OAuth - (Open Authorization) - The OAuth 2.0 authorization framework enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction between the resource owner and the HTTP service, or by allowing the third-party application to obtain access on its own behalf.
object - A passive entity that contains or receives information. Access to an object potentially implies access to the information that it contains. Examples of objects include records, pages, memory segments, files, directories, directory trees, and programs.
object reuse - Reassigning to a subject media that previously contained information. Object reuse is a security concern because if insufficient measures were taken to erase the information on the media, the information may be disclosed to unauthorized personnel.
onboarding - The process of turning a candidate into a trusted employee who is able to perform all assigned duties.
one-time pad - A method of encryption in which the plaintext is combined with a random
open authorization - The OAuth 2.0 authorization framework enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction between the resource owner and the HTTP service, or by allowing the third-party application to obtain access on its own behalf.
open shortest path first - An interior gateway routing protocol developed for IP networks based on the shortest path first or link-state algorithm.
operational assurance - A level of confidence of a trusted system\'s architecture and implementation that enforces the system\'s security policy. This can include system architecture, covert channel analysis, system integrity, and trusted recovery.
operational goals - Daily goals to be accomplished to ensure the proper operation of an environment.
operator - An individual who supports the operations of computer systems
OSPF - (Open Shortest Path First) - An interior gateway routing protocol developed for IP networks based on the shortest path first or link-state algorithm.
OTP - (One-Time Pad) - A method of encryption in which the plaintext is combined with a random
overt channel - A path within a computer system or network that is designed for the authorized transfer of data.
overt security testing - Overt testing can be used with both internal and external testing. When used from an internal perspective, the bad actor simulated is an employee of the organization. The organization
ownership - Possessing something, usually of value.