|
In each issue of the ITIL Newsletter we will include a selection of terms and definitions to explain some of the jargon used by ITSM professionals. In this issue, we have selected terms beginning with the letter ‘A’.
ACCESS Two types of access: Physical and Logical. Physical Access. The process of obtaining use of a computer system, - for example by sitting down at a keyboard, - or of being able to enter specific area(s) of the organisation where critical information or systems are located. Logical Access. The process of being able to enter, modify, delete, or inspect, records and data held on a computer system by means of providing an ID and password (if required). The view that restricting physical access relieves the need for logical access restrictions is misleading. Any organisation with communications links to the outside world has a security risk of logical access. Hackers do not, generally, visit the sites they are hacking in person.- they do it from a distance! ACCESS RIGHTS The powers granted to users to create, change, delete, or simply view data and files within a system, according to a set of rules defined by IT and business management. It is not necessarily true that the more senior a person, the more power is granted. For example, most data capture - essentially creating new files or transactions, is performed at relatively junior level, and it is not uncommon for senior management to have access rights only to view data with no power to change it. There are very good Internal Control and Audit reasons for adopting this approach. ADMISSIBLE EVIDENCE Admissible Evidence is ‘evidence’ that is accepted as legitimate in a court of law. From an Information Security perspective, the types of ‘evidence’ will often involve the production of a system’s log files. The log file will usually identify the fact that a login took place; and certain functions were performed. The issue as to whether or not such a log file is legally admissible, is not clear cut. However, opinion appears to be that as long as a computer record is generated as a normal part of business processing, and the computer and software were working as designed and expected, then it may be admissible. Advice from a lawyer is always recommended. AI ARTIFICIAL INTELLIGENCE The holy grail of IT folk, the concept of a machine thinking for itself. Despite the success of the recent blockbuster film starring Jute Law - don’t hold your breath. ALPHA GEEK The most knowledgeable, technically proficient, person in an office, work group, or other, usually non-IT, environment. Born ‘fiddlers’ and ‘tinkerers’, they tend to ignore the basic rule of ‘If it ain’t broke don’t fix it’ preferring to operate on the basis of ‘Fix it, until it is broke’. Such people can be a considerable security risk - like ordinary Geeks, Anoraks, and Tech-heads, - only more so. ANORAKS Whimsical term for computer enthusiasts - usually, but not exclusively, young and lacking in social skills. The term derives from the preferred item of apparel for attending computer exhibitions, it being equipped with numerous sizeable pockets ready to be stuffed with all manner of obscure electronic gizmos. Some anoraks tend more to the software side of IT and may graduate to being Hackers. Anoraks certainly have their uses but, in many ways, are a security risk. Such persons are inclined to do things with, and to, organization IT systems simply for the technical and intellectual challenge, rather than for any business benefit to the organization. Also known as Nerds, Geeks, and Tech-heads, the term is acquiring wider usage to describe any enthusiastic follower of obscure sports, hobbies, pastimes, etc. APMG The APM Group is the current official ITIL Certification agent, as appointed by OGC (the Office of Government Commerce). ARCHIVE An area of data storage set aside for non-current (old or historical) records in which the information can be retained under a restricted access regime until no longer required by law or organization record retention policies. This is a field in which computers have distinct advantages over older paper files, in that computer files can be ‘compressed’ when archived to take up far less space on the storage media. Paper records can only be compressed by using microfilm, microfiche, or, more recently, by scanning into a computer system. Whichever system is chosen, care must be exercised to ensure that the records retained meet legal requirements should it ever be necessary to produce these records in a court of law. |
ITSM.TV is the archive portal of the ITIL and other ITSM related newsletters.
These are information bulletins and are intended to provide an objective view of current events, in addition to adding a cocktail of humor and educational material.
We are always happy to consider articles and items from third parties for any of our newsletters. If, therefore, you have any suitable information, perhaps an interesting insight into an ITSM related issue, or any other material which may interest our subscribers, please feel free to submit it via our contact page.
ITIL is a registered trademark of the OGC. It is also registered with the US Patent & Trademark Office.
The ITSM Channel
Free Subscription
-
To subscribe to the ITIL Newsletter, simply enter your details below:
|
|
Archive
Contact
-
We can be contacted directly via our Contact Page