B-1
APPENDIX B
DEFINITIONS
a. Domain Name System (DNS) Server. Any computer registered to join the DNS. A
DNS server runs special purpose networking software, features an internet protocol (IP)
address, and contains a database of network names and addresses for other internet
hosts. DNS servers can be configured to perform as an authoritative name server, a
recursive caching server, or both (Source: USDA, DR 3300-025, Secure Domain Name
System, March 18, 2016)
b. Enterprise Architecture (EA). The description of an enterprise’s entire set of
information systems: how they are configured, how they are integrated, how they
interface to the external environment at the enterprise’s boundary, how they are operated
to support the enterprise mission, and how they contribute to the enterprise’s overall
security posture. (Source: NIST, Information Technology Laboratory, Computer
Security Resource Center, Glossary)
c. Gateway. An intermediate system (interface, relay) that attaches to two (or more)
computer networks that have similar functions but dissimilar implementations and that
enables either one-way or two-way communication between the networks. (Source:
NIST, Information Technology Laboratory, Computer Security Resource Center,
Glossary)
d. Information Technology (IT). Any services or equipment, or interconnected system(s)
or subsystem(s) of equipment, that are used in the automatic acquisition, storage,
analysis, evaluation, manipulation, management, movement, control, display, switching,
interchange, transmission, or reception of data or information by the Agency where such
services or equipment are used by an Agency, if used by the Agency directly or if used
by a contractor under a contract with the Agency, that requires either use of the services
or equipment or requires use of the services or equipment to a significant extent in the
performance of a service or the furnishing of a product. The term information
technology includes computers, ancillary equipment (including imaging peripherals,
input, output, and storage devices necessary for security and surveillance), peripheral
equipment designed to be controlled by the central processing unit of a computer,
software, firmware and similar procedures, services (including provisioned services such
as cloud computing and support services that support any point of the lifecycle of the
equipment or service), and related resources. The term “information technology” does
not include any equipment that is acquired by a contractor incidental to a contract that
does not require use of the equipment. (Source: OMB, M-15-14, Management and
Oversight of Federal Information Technology, June 10, 2015)
e. Telecommunications. The preparation, transmission, communication, or related
processing of information (writing, images, sounds, or other data) by electrical,
electromagnetic, electromechanical, electro-optical, or electronic means. (Source: