Asset (computer security)

In information security, computer security and network security, an asset is any data, device, or other component of the environment that supports information-related activities. Assets generally include hardware (e.g. servers and switches), software (e.g. mission critical applications and support systems) and confidential information.^[1]^[2] Assets should be protected from illicit access, use, disclosure, alteration, destruction, and/or theft, resulting in loss to the organization.^[3]

^ "ISO/IEC 27005:2022 - Information security, cybersecurity and privacy protection". ISO. October 2022. Retrieved 31 December 2023.
^ "ENISA Glossary". Archived from the original on 2012-02-29. Retrieved 2010-11-21.
^ "An Introduction to Factor Analysis of Information Risk (FAIR)", Risk Management Insight LLC, November 2006 Archived 2014-11-18 at the Wayback Machine;

[ISC_1-1] "ISO/IEC 27005:2022 - Information security, cybersecurity and privacy protection". ISO. October 2022. Retrieved 31 December 2023.

[2] "ENISA Glossary". Archived from the original on 2012-02-29. Retrieved 2010-11-21.

[FAIR-3] "An Introduction to Factor Analysis of Information Risk (FAIR)", Risk Management Insight LLC, November 2006 Archived 2014-11-18 at the Wayback Machine;

[1]

[2]

[3]