Policy Glossary P - R
The installation of a software update designed to fix problems, improve usability, or enhance performance.
Personally Identifiable Information
Any information that identifies or describes an individual, including, but not limited to name, Social Security number, physical description, address, phone number, financial matters, medical or employment history (California Information Practices Act).
Being able to physically touch, use, and interact with information systems and network devices.
Private IP Addresses
Defined by Request for Comment (RFC) 1918 as range of non-routable addresses.
Information asset containing protected data.
Level 1 and Level 2 data which are defined in the CSU Data Classification Standard. This data has been categorized according to its risk to loss or harm from disclosure.
Any information prepared, owned, used or retained by a campus and not specifically exempt from disclosure requirements of the California Public Records Act (Government Code Sections 6250-6265) or other applicable state or federal laws.
Any connection from an external, non-campus network to any campus information system, data, or network resource.
The likelihood of a given threat exercising a particular potential vulnerability, and the resulting impact of that adverse event on an organization.
A process by which quantitatively and/or qualitatively, risks are identified and the impacts of those risks are determined. The initial step of risk management.
A structured process which identifies risks, prioritizes them, and then manages them to appropriate and reasonable levels.
Reduce the adverse effect of an event by reducing the probability of the event occurring and/or limiting the impact of the event if it does occur