Information security

Information security is variously defined in the federal statutes. Under the copyright law, "information security" consists of those “activities carried out in order to identify and address the vulnerabilities of a government computer, computer system, or computer network.”

Section 3542 of Title 44 of the U.S. Code defines "information security" as


 * [p]rotecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide –
 * (A) integrity, which means guarding against improper information modification or destruction, and includes ensuring information nonrepudiation and authenticity;
 * (B) confidentiality, which means preserving authorized restrictions on access and disclosure, including means for protecting personal privacy and proprietary information; and
 * (C) availability, which means ensuring timely and reliable access to and use of information.