Additions to the published hyperglossary

0 views
Skip to first unread message

Gary Hinson

unread,
May 10, 2026, 2:00:24 AM (12 days ago) May 10
to hyperg...@googlegroups.com
As promised, I am working my way systematically through my working version of the Cybersecurity Hyperglossary, picking out new entries that have been added in the past year since the manuscrpt was submitted to Taylor & Francis. 

I'm up to the F's so far, about a third of the way through and on-track to complete this job by the end of May. 

For each new term, I'm releasing the succinct plain English definition - just the first sentence or so of the definition without additional details or the reference source/s (other glossaries, mostly).  

There are no hyperlinks between items, since you'd need the whole document for those ... and I'm not about to give it away for free! 

Please see: https://www.hyperglossary.com/changes 

As always, comments, corrections, complaints and improvement suggestions are very welcome.  I am especially keen to know if you spot cybersecurity-related terms that are missing from both the published book AND the listed changes.

Kind regards/Ngā mihi,

____________________________________________

Nigel Landman

unread,
May 10, 2026, 4:42:56 AM (11 days ago) May 10
to hyperg...@googlegroups.com
BaU or BAU - Business-as-Usual - this prob sits alognside your updated entry - Business operations

NIST glossary doesn't define it but Wikipedia seems to include it, with refs. -  the normal execution of standard functional operations within an organisation, forms a possible contrast to projects or programmes which might introduce change.[1] BAU may also stand in contradistinction to external events which may have the effect of unsettling or distracting those inside an organisation.

Nigel


--
You received this message because you are subscribed to the Google Groups "Cybersecurity hyperglossary" group.
To unsubscribe from this group and stop receiving emails from it, send an email to hyperglossar...@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/hyperglossary/CAPRmHF7pdV-eCtfLJm1EM8QnCe3U9zRb-KuABW1T64tEunZZGQ%40mail.gmail.com.

Gary Hinson

unread,
May 10, 2026, 2:55:24 PM (11 days ago) May 10
to hyperg...@googlegroups.com
Yup, good idea Nigel.  

How is this for starters?

image.png

'Contradistinction' is an obscure word and I'm not sure I agree with Wikipedia's 'unsettling and distracting'.  I wondered about mentioning internal and external causes but settled (for now, anyway) on contrasting planned against unplanned.  In my experience, BAU is used in reference to resuming operational activities, particularly the more critical ones relating to production or core business, rather than emotional recovery ... but, as always, corrections, comments & improvement suggestions are welcome.

Kind regards/Ngā mihi,

____________________________________________

_____________________________________________




On Sun, 10 May 2026 at 20:42, Nigel Landman <nigel....@gmail.com> wrote:
BaU or BAU - Business-as-Usual - this prob sits alognside your updated entry - Business operations

NIST glossary doesn't define it but Wikipedia seems to include it, with refs. -  the normal execution of standard functional operations within an organisation, forms a possible contrast to projects or programmes which might introduce change.[1] BAU may also stand in contradistinction to external events which may have the effect of unsettling or distracting those inside an organisation.

Nigel


On Sun, 10 May 2026 at 07:00, Gary Hinson <ga...@isect.com> wrote:
As promised, I am working my way systematically through my working version of the Cybersecurity Hyperglossary, picking out new entries that have been added in the past year since the manuscrpt was submitted to Taylor & Francis. 

I'm up to the F's so far, about a third of the way through and on-track to complete this job by the end of May. 

For each new term, I'm releasing the succinct plain English definition - just the first sentence or so of the definition without additional details or the reference source/s (other glossaries, mostly).  

There are no hyperlinks between items, since you'd need the whole document for those ... and I'm not about to give it away for free! 


As always, comments, corrections, complaints and improvement suggestions are very welcome.  I am especially keen to know if you spot cybersecurity-related terms that are missing from both the published book AND the listed changes.

Kind regards/Ngā mihi,

____________________________________________

--
You received this message because you are subscribed to the Google Groups "Cybersecurity hyperglossary" group.
To unsubscribe from this group and stop receiving emails from it, send an email to hyperglossar...@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/hyperglossary/CAPRmHF7pdV-eCtfLJm1EM8QnCe3U9zRb-KuABW1T64tEunZZGQ%40mail.gmail.com.
--
You received this message because you are subscribed to the Google Groups "Cybersecurity hyperglossary" group.
To unsubscribe from this group and stop receiving emails from it, send an email to hyperglossar...@googlegroups.com.

Marty Carter

unread,
May 10, 2026, 11:13:23 PM (11 days ago) May 10
to hyperg...@googlegroups.com
Hi Gary,

I’m a bit behind the curve here because of work, but I’m managing to look through the material when I have some spare time. The comments below are simply observations and suggestions offered in the spirit of constructive feedback.

Acceptable Downtime: Given the more formal treatment of MTO/MTD/MTPD in the current edition of the book, I wonder whether ‘crude’ is the best adjective for Acceptable Downtime. I assume the intention is to convey a rough or high-level estimate rather than an unsophisticated or poorly defined one?

Artificial Intelligence Risk Management Framework (AIRMF): I believe the official NIST abbreviation is ‘AI RMF’, rather than ‘AIRMF'.

Behavioural biometrics: NIST terminology frames this as biometrics based on behavioural characteristics or patterns, so perhaps ‘based on patterns in a person’s behaviour’ would align more closely with established usage.

Cloud service: This definition appears overly broad because ‘information service provided through the Internet’ could describe nearly any online service, couldn't it? Perhaps it could reference cloud computing resources or capabilities more explicitly?

Kind regards,

Marty


Marty Carter

Director | Information Security Consultant


image.png

Meridian GRC Consulting Ltd

Meridian GRC Consulting Ltd

71-75, Shelton Street

Covent Garden

London, WC2H 9JQ

United Kingdom


E: ma...@meridiangrc.com

W: meridiangrc.com

Clarity and assurance in compliance



Please consider the environment and don’t print this email unless you really need to.


*Disclaimer: This email and any attachments are confidential and intended only for the named recipient. If you received it in error, please notify the sender and delete it. Meridian GRC Consulting Ltd processes personal data in accordance with applicable data protection laws, including the UK GDPR and the EU GDPR.


© 2025 Meridian GRC Consulting Ltd. All rights reserved.




Gary Hinson

unread,
May 11, 2026, 2:01:18 AM (11 days ago) May 11
to hyperg...@googlegroups.com
Thanks Marty.

Ah yes, work: the curse of the drinking classes.  [It's rum o'clock down here but I'll try to respond coherently ... no more incoherently than usual, that is!]

Acceptable Downtime: Given the more formal treatment of MTO/MTD/MTPD in the current edition of the book, I wonder whether ‘crude’ is the best adjective for Acceptable Downtime. I assume the intention is to convey a rough or high-level estimate rather than an unsophisticated or poorly defined one?

Fair point, Marty.  Maybe my definition is too cynical by far ... or maybe not.  I will gladly reconsider.  Anyway, I think it is worth referring readers to other (better!) BC/DR metrics so I'll add some hyperlinks.  

Artificial Intelligence Risk Management Framework (AIRMF): I believe the official NIST abbreviation is ‘AI RMF’, rather than ‘AIRMF'.

Ooops.  You're probably right.  I'll check.

Behavioural biometrics: NIST terminology frames this as biometrics based on behavioural characteristics or patterns, so perhaps ‘based on patterns in a person’s behaviour’ would align more closely with established usage.

Sounds good to me, thanks for that.  I'm not beholden to NIST or ISO or whoever, but naturally I respect and try to both quote and reflect their [our!] efforts.  The draft definition is quite short and could do with more 'meat'.         

Cloud service: This definition appears overly broad because ‘information service provided through the Internet’ could describe nearly any online service, couldn't it? Perhaps it could reference cloud computing resources or capabilities more explicitly?

Yes, exactly, to my mind, "cloud service" is indeed a very broad term - more than just 'cloud computing' or 'information service' or 'online service'.   The full [draft] entry quotes ISO/IEC 22123-1's definition: “One or more capabilities offered via cloud computing invoked using a defined interface.”   I'm not sure the 'defined interface' bit is helpful, and I'm  not entirely convinced that all 'cloud services' necessarily involve 'cloud computing' ... but thanks for picking up on that one.  I will continue digging & mulling.  

Thank you very much for those insightful comments.  Keep 'em coming!   Seriously, they're gold.  

Kind regards/Ngā mihi,

____________________________________________

To view this discussion visit https://groups.google.com/d/msgid/hyperglossary/CA%2BLAF6s77v2GOwuB1ESF9X6bcpc%2BqtUx7uHKu_MarU7MjRLsCQ%40mail.gmail.com.

Nigel Landman

unread,
May 11, 2026, 3:59:13 AM (11 days ago) May 11
to hyperg...@googlegroups.com
I fell for the trap. I hear BaU used everyday but not iin the context you desecribe, " BAU is used in reference to resuming operational activitie." 

Apologies for the bad stear. 

Nigel.

To view this discussion visit https://groups.google.com/d/msgid/hyperglossary/CAPRmHF7uJCihLgjm%2BdsXMuGTSUM2xOowUEwmQQhiaxV-cqFBwg%40mail.gmail.com.

Gary Hinson

unread,
May 11, 2026, 12:49:01 PM (10 days ago) May 11
to hyperg...@googlegroups.com
Bad steer?  Not at all Nigel!  Looking again at the definition, I think we should insert  'resumption' in there, somehow.  Perhaps I'll let it rest for a while to mature like a good cheese: plenty more opportunities yet to reconsider every term, every definition.   

Kind regards/Ngā mihi,

____________________________________________

_____________________________________________




To view this discussion visit https://groups.google.com/d/msgid/hyperglossary/CAPyqVUpb6u%3DGzhSfUMYNwE7abvQqTboUKPw1%3DcS0K6ARNnjgiw%40mail.gmail.com.

Gary Hinson

unread,
May 11, 2026, 1:15:05 PM (10 days ago) May 11
to hyperg...@googlegroups.com
I've tweaked those 5 definitions this morning, thanks to a nice coffee and your feedback.

Today I'll be picking out new terms in the 'G' chapter.  Gosh.   

Kind regards/Ngā mihi,

____________________________________________


Nigel Landman

unread,
May 12, 2026, 4:23:06 AM (9 days ago) May 12
to hyperg...@googlegroups.com

Agree, BAU, has a relationship with BCP/DR activity, as an outcome - getting back to BAU.

 

It also has a relationship with a function, within an business, operating BAU despite ongoing DR activity to other parts of business.

 

This idea, I suppose, fits with David Lloyd George comments in 1914 that (the UK) government's policy was "to enable the traders of this country to carry on business as usual;" followed-up, in the same year, with Chruchill's comment that  the maxim of the British people is 'business as usual'.

 

So, even in WW1 the UK (and other countries) continued BaU despite the disruption of a war. Translating this idea into the current tech driven world a function of a business operates, as normal (BAU), despite ongoing projects (digital transformation etc.) sitting alongside.


Nigel 


To view this discussion visit https://groups.google.com/d/msgid/hyperglossary/CAPRmHF47Fny0Py-pHYwRExqLwUouED6BB7fX3-ZF6ETrUwSSZg%40mail.gmail.com.

Gary Hinson

unread,
May 12, 2026, 1:15:30 PM (9 days ago) May 12
to hyperg...@googlegroups.com
OK Nigel, point taken.   I'll try to come up with some suitable phrasing once this coffee kicks-in. 

Kind regards/Ngā mihi,

____________________________________________


To view this discussion visit https://groups.google.com/d/msgid/hyperglossary/CAPyqVUq7nFCYsPfsHXh2aooSiESZeiqeZo%2B9CROPt6SqDJ7EUw%40mail.gmail.com.

Gary Hinson

unread,
May 12, 2026, 1:52:45 PM (9 days ago) May 12
to hyperg...@googlegroups.com
Having wrapped myself around one coffee so far: how's this?
image.png

While I'd quite like to quote DLG or Churchill, brevity and global-relevance win here, I think.  

Kind regards/Ngā mihi,

____________________________________________


Rob Slade, greatgrandpa and widower

unread,
May 12, 2026, 3:06:25 PM (9 days ago) May 12
to hyperg...@googlegroups.com
On Tue, May 12, 2026 at 10:52 AM Gary Hinson <ga...@isect.com> wrote:
Having wrapped myself around one coffee so far: how's this?
image.png

While I'd quite like to quote DLG or Churchill, brevity and global-relevance win here, I think.  

I'd say it's fine as it is. 

--
Psalm 142:4, Ezekiel 24:16,18; Matthew 13:12; Isaiah 57:1; Genesis 2:18; 2 Corinthians 2:7,8; John 13:35; Proverbs 25:20; James 2:15,16; Proverbs 24:11-12, Jeremiah 45:3, Deuteronomy 28: 65-67, Isaiah 38:15, Psalm 69:20, Revelation 9:6, Numbers 11:15
Uuk klah ma, Rob.  U huk witas hluucsma, Gloria  Wikaah chachimhiy.

Online Scams and Frauds (OSF) series postings: 
======================

Virus-free.www.avast.com

Nigel Landman

unread,
May 12, 2026, 3:16:47 PM (9 days ago) May 12
to hyperg...@googlegroups.com
👍🏻😀

Nigel

Gary Hinson

unread,
May 12, 2026, 3:20:19 PM (9 days ago) May 12
to hyperg...@googlegroups.com
Thanks guys.

As well as covering Nigel's point, this version mentions steady-state and supply chain, while "if indeed they can." is a not-too-subtle reminder that not all incidents are survivable - a sobering thought.

With all that being said in so few words, I just hope it reads well.

Today I'll be working my way through the "I's", adding to the changes page.  I notice the alphabetic sequence is broken, thanks to an automatic sort that lists words starting with capital letters ahead of those in lower case - a 'feature' of Wix or Linux maybe.   I'll re-sort the list manually, later, provided my autistic/perfectionist brain can cope with the stress meanwhile.     

Kind regards/Ngā mihi,

____________________________________________


On Wed, 13 May 2026 at 07:06, Rob Slade, greatgrandpa and widower <rsl...@gmail.com> wrote:
On Tue, May 12, 2026 at 10:52 AM Gary Hinson <ga...@isect.com> wrote:
Having wrapped myself around one coffee so far: how's this?
image.png

While I'd quite like to quote DLG or Churchill, brevity and global-relevance win here, I think.  

I'd say it's fine as it is. 

--
Psalm 142:4, Ezekiel 24:16,18; Matthew 13:12; Isaiah 57:1; Genesis 2:18; 2 Corinthians 2:7,8; John 13:35; Proverbs 25:20; James 2:15,16; Proverbs 24:11-12, Jeremiah 45:3, Deuteronomy 28: 65-67, Isaiah 38:15, Psalm 69:20, Revelation 9:6, Numbers 11:15
Uuk klah ma, Rob.  U huk witas hluucsma, Gloria  Wikaah chachimhiy.

Online Scams and Frauds (OSF) series postings: 
======================

Virus-free.www.avast.com

--
You received this message because you are subscribed to the Google Groups "Cybersecurity hyperglossary" group.
To unsubscribe from this group and stop receiving emails from it, send an email to hyperglossar...@googlegroups.com.

Marty Carter

unread,
May 13, 2026, 9:04:18 AM (8 days ago) May 13
to hyperg...@googlegroups.com
Just seen the definition for Consultant…….

Can’t really argue with that 😅👍🏻





Marty Carter

Director | Information Security Consultant


Meridian GRC Consulting Ltd

Reply all
Reply to author
Forward
0 new messages