信息安全工程师教材:Key Words(Application Security)

2. Key Words

(1) Vulnerability: is the susceptibility to physical or emotional injury or attack. It alsomeans to have ones guard down, open to censure or criticism; assailable. Vulnerability refersto a persons state of being liable to succumb, as to persuasion or temptation.

(2) A countermeasure: is a system (usually for a military application) designed toprevent sensor-based weapons from acquiring and/or destroying a target.

Countermeasures that alter the electromagnetic, acoustic or other signature(s) of a targetthereby altering the tracking and sensing behavior of an incoming threat (e.g., guided missile)are designated softkill measures.

(3) Configuration management (CM) is a field of management that focuses onestablishing and maintaining consistency of a product's performance and its functional andphysical attributes with its requirements, design, and operational information throughout itslife. For information assurance, CM can be defined as the management of security features andassurances through control of changes made to hardware, software, firmware, documentation,test, test fixtures, and test documentation throughout the life cycle of an information system.s

(4) session management: is the process of keeping track of a user s activity acrosssessions of interaction with the computer system.

(5) The Open Mobile Terminal Platform (OMTP):  is a forum created by mobilenetwork operators to discuss standards with manufacturers of cel1l phones and other mobiledevices. Although dominated by network operators, the OMTP includes manufacturers such as Nokia, Samsung, Motorola, Sony Ericsson and LG Electronics.