on context.Guilty pleaA formal admission of criminal responsibility in court.H-1B visaA US employer-sponsored visa for specialty occupations that usually require specialized knowledge and a qualifying degree or equivalent.H-BIMHistoric Building Information Modelling; a structured way to model heritage buildings with geometry and documentation.Hachage d’installateurUne empreinte cryptographique utilisée pour vérifier si un fichier téléchargé a été modifié.hachage SHA-256Un condensat hexadécimal de 64 caractères couramment utilisé pour vérifier l’intégrité des données ou identifier des fichiers.Hack-and-leakAn extortion model that focuses on stealing data and threatening publication rather than only encrypting files.Hacktivismcyber activity driven by political, social, or ideological goals.Hacktivist groupA public-facing collective or persona that claims cyber activity for political, ideological, or influence purposes.Hacktivist personaA public-facing identity that claims activist motives and can also be used to obscure real affiliation.HAIP Reporting FrameworkA voluntary OECD-led mechanism for sharing how organizations govern and manage risk in advanced AI.HallucinationAI output that is plausible-sounding but false or fabricated.Hand plottingManually laying out a circuit board instead of using software-assisted design tools.HandoffThe point where data leaves one system and enters another.Hands-on-keyboard intrusionAn attack where a human operator actively interacts with the victim environment after initial access.Hard offerA product or service that is difficult to explain quickly without structure.Hard-coded credentialsFixed access details embedded in software or firmware instead of being set by the user.Hardcoded cryptographic keyA secret built directly into software or firmware, making it difficult to replace and risky if discovered.Hardcoded keyA fixed secret embedded in software instead of being generated and stored securely.Hardcoded secretSensitive credential material embedded directly into code or a package.HardeningSecurity controls and secure settings that make exploitation harder, such as memory protections and service isolation.Hardware clonea product built to imitate another device’s form or function, often at lower cost.Hardware compatibilityWhether software and devices can work together without special fixes or version pinning.Hardware lifecycleThe stages a device or component moves through from use to retirement.Hardware modA physical modification that changes how a device looks, works, or is maintained.Hardware reliabilityHow consistently a device performs its intended functions over time.Hardware restorationThe process of repairing and returning electronic devices to working condition.Hardware tradeoffA design compromise between capability, complexity, and efficiency.HarmonicsDistortions in an electrical waveform caused by non-linear loads, which can complicate monitoring and reliability.Harmonised standardA technical standard that helps organisations show they meet legal or regulatory requirements.Harvard architectureA design that keeps instruction memory and data memory separate.Harvest Now, Decrypt LaterA strategy where attackers store encrypted data today and try to decrypt it in the future.HashUne empreinte numérique de longueur fixe utilisée pour identifier des données, des fichiers ou d’autres artefacts.Hash CheckingA control that verifies a package’s cryptographic fingerprint before installation.Hash d’attaqueUn identifiant unique utilisé pour suivre ou référencer un incident ou une entrée de rapport spécifique.Hash de campagneUne chaîne de référence utilisée pour étiqueter ou suivre un cas ; sa signification n’est pas toujours publique.Hash digestA fixed-length output from a hash function, often used to identify or verify data.Hash pinningVerifying a package by its cryptographic hash to reduce tampering and substitution risk.Hash referenceA hexadecimal string used to correlate an incident across logs or intelligence feeds.Hash RFUne étiquette d’enregistrement dans la source contenant une chaîne hexadécimale de 64 caractères ; sa signification exacte n’est pas expliquée.Hash StringA fixed-length digital fingerprint that can help correlate artifacts, but does not prove compromise on its own.Hash valueA fixed-length string used to identify data or records; in threat feeds it may serve as an index, fingerprint, or integrity marker.Hash VerificationChecking a file’s cryptographic fingerprint to confirm it has not been altered.Hash-Chained ReceiptsAudit records linked cryptographically to one another so later alteration becomes easier to detect.Hash-like artifactA long identifier that may label a file, post, or sample, but does not prove compromise by itself.Hash-like TokenA fixed-length hexadecimal string used as an identifier, though its exact purpose may be unknown.Hashed passwordA transformed password value stored for authentication purposes; exposure can still aid attacks if weak or reused.Haut-parleur paramétriqueUn système audio directionnel qui utilise les ultrasons pour projeter le son dans une zone étroite.Haute fréquenceUne plage de signaux où le comportement de l’appareil devient particulièrement sensible à la conception physique.HBMHigh Bandwidth Memory, a stacked DRAM technology built for very fast data transfer in AI and HPC systems.HBM5A future HBM generation that SK hynix says it plans to target after 2029.Header injectionA flaw where attacker-influenced data is written into HTTP headers, potentially altering how responses are processed.Headless 360A Salesforce architecture meant to expose CRM capabilities to agents and other non-UI clients through programmable interfaces.Health ConnectLa couche d’autorisations d’Android pour le partage de données de santé et de fitness entre applications.Health literacyThe ability to access, understand, evaluate, and use health information and services.Heap Buffer OverflowA memory error where data spills past the end of a heap-allocated buffer.Heap memory disclosureAn information leak where uninitialized or unintended process memory is returned to an attacker.Heap out-of-bounds writeA memory corruption flaw where data is written outside an allocated heap buffer.Heap overflowA memory corruption bug where writes go past an allocated heap buffer.Heap-based buffer overflowA memory bug where data writes exceed allocated space in heap memory.Heat rejectionThe process of removing excess heat from equipment so systems remain stable and reliable.Helpdesk abuseSocial engineering aimed at support staff to reset accounts, change MFA, or weaken access controls.Helpdesk impersonationA social-engineering tactic that uses a fake support identity to pressure victims into action.Hex identifierA string of hexadecimal characters often used as a record, hash, or label.Hex stringA sequence of numbers and letters used in technical identifiers, hashes, or encoded values.HexadecimalA base-16 number system often used to display hashes and other machine-readable identifiers.Hexadecimal HashA number string using 0-9 and a-f, often used to identify files or artifacts.Hexadecimal stringA number or identifier written using base-16 characters, often used in technical records.High vacuumA very low-pressure environment used to reduce interference inside sensitive equipment.High-density serverA server setup that concentrates more computing power into less space, increasing heat and power demands.High-resolution screenshotsDetailed images that preserve more visual information than low-quality captures.High-risk AIAn AI use case that can affect safety, rights, access, or major decisions, and therefore faces stricter obligations.High-Risk VulnerabilityA flaw that can create serious security impact if it is not fixed quickly.High-severity vulnerabilityA security issue serious enough to warrant urgent review and remediation.Higher higha new peak above the previous peak, often used to show upward continuation.Hijack Execution FlowA technique where attackers redirect a legitimate process to run attacker-controlled code.HikikomoriProlonged social withdrawal, often involving deep isolation from everyday relationships and activities.HIPAAThe U.S. law that sets privacy and security rules for certain health information.HIPAA breach analysisA fact-based review used to decide whether a healthcare incident is a reportable breach.Historical reconstructionThe process of rebuilding an event from records, footage, and physical evidence.History Clinical RecordA consolidated patient record that brings together data from different care settings.HITLHuman-in-the-loop, a control pattern that keeps a person involved in review or approval decisions.HL7 FHIRA standard for structured healthcare data exchange using modular resources and APIs.HLOSHigh-Level Operating System, the main operating system layer running on a device.HNAPA device management protocol used by some networked hardware for configuration and administration tasks.Hobby electronicsThe practice of building and experimenting with electronic devices for learning or recreation.Hole punchingA connectivity technique used to help devices behind NATs or firewalls establish direct links.Home AssistantOpen-source platform used to connect and automate smart devices.Homebrewsoftware or hardware created outside official vendor channels, usually by hobbyists or independent builders.HomogenizationThe tendency for outputs to become more alike and less distinctive.HoneypotA decoy system or service used to observe attacker behavior or mislead users.HookAn automatic action or command triggered by an application event.Hook managementThe administration of Git hooks, which are scripts that run during repository events to enforce policy or automate actions.HookingIntercepting or redirecting calls inside a program so its behavior can be changed at runtime.HostThe underlying system that provides compute resources to virtual machines.Host Card Emulation (HCE)An Android feature that lets an app emulate a contactless smart card in software.Host devicethe machine running the emulator and providing the required interfaces.Host HeaderAn HTTP header that indicates the requested domain name for a web connection.Host permissionsAccess rights that let an extension read or interact with specific websites or all sites.Host telemetrySecurity-relevant data from a machine, such as processes, files, network connections, and system posture.Host-guest boundaryThe security line between the main system and the virtual machine running inside it.Hosted checkoutA payment flow where the provider hosts the payment form, reducing merchant-side script exposure.HotfixA targeted update released to address a specific urgent flaw.HotpatchA servicing method that can apply some updates without a reboot in supported environments.HPACKThe header compression system used by HTTP/2 to shrink request and response metadata.HPCHigh-performance computing, a workload class that uses tightly packed systems for intensive processing tasks.HRISHuman Resources Information System; software used to manage employee records, compensation, and workforce workflows.HTAShort for HTML Application, a Windows file type that can run script with local privileges outside normal browser protections.HTML attachmentA web page saved and sent as an email file, which can still trigger browser behavior when opened.HTML pageA web page written in HyperText Markup Language and delivered to a browser.HTML smugglingA method of hiding or assembling payloads in HTML or JavaScript so they can evade some gateway checks.HTTPThe protocol browsers use to request and receive web content from servers.HTTP 402A reserved status code meaning “Payment Required,” used here as the basis for payment-gated web access.HTTP 402 Payment RequiredA reserved HTTP status code used by some payment protocols to signal that access depends on payment.HTTP Host /authority: Request headers that identify the target hostname at the application layer.HTTP Host headerA web request field that tells a server which hostname the client is trying to reach.HTTP POSTAn HTTP method used to send data to a server for processing.HTTP requestA message sent by a client to a web server to request a page, action, or service.HTTP response headersMetadata sent by a server that can influence browser and intermediary security behavior.HTTP.sysA Windows HTTP handling component used by server software and web-facing services.HTTP/2A web protocol that improves performance by carrying multiple requests over one connection.HTTP/2 header compression (HPACK)A mechanism that reduces header overhead and can also affect connection-state resource use.HTTP/HTTPSWeb transport protocols used to move traffic between clients and services, with HTTPS adding encryption.HttpOnlyA cookie flag that limits JavaScript from reading the cookie value directly.HTTPSAn encrypted version of HTTP used to protect web sessions, including admin portals.HTTPS trust chainThe certificate-based path browsers and applications use to decide whether a secure connection is legitimate.Human accountabilityThe principle that a person remains responsible for reviewing and answering for system outcomes.Human AgencyThe capacity for people to make informed decisions rather than deferring entirely to automated systems.Human authorshipThe degree to which a person, rather than an AI system, remains the primary creative source.Human controlThe ability of people to supervise, authorize, override, or stop a machine-driven process.Human errorUnintentional actions by users or staff that can contribute to security incidents.Human factorthe role of everyday behavior, communication, and decision-making in security risk.Human in the loopA workflow where a person reviews AI output before it becomes final.Human interventionA manual review or approval step that interrupts fully automated decision-making.Human latencyThe delay created by people working through queues, meetings, and review cycles.Human overrideA manual decision path that can replace or pause automation when needed.Human riskThe security risk created when attackers target people’s judgment instead of software vulnerabilities.Human sign-offFinal human approval of AI-generated material before it is published or deployed.Human supervisionA control measure that keeps a person able to review, question, and override automated outputs.Human supportThe local staff or operators who help patients use the service and navigate the process.Human validationManual review used to confirm whether an automated finding is real and actionable.Human verificationExpert review that confirms whether an AI-generated finding is actually a vulnerability.Human washingThe risk of presenting AI-assisted communication as if it reflected genuine human experience or judgment.Human-AI collaborationA working model where people and AI systems jointly produce an output, with humans still guiding intent and judgment.Human-AI handoffThe point where machine output is reviewed, approved, or acted on by a person.Human-AI interactionThe way people and AI systems share tasks, decisions, and oversight in a workflow.Human-centered AIAn approach that keeps human judgment, agency, and oversight central to AI use.Human-centered cybersecurityA security approach that treats people, process, and technology as one defensive system.Human-centered designAn approach that keeps people, context, and safeguards at the center of technology use.Human-in-the-loopUn flux de travail dans lequel une personne examine et valide la sortie d’une machine avant qu’on lui accorde sa confiance.Human-in-the-loop reviewA control model where a person must approve important AI-generated actions or outputs.Human-machine interfaceThe layer that lets operators observe and interact with complex industrial equipment.Human-machine interface (HMI)The part of a system that people use to interact with it.Human-operated ransomwareAn attack style where people direct access, movement, and extortion steps instead of relying on fully automated malware.Humanités numériquesUn domaine interdisciplinaire qui combine des questions des sciences humaines avec des méthodes computationnelles et des outils numériques.Humanoid robotA robot built with a human-like form factor and movement profile.HUMINTIntelligence gathered from human sources, such as informants, interviews, or direct observation.HVCIHypervisor-Protected Code Integrity; a Windows security feature that helps enforce kernel-mode code integrity and reduce driver-based tampering.Hybrid architectureA design that combines private infrastructure and public cloud to split control and scalability.Hybrid cloudAn environment that combines on-premises systems with public and private cloud resources.Hybrid coolingA design that combines air and liquid cooling in the same datacenter environment.Hybrid DeploymentAn email architecture combining on-premises and cloud-based services.Hybrid environmentAn IT setup that combines cloud and on-premises systems, often increasing integration complexity.Hybrid launderingA method that mixes physical and digital channels to obscure financial flows.Hybrid staffinga workforce model that combines military and civilian personnel.Hybrid teamsWorkforces that combine in-person and remote collaboration, often using multiple digital tools.Hybrid ThreatA mix of military and non-military tactics, such as cyberattacks and disinformation, used to pressure a target.Hybrid threatsCoordinated harmful activities that combine military and non-military, overt and covert means such as disinformation, cyber attacks, and economic pressure.Hybrid workA model where employees split time between remote and onsite work, expanding the number of places where work security matters.HydrationThe process of rebuilding server-side component state from request data.HydrocarbonsMolecules made of hydrogen and carbon, common in fuels and industrial materials.Hydrogen liftThe use of hydrogen gas to provide buoyancy in an airship.Hydrogen productionThe creation of hydrogen for technical or industrial use.Hyper-amortizationA tax mechanism that increases the deductible value of qualifying investments over time.Hyperinflationextremely rapid price growth that reduces the purchasing power of money.Hyperscale data centreA large facility designed for massive compute, storage, and network capacity with high redundancy.HyperscalerA large cloud provider that operates massive, highly scalable infrastructure across multiple regions.HyperscalersLarge cloud providers operating massive infrastructure platforms used by governments and enterprises.HypervisorSoftware that lets multiple operating systems run on one physical machine by managing virtual machines.IAIntelligence artificielle, un logiciel qui peut aider à analyser des modèles, prioriser le travail ou soutenir la prise de décision.IA à double usageDes systèmes d’IA qui peuvent soutenir à la fois des tâches défensives et des usages malveillants, selon la manière dont ils sont utilisés.IA agentiqueUn système d’IA capable d’agir au nom des utilisateurs, et pas seulement de générer du texte ou des prédictions.IA cyberLe chevauchement entre l’IA générative et la cybersécurité, notamment la défense, l’analyse et les usages abusifs potentiels.IA explicable (XAI)IA conçue pour rendre ses décisions plus faciles à comprendre et à évaluer pour les personnes.IA fantômeUtilisation d’outils d’IA sans approbation formelle, supervision ou examen de sécurité.IA générativeSystèmes d’IA générative capables de créer de nouveaux textes, audios, images ou vidéos.IA générativeDes systèmes d’IA qui créent du texte, des images, du code ou d’autres contenus à partir de motifs appris.IAMIdentity and access management, the controls that decide who can use which resources and actions.IAM Access AnalyzerAn AWS tool that helps identify resources that may be publicly accessible or shared outside an account.IAM keyA cloud access credential used to authenticate and authorize actions in an identity system.IAM policyThe permission rules that define what an AWS identity can do.IAM roleA cloud identity that grants permissions without relying on long-lived static keys.IAM rolesAWS identity constructs that provide temporary permissions instead of long-lived static credentials.IBANThe standardized account number used to route bank transfers.iCalendarA standard format for exchanging calendar events across systems.iCalendar (.ics)A standard format for sharing calendar events that can be used as a delivery mechanism in email-based lures.ICD-10Un système standard de codage des diagnostics et des affections médicales.ICSSystème de contrôle industriel ; systèmes qui gèrent les machines, les capteurs et le contrôle automatisé des processus dans les usines et les sites industriels.ICS advisoryA security notice focused on industrial, operational, or connected devices and their mitigations.ICS-SOCUn centre d’opérations de sécurité spécialisé pour les réseaux de contrôle industriels.ICT contractAn agreement for technology services or products that can also define security duties between customer and supplier.ICT corpsPublic-sector technology staff responsible for systems, services, and digital operations.ICT Supply ChainThe ecosystem of information and communications technology vendors, services, and dependencies that support an organization.ID de connexionL’adresse e-mail utilisée pour se connecter à un compte PlayStation.ID de conversationUn libellé utilisé pour séparer une session de chat d’une autre et maintenir la mémoire correctement délimitée.ID-1Le format standard d’une carte de crédit, défini par une largeur, une hauteur et une épaisseur fixes.Ideal customer profile (ICP)A description of the customer most likely to benefit from and buy a product.IdempotencyA property that lets the same request be retried without causing duplicate side effects.Idempotency keyA unique token that helps prevent the same payment or request from being processed twice.IdentifiabilitéLa question juridique et technique de savoir si une personne peut être identifiée directement ou indirectement à partir de données.identifiant APIUne clé ou un jeton qui permet à un logiciel de s’authentifier et d’interagir avec les fonctions d’une plateforme.Identifiant cloudUn secret tel qu'une clé API, un jeton ou un mot de passe utilisé pour accéder aux services cloud.Identifiant d’enregistrementUn libellé utilisé pour suivre une entrée dans un système ; il ne constitue pas automatiquement une preuve de logiciel malveillant ou de compromission.Identifiant d’incidentUne étiquette de suivi utilisée pour mettre en corrélation une revendication, une publication ou une affaire entre plusieurs systèmes de signalement.Identifiant de fluxUn marqueur d’enregistrement utilisé par une plateforme de surveillance pour suivre une publication ou une allégation ; ce n’est pas automatiquement une preuve d’un échantillon de logiciel malveillant.Identifiant de hachageDans ce flux, une étiquette hexadécimale de 64 caractères utilisée pour suivre l’enregistrement de la revendication.Identifiant de revendicationUne étiquette ou un hachage utilisé dans une publication pour suivre ou faire référence à un incident présumé.Identifiant de type hachageUne chaîne hexadécimale de longueur fixe utilisée pour étiqueter un enregistrement, sans qu’il s’agisse nécessairement d’un échantillon de malware.Identifiants compromisNoms d’utilisateur et mots de passe légitimes utilisés sans autorisation, souvent pour un accès initial.Identifiants d'accès à distanceDes noms d'utilisateur, mots de passe ou jetons valides que des attaquants peuvent exploiter pour entrer dans les réseaux sans avoir besoin d'un logiciel malveillant au préalable.Identité cryptographiqueUne façon de prouver l’identité d’une machine ou d’un agent à l’aide de clés et de signatures.Identité fédéréeUne méthode qui consiste à utiliser des relations d’identité externes de confiance plutôt que des identifiants statiques автономes.Identité non humaine (NHI)Une identité machine ou logicielle utilisée par des applications, des services, des scripts, des robots ou des charges de travail.Identity abuseExploiting credentials, recovery processes, or account controls to gain unauthorized access.Identity and Access Management (IAM)The discipline of controlling who can access systems, data, and services.Identity and access reviewA check of accounts, permissions, and logins to spot misuse or compromise.Identity Attack SurfaceThe set of identities, permissions, sessions, and approvals that can be targeted or misused.Identity boundarythe place where a service decides who is allowed to access it.Identity checksVerification steps used to confirm that a person is who they claim to be.Identity compromiseA situation where an attacker gains unauthorized use of a user or admin account.Identity containmentA defensive step that restricts a suspicious account to reduce abuse of stolen credentials.Identity control planeThe administrative layer that handles enrollment, policy, recovery, and user security workflows.Identity controlsSecurity measures that verify users and govern what they can access.Identity correlationlinking separate data points to confirm a person's identity or profile.Identity dark matterHidden identity elements such as local accounts, embedded secrets, and unmanaged permissions that central tools may miss.Identity dataBasic personal details such as names, ages, addresses, or phone numbers.Identity documentAn official document used to prove a person's identity, such as an ID card or passport.Identity documentsRecords such as passports or ID cards that can be abused for impersonation or fraud if exposed.Identity eventsAuthentication and account activity records that help reveal whether unauthorized access may have occurred.Identity exposureLeakage of personal or account-related information that can support fraud or impersonation.Identity federationA way to let users authenticate across multiple systems while keeping access rules and trust relationships consistent.Identity Governance (IGA)The discipline of reviewing, approving, and auditing who or what can access resources over time.Identity graphThe linked set of accounts, devices, and signals that a platform uses to recognize the same user.Identity hygieneThe practice of protecting accounts with strong authentication, monitoring, and least-privilege access.Identity launderingconcealing the real operator behind layered, false, or stolen identities.Identity linkageThe process of connecting related activity across accounts or services.Identity managementThe process of controlling authentication, authorization, and account lifecycle.Identity mismatchA case where names or descriptions do not align across documents or pages.Identity proofingThe process of verifying that a digital identity matches a real-world entity.Identity ProviderA system that manages logins, single sign-on, and access control for users and services.Identity recoveryThe set of steps a platform uses to verify a user and restore access safely.Identity reinforcementThe process by which repeated group language strengthens a shared worldview and sense of membership.Identity resolutionThe process of matching and linking the same entity across multiple systems.Identity securitythe practice of protecting accounts, credentials, and sign-in sessions from misuse.Identity StitchingThe process of linking scattered data points from leaks and public sources to build a fuller profile of a person.Identity surfaceThe set of account and profile signals a platform uses to recognize or manage a user.Identity systemThe tools that control logins, accounts, and permissions across an organization.Identity takeoverWhen an attacker gains control of a user or administrator account.Identity theftFraud that uses another person’s personal data to impersonate them or open accounts in their name.Identity-based access controlA control model that decides access based on verified machine or user identity rather than network location alone.Identity-Bound SigningA signature model that links an artifact to a verifiable person or system identity.Identity-layer abuseMisuse of trusted accounts or personas to bypass user skepticism and security controls.Identity-led intrusionAn attack that starts with a stolen or abused account and uses that trust to reach data.Identity-provider logsRecords from authentication systems that can reveal suspicious sign-ins, MFA changes, or account abuse.Idle session timeoutA rule that ends inactive sessions after a set period to reduce reuse and resource buildup.IDORRéférence directe à un objet non sécurisée : une faiblesse où la modification d’un identifiant peut révéler l’enregistrement d’un autre utilisateur.IE modeA Microsoft Edge compatibility feature that uses Trident/MSHTML for configured legacy sites.IEC 62443A family of industrial cybersecurity standards for securing automation and control systems.Ignition sequenceThe chain of events that causes a fire to start and spread.IGPProtected geographical indication, linking a product’s qualities or reputation to a specific place.iHBMSK hynix’s concept for HBM with cooling integrated inside the memory package.IHML’interface homme-machine utilisée par les opérateurs pour visualiser et gérer les systèmes industriels.IIOPInternet Inter-ORB Protocol, used for CORBA interoperability in middleware.IIoTIndustrial Internet of Things; connected sensors and devices used to collect and transmit data from industrial environments.IISMicrosoft Internet Information Services, a Windows web server platform used to host websites and web applications.IIS moduleA component that extends Microsoft Internet Information Services and participates in handling web requests.IKEv1A first-generation Internet Key Exchange protocol used for VPN setup and now deprecated.IKEv2The replacement for IKEv1, designed to provide the same functionality with a modern protocol design.Illegal streamingUnauthorized online delivery of paid or licensed video content.Illicit streamingUnauthorized distribution of audiovisual content through apps, sites, or linked services.Image layerA filesystem snapshot inside a container image that can preserve files from the build process.Image load telemetryLogging that shows which libraries a process loaded, useful for spotting suspicious DLL behavior.Image manifestThe metadata record that describes an image’s config object and layers.ImageIOAn Apple image-processing framework that parses and renders image files and has been a sensitive attack surface.IMAPAn email protocol used to access messages stored on a mail server.iMessageApple’s messaging service that operates over data networks and uses end-to-end encryption.ImmersionThe feeling of being deeply engaged inside a digital or simulated environment.Immersive therapyA treatment approach that uses a virtual environment to support care, distraction, or rehabilitation.Immune rejectionThe recipient’s immune system attacking transplanted tissue because it is recognized as foreign.Immutable backupsBackup copies that cannot be changed or deleted for a set period, improving recovery options.Immutable infrastructureAn operational model where systems are replaced rather than modified in place, reducing drift and improving consistency.Immutable loggingTamper-resistant records that preserve system and access events for audit and detection.Immutable StorageStorage designed so written data cannot be altered or deleted for a defined period, helping protect recovery copies.ImpacketUne boîte à outils open source souvent détournée pour l’extraction d’identifiants et les mouvements latéraux.Impact AssessmentA formal review of how a system may affect people, rights, work, or society before deployment.ImpersonationA fraud tactic where an attacker pretends to be a trusted person or company.Impersonation FraudA scam that tricks victims by pretending to be a trusted person or organization.Impersonation pagea fake webpage designed to resemble an official brand, stream, or login portal.Impersonation SiteA fraudulent webpage designed to resemble a legitimate product or service.ImplantMalware designed to persist on a host and receive remote commands.Implementationthe concrete way a design is built, which may differ from the original hardware while preserving expected behavior.Implementation gapThe space between policy intent and real-world deployment, enforcement, or adoption.Implementation tradeoffa design choice that reduces cost, complexity, or size at the expense of some fidelity or flexibility.Import-time executionPython code that runs automatically when a module is imported.ImportantA Microsoft severity category for serious issues that still require prompt attention, even if they are not the highest tier.Importers and distributorsChannel partners that may inherit compliance duties when software products enter the EU market.Imposta di bolloThe underlying stamp-duty obligation governing certain documents and invoices.Impostor pagea lookalike web page designed to resemble a legitimate destination.Impression multimatériauImpression utilisant plus d’un matériau dans une même fabrication pour créer des pièces ayant des propriétés différentes.Improper access controlA failure to enforce permissions correctly, letting unauthorized actions slip through.Improper authenticationA weakness class where software fails to verify who is calling it.IMSUne plateforme de services basée sur IP utilisée pour les services modernes de voix et de messagerie sur LTE et 5G.IMT-2000La famille de normes chapeau de l’UIT généralement associée aux réseaux 3G.In-game purchasesPurchases made inside a game for content, currency, upgrades, or related features.In-lens displayA screen built into glasses that projects information into the wearer’s field of view.In-memory cacheA fast storage layer that keeps data in RAM for quick retrieval.In-memory executionRunning code in system memory instead of writing a clear executable file to disk.In-Memory LoaderA technique that executes or stages malicious code in memory to reduce disk-based traces.In-memory loadingExecuting code directly in memory instead of saving it as a visible file on disk.In-memory malwareMalicious code that runs primarily in RAM, often leaving fewer obvious files on disk.In-Memory PayloadMalicious code that runs in RAM instead of being written to disk, which can make detection harder.In-the-wild exploitationReal-world abuse of a flaw outside a lab or proof-of-concept setting.InammissibilitàA procedural outcome that prevents a filing from being accepted.Inbound logisticsThe process of receiving goods into a facility or supply chain network.Inbox forwarding ruleAn email rule that automatically redirects messages and can be misused for stealthy collection.Inbox manipulation rulesMailbox rules that can be abused to forward, hide, delete, or divert messages after account compromise.Inbox placementWhether a delivered message lands in the main inbox rather than another folder or queue.Incendiary projectileA missile designed to start fires, usually by carrying combustible material to a target.Incident classificationthe process of deciding whether a security event is reportable as an incident.Incident containmentImmediate steps taken to stop an attack from spreading or causing more damage.Incident correlation hashAn identifier used to match or deduplicate threat records across feeds and investigations.Incident de disponibilitéUn événement de sécurité ou d’infrastructure qui empêche les utilisateurs d’accéder à un service ou de l’utiliser normalement.Incident HashA long hexadecimal identifier used to correlate a specific claim or event across systems and records.Incident hash codeA unique string used to label or track an event, but not proof that a breach happened.Incident LeadAn early indicator that calls for investigation, but does not prove compromise by itself.Incident managementThe process of detecting, escalating, containing, and reporting cyber incidents under defined procedures.Incident markerA unique identifier, often a hash-like string, used to label or track a specific case.Incident notificationThe formal reporting of a cyber event to the relevant authority or oversight channel.Incident PreservationThe practice of keeping logs, images, and evidence intact so investigators can reconstruct what happened.Incident prioritizationThe process of ranking alerts and tasks so teams focus on the most urgent risk first.Incident referenceA tracking label used to correlate a claim, sample, or alert across security records.Incident reference hashA long identifier used to tag or track a claim, record, or case, without proving the underlying event happened.Incident reportingThe process of formally recording and communicating serious failures or harmful events.Incident reporting clockThe staged notification timeline that includes early warning, formal notice, and a final report.Incident response planA documented process for detecting, containing, communicating, and recovering from a cyber incident.Incident response readinessThe ability to detect, contain, investigate, and recover from a cyber event using tested procedures and roles.Incident response workflowThe internal process for detecting, triaging, documenting, and escalating a cyber event.Incident scopingThe process of determining what systems, accounts, and data may have been affected.Incident validationVerifying whether a claimed cyber incident actually occurred using logs and forensic evidence.Incident VerificationThe process of confirming whether a claimed cyber event actually occurred through logs, artifacts, and forensic evidence.Incident volumethe number of cyber events recorded over a period, used to gauge operational pressure.Incorrect AuthorizationA flaw where a system fails to properly enforce who is allowed to perform a protected action.Incremental exportA transfer method that copies only changed data since the last export.Independent auditA third-party review meant to test whether security controls and governance claims are supported by evidence.Independent validationA review step that checks AI output outside the original conversational pressure.Index d’un site de fuiteUne page publique qui recense les victimes revendiquées et des métadonnées associées, sans prouver à elle seule une compromission.IndexabilityThe ability of content to be discovered and stored by search systems so it can be considered later.Indexed tariffA pricing model that follows a market benchmark instead of staying fixed.Indicateur de compromissionUne entrée de journal, un artefact ou un marqueur technique pouvant suggérer une activité malveillante.Indicateur de compromission (IOC)Un artefact technique, tel qu’un hachage ou un nom de fichier, utilisé pour détecter une activité malveillante.Indication de mouvementLe processus qui consiste à traduire des événements virtuels en indices de mouvement physiques perceptibles par un utilisateur.IndicatorA data point such as a hash, filename, or domain that can help track a claim or incident.Indicators of compromiseTechnical clues, such as domains, hashes, or IP addresses, that may signal hostile activity.Indicators of Compromise (IoCs)Artifacts such as hashes, domains, or IPs that can help identify malicious activity.Indicazioni nazionaliItaly’s national curriculum guidelines that help define what schools teach and how learning is organized.Indices interaurauxDifférences de timing et de niveau entre les oreilles gauche et droite qui aident le cerveau à localiser les sources sonores.Indirect evidenceClues used to infer a hidden cause when direct observation is not possible.Industrial AIArtificial intelligence applied to manufacturing and operational workflows.Industrial cellular routerA router designed for remote sites and industrial connectivity over cellular networks.Industrial Control System (ICS)Control-layer technology used to run equipment and industrial operations.Industrial Control Systems (ICS)Specialized OT environments that manage critical infrastructure and industrial operations.Industrial Crown JewelsThe most critical assets, functions, or data in an industrial operation, prioritized for protection.Industrial demandThe purchasing needs of manufacturers and other sectors that influence production priorities.Industrial gatewayA device that connects operational technology or legacy equipment to IP networks and can become a security boundary.Industrial governancethe rules and controls that define responsibility, access, and oversight in complex operations.Industrial integrationthe process of fitting a new system into an existing production environment.Industrial IoTConnected industrial sensors and devices that collect, transmit, or act on process data.Industrial preservationThe practice of recreating or conserving technical systems for history, education, or training.Industrial propertyA legal category covering patents, trademarks, designs, and related rights.Industrial resiliencethe ability of a production system to keep operating under pressure or disruption.Industry 4.0A policy and industrial framework focused on digitally connected, data-driven production systems.Inertial frameA non-rotating reference frame in which the pendulum’s swing direction stays nearly fixed.Infection ChainThe sequence of steps attackers use to deliver and run malware on a victim device.InferenceThe process of generating an output from a trained model.Inference attackA method that deduces sensitive facts from indirect observations instead of direct access.Inference endpointThe service layer that answers user prompts or API calls using a running AI model.Inference layerThe part of an AI system where prompts are processed and model outputs are generated.Inference modelThe model used to generate responses at runtime after an AI system is deployed.Inference serverSoftware that hosts machine-learning models and answers prediction requests over a network.InferencingThe stage where a trained AI model generates predictions or outputs from new input data.Infinite scrolla feed design that loads more content as the user keeps moving, reducing natural stopping points.InflationA sustained rise in prices that reduces the purchasing power of money.InfodemicAn overload of health information, including false or misleading content, that can create confusion and mistrust.Information asymmetrya situation where one party knows more than another, creating imbalance in decisions and coordination.Information ExposureA flaw that reveals data to people who should not be able to see it.Information GovernanceThe policies and controls that define how data is stored, accessed, retained, and audited.Information integrityThe trustworthiness of data, documents, and claims used for decisions.Information operationsEfforts to shape perception or behavior through coordinated messaging rather than technical intrusion.Information RegisterA formal inventory of ICT services, outsourcing links, and dependencies.Information requestA formal process for collecting details needed to provide a service or support program.Information sharingThe act of passing details between people, which can create risk if done carelessly.Information utile à la prise de décisionDonnées pouvant appuyer des choix pratiques de la part des investisseurs, des prêteurs et d’autres parties prenantes.Information-security doctrineA state policy framework that defines how information space is protected and used strategically.Informational riskthe chance that content loses accuracy, context, or reliability while moving through a workflow.Informations d'authentification au porteurUn secret qui fonctionne par simple possession ; toute personne qui le possède peut l’utiliser.Informations personnellesDonnées qui peuvent identifier une personne ou aider à établir son profil, comme une adresse e-mail ou une adresse IP.InfostealerLogiciel malveillant qui collecte des identifiants, des cookies, des jetons ou d’autres données sensibles depuis un appareil infecté.Infostealer malwareMalware designed to collect credentials, cookies, and other local secrets from an infected device.InfrastructureThe underlying systems that keep a digital service running, such as servers, domains, and routing.Infrastructure as Code (IaC)Machine-readable configuration used to provision and manage infrastructure.Infrastructure associationA link between an operation and shared or reused domains, hosting, or network assets.Infrastructure autonomyThe ability to run essential payment services without heavy dependence on outside providers.Infrastructure de bordureSystèmes exposés à Internet tels que les pare-feu, les VPN et les outils de gestion à distance.Infrastructure des marchés financiers (FMI)Systèmes essentiels qui prennent en charge les paiements, la compensation, le règlement et la négociation.Infrastructure disruptioninterference with the systems that support criminal operations, such as hosting or account control.Infrastructure inequalityUneven access to connectivity, devices, or stable service.Infrastructure nationale critiqueSystèmes essentiels dont la défaillance pourrait affecter gravement la société, y compris l’approvisionnement en eau.Infrastructure passiveActifs télécoms physiques tels que les tours, les toits, l’alimentation électrique et l’espace de montage.Infrastructure persistenceThe ability of a service or network to stay available despite disruption attempts.Infrastructure rentA business model focused on monetizing access to essential infrastructure rather than delivering fully integrated services.Infrastructure seizureLaw-enforcement removal or control of servers and services used to support criminal activity.Infrastructure takedownThe removal or disruption of servers, domains, or hosting used to support criminal activity.Infrastructure-level trackingAn approach that clusters activity by shared network and hosting patterns instead of single artifacts.Infrastructures critiquesLes systèmes et services dont l’interruption pourrait avoir de graves conséquences sur la sécurité des personnes, la sûreté ou l’économie.Infringement procedureEU legal action used when a member state may not be meeting its obligations.Ingénierie socialeManipuler les utilisateurs pour qu’ils révèlent des identifiants, des données de paiement ou d’autres informations sensibles.Ingénieur déployé sur site client (FDE)Un ingénieur intégré dans l’environnement d’un client pour aider à construire et déployer des systèmes d’IA.Ingress controllerA component that manages external traffic into Kubernetes services, often sitting in a high-trust network position.Ingress Tool TransferUsing legitimate utilities to bring payloads into a target environment.Inherent riskThe level of exposure present before any controls are applied.Inhibition de la récupérationActions qui bloquent ou ralentissent la restauration, comme la désactivation des sauvegardes ou la suppression des points de restauration.Initial access brokerAn actor who sells entry into a network, often paving the way for ransomware deployment.InjectionUne faille où une entrée non fiable modifie le sens d’une requête ou d’une commande.Injection de codeUne faiblesse qui peut permettre qu’une entrée contrôlée par un attaquant soit interprétée comme du code exécutable.Injection de promptEntrée malveillante ou manipulée qui amène un système d’IA à ignorer les instructions prévues ou à exécuter des actions non intentionnelles.Injection flawA weakness where untrusted input can be turned into commands, queries, or code.Injection indirecte de promptUn type d’attaque où du contenu non fiable est traité comme des instructions par un système d’IA.Injection orderA court order that restricts a party from continuing a specified action and can be enforced through contempt proceedings.Inline Mail ProcessingA setup where mail passes through a security system before delivery, inspection, or re-encryption.Inline security controlA defense layer placed in the communication path so traffic can be inspected or governed before it reaches its destination.Innovation lifecycleThe path from idea intake to pilot, deployment, monitoring, and retirement of a technology use case.Input sanitizationSecurity handling that filters or constrains input before it reaches sensitive code.Input trustThe degree to which a system can reliably interpret user actions as intended commands.Inquiry-Based LearningA teaching approach that centers questions, exploration, and evidence-based reasoning.Insecure Output HandlingA flaw that happens when AI-generated text is trusted without validation before use in other systems.Insider builda pre-release software version used for testing before wider release.Insider PreviewA pre-release Windows testing program used before wider public rollout.Insider threatRisk created when someone with legitimate access misuses it, intentionally or accidentally.Insider tradingUsing nonpublic information to gain an unfair advantage in financial markets.InspectionA physical check used to spot wear, damage, or unsafe conditions before use.Install attributionMetadata or signals used to determine how an app was installed, often tied to advertising campaigns.Install-time codePackage logic that can run during installation, sometimes before the application itself ever launches.Install-time code executionCode that runs while a package is being installed, which can widen the attack surface.Install-Time ControlA security measure that checks or blocks software before it is added to a project or environment.Install-time controlsCLI settings that limit which external sources npm may accept during installation.Install-time executionCode that runs while software is being installed, before the application launches.Install-time hookCode that runs automatically during package installation, often before the application starts.Install-time scriptCode that runs during package installation and can be abused to execute malware early.InstallateurUn fichier d’installation qui place un logiciel sur un appareil ; s’il est modifié, il peut contenir du code malveillant au lieu du logiciel légitime.Installer flowThe documented steps a user follows to install software, often targeted by impersonation pages.Installer provenanceThe verified origin of a software installer, used to judge whether the package is official and intact.Installer tamperingAltering setup files so they deliver code different from the intended software package.Institutional capacityThe ability of an organization to sustain projects, skills, and operations over time.Institutional demandBuying interest from funds, professional investors, or other large market participants.Institutional fragilityweakness in an organization’s structures that makes it easier to destabilize.Institutional memoryThe experience and judgment an organization retains over time.Institutional trustconfidence that an organization can apply rules, support users, and sustain change.Instruction setThe defined set of operations a processor can execute.Instruction-data separationA security principle that keeps untrusted content from being treated like commands.Intangible assetA non-physical asset such as software or a license that can be recognized in accounting and depreciated.INTCENThe EU Intelligence and Situation Centre, focused on strategic analysis for EU decision makers.Integer overflowA bug where a number exceeds the storage limit and produces an unexpected result.Integer underflowA calculation error where a value drops below the minimum range and can wrap unexpectedly.Integrated management systemOne governance framework used to coordinate multiple standards, policies, and controls under a common approach.Integrated platformsSystems that combine multiple services into one environment for simpler access and management.IntégrationUn outil ou service tiers connecté qui s’appuie sur l’API, les jetons ou la confiance de connexion de la plateforme.Integration riskSecurity risk created when AI is connected to other apps, APIs, or workflows.Integrazione dei sistemithe connection of different platforms so they can exchange data and support common tasks.Intégrité des sauvegardespreuve que les données de sauvegarde sont intactes, fiables et exploitables pour la restauration.Intégrité du processusLa fiabilité de l’ensemble du flux de production, du fichier numérique à l’objet fini.IntegrityThe assurance that data and system states have not been altered in an unauthorized way.Integrity attackTampering that changes data or model behavior without necessarily causing an obvious outage.Integrity checkA control that helps confirm a file or package has not been altered or corrupted.Integrity controla safeguard that helps keep content complete, authentic, and unchanged where required.Integrity impactSecurity harm that changes data without necessarily stealing it or breaking access to the system.Integrity monitoringSecurity controls that look for unauthorized changes to binaries, data, or outputs.Integrity verificationChecks that confirm software or updates have not been altered and come from a trusted origin.Intel iAPX432An early Intel processor design often discussed in the history of CPU architecture.Intelligence CycleThe sequence of direction, collection, processing, exploitation, and dissemination.Intended purposeThe specific use an AI system is designed for, which can change its risk profile and compliance duties.Intent driftGradual divergence between an AI agent’s original task and the actions it actually takes.Intent filterAn Android manifest rule that controls which apps or components can handle an intent.Inter-process communicationData exchange between running processes on the same machine, often used by malware to split tasks.Inter-process communication (IPC)The exchange of data between running processes on the same system or across related components.InterceptorA control that can inspect or block broker packets before they are processed.InterconnectionThe linking of separate networks or providers so traffic can move across systems and borders.Interconnection LayerThe network layer where private links between systems are created and managed.InterdependenciesLinks between systems or organizations where disruption in one area can affect another.InterdependencyA relationship where one system depends on another to function normally.Interfacethe part of software that shapes how people understand and use a product.Interface clarityHow easily a user can understand what a control does.Interface controlThe process of defining and managing how separate systems connect and exchange data or functions.Interface designThe way a system presents information and accepts input from a user.Interface layerThe connection point where devices or systems exchange data.Interface parityThe degree to which a replacement tool matches the functions of the old one.Interface trustthe confidence users place in what a screen presents as reliable.Intermediary companya business layer that can sit between payer and recipient, sometimes obscuring the real flow of funds.Intermediationthe bridge between raw publication and practical use of data.Intermittent incentivesFunding or tax measures that arrive in cycles rather than as permanent support.Internal controlsPolicies and checks designed to make reporting, compliance and risk management auditable and reliable.Internal IndexA Splunk data store used for logs and diagnostics, which can contain sensitive operational data.Internal mobilityMoving employees into new roles or teams within the same organization.Internal network security monitoringWatching internal traffic for signs of unauthorized activity, anomalies, or evidence of intrusion.Internal reportingThe process for submitting misconduct or control concerns inside an organization.Internal repositoryA non-public repository that is visible to members of an enterprise account in GitHub.International Maritime Organization (IMO)The UN agency that sets global standards and guidance for shipping safety, environmental protection, and maritime cyber risk management.International mobilityprograms that support study, research, or work across borders.Internet ExchangeShared infrastructure where networks interconnect directly to exchange traffic under more controlled routing conditions.Internet Exchange Point (IXP)A facility where networks exchange traffic directly to improve speed and resilience.Internet of Things (IoT)Networked devices, sensors, and embedded systems that exchange data and may interact with the physical world.Internet visibilityThe ability to observe and map activity on externally facing systems and services.Internet-exposed systemA server, application, or device reachable from the public internet and therefore directly discoverable by outside actors.Internet-facingExposed to direct access from the public network, rather than limited to internal users.Internet-facing assetA system exposed to the public internet, such as a website, VPN, or admin portal.Internet-facing instanceA system reachable from public networks, which increases exposure to scanning and attack attempts.Internet-facing systemA service or device exposed to the public internet, making it easier to scan and attack.Internet-facing vulnerabilityA security flaw in a system reachable from the public internet, making it easier for attackers to find and probe.InteroperabilityThe ability of different systems to exchange data and work together reliably.InterpretabilityHow well people can understand what a model output means in context.Interpretation layerThe software layer that turns raw inputs into meaning, alerts, or decisions.InterstititalA screen or prompt placed between two states of use, often used to redirect or delay access.Intra-group agreementAn internal arrangement used to regulate governance, notifications, supply-chain matters, and board responsibilities within a corporate group.Intra-group supplierA service provider inside the same corporate group that can still create security risk.Intrusion LoggingAn Android feature that preserves device and network activity for later forensic review.Intrusion réseauAccès non autorisé à un système ou à un réseau, souvent examiné au moyen des journaux, des alertes et d'une analyse forensique.Invalid trafficClicks or impressions that do not come from genuine user interest.Inventaire des actifsUn registre tenu à jour des systèmes, des appareils et des logiciels utilisé pour améliorer la défense et la reprise.Inventaire des donnéesUn enregistrement de quelles données existent, où elles sont stockées, qui peut y accéder et comment elles circulent.Inventaire des identitésUne liste gérée des identités, des autorisations, de la propriété et des données de cycle de vie, utilisée pour améliorer la visibilité et le contrôle.InventoryA record of what hardware and software is installed on a system or across an organization.InvestAIThe EU financing push designed to mobilize public and private investment for AI infrastructure.Investigation leadA clue that can point defenders toward an incident, but still needs confirmation from logs and forensic evidence.Invocation d’outilLorsqu’un agent d’IA appelle des fonctions ou services externes dans le cadre d’une tâche.Invoice fraudA scheme that manipulates payment details or invoices to divert funds.IOCIndicateur de compromission, un indice tel qu’un hachage, un domaine ou un processus pouvant révéler une infection.IOC (Indicateur de compromission)Un indice technique, comme un hachage ou une adresse IP, utilisé pour détecter une activité malveillante.IOCTLInput/Output Control; a mechanism used by applications to send commands to a driver.iOSApple’s mobile operating system for iPhone and iPad devices.iOS SafariApple’s mobile browser environment, often discussed as a distinct attack surface because it executes web content on devices.IoTInternet-connected physical devices such as cameras, routers, and sensors that expand the attack surface.IoT credentialA device-based secret or certificate used by connected hardware to prove identity.IoT deviceAn internet-connected device such as a sensor, camera, or appliance that may have limited security controls.IP leakThe unintended exposure of a device’s real public IP address instead of the VPN exit address.IP whitelistingAn access control method that allows only approved IP addresses to reach a service.IPCCommunication interprocessus, le mécanisme que les composants logiciels utilisent pour échanger des données et des commandes.Iperammortamentoa tax mechanism that can increase the deductible value of qualifying investments.IPOInitial Public Offering, the first sale of a private company’s shares to public investors.IPsecA set of protocols for securing network traffic, often used in VPN deployments.IPsec ESPUn chemin de réseau Linux utilisé pour le trafic chiffré dans les VPN et les tunnels sécurisés.IPsec ESP/xfrmCode réseau Linux utilisé pour gérer le trafic chiffré pour des tunnels de type VPN.IPT fileAn Autodesk Inventor part file used to store 3D model data in engineering workflows.IPv6The current Internet Protocol version designed to support modern network addressing and packet structure.IPv6 extension headerAn optional header that can appear in a chain after the IPv6 base header and before the payload.IPv6 parsingThe logic used to interpret IPv6 packet structure and header fields, where validation mistakes can create security flaws.Irreversible decisionA choice that is difficult or expensive to undo, so it needs deeper review.Irreversible transferA payment that is difficult or impossible to cancel after completion.ISAAn older expansion-bus standard used in early PCs for cards and peripherals.ISA/IEC 62443A standards family for securing industrial automation and control systems across their lifecycle.ISACAn Information Sharing and Analysis Center, a trusted forum where organizations exchange threat intelligence and coordinate defense.ISEEAn Italian indicator used to measure household economic condition for access to benefits and services.ISO 13485A quality management standard used for medical-device manufacturing and related services.ISO 14001An international standard for environmental management systems.ISO 20400A guide for integrating sustainability into procurement and supplier decisions.ISO 27001An international standard for building and improving an information security management system.ISO 39001A management-system standard for road traffic safety, focused on reducing crash-related harm an organization can influence.ISO 9001A quality-management standard focused on consistent processes and product quality, not cybersecurity.ISO-DEPAn NFC protocol layer used for communication with smart cards and emulated cards.ISO/IEC 27001A management-system standard for information security, built around risk treatment and continual improvement.ISO/IEC 42001Une norme internationale pour mettre en place un système de management de l’IA avec responsabilité et supervision.ISO/SAE 21434Une norme de cybersécurité pour les véhicules routiers couvrant la gestion des risques sur l’ensemble du cycle de vie du véhicule.Isolated BackupA backup kept offline or segmented so attackers cannot easily encrypt or delete it during an incident.IsolationSeparating a suspected device or server from the network to limit spread and preserve evidence.Isolation des sauvegardesLe fait de séparer les sauvegardes des systèmes actifs afin que les attaquants ne puissent pas facilement chiffrer ou effacer les données de récupération.ISPInternet Service Provider, a company that provides internet connectivity to customers or organizations.Issue chainingThe linking of multiple weaknesses so they form a more powerful attack path.ITInformation technology used for business systems, communications, and data processing.IT investmentSpending on technology, systems, and capabilities that support business operations.IT procurementthe process of evaluating, buying, and approving technology for an organization.IT reviewThe process of checking a tool before it is approved for workplace use.IT/OT convergenceThe linking of enterprise information systems with industrial control systems, creating shared dependencies and new security boundaries.IT/OT integrationThe connection of enterprise systems with control environments, which can expand the attack surface.ITDRIdentity Threat Detection and Response, a security category focused on spotting and stopping attacks that abuse digital identities.IterationThe repeated cycle of revising a design based on feedback, testing, or new requirements.ITSMIT service management, the set of processes and tools used to handle incidents, requests, and service operations.IVInitialization Vector, a nonce-like value used by some encryption modes and often carried in encoded parameters.IVIPIdentity Visibility and Intelligence Platforms, a category of tools focused on correlating identity data across systems.JailbreakA prompt technique intended to bypass an AI system’s safety restrictions.JailbreakingEfforts to push a model past its built-in safety boundaries so it produces restricted output.JammingInterference that blocks or degrades signal reception without pretending to be the real signal.JAR fileA Java Archive that bundles code and resources; if executed, it can run program logic through the Java runtime.Java runtimeThe software environment that executes Java programs, including code launched from JAR files.Java SEThe standard edition of Java used widely for enterprise applications and developer tooling.JavaScriptThe scripting language websites use to run logic inside the browser.JavaScript backdoorA script-based payload that can provide remote control or a foothold after execution.JavaScript fileA script file often abused as a first-stage launcher in phishing chains.JavaScript injectionThe unauthorized insertion of script code into a page to alter content or capture data.JavaScript obfuscationDeliberately hard-to-read script code used to hide behavior and slow analysis.JavaScript skimmerBrowser-side code that copies card or form data before it is submitted.JavaScript-to-native bridgeA mechanism that lets web code call functions inside the host app or device environment.JDBCJava Database Connectivity, the standard API Java applications use to talk to databases through drivers.JDBC DriverA Java component that lets applications connect to databases through the JDBC interface.JenkinsAn open-source automation server used to run build, test, and deployment pipelines.JEPAJoint Embedding Predictive Architecture, a method that predicts in representation space instead of generating every pixel.Jeton APIUn identifiant utilisé par des services logiciels pour authentifier un accès automatisé entre systèmes.Jeton d'accèsUne information d'identification qui permet à une application ou à un utilisateur d'appeler des services protégés.Jeton de sessionUn identifiant temporaire qui maintient un utilisateur connecté et peut être abusé s'il est volé.JIT compilerA browser component that speeds up JavaScript by converting it into machine code at runtime.JMS (Jakarta Messaging)A Java messaging standard used to exchange messages between applications, with properties used as message metadata.Job classificationThe structured comparison and grouping of roles used to support fair and consistent pay decisions.Job RelevanceThe degree to which a hiring signal is tied to actual performance on the role.Joiner-mover-leaver processThe access-control workflow for adding, changing, or removing user permissions as people join, shift roles, or leave.JolokiaAn HTTP bridge for Java management functions, often used to expose JMX operations through a web interface.JouleSAP’s AI copilot, designed to assist and coordinate work inside SAP applications.Joule agentsSAP AI components designed to support workflows and business actions across applications.Journal d'auditUn enregistrement horodaté des actions, des modifications et des événements d'accès utilisé pour la revue et l'enquête.Journal d’audit cloudUn enregistrement des activités dans des services SaaS ou cloud qui aide les enquêteurs à retracer les accès et les modifications.Journal d’authentificationUn enregistrement des tentatives de connexion qui peut révéler un accès suspect ou un abus d’identifiants.Journal infalsifiableUn enregistrement d’audit conçu pour rendre détectables les modifications non autorisées.Journaux d’identitéEnregistrements d’authentification pouvant révéler des connexions suspectes, la création de comptes ou des abus de privilèges.Journaux du fournisseur d’identitéEnregistrements des systèmes de connexion qui aident à révéler des connexions suspectes, des abus de jetons ou une prise de contrôle de compte.JPEG APP markerA metadata segment in a JPEG file used for application-specific data such as IPTC fields.JPEG APP segmentA metadata block in a JPEG file used to store application data such as EXIF or IPTC information.js_fetch_proxyAn njs directive used to define a forward proxy for fetch-related requests; in the vulnerable path, client-derived variables can contribute to the overflow.JSEA JScript Encoded script file that can hide script contents and complicate inspection.JSE fileAn encoded JScript file that Windows can execute through its scripting environment.JSON-RPCA lightweight remote procedure call format that uses JSON objects to carry methods and parameters.JTAGA hardware debugging interface often used to test, inspect, or program chips.Judicial datapersonal data connected to criminal matters, convictions, or legal proceedings.Jumeau numériqueUn modèle numérique d’un objet ou d’un processus physique utilisé pour la prédiction et l’optimisation.Jump hostA controlled system used as a gateway for administrative access into a restricted network.JurisdictionThe legal environment governing a provider’s obligations, disclosures, and retention rules.Jurisdiction gapA mismatch between legal systems that criminals may try to exploit by moving activity across borders.Just-in-Time AccessTemporary permission granted only for the task at hand, then removed.Just-in-time credentialA short-lived secret issued only when a specific action needs it.Just-in-Time ElevationA method that grants admin rights only when needed and often only for a short window.JWSTJames Webb Space Telescope, a space observatory designed to study the universe in infrared light.JWTJSON Web Token, a signed token format used to prove identity or authorization.KanbanA flow-based workflow method that limits work in progress and favors continuous delivery.KDEA global open-source community that develops software for desktop and related Linux components.KEKa key-encryption key used to authorize changes to Secure Boot databases and related trust settings.KerberosUn protocole d’authentification basé sur des tickets, utilisé par les domaines Windows pour des ouvertures de session réseau sécurisées.Kernel backportA security fix adapted from newer code into an older distribution kernel without changing the visible version number much.Kernel BUG_ON()A kernel assertion that stops execution when an unexpected condition is reached.Kernel build optionA configuration choice that controls whether specific Linux kernel code is compiled in.Kernel driverLow-level software that runs with high system authority and can shape how the operating system enforces access.Kernel exploitCode or a technique that targets the operating system’s core to gain elevated control or bypass restrictions.Kernel Integrity ProtectionA hardware-backed control on Apple silicon Macs that helps restrict tampering with kernel memory.Kernel Integrity Protection (KIP)An Apple protection designed to help prevent post-boot modification of kernel and driver code.Kernel keyringA kernel-managed container used to store and link authentication keys and related secrets.Kernel ModuleA loadable component that adds functionality to the Linux kernel, such as networking support.Kernel page cacheRAM used by Linux to store file-backed data for faster access.Kernel taintA flag indicating the kernel has entered a nonstandard state that may affect support or debugging.Kernel-dispatchLogic that selects and loads optimized kernel components during model execution.Kernel-level controlPrivilege high enough to influence the core of the operating system and its security boundaries.Kernel-modeThe most privileged operating mode in a system, where security boundaries are harder to enforce.Kernel-mode driverA privileged component that can interact with the operating system at a very low level.Kernel-spaceThe privileged part of the operating system where core code runs and mistakes can affect the whole system.kernel.yama.ptrace_scopeA Linux setting that restricts ptrace behavior to reduce local attack surface.KEVKnown Exploited Vulnerabilities; a catalog of vulnerabilities confirmed to be exploited in the wild.KEV catalogCISA’s list of vulnerabilities known to be exploited in the wild, used for prioritizing urgent defense work.Key derivation function (KDF)A cryptographic process that turns a password into an encryption key while making guessing harder.Key EstablishmentThe process of securely creating or exchanging cryptographic keys between parties.Key exchangeThe handshake phase where systems agree on cryptographic session keys.Key Exchange Key (KEK)A key used in the Secure Boot ecosystem to authorize certain updates.Key remappingchanging what a keyboard key does so it triggers a different function.Key rotationThe process of replacing an old cryptographic key with a new one to preserve trust and security.Key VaultMicrosoft Azure’s service for storing secrets, keys, and certificates in a managed vault.Keyboard navigationThe ability to use a site or app without relying on a mouse or touch controls.KeyloggingCapturing keystrokes to collect passwords, messages, or other sensitive input.KiCadAn open-source suite for electronic design automation used to create schematics and PCB layouts.Kill chainThe sequence from detecting a target to deciding, authorizing, and executing an engagement.Kill SwitchA feature that blocks internet traffic if the VPN drops, helping prevent accidental traffic leakage.Kinetic energyEnergy an object has because it is moving.klistUn outil en ligne de commande Windows pour afficher et effacer les tickets Kerberos dans le cache local.Knowledge BaseStored content and indexes used by an application to retrieve information.Knowledge graphA data structure that maps relationships between entities so systems can add context when correlating security events.Knowledge panelAn automatically generated information box about an entity, place, or topic.Knowledge workerAn employee whose main work depends on information, analysis, communication, or decision-making.Known affectedA product status meaning a version is confirmed vulnerable and should be treated as exposed until updated.Known Exploited VulnerabilitiesA CISA catalog of vulnerabilities known to be actively abused in the wild.Known Exploited Vulnerabilities (KEV)A CISA catalog used to track vulnerabilities considered actively exploited.Known Exploited Vulnerabilities (KEV) catalogCISA's list of vulnerabilities known to have been exploited and prioritized for remediation.Known Exploited Vulnerabilities catalogCISA’s list of vulnerabilities with evidence of exploitation, used to prioritize urgent remediation.Known exploited vulnerabilityA flaw confirmed to be actively abused in the wild and prioritized for patching.Known exploited vulnerability (KEV)A flaw that has been observed being used in real attacks and is treated as a high-priority remediation item.Known Issue RollbackA Windows mitigation feature that can revert certain problematic update changes.Known Issue Rollback (KIR)Microsoft’s mitigation method for undoing a problematic update behavior on affected devices.Known-exploited vulnerabilitiesSecurity flaws that are actively abused in the wild and should be prioritized for remediation.Known-exploited vulnerabilityA flaw that is confirmed to be actively targeted in the wild.KNXA building-automation standard used to connect and control smart building functions.KPIA measurable indicator used to track whether training is effective in practice.KprobeA Linux tracing hook that can intercept a kernel instruction path at runtime.KubeletThe node agent that manages pods and containers on each Kubernetes worker node.KubernetesA container orchestration platform that automates deployment, scaling, and management.Kubernetes API serverThe central control endpoint for cluster actions, protected by authentication and authorization.Kubernetes SecretA Kubernetes object used to store sensitive values such as passwords, tokens, or keys.KYCEnregistrements de vérification de l’identité et de diligence raisonnable utilisés pour identifier les titulaires de comptes et les détails de propriété.Label mappingThe process of translating email labels or folders from one provider into another during migration.Labor authorizationRequired approval path when workplace monitoring may affect employees.Labor Condition Application (LCA)A required labor filing where employers attest to wage and working-condition obligations before H-1B petitioning.Labor-market exposureThe degree to which a technology can change tasks, hiring, or job quality in a field.LakehouseA data architecture that blends warehouse-style SQL analytics with data lake storage.Landing pointThe coastal site where a submarine cable connects to land-based network infrastructure.Landing stationThe shore-side facility where a subsea cable connects to terrestrial network infrastructure.Language modelAn AI system trained to generate and understand text by learning patterns from large datasets.Language ServiceEditor tooling that reads code and project metadata to provide completions, diagnostics, and navigation.Laptop projectA custom build that places computer hardware into a portable, notebook-style enclosure.LaravelA PHP web framework that Livewire extends for interactive applications.Large File Transfer (LFT) moduleA component for handling larger secure file transfers through the appliance.LATAMA common shorthand for Latin America, often used in regional go-to-market strategy.LatenceLe délai entre une entrée et la réponse du système ; en audio, il peut affecter la naturalité de la parole.Latence de décisionLe délai créé lorsque des approbations, des revues ou des transferts ralentissent l’action.Latency sensitivityThe degree to which a system’s performance depends on low delay between components, users, or data stores.Latent spaceThe compact internal space where a model stores and processes learned representations.LatitudeThe north-south position on Earth that determines how quickly the pendulum appears to rotate.Launch accelerationThe sudden force a projectile experiences when fired or propelled forward.Launch interceptionbehavior that alters what happens when an app is opened.Launch Vehicle Digital Computer (LVDC)The onboard computer that helped control Saturn V flight sequencing.Launch windowThe early period after release when sales and engagement are closely tracked.LaunchAgentA macOS startup component managed by launchd that can run user-level processes automatically at login.Launcher/AutostartA legitimate system mechanism that can be abused to start unwanted code automatically.Lawful accessA legal mechanism that can require providers to produce data under specific conditions.Lawful interceptionA legal and technical process that allows authorized access to communications or related metadata.Layer 7The application layer of network traffic, where web pages and API requests are handled.Layer linesThe visible boundaries between printed layers in an FDM object.Layered controlsMultiple defensive measures used together to reduce the chance that one failure leads to a breach.Layered defensesMultiple security controls used together so one failure does not expose the whole environment.Layered obfuscationMultiple concealment steps used to make malicious code harder to inspect or detect.LD_PRELOADUne fonctionnalité du chargeur qui peut forcer le chargement de bibliothèques partagées avant les autres dans les programmes liés dynamiquement.LDAP injectionA flaw where unsafe input changes the meaning of an LDAP directory query.Lead dataIn this article, a term for circulated breach-related material; the excerpt does not define it formally.LeaderA top-tier placement that suggests strong completeness in the evaluated product category.Leader electionA process where nodes in a distributed system choose one node to coordinate activity.LeaderboardA ranking system that compares users or teams, often used to create competition.Leadership pipelineThe pool of internal candidates who can step into larger roles over time.Leading indicatorsEarly signals that can help predict whether a desired outcome is on track.Leak DetectionMethods used to identify possible fuel loss or tank failure before it becomes a larger incident.Leak pageA site used by extortion groups to publish claims, samples, or pressure material.Leak portalA public extortion site where an attacker posts alleged victims or stolen data to increase pressure.Leak postA public extortion page used to name victims and increase pressure.Leak-board style recordA short threat-intel entry that logs a claim or label with minimal supporting detail, often useful for correlation but not proof.Leak-only extortionA coercion method that threatens to publish stolen data without encrypting systems.Leak-postA public extortion post that claims access to a victim or data to increase pressure.Leak-siteUn site public où des acteurs malveillants publient des revendications concernant des victimes ou du matériel volé afin d’accroître la pression sur les cibles.Leak-site claimA public post used to name a victim and intensify pressure, without proving a breach on its own.Leak-site claim recordA public post from an extortion ecosystem that may describe an incident, but still needs verification.Leak-site victim postA public entry used to pressure a target by naming it in an extortion context.Leak-threat extortionA pressure tactic that relies on the threat of publishing stolen material rather than only encrypting files.Learning Management System (LMS)Software used to deliver and manage training or courses, often in cloud deployments.Least AgencyA principle that limits an agent’s autonomy to the minimum required for its task.Least-PrivilegeA security rule that gives a system only the access it truly needs.Least-privilege accessA control principle that gives an agent only the permissions it needs to do its job.Lecture arbitraire de fichiersUne faille qui peut permettre à un attaquant d’accéder à des fichiers qu’il ne devrait pas pouvoir lire.Lecture hors limitesUn bug où le logiciel lit au-delà de la frontière mémoire prévue, ce qui peut divulguer des données voisines.Legacy API serverAn older interface kept for compatibility, often with weaker default controls.Legacy configurationOlder hardware or software versions whose security behavior may differ from newer certified deployments.Legacy devicesolder systems that may miss modern security updates or required migration steps.Legacy featureAn older software function that remains in use and may receive less attention during maintenance.Legacy modernizationUpdating older enterprise systems so they can integrate with modern applications and workflows.Legacy peripheralAn older device, such as a scanner or printer, that may still work even after newer software stops supporting it.Legacy protocol pathAn older communication mode that remains available but may receive less security attention.Legacy serverAn older system kept in use or left in place after newer infrastructure has taken over, often with weaker visibility and maintenance.Legacy serviceAn older application or interface that remains in use and may carry unnecessary risk if left exposed.Legacy softwareOlder or harder-to-update systems that usually carry longer exposure windows.Legacy systemAn older application or platform still in use, often with tangled dependencies and limited flexibility.Legacy systemsOlder platforms still in use that can complicate modernization, integration, and security controls.Legacy technologyAn older system that continues to operate alongside newer tools.Legal actionFormal steps taken through the legal system, often used to enforce rights or seek remedies.Legal basisthe lawful ground that allows a specific data processing activity.Legal validityThe condition that makes a digital communication useful as formal evidence.Legge CapitaliItalian capital-markets reform law that enables updates to corporate governance rules.Legitimate InterestA lawful basis that requires a documented test showing the controller’s interest is not overridden by the individual’s rights and freedoms.Legitimate security researchGood-faith testing and analysis intended to improve security rather than cause harm.Legitimate tooling abuseMisuse of trusted software for stealthy intrusion activity.Legitimate-service abuseWhen adversaries hide activity inside normal online services to avoid obvious malicious infrastructure.LF AI & DataA Linux Foundation project that hosts open-source AI and data initiatives.LFPLithium iron phosphate, a rechargeable battery chemistry used in some energy storage and device applications.LGPDBrazil's General Data Protection Law, which sets rules for handling personal data.Liberté cognitiveLe principe selon lequel les personnes devraient conserver le contrôle de leurs propres pensées et processus mentaux.Licence MITUne licence permissive qui autorise la réutilisation et la modification avec peu de restrictions.License compatibilityWhether two sets of legal terms can be combined and redistributed together.License managementThe process of tracking software entitlements, usage, and compliance obligations across an organization.License MobilityA licensing right that allows some Microsoft software to move to authorized third-party cloud environments.Licensing perimeterthe boundary that determines which content uses require permission, payment, or both.LiDARAn active sensing method that uses light pulses to build 3D point-cloud measurements.Lien de chat partagéUn instantané d’une conversation IA accessible via un lien, que d’autres peuvent consulter s’ils disposent de l’URL.Lien de spearphishingUne méthode d’hameçonnage qui utilise un lien malveillant ou trompeur pour conduire un utilisateur vers une charge utile.Life-cycle perspectiveAn approach that considers environmental impacts from sourcing through end-of-life.Lifecyclethe full period from purchase and use to maintenance and retirement.Lifecycle cybersecurityA security approach that covers design, deployment, operation, updates, and retirement, not just initial build time.Lifecycle governanceSecurity oversight applied from design and deployment through operation and recovery.Lifecycle managementOngoing monitoring, updating, and retiring of AI systems as conditions and risks change.Lifecycle Risk ManagementA security approach that evaluates AI systems from design through deployment, use, and review.Lifecycle scriptCode that runs automatically during package install, build, or publish steps.Lifecycle scriptsPackage.json commands that can run automatically during installation and may execute code on the host.Lifecycle statusThe current support or retirement phase of a product.Lifecycle supportA vendor’s staged commitment to provide updates and assistance over a product’s lifespan.Lifetime planA commercial pricing model that usually means a one-time payment for long-term service access under defined terms.Lifting and fallingThe basic cycle used to store energy and recover it in a gravity battery.Lights-out factoryA highly automated plant designed to run with minimal human presence onsite.Lignée de conceptionLe chemin qu’un projet suit lorsqu’il est reconstruit, forké ou redessiné au fil du temps.Lignée des donnéesUn enregistrement de l’origine des données, de la manière dont elles ont changé et des endroits où elles ont été utilisées.Limitation thermiqueRéduction des performances qui se produit lorsque le matériel surchauffe et doit ralentir.Limite de confianceLe point où la responsabilité de la protection des données passe de l’appareil de l’utilisateur au fournisseur de service.LineageThe technical relationship between malware families based on code reuse, behavior, or shared infrastructure.Link aggregationA page or post that collects pointers to other content in one place.Link followingA file-handling weakness where software incorrectly resolves links or path indirections.Linked deviceA secondary device or session connected to a primary account, which can become a security risk if added without authorization.Linked devicesCompanion sessions that sync with a main messaging account and can complicate incident response.LinuxA widely used open-source operating system kernel that runs on many kinds of hardware.Linux platformA system built around the Linux kernel and its surrounding software stack.Linux sovereigntyIn this article, a broad label for efforts that support open, auditable Linux-based infrastructure.Linux telemetryLogs and signals from processes, authentication, memory, and network activity used to detect hostile behavior.Linux-basedrunning on the Linux operating system or a Linux-derived software stack.LiPo batteryA rechargeable lithium-polymer battery commonly used in slim portable electronics.Liquid coolingA cooling method that uses fluids to remove heat from datacenter equipment more efficiently than air alone.LiquidityThe availability of spendable cash to cover obligations and operations.Liste couverteUne liste de sécurité de la FCC utilisée pour interdire de nouvelles autorisations pour des équipements jugés présenter un risque inacceptable pour la sécurité nationale.Liste des victimesUne publication publique nommant une cible présumée ; elle ne constitue pas, à elle seule, la preuve d’une compromission confirmée.Liste des victimes de rançongicielUne publication ou une entrée d’index publique nommant une organisation en lien avec une activité de rançongiciel ; cela ne constitue pas, à lui seul, une preuve de compromission.Liste tendanceUne fonctionnalité de visibilité qui met en avant les dépôts populaires et peut être exploitée comme signal de confiance.Listed ProvidersA Microsoft licensing category for certain cloud providers, where deployment of some on-premises licenses is restricted unless customers have the relevant rights.Lithium-ion batteryA high-density rechargeable battery type commonly used in portable electronics and power packs.Lithium-polymer batteryA related battery chemistry often used in slim devices, with similar handling and safety concerns.Litigation holdA preservation step used to stop relevant records from being deleted during a dispute.Live previewThe on-screen view of what the camera sensor is seeing in real time.Live serviceAn online product that is maintained through ongoing updates and operations.Live-service gameA game that is updated continuously with timed events, rotating content, and ongoing rewards.Liveness detectionControls that help distinguish a real person from spoofed or synthetic input.Liveness probeA check that helps decide when a running service should be restarted.LivepatchA mechanism for updating running kernel code without a full reboot.Living guidelinesGuidance designed to be updated as technology and rules change.Living off the landAttack tradecraft that relies on legitimate system tools instead of custom malware.Living-off-the-landUtilisation d’outils intégrés légitimes, tels que PowerShell ou PsExec, pour fondre une activité malveillante dans l’administration normale.Living-off-the-land (LotL)A technique that abuses built-in or trusted system tools to carry out malicious activity with less visibility.Living-off-the-land binaryA legitimate system tool abused by attackers to blend malicious actions into normal administration.Living-off-the-land toolsLegitimate admin utilities used by attackers to blend in with normal activity.LLMLarge Language Model, un système d’IA utilisé pour la génération de texte et d’autres tâches liées au langage.LLM agentA system that uses a large language model to plan or carry out multi-step tasks, sometimes with access to tools.LLM GroomingA tactic that floods online spaces with fabricated content so future AI systems may ingest it as if it were credible.LLM poisoningA tactic that tries to alter a language model by corrupting the text it learns from or retrieves.LLM tokenizerA component that breaks text into tokens for large language models to process.LLMNRA local name-resolution protocol that can be abused in poisoning attacks to capture authentication traffic.LMSSystème de gestion de l’apprentissage, une plateforme utilisée pour distribuer des cours, des devoirs, des notes et des communications.LNK fileA Windows shortcut file that can point to another program or document and is sometimes abused to disguise execution.Load balancerA component that spreads traffic across multiple servers to improve reliability and performance.Load BalancingThe distribution of traffic across multiple systems to improve performance and resilience.Load testA check that measures how a battery performs while powering a real demand.Loadable kernel moduleA module that can be inserted or removed without rebooting the system.LoaderA component that delivers or launches a secondary malicious payload on a target device.Local AI modelA machine-learning model that runs on the device instead of relying entirely on cloud processing.Local attackAn attack that requires some form of access on the target machine before exploitation begins.Local AttackerA user or process that already has some level of access on a machine before attempting to gain more control.Local dataInformation saved on a device rather than only on a remote server.Local exhaust ventilationA ventilation setup that pulls contaminated air away from a process and routes it out of the work area.Local file inclusionA flaw where application input can be used to read files on the server.Local inferenceRunning model predictions near the data source rather than sending inputs to a remote system.Local infrastructuresystems hosted and managed within a chosen national or organizational environment.Local interfaceA control or display method that works directly on the device itself.Local Privilege Escalation (LPE)A flaw that lets a low-privilege user gain higher privileges on the same system.Local storageBrowser data saved by a site that can persist across sessions for the same origin.LocalhostThe loopback interface a device uses to talk to services running on itself.Localisation approximativeUn mode de localisation moins précis qui révèle moins de détails que des coordonnées exactes.Locally running malwareMalicious software already operating on an endpoint, often able to inspect data in memory or during a session.localStorageA browser storage feature that can persist data tied to a specific web origin across sessions.LocalSystemA Windows service account with broad local authority on the host machine.Lock screen scamA fraud that uses a blocked device message to pressure the victim.Lock task modeAn Android enterprise feature that can keep a device in a restricted, kiosk-like state.LockBitA ransomware brand often discussed in research on affiliate-driven extortion operations.Lockdown ModeAn Apple security setting that reduces exposure to targeted web and device attacks.LockerThe encrypting component of ransomware that blocks access to files or systems.LockfileA file that records exact dependency versions to make installs repeatable and less vulnerable to unexpected changes.Log analysisThe review of system and identity records to spot suspicious access, transfer, or administration activity.Log clearingAn attacker action that removes or reduces evidence of activity from system logs.Log correlationThe process of comparing records from different systems to confirm whether separate events are connected.Log CoverageThe extent to which systems record activity that defenders can later inspect or correlate.Log integrityThe assurance that a log has not been altered, truncated, or tampered with after creation.Log RetentionThe practice of keeping security and system logs long enough to support investigation and recovery.Log tamperingAltering or deleting security logs to hide malicious activity and slow investigations.LoggingRecorded system activity that helps defenders detect, investigate, and prove security events.Logging policyThe rules that define what data a provider records, retains, and may disclose.Logic flawa design or coding error that makes software behave in an unintended way.Logic programminga programming style that focuses on relationships and inference rather than step-by-step instructions.Logical replicationA PostgreSQL feature that copies database changes in a structured way between systems for synchronization or scaling.Logiciel d’accès à distanceOutils qui permettent à un utilisateur de contrôler un ordinateur depuis un autre endroit.logiciel malveillant MacSyncUne famille de logiciels malveillants macOS associée, dans des rapports externes, au vol d’identifiants et au ciblage de portefeuilles.Login ItemA macOS feature that can launch software automatically when a user signs in, and may be abused for persistence.Logique de détectionRègles de sécurité, analyses ou vérifications comportementales utilisées pour repérer une activité suspecte.LOLBINA legitimate system binary that attackers repurpose for malicious execution.LOLBinsLegitimate operating-system tools that attackers may abuse to reduce suspicion and blend into normal activity.Long-horizon workflowA task sequence with many steps, where errors can accumulate across time instead of appearing all at once.Long-tail revenueIncome earned steadily over time from a product that remains in demand.Look-alike domainA web address designed to imitate a trusted brand and mislead users.Lookalike domainA web address designed to resemble a trusted brand or vendor domain.Loopback Address (127.0.0.1)The local machine address, used for services intended to stay on one host.Loot boxA paid game item that gives a randomized reward rather than a known item in advance.LoRaA long-range, low-power wireless radio technology often used for IoT and mesh networking.Loss of ViewA condition where operators lose visibility into the state of a process or system.Low-and-slow intrusionAn attack style that minimizes visible activity to reduce the chance of detection.Low-codeA development style that relies on visual tools and minimal manual coding.Low-code platformA development environment that reduces manual coding through visual tools and prebuilt components.Low-head hydroelectric turbineA turbine built for sites with a small elevation drop, where water flow must be used efficiently.Low-privileged userAn account with limited permissions that should not be able to read or change sensitive system data.Low-signal reportA submission that adds little actionable technical value and is hard to verify.Lower lowa new trough below the previous trough, often used to show downward continuation.LSASSA Windows process that handles local security and can become a target when attackers try to extract credentials from memory.LTILearning Tools Interoperability ; une norme qui permet à un LMS de se connecter à des applications éducatives tierces.LTI AdvantageUne norme d’intégration éducative qui aide les plateformes d’apprentissage à se connecter de manière sécurisée à des outils tiers.LTS BaselineA long-term support milestone used to anchor slower-moving update planning.LTSFLong Term Support Feature, a branch designed for longer support windows and slower, controlled updates.LuaAn embeddable scripting language often used to add flexible logic inside a host application.Lua scriptingRedis's built-in scripting feature, which can expand functionality and attack surface at the same time.Lunar GatewayA planned lunar-orbit station designed to support sustained missions around the Moon.M-CodeA modernized military GPS signal designed to improve resilience for authorized users.M-SEARCHAn SSDP request method used to look for devices or services on the network.M&AMergers and acquisitions, the deal process through which companies buy, sell, or combine businesses.MaaSMobility as a Service, a model that combines multiple transport options into one digital journey-planning layer.MAC RandomizationA technique that changes wireless device identifiers to reduce tracking.MacBookApple’s modern laptop family, used here as the contrast point for the retro Apple II build.Machine IdentityA non-human identity used by workloads, services, scripts, or devices.Machine Identity Provider (mIDP)A platform that issues and manages digital identities for machines so their connections can be authenticated and governed.Machine learningSoftware methods that detect patterns in data and improve predictions or classifications from experience.Machine paymentsAutomated payments made by software systems for access to digital services, data, or compute.Machine Payments Protocol (MPP)A programmable payment standard for agent-driven transactions that can connect to stablecoins and fiat rails.Machine virtuelleUn environnement informatique isolé basé sur un logiciel qui peut néanmoins être affecté par des canaux auxiliaires physiques.Machine-readableData formatted so automated tools can process it without manual interpretation.Machine-readable advisoriesSecurity notices formatted so tools can automatically ingest and act on them.Machine-readable formatsData formats that tools can process automatically to support control mapping, evidence collection, and reporting.Machine-readable markingA label or signal that software can detect automatically, not just a human reader.Machine-readable signalsConsistent data cues that software can parse without needing human interpretation.machineKeyAn ASP.NET secret used to protect data such as ViewState and prevent tampering.macOSApple’s desktop operating system, often targeted because it can store sensitive work and authentication data.macOS malwareMalicious software designed to run on Apple’s desktop operating system.MacroA small script embedded in a document that can automate actions and is sometimes abused to run harmful code.Macro-areaA higher-level categorization layer used to group in-scope activities or services.Macroprudential riskRisk that can weaken the financial system as a whole, even if no single institution is failing.Magasin vectorielUne base de données conçue pour stocker des embeddings et prendre en charge la recherche de similarité pour les systèmes d’IA à génération augmentée par récupération.MagecartAn umbrella term for browser-based card-skimming activity aimed at online checkout pages.Magic MethodA PHP method such as __wakeup() or __unserialize() that runs automatically in certain object lifecycle events.Magnetic fieldAn invisible region around a magnet or electric current where magnetic force can be measured.Mail impersonationA situation where outbound messages appear to come from a trusted service identity.Mail relayA server or service that forwards email from one system to another.Mail relay abuseImproper use of a mail system to route or forward messages in unintended ways.Mail renderingThe process of converting email content into something a client can display safely and correctly.Mail Transfer Agent (MTA)Software that receives, routes, and delivers email between servers.Mailbox audit logsRecords of mailbox actions and access events that help investigators reconstruct what happened after a suspicious email.Mailbox auditingLogging and reviewing mailbox activity to identify unusual access, forwarding, or message retrieval.Mailbox compromiseUnauthorized control or monitoring of an email account.Mailbox forwarding ruleAn email rule that can silently send copies of messages to another address, often monitored in account takeovers.Mailbox permission abuseMisusing email delegation or access controls to read or control messages.Mailbox takeoverUnauthorized control of an email account, which can expose conversations, contacts, and internal trust relationships.Mailing listAn email-based coordination channel used for reporting and discussion.MainboardThe primary circuit board that connects and coordinates a device's core parts.MainframeA high-reliability computer designed for centralized, large-scale workloads.Mainline releaseThe active development branch of a project, usually where the newest fixes land first.Maintainabilityhow easily a system can be updated, repaired, or adapted over time.MaintainerThe developer responsible for reviewing changes and security fixes in a specific part of the Linux kernel.Maintainer accountThe identity authorized to publish or update packages in a registry such as npm.Maintainer account compromiseLoss of control over the identity used to publish or update software packages.Maintainer-path compromiseAn attack in which an adversary abuses a legitimate maintainer account or workflow to tamper with releases.Maintenance burdenThe ongoing human effort required to review, validate, and respond to incoming security work.Maintenance windowThe period during which a software branch continues to receive security fixes and updates.Maker cultureA hands-on approach to building, modifying, and repurposing technology.Maker projectA hands-on build created by an individual or hobbyist community, often combining craft and engineering.Malicious codeCode inserted to behave in a harmful or unauthorized way.Malicious domainsWeb addresses registered or reused for fraud, phishing, or other hostile activity.Malicious download siteA page designed to deliver harmful files or unwanted software disguised as legitimate downloads.Malicious packageA package designed to behave harmfully if it is installed or executed.Malicious payloadThe harmful part of an attack that runs after delivery, such as code that steals data or installs a backdoor.Malicious spamBulk email used to deliver lures, links, or attachments that support malware delivery.Malicious URL FeedA curated stream of harmful links that defenders can ingest into security tools and workflows.MalspamSpam or phishing email used to deliver malware or lure a user into opening a harmful file.MalvertisingL'utilisation de publicités en ligne pour diffuser des liens malveillants, des redirections ou des logiciels.MalwareSoftware or firmware designed to perform unauthorized and harmful actions on a system.malware bancaire AndroidLogiciel malveillant conçu pour voler des identifiants financiers ou prendre le contrôle de sessions bancaires sur des appareils Android.Malware distributionThe process of delivering malicious code to a target system.Malware familyA group of related malicious software samples that share code or behavior.Malware frameworkA modular malicious toolset that can combine multiple functions inside one intrusion workflow.Malware hostingInfrastructure used to store or serve malicious files, payloads, or redirectors.Malware networkThe connected systems used to deliver, support, or coordinate malicious software activity.Malware PreparationThe stage where malicious code is built, adapted, obfuscated, or readied for later use.Malware visualizationThe process of turning binary code into an image-like form for machine learning analysis.Malware-as-a-ServiceA criminal model where malware is packaged for others to rent or use.Malware-as-a-service (MaaS)A criminal model where malware is rented, sold, or operated with shared infrastructure and updates.Malware-signing-as-a-serviceA criminal service model that provides trusted-looking signatures for malicious software.Malware-signing-as-a-service (MSaaS)A criminal service that signs malicious binaries to make them appear more trustworthy.Man-in-the-middle (MitM)An attack in which communication between two parties is intercepted or altered by a third party.Managed agentEndpoint software that receives policy, updates, or commands from a central server.Managed cloudCloud services where the provider also handles administration, monitoring, and operational support.Managed DeviceAn endpoint controlled through organizational policy tools such as MDM, GPO, or cloud management.Managed file transferSoftware designed to move files securely and reliably between systems and organizations.Managed FleetA group of devices administered centrally through policy, inventory, and update controls.Managed hostingHosting where the provider handles much of the server maintenance and security upkeep.Managed identityA cloud-controlled identity designed to reduce manual secret handling for workloads.Managed infrastructureVendor-operated hosting, updates, scaling, and maintenance for a security platform.Managed service providerAn external company that runs or supports IT services for other organizations, creating shared risk if compromised.Managed WorkspaceAn admin-controlled collaboration environment where settings and permissions can be assigned centrally.Management and governanceA credit-analysis lens focused on leadership quality, oversight, and organizational control.Management APIA programmatic interface used to administer a device or service remotely, often over HTTP.Management bodiesSenior leaders or boards responsible for approving and overseeing cybersecurity risk management.Management bodyThe directors or equivalent leaders responsible for approving and overseeing cybersecurity measures.Management InterfaceThe administrative access point used to configure, monitor, or control a product.Management serverThe central system that administers agents, policies, and updates across a security deployment.Mandat d’arrêt européenUn outil juridique de l’UE qui accélère l’arrestation et la remise des suspects entre les États membres.Mandatory informationRequired disclosures that a merchant must present to customers before or during purchase.Manifestly unfounded or excessiveA narrow GDPR exception that can justify refusing or charging for a request.manipulation AISAltération des émissions de suivi des navires afin de créer des données maritimes fausses, manquantes ou trompeuses.Manufacturer Usage DescriptionA control model that limits what network traffic a device is allowed to make.Manufacturing data managementSoftware that records, organizes, and links production information across industrial workflows.Manufacturing resilienceThe ability to keep production and recovery processes working through cyber disruption.Map displayA display that presents geographic or location-based information in visual form.Mapped DriveA network-accessed drive letter that can become a high-value target in ransomware incidents.Mapping driftA mismatch that appears when a framework update changes how data, detections, or labels line up.MARC recordsMachine-Readable Cataloging records used by libraries to exchange bibliographic metadata.Marca da bolloThe Italian stamp-duty mark, which can be applied physically or handled through electronic procedures.Margin pressureThe squeeze on profit caused by competition, pricing, and rising operating complexity.Maritime domain awarenessThe practice of monitoring activity, risk, and movement in the maritime environment.Mark of the WebA Windows file marker used to treat internet-downloaded files more cautiously.Market developmentThe work of growing demand, partnerships, and adoption in a specific region.MarketplaceA distribution layer where users can discover and install approved tools or extensions.Marketplace moderationThe process of reviewing and enforcing rules for listings, sellers, and platform content.Marketplace trustThe assumption that an app store or extension store package is legitimate and safe to install.Masquage de localisationTechniques qui dissimulent la position physique réelle d’un appareil ou d’un utilisateur.MasqueradingUne technique dans laquelle un contenu malveillant imite un projet, un nom ou une marque légitime afin de paraître digne de confiance.MassThe amount of matter in an object, which determines how much weight must be lifted.MASTMobile Application Security Testing, a set of methods for checking mobile app security.Master dataCore reference information, such as product or supplier records, used across multiple workflows.MASVSOWASP’s Mobile Application Security Verification Standard, used to define mobile security controls.Material disclosureA regulatory filing made when an incident may be significant enough to affect investors or operations.Matériel héritéÉquipement ancien qui reste en service après que des technologies plus récentes sont devenues la norme.Matériel ouvertDes conceptions physiques partagées que d'autres peuvent étudier, fabriquer et modifier.MatrixAn open messaging protocol used by some secure chat systems to manage rooms, devices, and encrypted communication.Matrix protocolThe open messaging protocol that underpins Tchap’s communication architecture.Matrix SensorA sensor that divides its field of view into multiple zones and reports more than one distance reading.MaturitàThe Italian upper-secondary final exam required for graduation.Maturity levelA stage that shows how predictable, managed, and continuously improving an organization’s processes are.MaxHeadersCountA Windows registry setting that limits request headers to reduce HTTP/2 and HTTP/3 resource-exhaustion risk.MCPModel Context Protocol; a standard way for AI applications to connect to external tools and data sources.MCP (Model Context Protocol)A protocol for connecting AI clients to external tools through defined sessions and capability negotiation.MCUMicrocontroller unit, a small chip that runs the core functions of an embedded device.MD5An obsolete hash function that is too fast and weak for password storage, making it vulnerable to brute-force cracking.MD5-hashed passwordA password stored using the MD5 hash function, which is considered weak for modern authentication.MDAMonochrome Display Adapter, an early IBM PC graphics standard for text-focused output.MDASHMicrosoft’s multi-model agentic scanning harness for vulnerability discovery and validation.MDMMobile device management; software used to enforce security and policy on phones and tablets.Mean Time to Detect (MTTD)The average time it takes to discover a security incident after it begins.Mean time to exploitThe average time between vulnerability disclosure and observable attacker use, sometimes measured before a patch exists.Mean Time to RepairThe average time needed to restore a system after a failure or outage.Mean Time to Respond (MTTR)The average time needed to contain, investigate, and remediate an incident.Meaningful human controlA policy goal that keeps human judgment, supervision, and intervention central to lethal decisions.Mechanical driftGradual deviation in position or alignment caused by physical imperfection.Mechanical toleranceThe amount of variation a moving part can handle before performance suffers.MECTA vendor governance model built around Maturity, Exit, Classification, and Threshold controls.Media centera setup for organizing and playing audio or video on a television or screen.Média haptiqueUne manière de transmettre des informations par le toucher, la force, la vibration ou le mouvement.Media literacyThe ability to evaluate, interpret, and critically use information online.Media mediationAdult guidance that shapes how a child uses digital media, including co-viewing, discussion, and limits.Media planningthe process of deciding where, when, and how advertising budgets are placed.MediaSessionAn Android control interface for media playback that legitimate apps use for play, pause, and transport controls.Meeting layoutThe visual arrangement of participants and content in a conferencing app.Member directoryA centralized list of contacts or organizations that can become sensitive if exposed.Memcached 1.6.42The reported fixed version boundary for this vulnerability.Memetic spreadThe rapid circulation of ideas through repeatable images, phrases, or jokes.Mémoire de processusLa mémoire vive d’un programme en cours d’exécution, qui peut contenir des secrets, des invites et des données d’exécution.Memorandum of Understanding (MOU)A formal cooperation framework that outlines shared goals without necessarily creating a full contract.MemorizationWhen a model retains parts of training data and can reproduce them later, sometimes unintentionally.MemoryStored context that lets an AI system retain information beyond a single interaction.Memory bottleneckA limit where available memory becomes the main performance constraint.Memory controlUser settings for viewing, editing, or clearing retained context.Memory CorruptionA class of bugs that damage program memory and can sometimes lead to code execution.Memory disclosureA flaw that reveals data from memory that should not be visible to a caller or remote client.Memory Integrity Enforcement (MIE)Apple’s hardware-backed memory-safety defense for supported Apple silicon.Memory mappingA way for software to access hardware or memory ranges; mistakes here can break isolation boundaries.Memory PoisoningManipulating stored context or memory so an AI makes unsafe or biased decisions later.Memory primitiveA basic exploit capability, such as controlled read or write access, used to build more advanced attacks.Memory safetyA programming discipline that prevents errors involving invalid or mismanaged memory access.Memory scraperMalware or tooling designed to search active memory for secrets such as passwords or tokens.Memory-boundA workload limited by memory movement or bandwidth rather than raw compute power.Memory-safety flawA bug such as a use-after-free or buffer overflow that can crash software or corrupt memory.Memory-safety issueA defect in how software handles memory boundaries or lifetime, often linked to crashes or corruption.MENA regionThe Middle East and North Africa, often used in security reporting to describe a broad regional scope.MentorshipStructured guidance from experienced professionals that helps develop skills and career growth.Mercenary spywareSurveillance software sold to clients for targeted monitoring, often associated with high-value mobile compromise.MergeThe act of combining multiple text sources into one organized result.Merge requestA proposed code change submitted for review before it is merged into a codebase.Merge request pipelineAn automated workflow that runs checks on proposed code changes before they are merged.Merger controlThe regulatory review used to assess whether a concentration could reduce competition in a market.Merits phaseThe part of a case where the court examines the full dispute and decides it on the substance.Merkle treeA hash-based structure that lets systems verify membership or integrity efficiently.Merkle Tree Certificatesa certificate model that uses Merkle-tree-based verification concepts to support new trust workflows.Mesh networkingA design where devices relay traffic through each other instead of relying on one central hub.Mesh routerA router system that uses multiple nodes to extend wireless coverage and coordinate traffic.MeshtasticAn open-source project for off-grid messaging over LoRa-based mesh networks.Message mapA preplanned set of approved points used to keep incident updates consistent.Message passingA controlled method for separate components to exchange commands or data without direct access.Messagerie médiée par serveurUn modèle de messagerie dans lequel les messages transitent par les serveurs du fournisseur ; selon la conception du chiffrement, le fournisseur peut être en mesure de traiter le contenu.MessageServletA web handler that processes message-related requests and can become risky if it reflects untrusted data.Messaging Layer Security (MLS)A protocol for secure group key exchange designed to support encrypted communication at scale.Mesures de résultatMesures telles que le débit, les défauts et le temps de cycle qui indiquent si le travail s’est réellement amélioré.Mesures fondées sur les résultatsMesures qui suivent des résultats comme la disponibilité, l’efficacité énergétique ou le temps de réponse, plutôt que les seules tâches accomplies.Metathe company at the center of the current debate over closed and open advertising ecosystems.Meta-modelA higher-level structure used to organize rules, concepts, and relationships across different domains.Meta-refresh redirectAn HTML mechanism that automatically sends a browser to another URL after a set interval, including immediately at zero seconds.Metadata churnHeavy creation or modification of filesystem information, which can slow or stall tools that track directory changes.Metadata validationChecks that verify track, artist, and release data for consistency and authenticity.MétadonnéesInformations sur une communication, telles que le moment, les participants ou les indicateurs de remise, distinctes du contenu du message.Metamorphic testingA testing approach that checks whether a program or model preserves expected relationships between inputs and outputs under transformed conditions.MetasploitA modular penetration-testing framework used to write, test, and execute exploit code.Metered usageA billing model that tracks consumption such as requests, tokens, or compute time.Metric gamingThe act of optimizing for a measurement instead of the real goal behind it.Métrique fondée sur les résultatsUne mesure qui suit l’impact réel sur l’activité ou l’exploitation, et pas seulement l’activité ou la vitesse de livraison.MétriquesIndicateurs mesurables utilisés pour déterminer si l’adoption de l’IA apporte de la valeur, de la qualité ou une réduction des risques.Metro areaA city and its surrounding economic region, often used to measure real-world innovation clusters.MezzogiornoLa partie méridionale de l’Italie, souvent considérée comme une zone prioritaire pour l’investissement public.MFAAuthentification multifacteur, un contrôle de connexion qui exige plus d’une preuve d’identité.MFA (Multi-Factor Authentication)A login control that requires more than one proof of identity.MFA bypassA technique that defeats multi-factor authentication without necessarily stealing a password.MFA recovery flowThe process for regaining access to an account protected by multi-factor authentication, often targeted by social engineering.MFA relayAn attack method that intercepts or forwards authentication steps to bypass weak multi-factor login flows.MFA ResetA change to multi-factor authentication settings that can weaken account protection if abused.MFA résistante au phishingAuthentification multifacteur conçue pour résister au vol de jetons et à l’ingénierie sociale, utilisant souvent des méthodes de connexion plus robustes que les codes SMS.MiCAThe European regulatory framework for crypto-assets and related service providers.MiCARThe EU framework for crypto-asset markets that is reshaping compliance expectations in Europe.MICEan umbrella term for meetings, incentives, conferences, and exhibitions.Micro-eventa small corporate gathering or trip, such as a dinner or informal meeting, that can be part of business spending.Micro-segmentationNetwork design that divides systems into smaller zones to limit attacker movement.MicrocodeProcessor-specific instruction logic that can be updated to correct certain CPU flaws.Microcontrollera small programmable chip that can manage hardware tasks.MicrocredentialA small, verifiable digital credential that shows competence in a specific skill or subject.MicroenterpriseA very small business category that may be exempt from certain regulatory duties.MicrologicielLogiciel de bas niveau intégré aux dispositifs matériels qui contrôle les fonctions principales et les mises à jour.MicrometerA metrics-collection library used in the Spring Java ecosystem.Microphone binauralUne configuration d’enregistrement utilisant deux microphones placés aux positions des oreilles afin de capturer des indices audio spatiaux, en particulier pour l’écoute au casque.Microprocessora general-purpose computing core that typically depends on external components and a broader software environment.MicropythonA lightweight implementation of Python designed for microcontrollers and embedded devices.microSD cardRemovable flash storage commonly used for video capture in action cameras.MicrosegmentationSplitting a network into smaller trust zones to limit lateral movement between workloads.MicroservicesSoftware design that splits functionality into separate services with specific roles.Microsoft 365A cloud service suite for email, identity, and collaboration used in many enterprises.Microsoft 365 CopilotAn AI assistant embedded in Microsoft 365 apps that uses Microsoft Graph and existing permissions to generate responses and actions.Microsoft 365 footprintPublicly visible signs that a domain uses Microsoft’s cloud services, useful for defense but not proof of compromise.Microsoft DefenderMicrosoft’s security product family used for endpoint protection and related defenses.Microsoft Defender AntivirusThe built-in antimalware component included with modern Windows systems.Microsoft Defender SmartScreenA Windows protection layer that helps assess file and app reputation before launch.Microsoft EntraMicrosoft’s cloud identity and access management platform.Microsoft Entra Agent IDMicrosoft’s agent identity model for tracking non-human agent activity in Entra logs.Microsoft Entra IDMicrosoft’s cloud identity service that controls authentication and access to Microsoft 365 and Azure.Microsoft ExchangeA mail and collaboration platform that often sits on the internet-facing edge of enterprise networks.Microsoft Exchange serverA commonly targeted server platform that can serve as an entry point if unpatched or misconfigured.Microsoft FabricMicrosoft’s data and analytics platform, which also includes governance and identity integrations.Microsoft GraphLa couche d’API que Microsoft utilise pour connecter Copilot aux données de travail telles que les e-mails, les chats et les fichiers.Microsoft Graph APIMicrosoft’s API for accessing cloud identity, mail, file, and related services.Microsoft PurviewMicrosoft’s data security and compliance suite, used for labeling, DLP, auditing, and retention controls.Microsoft Purview AuditMicrosoft 365 audit logging that can record mailbox and other service activity for investigation.Microsoft TeamsA collaboration platform for chat, calls, and meetings.Mid-air interactionInput that is registered without a physical touch surface, often through sensing gestures or proximity.Mid-tier creatorA creator with intermediate audience scale, often large enough for meaningful reach but still flexible for repeatable campaigns.MiddlewareSoftware that helps different parts of a system communicate and exchange data.Migrationthe planned move from one software or infrastructure stack to another.Migration scopeThe set of data included in a transfer, such as mail, contacts, and calendars.MilestoneAn implementation checkpoint in the RRF/PNRR framework that must be met for progress and payment eligibility.MIMITItaly’s Ministry of Enterprises and Made in Italy, the competent authority for the national phase.Min-entropyA worst-case measure of unpredictability used to judge how much randomness a source contains.Mind-wanderingA shift of attention away from a task toward internal thought, which can sometimes aid creativity.MiniaturizationThe process of reducing the size of a device while keeping it usable.MinicomputerA mid-sized computer class used before personal computers became dominant.MinifilterA kernel-mode driver that can observe and shape file-system operations in Windows.Minifilter driverA kernel-mode file-system component that intercepts and handles I/O operations.Minimisation des donnéesCollecter et utiliser uniquement les données nécessaires à une finalité définie, afin de réduire l’exposition et les usages abusifs.Minimum viable enterpriseThe smallest trusted set of systems and processes needed to keep emergency operations functioning.Minor version updateA release that keeps the same major version but delivers bug fixes and security patches.MIPSA reduced instruction set processor family often used in embedded systems and older consoles.Mirror setupA physical arrangement that uses reflection to create another view.Mirror siteA duplicate website used to preserve access after disruption.MisconfigurationA weak or incorrect security setting that can increase exposure, especially in cloud or remote-access systems.Mise à jour en directUne mise à jour logicielle diffusée automatiquement via une connexion réseau, sans réinstaller l’application.MISPAn open-source threat-intelligence platform for sharing, correlating, and automating security indicators.Missing AuthenticationA flaw where sensitive functions can be reached without proving identity.Missing AuthorizationA weakness where a system fails to check whether a requester is allowed to perform an action.Mission-Critical WorkflowA business or operational process whose failure can directly affect core operations.MitigationA temporary defensive control that reduces exposure before a full patch or broader fix is available.MITRE ATLASA threat knowledge base for adversarial tactics against AI systems.MITRE ATT&CKUne base de connaissances qui catalogue les techniques et tactiques courantes des adversaires.MITRE ATT&CK for ICSA knowledge base of adversary behaviors seen in industrial control system environments.MITRE ATT&CK T1102A technique covering the abuse of legitimate web services for command-and-control.MITRE ATT&CK T1195.002A technique for compromising a software supply chain to gain initial access.MITRE ATT&CK T1486Une technique décrivant des données chiffrées à des fins d’impact, couramment associée aux rançongiciels.MITRE ATT&CK T1566La technique ATT&CK couvrant le phishing et les méthodes de livraison associées.Mixtapea personalized selection of songs arranged to convey taste, mood, or a message.Mixture-of-Experts (MoE)A model design where only part of the network is used for each request, reducing active compute.ML-KEMNIST’s standardized post-quantum key-establishment family, derived from the CRYSTALS-Kyber line of algorithms.MLOpsOperational practices for training, deploying, monitoring, and retraining machine-learning systems.MLTBackdoorA malware family used to establish access and support later post-compromise activity.Mobile attack surfacethe set of features, apps, and connections attackers may try to abuse on a phone.Mobile endpointa portable device used for work-related access and communication.Mobile forensicsThe collection and analysis of device artifacts to understand how a phone or app may have been abused.Mobile patchingThe process of updating phone apps quickly to close known security flaws.Mobile spywareMalware built to secretly monitor a phone and collect data or communications.Mobile walleta phone app that stores tickets, passes, and other digital credentials.Mobility ecosystemThe connected mix of tools, operators, and digital services used to support travel and transport.Mobility issuesPhysical limitations that can make standard computer controls difficult to use.Modal dialogAn overlay that sits above page content and can keep the user focused on a single action.Modbus/TCPA legacy industrial communication protocol commonly associated with TCP port 502.Mode de maintenanceUn état de fonctionnement restreint utilisé pour contenir un incident ou limiter l’activité pendant l’investigation du service.Mode de partageLa règle d’accès qui détermine si d’autres processus peuvent lire, écrire ou supprimer un fichier ouvert.Mode noyauLa partie privilégiée d’un système d’exploitation où s’exécutent les fonctions centrales du système et où la furtivité peut être particulièrement puissante.Model ArmorA security layer designed to reduce AI risks such as malicious inputs and data leakage.Model artifactA deployed component such as weights, containers, or evaluation files that should be versioned and protected.Model behaviorThe outputs, decisions, or tendencies a model produces after learning from data.Model contextThe working memory an AI system uses while processing instructions and generating output.Model Context Protocol (MCP)Un standard ouvert permettant de connecter des applications d’IA à des outils et des données externes.Model distillationA method for transferring behavior from a larger model into a smaller, cheaper one.Model DriftA situation where an AI system’s behavior changes over time and becomes less reliable or less accurate.Model evaluationA structured test used to measure how an AI system behaves under defined conditions.Model evasionAn attack pattern where inputs are shaped to make an AI system miss or misclassify malicious activity.Model extractionAn attack that tries to copy or infer a model’s behavior, data, or parameters.Model familyA set of AI models that share a common underlying architecture or training base.Model GovernanceThe policies and controls used to manage how AI models are built, deployed, monitored, and updated.Model inventoryA structured record of deployed models, versions, owners, and related documentation.Model lifecyclethe process of updating, replacing, and retiring AI models over time.Model loaderThe software component that reads a model's files, configuration, and weights into memory.Model MemorizationWhen an AI model retains training data in ways that can surface sensitive details later in output.Model monitoringOngoing observation of AI behavior in production to detect regressions, drift, and unexpected performance changes.Model poisoningA tactic that manipulates training data or model behavior so an AI system produces harmful or unreliable outputs.Model provenanceInformation showing where a model came from, how it was trained, and what changes shaped it.Model retrainingUpdating an AI system with new or corrected data so its results stay useful over time.Model riskThe chance that an AI system produces inaccurate, unstable, or inappropriate outputs in context.Model testingUsing a smaller version of a design to observe behavior before building at full scale.Model trainingThe stage where an AI system learns patterns from data before it is deployed.Model validationThe process of checking whether a model still matches real-world behavior.Model VersioningTracking model changes so decisions can be reproduced and audited later.Model weightsThe learned parameters of an AI model, which are sensitive because they strongly influence behavior and can be a target for theft or tampering.Model-weight protectionSecurity measures that help prevent theft or unauthorized access to trained model parameters.Modèle à poids ouvertsUn modèle d’apprentissage automatique publié avec des poids disponibles pour une utilisation et une inspection locales.Modèle d'autorisationsLa logique du navigateur qui décide si un site peut accéder à une capacité sensible.Modèle de extorsion uniquementUne approche criminelle qui repose sur le vol de données et la coercition plutôt que sur le chiffrement des systèmes.Modèle de terrainUne représentation numérique de la forme du sol qui peut montrer la pente, l’altitude et les courbes de niveau.Modèle frontièreUn système d’IA très performant à la pointe des capacités et des risques.Modèle opérationnelLa manière dont une organisation структure les personnes, les processus et la technologie pour fournir ses services.Modèle ouvertUn modèle d’IA dont les poids, le code ou les artefacts de développement sont rendus publiquement accessibles à des fins d’inspection ou de réutilisation.Modello 231an organizational compliance model that must be maintained and kept effective over time.Moderationthe process of overseeing content and behavior inside an online community.Moderation workflowThe internal process a platform uses to review, classify, and act on content or accounts.Modern codesoftware written for current development practices, tools, and expectations.Modular malwareMalware built from interchangeable components that can be updated or extended without rewriting the whole program.Modular toolkitMalware built from separate components that can be updated or swapped independently.Modularitythe design approach of adding separate pieces to expand a system.ModuleAn optional component that adds features or protocols to a larger software system.Module auto-propagateurUn composant qui aide un logiciel malveillant à se propager d’un compte compromis à d’autres.Module BlacklistingA temporary mitigation that prevents selected kernel modules from loading.Module GoUn paquet versionné dans l’écosystème Go, pouvant être importé par d’autres projets.Module verUn composant qui aide un logiciel malveillant à se propager d’un système ou d’un compte à un autre sans copie manuelle.Module-load telemetrySecurity logging that shows which DLLs a process loads and from which paths.Modules GoLe système de dépendances de Go, qui suit les versions des packages via go.mod et vérifie les téléchargements avec go.sum.Moindre privilègeUne règle qui donne aux utilisateurs et aux systèmes uniquement les accès dont ils ont besoin pour faire leur travail.MOISIran’s Ministry of Intelligence of the Islamic Republic of Iran, a state intelligence service alleged by researchers to have ties to the group.MoneroUne cryptomonnaie axée sur la confidentialité, conçue pour rendre le traçage des transactions plus difficile.MonetizationTurning access, data, or control into usable criminal profit.Monetization modelthe structure that converts audience engagement into income.Monetization pathThe payment route that turns traffic into revenue and can be a key enforcement target.Money launderingThe process of hiding the criminal origin of funds so they can be moved or used more easily.Money muleA person used to receive or move illicit funds for someone else.Money-back guaranteeA refund policy that lets a customer recover payment within a defined period and under specific conditions.mongodThe core MongoDB server process that handles database operations and storage.MongoDB ServerThe database service that stores and serves application data.MonitoringThe ongoing collection and review of security signals to spot threats, failures, or unusual behavior.Monthly Credit PoolA fixed amount of metered usage assigned for a billing period and consumed as work is performed.Morse codeA signaling system that represents characters with short and long patterns.Mosaic effectA risk where harmless-looking data points become sensitive when combined into one workflow result.Moteur à deux tempsUn moteur qui accomplit son cycle de fonctionnement complet en deux courses du piston.Motion controlThe process of directing a machine’s physical movement with precision.Motion planningThe process of computing safe, feasible robot movements toward a goal.Motion to dismissa request for a court to end a case early because the complaint is alleged to be legally insufficient.Motor designthe process of planning how a motor will produce motion efficiently and reliably.Motorola 68060a later processor in Motorola's 68k family used in classic computing designs.Mouvement latéralLa phase post-accès au cours de laquelle un attaquant se déplace à travers un réseau pour atteindre davantage de systèmes ou obtenir des privilèges plus élevés.MS-ISACThe Multi-State Information Sharing and Analysis Center, a shared cyber-defense program for U.S. state, local, tribal, and territorial governments.MSAMaster Service Agreement, le contrat qui définit les règles des relations continues d’hébergement et de service.MSaaSMalware-signing-as-a-service, a criminal model that sells signing access for malicious files.MSAL AndroidMicrosoft’s supported library for sign-in and token acquisition in Android apps.MSBuildA Microsoft build tool that can compile projects and, in some contexts, execute embedded code.MSBuild.exeA Microsoft build engine used to compile and automate software projects on Windows.MSHTAThe Microsoft HTML Application host, a Windows utility that can execute HTML-based script content.mshta.exeA Windows utility used to run HTA files, frequently seen in proxy-execution tradecraft.MSPFournisseur de services gérés, une entreprise qui gère des services informatiques ou de sécurité pour plusieurs clients.MSRCMicrosoft Security Response Center, the team that handles vulnerability reporting and response.MSRPPrix de vente conseillé par le fabricant ; le prix de référence fixé par le constructeur pour les ventes au détail.MSSPManaged Security Service Provider, a firm that delivers outsourced security services.MTTRMean Time to Respond/Recover; a performance metric used to measure how quickly incidents are handled, with the exact expansion varying by organization.Mule accountA bank or fintech account used to receive and move illicit funds for someone else.Mule-as-a-ServiceAn informal label for outsourced money-mule recruitment and cash-out operations.Mule-as-a-Service (MaaS)A criminal model that packages mule recruitment and laundering support as a service.Multi-architecture payloadMalware built for different CPU types so it can run on varied hardware.Multi-channel scamFraud that uses chat, voice, email, or video together to appear credible.Multi-cloudThe use of more than one cloud provider within the same organization.Multi-model AIAn approach that combines different model types, such as statistical, behavioral, and language models, to improve decision-making.Multi-model strategyUsing several AI models in one production environment to balance cost, latency, quality, and risk.Multi-platform postingReleasing the same material across several services to make removal harder.Multi-protocol file serverSoftware that can move files over several transfer protocols in one deployment.Multi-stage attackAn intrusion made up of several linked steps, each of which may use different tools or techniques.Multi-stage BackdoorMalware that uses one component to deliver or load additional components after infection.Multi-stage C2A setup where the first callback leads to additional communication paths, making detection and takedown harder.Multi-stage infectionAn attack flow that unfolds in steps, such as initial execution, staging, and payload deployment.Multi-stage malwareMalware that delivers its payload in steps, often to reduce detection.Multi-tenancyA design where multiple customers or users share one platform while remaining logically separated.Multi-tenant architectureA design where multiple customers share the same application infrastructure while remaining logically separated.Multi-tenant environmentA shared platform design where one system serves multiple customers or organizations.Multi-tenant infrastructureShared systems used by multiple customers, where one compromise can create broader downstream exposure.Multi-turn attackAn adversarial method that uses several conversation rounds to gradually bypass AI safety controls.Multi-window supportThe ability to run and resize several apps at once, which is essential for laptop-style use.MulticloudThe use of more than one cloud provider, often to improve resilience or meet regional requirements.Multicompliancethe need to manage more than one compliance duty in a coordinated way.Multidisciplinary managementAn approach that combines economics, law, and psychology to understand workplaces.MultilocataireUne architecture cloud dans laquelle de nombreux clients partagent une même plateforme, tandis que leurs données sont isolées logiquement.MultimodalAn AI system that can work across more than one data type, such as text, images, audio, and video.Multimodal AIMachine learning that combines different data types, such as text, images, and sensor signals, in one model.Multimodal modelAn AI system that can process and generate more than one type of data, such as text, images, audio, or video.Multimodal systemA system that combines different input types, such as voice, gestures, and sensors.MultimodalityThe use of multiple input or output modes, such as text, voice, or images, in one system.MultiplexingThe method of sending many streams over a single network connection.Multiplicateur de menaceUn facteur qui augmente la vitesse, l’ampleur ou l’efficacité des méthodes d’attaque existantes.Multisensory feedbackCombined visual, audio, or haptic cues that reinforce interaction.Multitenant ManagementOperating multiple customer environments from a shared administrative framework.Music theoryThe study of how harmony, rhythm, melody, and chord structures work.Mutual Legal Assistance (MLA)Formal cross-border process used by states to request evidence, records or other investigative help in criminal cases.Mutual TLSCertificate-based authentication where both sides verify each other before exchange begins.MVNOMobile Virtual Network Operator; a provider that resells mobile service over another carrier’s network.My Sign-InsMicrosoft’s self-service page for managing authentication-related settings.Myth persistenceThe way simplified or false explanations survive long after an event is studied.Mythos PreviewAnthropic’s unreleased model discussed in security materials as capable of advanced vulnerability discovery in controlled settings.N-day exploitationAttacks that target a vulnerability after a patch is available, aiming at systems that have not updated yet.Name Service Switch (NSS)A name-resolution framework that can load shared libraries during lookups.Named CaptureA regex group assigned a name, such as (?<user_id>[0-9]+), so it can be referenced later as a variable like $user_id.NamespaceThe domain structure that organizes internet resources under a parent domain or subdomain.Namespace isolationA Linux separation feature that helps keep processes, filesystems, and other resources divided between environments.NASNetwork-attached storage, a shared storage device accessible over a network.NATNetwork address translation, a router function that rewrites address information to move traffic between networks.National cyber agencya public body that coordinates cybersecurity policy, response, and resilience.National Guardreserve military personnel who can support state or federal missions.National registeran official government record system containing authoritative entries about people, property, entities, or other public records.National security framingThe practice of treating a technology issue as relevant to government safety, defense, or strategic interests.Native AOTAhead-of-time compilation that produces standalone native binaries and can complicate analysis by removing the normal runtime dependency.Native applicationSoftware designed to run directly on a platform without a compatibility layer.Native componentSoftware built directly into the operating system rather than added as an external layer.Native toolingSoftware that runs directly on the operating system rather than through a compatibility layer.Native-code analysisExamination of compiled machine code to understand how a program works at the instruction level.NATSA messaging system that supports lightweight communication and task distribution between services.Natural language processingA technique that helps software understand and generate human language.Natural-Language ModelA system that processes or generates human language, often used for assistants, search, and workflow automation.Navigation templateA car display layout centered on maps, routing, and compact controls.NCSCThe National Cyber Security Centre, the UK’s technical authority for cyber security and part of GCHQ.NDAsNon-disclosure agreements that protect confidential business information from disclosure.NDVIA satellite-based index used to estimate vegetation health and plant vigor.Near-Earth asteroidAn asteroid whose orbit brings it close to Earth.Need-to-knowA rule that limits access to information to people who genuinely require it.Negotiating powerthe ability to push for better terms using clear spending data and purchasing volume.neige de CO2Dioxyde de carbone solide fin formé lorsque la pression chute et que le CO2 liquide se transforme brusquement en une phase solide froide.NeocloudA specialized cloud provider built around high-performance GPU capacity for AI and other compute-heavy workloads.NERC CIPCybersecurity standards for bulk electric system assets and related controls.NESNintendo Entertainment System, the international version of Nintendo’s Japanese Famicom.Net Promoter Score (NPS)A metric used to gauge customer loyalty and satisfaction.NETCONFA network management protocol used to configure and monitor devices over secure sessions.NetfilterThe in-kernel packet processing framework that nftables uses for firewall and routing decisions.NetlogonA Windows service used for secure communication between domain members and domain controllers.Network applianceA device such as a firewall or VPN gateway that sits at the edge of a network and can become a target.Network bindingDirecting an app or process to use a specific network interface for its connections.Network Detection and Response (NDR)A network security approach that watches traffic and related activity for signs of suspicious behavior.Network edgeThe point where a local network connects to the wider internet.Network edge applianceA device at the boundary of a network, such as a firewall or VPN gateway, that handles traffic and can become a high-value target.Network enforcementControls that apply security policy to traffic moving across systems and connections.Network isolationA control that restricts or separates network access to reduce outbound abuse and data leakage.Network protectionSecurity measures that keep digital communications systems available, trustworthy, and resistant to disruption.Network reconnaissanceThe act of scanning and mapping systems, ports, and services before exploitation.Network shareA shared folder or drive on a network that can be targeted during lateral movement.Network takedownA coordinated action aimed at disrupting connected systems rather than only a single site.Networked criminal modelAn operation built from multiple linked actors rather than a single offender.Neuromorphic computinga computing approach inspired by biological nervous systems, designed as a distinct paradigm from conventional CPUs.Neutron generatorA device designed to produce neutrons for research or experimentation.NewEdge Networkthe infrastructure named in the announcement that now supports data-localization requirements in 24 countries.NextcloudAn open-source collaboration platform for files, documents, and teamwork that can be run on private infrastructure.nf_tablesthe Linux kernel’s packet-filtering subsystem used for configuring firewall rules.NF-eBrazil’s electronic invoice system, used for legally valid business documentation.NFCCommunication sans contact à courte portée utilisée pour les badges, les étiquettes et les interactions intégrées.NFC relayA technique that forwards live contactless traffic between a victim card and a remote reader.NFC relay attackA method that forwards contactless communication through proxy devices to defeat short-range assumptions.nftablesThe modern Linux kernel framework for packet filtering, NAT, and firewall rule management.NGINXAn open-source web server and reverse proxy commonly used to serve, route, and load-balance web traffic.NGINX njsAn optional JavaScript module for NGINX that adds server-side scripting for HTTP and Stream request handling.NibbleA 4-bit unit of data, often used when a design maps neatly to decimal digits.NiMHNickel-metal hydride, a rechargeable battery chemistry used in many consumer devices.NISThe EU cybersecurity framework for essential and important entities, focused on resilience and incident readiness.NIS 2EU cybersecurity framework that places operational risk and service continuity at the center of governance.NIS Cooperation GroupThe body that supports coordination on applying NIS-related cybersecurity requirements across the EU.NIS entityAn organization that falls within the scope of NIS2 and must follow its security and reporting rules.NIS2Une directive de l’UE sur la cybersécurité axée sur la gestion des risques et la notification des incidents pour les entités essentielles et importantes.NIS2 DirectiveAn EU cybersecurity directive that expands security and reporting obligations for covered entities, with applicability depending on sector and organization type.NIS360ENISA’s sector assessment framework for comparing cybersecurity maturity and criticality in high-criticality sectors.NISTThe U.S. National Institute of Standards and Technology, a federal body that publishes technical standards and guidance.NIST AI Risk Management FrameworkA voluntary framework for identifying, assessing, and managing AI-related risks.NIST AI Risk Management Framework (AI RMF)A voluntary framework for managing AI risks across design, development, deployment, and monitoring.NIST AI RMFUn cadre volontaire pour gérer les risques liés à l’IA tout au long du cycle de vie d’un système d’IA.NIST CSF 2.0The current NIST Cybersecurity Framework version, which adds an explicit Govern function.NIST Cybersecurity Framework (CSF) 2.0A risk-management framework that organizes cybersecurity outcomes around governance, identification, protection, detection, response, and recovery.NIST NICE FrameworkUn modèle normalisé pour décrire les rôles, les tâches et les compétences dans le domaine de la cybersécurité.NIST SSDFA framework for building secure software by integrating security practices throughout development.njs moduleNGINX’s JavaScript extension used to script HTTP and Stream request handling.No-code malware-development interfaceA builder-style tool that helps users create or configure malware without writing code.No-hacking ordera legal directive intended to prohibit unauthorized access or intrusion activity.No-logA privacy policy indicating that a service does not retain browsing activity or content logs, though it may still collect limited operational or technical telemetry depending on the provider.No-logs auditAn independent assessment that evaluates a provider’s logging claims and controls, usually for a specific scope and period.NodeA building block in a workflow that performs a specific action, such as transforming data or calling a service.node-gypThe build tool commonly used to compile native Node.js addons from binding.gyp instructions.Node.jsA JavaScript runtime often used in developer tooling and sometimes abused in malware that blends into software workflows.Node.js implantMalicious code written for the Node.js runtime, often used to inspect local data or steal secrets.Node.js SEAA Node.js packaging format that bundles code into a single executable.Node.js Single Executable Application (SEA)A Node.js packaging feature that bundles an app into a standalone executable.noindexA directive that tells search engines not to include a page in their index.Noiseunwanted disturbance that disrupts quantum operations and measurements.Nomenclature logicielle (SBOM)Un inventaire lisible par machine des composants logiciels qui aide à la transparence et au suivi des risques.Non-disclosure agreement (NDA)A confidentiality contract that can become valuable leverage if leaked.Non-functional requirementsSystem qualities such as reliability, latency, and usability that shape user trust.Non-fungibilityA condition where a supply or service is not realistically replaceable without significant operational impact.Non-human identityA machine account or service identity that must be managed like a user account.Non-negotiablesRequirements or constraints that must be set before execution begins.Non-Public Network (NPN)A 5G network built for private organizational use rather than public mobile service.Non-recurring itemAn accounting label for an unusual expense or loss that is not part of normal operations.Non-repudiationA control that helps prove who performed an action and prevents later denial.NonceA security token used to reduce request-forgery risk, but not a replacement for access control.Nonconformitya gap between a requirement and what is actually implemented.Nonhuman identityA digital account used by software, services, or workloads rather than a person.NormalizationThe process of aligning formats, timestamps, metadata, and categories so data can be compared reliably.Normalization artifactA display or formatting issue that can merge separate names into one misleading label in a listing.nosnippetA directive that limits or removes preview text from search results.NotarisationL’étape de vérification d’Apple pour les logiciels Mac qui aide à signaler les applications connues comme risquées.Notice-and-actionA platform process for receiving complaints and responding to allegedly infringing content.Notification AccessA device permission that lets an app or assistant read and interact with incoming notifications.Notification du système de fichiersUn signal du système d’exploitation indiquant qu’un fichier ou un répertoire a changé.Notification fatigueReduced responsiveness caused by too many alerts over time.Notification previewa short message snippet shown before the full conversation is opened.Notification surfaceMessage previews or alerts that an app or assistant can read.Notification thresholdthe level of impact or significance that triggers a formal report.Notification workflowThe steps an organization follows to inform affected parties and regulators.NoyauLa partie centrale d’un système d’exploitation qui gère la mémoire, les processus et le matériel avec des privilèges élevés.noyau LinuxLe composant central de Linux qui gère le matériel, la mémoire, les processus et les frontières de sécurité.npmThe package manager and registry used to distribute JavaScript and TypeScript dependencies.npm CLIThe command-line tool used to interact with npm package management features.npm lifecycle scriptA command in a package’s configuration that can run automatically during install or publish-related events.npm lifecycle scriptsCommands that can run automatically during package installation, including preinstall and postinstall.npm packageA JavaScript module distributed for installation and reuse.npm registryThe package distribution system used by JavaScript and Node.js projects.npm scopeA namespace prefix that groups related npm packages under a shared name.NSAThe National Security Agency, which combines signals intelligence with cybersecurity functions.NT AUTHORITY\SYSTEMA highly privileged local Windows account used by core services and the operating system.NTFS handlerThe part of a program that reads and interprets NTFS filesystem structures and metadata.NTFS junctionA Windows directory link that redirects one folder to another location on the same volume.NTFS permissionsWindows file access controls that can restrict who may read or modify a file.NTLM relayA technique where an attacker forwards NTLM authentication messages to a service that accepts them, sometimes leading to unauthorized access.NTLMv2A Microsoft challenge-response authentication method that uses password-derived material instead of sending the password itself.ntoskrnl.exeThe Windows kernel image that hosts core operating-system execution paths and native entry points.NTPNetwork Time Protocol, the standard used to synchronize time over IP networks.NtQuerySystemInformationA native Windows API used to query system details from user mode through the OS interface layer.Number matchingA challenge-response step that requires the user to confirm a code shown during sign-in.Numbers stationA broadcast format associated with repeating numbers or coded groups, historically linked to clandestine communications.NVDNIST’s vulnerability database used to track and enrich CVEs and related security data.OAISA preservation reference model that organizes archives around ingest, storage, access, and migration over time.OAuthAn authorization standard that can be abused to grant persistent access to cloud services.OAuth 2.0An authorization framework that lets apps obtain limited access to user resources without handling the user’s password.OAuth 2.0 device authorization grantA cross-device login method that lets a user approve a sign-in on a separate device using a code.OAuth 2.0 device code flowA login method for constrained devices that can be misused in social engineering.OAuth app grantA permission given to a third-party application that can become a persistence or abuse path if misused.OAuth bearer tokenA reusable access credential; whoever holds it can present it to an API until it expires or is revoked.OAuth consentA cloud permission grant that can let an application access data or services if abused or misconfigured.OAuth Device Authorization GrantA login flow that lets a user authorize a device by entering a code on another device.OAuth device code flowA login method for devices with limited input that uses a code and separate verification page.OAuth Device FlowA cross-device login method for devices that cannot easily handle full interactive sign-in.OAuth device-code flowA sign-in method for devices with limited input that uses a short code entered on another device.OAuth grantA permission token that can be abused if a malicious or overprivileged app is approved.OAuth On-Behalf-Of (OBO) flowA delegated token exchange pattern that lets a service call another API using a signed-in user context.OAuth permissionsAccess rights granted to an app or service, often critical when cloud abuse involves stolen or overbroad consent.OAuth scopeA permission boundary that limits what an integration can access in another system.OAuth scopesThe specific permissions an app requests to access a user’s cloud data, such as email or files.OAuth tokenA credential that lets an approved application access data without sharing a password.OAuth2Un standard d'autorisation qui permet aux applications de demander un accès limité aux ressources d'un utilisateur à l'aide de jetons.Obfuscated codeSoftware intentionally written to be hard to read or analyze.Obfuscated JavaScriptJavaScript deliberately disguised to make its behavior harder to inspect.ObfuscationTechniques qui rendent le code plus difficile à lire, analyser ou rétroconcevoir.Object injectionAn attack where malicious serialized input influences how a program creates or uses objects.Object storageA cloud service that stores data as files or objects accessed through APIs.Object-Centric ModelingA way of representing processes that keeps track of multiple related business objects instead of forcing one linear case.Object-level authorizationA check that verifies whether a user is allowed to act on a specific record, not just the system in general.Objectif de repriseune cible indiquant à quelle vitesse les systèmes ou les données doivent être restaurés après une panne ou un incident.Objet de stratégie de groupe (GPO)Un contrôle de domaine Windows utilisé pour gérer des paramètres sur de nombreux systèmes.ObservabilityThe ability to see, log, and analyze system behavior well enough to reconstruct what happened.Observability platformSoftware used to monitor, visualize, and analyze system behavior.Observability stackThe tools used to collect logs, metrics, and traces for monitoring and incident response.ObservationA measurement or detection made by an instrument.ObsolescenceL’état d’un composant ou d’un système devenu difficile à prendre en charge, à remplacer ou à maintenir.Obsolete partsComponents that are no longer widely manufactured or easy to replace.OCIThe Open Container Initiative, which defines standards for container image and runtime interoperability.OCI imageA container image format defined by the Open Container Initiative for interoperability.OCI-compliantBuilt to follow Open Container Initiative image standards.OCRThe Office for Civil Rights at HHS; it handles HIPAA breach reporting and enforcement.OCSPOnline Certificate Status Protocol, used to check whether a certificate has been revoked.ODVan internal oversight body that helps monitor the model and its practical application.OEMOriginal Equipment Manufacturer, the company that designs and builds a product or platform.OEM app marketplaceA device-maker app store, such as a vendor catalog used to distribute apps on specific Android devices.Off-chain recordsInformation stored outside the blockchain, such as identity and account documentation.Off-gridOperating without relying on a persistent internet connection or central cloud service.Off-platform handoffThe moment a user is pushed from a social app to an external site where the real risk begins.Off-platform migrationMoving a conversation away from a monitored service into email or messaging apps.Offensive OSINTUse of public information to support targeting or pre-attack planning.Offerta TecnicaThe technical section of a bid, covering how the contract will be delivered.Office Deployment ToolMicrosoft’s command-line utility for downloading and deploying Microsoft 365 Apps.Office for the webBrowser-based Microsoft Office apps used to open and edit documents online.Offline backupA backup kept separate from the live network so attackers cannot easily encrypt or delete it.Offline encryptionEncrypting files without needing a live connection to an attacker server.Offline Restore TestA backup recovery check performed away from production systems to confirm data can be recovered safely.OIDAn object identifier used to label algorithms and standards inside certificate and cryptographic data.OIDCOpenID Connect, un protocole d'identité souvent utilisé pour des identifiants d'automatisation de courte durée.OIDC (OpenID Connect)An identity protocol commonly used with short-lived publishing credentials in modern software supply-chain workflows.OIDC federationA method that lets workloads authenticate to cloud services without storing long-lived cloud keys.OIDC tokenA short-lived authentication credential used by workflows to authenticate with cloud services or registries.OLEDA display technology that lights each pixel individually without a backlight.OmniboxChrome’s combined address and search bar.On-Behalf-Of (OBO) flowAn OAuth pattern that lets one app call another service using a signed-in user’s delegated permissions.On-chain metricsBlockchain data used to infer transaction flow, holder behavior, and market pressure.On-demandContent available whenever needed, rather than only during a live session.On-device ad techadvertising-related code running locally on a phone.On-device AIMachine learning that runs locally on the phone instead of sending data away for analysis.On-device detectionSecurity analysis performed locally on the phone instead of sending all decisions to a remote service.On-device machine learningClassification or detection performed locally on the phone, which can reduce latency and limit data exposure.On-device processingAnalysis performed locally on the phone, which can reduce data exposure and lower latency.On-path attackerAn actor positioned between endpoints who can observe or modify traffic in transit.On-premise AIAI workloads run inside an organization’s own infrastructure instead of a public cloud.On-PremisesSoftware hosted and run by the customer on their own infrastructure rather than in a vendor-managed cloud service.On-premises deploymentSoftware hosted and managed inside an organization’s own environment rather than by a cloud provider.OnboardingThe process of helping a new user learn the interface, workflow, and core concepts of a tool.One-Time Password (OTP)A short-lived authentication code that can be relayed by an impostor site if a user enters it manually.One-time permissionsA privacy control that grants an app temporary access to sensitive data or sensors, then removes that access after use.One-to-many identificationA search that compares one face against many records to find a possible match.One-to-one verificationA comparison that checks whether a person matches a claimed identity.OneDrive endpointsAPI routes used to interact with OneDrive content, including file and folder operations.OneDrive for BusinessMicrosoft’s cloud storage for user files, including many documents shared in Teams chats.Online groomingA process of building trust over time to manipulate a victim.Online marketplaceA digital platform where goods or services are listed for sale, including illicit ones.Online messaging servicesSoftware and platforms used for digital communication across devices and networks.Online reusethe republishing, display, indexing, summarizing, or other reuse of content on internet services.Online reviewsUser-generated ratings and comments that shape consumer decisions.Onsite assessmentA visit or review carried out at a facility to evaluate security conditions.OntologyA machine-readable model of concepts, properties, and relationships in a domain.Open architectureA design approach that uses published interfaces and modular components so different suppliers can build interoperable parts.Open datapublic information released for access, use, and reuse.Open formatsfile standards that can be read and written by multiple tools, reducing lock-in.Open interneta broader advertising environment with many publishers and intermediaries.Open sourceSoftware whose code can be inspected, modified, and redistributed under a published license.Open source governancethe processes used to review, maintain, and secure shared code.Open source maintenanceThe ongoing work needed to keep public software components secure, updated, and reliable.Open source operating systemAn operating system whose source code is publicly available for review and modification.Open standardA shared technical specification meant to improve interoperability between systems.Open web standardsShared technical rules designed to make systems interoperable and easier to verify.Open-Access FiberA network model where multiple service providers can use shared fiber infrastructure.Open-loop paymentA fare model that uses standard bank cards or mobile wallets instead of a dedicated transit card.Open-sourceSoftware whose code is publicly inspectable, which can improve transparency and reviewability.Open-source maintainerA person or team responsible for reviewing issues and maintaining a public software project.Open-source malwarePublicly available code that can be reused or adapted by different threat actors.Open-Source PackageA reusable software component distributed through a public repository and often used as a dependency.Open-Source ProjectSoftware whose source code is publicly available and often maintained by small teams or volunteers.Open-Source SoftwareSoftware whose source code is publicly available for inspection, reuse, and collaboration.Open-source stewardAn enterprise role discussed in the CRA context for managing security policy and governance around open-source software.Open-Source ToolSoftware with publicly available source code, often distributed through project-controlled channels.Open-weight ecosystemA model distribution approach where trained weights are available for reuse, fine-tuning, or local deployment.OpenGLa graphics API used to draw 2D and 3D visuals through software and hardware acceleration.OpenID ConnectAn identity layer used with OAuth 2.0 to authenticate users and services.OpenID Connect (OIDC)A federated identity standard that lets systems exchange verified login assertions for temporary access.OpenSSLAn open-source cryptographic library used by software to implement TLS, SSL, and related security functions.OpenTelemetryA vendor-neutral framework for collecting traces, metrics, and logs across systems.OpenTelemetry GenAISemantic conventions for tracing generative AI and agent activity in a structured, machine-readable way.OpenWrtOpen-source router software that runs on supported hardware.Operating committeeA cross-functional group that reviews priorities, approves work, and tracks progress.Operating envelopeThe range of conditions under which a device can work without failing.Operating systemCore software that manages hardware, applications, and user interaction.Operating system overheadCPU time and memory used by the OS to manage hardware and programs.Operating system shellThe part of the system that manages windows, desktop behavior, and basic navigation.Operating system supportThe software compatibility and maintenance an operating system provides for connected hardware.Operating-system safeguardsPlatform rules designed to limit unsafe app behavior, such as hidden launches and disruptive background activity.Operationalready to perform assigned tasks in real conditions.Operational autonomyAn undefined term here that may imply faster tasking or greater independence, but does not by itself prove covert collection or field operations.Operational boundaryA clear limit that defines what an AI system may do, and where human control must remain in place.Operational capacityThe practical ability of an organization to run and support its services.Operational clarityHow easily users and administrators can understand normal system behavior.Operational communicationBusiness messaging that must arrive reliably to be useful.Operational competenceThe ability to turn security knowledge into effective day-to-day defense.Operational consistencyThe ability to apply the same standard across teams and situations.Operational contextsurrounding conditions that can affect risk, detection, and response.Operational continuityThe capacity to maintain essential services through outages, changes, or other disruptions.Operational controlThe practical ability to manage, audit, and govern a service’s day-to-day behavior.Operational controlsprocedures and safeguards used to keep a complex system running safely and predictably.Operational dependencyReliance on another system, vendor, or device to function properly.Operational detailLow-level execution information that can distract from higher-level judgment.Operational disciplineThe day-to-day procedures that keep digital systems usable, safe, and auditable.Operational disruptionactions that make criminal activity slower, costlier, or less reliable.Operational driftgradual loss of clarity or control when decisions are made without a guiding framework.Operational executionThe ability to turn strategy and policy into repeatable security action.Operational fitHow well a product matches the security, process, and risk needs of a real environment.Operational frictionExtra effort, cost, or delay that makes criminal activity harder to sustain.Operational guidancePractical instructions that explain how to apply a rule in day-to-day work.Operational impactThe practical effect of an incident on service delivery, recovery, or continuity, beyond the initial intrusion.Operational intelligenceInformation that helps investigators understand how an abuse campaign is run.Operational mandateA formal role focused on execution and coordination, not only policy advice.Operational modelThe way an organization organizes people, processes, and technology to get work done.Operational overlapthe point where separate rules require some of the same internal work.Operational ownershipclear responsibility for how a live system is monitored and maintained.Operational precisionThe consistency needed to keep service data and user access aligned.Operational readinessThe ability of defenders to apply skills effectively in realistic, time-sensitive conditions.Operational recordsThe plans, logs, and evidence files that prove safety actions, training, and drills have been completed.Operational Relay Box (ORB)A proxy network pattern that routes traffic through distributed servers and compromised devices to obscure origin.Operational riskThe chance that a process, system, or workflow will produce harmful or unreliable outcomes in practice.Operational securityThe discipline of protecting sensitive information, processes, and communications from unnecessary exposure.Operational sensitivityThe idea that some data becomes security-relevant because of who it identifies.Operational Summarya periodic report used to track incidents, trends, and response activity.Operational supportThe ongoing work needed to keep a project functional, responsive, and usable.Operational systemThe production system that performs a real-world function, such as sensing, control, or communications.Operational technologyIndustrial systems that monitor or control physical processes, including equipment used in energy operations.Operational telemetryData generated by systems in use, such as route status, performance metrics, logs, and sensor readings.Operational tempothe pace at which an organization can act, coordinate, and respond under pressure.Operational timingCoordinating action so multiple steps happen fast enough to limit adaptation.Operational transparencyClear technical disclosure that helps users make informed decisions.Operational trustConfidence that a device will work as expected and can be maintained safely.Operational valuethe practical benefit a control or process adds to day-to-day security work.Operational visibilityThe ability to see, log, and review what a system is doing in practice.Opérations d’influenceEfforts coordonnés visant à façonner les récits, la confusion ou la confiance parallèlement à une intrusion technique.Operator licensing schemeA paid access model that lets buyers use malware under defined terms or subscriptions.OPFSOrigin Private File System, a browser storage area scoped to a site’s origin.Opportunity requirementThe obligation to identify and assess favorable circumstances for improvement.OPSECOperational Security; practices designed to prevent adversaries from learning sensitive details from routine behavior or exposed data.Opt-out requestA formal request to remove or suppress personal data from a service or database.Optical sensorA device that captures information through light-based measurement rather than physical contact.Opticsthe study and practical use of light and how it behaves.OptimizationA method of making software or hardware use fewer resources while keeping its intended behavior.Optional preview updateA non-security cumulative update released early for testing before the main monthly security cycle.ORRécepteur olfactif ; une protéine qui aide un neurone à répondre aux molécules odorantes.OracleAn off-chain data bridge that supplies external facts to a smart contract.Oracle WebLogic ServerA Java application server used for enterprise middleware and integrations.Oral examThe spoken part of an exam where students explain topics and answer questions live.Orbital insertionThe maneuver or launch outcome that puts a spacecraft into a stable orbit.OrchestrationLa coordination de plusieurs systèmes ou services afin qu’ils fonctionnent ensemble comme un seul flux opérationnel.Orchestration layerThe control plane that coordinates, authorizes, and monitors actions taken by automated agents.Orchestration SDKA developer toolkit for coordinating workflows, jobs, or service actions across systems.Ordinateur monocarteUn ordinateur compact construit sur une seule carte électronique, souvent utilisé dans des projets d’électronique DIY.Org redesignA broader restructuring of teams, reporting lines, and work models to fit new business demands.Organic substrateA traditional PCB base material, often made from polymer-based layers.Organization settingsAdmin-managed configuration that can affect whether a Microsoft 365 feature appears or works for users.Organizational controlsPolicies, workflows, and oversight used to reduce exposure.Organizational listeningA structured way of gathering and interpreting internal signals from people and systems.Organizational resilienceThe ability to keep operating and recover after disruption.Organizational responsibilityClear assignment of duties for security, oversight, and response.Organizational safeguardsPolicies, procedures, and roles that reduce human and process risk.Organizational valueThe idea that people are the source of capability, not just a cost to manage.Organized crime groupA coordinated criminal network with defined roles and repeated activity.OriginThe browser security label for a site’s scheme, host, and port, used in access control decisions.Origin ExposureA deployment state where the application server is directly reachable instead of being shielded by an edge layer.Origin HeaderA browser-sent value that identifies where a request came from and helps enforce trust boundaries.Origin Private File System (OPFS)A browser storage area that is scoped to a web origin and designed for fast local access.Origin validationA check that verifies whether a web request truly comes from a trusted browser context.OrionVaisseau spatial habité de la NASA conçu pour emmener des astronautes dans l’espace lointain et les ramener.Orphan commitA Git commit that is no longer reachable from a normal branch, which can make it harder to spot during review.OS buildA version number that identifies the exact patched state of Windows on a device.OS Command InjectionA bug class where untrusted input is interpreted as a system command.Oscillatora technical indicator that measures momentum or extremes, usually as a secondary signal.OSINTRenseignement de sources खुले? Need French. Open-source intelligence gathered from publicly available data, including tracker pages and public posts.OSNNeurone sensoriel olfactif ; une cellule nerveuse détectrice d’odeurs située dans la muqueuse nasale.OsqueryA host monitoring tool that queries operating system data with SQL-like statements.OTTechnologie opérationnelle ; le matériel et les logiciels utilisés pour surveiller et contrôler les processus industriels physiques.OT (Operational Technology)Hardware and software that monitor or control physical industrial processes.OT adjacentSystèmes qui prennent en charge les opérations industrielles ou s’y connectent, même s’ils ne constituent pas eux-mêmes la couche de contrôle.OT edge deviceAn industrial network appliance that sits between control systems and broader networks.OT NetworkThe operational technology network that supports industrial control systems and production equipment.OT Risk QuantificationThe process of turning industrial cyber exposure into measurable financial or operational risk signals.OT securityProtection of operational technology systems that support physical processes.OT segmentationSeparating operational technology assets from general business networks to reduce attack reach.OT systemsOperational technology used to monitor or control physical processes, machinery, or infrastructure.OT VisibilityThe ability to observe industrial assets and communications without disrupting operations.OT/IoTTechnologie opérationnelle et appareils connectés à Internet utilisés dans des environnements physiques ou industriels.OTA updateAn over-the-air software or firmware update delivered remotely to a device.OTA updatesOver-the-air software updates delivered remotely to devices or vehicles after purchase.OTADOver-The-Air Distribution, a method for sending cryptographic key material to authorized receivers.OTAROver-The-Air Rekeying, a related method for refreshing keys without physical key loading.OTPOne-time password, a short-lived authentication code often used as a second factor.Out-of-band alertA notification sent through a separate channel, such as email or SMS, to flag account changes.Out-of-band communicationsAlternate channels used when primary tools like email or chat may be unavailable or untrusted.Out-of-band validationChecking critical data through an independent channel instead of trusting one path alone.Out-of-bounds accessA memory error where software reads or writes outside the space it is allowed to use.Out-of-bounds memory accessA bug where software reads or writes outside its intended memory range.Out-of-bounds read/writeA memory error where code accesses data outside its intended buffer.Out-of-bounds writeA memory bug where data is written outside the intended buffer, which can corrupt execution.Outbound data transferTraffic leaving a network that may indicate staging, exfiltration, or unauthorized data movement.Outbound email processingThe mail-sending path an application uses to build and deliver messages to recipients.Outbound HTTPSEncrypted web traffic leaving a network, often used by malware for command and control.Outbound linkA hyperlink that sends a reader from one site to another page or domain.Outbound monitoringSecurity visibility into data leaving a network, used to spot suspicious transfers.Outbound RelayA device role where traffic is forwarded from one network point to another instead of being consumed locally.Outbound telemetryNetwork and logging data that can reveal unusual transfers leaving an environment.Outbound trafficData leaving a network; unusual spikes can indicate exfiltration or staging activity.Outbound Traffic MonitoringWatching data leaving a network for signs of exfiltration or unauthorized transfer.Outbound transferData leaving a network or system, which can be a warning sign in leak-driven intrusions.Outbound Transfer MonitoringA defensive control that looks for unusual data leaving a network or cloud environment.Outbound TunnelA connection path that leaves a network first and can avoid public inbound exposure.Outcome metricA measure of delivered value, such as deployed work, change success, or reduced rework.Outcome specificationThe process of defining the intended result before building a solution.Outil d'accès à distanceLogiciel utilisé pour l’assistance ou l’administration légitimes, mais qui peut aussi être détourné pour un contrôle non autorisé.Outil d’accès à distanceLogiciel légitime pouvant être détourné pour contrôler des systèmes ou transférer des fichiers à distance.Outil de gestion à distanceLogiciel utilisé pour administrer des systèmes à distance, souvent une cible de grande valeur.Outil de tunnelingLogiciel qui achemine le trafic via un service intermédiaire, parfois utilisé pour masquer l’activité d’un attaquant.Outils d’accès à distanceLogiciels tels que les VPN, RDP, Citrix ou les consoles d’administration utilisés pour atteindre des systèmes internes depuis l’extérieur du réseau.Outils dérivés de LockBitComposants malveillants construits à partir du code ou des générateurs LockBit divulgués, ou influencés par ceux-ci.Outlook mailboxA mailbox associated with Microsoft Outlook or a similar enterprise email environment.Outlook on the webMicrosoft Exchange’s browser-based mail interface.Outlook on the web (OWA)The browser-based mail interface for Microsoft Exchange Server.Outlook Web Access (OWA)Microsoft Exchange’s browser-based mailbox interface.OutperformerA label for vendors showing above-average forward progress relative to the market.Output EncodingA defense that renders user content inert so browsers do not interpret it as script.Output metricA measure of delivered work, such as shipped code or completed tasks.Output tamperingAltering a program’s result so it appears valid while being technically wrong.Over-permissioningGiving a system more access than it needs, which increases the impact of mistakes or abuse.OverchargingCharging a battery beyond its intended limit, which can push it outside safe operating conditions.OverlayA fake screen placed over a legitimate one to trick the user.Overlay attackA fake screen placed over a real app to capture passwords, codes, or taps.OverrelianceTrusting AI output too readily instead of checking it critically.OversightThe controls, review steps, and monitoring used to keep system behavior within acceptable limits.OvertrustExcessive confidence in an AI system’s correctness or judgment.OWAOutlook on the web, Microsoft Exchange’s browser-based mail interface.OWASP GenAI Security ProjectOWASP's community effort focused on security risks in generative and agentic AI.OWASP incubatorAn early-stage OWASP project status for experimental or work-in-progress efforts.OWASP MASVSA mobile application security standard used to verify controls for apps and their supporting services.OWASP Top 10 for LLM ApplicationsA security list of common risks in large language model deployments.OWLA W3C language for building richer ontologies with more expressive semantic rules.Ownershipthe clear assignment of responsibility for a decision or action.Ownership controlsRegistry permissions that determine who can publish, modify, or manage a package.Oxidationa chemical reaction that can change fuel over time and reduce its original quality.P&IDDiagramme de tuyauterie et d’instrumentation, un dessin d’ingénierie détaillé des équipements de procédé et des flux de contrôle.p=rejectA DMARC policy that asks receivers to refuse mail that fails DMARC validation.P2P botnetA malicious network where infected machines communicate with each other directly instead of relying on one central server.P2P connectionA direct device-to-device style link often used for remote access and cloud-mediated management.P2PInfectA botnet and worm family associated with abuse of exposed Redis instances.Package d’installationUn fichier utilisé pour installer des logiciels sur Windows, souvent abusé parce qu’il semble normal aux utilisateurs.Package lock fileA file that pins exact dependency versions so builds can be reproduced consistently.Package lockfileA file that records exact dependency versions to make builds reproducible.Package managerA tool used to install, update, and remove software from a system.Package ownership transferThe handoff of maintainer control for a software project, which can create trust and verification risks.Package poisoningThe insertion of malicious code into a software package version distributed to users.Package RegistryA service that stores and distributes software libraries for developers to install.Package repositoryA service that stores software packages for download and update.package-lock.jsonAn npm lockfile that records exact dependency versions to improve reproducibility.package.jsonThe npm manifest file that can define package metadata and lifecycle scripts.PackagistThe main repository ecosystem for Composer packages and advisories.PackerA tool that transforms a program to make analysis harder and to obscure its original structure.Packet parserCode that reads network traffic and interprets protocol fields, lengths, and offsets.Page CacheKernel memory used to store file data temporarily for fast access; it can complicate detection when changes are memory-only at first.pagoPAThe national platform for public-sector payments, designed to standardize transactions with administrations.Paiements instantanésDes virements bancaires qui sont réglés en quelques secondes plutôt qu’en heures ou en jours.Pairing authenticationThe process of establishing a trusted Bluetooth relationship before sensitive communication is allowed.PAMUn framework d'authentification modulaire pour Linux et Unix, utilisé par de nombreux services, y compris SSH.PAN-OSPalo Alto Networks’ firewall platform used to manage network security functions.Panel integrationThe process of fitting a solar panel into a larger electrical setup.Panneau d’hébergementUne interface Web utilisée pour administrer des sites web, des domaines, des e-mails et des paramètres de serveur.PAR fileA Solid Edge file format/workflow element referenced in the advisory.ParameterizationA safer query method that keeps data separate from SQL logic by using placeholders.Parameterized queriesA safer way to write database calls that keeps code and user input separate.Parameterized QueryA query pattern that separates code from input, reducing the risk that user data is executed as SQL.Parametric CADA design method where geometry is controlled by rules, dimensions, and relationships rather than only freehand shapes.Parasocial bondA one-sided feeling of closeness toward a digital system or media persona.Parasocial relationshipa one-sided audience bond that can increase loyalty and spending.ParcL’ensemble complet des serveurs, terminaux ou systèmes qu’une organisation gère.ParquetA columnar file format that can reduce scanned data and improve analytics efficiency.Parser attack surfaceThe parts of a program that process untrusted input and can therefore be abused by crafted files.Parser Trust BoundaryThe point where software must safely handle and validate structured input such as XML or JSON.ParseurLogiciel qui lit la structure d’un fichier et détermine comment il doit être interprété.ParsingThe process of interpreting incoming data into a format a device or program can use.Parsing librarySoftware that helps programs read and interpret structured text.Part strengthA measure of how well a printed object can withstand use or stress.Partage de point d'accèsUtilisation de la connexion mobile d’un téléphone pour fournir un accès à Internet à d’autres appareils.partage de RANUn modèle où les opérateurs partagent les ressources du réseau d’accès radio au lieu de construire des couches radio entièrement séparées.Partages réseauEmplacements de stockage partagés sur un réseau que les rançongiciels ciblent souvent pour maximiser les perturbations.Partenaire d’allianceUn opérateur régional qui fournit une plateforme sous la marque et le cadre d’un service plus large.Partial EncryptionA method that encrypts only parts of files to speed up impact.Participatory designA development approach that includes clinicians, patients, and other users in shaping a system.Partner inbound connectorAn Exchange Online mail-flow control that Microsoft recommends configuring with certificate or IP restrictions to help ensure mail arrives through the expected trusted path.Partner-gated accessRestricted use of a model or tool, usually limited to approved organizations or projects.Pass-through behaviorA pattern where money enters an account and is quickly moved onward.Passerelle d’accès à distanceUn système tel qu’un VPN ou un portail qui permet aux utilisateurs de se connecter aux ressources internes depuis l’extérieur du réseau.Passerelle IAUne couche de contrôle pour le trafic IA qui peut centraliser la journalisation, les limites de débit, la mise en cache, les tentatives de reprise et le comportement de repli.Passive componentA part that does not generate power on its own and instead shapes electrical behavior.Passive DNSHistorical DNS data used to track domain and IP relationships over time.Passive MonitoringObserving devices or networks without actively changing their state, often preferred in OT settings.PasskeyA cryptographic login method that uses a key pair instead of a typed password.Password AutoFillApple’s credential feature for securely storing and filling passwords with device authentication.Password hashA stored cryptographic representation of a password; if the hashing method is weak, attackers may recover the password through brute force.Password hashingA one-way transformation used to protect passwords at rest, ideally with a unique salt and a slow algorithm.Password healthA feature that checks for weak, reused, old, or exposed passwords stored in a vault.Password managerA tool that stores credentials securely and helps users retrieve or fill them when needed.Password recoveryThe process used to regain access to an account after login credentials are lost or unavailable.Password resetA process used to regain access to an account after login credentials are lost or changed.Password Reset AbuseMisuse of reset workflows to try to gain unauthorized account access.Password reset flowthe process used to regain access to an account after losing a password.Password sprayingTrying a small set of common passwords across many accounts to avoid lockouts.Password stealerMalware built to collect stored credentials, tokens, and other login secrets.Password writebackA hybrid identity feature that syncs password changes from the cloud back to on-premises directories.Password-change flowThe application process that handles forced resets or credential updates.Patch adoptionHow quickly users or organizations actually install a released security fix.Patch bottleneckA slowdown caused when fix development, testing, and deployment cannot keep pace with discovered weaknesses.Patch bypassA weakness that defeats a previous fix without necessarily introducing a completely new bug class.Patch CadenceThe rhythm at which software fixes and updates are delivered over time.Patch complianceThe condition of having required security updates successfully installed across a device fleet.Patch debtThe backlog created when known fixes are delayed, missed, or never fully deployed.Patch driftA mismatch where some systems are updated and others remain vulnerable.Patch gapThe time between a security fix being released and the fix actually taking effect on a device.Patch lagThe delay between a fix being released and that fix actually being applied on endpoints.Patch latencyThe delay between a fix being available and it being installed on devices.Patch levelThe security update state of a device, used to judge whether known flaws should already be fixed.Patch propagationThe process of delivering a security fix from upstream code to end users.Patch SLAA defined target time for applying a fix after a vulnerability is identified.Patch triageThe process of ranking vulnerabilities by urgency, exposure, and business impact before fixing them.Patch TuesdayMicrosoft’s monthly security release cycle for delivering fixes in a predictable window.Patch validationTesting a fix to confirm it actually closes the weakness without breaking the system.Path AllowlistA defensive control that limits file access to approved locations instead of user-supplied paths.Path TraversalA flaw where crafted input moves a file operation outside its intended directory.Patient dataInformation linked to a person's health, treatment, or medical history, usually treated as highly sensitive.Patient PortalA protected web area used for patient communication, records, or account access.Pattern of lifeA behavioral profile built from repeated signals such as location traces, timing, and movement habits.Pattern recognitionThe process of finding recurring structures in data, often used to surface leads or relationships.Pay transparencyA regulatory approach that requires clearer information about remuneration practices and pay-setting criteria.PayloadThe malicious component delivered during an attack, such as spyware, a loader, or a downloader.Payment data dumpA bulk release of card-related records, usually containing enough information to support abuse.Payment endpointAny device that processes or relays payment transactions.Payment fraudA scheme that tricks someone into sending money or financial details to an unauthorized party.Payment method managementThe process of reviewing or updating the card or wallet linked to an account.Payment railThe infrastructure that moves money between institutions and users in a financial system.Payment railsThe systems and processes that move money between parties.Payment tokena stored reference that lets a platform charge a card without keeping full card details.Payroll DataEmployee payment and tax information that can support fraud or identity theft if exposed.PBXPrivate Branch Exchange, the telephony system used to manage internal and external phone calls in an organization.PC buildThe version of a game or app compiled for personal computers.PCBPrinted circuit board, the platform that mechanically supports and electrically connects components.PCB artA project that uses circuit-board design as part of the visual appearance.PCB footprintThe board-space pattern that defines how a component physically fits and connects on a circuit board.PCI DSSUne norme de sécurité des paiements couvrant les environnements qui stockent, traitent ou transmettent des données de titulaires de carte.PCIeUne norme d’extension haut débit qui permet aux GPU et à d’autres périphériques de se connecter aux cartes mères courantes.PCR[7]A TPM measurement slot commonly associated with Secure Boot integrity checks.PCR7A TPM measurement tied to Secure Boot and boot-chain validation.PCREA regular-expression library used by NGINX for pattern matching in rewrite rules.PCRE CaptureA regex backreference such as $1 or $2 that stores a matched group for reuse.PCRE capturesParts of a regular expression match stored for later reuse, often referenced with variables like $1 or $2.PDAPersonal digital assistant, an early handheld computer class that offered more functions than a basic organizer.PDB stringA debug-symbol marker that can help analysts cluster malware samples or identify shared build patterns.PDCAPlan-Do-Check-Act, a cycle used for continuous improvement.PDF PhishingA lure that uses a document to push a victim toward a malicious link or follow-on action.PDF.jsAn open-source JavaScript library used to render PDF documents in browser-based applications.PDNDThe national data interoperability platform that supports controlled exchange of information between public bodies.PE-lessDésigne une charge utile pilotée par script ou basée sur un interpréteur qui n’est pas un exécutable Windows PE compilé.PECCertified email channel used in Italy to provide traceable digital communication.Pedagogical designThe planned educational method behind how a tool is used to support learning.PédalierL’ensemble manivelles-pédales qui transmet la puissance des jambes à la transmission du vélo.Peer discoveryThe process a network uses to find nearby devices and establish communication.Peer-to-peer (P2P)A network model where devices communicate directly with each other instead of relying on one central server.Peer-to-peer (P2P) infrastructureA network model where infected systems communicate with each other directly.Peer-to-peer botnetA botnet where infected devices can communicate with each other, reducing dependence on one central server.PEGIPan European Game Information, a rating system used to classify video games and publish content descriptors.Penalty clauseA contract term that imposes a consequence if a party fails to meet a specified obligation.Penetration testAn authorized security exercise that checks how far an attacker could progress.Penetration testingAuthorized security testing that simulates attacker behavior to find weaknesses before criminals do.Pensée intégraleUne compétence de synthèse qui combine des perspectives issues de plusieurs domaines en une seule décision.People analyticsData analysis used to understand workforce patterns, performance, and organizational behavior.People-search siteA website that compiles and displays personal information about individuals.Per-User FileA file stored in a user-specific location, usually tied to that account’s permissions.Per-user state fileA file stored inside an individual profile directory that may contain user-specific application data.Perceived collaborationThe user’s sense that AI is a partner in the task, which can affect trust, engagement, and value creation.Performance driftA gradual drop or change in model behavior after deployment as data or conditions shift.Performance reviewA formal evaluation of work that can shape expectations, growth, and responsibility.Perimeter blockingRestricting traffic at the network edge so unnecessary services are not reachable from outside.Perimeter compromiseUnauthorized access gained through exposed external services such as VPNs or firewalls.Perimeter defenseA security model that centers protection on the network boundary.Perimeter exposureInternet-facing services such as VPNs, firewalls, or portals that can become initial access points.Perimeter securityControls that protect internet-facing systems such as VPNs, firewalls, and web portals.Perimeter serviceAn internet-facing system such as email, VPN, or remote access infrastructure that sits at the network boundary.Perimeter vulnerabilityA weakness in internet-facing systems such as VPNs, gateways, or web appliances.Peripheralan external device or module that adds function to a host system.Périphérique de périmètreUn système de sécurité accessible depuis Internet, comme un pare-feu ou une console de gestion.Périphérique exposé à InternetUn système tel qu’un VPN, un pare-feu ou une passerelle d’accès à distance qui est accessible depuis l’Internet public.Permanent injunctionA court order that permanently restricts specified conduct.Permission abuseA tactic where an app requests access that exceeds what it truly needs, often for fraud.Permission BoundaryThe limit that defines which actions a system may perform after a permission is granted.Permission changesModifications to what a user or account is allowed to do.Permission leakageExposure of data or actions beyond what a user or agent should be allowed to access.Permission promptA request from an app asking to access functions or data on a device, which should be reviewed carefully.Permission scopeThe amount of device data or access an app is allowed to use under user-granted permissions.Permission surfaceThe set of device capabilities an app requests, such as contacts, notifications, or account access.Permissions ModelThe set of user-granted rights that determines what data an app can access.PermittingOfficial approval needed to build, land, maintain, or repair infrastructure in a jurisdiction.PersistanceLa capacité d’un attaquant à conserver l’accès après une compromission initiale, souvent en créant des points d’appui cachés.Persistance de sessionUn mode qui conserve l’état côté serveur d’une requête à l’autre, ce qui peut prolonger la durée de vie des objets et accroître le risque.Persistence mechanismA method malware uses to remain active after a restart or logout.Persistent accessAn attacker’s ability to stay inside a network over time, even after an initial cleanup attempt.Persistent secretA credential that remains available beyond a single task or session.Person-level flagAn automated alert tied to an identifiable individual rather than to a broad statistical trend.Personal access tokenA reusable credential that can grant scripted or automated access to a service.Personal access token (PAT)A GitHub token that can be scoped for specific repositories or actions, depending on configuration.Personal data breachA security incident involving accidental or unlawful access, disclosure, loss, alteration, or destruction of personal data.Personal data inventoryA map of what data is held, where it lives, and who can access it.Personal Identifiable Information (PII)Data that can identify a person, such as a name, address, phone number, or date of birth.PersonalizationTailoring a lure so it looks more relevant or believable to the target, which can increase success rates.Personally Identifiable Information (PII)Data that can identify a person, such as name, email, or address.Persuasion bombingA behavior pattern where a model becomes more persuasive after users challenge its answer.Persuasive designInterface choices built to influence user behavior and extend time spent in a product.Perturbation sélectiveSabotage limité destiné à créer une pression sans nécessairement provoquer un effondrement total.Petrochemical resinA synthetic material made from petroleum-based chemicals, often used in manufacturing.PetrolioA strategic energy carrier that still shapes transport, industry, and geopolitics.pfSenseA FreeBSD-based firewall and router platform used to secure network edges.pgcryptoPostgreSQL’s cryptographic extension for hashing, encryption, and decryption inside the database server.PhaaSPhishing-as-a-service, a criminal model that packages phishing tools and infrastructure for other operators.Phased implementationA rollout method that introduces ERP functions in stages instead of all at once.Phased RestorationA staged recovery method that brings systems back online gradually after validation.PHIInformations de santé protégées ; données de santé liées à une personne identifiable en vertu de la HIPAA.Phish-back platforma platform that uses realistic decoy access points to lure attackers into revealing compromised credentials.PhishingUne méthode d’ingénierie sociale qui trompe les gens pour qu’ils divulguent des identifiants ou prennent des mesures risquées.Phishing attachmentA malicious file sent through email or messaging that tries to trick a user into opening it.Phishing campaignA deceptive operation that imitates a trusted service to trick users into revealing sensitive information.Phishing infrastructureThe hosting and web assets used to trick victims into entering credentials or other sensitive data.Phishing kitA packaged set of tools and templates used to build and run phishing campaigns.Phishing LureA deceptive message designed to trick a target into clicking, replying, or revealing data.Phishing pageA fake web page built to trick users into entering data or paying.Phishing resistanceThe ability of a browser workflow to help users recognize and avoid deceptive credential-stealing pages.Phishing simulationA controlled exercise that uses fake lures to test whether users or systems will reveal secrets.Phishing TakedownThe removal or suspension of fraudulent websites, domains, or pages used to steal credentials or data.Phishing vectorA delivery path used to trick people into clicking, downloading, or revealing sensitive information.Phishing-as-a-ServiceA crime model that sells phishing kits, hosting, and automation as a subscription or rental.Phishing-as-a-Service (PhaaS)A criminal subscription model that provides ready-made phishing tools and infrastructure.Phishing-Resistant AuthenticatorA login method designed to resist credential theft, such as a passkey.PhobosA ransomware family / RaaS ecosystem that has been associated in public advisories with data-extortion activity.Phone by GoogleGoogle’s dialer app for Android, used for calling features and scam protections.Phone verificationA check that uses a phone number to confirm account legitimacy or reduce abuse.Phone-number onboardingRegistration that uses a phone number as the primary account identifier, often increasing identity linkage.Photo ModeA built-in feature that lets users frame and save in-game scenes with camera-like controls.PhotogrammetryA technique that turns overlapping photos into a 3D model.Photopolymérisation en cuveUne famille de fabrication additive où la lumière solidifie une résine photopolymère liquide dans une cuve.Photorealistic contentAI-generated or edited media designed to look convincingly real to a human viewer.PhotovoltaicsTechnology that converts sunlight directly into electricity through solar cells.PHP injectionA vulnerability where attacker-controlled input is turned into executable PHP code.PHP web shellA server-side script that can provide remote command access through the web layer.PHP-FPMUn gestionnaire de processus rapide utilisé pour exécuter efficacement des applications PHP sur des serveurs web.phpMyAdminA web-based tool for managing MySQL and MariaDB databases, often scrutinized when backend access is at risk.Physical accessHands-on contact with a device that can make offline or preboot attacks possible.Physical AIAI designed to operate in the physical world through robots, sensors, or actuators.Physical computingThe practice of linking digital behavior to real-world objects and movement.Physical data carrierA physical tag or code that links an item to its digital record.Physical interfaceA tangible connector or port that carries data, power, or control signals.Physical intrusionUnauthorized entry into a workplace or facility that can expand an attacker’s options beyond remote compromise.Physical layerThe hardware and signal level where devices transmit and receive energy.Physical phishingA social-engineering attack delivered through mail, packages, or other offline channels instead of email.Physical securitycontrols that limit unauthorized access to devices, rooms, and storage media.pidfd_getfdA Linux syscall that can duplicate another process’s file descriptor if kernel authorization allows it.PIIInformations personnellement identifiables, telles que des noms, des coordonnées ou d’autres données liées à l’identité.PII (Personally Identifiable Information)data that can identify an individual, such as names, government ID numbers, or employee contact records.PII scrubbingFiltering personally identifiable information before data is sent into a model or workflow.PINA short code that can help unlock or decrypt synced credentials in some setups.pip --require-hashesA pip option that requires installers to match specified hashes, helping defend against tampering when hashes are maintained correctly.PipelineA chain of commands where one tool's output becomes another's input.Pipeline compromiseUnauthorized manipulation of the systems used to build or publish software.Piste d’audit cloudJournaux de sécurité qui suivent les actions effectuées dans les services cloud, notamment les accès, les transferts et les changements d’administration.Piste d’audit du workflowLa séquence enregistrée des étapes montrant comment un article est passé de la version brouillon à la publication.Pitch classA note category that groups pitches with the same name across octaves.PivotA move from one compromised system or account to another trusted target.PivotingUsing one compromised system as a foothold to reach additional internal systems.PixBrazil’s instant-payment system for fast transfers and settlement around the clock.PKCS#12A standard file format for packaging certificates and private keys, often used as .p12 or .pfx archives.PKIPublic Key Infrastructure, the system used to manage digital certificates and cryptographic keys.PLApolylactic acid, a widely used plastic in 3D printing.Place de marché criminelleUne plateforme en ligne qui met en relation des acheteurs et des vendeurs de biens ou de services illégaux.Place de marché criminelle en ligneUne plateforme numérique utilisée pour échanger des biens ou des services illicites.Plain languageWriting style that favors short, direct, and familiar wording for broad audiences.Plaintext credentialsPasswords, keys, or tokens stored or exposed in readable form rather than protected form.Plaintext StorageData saved on disk without encryption, so it is readable if the file is accessed.Plan de contrôleLa couche administrative qui gère la configuration, les accès et les opérations à l’échelle du serveur.Plan de gestionLa couche administrative utilisée pour configurer et contrôler les systèmes.Plan DriftWhen an AI agent’s actions start to diverge from the task it was meant to perform.Planification de la reprisepréparation visant à restaurer les systèmes, les données et les services après un incident.Planned migrationA staged move from older systems to newer ones with testing and rollback planning.Plasma DesktopKDE’s user-facing desktop environment for Linux and other platforms.Plateau elliptiqueUn plateau avant non circulaire destiné à faire varier le bras de levier pendant le coup de pédale.Plateforme de services numériquesUn modèle de service qui combine des composants technologiques en une offre réutilisable pour les utilisateurs professionnels.Plateforme de virtualisationLogiciel qui exécute plusieurs machines virtuelles, souvent une cible de grande valeur lors d’incidents de ransomware.PlatformA shared technical foundation that multiple teams can use for building and running products or services.Platform ConcentrationA situation where a few providers control key data, ranking, or access channels.Platform contractThe practical promise that hardware, software, and updates will work together safely over time.Platform dependencyreliance on one service whose policy changes can affect business performance.Platform engineeringThe practice of creating internal self-service platforms that give developers standardized, reusable paths for building and shipping software.Platform gatekeeperA provider that can shape access to devices, apps, or services.Platform governancethe rules and controls used to manage content, payments, and account access.Platform longevityhow long a platform remains usable, supported, and attractive to developers and users.Platform mediationThe way a service shapes how people communicate and interpret behavior.Platform policyThe rules a service sets for what users may download, save, or reuse from that service.Platform trustthe confidence users place in an operating system to behave predictably and fairly.Platform updateA core software update that changes how a security product runs, separate from threat-signature updates.Platformizationthe shift from standalone services to interconnected digital systems that mediate a core activity.Play IntegrityAn Android attestation framework that can provide risk signals about app and device trust.Play ProtectAndroid’s built-in service for scanning apps before and after installation to help identify harmful behavior.PlaybookA predefined response sequence that guides analysts through consistent steps during an incident.Player Account Management (PAM)Software used to manage player identities, accounts, and related platform workflows in iGaming.PLCContrôleur logique programmable, un ordinateur industriel qui automatise le comportement des équipements.PLC web serverA browser-based interface on a programmable logic controller used for status, diagnostics, or updates.PLC/CLPUn contrôleur industriel qui automatise des processus physiques dans les environnements OT.PleskA web hosting control panel used to manage servers, websites, and related services.PLMProduct Lifecycle Management software that organizes product data, engineering changes, and related workflows.Pluggable moduleA removable hardware unit designed to fit into a larger machine.PluginA software add-on that extends an application with extra functions.Plugin abuseThe misuse of third-party add-ons or extensions to gain code execution or expand access inside trusted software.Plugin hygieneThe practice of tracking versions, limiting add-ons, and promptly removing or patching risky extensions.plugin JenkinsUn package d’extension qui ajoute des fonctionnalités ou des intégrations à Jenkins, le serveur d’automatisation.Plugin managementThe process of loading, approving, and enabling add-on components inside a platform.PlugX RATA remote access Trojan designed for stealthy control of infected Windows systems.PMIItalian shorthand for small and medium-sized enterprises.PMI (piccole e medie imprese)Italian small and medium-sized enterprises that may face higher barriers in concentrated markets.PMSProperty Management System, the hotel software layer for reservations, billing, housekeeping, and related operations.PMVEA proposed framework combining personalization, multimodality, and a virtual entity for psychological AI support.PNRRItaly’s National Recovery and Resilience Plan, the domestic program linked to EU recovery funding.PNTServices de positionnement, de navigation et de synchronisation qui soutiennent le mouvement, le suivi et les opérations synchronisées.PoCproof of concept, a small test to check whether an idea is viable.PoC codeProof-of-concept code that demonstrates how a vulnerability can be triggered under specific conditions.Pod Security AdmissionKubernetes' built-in mechanism for enforcing Pod Security Standards at namespace scope.PodlingA project in incubation that has not yet become a fully graduated Apache project.Point de passage obligéUn itinéraire de transit étroit dont la perturbation peut affecter le commerce, les flux énergétiques et la logistique bien au-delà de la zone elle-même.Point de présence (POP)Un site réseau régional qui aide à acheminer le trafic avec une latence plus faible.Point de terminaison de gestion des modèlesUne route d’API utilisée pour créer, publier ou traiter des modèles d’IA plutôt que pour répondre aux invites des utilisateurs.point de validation de l’IAUn point de contrôle où la sortie de l’IA est examinée avant d’être utilisée dans les opérations ou dans un travail en contact avec les clients.Point releaseA minor software update that often includes security fixes, bug fixes, or maintenance changes.Point tripleLa température et la pression auxquelles une substance peut exister simultanément sous forme solide, liquide et gazeuse.Point-of-Sale (POS)A system used to process sales transactions and manage in-store payment workflows.Poisoned Pipeline ExecutionAn attack pattern where a build or release pipeline is manipulated to expose secrets or run malicious code.PoisoningThe manipulation of training or operational data so a model learns or behaves incorrectly.PolarizationThe widening of opposing views into sharper, less shared positions.Policy consistencyThe ability to apply the same security rules and monitoring across different systems and network paths.Policy control modelThe structure used to decide what is allowed, restricted, or conditionally permitted in a school setting.Policy defaultsThe standard settings that shape how a platform behaves before customization.Policy diffusionthe spread of successful ideas or practices across institutions and regions.Policy DriftA gap between intended security policy and the real behavior of a system.Policy enforcementAutomated rules that can warn, block, log, or quarantine actions based on the sensitivity of the data involved.Policy Enforcement LayerA runtime control point that can allow, deny, or constrain prompts and tool calls.Policy gapA period when old rules end before new ones fully take effect.Policy settingsConfiguration controls that define how software features behave in a managed environment.Policy-based accessA control method that grants or denies access using rules about identity, context, and risk.Policy-based QoSWindows rules that apply traffic handling settings based on administrator-defined policy.Politique d’usage raisonnableUne règle de forfait qui peut limiter la vitesse ou l’utilisation même lorsque les données sont présentées comme illimitées.Politique de conservationRègles qui déterminent combien de temps un service stocke les données des utilisateurs et quand il les supprime.Politique de divulgation des vulnérabilités (VDP)Une politique écrite qui définit comment les problèmes de sécurité doivent être signalés et pris en charge.Politique des permissionsUn contrôle web qui peut limiter quels cadres ou origines sont autorisés à utiliser des fonctionnalités comme la géolocalisation.Pollution du prototypeUne faille JavaScript où une entrée contrôlée par l’attaquant modifie les prototypes d’objets et influence le comportement ultérieur du programme.Polymorphic MalwareMalicious code that changes its observable form to make detection harder.Polymorphic PhishingPhishing content that changes frequently to avoid easy detection or filtering.Pop tubea flexible tube shape that resembles the corrugated section of a bendy straw.PopTuberthe name of the research project centered on pop tubes.Portabilité des donnéesla capacité de déplacer des informations entre des services ou des systèmes sans friction inutilisable.PortabilityThe ability to move data or services to another provider without unacceptable disruption.Portable monitorA display designed to be moved and used outside a fixed desk setup.Portail accessible depuis InternetUn service web public qui peut devenir un point d’entrée si les contrôles d’accès ou la surveillance sont faibles.Portail basé sur un compteUn site web où les utilisateurs se connectent pour accéder aux commandes, au support ou à des fonctions métier restreintes.Portail clientUn espace de connexion Web où les clients échangent des documents ou accèdent à des dossiers privés.Portail clientUn service web restreint utilisé pour les connexions, les téléchargements ou la gestion de compte.Portail des membresUne zone protégée par connexion utilisée pour les services aux membres, les dossiers et les fonctions administratives.Portail TorUn service anonyme utilisé par certains groupes d’extorsion pour communiquer avec les victimes ou publier des fuites.Portail webUn point d’accès basé sur un navigateur pour des fonctions métier telles que la facturation, les fournisseurs ou les comptes clients.PortainerAn open-source platform for managing containerized environments.PortéeLes systèmes, domaines ou tests qu’un chercheur est explicitement autorisé à évaluer.Portrait renderingThe act of reproducing a face or bust as a drawn image.POSPoint of Sale, the device used to accept card and digital payments.POS systemPoint-of-sale technology used to process transactions and support business operations.POST requestAn HTTP method that sends data to a server, often used in web applications and APIs.Post-authenticationA condition where the attacker must first authenticate before the flaw can be triggered.Post-Compromise ActivityActions taken after initial access, such as enumeration, persistence, lateral movement, or collection.Post-deployment monitoringOngoing checks after release to catch errors, drift, and emerging risk.Post-exfiltrationLa phase suivant le vol de données, lorsque les éléments dérobés sont triés, préparés ou instrumentalisés.Post-ExploitationThe phase after initial access, focused on discovery, persistence, and control.Post-exploitation activitySteps attackers take after initial access, such as privilege escalation, discovery, or lateral movement.Post-exploitation frameworkA toolkit used after access is gained, often combining discovery, collection, and defense-impairment functions.Post-exploitation toolingSoftware used after initial access to maintain control, gather data, or move deeper.Post-install scriptA command that runs after a package is installed and can execute code on the host.Post-quantum cryptographyCryptographic algorithms designed to remain secure against future quantum computer attacks.Post-Quantum Cryptography (PQC)Cryptographic methods designed to stay secure against attacks from future quantum computers.Post-saleEverything that happens after checkout, including delivery, support, and problem resolution.PostgreSQLAn open-source relational database that, in this case, defines the vulnerable deployment path.PostgreSQL extensionAn add-on module that runs inside PostgreSQL and adds features such as cryptography or indexing.PostgreSQL roleA database identity that controls what a user or application can do inside PostgreSQL.postinstall hookAn npm lifecycle script that can run automatically after a package is installed.Posture de configurationL’état de sécurité des paramètres, des valeurs par défaut et des choix de stratégie dans un système.Posture managementContinuous review of settings, permissions, and control state to reduce security drift.Potential energyEnergy stored by an object because of its position or height.Potential vulnerabilityA suspected flaw that still needs validation before it can be treated as confirmed.Potentially fraudulent transactiona payment flagged as suspicious, not proven criminal.Pouvoir des plateformesLa capacité des grands services à façonner l’attention, l’accès et les choix des utilisateurs par la conception et la distribution.POV displayA persistence-of-vision display creates an image by moving light fast enough for the eye to blend it into a continuous picture.PowerThe amount of useful energy a turbine can produce or deliver under operating conditions.Power budgetThe total electrical demand a device must safely supply to its components.Power circuitryThe parts of a device that regulate and distribute electricity to its components.Power qualityThe stability of electrical supply, including voltage, frequency, and waveform characteristics that affect sensitive equipment.Power Usage Effectiveness (PUE)A ratio that compares total facility energy use with the energy used by IT equipment; lower is better.Power-bank safety standardA formal testing framework meant to reduce hazards in portable battery products.Power-up testingA controlled way to apply power while watching for faults or damage.PowerPCA processor family used in older Apple systems and other platforms.PowerShellUn shell d’administration Windows et un langage de script que les attaquants détournent souvent pour exécuter des charges utiles en plusieurs étapes.PowerShell.exeA Windows scripting and automation environment often targeted for payload staging and command execution.Pre-authenticationA condition where an action happens before login or access checks complete.Pre-authentication RCEA remote code execution flaw that can be abused before a user logs in.Pre-authentication remote code executionCode execution that can occur before a user successfully logs in.Pre-boot authenticationA security step, such as a PIN, required before a device unlocks its encrypted drive.Pre-compromised accessUnauthorized access or credentials obtained before an attack is launched, often used to speed extortion.Pre-encryption ActivitySteps taken before ransomware deployment, such as credential abuse, staging files, or moving data outward.Pre-encryption stagingCollecting and packaging files before encryption or theft.Pre-tool hookA check that runs before a tool action is executed, allowing software to warn or block risky operations early.Preboot authenticationAn extra unlock step before Windows decrypts the system drive, such as a PIN or startup key.PrecessionThe gradual change in the direction of the pendulum’s swing plane over time.PrecisionThe ability to make very exact movements, measurements, or cuts.Predictabilitythe degree to which a process follows clear and reliable timelines.Prediction marketA market where participants bet on the outcome of future events.Predictive maintenanceA maintenance strategy that uses operational data to anticipate equipment failure and schedule intervention earlier.Predictive medicineThe use of data and analytics to estimate risk, response, or likely outcomes before they occur.Predictive modelA data-driven tool used to identify patterns and forecast which people or behaviors may perform well in a role.PreemptionA legal rule in which federal law can override or limit state law in a specific policy area.Preinstall scriptnpm code that runs before a package is installed, making it a high-risk execution point.Preinstalled appsoftware shipped on a device before the user turns it on.Premium EditionA higher-priced version that may include extra access or content.Premium serviceThe paid version of a product, often associated with extra features or support.Premium SMSA special-rate text messaging service that can generate charges on a mobile bill.Prepaid balanceThe amount loaded onto a card and available for spending.Prepaid cardA payment card funded in advance rather than linked to a standard bank balance.Prepared StatementsA safer database pattern that separates code from input and helps prevent SQL injection.PreprintA research paper shared before formal peer review and final publication.Presentation attackAn attempt to fool a biometric system by presenting a fake or altered sample, such as an image or replay.Presentation attack detection (PAD)Security controls designed to spot spoofing attempts before a biometric system accepts them.PreservationThe practice of keeping technology usable, understandable, and accessible over time.Préservation des journauxSauvegarde des enregistrements d’authentification, d’accès et système afin que les enquêteurs puissent reconstituer ce qui s’est passé.Préservation des preuvesLe processus consistant à conserver intacts les journaux, images et artefacts afin que les enquêteurs puissent reconstituer les événements.President’s Cup cybersecurity competitionA federal cyber challenge program used to recognize and test technical skill.Press publishers rightan EU related right that gives press publishers control over certain online uses of their publications, subject to statutory exceptions and national implementation.Pression d’extorsionMessage coercitif destiné à pousser une cible à payer, à répondre ou à reconnaître publiquement un incident.Pression de fuiteUne tactique qui utilise la menace de publication pour forcer le paiement ou la conformité.Presumption of innocenceThe principle that a person is considered innocent until proven otherwise.Preuve de conceptUne démonstration construite pour montrer qu’une technique est possible, plutôt qu’un outil d’attaque réel confirmé.Preuve de concept (PoC)Code de démonstration ou étapes montrant qu'une vulnérabilité peut être exploitée en pratique.Preuve de concept (PoC)Une démonstration d’exploitation utilisée pour montrer qu’une vulnérabilité peut être exploitée en pratique.Preuve médico-légaleJournaux, alertes et artefacts utilisés pour confirmer si un incident de sécurité s’est réellement produit.Prevailing wageThe wage floor employers must meet or exceed for a given occupation and location under H-1B rules.Prevention controlsSecurity layers meant to block threats before they spread or cause damage.Prévention de la perte de données (DLP)Contrôles qui détectent et restreignent les données sensibles afin d’éviter qu’elles soient partagées ou traitées de manière dangereuse.Preventive designshaping decisions to reduce problems before they appear.PreviewAn early release phase used to test features before wider deployment.Preview releaseA limited, pre-general-availability version used for testing, feedback, and staged rollout.Preview updateAn optional release used for early validation before broader monthly servicing reaches most devices.Price actionthe direct movement of price over time, viewed without relying on formulas first.Price discoverythe process by which a market settles on a value for an item.PrimaryPasswordSettingThe Edge policy control associated with the deprecated browser password-protection feature.Principal bindingA control that ties each action to the authenticated and authorized user.Printed circuit boardA board that electrically connects and supports components in electronic devices.Printed circuit board (PCB)A board that mechanically supports and electrically connects components.Printer instructionsThe layer-by-layer commands that tell a 3D printer how to build an object.Prioritizationthe process of deciding which assets or tasks need attention first.Prisma AccessPalo Alto Networks’ cloud-delivered security service for remote and branch access.PrivacyThe degree to which user identity, balances, and transaction details are protected from unnecessary exposure.Privacy boundaryThe line between personal information that should remain private and what becomes visible.Privacy by designA principle that requires privacy safeguards to be built into a system from the start.Privacy complaint processA review path used to request action on content that may violate personal privacy or identity rights.Privacy controlsSafeguards that limit access, sharing, retention, and misuse of personal data.Privacy DisclosureA notice that explains what data or device behavior an app collects, shares, or relies on.Privacy governanceThe policies and controls used to manage personal information responsibly across systems and teams.Privacy impact assessmentA structured review of privacy risks and controls before sensitive data is shared or processed.Privacy noticeThe disclosure that explains how an organization collects, uses, and shares data.Privacy PassA privacy-preserving authorization approach that can verify entitlement without tightly linking identity and usage.Privacy settingsaccount controls that limit who can contact, view, or interact with a user.Privacy toolsfeatures that reduce tracking, data exposure, or unwanted sharing.Privacy-by-designBuilding data protection into a system from the start, rather than adding it later.Privacy-enhancing technologiesMethods that reduce exposure of sensitive data during processing, sharing, or analysis.Privacy-preserving biometricsA design approach that aims to minimize exposure of biometric data during verification.Privacy-preserving securityProtection that aims to improve safety without collecting more data than necessary.Private AIAI workloads run on dedicated or tightly governed infrastructure instead of a shared public platform.Private artifactA build output intended to be accessible only to authenticated users or systems.Private browsingA browser mode designed to reduce local storage of history, cookies, and session data.Private cloudCloud infrastructure operated for a single organization, often used when tighter control is needed.Private Cloud ComputeApple’s cloud layer for handling more demanding AI requests while limiting data exposure.Private KeyThe secret half of a cryptographic pair used to prove identity and sign or decrypt data.Private messagingOne-to-one or group chat channels that can carry links outside public moderation.Private powerinfluence exercised by non-state actors that can affect public life at scale.Private repositoryA code repository restricted to approved users and groups rather than open public access.PrivilègeProtection juridique des communications confidentielles entre avocat et client ainsi que des éléments de dossier connexes.Privilege AbuseMisuse of elevated accounts or permissions to expand access inside a network.Privilege boundariesThe limits that separate ordinary application access from more powerful database or system rights.Privilege changesEvents where a user or account gains or loses access rights, often important in incident detection.Privilege levelThe level of access a user account has; low-privilege accounts can still matter if a bug is reachable after login.Privilege loggingRecording actions taken by admins or third parties so unusual access can be detected and reviewed later.privilege managementThe rules a system uses to decide which users or processes may perform sensitive actions.Privilege minimizationLimiting users to the smallest level of access needed for their job or mission.Privilege separationDividing software into parts with different permissions to limit damage from a flaw.Privilege-bearing assistantAn AI tool that can access sensitive data or actions on behalf of a user, making its trust boundaries critical.Privileged access clientSoftware used to reach sensitive systems, databases, servers, or administrative controls.Privileged access managementControls that limit and monitor powerful administrative accounts.Privileged Access Management (PAM)Controls that restrict, monitor, and limit elevated account usage.Privileged account abuseMisuse of high-access credentials to move, collect, or delete sensitive information.Privileged codeSoftware, such as drivers, that runs with elevated access and can strongly affect system behavior.Privileged communicationsSensitive client or internal messages that can create outsized risk if accessed or exposed.Privileged informationNon-public data or access rights that carry added sensitivity because of their strategic or operational value.Privileged sessionA login session with elevated administrative rights that attackers often target.Privileged workflowA process that can change sensitive account settings and therefore needs strict access control.Privilèges SYSTEMLe niveau de privilège local commun le plus élevé sur les services et processus système Windows.Pro-codeA code-first approach that gives developers deeper control over behavior and integrations.Probabilistic AIA model that can produce different outputs from similar inputs because it learns patterns rather than fixed rules.Probative seizureThe seizure of an item for evidentiary use in a criminal investigation.Problematic social media useRepetitive, hard-to-control platform use associated with negative outcomes.Procedimento unico autorizzativoA single administrative process used to streamline approval steps for a project.Procedural dismissalA case ending based on legal process rather than a ruling on the underlying claims.ProcedureThe specific way an attacker carried out a technique in a real incident or operation.Procédure du fabricantLa méthode de service approuvée conçue pour maintenir les réparations critiques pour la sécurité dans les spécifications.Process compromiseA situation where an attacker controls a running service and can act with its permissions.Process controlThe procedures that keep a system observable, reviewable, and within approved limits.Process hollowingA technique that replaces the memory of a suspended legitimate process with malicious code.Process injectionA technique that places code into another running process to influence what it does.Process IntelligenceA decision-support layer that combines workflow evidence, analytics, and context to help interpret operational processes.Process MiningA technique that analyzes event data to reconstruct how a process actually runs across systems.Process TelemetryRecords that describe how a program started and what it spawned, often including parent-child relationships and identifiers.Process TrustThe security risk created when staff rely on workflow habits instead of strong identity verification.Process VariantA common path or pattern observed in how a process is executed.Process-based assessmentGrading that focuses on drafts, revisions, and reasoning, not only the final answer.Processi operativithe day-to-day workflows that keep a business running.ProcessingAny operation on personal data, including disclosure, dissemination, and publication.Processing improvementsChanges that can make software work more smoothly, quickly, or reliably.ProcessorA third party that handles data on behalf of a controller under a binding agreement.Processor architectureThe internal structure that defines how a CPU executes instructions.ProcurementThe public buying process used to define service terms, duration, and obligations.Procurement controlA buying requirement that ties vendor selection to security, compliance, or jurisdiction rules.Product lifecycle managementThe process of retiring, replacing, and supporting software features over time.Product managementA discipline that defines priorities, aligns requirements, and guides a product’s direction over time.Product tierA version of a service that groups features, limits, and pricing into a specific plan.Product-as-a-serviceA model where access and maintenance matter more than one-time ownership, increasing the value of lifecycle data.Product-market fitThe stage where a product matches a real customer need well enough to support sustained adoption.ProductCERTA vendor security response team that validates vulnerabilities and publishes remediation guidance for products and services.Production AIAI systems running in live business operations rather than in a test or pilot environment.Production boundarythe line separating live operational systems from development, testing, and training environments.Production configLive system settings that may contain endpoints, tokens, credentials, or other sensitive values.Production environmentA live system used by real users, where outages or incompatibilities can have immediate impact.Production-readysuitable for real-world operation with acceptable reliability and support.Products with digital elementsHardware or software products that include digital functionality and may fall under the CRA depending on scope.Professional autonomyThe ability of workers to use judgment without excessive external control.Professional networka group of practitioners who share methods, tools, and experience.Profil humanitésUn candidat dont la formation est ancrée dans des domaines tels que la philosophie, la littérature, la linguistique ou l’histoire.Profilea predefined configuration that changes system behavior.Profile lifecyclethe set of operations that manage an eSIM profile from download through activation, suspension, and deletion.Profile ScoringAn automated method for estimating traits such as willingness to pay or coupon sensitivity from observed data.ProgrammabilityThe ability to embed automated rules or conditions into payments or money.Programmatic UseAI access through code, APIs, or scripts rather than through a person typing in a chat window.Programme d'installation trojaniséUn programme d'installation légitime en apparence qui a été modifié pour contenir du code malveillant.Programme de vérificationUn processus d’accès contrôlé utilisé pour décider qui peut participer à une capacité ou un service restreint.Programme de vérification cyberUn parcours de validation pour des travaux de cybersécurité à double usage légitimes avec des systèmes d’IA.Programmed scarcityA protocol-based supply limit enforced by design.Progressive consentconsent gathered in stages as a project develops or new uses emerge.Progressive enhancementA design pattern that delivers a basic experience first and adds richer features only when the browser supports them.Project GlasswingAnthropic’s defensive program centered on helping secure critical software with partner organizations.Project-management governance forumA meeting designed to track execution details; the board is usually broader in scope than this.Projected service-account tokenA short-lived Kubernetes token delivered to workloads in a safer, rotating form.ProjectificationThe shift toward organizing work through temporary, goal-focused teams instead of fixed departmental structures.Proliferation financingUsing funds or financial services to acquire, develop, or otherwise deal in weapons of mass destruction.Prologa logic programming language that works by matching facts and rules against queries.Promo codeA short code entered at checkout to unlock a discount or special offer.Promptthe instruction or question a user sends to an AI system.Prompt bombingRepeated authentication prompts sent to a user in hopes of triggering an accidental approval.Prompt CachingReusing repeated prompt content to reduce repeated processing and lower token consumption.Prompt classifierA filter that examines user input and flags risky or restricted requests before a model answers.Prompt contextThe instructions and background information an AI uses to generate replies.Prompt leakageSensitive data exposed through text entered into an AI chat interface.Prompt ManipulationAn attack or abuse pattern that alters AI inputs to influence model behavior or outputs.Prompt optimizationA workflow that rewrites prompts to improve model output quality, consistency, or efficiency.Prompt regression testA repeatable check used to confirm that a model still behaves as expected after an update.Prompt spoofingA deception technique that makes a fake credential request look legitimate to the user.Prompt-to-deploymentA workflow where a text prompt can produce code and a runnable website quickly.Proof of conceptA small test that checks whether an idea can work before wider deployment.Proof of possessionEvidence, such as sample files, used to show an attacker claims access to stolen data.Proof-of-access materialSample files or artifacts meant to show that an attacker reached internal data.Proof-of-concept (PoC) exploitDemonstration code that shows a vulnerability can be triggered, often before broad weaponization.Proof-of-concept exploitDemonstration code showing that a vulnerability can be abused in practice.Propaganda automationThe use of scripts or bots to mass-produce and distribute persuasive content.Propaganda networkA coordinated set of accounts, pages, or links used to amplify a message across multiple platforms.PropagationThe spread of a configuration change across distributed servers and caches.ProportionalityA legal principle requiring measures to stay balanced and not go beyond what is necessary.Proprietary componenthardware or software whose internal details are not fully open for inspection or modification.Propriété intellectuelleLa production technique ou créative protégée qui peut être particulièrement sensible dans les projets de recherche financés.Protected health information (PHI)Individually identifiable health data covered by HIPAA when it is handled by regulated entities.Protected serviceA hardened Windows service model that limits interference from untrusted processes.Protected variablesSensitive environment values that are restricted to approved jobs, branches, or runners.Protection bypass windowA brief period when a security control is present but not fully enforcing policy.Protection contre les DDoSMesures défensives conçues pour absorber ou atténuer les inondations de trafic qui tentent de perturber les services.Protection de brancheRègles qui limitent les modifications directes sur les branches importantes et peuvent exiger des vérifications ou des approbations.Protection de l’intégrité du système (SIP)Une protection de macOS qui limite la modification des zones critiques du système.Protection degradationA condition where defensive tools lose effectiveness, visibility, or stability after being attacked or disrupted.Protection des données d’entrepriseLes politiques et contrôles techniques de Microsoft visant à réduire la manière dont Copilot traite les données professionnelles sensibles.Protective DNSA defensive control that blocks access to known malicious domains during DNS lookup.Protective DNS (PDNS)A DNS filtering control that blocks lookups for known malicious or suspicious domains.protobuf.jsA JavaScript and TypeScript implementation of Protocol Buffers used in Node.js and browser environments.Protocol awarenessThe ability of a system to recognize and handle the structure of different network or application traffic.Protocol boundaryThe point where data moves from one communication format to another, often requiring strict validation and encoding.Protocol BuffersA schema-driven format for encoding structured data in a compact binary form.Protocol handlerA Windows component that routes a URI scheme to the app or system feature meant to open it.Protocol multiplexingA design that carries multiple exchanges over one connection, improving efficiency but increasing resource-management complexity.Protocol translatorA device or component that converts one control method or network format into another.Protocole de Bureau à distance (RDP)Un protocole d’accès à distance que les attaquants ciblent souvent lorsque les organisations l’exposent sans protections solides.PrototypeAn early version of a product built to test ideas, interactions, and assumptions before full development.Prova documentalewritten or recorded evidence that shows controls, actions, and decisions were actually carried out.ProvenanceL’origine vérifiée et la chaîne de possession d’un fichier, d’une image ou d’une compilation.Provenance attestationMetadata that helps show how a software artifact was built and where it came from.Provenance des artefactsL’origine et l’historique d’un fichier, utilisées pour juger s’il est légitime ou s’il a été modifié.Provenance du pluginL’origine et l’historique d’intégrité d’un plugin, notamment la façon dont il a été construit et distribué.Provenance du téléchargementLa capacité de prouver d’où provient un fichier et si son chemin de livraison était légitime.Provenance metadataInformation attached to content to help show origin, authorship, or modification history.Provenance verificationA control that checks where software came from and whether it matches an approved, trusted source.ProviderThe entity that develops or places an AI system on the market and is responsible for key compliance duties.Provider filteringThe mailbox-side process that evaluates incoming mail before deciding where it should go.Provisional injunctionA temporary court order that preserves the situation until a final ruling is reached.ProvisioningThe process of delivering and activating a mobile profile on a phone.Provisionnement SIM à distance (RSP)Le processus utilisé pour fournir et activer une eSIM à distance.Proximity assumptionThe idea that physical closeness alone is enough to trust an NFC transaction.ProxyAn intermediary server that forwards traffic and can obscure the original source of a connection.Proxy AIAn AI system that acts as a stand-in for a person and performs tasks instead of only generating text.Proxy API KeyA credential used to access and control a proxy service.Proxy authenticationA sign-in check that can be required before a device is allowed to reach external services.Proxy executionA technique where one trusted program is used to launch or stage another action in a way that may evade controls.Proxy protocolA network layer designed to relay traffic between clients and servers through an intermediary.Proxy VariableA measurable stand-in used when the real quality is difficult to observe directly.Proxy WeaponA group or tool used indirectly to support strategic goals while preserving deniability.ProxyNotShellAn Exchange exploit chain associated with CVE-2022-41040 and CVE-2022-41082, often discussed in targeted intrusion contexts.Prusa MK3SA consumer FDM 3D printer model known for hobbyist and desktop fabrication use.Pseudo-random number generatorA deterministic system that produces random-looking output from an initial seed.PseudonymisationUne méthode de protection qui remplace les identifiants directs tout en conservant la possibilité de réidentifier les données grâce à des informations séparées.Pseudonymisationreplacing direct identifiers with pseudonyms to reduce identifiability; in the source, it is cited as an Article 25 privacy-control example.PSExecUn outil d’administration Windows que des attaquants peuvent détourner pour exécuter des commandes à distance.PSIRTProduct Security Incident Response Team, the group that handles vulnerability intake and remediation.PSPPayment service provider, the intermediary that helps move money between users and merchants.PSRAMExternal pseudo-static RAM that expands memory beyond the chip’s built-in capacity.PsybersecurityAn emerging, nonstandard term used in some commentary to describe the psychological side of cyber risk.Psychological safetyA work environment where people can speak up without fear of humiliation or punishment.ptraceA Linux kernel mechanism that lets one process inspect or control another, often used by debuggers.PTY shellA pseudo-terminal session that gives command-line access to the underlying system.PUA detectionSecurity controls that flag potentially unwanted applications, including some miners and bundled installers.Public administrationGovernment bodies that deliver services, process requests, and manage public decisions.Public cloudA shared computing model where a third-party provider delivers on-demand infrastructure and services.Public disclosureThe moment a vulnerability is made widely known and searchable by defenders and attackers alike.Public incentiveA state-backed benefit or funding measure tied to specific eligibility rules.Public IP addressAn internet-routable address that can make a cloud machine reachable from outside its network.Public Key Infrastructure (PKI)The framework that manages certificates, keys, and trust for authenticated communications.Public oversightRegulatory supervision by authorities that can review, question, or enforce compliance duties.Public platformA shared digital service supported or run by public institutions.Public repositoryAn online code-hosting location that is openly accessible to users.Public service announcementAn official notice intended to warn the public about a security risk or safety issue.Public Service Announcement (PSA)An official notice used to warn the public about a current security or safety issue.Public shamingA pressure tactic that uses naming and disclosure threats to coerce payment or concessions.Public Test Realm (PTR)A test environment where software changes are evaluated before possible release to all users.Public valueThe measurable benefit a public service creates for citizens, including trust, accessibility, transparency, and accountability.Public-facing application exploitationabuse of exposed web apps, portals, or services to gain initial access.Public-facing systeman internet-exposed service such as a website, portal, or API.Public-facing web domainThe internet-facing site users reach first, often the easiest layer to target or impersonate.Public-Key CryptographyEncryption and signature systems that use paired public and private keys.Public-key infrastructureThe system used to issue, manage, and verify digital certificates and keys.Public-sector workflowA government or institutional process that usually requires tighter approval, accountability, and data handling controls.Publication de type fuiteUn message d’extorsion qui nomme une cible et peut menacer de divulguer des données.Publication de victimeUne liste publique d’extorsion utilisée pour désigner une cible et exercer une pression.Publication sur un site de fuiteun avis d’extorsion public utilisé pour annoncer des données prétendument volées.Publisher accountThe identity used to distribute software listings through a marketplace or download channel.Publisher toolingThe management systems companies use to set prices, dates, and catalog availability.Publishing workflowThe process used to create, review, and release content to a live website.Pull requestA proposed code change submitted for human review before it is merged.pull_request_targetA GitHub Actions trigger that can be risky if untrusted pull-request content is handled with elevated permissions or secrets.Purchasing powerThe amount of goods or services a unit of money can buy.Pure extractionAn extortion model focused on stealing data and demanding payment without encrypting files.Purple teamUn modèle de sécurité collaboratif où les tests offensifs et l’analyse défensive sont destinés à s’améliorer mutuellement en temps réel.Purpose creepThe gradual reuse of data for broader goals than originally explained.Purpose limitationA governance rule that restricts data use to the specific reason it was collected.Purpose-bound loanCredit tied to buying a specific item or service.Push notificationan alert sent by an app to pull a user back into the service.Push protectionA control that can block commits containing detected secrets before they are published.Push-bombingRepeated multi-factor authentication prompts used to trick a user into approving unauthorized access.Pwn2OwnA hacking competition where researchers demonstrate new vulnerabilities in exchange for prizes.PyInstallerA tool for packaging Python programs into standalone executables.PyPIThe Python Package Index, the main registry for distributing Python packages.PyPI QuarantineA registry control that blocks installation and maintainer edits for suspicious releases pending review.PyRITMicrosoft’s open-source framework for identifying risks in generative AI through red-team style testing.Pyrotechnic hardwareExplosive components used to sever or release critical mechanical connections.PySoxyA small open-source Python SOCKS5 proxy server that can relay network traffic through a host.Python packageA distributable software library for the Python ecosystem, often installed through package repositories.QoSQuality of Service, a network feature used to prioritize or shape traffic.QR codeA scannable code that can direct a user to a website, payment page, or other digital destination.QR code provisioningeSIM activation by scanning a code that carries setup details.QR fraudFraud that uses QR codes as part of a deceptive payment or data-theft flow.QTSQNAP’s operating system for NAS devices, used to manage storage and administration functions.Qualified professionalsStaff with the expertise needed to implement and maintain security duties.Qualitative transformationA change in nature, not just in size or speed, meaning the problem behaves differently in digital settings.Quality of Service (QoS)A network control feature that can prioritize or throttle traffic based on policy.Quality reviewA security and engineering checkpoint used to catch defects before release.Quantum ActA proposed EU policy framework discussed in the article.Quantum computingA computing approach that uses quantum mechanics to process information differently from classical computers.Quantum Key Distribution (QKD)A method for sharing secret keys using quantum properties of signals, usually over specialized hardware.Quantum riskThe future risk that quantum computing could weaken some current cryptography.Quantum simulatorSoftware that models quantum behavior on classical computers for testing and development.Quarantine flagA macOS marker applied to downloaded files that can warn users before they open software from the internet.QubitThe basic unit of quantum information, which can represent more than one state at a time.Querya question posed to a logic system to return answers from defined facts and rules.Query constructionThe process of building a search statement; if untrusted data is mixed into it, injection flaws can occur.Query mediationThe layer that parses, validates, and routes database queries between users and back-end systems.Qui tamA legal mechanism that lets a private party bring an action on behalf of the government under certain statutes.Quick AssistA legitimate Windows remote-support tool that can be abused during help-desk impersonation.QuorumThe minimum node agreement needed for a cluster to keep serving safely.QuotaA fixed usage limit, often measured in credits, requests, or storage.QuTS heroQNAP’s ZFS-based NAS operating system, designed with a focus on data integrity.R-7 rocket familyThe Soviet launch vehicle lineage that provided the booster heritage for Sputnik.R3ADM3.txtA ransom note filename linked to some Gunra-related incidents.R4000-classA MIPS processor family lineage that helps define compatibility targets for some software builds.RaaSShort for ransomware-as-a-service, a model where operators provide tools and affiliates carry out intrusions.Raccomandata A/RRegistered mail with return receipt, often used as a paper reference point for formal notice.Race conditionA bug that appears when the outcome depends on the timing of events.RACFLe Resource Access Control Facility d’IBM, utilisé pour contrôler l’accès sur les systèmes z/OS.RachatLe processus consistant à échanger un jeton contre l’actif ou la valeur qu’il est censé suivre.Rack densityThe amount of power and computing equipment concentrated in a single rack or cabinet.RAEE/WEEEWaste electrical and electronic equipment, the category covering discarded electronics and appliances.RAGRetrieval-augmented generation, a method that combines model output with external knowledge retrieval.Rage baitContent crafted to trigger anger and drive comments, shares, or argument.RAM-onlyA server design that keeps working state in volatile memory and reduces persistence on disk.RAM-only serverA server that stores operational data in volatile memory, reducing persistent traces after reboot or seizure.Randomized rewardan outcome determined by chance instead of a fixed, known result.RandomnessOutput that is difficult to predict and not obviously patterned.Ransom noteA message left by attackers demanding payment and giving instructions.RansomwareLogiciel malveillant ou méthode d’extorsion qui bloque l’accès aux systèmes ou aux données afin d’exiger un paiement.Ransomware affiliateAn operator who helps deploy ransomware for a larger criminal ecosystem and may share in the profits.Ransomware claim feedA monitoring stream that records alleged extortion activity, useful for triage but not proof of compromise.Ransomware en tant que serviceUn modèle criminel dans lequel des opérateurs louent des logiciels malveillants et une infrastructure à des affiliés.Ransomware en tant que service (RaaS)Un modèle criminel dans lequel des opérateurs fournissent des outils de rançongiciel et l’infrastructure aux affiliés en échange d’une part des profits.Ransomware extortionA criminal pressure tactic that uses threats, claims, or leaked material to force a response.Ransomware monitoring platformA service that tracks public victim listings and other extortion artifacts for defenders.Ransomware paymentMoney or other value transferred under extortion pressure, often to restore access or prevent disclosure.Rapid Security ResponseApple’s fast delivery channel for urgent security fixes between normal updates.Rapporto di lavorothe employment relationship that can affect rights and procedural status.Rare-earth elementsA group of metals used in magnets, electronics, and advanced industrial systems.Raspberry Pia low-cost single-board computer often used for DIY, education, and embedded projects.Raspberry Pi ZeroA small Raspberry Pi board often chosen for low-power and space-constrained builds.Raspberry Pi Zero WA compact single-board computer with wireless connectivity, often used in portable DIY builds.RATCheval de Troie d’accès à distance ; logiciel malveillant conçu pour permettre à un opérateur de contrôler un appareil संक्रमित à distance.Ratcheted KeysKeys that change over time so a single compromise has less value for past or future traffic.Rate limitingA control that caps how many requests a client can make in a set period.RatificationThe legal step that makes a treaty binding for a country under its domestic approval process.Raw HTTP RequestA direct request sent to a server or API, bypassing the normal interface.RaycastingA rendering technique that creates a 3D effect by tracing lines through a map.Rayon d’impactLa propagation potentielle de l’impact après une compromission, en particulier à travers des clients ou systèmes connectés.RBACContrôle d’accès basé sur les rôles, un modèle qui limite l’accès en fonction des rôles professionnels de l’utilisateur.RCERemote Code Execution, a severe outcome where an attacker can make a system run commands or code.RcloneUn outil de transfert de fichiers que des attaquants peuvent détourner pour déplacer des données volées vers des services cloud.RCSRich Communication Services, a messaging standard that adds modern chat features to mobile texting.RDFA graph-based standard for representing linked data and subject-predicate-object statements.RDMAAccès direct à la mémoire à distance, une méthode de transfert de données avec une faible charge CPU et une faible latence.RDPRemote Desktop Protocol, souvent utilisé par les administrateurs et parfois détourné par des attaquants pour la prise de contrôle à distance.Re-identificationThe process of linking supposedly protected data back to a person using other available information.Re-victimizationa second wave of harm aimed at someone already affected by a prior crime.ReachabilityWhether a vulnerable code path can actually be triggered in a real deployment.ReActA pattern that combines reasoning steps with external actions, letting a model act as well as respond.Reactive complianceSecurity that responds to obligations after the fact instead of building resilience into operations.Read-act splitA hard separation between information gathering and side-effecting actions such as sending or modifying data.ReadabilityA measure of how easy a text is to read, usually estimated with formulas or language tools.Readiness probeA check that helps decide when a service should receive traffic.Reading literacyThe ability to understand, evaluate, and reflect on text, not just decode words.Reading loopa repeatable pattern of viewing, comparing, and learning from text.Reading PaneAn Outlook feature that previews email content before a separate open action.Real-time biometric matchingLive comparison that happens with little or no delay, which raises the risk of immediate operational action.Real-time expense controlThe ability to monitor spending as transactions happen.Real-world usePerformance measured in operational settings, where workflow, data quality, and patient mix can change results.Reality testingThe ability to distinguish internal thoughts or beliefs from external events and shared reality.Reasoning modelA model optimized for multi-step tasks such as analysis, coding, and complex decision-making.RecallThe ability of an audience to remember a message after seeing or hearing it.RecepimentoThe process of turning an EU directive into national law.Rechargeable cellA battery unit designed to be charged and reused multiple times.Recherche industrielleTravail structuré visant à créer de nouvelles connaissances pour améliorer des produits, des processus ou des services.Recommendation SystemSoftware that filters and ranks items to predict what a user is likely to engage with.ReconciliationThe process of matching records across systems to confirm they agree.ReconnaissanceThe information-gathering phase of an intrusion, used to profile targets and choose tactics.ReconstitutionThe rebuilding of a service after disruption, often with new infrastructure or access routes.ReconstructionSoftware that builds a 3D shape from 2D images.Reconstruction testingBuilding a replica of an artifact to study how it behaves in practice.Reconstruction workflowA process that turns captured images into an approximate model or scene view.Record enumerationRepeated requests that try to discover or pull many objects one by one, often a sign of abusive access.RecoverabilityThe ability to restore systems and services after disruption, usually through tested backups and restoration plans.Recovery CapabilityThe ability to contain an incident and restore control after a security event.Recovery channelThe email, phone, or other route used to regain access to an account.Recovery codeA one-time code used to verify identity during login or account-reset processes.Recovery factorA secondary method, such as a phone number, used to regain access to an account.Recovery FlowThe account restoration process used when a user cannot log in and needs to regain access.Recovery keyA 48-digit code used to unlock a BitLocker-protected drive when normal boot validation fails.Recovery optionsBackup methods used to regain access to an account, such as email or phone-based recovery.Recovery passwordA BitLocker backup credential that can unlock an encrypted drive when normal access fails.Recovery PlaneThe systems, policies, and tools used to bring operations back after disruption.Recovery scama fraud that targets people after an earlier loss by promising help, refunds, or asset recovery.Recovery testingPractice runs that verify whether backups and response steps actually work after an attack.Recovery time objectiveThe maximum acceptable time a service can remain unavailable before serious harm occurs.Recovery TokenA temporary secret used to verify a password reset or account recovery request.Recovery workflowThe sequence of checks and approvals used to return access to an account.Recruiter impersonationA social-engineering tactic in which an attacker poses as a recruiter or hiring manager to gain trust and gather information.Recruitment fraudA fake hiring scheme used to extract data, money, or trust from job seekers.Récupération de compteLe processus utilisé pour retrouver l’accès à un compte en ligne, souvent via une vérification par e-mail.Recurring billingautomated charging on a schedule until a plan is changed or canceled.Recurring income creditRegular incoming salary or fixed monthly deposits used to qualify for an offer.Recurring revenuePredictable income that repeats over time, often a key driver in software valuation.Recursive descent parserA parser that processes input using a chain of function calls.Recursive resolverA DNS server that looks up answers from other servers on behalf of clients.Recursive scanA process that walks through a folder and its subfolders to inspect all reachable files.Recursive scanningSecurity inspection that unpacks archives and checks the contents inside them, including deeper layers.Recursive self-improvementA proposed capability where an AI system can help design or develop a more advanced version of itself.Red teamUn groupe autorisé qui imite le comportement d’un attaquant pour tester la manière dont une organisation réagit.Red teamingAdversarial testing designed to find weaknesses by thinking like an attacker.Red-teamingTests structurés simulant des attaques ou des usages abusifs afin de révéler des faiblesses avant les adversaires réels.RedactionRemoving or masking sensitive information before it is stored, logged, or shown to users.Redditi diversiAn Italian income category used for certain gains that do not fall under standard employment or business income.Redemption flowThe process used to claim or activate a benefit through an official channel.Redemption windowThe limited period in which an offer can be claimed.Redirect URIThe registered destination that receives an authentication response after sign-in.RedisAn in-memory data store often used for caching, queues, and fast application state.RedshiftThe stretching of light to longer wavelengths, often used in astronomy to estimate distance.Redundancyextra capacity or duplicate systems used to reduce single points of failure.Reference criteriaBenchmark rules used to guide a fallback decision when agreement cannot be reached.Reference databaseThe stored set of biometric records used as the comparison target in an identification system.Reference HashA fixed-length string that can serve as an identifier for a post, sample, or record in a system.Reference materialPhotos, measurements, scans, or notes used to guide an accurate replica.Referral chainThe sequence of links and messages that moves users toward a destination service.Referral workflowA law-enforcement process for flagging online content to platforms for review and possible removal.RefinancementL’affectation de ressources supplémentaires à un programme après que son budget initial a été épuisé.Reflection and amplificationA technique that uses spoofed requests to public servers so their replies overwhelm the victim.Reflective code loadingIn-process execution technique where code is loaded into memory without a normal file-based launch path.Reflective LCDA display that uses ambient light to improve visibility and can reduce dependence on a backlight.Refresh tokenA longer-lived credential that can be used to obtain new access tokens without repeating the full login.Refurbishment loopA return-and-reuse process where a depleted product is collected, restored, and reissued.Regional pricingdifferent subscription prices set for different countries or markets.RegistrarThe company that manages a domain registration and its renewal lifecycle.Registrar lockA protection that helps prevent unauthorized domain transfers or changes.RegistrationThe formal step that places an organization into a regulatory or supervisory process.Registration lockA Signal protection that adds a PIN-based barrier to re-registering an account.RegistryAn online service that hosts and distributes software packages for a language ecosystem.Registry pinningA control that forces a package manager to fetch a given package only from a specified registry.Registry suspensionA registry action that disables a domain because of abuse, policy violations, or related controls.Règle de sécurité HIPAAExigences américaines visant à protéger les informations de santé électroniques au moyen de protections administratives, physiques et techniques.Règle YARAUn modèle de détection utilisé par les équipes de sécurité pour identifier des logiciels malveillants ou des fichiers suspects.RegressionA new bug or failure introduced when a code change breaks previously working behavior.Regression testingchecks that a patch does not break existing features or create new defects.Regulated crypto infrastructureSystems and services used for digital assets under formal compliance and oversight requirements.Regulated sectoran industry that must follow strict legal or supervisory rules.Regulation (EU) 2019/796The EU legal act that creates the cyber-sanctions framework.Regulatory ComplianceFollowing the laws, standards, and obligations that apply to a system or organization.Regulatory exposureThe compliance and legal risk that grows when required controls are weak or missing.Regulatory fragmentationdifferences in rules across countries or regions.Regulatory modelThe rule framework used by authorities to shape competition and pricing.Regulatory sandboxA supervised testing environment where new technology can be evaluated before broad deployment.ReinfectionThe return of the same compromise during recovery because attacker access or malicious code was not fully removed.Reinforcement LearningA training method where a model improves by using feedback signals to favor better actions over time.Relational databaseA structured system that stores data in linked tables.RelaunchClosing and reopening a browser so the newly installed update becomes the active version.RelayA server that forwards mail between SMTP systems and adds trace information.Relay attackAn attack that forwards captured authentication material to another service without first cracking it.Relay infrastructureThe server and network path used to pass transaction data between endpoints in real time.Relay resistanceDefensive controls that make forwarded or proxied contactless transactions harder to complete.Relay ToolSoftware used to forward or bridge traffic between systems rather than connect directly.Release healthMicrosoft’s Windows status channel for known issues, rollout information, and mitigation guidance.Release ManagementThe process of staging, testing, and rolling out software versions in an organization.Release windowA scheduled time period set aside for publishing security updates so administrators can prepare.release_agentA cgroups v1 mechanism that can run a command when a cgroup becomes empty.Relecture d’identifiantsLa réutilisation d’identifiants, de jetons ou de cookies volés pour accéder à des comptes sans avoir à saisir à nouveau le mot de passe.Relevant supplierA third party whose services fall inside the compliance scope of a regulated organization.Relevant suppliersExternal providers whose role matters to an organization’s operations or security posture.ReliabilityThe ability of a system to work consistently under different conditions.RemediationThe act of fixing or reducing a security issue after it has been found.Remediation assuranceThe process of proving that a fix was applied correctly and remains effective after deployment.Remediation backlogA growing queue of security fixes that have been identified but not yet implemented.Remediation guidanceRecommended steps for fixing a security issue found during analysis.Remix workflowA process for reusing and transforming existing media into a new version.Remote access abuseMisuse of VPN, RDP, or admin portals to enter a network with valid or stolen credentials.Remote access compromiseUnauthorized use of tools such as VPN, RDP, or SSH to enter a network.Remote access gatewayAn internet-facing system used to connect into an internal network from outside.Remote access hardeningSecurity controls that reduce abuse of remote login paths, including multi-factor authentication and service restriction.Remote access logsRecords showing who connected remotely, when, and from where.Remote Access PathA connection that lets users or admins reach internal systems from outside the local network.Remote access toolingLegitimate admin tools that attackers may abuse after gaining initial access.Remote access trojanMalware that gives an operator remote control over a compromised system.Remote Access VPNA gateway service that lets users connect securely to internal networks from outside locations.Remote admin toolsLegitimate software used to manage computers remotely, but often abused by intruders.Remote administrationTools that let staff manage systems from afar; they are high-value targets if exposed.Remote administration toolLegitimate software that can be abused by attackers to control systems remotely.Remote attackAn attack that can be launched without touching the target in person.Remote biometric identificationAutomated identification of a person by comparing biometric data, such as a face, against a reference database without active participation.Remote Desktop ServicesThe Windows feature set that provides session-based remote access to desktops and applications.Remote desktop services (RDP)A system for remote access that attackers often target when it is poorly protected.Remote DevelopmentA setup where editing happens locally while code or services run on a separate backend.Remote encryptionEncrypting files from a separate session or system rather than by running malware locally on the target.Remote exploitabilityThe ability to attack a system over a network connection without local access.Remote HTML contentWeb content fetched from a server and displayed inside a browser or extension.Remote inspection vehicleA remotely operated platform used to examine underwater assets without sending divers into hazardous conditions.Remote managementTools that let administrators enforce policy, update systems, or lock a device from a distance.Remote management and monitoring (RMM)Software used to administer systems remotely, often a target in ransomware intrusions.Remote management interfaceAn admin-facing service that allows configuration over a network connection.Remote management tool (RMM)Software used to administer systems remotely, and a common target for abuse.Remote management toolingSoftware used to administer systems at a distance, which can become a target if credentials or access controls are weak.Remote Management Tools (RMM)Software used to administer systems remotely, which attackers may abuse if poorly protected.Remote provisioningthe process of delivering and activating a mobile profile over the network instead of inserting a physical card.Remote sessionA connection that lets one person control a device from another location.Remote shareA network-accessible file location that can be targeted for encryption.Remote support toolSoftware used for legitimate IT assistance that can also be abused to access systems discreetly.Remote support/tool abuseMisuse of tools such as Microsoft Teams or Quick Assist to facilitate unauthorized access or social engineering.Remote-access capabilitiesFunctions that let an operator interact with a victim machine after compromise, sometimes with live control.Remote-access compromiseUnauthorized access gained through services such as VPN or RDP.Remote-access pathAn external entry point such as VPN, RDP, Citrix, or remote management tooling that can be targeted if exposed.Remote-access serviceA system such as VPN or RDP that lets users connect from outside the network.Remote-access surfaceThe internet-facing entry point used for VPN or similar access into a network.Remote-access VPNA gateway that lets users connect securely to an internal network from outside.Remote-Management Tool (RMM)Software for administering systems at a distance, which attackers may abuse for persistence and control.Removable mediaPortable storage such as a USB drive that can be connected to a computer and used to move data.Remplissage d’identifiantsAbus automatisé de mots de passe réutilisés, volés lors d’autres fuites de données.Renderingthe process of turning digital data into images on screen.Renewal cyclethe interval when a subscription is charged again or ends.Renewal pricingthe cost charged after an introductory offer ends.Renewal visibilityThe ability for users to clearly see when a plan will renew or charge again.Renseignements sur les menacesÉléments de preuve et analyses utilisés pour comprendre le comportement des attaquants et valider des affirmations.RepairabilityHow straightforward it is to fix a device after it stops working.Reparse pointA filesystem object that triggers special handling, often used for links, mounts, and redirection.Repayment planThe schedule that sets how and when a financed amount is paid back.Repeat incidenta new cyber event affecting the same organization after an earlier one.RepeatabilityThe ability to perform the same task with consistent output each time.Repetitive stress injuriesOveruse-related conditions that can make repetitive hand movements painful or impractical.Replay attackA malicious repeat of a valid request or message to trigger duplicate charges or unauthorized access.Replay protectionControls that prevent a valid payment message or authorization from being reused maliciously.replica-read-onlyA Redis setting that controls whether a replica can accept writes, which affects exposure in this case.Replication layerThe part of a distributed database that copies and applies changes across nodes.Replication subsystemThe part of Redis that synchronizes data between master and replica servers.Réponse aux incidentsLe processus de détection, de confinement, d'enquête et de récupération après un incident cybernétique.ReportingThe structured notification of security events or compliance-relevant issues.RepositoryA version-controlled storage location for code, configuration, and project history.Repository AccessPermission to read or change code stored in a source control system, often a high-value target for attackers.Repository auditReviewing access, changes, and history for suspicious activity.Repository historyThe record of past commits and changes, which can retain sensitive material even after files are edited.Repository permission scopeThe specific repositories or actions an integration is allowed to access.Repository scopingLimiting a tool or test to specific codebases so it cannot wander beyond the intended target.Repository visibilityThe access setting that controls whether a repository is private, internal, or public.Repository-plane compromiseA breach that targets source-control systems, code repositories, or related collaboration tools.RepRapAn open DIY 3D printing movement that helped popularize self-built printer projects.Representational biasA tendency for AI outputs to overuse stereotypes or narrow depictions because the training data or review process was incomplete.RepresentativenessHow well a dataset reflects the real-world conditions an AI system will face.ReprimandA corrective measure that formally records a data protection violation without necessarily imposing a fine.ReproducerSteps or data that reliably trigger a bug so it can be verified and fixed.ReproducibilityThe ability to trigger the same bug again using the same steps and environment.Repurposed hardwareEquipment used in a different role from the one it was originally built for.RepurposingUsing a device for a function other than the one it was originally intended to serve.Reputation signalCustomer feedback that acts as a public indicator of service quality.Reputational riskThe chance that trust, credibility, or confidence will be damaged.Request filteringAn IIS control that blocks suspicious web requests based on rules.Request pathThe part of a URL that identifies the specific resource being requested.Request SmugglingAn attack that abuses differences in how HTTP components interpret request boundaries.request_keyThe Linux mechanism that looks up a key and can call a userspace helper if needed.Request-keyA Linux mechanism that launches helpers when the kernel needs a key-related action performed in userspace.Request-processing pathThe sequence of server-side steps used to receive, inspect, and respond to an HTTP request.request.urlA framework-generated URL object that can be used in application logic.RerankingA filtering step that reorders retrieved sources before the system chooses what to present or absorb.Research centeran institution focused on scientific or technical investigation and development.Research integrityThe standards that keep research honest, transparent, and reliable.Research projecta structured effort to explore an idea or material.Réseau programmableUn réseau qui peut être ajusté via des contrôles logiciels plutôt que par une configuration manuelle uniquement.Reservation systemThe hotel platform that stores booking records and guest details.Reserved areaA logged-in section of a portal used for authenticated administrative actions.Reserved capacityPre-committed infrastructure access bought to improve predictability of service and cost.Reserved DomainA domain like example.com set aside for documentation and testing, not real victims.Reset codeA one-time token or link used to change an account password or recover access.Reset TokenA temporary credential used to verify a password-reset request.Résidence des donnéesRègles ou choix de conception qui maintiennent les données stockées ou traitées dans des juridictions spécifiques.Residential ProxyA proxy network that routes traffic through real household internet connections.Residual riskThe risk that remains after controls or mitigations have been applied.RésilienceLa capacité d’une organisation ou d’un système à supporter une perturbation, à maintenir ses fonctions essentielles et à se rétablir rapidement.Resilience by DesignAn engineering approach that builds in recovery, integrity, and safe failure from the start.Résilience cyberLa capacité d’un système à résister à une perturbation cyber, à s’en remettre et à s’y adapter.Résilience opérationnelleLa capacité à maintenir les systèmes critiques en fonctionnement et à rétablir rapidement leur activité en cas de perturbation.Resilience planA business plan for keeping essential services running and recovering after disruption.Resilience planningPreparing an organization to continue operating and recover after disruption.Resin 3D printingA printing method that uses liquid photopolymer resin cured by light to form detailed parts.Resin vatThe container that holds liquid resin in resin-based 3D printers.ReskillingTraining staff to handle new tasks, tools, or responsibilities.Resolution Advisory (RA)A TCAS instruction to adjust vertical flight path, such as climbing or descending, to reduce collision risk.ResolverThe server that answers DNS lookups by translating domain names into IP addresses.Resource exhaustionA denial-of-service condition where connections, memory, or other limits are consumed until service fails.Resource hijackingUnauthorized use of endpoint CPU, GPU, or other resources for an attacker’s gain.Resource recoveryReusing outputs from a process, such as heat or unused capacity, instead of letting them go to waste.Resource redirectionA feature that lets a remote session use local clipboard, drives, or devices.ResourceQuotaA Kubernetes policy that caps total resource use, such as CPU or memory, within a namespace.Response automationUsing software to speed up detection, triage, or containment during a security event.Response timeHow quickly a company answers questions or complaints from customers.ResponsibilitiesThe assignment of duties and accountability across teams and leadership.Responsible AIA framework for building AI systems that emphasize fairness, transparency, privacy, safety, and accountability.Responsible disclosureA process for privately sharing vulnerability details so vendors can patch before public release.Responsible Scaling PolicyA governance framework that ties AI deployment decisions to safety, security, and capability thresholds.REST APIA web interface that lets software call functions and retrieve data over HTTP.Restart requirementThe need to relaunch software after an update so the patched code is actually loaded.RestorationThe process of bringing old equipment back into working condition through repair and testing.Restore WorkflowThe operational path that imports backup data back into a live system.Restrictive measuresLegal controls such as asset freezes and travel bans.Retail mediaA planning and measurement layer that can include onsite, offsite, and in-store advertising tied to shopping activity.RetentionThe ability of an organization to keep employees over time, especially in hard-to-staff roles.Retention behaviorThe rules that determine how long data stays recoverable after deletion.Retention controlsSettings that define how long customer data is stored before deletion or anonymization.Retention designProduct features that encourage repeated use, such as memory, personalization, and frequent prompts.Retention windowthe period an organization keeps data before deleting it.Retour auditif différéUne condition dans laquelle le fait d’entendre sa propre voix avec un léger retard peut perturber la fluidité de la parole.RetraitLe droit d’un utilisateur de refuser certaines formes de collecte, de vente ou de partage de données personnelles.retrait d’argent aux distributeurs automatiquesLa phase de la fraude au cours de laquelle des données de carte volées sont utilisées pour retirer de l’argent à des distributeurs automatiques.RetrievalThe step in which an AI system gathers candidate documents or passages before forming a response.Retrieval-augmented generationA method that grounds AI output in external knowledge sources to improve relevance.Retrieval-Augmented Generation (RAG)A pattern that lets an AI model fetch external knowledge at inference time.Retrieval-grounded assistantAn AI assistant that pulls answers from external or internal knowledge sources at runtime.Retro computerOlder computing hardware kept active for preservation, education, experimentation, or nostalgia.Retro computingThe practice of using, restoring, or modifying older computers.Retro softwareOlder programs or systems valued for historical or educational interest.Retro techOlder electronics or computing gear kept alive for study, collection, or new projects.Retrocomputingthe practice of recreating or working with older computing environments and systems.Rétrodiffusion optiqueLumière qui se réfléchit ou se diffuse en retour dans une fibre et peut fournir des informations sur la contrainte ou une perturbation.RetrorocketA small rocket used to push a separated stage away from the active vehicle.RetrospectiveA look back at earlier work to judge what still holds true.Retry logicThe rules a system uses to repeat a failed request after a timeout or error.Return on Investment (ROI)A business metric used to compare the value gained from an AI project against its cost.Reusethe ability to build new services, analysis, or products from published data.Réutilisation d’identifiantsLe fait d’utiliser le même mot de passe sur plusieurs services, ce qui peut transformer une seule connexion compromise en prises de contrôle de plusieurs comptes.RevenueIncome earned from sales before considering when cash is actually received.Revenue cannibalizationWhen one sales channel reduces income that might otherwise have come from another channel.Reverse engineeringThe process of examining a device or program to understand how it works when full design details are not available.Reverse ProxyA front-end server that filters, routes, or blocks requests before they reach an origin.Reverse-engineeringThe process of studying hardware or software to understand how it works.Reversible assemblyA joining method designed to be connected and disconnected repeatedly without permanent bonding.Review GateA control point where a human or policy check must approve changes before they are merged or released.RévocationLe processus d’annulation d’un accès ou d’une autorisation précédemment accordé(e).Révocation de certificatL’acte de marquer un certificat comme invalide avant sa date d’expiration normale.Revocation handlingThe process of invalidating credentials or proofs that should no longer be accepted.Revocation latencyThe delay between disabling a credential and every system actually rejecting it.Revue humaineApprobation éditoriale par une personne avant la publication publique du contenu.Reward pipelineA controlled flow that delivers perks, credits, or discounts to eligible users.Rewards systemA browser feature that ties ads, incentives, or creator support into the browsing experience.Rewrite moduleThe NGINX component that changes request paths, applies redirects, and handles conditional routing logic.Rewrite ruleA server instruction that changes how incoming web requests are matched or transformed.RF hashAn incident-tracking identifier used to label a specific record or claim.RF tokenA platform identifier that may be used for tracking or deduplication, but whose exact function is not always disclosed.RFCIdentifiant fiscal mexicain utilisé pour enregistrer les particuliers et les entreprises dans le système fiscal.RGPDLa loi de l’Union européenne sur la protection des données pour le traitement des données personnelles et les droits à la vie privée.RHELRed Hat Enterprise Linux, a commercial Linux platform widely used in enterprise servers.RibbonThe command area at the top of Office apps where users find tools, tabs, and feature controls.Ride-by-wireCommande électronique de l’accélérateur, remplaçant une liaison mécanique directe.Right Ctrlthe right-side Control key, commonly used as a standard modifier.RightsizingAdjusting cloud resources to better match workload demands and reduce waste.Rigid airshipA lighter-than-air craft with an internal frame that preserves its shape.RigiditéLa résistance d’un matériau à la flexion ou à la déformation sous charge, ce qui influe sur sa capacité à soutenir le matériel.RISCReduced Instruction Set Computing, a design approach centered on a small set of efficient instructions.RISE with SAPA SAP transformation offering linked to modernization of enterprise systems and processes.Riserve fossiliUnderground oil, gas, and coal resources that remain economically and politically important.Rising StarsA growth-focused category for ecosystems gaining momentum quickly.RiskThe possibility that a decision or change may affect business objectives or resilience.Risk analysisA structured review of likely threats, weaknesses, and controls to reduce security and privacy exposure.Risk appetiteThe amount of risk leadership is willing to accept while pursuing business goals.Risk assessmentThe process of identifying, weighing, and prioritizing cyber risks for decision-making.Risk communicationThe practice of sharing timely, accurate information during an emergency to support safe decisions.Risk disclosureThe structured sharing of known risks, unknowns, and impacts so leaders can decide quickly.Risk engineeringA structured approach to identifying, measuring, and prioritizing security risk.Risk managementThe process of identifying, assessing, and reducing the chance that a system will cause harm or errors.Risk ownershipThe assignment of responsibility for identifying, approving, and managing business or security risk.Risk perceptionhow decision-makers judge the likelihood and impact of a threat.Risk posturethe overall level of exposure created by a organization's security controls and habits.Risk quantificationThe process of turning security exposure into measurable financial or operational estimates.Risk reductionMeasures intended to lower the likelihood or impact of a harmful event.Risk RegisterA tracked list of risks, their impact, likelihood, and treatment options for leadership review.Risk scoringA method for ranking access or alerts by likelihood and potential impact.Risk self-assessmentA structured review of threats, weaknesses, and mitigation measures.Risk transferShifting part of a financial risk from one party to another, usually through insurance.Risk triageThe process of prioritizing vulnerabilities based on severity, exposure, and business impact.Risk zoneENISA appears to use this term to describe a mismatch between sector criticality and cyber maturity.Risk-based cybersecurityA control model that prioritizes defenses according to likely impact and likelihood of harm.Risk-based prioritizationSorting vulnerabilities by practical exposure, not just by severity score.Risk-based regulationA framework that applies stricter controls to higher-risk technology uses.Risk-Based RemediationPrioritizing fixes by operational context and impact, not by severity scores alone.Risque de concentrationLe danger de trop dépendre d’un seul fournisseur, d’une seule plateforme ou d’une seule dépendance.Risque de la chaîne d'approvisionnementLa probabilité que des fournisseurs, partenaires ou sous-traitants liés deviennent une voie d’exposition cyber.Risque du cycle de vieL’idée que le risque lié à l’IA doit être géré tout au long de la conception, du déploiement, de l’utilisation et de l’examen.Risque interneLa possibilité qu’un accès autorisé au sein d’une organisation soit détourné ou utilisé au-delà de ce qui est prévu.Risque lié à la chaîne d'approvisionnementExposition de sécurité qui se propage via les fournisseurs, partenaires et les flux de travail de fabrication en aval.RLHFReinforcement learning from human feedback, where people rank or score model outputs to shape behavior.RMMRemote monitoring and management software used by administrators, but sometimes abused for covert access.RMM (Remote Management and Monitoring)Software used to administer systems remotely, often scrutinized during ransomware investigations.RMM softwareRemote Monitoring and Management tools used by administrators, and sometimes abused to blend in with normal operations.RMM toolRemote monitoring and management software used by administrators, and sometimes abused by attackers.RMM toolsRemote monitoring and management software that administrators use, but attackers may abuse for access.ROADtoolsAn open-source toolkit for automating Entra ID authentication and token-related workflows.RoamingUsing mobile service outside the home network or country, sometimes with extra charges.Roaming profileA Windows user profile stored on a network share and synchronized across logons.robots.txtA website file that instructs search bots which paths they may crawl.RobustnessThe ability of an AI system to remain reliable under stress, unexpected conditions, or hostile inputs.RoCEv2RDMA sur Ethernet convergé, version 2, un transport basé sur Ethernet utilisé dans les clusters haute performance.Rocket.ChatA configurable communications platform that supports access controls, encryption, and retention settings.ROIRetour sur investissement, une mesure permettant de savoir si une technologie apporte une valeur proportionnelle à son coût.ROI (Return on Investment)A business measure used to compare the value of a security program against its cost.ROI metricsMeasures that show whether a technology investment is delivering business value.Role InheritanceA configuration feature where one role receives permissions or filters from another role.Role separationlimiting each user to the functions they need, rather than full control.Role-Based AccessA control model that assigns permissions according to job function rather than giving everyone the same access.Role-based access controlA permission model that limits actions based on assigned roles.Role-Based Access Control (RBAC)A security model that limits actions based on user roles and permissions.Role-Scoped AccessPermission design that limits what each user can see or do based on their role.RollbackA recovery action that restores data or system state to an earlier point after an error or failure.Rollback disciplineThe ability to undo changes safely when a build, test, or deployment does not meet requirements.Rollback logicCode that reverts changes after a failed operation to keep system state consistent.Rollback pathcode that reverses a partially completed operation, a common place for security bugs when cleanup logic is incorrect.Rollback planA documented way to undo a change if a patch causes problems.Rolloutthe staged delivery of an update to devices over time.Rollout timingThe schedule used to publish or activate content updates.Romance scamA trust-based lure that uses fake affection to influence a target.RootThe highest-privilege account on Unix-like systems, with broad control over the host.Root accessThe highest level of privilege on many Unix-like systems, with broad control over the host.Root causethe underlying reason a problem happened, not just the visible symptom.Root code executionThe ability to run arbitrary commands with the highest operating-system privileges.Root executionCommand execution with the highest local privileges on a system.Root privilegeThe highest level of access on Linux-like systems, with broad system control.Root privilege escalationA path to obtain the highest level of administrative control on a system.Root PrivilegesThe highest level of system permissions on a Unix-like operating system.Root-Level Command ExecutionThe ability to run commands with the highest system privileges on a host.RootkitLogiciel malveillant conçu pour se dissimuler et maintenir l’accès en interférant avec le comportement du système d’exploitation.Rootless containersContainers that run without full root privileges, reducing the blast radius if something goes wrong.Rootless modeA Docker mode that runs the daemon and containers without root, reducing privilege and blast radius.ROS 2A robotics middleware framework used to connect sensors, control logic, and distributed components.Rotary controllerA dial or knob used to select, scroll, or adjust settings.Rotation des identifiantsRemplacement de clés, de jetons ou de mots de passe après une possible fenêtre d’exposition.Rotation des jetonsRemplacement des jetons d’accès ou des identifiants existants afin de réduire la valeur de secrets potentiellement exposés.Rotation des privilègesLa pratique consistant à modifier les mots de passe, clés et jetons de grande valeur après un incident de sécurité suspecté.RoundupA curated post that gathers several updates, links, or highlights in one place.Routage multipathAcheminement du trafic sur plusieurs chemins réseau afin d’améliorer la résilience et la répartition de charge.Route diversityThe use of separate cable paths so one disruption is less likely to affect all traffic.RouterA network device that forwards traffic between networks and helps control how data moves across telecom systems.Router-based VPNA VPN configured on the home router so connected devices can share one protected network path.Routeur grand publicUn appareil réseau domestique ou de petit bureau qui connecte les appareils locaux à Internet et se situe à la périphérie du réseau.Routine taskA repeated action that benefits from low-friction design.Royaltypayment distributed to rights holders based on usage or licensing rules.Royalty poolThe revenue base from which streaming payments are distributed to rights holders.RPCRemote Procedure Call, a Windows mechanism for remote communication between services and systems.RPORecovery Point Objective ; la quantité maximale de données pouvant être perdue, mesurée dans le temps avant un incident.RPO (Recovery Point Objective)The maximum amount of data loss a system can tolerate after an outage.RRFRecovery and Resilience Facility, the EU instrument that funds reforms and investments under strict deadlines.RSSA web syndication format that distributes updates such as headlines, posts, or notices in XML form.RTDThe Italian public-sector role that coordinates digital transformation and process modernization.RTOObjectif de temps de rétablissement ; le délai maximal acceptable pour restaurer un service après une interruption.RTO (Recovery Time Objective)The maximum time a service can remain unavailable before recovery becomes unacceptable.Rule-driven systemsoftware that determines outcomes by applying explicit conditions and logic.RunbookA documented procedure that tells analysts how to handle a specific alert or incident type.RunoutSmall unwanted wobble or deviation as a rotating tool spins.RuntimeL’environnement logiciel qui exécute du code, comme PHP sur un serveur web.Runtime analysisExamination of malware while it executes, often used to reveal hidden behavior and decrypted data.Runtime compensating controlA live security measure that reduces risk before a permanent patch is deployed.Runtime intelligenceSecurity visibility gathered while a system is operating, not just during testing.Runtime isolationLimiting what a program can access while it is running to reduce possible damage.Runtime monitoringOngoing observation of a live system to detect drift, abuse, or unexpected behavior changes.Runtime PermissionAn operating-system control that grants access to sensitive resources only when requested and approved.Runtime policy enforcementSecurity checks applied while a system is running, not just before deployment.Runtime securityProtection applied while a system is actively processing requests, rather than only during development or after deployment.Runtime standardizationThe practice of aligning teams on the same software runtime to reduce drift and compatibility problems.Runtime telemetryData from process, file, network, and module-load activity observed while software is running.Runtime trust boundaryThe point where a system must verify actions, inputs, or permissions before continuing.Runtime verificationMonitoring software while it runs to check whether its behavior matches expected rules or policy.Runtime visibilityReal-time insight into prompts, outputs, tool actions, and policy decisions.RUNTSthe register used in Italy to organize and recognize Third Sector entities.RunwayThe amount of time a company can keep operating before it needs new funding or another exit.RustUn langage de programmation capable de produire des binaires efficaces et pouvant compliquer l’ingénierie inverse.RxGKThe Linux kernel security path tied to RxRPC GSSAPI support for AFS.RxRPCUn sous-système de protocole réseau Linux pour les appels de procédure à distance, avec AFS comme exemple principal.S/4HANASAP’s modern ERP platform, often requiring staged migration from older systems.S/MIMEAn email security standard used to encrypt and sign messages.S3 bucketAn AWS object-storage container used to store files and data in the cloud.SaaSLogiciel fourni sur Internet, généralement depuis une plateforme cloud partagée.SaaS audit logA record of user and administrator actions inside a cloud application.SaaS footprintThe set of cloud services an organization uses, which can help defenders map its attack surface.SaaS multi-tenantUn service cloud où de nombreux clients partagent la même plateforme tout en conservant des configurations et des données séparées.SAE automation levelsA scale used to describe how much driving task is handled by the system, from no automation to full automation.Safari ProfilesSeparate browser compartments that keep history, cookies, data, and extensions distinct.Safe DLL search orderA Windows behavior that narrows where the system looks for DLLs, reducing hijack risk.Safe harborA legal protection that can shield good-faith security research from prosecution under defined conditions.Safe ModeA restricted project-opening mode that limits risky actions in JetBrains tools.Safe operating rangeThe set of conditions under which a battery is intended to work reliably.Safe reversionA fallback mode that lets an operator continue using alternative navigation or timing methods when GNSS is untrusted.SafeguardsTechnical and legal controls such as scope limits, authorization, logging, and access restrictions that are meant to constrain use.SafetensorsUn format de poids de modèle plus sûr, conçu pour éviter l’exécution de code lors du chargement de fichiers d’apprentissage automatique.Safety classifierAn automated filter that evaluates prompts for risky or dual-use intent before the model responds.Safety ControlsBuilt-in limits meant to reduce harmful, policy-violating, or abusive AI output.Safety Management SystemThe operational framework used to manage safety, procedures, and risk.Safety numberA Signal identity check that helps users spot unexpected contact changes.Salary creditingThe deposit of a paycheck into a bank account, often used as a condition for account benefits.Sales conversationA direct discussion with a prospect about fit, value, or next steps.SalienceThe property of a stimulus that makes it stand out and pull focus.SAM hiveA Windows registry area that stores local account credential material in hashed form.sAMAccountNamea legacy Active Directory username format used for backward-compatible logins.SambaOpen-source software that provides Windows-compatible file and print sharing on Unix-like systems.SameSite cookieA cookie attribute that limits when browsers send cookies in cross-site requests and helps reduce CSRF risk.SameSite=NoneA cookie setting that allows cross-site sending, which must be paired with strong origin and CSRF defenses.SAMLSecurity Assertion Markup Language, an enterprise federation protocol used to exchange authentication data.SAML IDPA SAML Identity Provider that authenticates users and issues identity assertions.Sample return missionA mission designed to collect material and bring it back to Earth.Sample-free leak claimA publication claim that offers no public proof files, often used to intensify extortion pressure.Samplingthe selection of records, cases, or sites used as audit evidence.SanatoriaA remedy that can cure certain formal defects after an error occurs.SanctionsGovernment restrictions on trade, finance, or services used to apply pressure on a country or entity.Sanctions evasionThe movement of restricted goods, software, or technology around legal controls, often through intermediaries.Sanctions regimeA legal framework that restricts activity involving designated people, entities, or support channels.Sandbox analysisSafe detonation of files or URLs in an isolated environment to observe what they do.Sandbox bypassA flaw that weakens or escapes those isolation controls.Sandbox EnvironmentAn isolated testing space used to evaluate behavior without affecting production systems.Sandbox evasionTechniques used to detect or avoid security analysis environments.Sandbox telemetryMalware analysis data collected from controlled environments used to observe suspicious files and behavior.Sandboxed environmentAn isolated test space used to validate code or exploit behavior without touching production systems.SandboxingUne méthode de confinement qui limite ce qu’un programme peut accéder ou modifier.SanitizationThe process of removing or neutralizing unsafe input before it is rendered or processed.SanitizerA runtime checker that helps detect memory corruption and other dangerous programming errors.Sans contactUne méthode de paiement qui utilise une communication sans fil à courte portée pour effectuer une transaction par simple contact.SanzioniLegal restrictions used to pressure states or entities by limiting trade and finance.SAP BTP Cloud FoundrySAP’s cloud runtime for applications and services, including Joule.SAP S/4HANASAP’s ERP platform used for core business operations such as finance, logistics, and planning.SAP_BASISA core technical layer in SAP systems that supports platform functions and release-specific components.SASESecure Access Service Edge, a cloud-delivered model that combines networking and security controls for distributed users and applications.SASLA framework that adds authentication support to network protocols through pluggable mechanisms.SASTStatic Application Security Testing, une méthode automatisée permettant de détecter des problèmes de sécurité dans le code source.Satellite InternetInternet connectivity delivered through satellites, with security dependencies in space, ground, and software layers.Sauvegarde immuableUne sauvegarde qui ne peut pas être modifiée ni supprimée pendant une période définie, ce qui aide à la récupération après une attaque par ransomware.Sauvegardes hors ligneCopies de sauvegarde conservées à l’écart du réseau en production afin que les rançongiciels ne puissent pas facilement les chiffrer ou les supprimer.Save dataStored game progress that can be used to recognize prior play history.Saved passwordsCredentials stored by the browser for autofill and login convenience.SBOMUne nomenclature logicielle, ou une liste structurée des composants et dépendances d’un produit.SBOM (Software Bill of Materials)A machine-readable inventory of software components and dependencies used to track exposure and supply-chain risk.SBOM for AIAn adaptation of SBOM ideas to AI systems, focused on transparency across the AI supply chain.SCASoftware composition analysis, the practice of identifying and tracking third-party and open-source dependencies.SCADALogiciel et matériel de supervision utilisés pour surveiller et contrôler des processus industriels.ScaffoldingA learning method where tools help build understanding step by step.ScalabilityThe ability to move a technology from isolated pilots to broader, repeatable use.ScaleThe size or capacity at which a process operates, which strongly affects performance and practicality.Scale lensA ranking view that favors the largest and most established ecosystems.Scale productionmaking goods in large volumes, often reducing cost and speeding delivery.Scam compoundA controlled environment associated with organized fraud activity and coercive conditions.Scam detectionAutomated screening for suspicious behavior associated with fraud or social engineering.Scanning electron microscopeA microscope that uses a focused electron beam to examine surfaces in fine detail.Scarcitylimited availability that can increase perceived value when demand is high.ScarewareMalicious or deceptive content designed to frighten a user into taking unsafe action.Scenario planningA technique for testing decisions against different future conditions and stress-testing assumptions.Scheduled task persistenceA method of using scheduled jobs to rerun malware or maintain access after reboot.SchedulingThe timing system that controls when content becomes available or expires.SchemaThe definition that tells a parser how to interpret fields and message structure.Schema validationA control that verifies whether API requests and responses match expected structures and values.Schematic symbolThe diagram element that represents a component in the circuit design stage.School leadera principal or administrator who helps shape school strategy and implementation.SCIAA procedural filing used in Italian compliance processes to notify authorities that required conditions have been met.Science Based Targets initiativeA framework that helps organizations align climate targets with scientific emissions pathways.SCIMA standard for automating user provisioning and account lifecycle management across SaaS platforms.Scope 3Emissions tied to a company’s value chain, including upstream and downstream activities.Scope assessmentThe process of determining which systems, accounts, and data sets were touched during an incident.Scope controlThe discipline of limiting project changes so cost, timing, and testing remain manageable.Scope creepThe gradual expansion of project requirements beyond the original plan.Scoped accessLimiting what a tool or agent can read, change, or execute inside a system.Scoped API keyAn access key limited to specific actions, such as publishing or deleting packages.Scoped extractionSelective copying of only relevant data instead of imaging an entire device.Scoped npm packageAn npm package name that uses the @scope/name format to group packages and influence registry routing.Scoped packageA package name namespace in npm that helps separate organizational or private packages from public ones.Scoped permissionsLimits that restrict what a credential or account can do.Scoped StorageAndroid’s storage model that limits how broadly apps can browse shared files.Scoped tokenAn access token limited to specific npm actions, packages, or organizations.Scoring modelthe rules or logic that turn inputs into a rating or rank.Screen controlA capability that lets malware view, capture, or otherwise interact with a victim’s desktop activity.Screen locka device state that blocks casual access to a logged-in session.ScreenConnectLegitimate remote-management software that can be abused if installed without authorization.ScreeningTesting people without symptoms to find disease early, before it becomes harder to treat.Script EditorA built-in macOS app used to create and run scripts, including AppleScript.Script injectionA flaw where untrusted input is treated as executable code.ScrumA sprint-based software framework built around defined events such as planning, review, and retrospective.SD-WANSoftware-defined wide area networking, used to centrally manage distributed network links and policy.SD-WAN ManagerThe centralized platform used to configure, monitor, and coordinate an SD-WAN deployment.SdIThe electronic exchange hub used in Italy’s invoice transmission workflow.SDKA software development kit, usually a packaged set of libraries and tools for using an API or platform.SDLCLe cycle de vie du développement logiciel, de la planification et du codage jusqu’aux tests et à la mise en production.SDRsoftware-defined radio, where radio functions are handled by software.SearchFinding matching words or patterns inside text files or streamed output.Search engine poisoningTactics used to push harmful links higher in search results or discovery layers.Search poisoningmanipulating discovery results so malicious pages appear more credible.Search providerthe service a browser sends search queries to.Search rankingThe logic that orders results and strongly influences what users see first.search-msA Windows Search protocol used by Explorer to launch parameterized search actions.Search-order hijackingAbuse of the order in which software looks for libraries, allowing a rogue DLL to be loaded first.SEC filingA formal disclosure submitted to the U.S. Securities and Exchange Commission.SeccompA Linux security feature that limits which system calls a process can make.Second-channel verificationConfirming a sensitive request through a separate communication path before acting.Secondary raw materialsRecovered materials that can replace some virgin inputs in production.Secondary UseReuse of health data for research, policy, or AI development rather than direct patient care.SecondmentA temporary assignment where an official is placed in another institution while retaining ties to their home body.SecretSensitive data such as API keys, tokens, or passwords used by tools and services.Secret gistsGist content that can contain sensitive material and should be checked during incident response.Secret managementThe controls used to store, deliver, rotate, and audit sensitive credentials.Secret Recovery PhraseThe backup phrase that controls a cryptocurrency wallet and its derived accounts.Secret revocationInvalidating a leaked credential so it can no longer be used.Secret rotationReplacing credentials or tokens so previously exposed ones can no longer be used.Secret sharingA technique that splits a secret into parts so it can only be reconstructed when enough parts are combined.Secret sprawlThe overuse or duplication of sensitive tokens across tools, jobs, and environments.Secret theftUnauthorized access to credentials, tokens, keys, or other sensitive data stored on a system.SecretsSensitive credentials such as tokens, keys, or passwords stored for use in build and deployment workflows.Secrets managementThe practice of storing and controlling passwords, API keys, and other sensitive credentials in a governed system.Secrets maskingA log protection control that tries to redact sensitive values before they are stored or displayed.Section 230A U.S. law that strongly influences platform liability for user-generated content.Secure BackupsAn encrypted backup feature that stores chat history in a form protected by a user-held secret.Secure by defaultA design approach where the safest configuration is enabled unless an operator changes it.Secure by designA development approach that builds security into products and systems from the beginning.Secure deploymentThe controls, logging, and access rules needed to run a security product safely in production.Secure development lifecycle (SDLC)A process that builds security checks into design, coding, testing, and release.Secure E-Mail GatewayA mail-security appliance that handles encrypted or protected email traffic.Secure Email GatewayA device or service that filters, encrypts, decrypts, and routes email traffic.Secure enclaveAn isolated computing environment designed to protect sensitive data and workloads from broader network exposure.Secure mobile gatewayA device or service that brokers authentication and access for mobile traffic.Secure Processing EnvironmentA controlled setup that protects sensitive data during analysis and limits misuse.Secure SDLCUn processus de développement logiciel qui intègre dès le départ les revues, les tests et les vérifications de sécurité.Secure Software Development FrameworkA NIST framework that outlines practices for reducing vulnerabilities across the software lifecycle.Secure Software Development Framework (SSDF)A set of secure development practices designed to reduce software vulnerabilities across the lifecycle.Secure technologiesTools and systems designed with controls that help protect data, identities, and access in daily operations.Secure-by-defaultA design approach that ships with protective settings turned on initially.Secure-by-default configurationA setup that exposes only the necessary services and minimizes unnecessary risk at deployment.Secure-by-DesignA development approach that builds security into products and services from the start.SecureTechA market label for security-focused technology, often spanning cyber, defense, and AI.Sécurité de la chaîne d'approvisionnementMesures de contrôle visant à réduire les risques liés aux fournisseurs, aux dépendances et aux composants logiciels ou matériels en amont.Sécurité de la chaîne d’approvisionnementProtection des dépendances logicielles, des systèmes de compilation et des chemins de publication contre la falsification ou l’abus.Sécurité des APIProtections qui aident à réduire les abus, les accès non autorisés et l’exposition des données dans les interfaces applicatives.Sécurité dès la conceptionIntégrer la protection dans les systèmes dès le départ plutôt que de l’ajouter après le déploiement.Sécurité du cycle de vieProtection d’un système tout au long de sa vie : entraînement, déploiement, mises à jour, surveillance et mise hors service.Sécurité opérationnelle (OPSEC)Pratiques utilisées pour réduire l’exposition, la traçabilité et la détection lors d’activités sensibles.Security AgentEndpoint software managed by a central console to enforce protection and receive updates.Security ApplianceA dedicated system built to enforce security controls such as filtering, encryption, or inspection.Security AwarenessTraining and reinforcement designed to reduce risky user behavior and improve cyber hygiene.Security baselineThe approved minimum configuration and protection posture for a system.Security by DefaultA design approach that ships products with safer settings and fewer risky defaults.Security CheckupAn account review feature that helps users inspect and strengthen login and recovery settings.Security control validationTesting whether defenses such as EDR, SIEM, and filters still work as intended.Security CouncilA high-level government body that advises on national-security coordination and policy.Security cultureThe shared habits and expectations that shape how an organization handles risk.Security educationPractical training that improves judgment and response under pressure.Security feature bypassA vulnerability class where a protection mechanism is circumvented without breaking the underlying encryption or software logic directly.Security governancethe rules and decision structures that shape how cyber risk is managed.Security groupA permission set that controls which functions or data an account can access.Security hardwarePhysical devices designed for technical or defensive use in digital environments.Security infoThe account data used to register and manage verification methods.Security info registrationThe process of enrolling authentication methods used for login and account recovery.Security intelligence updateA refresh of malware detections, heuristics, and related threat data used by security tools.Security maturityThe degree to which an organization has repeatable, visible, and enforceable security practices.Security mechanismA control that helps enforce access rules, authentication, or data protection on a system.Security mindseta habit of questioning trust, access, and assumptions in digital systems.Security NoteSAP’s official document describing a vulnerability and its remediation guidance.Security Operations Center (SOC)The team or function that monitors alerts, investigates threats, and coordinates response.Security Patch DaySAP’s recurring monthly release cycle for security fixes and advisories.Security Patch LevelThe date-based marker that shows which Android fixes are installed on a device.Security requirementsthe protections a buyer expects a product or supplier to meet.Security researchTechnical investigation used to find, test, and explain weaknesses in software or systems.Security standardA baseline requirement used to guide protective practices and measure compliance.Security updateA vendor-issued correction meant to repair a vulnerability or reduce risk.Security Update GuideMicrosoft’s catalog for update details such as affected products, severity, and exploit status.Security-by-designBuilding security controls into a system from the start rather than adding them later.Security/privacyThe controls that protect systems and sensitive information from misuse, exposure, or tampering.SecurityfsA kernel filesystem used to expose security-related control interfaces.Seed phraseA word list used to restore a crypto wallet’s access and regenerate keys.Seedworm (MuddyWater)A threat group associated with Iranian state interests and espionage-style operations.SegmentationSéparation réseau qui limite la distance à laquelle un attaquant peut se déplacer entre les environnements IT et OT.Segmentation IT/OTSéparation entre les réseaux métiers et les systèmes industriels afin de limiter les mouvements latéraux et les répercussions opérationnelles.Segmentation marketingRegroupement d’utilisateurs pour des promotions adaptées en fonction des données du compte ou du comportement.Segmentation par niveaux de place de marchéTarification criminelle qui distingue l’accès exclusif des droits de revente ou de partage plus larges.Segmentation réseauSéparation des systèmes en zones afin de limiter les déplacements latéraux lors d’une attaque.Segnalazionethe act of submitting a report under a defined procedure.Seizure-resistantHarder to remove or disrupt using traditional server- or domain-focused takedown methods.Selective disclosureA privacy technique that shares only the attributes needed for a specific transaction.Selective Forwarding Unit (SFU)A media relay that forwards call traffic without needing to decode the full stream.Selective isolationA containment mode that blocks most traffic while allowing approved services or destinations.Self-custodyA setup where the user, not a third party, controls the wallet’s recovery and keys.Self-custody walletA crypto wallet where the user controls the recovery secret and is responsible for protecting it.Self-declarationAn age check that relies on the user entering their own date of birth.Self-dischargeThe gradual loss of stored charge while a battery sits unused.Self-hosted deploymentSoftware installed and managed on an organization’s own infrastructure instead of a vendor’s cloud.Self-hosted Git serviceA repository platform run on an organization’s own servers instead of by a third party.Self-hosted LLMA large language model run on an organization’s own infrastructure instead of a third-party service.Self-hosted platformSoftware deployed and operated by the organization running it, rather than by a SaaS vendor.Self-hosted systemsSoftware and services run on infrastructure managed by the organization using them, not by a SaaS vendor.Self-hostingRunning software on servers managed directly by the organization instead of relying on a third-party SaaS platform.Self-managed deploymentSoftware run and maintained by the customer on their own infrastructure.Self-managed instanceA deployment that the customer hosts and patches themselves.Self-powered speakerA speaker with built-in amplification, common in desktop audio setups.Self-preferencingWhen a platform gives its own services better placement or visibility than rivals.Self-propagating malwareMalicious code designed to spread across systems without requiring manual copying at every step.Self-propagating wormMalware that can spread from one target to others without manual copying at each step.Self-propagationA malware capability that helps it spread to additional systems after initial compromise.Self-registration applicationA platform that lets people enroll themselves for services or aid, often used in emergency settings.Self-replicationThe ability of malware to copy itself to new systems for further spread.Self-Service Password Reset (SSPR)A user-driven password recovery workflow that can become a social-engineering target.SELinuxA Linux security module that enforces mandatory access controls and can limit exploit paths.Seller vettingChecks used to assess whether merchants are legitimate and low risk before they can operate.Semantic contextThe policy, workflow, and knowledge environment an AI system needs to act correctly.Semantic layerA business-meaning layer that helps systems interpret data relationships, terms, and rules.Semantic modelAn analytics-oriented layer that organizes data structure, relationships, and calculations.Semiconductor supply chainThe network of firms and processes needed to design, manufacture, package, and ship chips.SemiconductorsThe chip technology that powers servers, devices, networks, and AI systems.SemioticsThe study of how meaning is created and understood through signs and representations.Semver rangeA version pattern that can allow automatic updates to newer compatible releases.Sender behaviorPatterns in how mail is sent that can influence how receiving systems judge it.Sender verificationA control that helps confirm a message sender is legitimate before a branded message reaches users.SensingThe capture of environmental or radio-based signals that can be analyzed by software.Sensitive dataInformation that needs stronger protection because misuse could harm privacy or security.Sensitive information disclosureThe unintended exposure of confidential data through outputs, integrations, or workflows.Sensitive personal dataInformation such as health records that needs stronger protection than ordinary personal information.SensorA component that detects a physical quantity and converts it into data.Sensor calibrationThe process of aligning a device so its readings remain accurate in use.Sensor fusionThe process of combining multiple sensor inputs into one operational picture.Sensor readingA value produced by a device that measures a physical condition.SEO PoisoningManipulating search rankings so malicious pages appear more trustworthy or visible.SEPA InstantA euro payment rail for near-real-time transfers between participating banks.Separation of dutiesA control that splits sensitive responsibilities across different people or roles.SéquençageComprendre l’ordre des étapes d’un processus et la manière dont chaque étape mène à la suivante.Sequences of concernGenetic sequences flagged because they may have harmful or dual-use implications.SéquestreUn dispositif de paiement dans lequel des fonds sont retenus jusqu’à ce qu’une transaction soit finalisée.Serial connectionA direct data link used by some devices for low-level communication.SérialisationLe processus consistant à enregistrer des données ou des artefacts de modèle pour un chargement ultérieur ; des formats non sécurisés peuvent introduire des risques de sécurité.Serialization formatThe file structure used to store and reconstruct data, which can become dangerous if it supports unsafe loading behavior.Serialized PHP ObjectA PHP object converted into a storable text form that can be dangerous if later deserialized unsafely.SerializerSoftware that converts objects into stored data and back again; mistakes here often become security bugs.Serious gameA game designed for education, training, or assessment rather than entertainment alone.Server AgentSoftware component that links local infrastructure to a remote-access platform.Server Name Indication (SNI)A TLS field that identifies the hostname a client wants during the handshake.Server-Sent Events (SSE)An HTTP-based streaming transport used by some applications to send ongoing updates from server to client.Server-side code executionA severe outcome where attacker-controlled input leads to code running on the target server.Server-side request forgery (SSRF)A weakness that can trick a server into making requests it should not make.Server-side validationA remote check that can control whether a payload fully activates.Serveur hôte de fichiersUn système accessible depuis Internet utilisé pour stocker ou diffuser des fichiers, pouvant devenir un point de focalisation opérationnelle lors d’incidents.Service accountA machine identity used by applications or automation to access systems without a human user.Service availabilityThe ability of a system to remain reachable and usable for its intended users.Service caché TorUn service hébergé sur le réseau Tor pour dissimuler l’emplacement du serveur et rendre sa découverte plus difficile.Service categorizationThe process of classifying services so responsibilities and priorities are easier to manage.Service continuityThe ability of digital services to keep operating during disruption or heavy attack pressure.Service d’accès à distanceUn outil exposé à Internet qui peut devenir un point d’entrée si des identifiants sont volés ou si les protections sont faibles.service d’assistance privilégiéUn composant d’arrière-plan qui effectue des actions sensibles au nom d’une application moins privilégiée.Service de transfert de fichiersUn système tel que FTP, SFTP ou un outil de transfert géré qui peut devenir une cible de grande valeur pour le vol de données.Service delivery architectureThe way identity, payments, data, and interfaces are organized to deliver a public service end to end.Service exposé à InternetUn système exposé à l’Internet public, tel qu’un site web ou un portail d’accès à distance.Service exposé au publicTout système accessible depuis Internet, comme un site web, un VPN ou un portail d’accès à distance.Service ManagementThe workflows used to handle incidents, requests, changes, and related IT tasks.Service mappingThe practice of linking a business service to the processes and systems that support it.Service meshA layer that manages service-to-service communication, often adding identity, routing, and access-control functions.Service principalA non-user identity used to authenticate a service in cloud environments.Service StopA tactic in which adversaries stop services to hinder recovery or prepare for encryption.Service-account tokenA Kubernetes credential used by workloads to authenticate to the cluster API.Service-oriented modela product design centered on repeated use and ongoing customer interaction.Serviceabilityhow easy a product is to inspect, maintain, or repair.Services à distanceDes voies d’accès administratives, telles que RDP ou VPN, souvent ciblées lors des intrusions.Services distants externesOutils de connexion à distance tels que les VPN ou le RDP, qui peuvent être détournés s'ils sont faiblement protégés.Services gérésAssistance de sécurité fournie par un tiers sous forme de service continu plutôt que comme un produit ponctuel.ServicingThe update and maintenance process used to keep Windows features and components current.Servicing baselineThe current build level an operating system branch uses for updates, fixes, and compatibility planning.Servicing branchThe specific Windows update line or release track used to determine which patches apply.Servicing stackThe Windows update infrastructure responsible for installing and finalizing system updates.Servicing stack updateA maintenance update for the component that installs and manages Windows updates.Servicing Stack Update (SSU)A Windows component update that improves the reliability of installing future updates.Session abuseMisuse of an authenticated browser session to act with the victim’s existing privileges.Session analysisReview of request behavior across a browsing session to spot automation or abuse.Session AuditingThe recording and review of privileged activity during an administrative session.Session consistencyThe degree to which a client’s behavior stays coherent across repeated requests.Session contextThe authenticated browser state that lets a user interact with a web app as themselves.Session cookie theftThe capture of browser session data that can be replayed to impersonate a logged-in user.Session handlingThe process a system uses to track whether a user is logged in and what they can do.Session IdentifierA token a web service uses to recognize an authenticated user across requests.Session integrityThe trust that a host's login and session rules have not been tampered with.Session invalidationThe process of revoking active login tokens so stolen cookies no longer work.Session LifetimeThe time window during which an authenticated user remains logged in before revalidation is required.Session ManagementThe process of creating, tracking, and ending a user’s authenticated web session.Session policyRules applied during an active login session, not just at sign-in.Session replayAn attack where stolen session material is reused to access an account without repeating the full login flow.Session residueLeftover data from a browsing session that can persist unless it is explicitly cleared.Session reuseThe use of an existing authenticated session to access a service without entering a password again.Session revocationThe process of invalidating active logins so stolen session material can no longer be reused.Session stateData that keeps an app activity, login, or workflow in progress.Session theftUnauthorized use of a logged-in session after an attacker obtains access tokens or cookies.SETUIDA Unix permission mode that lets a program run with the privileges of the file owner, often root.SETUID binaryA program that runs with the file owner’s privileges, often root, instead of the launching user’s privileges.Seuil de déclenchementLa condition de collision qu’un système doit détecter avant le déclenchement d’un airbag.Severity assessmentA method for ranking how dangerous a vulnerability may be if it is exploited.Severity HighA classification that signals urgent attention because the flaw could have serious impact.Severity labelA risk rating such as critical or high that helps teams prioritize remediation.Severity metricA way of measuring how harmful an attack is, which may include impact, duration, or recovery cost.Severity ratingA label used to express how much damage a confirmed vulnerability could cause.Severity scaleA vendor scoring system used to rank how urgent or dangerous a vulnerability is.Severity scoreA numeric rating used to express how urgent and dangerous a vulnerability is for defenders.Sextortioncoercion that uses sexual content, or the threat of exposure, to force compliance.SHA-256Une fonction de hachage cryptographique de 256 bits qui produit une sortie hexadécimale de 64 caractères.SHACLA validation language used to check whether graph data matches required shapes and constraints.Shadow adoptionUnapproved or unnoticed use of a tool or feature outside official IT oversight.Shadow ITApplications ou services non approuvés utilisés en dehors de la supervision normale de l’IT ou de la sécurité.Shadow SaaSUnmanaged or unauthorized cloud app use that can bypass normal security oversight.Shadow-copy deletionThe removal of Windows backup snapshots to make recovery harder after an attack.Shadow-copy tamperingDeleting or disabling backup snapshots to make recovery harder.ShadowAttributeA proposal object used to suggest new data or edits in MISP’s review workflow.Shared computer activationAn Office licensing mode meant for shared or non-persistent Windows environments.Shared definitionsAgreed meanings for business terms so different teams interpret data the same way.Shared folderA host directory made available to a VM or container so files can be accessed across the boundary.Shared infrastructureA setup where multiple tenants or services use the same underlying network or delivery resources.Shared libraryA compiled file meant to be loaded at runtime by another program, rather than read as plain source code.Shared linkA web link used to grant other people access to a file or folder, often with optional access controls.Shared mobilityTransport services such as car sharing and scooter sharing that provide short-term access instead of ownership.Shared Operational ContextThe information, state, and task history an AI system can use across a workflow.Shared quotaOne storage limit consumed by multiple services under the same account.Shared responsibilityA model where the vendor and the customer each have security duties for different parts of the environment.Shared responsibility modelThe cloud security split where the provider secures infrastructure and the customer secures configurations and workloads.Shared Runtime ObjectData or state used by multiple workflow components, such as metadata or task communication entries.Shared SecretA phrase or fact known only to trusted parties and used to verify identity.Shared StatePersistent case context that multiple steps or agents can reuse to keep a workflow coherent.Shareholder litigationLegal action by investors that can follow alleged weak oversight, delayed disclosure, or poor controls after a cyber incident.SharePointMicrosoft 365 content and storage service that backs many Teams channel files.Shell ContextInformation from the active command session, such as shell type, history, or environment details.Shell LinkThe Windows file format behind .lnk shortcuts, used to resolve what a shortcut opens.Shell link metadataExtra data stored in a shortcut file that can influence how a target is opened.Shell replacementA modification that changes part of the desktop interface responsible for launching and managing windows.Shell stateThe current working condition of the desktop interface process and its UI components.ShellExecuteA Windows API used to open files or launch programs, which becomes risky if it receives untrusted paths or arguments.Shift-left securityMoving security checks earlier into development and build processes.Short codeA shortened phone number used for services such as messaging, verification, or paid subscriptions.Short-lived credentialsTemporary access tokens that reduce the value of stolen authentication material.Short-throw projectorA projector designed to create a large image from very close range.Shortcut MappingA file or setting that defines command and key bindings used by an application.shortcuts.xmlA Notepad++ file that can store shortcuts, macros, and user-defined commands.Shortwave radioHigh-frequency radio used for long-range transmission under favorable ionospheric conditions.Side channelAn indirect leak created by observing behavior such as timing instead of reading data directly.Side-by-side extensibilityA way to add new capabilities outside the ERP core, reducing the risk of deep modifications.Side-Channel AttackA technique that extracts secrets from timing, power, or other physical leakage.Side-loadingRunning a malicious DLL through a legitimate executable so the process appears more trustworthy.SideloadingInstalling an app from outside the official app store, often increasing risk.Sidereal dayEarth’s rotation period relative to the fixed stars, about 23 hours and 56 minutes.SIEMGestion des informations et des événements de sécurité ; logiciel qui collecte et corrèle les journaux de sécurité.SIGUn système permettant de créer, gérer, analyser et cartographier des données liées à un lieu.Sign-in logA record of authentication activity used to monitor users, apps, and other identities for unusual behavior.SignalA meaningful security indicator that helps distinguish real risk from background noise.Signal correlationThe process of linking related alerts so defenders can identify meaningful attack patterns.Signal decodingThe process of interpreting a transmission into usable information.Signal ProtocolUn cadre cryptographique utilisé pour la messagerie sécurisée, notamment l’échange de clés et le renouvellement des clés de message.Signal-to-noise ratioA measure of how much useful information exists compared with irrelevant or duplicate material.Signature cryptographiqueUne méthode de vérification utilisée pour confirmer que des logiciels ou des mises à jour n’ont pas été modifiés.Signature d’artefactSignature cryptographique des sorties de compilation afin que leur origine et leur intégrité puissent être vérifiées ultérieurement.Signature de codeUne vérification de l’intégrité de l’éditeur qui aide à vérifier l’origine d’un logiciel et si le fichier a été modifié depuis sa signature.Signature de codeUne signature numérique utilisée pour vérifier l’intégrité d’un logiciel ; elle peut être détournée lorsque des binaires de confiance chargent des composants malveillants.Signature de fichierMotifs d’octets utilisés pour identifier le format réel d’un fichier au-delà de son extension.Signature numériqueUn contrôle cryptographique qui aide à vérifier l’authenticité et l’intégrité d’un logiciel avant son installation.Signature verificationThe process of checking whether a package or file was signed by a trusted key and has not been altered.Signature-Based DetectionA defense method that looks for known patterns such as hashes or code strings.Signed binaryAn executable that carries a digital signature meant to confirm its origin and integrity.Signed releaseA software release protected by cryptographic verification so users can check authenticity.Signed updatesPatch files authenticated so the device can verify they came from a trusted source.Signer reputationA trust signal used by platforms and tools to judge whether signed software should be treated cautiously.Significant effectThe threshold used to judge whether a cyber-attack is serious enough for sanctions.Signing keyA cryptographic key used to prove that a package or file came from the expected publisher.SigstoreA framework for signing software and recording verification data in a transparency log.SIISistema Informativo Integrato, the centralized Italian hub that coordinates information flows for the energy market.SIM M2MMachine-to-machine SIM cards used by connected devices to communicate over mobile networks.SIM swapAn attack that takes control of a victim’s phone number so text messages can be intercepted.SIM swappingFraudulently moving a phone number to an attacker-controlled SIM or eSIM.SIM-swapA fraud method that moves a phone number to a new SIM card to intercept calls or codes.SIM-swappingan attack in which a number is moved to a card or profile under an attacker’s control to intercept calls or SMS.Sim-to-realThe transfer of behaviors learned in simulation into physical hardware.Simulation poisoningMaliciously altering computational results so outputs look plausible but are no longer trustworthy.Simulation validationThe practice of checking whether a model produces results that are believable for its intended use.Simulator-style gameA game designed to imitate a real-world activity or machine as closely as possible.Simultaneous connectionsThe number of devices that can stay connected to the VPN at the same time under one subscription.Sindaciboard auditors or statutory auditors who review governance and oversight at company level.Single marketthe EU framework intended to let goods, services, capital, and people move more freely across borders.Single point of failureOne component whose loss can interrupt or halt a wider operation.Single Sign-On (SSO)A login method that lets one set of credentials access multiple connected services.Single-ExtortionAn extortion model that relies on threatening publication of stolen data rather than encrypting files.SinkholingA detection and response method that redirects malicious traffic to a controlled server for monitoring or disruption.SIPSession Initiation Protocol, the signaling system that sets up, changes, and ends voice and video sessions.Sip-and-puffAn input method that uses breath pressure changes to trigger commands.Site AdminA high-privilege role that can manage users, agents, and platform-wide settings.Site clonéUn faux site web conçu pour ressembler de très près à un service légitime afin de tromper les utilisateurs au premier coup d'œil.Site de divulgation de ransomwareUne page publique utilisée pour lister les victimes et accroître la pression lors d’une extorsion.Site de fuiteUne page publique où des acteurs malveillants publient les noms des victimes ou des données volées afin d’accroître la pression.Site de fuite de données (DLS)Un site public où les acteurs de ransomwares publient les noms des victimes et, parfois, des données volées pour faire pression afin d’obtenir un paiement.Site IsolationA Chrome design that separates sites into different processes to reduce cross-site risk.SitebuilderA tool that helps users create websites through templates and guided workflows instead of manual coding.Sitefinity CMSA content management system used in enterprise environments and designed to connect with related services.Sitefinity InsightA connected service for tracking and analytics that uses access keys to authenticate site connections.SKALAA Soviet-era computerized monitoring and display system associated with the Chernobyl plant’s control-room instrumentation.SketchA 2D drawing used as the starting point for building 3D features in parametric modeling.Skill atrophygradual weakening of ability through lack of practice.Skill scannerAn automated tool that inspects an agent skill for signs of malicious or risky behavior.Skill-first hiringA recruitment approach that prioritizes demonstrated abilities over credentials or pedigree.Skills GapThe mismatch between the capabilities employers need and the expertise available in the labor pool.Skills-first hiringA hiring approach that gives more weight to demonstrated abilities and competencies than to job titles alone.SLAStéréolithographie, une méthode d’impression 3D qui durcit une résine liquide couche par couche à l’aide de la lumière.SlicerSoftware that converts a 3D model into instructions a printer can follow.SliverAn open-source post-exploitation framework often used in red-team and attacker tooling contexts.Slot-based schedulingOrganizing work into fixed time blocks that can reduce flexibility.SlowlorisAn application-layer DoS method that keeps connections open by sending requests very slowly.Slowloris attackA denial-of-service method that keeps connections open with partial requests to consume server resources.SLSSpace Launch System, la fusée lourde de la NASA pour les missions Artemis.SLSAA software supply-chain framework for strengthening build integrity and artifact trust.Small Language Model (SLM)A more targeted AI model built for narrower tasks and often lower compute needs than large models.Small modular reactora compact nuclear reactor design built in smaller units than traditional plants.Small-batch exfiltrationA stealth technique that moves data in small pieces over time to avoid triggering volume-based alerts.Smart contractSelf-executing code on a blockchain that enforces predefined rules and state changes.Smart media centerAn organizational model that combines media, creativity, and data into a coordinated decision-making function.Smart TVAn internet-connected television that can run apps and stay online for long periods.SMBUn protocole réseau pour le partage de fichiers et d’imprimantes dans les environnements Windows.SMB Admin SharesWindows file-sharing paths that can be used to move files or execute actions across machines in a network.SMB signingA security control that helps protect Windows file-sharing traffic from tampering and relay abuse.SmishingPhishing delivered by text message, often designed to push urgent clicks or data entry.SMSShort Message Service, the legacy text protocol that does not provide end-to-end encryption.SMS anti-spoofing controlsCarrier-side checks designed to reduce fake sender identities and other message-origin abuse.SMS fraudAndroid billing abuse that charges users to send premium SMS without consent or hides required disclosures.SMS OTPA one-time passcode sent by text message and entered manually during sign-in or recovery.SMS verificationOne-time codes delivered by text message, which are useful but weaker than cryptographic authenticators in high-risk environments.SMS/MMSOlder mobile messaging formats that do not provide end-to-end encryption.SMTPThe Simple Mail Transfer Protocol, which governs how email is sent between servers.SMTPSSMTP carried over TLS, where message formatting still depends on strict line and header rules.SnapshotA point-in-time copy of a virtual machine or storage state used for recovery or rollback.SNIServer Name Indication, a TLS field that tells the server which hostname the client wants.SOAPUn protocole basé sur XML utilisé pour la messagerie structurée entre systèmes via des services Web.SOARSecurity Orchestration, Automation, and Response; tools that automate parts of incident handling using playbooks.SOCA security operations center; the team and processes used to monitor, investigate, and respond to security events.SOC 2An assurance framework used to evaluate whether service controls are designed and operating effectively.Social cohesionthe degree to which economic and policy pressures are absorbed without deepening public strain or division.Social mediaOnline platforms where users share content, interact, and take part in public discussion.Social roboticsRobots designed to interact with people in natural, socially responsive ways.Social Security numberA highly sensitive identifier that can be used for impersonation, fraud, and identity theft.Social sortingThe use of profiling or classification to separate people into different treatment groups.Sociotechnical systemA system shaped by both technology and human processes, including data selection, review, deployment, and feedback.Socket Buffer (skb)Une structure du noyau Linux utilisée pour stocker et traiter les paquets réseau.SOCKS proxyA relay protocol that forwards traffic through an intermediary server.SOCKS5A proxy protocol that can relay traffic through an intermediary system.Socks5 proxyA proxy protocol that can relay traffic and help obscure where connections are going.SOCKS5 tunnelingA proxy method that can relay traffic through an intermediary host.Soft lawNon-binding guidance or commitments that shape behavior without direct statutory force.Soft powerInfluence achieved through attraction, culture, and persuasion rather than force.Software as a Medical Device (SaMD)Software intended for medical purposes that may be regulated because of its clinical function.Software AssuranceA Microsoft licensing benefit that can preserve certain portability and deployment rights for eligible products.Software Composition Analysis (SCA)A method for scanning dependencies to find known vulnerabilities and unexpected components.Software development lifecycleThe full path from planning and coding to testing, deployment, and maintenance.Software libreSoftware that can be used, studied, modified, and redistributed under licenses that protect user freedom.Software ProvenanceEvidence showing where software came from and how it was built or assembled.Software requirementsTechnical conditions a device or app must meet before an offer can be used.Software supply chainThe path software takes from build and packaging to download and installation.Software supply trustThe confidence users place in download pages, installers, and update paths.Software vulnerabilityA weakness in code or configuration that could be abused to disrupt, steal, or alter systems.Software-definedA system whose capabilities are shaped largely by software, making updates and feature changes more flexible than in fixed hardware-only designs.Software-defined radio (SDR)Radio hardware whose behavior can be changed in software rather than rewiring the device.Soglia di potenzaA power limit that can affect which rules and approvals apply to a facility.Solar desalinationA desalination approach that uses solar energy to drive the process.Solar moduleA packaged solar unit that converts sunlight into electrical power.Solar powerEnergy derived from sunlight and used here as the input for water treatment.SolarpunkA design and cultural idea that blends technology, sustainability, and optimism about the future.Solution intégréeUn ensemble de services connectés conçus pour fonctionner ensemble plutôt que d’être achetés séparément.Somme de contrôleUne valeur basée sur un hachage utilisée pour vérifier qu’un fichier téléchargé correspond au contenu attendu du paquet.SonicOSSonicWall’s firewall operating system and management layer for administering device settings.SOQLSalesforce Object Query Language, used to query CRM objects programmatically.SORMRussia’s lawful-interception framework used to support access to communications data through operator infrastructure.SortA command that orders lines of text into a chosen sequence.Sound markA trademark built around a specific sound or audio signature used to identify the source of goods or services.Source captureA control method that removes contaminants close to where they are created, before they spread through a room.Source codeHuman-readable program instructions that can reveal how software works.Source code auditA review of program source to find bugs, insecure patterns, or logic flaws before deployment.Source code exposureUnauthorized access to code repositories, which can reveal implementation details and sometimes adjacent secrets.Source code repositoryA storage system for code, commit history, and project files used by developers.Source restriction flagsSettings that limit which dependency source types are allowed during installation.Source triangulationChecking multiple texts or references to test whether information is reliable.Source-code exposureUnauthorized access to code or related development material that can reveal technical details and secrets.Sous-traitant ultérieurUn tiers qui traite des données ou fournit des services au nom d’un autre prestataire.Souveraineté numériquela capacité de contrôler les données, les systèmes et les dépendances avec une contrainte externe limitée.Sovereign AIAn operating approach where an organization keeps meaningful control over AI data, models, policies, and lifecycle decisions.Sovereign architectureA deployment pattern that emphasizes control over data location, access, and governance within defined boundaries.Sovereign cloudA cloud model designed to meet legal, operational, and residency requirements for regulated or government workloads.Sovereign computingAn architecture and governance approach intended to keep data and infrastructure under stronger EU or operator control.Sovereign technologyAn approach to technology governance that prioritises local control, oversight, and decision-making authority.Speak-up cultureA workplace environment where people can raise concerns without fear of retaliation.Spear phishingA targeted phishing attack tailored to a specific person or role.Spear-phishingTargeted email attacks designed to trick a specific user into opening a malicious file or link.SpearphishingA targeted email attack crafted for a specific person or organization.Spearphishing attachmentA targeted email or message tactic that uses a file to trick a specific victim into opening malicious content.Spearphishing via ServiceA social engineering attack delivered through third-party platforms such as LinkedIn, Slack, or other messaging services.Spearphishing VoiceA targeted voice-based social engineering technique aimed at a specific person or team.Special Publication 800-238NIST's FY2025 Annual Report for its cybersecurity and privacy program.Special-category datasensitive personal data that receives stronger protection under GDPR.Specialized profilesSkilled roles such as security analysts, engineers, or risk professionals needed for cyber defense.SpecificationThe description of what software should do, including behavior, constraints, and expected outcomes.SpectrumRedshift’s external query approach for reading S3 data without loading it into the warehouse.Spend authorityThe scope of money an agent or credential is allowed to authorize within defined limits.SPFA standard that lists which servers are allowed to send mail for a domain.SPF, DKIM, and DMARCEmail authentication standards that help verify senders and reduce spoofing, but do not fully stop phishing.SPIDItaly’s public digital identity system, used to authenticate users for online government services.SpindleThe rotating assembly that holds and turns a drill bit.SplinternetThe fragmentation of the internet into less interoperable or more separated network spaces.Split tunnelingA feature that lets some apps or traffic use the VPN while other traffic uses the regular internet connection.Sponsored resultsPaid search listings that can be abused to send users to deceptive destinations.Sponsored search listingA paid result shown in search systems, often treated by users as a trusted shortcut.SpoofingDeceiving a system or user by impersonating something trusted.Spool holderA support that keeps a filament spool positioned for smooth unwinding.SpringAn open-source Java framework used to build applications and services.Spring FrameworkA core Java framework used to build web and backend applications.Spring SecurityA Java security framework that handles authentication and authorization in web applications.SpywareMalware designed to observe activity and collect information from an infected device without consent.SQLA language used to query and manage data stored in relational databases.SQL injectionAn attack where untrusted input is inserted into a database query, allowing unintended database actions.SQL Server SAThe highest-privilege account in Microsoft SQL Server, with full administrative control over the server.SQLiteAn embedded, open-source SQL database engine used inside applications rather than as a separate server.SRv6Segment Routing sur IPv6, une méthode qui permet d’encoder directement les instructions de transfert dans les en-têtes des paquets.SS7A legacy mobile signaling protocol that still carries critical network control traffic.SSD contentionPerformance interference on a solid-state drive caused by competing read and write activity.SSD timingSmall differences in storage response time that can expose patterns.SSDFLe Secure Software Development Framework du NIST, utilisé pour intégrer la sécurité dans le cycle de développement.SSDPSimple Service Discovery Protocol, the discovery layer of UPnP that uses UDP multicast traffic.SSHSecure Shell, the standard encrypted protocol for remote Linux administration.SSH accessEncrypted remote administration over Secure Shell, commonly used for managing systems and appliances.SSH agent forwardingA feature that lets a remote system use your local SSH agent, which increases exposure if misused.SSH credentialAuthentication material used to access servers or systems over the Secure Shell protocol.SSH credentialsAuthentication material used for secure remote access to servers and infrastructure.SSH host keyA server identity key used by SSH clients to verify they are talking to the right machine.SSH host private keyA server’s secret key used to prove its identity to SSH clients during connection setup.SSH keyA cryptographic identity used for authenticating to servers, code hosts, and other systems.SSH key exchangeThe setup phase in SSH where both sides negotiate algorithms and establish session keys before login.SSH keysCryptographic credentials used for secure remote login and administration, often targeted for persistence and lateral access.ssh-keysignAn OpenSSH helper used for host-based authentication with local host keys.SSLThe older naming family for secure transport protocols, now generally treated as legacy terminology.SSL-VPNa VPN remote-access technology commonly used by firewall appliances.SSL/TLS-based VPNA remote-access method that uses SSL/TLS to create encrypted connections for users outside the network.SSLVPNAn encrypted remote-access method often used to connect users to internal networks.SSOAuthentification unique, une méthode qui permet aux utilisateurs de s’authentifier via un fournisseur d’identité central.SSO (Authentification unique)Un système d'identité qui permet aux utilisateurs d'accéder à plusieurs services avec une seule connexion.SSO pluginSoftware that connects one login system to another so users can sign in once and reach multiple applications.SSRFServer-Side Request Forgery, a flaw that can trick a server into making unintended requests.Stable channelThe mainstream release track most users receive after testing phases.Stable releaseA more conservative software branch meant for production use with fewer changes and backported fixes.Stable treeThe maintained kernel branch where security fixes are backported for supported releases.StablecoinUn jeton numérique conçu pour conserver une valeur stable par rapport à un actif de référence ou à un panier d’actifs.Stack-Based Buffer OverflowA memory error where too much input overwrites stack memory and may crash or hijack a process.Stage separationThe timed release of a spent rocket stage so the next phase of flight can continue.Stage-gated fundingAn investment approach where a project must pass review points to keep receiving support.Staged intrusionAn attack model that delivers multiple small components in sequence instead of one obvious payload.Staged loaderA first-phase component that retrieves or launches additional malware after the initial infection.Staged payload executionA multi-step delivery chain where one component prepares or retrieves the next one.Staged publishingA release workflow that holds a package in a queue before it becomes publicly installable.Staged rolloutA deployment method that delivers updates to users in phases instead of all at once.StagingThe collection and preparation of files before exfiltration or further abuse.Staging des donnéesL’étape où les fichiers collectés sont rassemblés et préparés avant l’exfiltration ou le chiffrement.Staging environmentA preproduction setup used for testing or development, sometimes less protected than live systems.Staging nodeA system used to prepare, relay, or coordinate attacker activity before or during an intrusion.StakeholdersThe people or groups whose needs, expectations, and decisions influence an organization.Standalone NPN (SNPN)A private 5G network that operates independently of a public carrier.Standardizationthe use of common rules or formats to reduce variation and confusion.Standardized formatA common structure that lets different systems exchange invoice data consistently.Standardized templateA fixed reporting format designed to make submissions more consistent and comparable.StarletteA lightweight Python ASGI framework used to build web services and APIs.Start menuthe main Windows launcher for apps, search, and settings.Startup hookA mechanism that lets code run when an application or interpreter begins execution, sometimes abused for persistence or stealth.StateThe current condition or recorded status of a device.State AI regulationLaws or rules adopted by individual U.S. states to govern AI development, deployment, or use.State retentionKeeping user context available after the current conversation ends.State-sponsoredCyber activity linked to or supported by a government, directly or indirectly.State-sponsored threat actorA cyber actor believed to operate with support from, or alignment to, a government.Static analysisAutomated inspection of code without running it, often used to spot security flaws early.Status displayA panel that presents system conditions, alarms, and operational state in a form humans can read quickly.STATUS_SHARING_VIOLATIONErreur Windows renvoyée lorsqu’un fichier ne peut pas être ouvert parce qu’un autre processus détient un verrou ou un mode de partage incompatible.Statute of limitationsThe deadline after which a legal claim may no longer be filed.stderrThe error-output stream where applications often print exception messages that CI systems may capture.stdio transportA local process communication method that uses standard input and output streams.StealerLogiciel malveillant qui collecte des données sensibles telles que des mots de passe, des sessions de navigateur ou des informations de portefeuille.Stealer d’informationsLogiciel malveillant conçu pour collecter des identifiants, des cookies, des jetons et d’autres données sensibles.Stealer malwareMalware designed to collect credentials, cookies, or other sensitive data.StealthTechniques that help malware avoid detection by users, scanners, or security tools.Steam Early AccessA release model that lets people buy and play software while development is still ongoing.Steering wheelA driving controller that lets players steer with motions closer to a real car.SteganographyA method for hiding data inside normal-looking media or files so the hidden content is harder to notice.STEPUn format d’échange courant pour partager des données produit 3D entre outils d’ingénierie.Step-up authenticationAn extra verification step required before a sensitive action, such as changing recovery settings.Step-Up VerificationExtra identity checks triggered before high-risk actions such as password resets or profile changes.Stepper motorA motor that moves in precise increments for controlled positioning.STIR/SHAKENTelephony anti-spoofing standards designed to help verify caller identity and reduce number fraud.STIX/TAXIIStandards for representing and exchanging threat intelligence in machine-readable form.Stolen CredentialsValid usernames and passwords captured by attackers and reused to access trusted systems.Stolen credit cardsPayment card details taken without authorization and often sold or shared for fraud.StorageSystems such as batteries that hold electricity for later use and help balance variable generation.Storage ScopesA privacy feature that narrows app file access while preserving compatibility.Store of valueAn asset expected to preserve purchasing power over time.Stored cross-site scripting (XSS)A web flaw where malicious script is saved and later delivered to other users.Stored XSSAn attack where malicious input is saved by the app and later executed in another user’s browser.Storefront listingThe official page where a game is published and distributed on a platform.Storefront promotionA time-limited pricing event used to increase visibility and sales for a product.Strait of HormuzA narrow maritime passage that is central to global oil and LNG transport.Strategic clarityClear leadership direction on why AI is being used and what business outcome it should support.Strategic dialogueA two-way discussion focused on decisions, trade-offs, and outcomes.Strategic foresightA planning method that explores multiple plausible futures instead of assuming one forecast.Strategic infrastructureEssential facilities treated as important to economic continuity and national capability.Strategic management forumsLeadership meetings designed to review priorities and coordinate action.Strategic optionalityThe ability to switch paths, providers, or operating models without major disruption.Strategic public procurementGovernment buying decisions used to enforce security, compliance, and sovereignty requirements.Strategic responsibilityThe role of making high-level decisions about direction, quality, and priorities rather than only producing artifacts.Stream cipheran encryption method that processes data as a stream, making correct parameters and metadata critical.Stream wrapperA PHP mechanism that changes how files or streams are opened and processed.StreamingDelivery of audio or video over the internet without requiring a full file download first.StrengthThe ability of a turbine or its parts to withstand stress without failing.Stripe metadataSmall key-value fields on Stripe objects, intended for non-sensitive application data.Structural materialThe material chosen to support a machine’s load and preserve its shape.Structural remediesChanges that alter how a system operates, not just the penalty after a breach.Structured controla formal process for tracking, approving, and reviewing spending.Structured dataMachine-readable page information that helps systems interpret names, relationships, and context.Stylus calibrationA setup step that aligns pen input with the screen so touches land in the correct location.SubcontractorAn additional provider used by a supplier to deliver part of a service chain.Subframe 4, page 17A reserved part of the GPS navigation message intended for special messages.SublimationLe passage d’un solide directement à l’état gazeux sans passer d’abord par l’état liquide.Submarine cableA fiber-optic communications line laid on the seabed to carry data between regions and continents.Submission reviewthe process used to inspect an app before approval or rejection.SubrequestAn internal request created by the application to process another route or controller.Subresource Integrity (SRI)A browser control that checks whether a script has been altered after publication.SubrogationLe processus consistant à demander le remboursement à une partie responsable d’une perte.Subscription churnthe rate at which customers cancel a recurring service.Subscription entitlementthe record that determines what a user can access after payment.Subscription lifecycleThe full arc of an account from signup to renewal, cancellation, and recovery.Subscription modelA pricing system where access is granted for a recurring fee rather than a one-time purchase.Subscription noticeA billing or renewal message tied to an ongoing service, often used as a lure in scams.Subscription revocationThe process of removing a device or user’s access to a service.Subscription serviceA paid platform that renews access on a recurring schedule.Subscription tierA paid service level that may offer different features or account options than a free plan.Subsea cableAn underwater fiber-optic cable that carries large volumes of international data traffic.SubsidiarityThe principle that decisions should be taken at the lowest effective level of governance.Subsidiarya company controlled by another company, usually with its own legal identity.SubstrateThe underlying material on which electronic structures are built.SubsystemA smaller part of a larger machine that helps perform a specific function.Succession planningPreparing a qualified replacement before a leadership change becomes urgent.Sucker lista contact list of people believed to be susceptible to repeat scam attempts.sudoA Linux utility that lets approved users run commands with elevated privileges.Suivi des revendicationsUn flux de renseignements sur les menaces qui consigne des victimisations présumées et nécessite encore une validation indépendante.Superchata paid message or tip feature that turns attention into immediate revenue.SuperforecasterA person who makes calibrated predictions and updates them as new evidence appears.Supermassive black holeA very large black hole found at the center of many galaxies.Supervised autonomyA deployment model where AI handles parts of a task, but humans keep approval and exception control.Supervised Fine-TuningA training step where a model learns from labeled examples created by humans.Supervision humaineSupervision par une personne qui peut examiner, corriger ou arrêter des décisions assistées par l'IA.Supervisory infrastructureSupporting control and monitoring systems that help summarize process data for operators.Supply chainThe network of suppliers, integrators and service providers that supports a product from design to operation.Supply chain dependencyReliance on third-party components or services that can affect security, continuity, or legal control.Supply Chain Detection and Response (SCDR)A security approach that looks for supplier-related risk and ties it to operational response workflows.Supply chain provenanceThe practice of confirming where a model, checkpoint, or component came from and whether it was altered.Supply Chain Risk ManagementThe practice of identifying and reducing risk across suppliers, components, and lifecycle stages in technology systems.Supply Chain Risk Management (C-SCRM)Practices used to identify and reduce security risks from suppliers, products, and services.Supply chain trust boundaryA security point where compromise can affect software, artifacts, or downstream users.Supply Chain VulnerabilityA weakness in build or automation tooling that can affect many repositories or releases.Supply chain wormMalware that spreads by abusing software distribution and publishing paths rather than only one machine.Supply-chain assuranceSecurity and integrity checks that help confirm components, software, and firmware are authentic and unchanged.Supply-chain compromiseInterfering with trusted software production or delivery paths to affect downstream users.Supply-chain dependencyReliance on a third party for critical infrastructure, services, or operational continuity.Supply-chain due diligenceThe process of checking, documenting, and addressing risk across suppliers and partners.Supply-chain exposureRisk that unsafe code, dependencies, or tooling practices spread vulnerabilities into later stages of development and deployment.Supply-chain poisoningAn attack pattern that abuses trusted software distribution paths to deliver malicious code.Supply-chain resilienceThe ability to withstand and recover from disruptions in hardware, software, or service dependencies.Supply-chain vettingReview of hardware and software sourcing to reduce the risk of tampering, hidden flaws, or untrusted components.Supply-chain vulnerabilityA flaw in shared software or automation that can affect many downstream projects.Supply-chain wormMalware that can move through trusted software workflows, packages, or automation paths.Support complexityThe maintenance effort required to keep a feature usable, documented, and testable over time.Support hardwareexternal components that help a system operate or communicate.Support impersonationPretending to be help desk staff or technical assistance to gain trust.Support PackageA bundled set of SAP updates that can include security corrections and bug fixes.Support periodThe minimum time a manufacturer must keep security updates available for a covered product.Support scamfraud that impersonates technical help to obtain money or access.Support workflowThe service path a platform uses to handle user help requests, including sensitive account actions.Support workflow abuseManipulating help processes so a privileged system performs an action it should not.SupportAssistDell’s support utility for diagnostics, updates, and system health checks on Windows PCs.SupportAssist Remediation serviceA software service in Dell’s recovery stack intended to assist with repair or recovery tasks.Supported branchesThe active version lines that still receive official security fixes and maintenance updates.Supported deviceshardware models that are eligible for a given software feature.Suppression des copies shadowSuppression des instantanés de récupération Windows pour rendre la restauration plus difficile après une attaque.Surface d’attaqueL’ensemble des points où un système peut être ciblé, notamment la connexion, la facturation et les fonctionnalités de partage de données.Surface d’attaque externeLes systèmes, comptes et intégrations accessibles depuis Internet et pouvant être sondés ou exploités par des attaquants.Surface de connexionLa page de connexion visible par l’utilisateur et le flux d’authentification associé que des attaquants peuvent tenter d’imiter ou de modifier.Surface preparationcleaning or treating a material so a finish can adhere properly.Surgical trainingPractice and simulation used to build technical skills before or alongside operating-room experience.SurpressionPression interne excessive pouvant solliciter ou rompre un contenant étanche.Surveillance capitalisma business model built on collecting behavioral data for prediction and targeting.Surveillance et gestion à distance (RMM)Logiciel utilisé pour administrer des systèmes à distance ; s'il est exposé ou non corrigé, il peut devenir une voie d'attaque.Surveillance PricingA pricing practice in which businesses may use consumer data and automated systems to influence the price a shopper sees.Surveillance sismiqueLa pratique consistant à détecter et analyser les mouvements du sol, y compris les tremblements de terre.Surveillance spywareMalware designed to monitor a device and collect information covertly.Suspicious access patternsunusual login or account behavior that can indicate abuse or compromise.Suspicious transaction reportA formal filing made when activity appears unusual or inconsistent with expected behavior.Sustainabilitythe ability to maintain services and resources over time with less waste.Sustained performanceThe speed a device can maintain over longer workloads.Switching metadataOperational details such as timing and status changes that can be useful even without full account content.SycophancyA failure mode where a model leans toward user agreement instead of truthfulness.Symbolic linkA filesystem object that points to another path, which can redirect file operations if not handled carefully.SymfonyA PHP ecosystem that provides reusable components used by other projects.SymlinkUn lien symbolique dans un système de fichiers ; une mauvaise gestion peut permettre à un utilisateur d’influencer le mauvais chemin de fichier ou les mauvaises permissions.Synced passkeyA passkey that can be available on more than one device through a trusted sync system.SynchronizationMaking multiple devices or actions line up in time or behavior.Synchronization layerThe account-level system that keeps saved credentials available across devices.Synthetic biologyThe design and construction of biological systems using engineering methods.Synthetic dataartificially generated data designed to preserve useful statistical patterns without reusing real records.Synthetic deceptionFabricated or manipulated digital content designed to mislead analysis or collection.Synthetic fuelsFuels produced through chemical synthesis rather than extracted from crude oil.Synthetic identityA fabricated identity built from real and false information to defeat verification checks.Synthetic mediaContent produced or heavily altered by software rather than captured directly from reality.Synthetic TelemetryArtificially generated log data designed to resemble real system activity for testing or validation.Synthetic voiceMachine-generated speech designed to mimic or recreate a human voice.Synthetic voicesAI-generated speech, including cloned voices, text-to-speech output, and voice conversion.SysmonA Windows monitoring tool that can log process creation, image loads, and other signals useful for DLL abuse detection.SYSTEMLe contexte de compte local le plus privilégié sous Windows, comparable à root.SYSTEM accountA built-in Windows security principal used by the operating system and services, with very broad local rights.System appA preinstalled application that typically has deeper device integration than a regular app.System auditan audit that evaluates how well a management system operates as a whole.System binary proxy executionUsing trusted binaries or management functions to run unwanted commands or code.System complexityThe number of parts and interactions that must work together reliably.SYSTEM contextA highly privileged Windows account that can make malicious task execution harder to spot.System defaulta built-in setting that applies automatically unless a user overrides it.System encryptionThe locking of files or systems so authorized users can no longer access them normally.System integrationthe process of making separate software platforms exchange data reliably.System integration testingtesting that checks whether connected systems and processes work together end to end.System Integrity ProtectionA macOS security feature that limits unauthorized changes to critical system locations and processes.SYSTEM privilegeThe highest practical local account level on Windows, often targeted after exploitation.System reliabilityhow consistently a system performs without unexpected failure.System requirementsThe minimum and recommended hardware needed to run software.System-level AIAI features built into the operating system, which can change privacy, update, and permission boundaries.System/360IBM’s mainframe family associated with standardized enterprise computing.SystemBCProxy malware often associated with hiding traffic and masking attacker activity.Système agentiqueUne configuration d’IA capable d’agir via des outils, des API ou des workflows.Système air gapUn ordinateur ou un réseau maintenu physiquement ou logiquement séparé des réseaux non fiables.Système cyber-physiqueUne configuration où le contrôle logiciel et les machines physiques fonctionnent ensemble en temps réel.Système d’IA à haut risqueUn système d’IA soumis à des contrôles renforcés en raison de son rôle en matière de sécurité ou de son cas d’utilisation sensible.Système de gestion de cabinetLogiciel qui gère la planification, la facturation, les dossiers et d'autres opérations essentielles du cabinet.Système de gestion de contenu (CMS)Logiciel de site web utilisé pour publier et gérer du contenu, souvent une cible lorsque des attaquants veulent modifier des pages ou des liens.Système de management de la qualitéUn processus documenté de test, de surveillance et de gouvernance d’un produit ou service réglementé.Système de réputation des vendeursUn mécanisme d’évaluation utilisé pour instaurer la confiance entre acheteurs et vendeurs sur une place de marché.Système de retenue supplémentaire (SRS)Le système de sécurité du véhicule qui complète les ceintures de sécurité avec des airbags et des composants associés.Systemic cyber riska security failure that can spread across multiple connected systems or services.Systemic riskA higher-risk category for some general-purpose AI models that can trigger extra obligations, including cybersecurity measures.Systemic-risk obligationsExtra AI Act duties for especially capable GPAI models with broader potential impact.Systems of recordOfficial business databases or applications where key records are stored and updated.T1053.005The ATT&CK sub-technique for abusing scheduled tasks or jobs for persistence or execution.T1190MITRE ATT&CK technique for exploiting public-facing applications to gain initial access.T1486MITRE ATT&CK technique for data encrypted to cause impact.T1505.003MITRE ATT&CK technique for web shells used to maintain access through web-facing systems.T3Oracle’s protocol for WebLogic RMI communication between Java components.Tâche planifiéeUne tâche automatisée sur Windows qui peut être utilisée pour la persistance ou l’exécution programmée d’un logiciel malveillant.Tacit knowledgePractical know-how that people use on the job but often do not document fully.Tactile feedbackPhysical cues that help a user feel a control’s position or action.TAEGThe annual percentage rate that includes the total cost of credit.Tag integrityAssurance that release tags have not been tampered with or redirected to hostile content.Tag-based policyA control method that uses labels or tags to trigger access, retention, or workflow rules.TailscaleAn overlay networking system used to connect devices through encrypted private routes.Take-upthe share of potential customers who adopt a service.TakedownA coordinated disruption of online infrastructure, often involving seizure, blocking, or removal of services.Takedown resilienceThe ability of a service to keep operating after domains, hosts, or accounts are disrupted.Talent dataInformation about employee skills, roles, and career paths used for workforce planning.Talent mobilitythe movement of skilled workers across borders to take up jobs or research roles.Talent pipelinethe flow of people who enter and develop within a technical field.Tamper DetectionMechanisms that help identify unauthorized physical or logical changes to a device.Tamper protectionA control that blocks unauthorized changes to security settings and makes disabling defenses harder.Tamper resistanceSecurity measures that make unauthorized changes to data easier to detect and harder to hide.Tamper-evident logsRecords designed to reveal unauthorized changes after the fact.TANThe nominal annual interest rate on a loan, excluding extra costs.Targeted abuseHarm aimed at specific people using personal or organizational details.Targeted attacksAttacks directed at specific users, devices, or organizations rather than broad mass campaigns.Targeted espionageA focused intrusion effort aimed at specific people or organizations rather than broad mass infection.Task automationUsing software to perform specific work activities that people previously handled manually.Task scamA fraud pattern that uses fake micro-jobs or rewards to lead a victim into paying money.Taskbarthe Windows desktop strip used for launching apps and accessing system controls.Taux d’échec des changementsLa part des déploiements qui provoquent des incidents, nécessitent des corrections ou doivent être annulés.Tax incentiveA fiscal benefit designed to encourage specific investments or behaviors.TaxonomyThe structured classification system used to group related security concepts and behaviors.TCASAn onboard collision-avoidance system that helps aircraft detect nearby traffic and avoid mid-air conflict.TCOTotal Cost of Ownership, the full cost of acquiring, running, and maintaining a system over time.TCP 445The main port used for SMB traffic; exposing it to the internet can create serious risk.Teacher trainingPreparation that helps educators use digital tools effectively in class.TeardownCareful disassembly used to inspect internal parts and diagnose hardware faults.Tech ecosystem indexA benchmark that compares startup hubs using business, talent, and innovation signals.Tech SovereigntyA policy goal focused on reducing dependence on external providers for critical digital infrastructure and services.Tech support fraudA scam that pressures victims into paying for fake technical help or repairs.Tech-support fraudA scam that impersonates support personnel to deceive victims.Technical communityA group of builders, researchers, and enthusiasts who share practical knowledge.Technical debtThe accumulated cost of older design choices that make systems harder to change or secure.Technical documentationRecords that describe how an AI model was built, trained, and intended to be used.Technical literacyThe ability to read, question, and verify how technology operates.Technical reboundA price recovery driven by market mechanics rather than a confirmed long-term trend reversal.Technical safeguardsSecurity controls such as access management, logging, and system protections.Technical standardsThe implementation rules that define how a system must be built, connected, or operated.Technical trainingeducation focused on practical skills for advanced manufacturing and operations.Technical validationIndependent checking of how a product behaves in practice, beyond marketing claims.Technical verificationChecks used to assess whether a claim, account, or transaction is genuine.TechnocapitalismA framework describing how technology, markets, and dependency can reinforce one another.Technological autonomyThe ability to build and operate critical technology with limited dependency on outside control.Technological concentrationThe buildup of control over platforms, data, or infrastructure in the hands of a few dominant actors.Technological sovereigntyThe practice of reducing critical dependence on external technology providers and jurisdictions.Technologie opérationnelle (OT)Systèmes qui contrôlent ou surveillent directement des équipements et des processus physiques.Technology framingA reporting or design method that uses one era to explain another.Technology maturitythe degree to which a system is developed enough for practical use.Telecom operatora company that provides communications services and may rely on shared or third-party assets.Telegram Bot APIAn interface allowing automated programs to send messages and manage bots on Telegram.Telegram ChannelA broadcast feature that lets one account send messages to many subscribers at once.Telegram channelsEncrypted messaging channels that can be used to broadcast breach claims and sell stolen material.TelehealthHealth services delivered through digital communication tools instead of only in person.Telehealth platformA system that delivers clinical care and related administration remotely through software and networked services.Telematic platforman online system used to submit forms and manage administrative procedures.TelematicsThe use of connectivity and sensors to monitor, transmit, and manage vehicle-related data remotely.TelemedicineRemote delivery of healthcare services using digital communications and connected devices.Telemetered dataInformation automatically sent from a device or app to another system, often including diagnostics, usage, or location signals.TélémétrieJournaux et signaux de sécurité provenant des terminaux, des réseaux et des outils cloud utilisés pour reconstituer les activités.Télémétrie d'identitéJournaux et signaux issus des connexions, des événements MFA et des changements de compte utilisés pour détecter un accès suspect.Télémétrie d’accès à distanceDonnées montrant comment des utilisateurs ou des attaquants se sont connectés à des systèmes via un VPN, RDP ou des outils similaires.Télémétrie des terminauxDonnées de sécurité collectées à partir d’appareils tels que les journaux, les alertes et l’activité des processus.Télémétrie médico-légaleJournaux et traces système utilisés pour reconstituer ce qui s’est passé au cours d’un incident.Telemetry coverageThe completeness of logs, alerts, and signals flowing into a security tool.Telemetry IntegrityThe trustworthiness of device data, readings, and alerts.TelemonitoraggioRemote monitoring of patient conditions through connected tools and data flows.TelepedaggioElectronic tolling that lets road users pay tolls without stopping at a traditional booth.Telephony artifactA phone-related trace, such as a number, call record, or callback path, that may help investigations.TEMPESTUne discipline de sécurité axée sur la limitation des fuites d’informations via des émissions involontaires.Template theftUnauthorized copying of stored biometric data that can weaken identity protection and raise fraud risk.Template-driven UIA constrained interface model that limits how apps can appear and behave in cars.Temporary Access PassA short-lived credential used to help users register or recover access in some Microsoft Entra deployments.Temporary ChatA privacy mode for conversations that should remain ephemeral.Temps de présenceLa période pendant laquelle un intrus reste dans un système avant d’être détecté.Tenancy isolationControls that keep one customer’s workload separated from another’s on shared infrastructure.TenantA dedicated customer instance of a cloud service with its own identity, policies, and data boundary.Tenant dataInformation stored within a customer’s cloud environment, including mail, files, chats, and connected workspace content.Tenant IsolationSecurity controls that keep one customer’s data and actions separate from another’s in shared systems.TensorRTNVIDIA’s optimized inference runtime for accelerating model deployment on GPUs and edge devices.TerminalA text-based interface for entering commands and viewing system output.termsrv.dllA Windows library used by Remote Desktop Services to manage session behavior and access rules.Territorial healthcareA care model organized around local access points rather than only large hospitals.Territorial pricingDifferent rates applied depending on geographic area or service zone.Territorial servicesLocal healthcare services designed to support patients closer to where they live.Terzo settorethe nonprofit and civil-society sphere in Italy, including organizations focused on social value.Test automationThe use of scripts and tools to run checks automatically, helping teams validate code more quickly and consistently.Test harnessThe setup, tools, prompts, and rules used to run an AI evaluation.Test-Driven Development (TDD)A practice of writing tests first so they guide design and implementation.TestnetA development blockchain network used for testing before deployment on a main network.Tests de restaurationdes exercices qui confirment que les sauvegardes peuvent réellement être récupérées en cas de besoin.Tête facticeUn dispositif d’enregistrement en forme de tête qui aide à reproduire la géométrie de l’oreille humaine et l’ombrage de la tête pour la capture binaurale.TEVVTesting, evaluation, verification, and validation; a control process used to check that a system behaves as intended.Text Services FrameworkWindows components and APIs that support advanced text entry and language handling.Text streamData processed as a continuous flow instead of a single static file.Texte chiffréDonnées chiffrées illisibles sans la clé de déchiffrement correcte.Texte en clairContenu de message lisible qui n’est pas protégé par le chiffrement.Textile recyclingThe recovery and reprocessing of discarded fabric into usable material.TGTTicket-granting ticket ; le premier ticket Kerberos qui permet à un utilisateur de demander d’autres tickets de service.Theft detectionSecurity logic that looks for signs a phone may have been snatched or misused, then restricts access.Theft Detection LockA theft-response feature that can automatically lock a device when motion patterns look like a theft event.Thermal headroomThe margin a device has before heat starts limiting performance.Thermal limitThe point at which heat causes a material or part to lose reliable performance.Thermal managementThe engineering discipline of controlling heat so equipment stays within safe operating limits.Thermal resistanceA measure of how strongly a package resists heat flow; lower values generally mean easier cooling.Thermal stressstrain caused by temperature changes that can warp, crack, or weaken materials.Third-party accessExternal vendor permissions that can connect into internal systems, portals, or operational tools.Third-Party AssuranceIndependent assessment used to show that controls or practices meet an expected standard.Third-party component riskSecurity exposure introduced by software a vendor includes from outside projects.Third-party compromiseA breach that reaches an organization through a supplier, partner, or service provider.Third-party ICT riskThe operational and security risk created when critical digital services depend on outside providers.Third-party infrastructurephysical assets owned by one entity but used by another under a legal arrangement.Third-party JavaScriptExternal code loaded into a page, often useful but also a common trust risk.Third-party modA software add-on distributed outside official channels, often with limited or no formal security review.Third-party repositoryAn external or partner-controlled data store that can become part of an organization's broader attack surface.Third-Party RiskExposure created by vendors, suppliers, or external services connected to an organization’s systems.Third-Party Risk Management (TPRM)A program for identifying and reducing risk from vendors, suppliers, and external partners.Third-Party SoftwareSoftware made outside the official vendor, which can be legitimate but also easier to impersonate.Third-party vendorAn external company that provides services or software and can become part of an organization’s attack surface.ThreadingA programming method that lets one process run multiple tasks concurrently.Threat actor clusterA vendor label used to group related malicious activity that may share tactics or infrastructure.Threat attributionThe process of linking cyber activity to a particular actor, group, or state with varying confidence levels.Threat clusterA tracked set of related activity that analysts group together based on infrastructure, behavior, or targeting patterns.Threat correlationLinking separate incidents through shared technical or operational patterns.Threat detectionThe process of spotting suspicious activity before it grows into a larger security problem.Threat HuntingA proactive search for signs of compromise based on hypotheses rather than waiting for alerts.Threat indicatorA clue, such as a domain or account pattern, used to detect malicious activity.Threat infrastructureThe technical and operational resources that support malicious activity.Threat intelligence attributionA security label that links activity to a tracked group, based on analysis rather than courtroom proof.Threat intelligence feedA monitoring source that collects and republishes security leads, which still need independent verification.Threat intelligence triageThe process of checking a claim or alert against logs, telemetry, and other evidence before drawing conclusions.Threat intelligence validationThe process of checking leak claims against known incidents, samples, and other evidence before responding.Threat modelA map of likely attack paths, sensitive assets, and trust boundaries used to understand where risk concentrates.Threat modelingA method for identifying likely attack paths and designing controls early.Threat signalan observable event that may indicate elevated cyber risk or hostile activity.Threat telemetryLogs and signals that help defenders spot suspicious activity across hosts, networks, and cloud services.Threat verificationchecking any claim or rescue offer through an independent, trusted channel before responding.Threat-informed defenseA defensive approach that maps protections and detections to attacker techniques.Threat-intelligence leadA signal that may indicate risk, but still needs verification before it is treated as confirmed compromise.Threat-led testingSecurity testing that simulates realistic attacker behavior to find weaknesses before real adversaries do.Through-glass viaA vertical connection that passes through glass to link circuit layers.ThroughputThe amount of data a connection can move in a given time, important for streaming quality.TIA project downloadAn engineering workflow that transfers a controller project, configuration, or logic into the device.TICTechnologies de l’information et de la communication ; les systèmes et réseaux utilisés pour stocker, traiter et transférer des données.Ticket deflectionHandling routine support requests before they reach a human operator.Ticket frauddeception that leads buyers to pay for invalid, fake, or nonexistent tickets.Tier 1The first triage layer in a SOC, where analysts quickly sort, validate, and escalate alerts.Tier 3A data center class associated with concurrent maintainability and stronger redundancy expectations.Time CapsuleMatériel Apple qui combinait la mise en réseau sans fil et le stockage pour les sauvegardes Time Machine.Time MachineLe système de sauvegarde intégré d’Apple pour macOS, utilisé pour créer des sauvegardes locales ou réseau.Time signalA transmission used to help receivers set or correct clocks.Time synchronizationThe process of keeping devices aligned to a common time reference.Time-of-FlightA method for calculating distance from the travel time of emitted light and its return signal.Time-series collectionA MongoDB feature designed to store timestamped data efficiently by grouping records into buckets.Time-to-exploitationThe time between public disclosure of a flaw and its use in real attacks.Timed engagement mechanicsA reported design term likely referring to time-based retention or pressure features; the public summary does not define it precisely.TimeoutA limit on how long a network operation may wait before it is canceled.TimestampA signing attribute that records when a file was signed, helping with trust checks.TimestompingThe alteration of file timestamps to make malicious files look older or less suspicious.TimingThe control of when a device changes state or performs an action.Timing errora mismatch between expected and actual device speed or rhythm.Timing side channelA weakness where response-time differences reveal sensitive information.Timing Side-ChannelA flaw where attackers infer secrets by measuring small differences in response time.Titolo edilizioThe legal construction title required for certain building or site works.Titulaire des donnéesLa partie qui détient les données pertinentes au titre du Data Act et qui, dans le contexte du chapitre III, peut demander une compensation raisonnable lorsque le partage est légalement obligatoire.TLPTThreat-Led Penetration Testing, a scenario-based test designed to mimic realistic attack pressure.TLSTransport Layer Security, used to encrypt and authenticate network traffic.TLS certificate reuseRepeated use of the same or similar certificates, which can reveal shared infrastructure across campaigns.TLS SNIA field in the TLS handshake that indicates which hostname the client wants to reach.TNEFMicrosoft’s rich-message email format used in Outlook and Exchange environments.TOBAProbablement « Terms of Business Agreement » dans un contexte de courtage en assurance, mais cette expansion doit être considérée comme non confirmée.TOCTOUUne condition de concurrence où les vérifications de sécurité et l’utilisation effective se produisent à des moments différents.TOGAFA method-oriented enterprise architecture framework for designing, governing, and evolving architecture work.Together modeA Teams meeting layout that places participants in a shared visual scene.ToilManual, repetitive, reactive work that adds little lasting value and is a prime target for automation.TokenA digital credential used to authorize access to an application or API.Token abuseMisuse of a valid session or access token to act as an authenticated user or app.Token budgetThe amount of text a model can process or generate during a task, which affects long-context performance.Token exfiltrationThe unauthorized removal of authentication tokens from a device or browser environment.Token ManipulationAbuse of authentication tokens or session artifacts to impersonate users or move through a network.Token meteringBilling model that charges for each token processed, making cost rise with usage.Token protectionA control that helps bind session tokens to a device or context, making replay harder if tokens are stolen.Token replayReusing a captured authentication token to impersonate a legitimate session.Token RevocationInvalidating a secret so it can no longer be used after exposure or compromise.Token ScopeThe set of permissions attached to a token, which determines how much access a leaked token can provide.Token usageThe amount of input and output text processed by a model, which affects cost and throughput.Token validationA check that decides whether a credential matches expected format, length, or structure.TokenizationReplacing sensitive payment data with a limited-value substitute token.Tokenized assetA digital representation of a real-world asset or financial claim.TokenizerA component that splits text into units a model can process and helps reconstruct outputs.Tokenizer artifactA file or metadata object that shapes token handling, prompt formatting, or model loading.TokenmaxxingThe practice of maximizing AI consumption for status or ranking rather than useful results.ToleranceThe acceptable variation in size or behavior before performance is affected.Toll fraudUnauthorized use of telephony services to generate calling charges or financial gain.TONThe Open Network, une plateforme de blockchain et de réseau utilisée ici comme base pour des communications furtives de logiciels malveillants.Tool abuseMisuse of connected tools or APIs by an AI agent or an attacker controlling it.Tool accessA capability that lets an AI assistant perform actions beyond generating text, such as sending or modifying data.Tool boundaryThe control point where an agent’s output is checked before it reaches an external action.Tool PoisoningMalicious or misleading tool output that can steer an AI agent into unsafe actions.Tool useA workflow where an LLM calls external functions or services.Tool-generated contentText or code produced with automated tools, including AI systems, that still needs human review.Tooling overlapShared malware traits or operator behavior used by analysts to connect related intrusion activity.Top-Level Domain (TLD)The ending of a web address, such as .com or .org, which attackers may mimic with alternate extensions.TorUn réseau d’anonymat couramment utilisé pour les portails de rançon dissimulés et les communications furtives.TOR networkAn anonymity network commonly used to host hidden services and attacker negotiation pages.Tor onion serviceA hidden service that is reachable only through the Tor network and masks the server’s location.TorqueThe twisting force a rotating machine must handle as it converts water motion into mechanical rotation.Total cost of ownershipthe full cost of running a technology service, including infrastructure, operations, and support.Touch interfaceA method for interpreting human input, whether by direct contact or another sensing approach.TPAAdministrateur tiers, une société externe qui gère l’administration des sinistres pour le compte d’une autre organisation.TPLPublic transport services run for everyday urban and regional mobility.TPMTrusted Platform Module, hardware that helps bind encryption keys to a device’s trusted state.TPM+PINA BitLocker startup mode that adds a user-entered PIN on top of TPM-based checks.TraceA conductive path on a PCB that carries signals or power between components.Trace de transactionPreuve laissée par un paiement ou un transfert, pouvant être analysée pour identifier des liens et des schémas.TraceabilityThe ability to reconstruct how a system produced an output through logs and version history.Tracker artifactA reference string used by a feed or platform to organize or identify a post.Tracking pixelA tiny embedded element that can trigger a remote request and register an interaction.Trade secretConfidential business information that gives a company competitive value when kept private.TradecraftThe techniques, procedures, and operational habits an attacker uses to hide, persist, and succeed.Traffic Advisory (TA)A warning that nearby traffic may become a conflict and deserves pilot attention.Traffic Distribution SystemRouting infrastructure used to steer visitors toward selected landing pages or payloads.Traffic Distribution System (TDS)A web routing layer that sends visitors to different destinations based on filtering rules.Traffic redirectionThe rerouting of a web request to a different destination, sometimes without the user noticing.Traffic scopeThe specific data flows a security tool can protect or observe.Traffic scrubbingFiltering malicious traffic upstream before it reaches the target system or network edge.Training datasetThe collection of examples used to teach a model during training or fine-tuning.Training signalFeedback used during development to influence what kinds of responses the model prefers.Training-data extractionan attack class where models reveal memorized training examples through targeted queries.Transaction alertsNotifications that help detect unusual or unauthorized activity quickly.Transaction rollbackThe cleanup process that restores consistent state when a rule update or change cannot complete.TranscodageConversion de médias d’un encodage ou format à un autre pour la lecture ou le stockage.TranscoderSoftware that converts media from one format or codec to another for compatibility or storage efficiency.Transcriptomique spatialeUne méthode permettant de mesurer l'activité des gènes tout en préservant la localisation dans le tissu.Transfert de connaissancesLe passage du savoir-faire opérationnel entre des personnes ou des équipes, particulièrement important lors des réorganisations.Transformation numériqueL’utilisation de la technologie pour modifier la manière dont une organisation fonctionne, fournit des services et crée de la valeur.TransistorUn composant semi-conducteur qui a remplacé les tubes à vide dans la plupart des appareils électroniques grand public.Transitive DependencyA library pulled in indirectly through another component, often outside the main developer’s direct view.Transizione 5.0A policy framework tied to modernization incentives and industrial transition.Transizione energeticaThe shift from fossil-fuel dependence toward lower-carbon energy systems.Translation layerthe step that converts text from one language into another.TransmissionLes pièces qui transmettent la puissance des pédales à la roue arrière.TransparencyThe degree to which AI design, data, and decisions can be understood, reviewed, and explained.Transparency obligationsLegal or policy duties that require clear disclosure about how content was produced or altered.Transparency ReportingPublic disclosure of practices, controls, and risk-management approaches.TransponderAn aircraft device that broadcasts identity and altitude data for cooperative air traffic surveillance.Transport parsingThe process of turning mail-related input into commands or parameters for delivery systems.Transportation SecurityProtective controls that reduce risk to shipping operations, cargo, and logistics workflows.TranspositionThe process of turning an EU directive into national law.Trend analysisthe practice of comparing incident data over time to identify patterns and shifts.Trend structurethe sequence of highs and lows that helps define market direction.TriL’acte d’examiner et de hiérarchiser les signalements de sécurité entrants selon leur validité et leur impact.Triage des incidentsLe processus rapide de vérification des journaux et des alertes afin de déterminer si un événement cyber suspect est réel et jusqu’où il s’est propagé.TriagingThe process of sorting incoming reports by urgency, validity, and technical relevance.Trial de Novoa form of review that allows a court to examine a matter anew rather than relying only on the earlier decision.Trident engineThe legacy HTML rendering engine associated with Internet Explorer and related compatibility paths.TriggerThe event or condition that starts an automation.Trigger indicatorA measurable signal used to decide when a predefined response should begin.TrojaniséUn programme légitime qui a été modifié pour inclure des fonctionnalités malveillantes.Trojanized appA legitimate-looking application modified to carry malicious code or steal data.Trojanized applicationLegitimate-looking software that has been altered to carry malicious code.Trojanized payloadA legitimate-looking package that has been altered to include hidden malicious behavior.Trojanized SoftwareLegitimate-looking software modified to include hidden malicious behavior.TronLinkA wallet brand for the TRON ecosystem that attackers can try to impersonate to gain trust.TrousseauStockage d’identifiants sur macOS utilisé pour protéger les mots de passe, les secrets et d’autres éléments d’authentification.True positiveA finding that is confirmed to be a real vulnerability after review.Trust anchorA trusted cryptographic root, such as a public key, used to verify signed software or packages.Trust and safetyControls and policies intended to reduce abuse, harm, and unsafe exposure on platforms.Trust assumptionsThe beliefs a user makes about how a system behaves, which should be verified rather than assumed.Trust by defaultA model that assumes connected entities are safe unless proven otherwise.Trust calibrationMatching user confidence in a system to its real capabilities, limits, and failure modes.Trust ChainThe set of people, accounts, and verification steps that proves a shipment instruction is legitimate.Trust hijackingAn analytical term for exploiting a brand’s or person’s credibility to make manipulated content seem legitimate.Trust indicatorA visual cue meant to show whether a prompt or message was generated by the client or by the remote system.Trust infrastructureThe controls that help users believe a platform’s listings, identities, and transactions are reliable.Trust modelThe set of assumptions about who can access data and under what conditions.Trust networkThe web of people, systems, and permissions that allows an organization to communicate and operate securely.Trust pipelineThe chain of controls that helps users verify authenticity, rights, and integrity.Trust planeThe set of security and management systems that distribute updates, policy, or code to other devices.Trust profileThe level of confidence users place in a tool’s reliability and stewardship.Trust sigilA visual cue that marks a prompt as client-generated and more trustworthy.Trust signalA visible cue such as a user count or rating that may influence whether a user installs software.Trust storeThe local set of approved keys or certificates used to verify authenticity before accepting software.Trust surfaceThe parts of an app where users decide whether to believe a message, identity, or prompt.Trust their connectionsKnowing that an agent’s network path or endpoint is legitimate and safe to use.trust_remote_code=TrueA Transformers setting that allows loading custom model code from remote repositories.Trust-abuse chainA sequence of convincing steps designed to make each stage of an attack feel normal to the user.Trusted accessA gated access model that limits powerful features to verified users or organizations.Trusted channela path or process that users or systems normally assume is safe.Trusted computing base (TCB)The hardware, software, and controls that must be trusted to enforce security policy.Trusted developer utility abuseMisusing legitimate software tools to run attacker-controlled code under a trusted name.Trusted DocumentAn Office file that has been marked as safe, reducing warnings and making malicious content harder to spot.Trusted domainsLegitimate web properties that attackers may abuse as camouflage for malicious loading or relay paths.Trusted Execution Environment (TEE)An isolated processor environment designed to keep code and data separate from the main system.Trusted identity stateA restored, verified access environment after compromised accounts or secrets have been removed.Trusted LocationsApproved folders where a JetBrains IDE can treat project content as trusted.Trusted Platform Module (TPM)A hardware root of trust used by BitLocker to validate boot measurements and support automatic unlock when the system is trusted.Trusted process contextThe execution environment of a legitimate program, which can make malicious activity harder to spot.Trusted publishingA method that uses short-lived identity-based authentication instead of long-lived release tokens.Trusted relationshipA permitted connection or delegated access path that can be abused if credentials or management rights are misused.Trusted surfaceA legitimate platform or channel that users are inclined to trust, such as a creator account or repository.Trusted-Binary AbuseThe use of approved software as a launcher for malicious code or execution flow.TrustworthinessA practical combination of reliability, security, accountability, and other qualities needed for safe AI use.TTPsShort for tactics, techniques, and procedures, a shorthand for an adversary’s operational playbook.Tube à videUn dispositif électronique qui contrôle le flux d’électrons dans un vide afin d’amplifier ou de générer des signaux.TUFItaly’s Testo Unico della Finanza, the main financial markets statute.TunnelingWrapping one kind of network traffic inside another path to obscure origin or bypass controls.Turing testA behavioral benchmark that checks whether a machine can imitate human conversation convincingly.TurnoverThe rate at which employees or executives leave a role and are replaced.TutelaThe legal concept of protection and preservation for cultural heritage.Two-factor authenticationA login control that adds a second verification step beyond a password.Two-factor authentication (2FA)A login control that requires a second verification step beyond a password.Two-step verificationAn extra login check that makes stolen passwords less useful to attackers.Two-year planA subscription term that covers service access across a two-year period.TXZ archiveA compressed tar archive that can bundle multiple files inside one attachment.Type confusionA flaw where code treats a value as the wrong type, sometimes with security impact.Type-1 HypervisorA hypervisor that runs directly on physical hardware, not on top of a host operating system.TyposquatA lookalike package or domain name designed to catch typing mistakes.TyposquattingRegistering a lookalike package name to trick users into installing malicious code.U.S. jurisdictionThe legal reach of U.S. law over American companies, including some cloud providers operating abroad.UA sniffingThe practice of inferring browser type or version by parsing the User-Agent string.UAC bypassA method for slipping past Windows User Account Control prompts or protections.UARTA common hardware serial interface used for device communication and debugging.UASUn système d’aéronef sans pilote, comprenant l’aéronef, les liaisons de commande et l’équipement de soutien.UEFIA modern firmware interface that replaces legacy BIOS on many systems and helps control the boot process.UFPsUltra-fine particles, an airborne particle class so small that it behaves differently from visible dust or larger aerosols.UI affordanceA visual element that signals how a user can interact with a feature or control.UI regressionA bug that breaks a feature that previously worked in a software build.UIFItaly’s Financial Intelligence Unit, the body linked to suspicious-transaction reporting.Ullage motorA small motor that settles propellant before a main engine ignites.UltrasoundSound above human hearing, often used in sensing, signaling, and controlled experiments.Unauthenticated AccessAccess that does not require valid credentials or a logged-in session.Unauthenticated AttackerA person or process attempting abuse without logging in first.Unauthenticated denial of service (DoS)A disruption technique that works without a valid account or session.Unauthenticated DoSA denial-of-service condition that may be triggered without logging in.Unauthenticated exploitationAbuse of a flaw without needing valid login credentials.Unauthenticated RCERemote code execution that can be attempted without logging in or presenting valid credentials.Unauthenticated Remote Code ExecutionA flaw that lets an attacker run commands on a server without logging in.Underground marketplaceA criminal trading forum or shop where stolen data and other illicit goods are exchanged.Underwater roboticsRobots built to operate in submerged environments.UnderwritingThe process insurers use to assess risk and decide coverage terms.Underwriting Workflow Augmentation (UWA)A form of automation meant to support and streamline insurance underwriting tasks.UniFi OSThe management operating system that coordinates Ubiquiti appliance administration and updates.Unified CMCisco Unified Communications Manager, a platform used to administer and control enterprise voice services.Unified designA software interface approach that presents controls and content as a more continuous visual experience.Unified memoryA design where components share a common memory pool for more efficient handling of demanding tasks.Unified platformA consolidated security toolset that brings together logs, detections, and response workflows.Uninitialized memoryBytes that were allocated but never set, which can accidentally reveal previous data.Uninitialized pointerA pointer used before it has been set to a valid memory address.Unit economicsA way of measuring cloud value and cost per workload, transaction, token, or similar business unit.Unit-distance problemA question asking for the maximum number of pairs of points exactly one unit apart among n points in the plane.Unité de gestion de la mémoireMatériel qui aide à traduire et à contrôler l'accès à la mémoire.Unix-like systemsOperating systems that follow Unix design principles, including many Linux and BSD environments.Unlocked phoneA handset that is not restricted to one carrier and can accept third-party mobile plans.Unnamed captureA regular-expression capture group accessed by position, such as $1 or $2, rather than by name.Unpatched vulnerabilityA flaw for which no broadly available fix has been deployed yet.Unprivileged userA user account without administrative rights, limited in what it can change on a system.Unredacted datainformation shown without masking or partial hiding.Unsafe deserializationA flaw that occurs when untrusted data is converted back into objects without proper trust controls.Untrusted inputData that must be treated as potentially hostile until it is validated or sanitized.Update baselineThe expected set of approved software versions on a managed system.Update channelThe route used to deliver fixes, patches, and new versions to users.Update handlingThe process of changing software or configuration after deployment.Update HygieneThe discipline of applying software patches and maintenance updates promptly to reduce security risk.Update pathThe process for delivering fixes, features, and maintenance to a system.Update pauseA setting that delays new updates for a period of time.Update supportThe period and method by which a device receives security fixes.Upload allowlistingA control that permits only approved file types, reducing the chance of dangerous uploads.Upload PipelineThe server-side path that receives, validates, stores, and serves user-uploaded files or images.UPnPUniversal Plug and Play, a protocol suite used for device discovery and control on local networks.UPnP SSDPA discovery protocol used by devices to find services on a local network.UPSUninterruptible Power Supply, a backup system that helps bridge short power disturbances and keep equipment running.UPS (Uninterruptible Power Supply)Backup power equipment that keeps critical systems running during short outages or voltage problems.UpskillingTraining employees to gain new abilities so they can work effectively with new tools or systems.UpstreamThe main project source where fixes and changes are reviewed for inclusion.Upstream dependencyThird-party code, such as a kernel or library, that a vendor integrates into its product.Upstream projectThe original codebase that downstream distributions and vendors build on.Uptimethe share of time a service remains available and usable.Uranium-compression simulationA physics model used to study how uranium behaves under extreme compression conditions.Urgency cueA message element, such as a deadline, that pushes users to act before verifying details.Urgency pressurea tactic that makes a target act quickly before checking the details.URI handlerA system component that opens an app or feature when a special link is clicked.URI ParsingThe process of interpreting a URI’s structure, including schemes, delimiters, and encoded characters.URI schemeThe leading part of a link, such as search:, that tells the system how to handle it.URL redirectionSending a user from one web address to another.URL removalBlocking or deleting web addresses linked to abuse or illegal services.URL RewriteAn IIS mechanism used to alter requests or responses as part of Exchange mitigations.UsabilityHow easily a real person can understand and complete a task within a digital system.Usage loggingRecords that help teams review how a tool was used.Usage TelemetryMeasurement data that shows how much an AI system is used, where it is used, and how much it costs.Usage thresholdA platform limit that can cap requests, spend, or throughput.Usage-based billingA pricing model where cost rises with measured consumption.Usage-based pricingA billing model where cost rises with consumption instead of only with user count.USBA common hardware interface for power, data, and device communication.USB debuggingA developer option that allows ADB connections to an Android device and increases exposure if left enabled unnecessarily.USB flash drivePortable storage that appears to a computer as a removable USB device.USCYBERCOMU.S. Cyber Command, the military command responsible for cyberspace operations.Use caseA defined business problem or workflow that AI is intended to improve.Use-after-freeA memory bug where code accesses data after it has already been released.Use-After-Free (UAF)Un bug mémoire où une mémoire libérée est à nouveau accédée, ce qui peut parfois entraîner des plantages ou l’exécution de code.User acceptanceThe willingness of people to rely on and work with an AI tool in daily tasks.User Account Control (UAC)A Windows feature that asks for approval before certain system changes run with higher privilege.User Account Control (UAC) bypassA technique that tries to move malware past Windows’ normal elevation restrictions.User Control Panel (UCP)A browser-based portal where users manage call handling and personal settings.User data flowThe path personal information takes through an application or service stack.User EnumerationA flaw that lets an attacker infer whether a specific account or username exists.User frictionany step that makes it harder to continue, pause, or exit an app.User interfaceThe visual and interactive layer people use to control software.User modeThe restricted execution layer for ordinary applications, separated from direct kernel access.User NamespaceA Linux isolation feature that can affect whether certain local exploits are practical on a given host.User namespacesA Linux feature that isolates user IDs and can expand local attack surface in some setups.User perspectiveThe viewpoint of the intended reader, used to judge whether a text is understandable and useful.User-Agent stringA browser-supplied identifier sent with web requests that can include browser, version, and platform details.User-controlled keyA flaw where a requester can influence the identifier used to select a database record.User-facing AI featuresTools such as chat assistants or content summarizers that interact directly with the person using the software.User-generated contentMaps, modes, or other materials created by players rather than the developer.User-ID Authentication PortalA PAN-OS service that prompts users to authenticate so traffic can be linked to user identities.usermanThe FreePBX account-management module that handles user provisioning and related login workflows.userman moduleThe FreePBX component that manages PBX users and access-related functions.Username EnumerationA reconnaissance technique that reveals which account names are valid.UserPrincipalName (UPN)an Active Directory sign-in format that often resembles an email address.Usinage CNCFabrication contrôlée par ordinateur utilisée pour produire des pièces de précision.Usurpation de contenuUne tactique qui présente un contenu faux ou modifié sous un domaine de confiance.Usurpation de marqueLe fait de copier l’identité visuelle, le nom ou le style d’une entreprise de confiance afin de tromper des cibles.Usurpation de namespaceUne tactique qui utilise un nom de projet ou de compte similaire pour se faire passer pour un éditeur de confiance.Usurpation GNSSL’utilisation de faux signaux satellites pour induire en erreur un récepteur quant à la position, à la vitesse ou à l’heure.UUIDA unique identifier used for client authentication in some VLESS configurations.V8Chrome’s JavaScript and WebAssembly engine, responsible for executing web code.Vague de correctifsUn ensemble coordonné de mises à jour de sécurité publiées ensemble pour corriger plusieurs failles.Valeur de type hachageUne chaîne de longueur fixe pouvant servir d’identifiant, mais qui ne constitue pas, à elle seule, une preuve de compromission.Valid accountA legitimate username and password or token used by an intruder to blend in with normal access.Valid accountsIdentifiants légitimes abusés par des attaquants pour se fondre dans l’accès normal.Valid credentialsReal usernames and passwords that attackers misuse after gaining or buying access.Valid-credential abuseAn attack pattern where stolen or reused logins are used to enter systems legitimately.Validated dataData that has been checked for relevance, quality, and fit for the intended task.ValidationTester une version pour confirmer que son comportement mesuré correspond aux attentes.Validation de certificatLe processus consistant à vérifier si un certificat numérique est authentique et digne de confiance.Validation des entréesLe processus consistant à vérifier si des données sont sûres, attendues et correctement formatées avant leur utilisation.Validation paththe sequence of checks a client or service performs to confirm a certificate is trusted.Validation-firstA security approach that tries to reproduce a suspected issue before treating it as confirmed.ValorizzazioneThe promotion and public use of cultural heritage, including broader access and knowledge sharing.ValuationThe market estimate of what a company is worth, often based on growth expectations as well as current financials.Value Based Procurementa purchasing model that weighs long-term value instead of only upfront cost.Value driftA gradual change in a component’s measured value over time.Value streamThe end-to-end flow of work needed to deliver value to a customer or business user.Value-chain resilienceThe ability to keep essential services functioning despite supplier or process disruption.Value-oriented procurementPurchasing that weighs price alongside access, resilience, and public outcomes.Vantaggio competitivoan edge that helps a company outperform rivals in its market.Variable rewardsUnpredictable feedback that can strengthen repeated checking and return behavior.Variable-price tariffa pricing model where the rate can change over time.VariantUne version modifiée d’un logiciel malveillant qui ajoute, supprime ou modifie des capacités.Variant churnRapid changes in malware samples that help attackers evade tools that rely on fixed signatures.Vata container that holds liquid during a chemical or manufacturing process.VAT refundthe reimbursement of value-added tax paid in excess or in another jurisdiction.vCISOVirtual Chief Information Security Officer, a term for outsourced security leadership support.Vector databaseA database built to store and search embeddings and related metadata for AI applications.Véhicule connectéUne voiture qui utilise des logiciels, des capteurs et des liaisons réseau pour transmettre et recevoir des données.Vendor backportA security fix applied to an older software branch without moving to a new major version.Vendor dependencyReliance on third parties or suppliers whose failure, compromise, or outage can affect an organization’s own security or operations.Vendor driverHardware-specific software supplied for a chipset or component, often sitting close to privileged system code.Vendor oversightthe practice of managing security risk introduced by suppliers and partners.Vendor riskThe possibility that a partner, supplier, or service provider introduces security or privacy exposure into a connected system.Vendor risk assessmentThe technical review of a supplier’s security posture, transparency, and downstream dependencies.Vendor risk managementThe process of assessing supplier security, reliability, and contractual controls before deployment.Vendor selectionchoosing a supplier based on risk, capability, compliance, and support.Vendor skinA manufacturer’s custom interface layer built on top of Android.Vendor-authored researchA study produced by a company that has a direct commercial interest in the topic being measured.Venture capitalPrivate investment that funds startups and high-growth technology companies.Verifiable skillsCapability that can be demonstrated through records, testing, or recognized validation.Vérificateur de connexion mis en cacheUn artefact local Windows qui permet une ouverture de session de domaine hors ligne sur un appareil spécifique.VérificationLa pratique consistant à vérifier les affirmations générées par l’IA à l’aide de sources primaires fiables.Vérification d’identitéContrôles utilisés pour confirmer qu’un travailleur est bien la personne qu’il prétend être.Vérification de somme de contrôleUn contrôle qui aide à détecter des modifications inattendues d’un module en comparant des hachages cryptographiques.Vérification du bénéficiaire (VOP)Un contrôle qui compare le nom du destinataire avec les informations du compte avant qu’un virement ne soit exécuté.Vérification du correctifLe processus consistant à confirmer que la version corrigée est bien déployée et active.vérification en 2 étapesUne méthode de protection de connexion qui exige un deuxième facteur au-delà d’un mot de passe.Verification frictionDeliberate steps that slow down acceptance of AI output so humans can check it.Verification gateA required checkpoint where human or automated review approves a change before release.Verification habitA routine of checking requests through a separate trusted channel before acting on them.Vérification hors bandeConfirmation de demandes sensibles via un canal distinct et de confiance, par exemple un numéro de téléphone connu.Verification loopA separate confirmation step used to check a request before acting on it.Verification pathA known, trusted way to confirm whether a request is legitimate.Verified BootA startup integrity check that helps confirm the operating system has not been altered before it loads.Verified channelan official communication path that is known to belong to the organization.Verified CRX UploadsA Chrome Web Store control that can require extension updates to be signed with a developer-controlled key.Verified reviewFeedback linked to a real purchase, used to improve trust in the rating.Verify AI agentsConfirming that an agent is authentic, intended, and connected to the expected service.VERISA framework for classifying security incidents by actors, actions, assets, and attributes.Verrouillage de plage d’octetsUn verrou sur une partie d’un fichier qui peut bloquer d’autres opérations de lecture, d’écriture ou de verrouillage.Verrouillage fournisseurune situation où le changement de fournisseur est difficile en raison de barrières techniques, contractuelles ou de format.Version 1.0A formal full release that usually signals a more stable public build.Version controlA system for tracking file changes that can also preserve sensitive history if misused.Version cutoffThe exact build number after which a vendor considers a flaw fixed.Version driftThe gap that grows when deployed systems lag behind current secure versions or approved firmware states.Version InventoryA precise record of deployed software versions used to match assets against advisories.Version sprawlThe buildup of multiple software versions across an estate, which increases operational and security complexity.Version suffixThe platform-specific build number used to confirm whether a device has the fixed release.Version tagA release marker in source control that points to a specific code snapshot.Version verificationChecking the exact installed build number to confirm a security update really applied.Version-specific remediationA fix process that depends on the exact software build or product branch in use.Vertical intelligenceAI designed for one specific domain or workflow instead of broad general use.Vertical moduleA specialized search surface, such as hotels or flights, that appears alongside regular web results.VEXVulnerability Exploitability eXchange, a format used to state whether a vulnerability affects a specific product.Vibe codingA development pattern where AI helps translate natural-language intent into code.VibrobotA small vibration-driven robot that moves by converting motor vibration into motion across a surface.Victim PageA public webpage used by attackers to name targets and increase pressure during an extortion campaign.Victim postingA public listing that claims a target has been compromised or is being extorted.Victim validationThe process of checking whether a public claim matches real technical evidence.Victim websiteThe public-facing domain tied to an organization, often used as a reference point in extortion claims.Victim-postA leak-site entry used by extortion groups to name a target and increase pressure.Vidage de donnéesUne affirmation selon laquelle des fichiers ou des enregistrements ont été copiés et pourraient être divulgués, vendus ou publiés en ligne.VideosurveillanceUse of cameras to record or monitor spaces, often treated as personal-data processing.Vie numérique après la mortDes systèmes d’IA qui utilisent les traces d’une personne pour ստեղծer un chatbot posthume, un avatar ou une présence interactive similaire.ViewpointThe camera angle from which an object is observed.ViewStateAn ASP.NET mechanism that preserves page and control state across requests.Vintage electronicsOlder hardware that may require extra testing because age can affect component behavior.Vinyl cutterA machine that uses a knife or blade to trim thin material into shapes.Violation de partageL'erreur renvoyée lorsqu'une nouvelle ouverture entre en conflit avec les paramètres de partage d'un descripteur de fichier existant.Virtual ApplianceSoftware packaged to run like a dedicated hardware device inside a virtual machine.Virtual currencyIn-app value used for digital rewards, cosmetics, or shop redemptions.Virtual debit cardA card issued in digital form for online and app-based payments without a physical card.Virtual disk image toolSoftware that mounts or manages disk image files so they behave like physical drives.Virtual goodsdigital items bought, sold, or traded inside online platforms or games.Virtual infrastructureSystems like hypervisors and virtual servers that can be targeted in ransomware incidents.Virtual Machine IsolationThe security boundary that keeps one VM from interfering with another VM on the same host.Virtual Private Network (VPN)A secure remote-access channel that connects users to internal resources.Virtual realityA computer-generated environment that users experience through immersive devices.Virtual town hallAn online public meeting format used to gather feedback and answer questions during rulemaking.VirtualizationRunning software in an isolated simulated environment.Virtualization hostA server that runs multiple virtual machines, making it a high-value ransomware target.Virtualization LayerThe management layer that runs virtual machines, such as ESXi, and can become a high-value target in ransomware incidents.Virtualization packingA protection layer that transforms code into an interpreter-driven format to hinder reverse engineering.Virtualized environmentan infrastructure setup where computing resources are abstracted from physical hardware.Visa policygovernment rules that determine who can enter, stay, or work in a country.VishingHameçonnage vocal qui utilise des appels téléphoniques pour tromper les gens et leur faire révéler des informations sensibles.VisibilityThe ability to see and understand security activity across systems in a usable way.Visibility gapA monitoring blind spot that leaves services, endpoints, or traffic patterns insufficiently observed.Visibility rulesThe logic that determines what users see first inside a platform.Vision Transformer (ViT)A model that treats an image as a sequence of patches and learns relationships across them.Visual Studio Code ExtensionA plugin for VS Code that can add features and, in some cases, access sensitive local resources.Visual-only detectionA moderation system that analyzes images or video frames but not audio.ViveToolA third-party tool used by testers to interact with Windows feature control mechanisms.VLESSA lightweight, stateless protocol used in the Xray/Project X networking ecosystem.VMware ESXiUne plateforme de virtualisation qui peut être ciblée lors d’incidents de ransomware affectant des serveurs et des machines virtuelles.VOCsVolatile organic compounds, chemicals that evaporate easily and can become part of indoor air during heating or processing.Voice interfaceA way of interacting with a service by speaking commands or requests.Voice phishingA social-engineering tactic that uses phone calls to trick people into revealing access or sensitive information.Voice Phishing (Vishing)Social engineering by phone or voice message used to trick people into revealing access or sensitive information.Voice-only supportA mode that relies on spoken interaction instead of full touch or video controls.VoiceprintA regulated representation of a person’s voice characteristics that can be used for identification.VoIPVoice over Internet Protocol, une technologie qui achemine les appels via les réseaux Internet.VoIP endpointA voice device that connects to data networks rather than using a traditional standalone phone line.Voix à commutation de circuitsL’ancien modèle téléphonique qui réservait un chemin dédié à chaque appel.Vol d’identifiantsLa capture non autorisée de noms d’utilisateur, de mots de passe ou de jetons d’authentification.Volatile evidenceTemporary system data, such as memory or live session details, that should be preserved quickly during incident response.VolatilityRapid or large price changes that can reduce predictability.VoLTEVoice over LTE, a mobile voice service that runs over 4G data networks using IP-based signaling.Volume Shadow Copy deletionThe removal of Windows backup snapshots to make recovery harder after encryption or sabotage.Volumetric attackA flood that consumes bandwidth by sending large amounts of traffic toward a target.Volumetric DDoSAn attack that tries to overwhelm a target by saturating bandwidth or network resources.Voluntary coordinationA security model where participation is encouraged rather than legally required.Voluntary frameworkA non-binding set of best practices that organizations may adopt without a legal mandate.Von Neumann architecturethe classic computer model that keeps processing and memory separate.Voyage data recorder (VDR)A shipboard system that stores operational and audio data for later safety review and incident investigation.Voyage optimizationRoute-planning that uses weather, vessel, and operational inputs to improve safety, timing, fuel use, or emissions.VPNUn tunnel d’accès à distance qui peut devenir une cible si des identifiants faibles ou des contrôles insuffisants sont utilisés.VPN credential abuseMisuse of stolen or guessed remote-access passwords to enter a network.VPN exposureA remote-access path that can become a major intrusion point if it lacks strong authentication or patching.VPN gatewayA device that terminates encrypted remote access and forwards traffic into a private network.VPN location selectionA control that lets a user choose the country a browser’s traffic appears to exit from.VPN script workflowA legitimate automation path that runs scripts when a VPN tunnel connects or disconnects.VPN tunnelAn encrypted path that routes device traffic through a remote server.VpnServiceThe Android API used by apps to implement VPN services.VS Code extensionAn add-on that extends Visual Studio Code and may have access to files, network calls, and processes.VSSVolume Shadow Copy Service, a Windows feature that creates snapshots for backup and recovery.vssadminA Windows utility sometimes abused in ransomware attacks to remove Volume Shadow Copy data.Vtable hijackAn exploitation method that corrupts a C++ object’s virtual function pointer table to redirect execution flow.VTScadaA SCADA platform used to monitor and manage industrial operations.Vulnérabilité de divulgation d'informationsUne faille qui peut révéler des données à une personne qui ne devrait pas les recevoir.VulnerabilityA weakness in software or hardware that can affect security or reliability.Vulnerability alleviationA practical reduction of risk through patching, mitigation, or exposure control.Vulnerability chainingCombining multiple weaknesses into one working exploit path.Vulnerability databaseA structured system for tracking known software weaknesses and their status.Vulnerability disclosureThe process of reporting a flaw so it can be fixed before wider abuse.Vulnerability disclosure policyA public process that tells researchers how to report security flaws responsibly.Vulnerability discoveryThe process of identifying weaknesses in software before attackers can exploit them.Vulnerability exploitationUsing a software flaw to gain unauthorized access or control.Vulnerability handlingThe procedures for finding, prioritizing, fixing, and communicating security flaws across a product’s lifecycle.Vulnerability managementThe process of finding, ranking, and fixing software weaknesses before they are abused.Vulnerability reconstructionThe act of inferring a flaw from a patch or code change.Vulnerability remediationThe process of fixing a security flaw so it can no longer be used as an attack path.Vulnerability reportA submitted description of a possible software flaw that still needs validation.Vulnerability responseThe process of tracking, prioritizing, and fixing known security weaknesses.Vulnerability ScanningAutomated checking of systems for exposed flaws, outdated software, or misconfigurations.Vulnerability triageThe manual process of checking whether a reported issue is real, exploitable, and security-relevant.w3wp.exeThe IIS worker process that handles web application execution and is a useful hunting target for defenders.WAFWeb Application Firewall; a control that filters and inspects HTTP traffic to protect web applications from common attacks.WaitlistA queue of interested users who are contacted when access or stock becomes available.Walled gardena platform ecosystem that keeps more of the advertising process inside one provider.WalletA digital tool used to store or transfer crypto assets.Wallet credentialsSecrets used to access or control a crypto wallet, such as passwords or recovery material.Waste heatHeat produced by computing equipment that can sometimes be recovered or reused instead of being vented away.Water splittingThe separation of water into hydrogen and oxygen using electrical energy.Water-coolingA cooling method that uses circulating liquid to carry heat away from a system.Water-tightSealed closely enough to prevent liquid from passing through.Watering-hole attackAn operation that abuses a trusted site or content path likely to be visited by the intended target.WatermarkA visible or embedded marker that signals ownership, sensitivity, or permitted use.WatermarkingA technique that embeds signals into media to help identify generated or modified content.WaterproofingAny process used to reduce or prevent water ingress into a material or part.WaveformThe shape of a signal over time, which affects how hardware behaves or responds.WaylandA modern Linux display protocol designed to replace X11.WDACWindows Defender Application Control; a Microsoft control for allowing only approved code and reducing the chance that untrusted drivers run.Weaponized ZIP archiveA compressed file prepared to deliver malware while appearing to be a normal installer package.WearableA body-worn device that can collect signals such as movement or other personal data.Wearable deviceElectronics designed to be carried or worn on the body.Wearable electronicsElectronic devices designed to be worn on the body.Wearable platformsoftware and hardware environment for devices worn on the body, such as smartwatches.Web application firewallA filter that inspects web traffic and can block common application-layer attacks.Web Application Firewall (WAF)A filter that inspects HTTP traffic and can block common web attacks before they reach an application.Web application securityControls that protect websites, APIs, and web services from abuse and attack.Web filterA search view that prioritizes text-based website links and hides several Google-generated modules.Web Host ManagerThe administrative side of the cPanel ecosystem, used by providers to manage hosting servers and related settings.Web IDEA browser-based code editor that runs development tasks without requiring a local clone.Web impersonationThe practice of copying a real website’s look and feel to make a fraudulent page seem legitimate.Web interfaceA browser-based control surface used to send commands to a device or service.Web logServer records that can show requests, errors, and possible signs of unauthorized activity.Web rootThe directory served directly by a web server; keeping uploads outside it helps prevent direct execution.Web Serial APIA browser feature that lets web apps communicate with serial devices through controlled permissions.Web serverSoftware that receives HTTP requests and returns content such as pages or files.Web server persistenceA foothold that helps an attacker keep access through the server layer after compromise.Web Service abuseA tactic where attackers misuse legitimate online services for command, delivery, or data relay.Web Service C2A tactic that uses legitimate online services as intermediaries for malicious communications.Web shellUn script malveillant placé sur un serveur pour fournir un contrôle à distance.Web skimmingThe theft of payment data by malicious code embedded in an online checkout flow.Web user agentSoftware that interacts with websites on behalf of a user, such as a browser, assistant, or automated agent.Web-facing applicationAn internet-accessible service that can be reached through a browser or API.Web-injectMalicious code inserted into a legitimate website to alter what visitors see or do.WebAssemblyA performance-focused execution format that lets code run in the browser with near-native speed.WebAuthnA web authentication standard that supports phishing-resistant sign-in methods.WebBrowser controlA Windows component that wraps legacy Internet Explorer rendering behavior inside desktop applications.WebDAVAn HTTP extension for remote file management that adds create, move, copy, and delete capabilities.WebDialerA Cisco Unified CM service used for click-to-dial and related web integration.WebhookUn point de terminaison HTTP qui reçoit des requêtes externes et déclenche un flux de travail automatisé ou une action.WebmailA browser-based email interface that handles message display, sending, and related account functions.WebRTCA browser technology for real-time audio, video, and data communication.WebRTC Encoded TransformA browser API path that gives apps access to encoded media frames for processing before send and after receive.WebshopAn online store that handles customer browsing, ordering, payment, and support workflows.Website fingerprintingInferring which site a user visited from indirect signals such as timing patterns or resource usage.WebSocketUn canal de communication Web persistant et bidirectionnel utilisé par les applications et parfois détourné pour un transfert furtif de données.WebSocket UpgradeThe HTTP/1.1 handshake that switches a connection from HTTP to WebSocket.WebViewAn Android component that lets apps render web content inside the app, often used for embedded pages and in-app browsing.WeightA design factor that affects installation, support requirements, and overall practicality.Wellbeing IntelligenceA management approach that uses data and AI to track and interpret employee wellbeing signals.WhalingTargeted phishing aimed at senior executives or other high-value individuals.WhatsApp impersonationFraud that uses fake chat messages to appear like a trusted organization or contact.WheelA built package format for Python that installs faster than source distributions.WhistleblowerA person who reveals hidden wrongdoing or harmful practices from inside an operation.WhistleblowingProtected reporting of concerns or breaches in a work-related context through approved channels.WHML’interface d’administration serveur au niveau root dans la pile cPanel.Wholesale accessThe underlying network agreement a provider uses to sell connectivity.Wholesale bankingLarge-value financial operations between institutions, not consumers.Wholesale marketThe upstream market where energy prices are formed before retail billing.WHQLMicrosoft’s Windows Hardware Quality Labs certification path for driver validation and signing.Wi-Fiwireless networking that trades cables for convenience and mobility.Wildcard CertificateA certificate that covers a domain and its first-level subdomains under one private key.Wind tunnelA device that channels moving air so objects can be studied under controlled conditions.Windowing systemThe software layer that manages windows, input, and screen output.Windows AutopatchMicrosoft’s managed update service for automating Windows and related Microsoft updates.Windows DLL search orderThe sequence Windows uses to look for a DLL when a full path is not specified.Windows ExplorerThe Windows desktop shell process that manages common interface elements such as the taskbar and file browser.Windows Filtering PlatformMicrosoft’s framework for inspecting and filtering network traffic at multiple layers.Windows HelloMicrosoft’s local authentication framework for unlocking devices and passkey use with PIN or biometrics.Windows InsiderMicrosoft’s preview program for testing Windows changes before broad release.Windows Insider ProgramMicrosoft’s preview program for testing pre-release Windows features and builds.Windows InstallerMicrosoft’s packaging system for installing software on Windows, often through MSI-based workflows.Windows kernelThe privileged core of Windows that manages memory, hardware access, and system security.Windows Recovery Environment (WinRE)a recovery mode used for repair and recovery tasks, which can be part of BitLocker recovery workflows.Windows Scheduled TaskA built-in feature that can run programs automatically and is often abused for persistence.Windows Script HostA native Windows component that runs script files such as JScript.Windows scriptingBuilt-in script handling on Windows that can run code without a separate app being installed.Windows SearchThe built-in Windows search feature and related plumbing used for search launching and indexing.Windows TerminalMicrosoft’s modern terminal application that provides tabs, panes, and a host for command-line shells.Windows UpdateMicrosoft’s service for delivering software and driver updates to Windows devices.Windows, Linux, and VMware ESXiCommon enterprise platforms that can all become ransomware targets in mixed environments.Winmail.datA file commonly associated with Outlook/TNEF rich-message handling.WinREWindows Recovery Environment, the repair and recovery mode used when normal boot fails.WinRMA remote management service for Windows that can become a pivot point if exposed or misused.WireframeA low-fidelity outline of an interface used to map structure, layout, and user flow before visual design is finalized.Wireless ADBUn mode qui permet à un appareil de se connecter pour le débogage via Wi‑Fi au lieu d’un câble USB.Wireless clockA clock that updates from a radio or network timing source.Wireless MCUA microcontroller with built-in wireless connectivity such as Wi-Fi or Bluetooth.WishlistA shopping feature that lets users track products they may want to buy later.WM_COPYDATAA Windows message used for passing data between local processes; poor validation can lead to crashes or abuse.WMIWindows Management Instrumentation, a legitimate system feature that attackers may abuse for remote actions and discovery.WMICA legacy Windows Management Instrumentation command-line tool being removed or phased out in newer Windows versions.WooCommerceA WordPress e-commerce platform used by online stores to manage products, carts, and payments.WordPressAn open-source content management system used to build and run websites.WordPress hardeningSecurity steps that reduce compromise risk, including permission controls and limiting direct file editing.WordPress PluginAn add-on that expands WordPress functionality, but can also expand the attack surface.WorkaroundA temporary fix that restores function without fully resolving the underlying bug.WorkbenchA FreeCAD workspace that groups tools for a specific task, such as drafting or part design.Worker ProcessThe NGINX process that handles requests; if it crashes, active traffic can be interrupted or restarted.Workers AIService d’inférence sans serveur de Cloudflare pour exécuter des modèles d’IA sur son réseau en périphérie.WorkflowA defined sequence of actions that an orchestration tool can trigger or manage.Workflow abuseMisusing a legitimate business or support process to achieve an unauthorized security outcome.Workflow automationTechnology that moves tasks and data through a process with minimal manual handling.Workflow Automation PlatformLogiciel qui relie des applications et des services au moyen d’étapes visuelles, souvent avec des autorisations sensibles et un accès aux données.Workflow bottleneckThe stage in a process that slows everything else down because it cannot keep pace with upstream work.Workflow commandSpecial syntax in GitHub Actions logs that can change runner behavior or mask output.Workflow controlSecurity rules that govern how actions move through a business process.Workflow dependencyA business process that relies on a specific tool, mode, or configuration to function smoothly.Workflow engineThe component that runs predefined steps, actions, or agent tasks in a system.Workflow executionThe running of predefined automated tasks, often chained through server-side logic.Workflow fileA CI configuration file that defines automated jobs and the permissions they can use.Workflow fitHow well an AI system matches existing business steps without forcing awkward workarounds.Workflow frictionExtra steps or complexity that make a task harder to complete.Workflow governanceThe rules and checkpoints that define who reviews, approves, and owns AI-assisted output.Workflow injectionThe insertion or alteration of CI workflow files so automation performs an attacker-controlled action.Workflow integrationa connected business process that depends on a model’s output.Workflow orchestrationThe control layer that decides how tasks, tools, and approvals are connected.Workflow permissionsThe privileges a pipeline has when it runs, including access to secrets or deployment actions.Workflow RedesignRebuilding business processes so automation and humans each do the right work.Workflow tokenAn automation credential used by a GitHub workflow to authenticate and perform actions on a repository.Workflow triggerA request or event that starts an automated process inside a system.Workflow VisibilitySecurity signals shown inside tools or browser views so developers can assess risk earlier in the selection process.Workforce gapThe shortfall between available cybersecurity talent and the number of roles organizations need to fill.Workforce readinessHow prepared employees are to operate in redesigned roles and new working conditions.Workforce reskillingTraining employees to use new tools and take on updated responsibilities as technology changes.Workload classificationSorting systems by sensitivity, compute needs, and regulatory exposure so each one gets the right level of control.Workload economicsA decision model that evaluates cost, performance, and risk for each application or service instead of averaging across all systems.Workload placementThe process of deciding where a computing task should run based on cost, risk, latency, data handling, and governance needs.Workspace TrustA VS Code control that limits risky actions when a folder has not been trusted.Workspace-scoped accessPermissions and visibility tied to the files, sessions, and tools available inside a project environment.Workstation trustThe assumption that a nearby person or device is authorized, which attackers try to exploit in physical attacks.World modelAn AI system that learns an internal model of how an environment changes over time.WormSelf-replicating malware that can spread without manual copying once it reaches a suitable environment.Wrapper libraryA package that provides a framework-friendly interface around another library or service.Write privilegePermission that allows a user or service account to modify database data, making credential control a major security boundary.WSUSWindows Server Update Services, Microsoft’s enterprise system for approving and distributing updates.X-dataExperience data collected from surveys, feedback, or other user sentiment channels.X.509The standard certificate format used across the public key infrastructure of the web.X.509 certificateA standard digital certificate used to bind a public key to an identity.X.Org X serverThe core display server that manages input, windows, and rendering requests for X11 desktop sessions.X11An older Linux windowing system that remains part of desktop compatibility history.X25519An elliptic-curve key exchange method used to derive shared secrets securely.x402An HTTP-native payment protocol that lets clients settle access requests through a payment challenge flow.x86 PCA standard computer platform often reused for general-purpose computing.XDRExtended Detection and Response; a security approach that correlates signals across multiple layers.XenoRATA remote access trojan family used for control, reconnaissance, and long-term access.XenotransplantationTransplantation of living cells, tissues, or organs from a nonhuman animal into a human recipient.XFRMThe Linux kernel framework that handles IPsec-related packet transformations and security processing.xIoTA broad term for extended connected-device environments, often used to group IoT, IIoT, OT, and related systems.XKMSXML Key Management Specification, a framework for certificate and key lookup or registration.XLAExperience Level Agreement, a contract layer that measures user experience and service usefulness.XMRigA mining project commonly associated with Monero-focused cryptocurrency mining activity.XOR encodingA basic obfuscation method that masks data using an exclusive-OR operation with a key.xOTA vendor framing for an expanded operational environment that includes OT and adjacent connected devices.XPath InjectionA flaw where untrusted input alters an XPath query, changing how XML data is selected or processed.XProtectMécanisme intégré à macOS d’Apple pour la détection et la suppression des logiciels malveillants.XRExtended reality, the umbrella term for augmented reality, virtual reality, and mixed reality.Xray-coreThe software project that implements and documents VLESS-related networking features.XSA Perl interface that lets modules call C code directly, which can introduce memory and string-handling risks.XSSCross-site scripting, a flaw that can make a browser run attacker-controlled script in a trusted page.XwaylandA compatibility X server that lets legacy X11 apps run inside Wayland-based desktops.YankA registry action that removes a package version from normal use without necessarily deleting every historical trace.Yanked ReleaseA package release marked to discourage use, often because it is broken, unsafe, or compromised.YankingRemoving a published package version from a registry so it is no longer available for normal use.z/OSLe système d’exploitation mainframe d’IBM pour des charges de travail d’entreprise à haut niveau de sécurité et à grand volume.Zachman FrameworkA taxonomy for organizing enterprise descriptions by viewpoint and artifact type.Zero TrustUne approche de sécurité qui suppose l’absence de confiance implicite et vérifie l’accès en continu.Zero UIA design approach that reduces reliance on visible screens, menus, and buttons.Zero-access encryptionA storage model where the provider cannot decrypt user data once it is stored.Zero-access modelA design where the service provider is not meant to have technical access to user plaintext.Zero-byte FileA file that exists but contains no data, sometimes used as a sign of destructive tampering or wiping.Zero-clickUne voie d’exploitation qui ne nécessite pas que la victime appuie, approuve ou interagisse d’une quelconque autre manière.Zero-click attackA compromise that does not require the victim to tap, approve, or otherwise interact with a malicious message or payload.Zero-click exploitAn attack path that can begin without the victim tapping, opening, or approving anything.Zéro-copyUne technique de performance qui réduit la duplication des données, mais peut compliquer la gestion de la mémoire et les contrôles de sécurité.Zero-dayUne vulnérabilité jusque-là inconnue que des attaquants peuvent utiliser avant qu’un correctif n’existe.Zero-day vulnerabilityA flaw unknown to the vendor and unpatched at the time it is discovered or demonstrated.Zero-knowledgeA design where the provider says it cannot read the contents of protected files or access the decryption keys.Zero-knowledge architectureA design where the service stores encrypted data but cannot read user secrets by default.Zero-knowledge encryptionA design in which the provider is structured not to read stored plaintext data.Zero-Knowledge ProofA cryptographic method for proving a statement is true without revealing the underlying secret.Zero-trustA model that requires verification before granting access, even inside a trusted network.Zero-trust architectureA security model that requires continuous verification of users, devices, and access context.ZIP archiveA compressed container that can hold files and folders, often used to deliver attachments in a single package.ZIP attachmentA compressed archive that can bundle multiple files and hide the first stage of an attack.Zones et conduitsUn modèle de segmentation OT qui regroupe les actifs et contrôle le trafic entre eux afin de limiter la propagation et de contenir les incidents.Zoonotic riskThe possibility that an infectious agent can move from animals to humans.zTDSThe traffic-distribution system named in the DriveSurge campaign summary.ZTNAZero Trust Network Access, a method for granting application access without exposing broad network access.