Monthly Archives: March 2025

WUSON Glossary

Posted on by
Reply
  1. Vision: description of a better future state.
  2. Goal: statement of success criteria for fulfilling the vision.
  3. Objective: specific, measurable, achievable, realistic, and timely (SMART) description of the future state.
  4. Strategy: high-level approach or plan to achieve goals.
  5. Risk: “effect of uncertainty on objectives.” (ISO 31000)
  6. Opportunity: risk with positive effect.
  7. Threat: risk with negative effect.
  8. Probability: quantitative measure of uncertainty.
  9. Likelihood: qualitative measure of uncertainty.
  10. Control: means for risk treatment to prevent the situation from being out of control if a risk materializes.
  11. Problem: instance of an issue, incident, condition, or obstacle that hinders the fulfillment of objectives, goals, or vision.
  12. Value: anything of importance, significance, or use that can be measured qualitatively or quantitatively.
  13. Asset: anything of value and worthy of protection.
  14. Business value: the value generated by an organization or organizational unit.
  15. System: a “combination of interacting elements organized to achieve one or more stated purposes.” (ISO/TS 14812:2022)
  16. Analysis: process to get insights by dividing a complex or complicated thing into smaller, simple units.
  17. Evaluation: process to gather information or collect evidence to inform, support, and justify decisions.
  18. Operations: Operations: ongoing activities or daily routines to support the delivery of products and services.
  19. Configuration: the “manner in which the resources of an information processing system are organized and interconnected.” (ISO/IEC 20944-1:2013)
  20. Architecture: the artifact describing the principal elements and their relationship, interaction, and boundaries. Architecture is a crafted structure with a focus on the principal elements.
  21. Structure: the natural or crafted formation of a system describing the constituent elements and their relationship, interaction, and boundaries.
  22. Design: the documented solution, “the result of the design process” (ISO/IEC/IEEE15288:2015) that can meet stakeholders’ requirements. The design process typically starts with addressing architectural concerns or the so-called “architectural design.”
  23. Baseline: the “version of the approved set of one or more work products, items or elements that serves as a basis for change.” (ISO 26262-1:2018)
    Note 1 to entry: See ISO 26262-8:2018, Clause 8.
    Note 2 to entry: A baseline is typically placed under configuration management.
    Note 3 to entry: A baseline is used as a basis for further development through the change management process during the lifecycle.
  24. Change: “the transition from a current state to a future state.” (ACMP)
  25. Requirement: documented needs and expectations of stakeholders.
  26. Entity: anything with an identity.
  27. Identity: one or a set of attributes used to distinguish one entity from another uniquely.
  28. Authentication: the process of assuring a subject’s claimed identity is genuine by verifying its authenticator.
  29. Authorization
  30. Accounting
  31. Testing: process for a tester to exercise the system under test (SUT) or target of evaluation (TOE) and evaluate if the actual outcome matches his expected outcome.
  32. Engineering
  33. Assurance
  34. Management: a systematic approach (e.g., PDCA) to achieving objectives.
  35. Governance: a systematic approach (e.g., Evaluate, Direct, and Monitor by ISO 27014) for the highest organizational level of authority (e.g., state governor) to achieve the organization’s objectives.
  36. Security: assured state achieved by implementing controls to protect assets from risk to achieve objectives.