CPM Dictionary: L
LAN Recovery: Component of business continuity dealing specifically with the replacement of LAN equipment and restoration of essential data and software following a disaster
Landing Zone: See also Helispot, Heliport
Landslide Hazard Area: Considered susceptible to mudflows and other landslides generally identified on the basis of geological field studies and professional judgment
Landslide: Phenomenon associated with instability of slopes which result in the downward and outward movement of slope-forming materials: rock soils, artificial fills, or combinations of these materials
Large-Scale Emailing: Process in which email messages are sent to large numbers of people; usually done by accessing a local address book and sending emails to specific people within that address book
Latency: Situation where a system may be penetrated but some time may elapse between the penetration and further activity; also, delays in time for transmitting information between two end points based on network congestion or other similar activities
Latent Flaw: Vulnerability unintentionally introduced during development, prior to being discovered by either attackers or the developer, researchers, or users; typically used in terms of discussions of disclosure in terms of the period between the release of a product for use, and the discovery of the vulnerability
Latent Period: Time delay between exposure to a disease-causing agent and the appearance of manifestations of the disease
Lattice Model: Security model for information flow control in a system; defined by a lattice formed by finite system security levels and their partial ordering
Lattice Techniques: Security designations that determine access to information
Launch: Initiating a program or application; initiating a business continuity or crisis response plan
Law Enforcement Agency-Drug Related: Relates to Federal, State, or local agencies empowered to enforce civil laws and engage in official activities against the illegal production, transport, sale, or use of controlled substances
Layer 2 Forwarding Protocol (L2F): Internet protocol that uses PPP tunneling over IP; creates virtual extension of a dial-up link across a network, initiated by the dial-up server and transparent to the dial-up user
Layer 2 Tunneling Protocol (L2TP): Internet client-server protocol that combines aspects of PPTP and L2F; facilitates tunneling of PPP over an IP network or over frame relay or other switched network services; a type of virtual private network
Lead Agency: Federal department or agency assigned primary responsibility to manage and coordinate a specific emergency or crisis under the Federal Response Plan; designated on the basis of their having the most authorities, resources, capabilities, or expertise relative to accomplishment of specific event support; responsible for overall planning and coordination of, in conjunction with support agencies, delivery of Federal assistance to state counterparts; designated primary agency officials serve as Federal Executive Agents, subject to overall coordination and management of the FCO, and have authority to commit funds and task support agencies under authority of 42 U.S.C 5121, et. seq., as amended, to perform response activities as needed within parameters of the Federal Response Plan
Lead Agency Official: Designated on-scene official from each participating agency authorized to direct that agency's response to an extraordinary situation
Lead Federal Agency (LFA): Agency designed by the President to lead and coordinate a Federal response; type of emergency determines which agency becomes LFA; establishes operational procedures to assemble and work with cooperating agencies that support LFA
Lead Federal Official: Designated on-scene official from each participating agency authorized to direct that agency's response to an extraordinary situation
Lead Time: 1) Time needed for a supplier – either equipment or a service – to make that equipment or service available; business continuity planning can be enhanced by establishing service levels and expectations (in a Service Level Agreement) with suppliers in advance of an emergency; 2) time gained in treating or controlling a disease when detection is earlier than usual, e.g., in the pre-symptomatic stage, as when screening procedures are used for detection. See also Service Level Agreement
Leader: ICS title for an individual responsible for a functional unit, task forces, or teams
Leased Line: Rented facilities-based voice/data channel that is leased from a common carrier for private use; typically supports faster transmission speeds compared with switched lines, but is generally more expensive
Least Privilege: Principle that requires users or applications the least amount of permissions necessary to perform their intended function
Legislative: Refers to actions or procedures within a business continuity or crisis response plan that must be prioritized as a result of legal, statutory or regulatory requirements. See also Statutory, Regulatory
Lehigh: Early MS-DOS virus program; infected the COMMAND.COM program
Lethal Agent: Substance that can cause death to anyone sufficiently exposed to it
Level of Business Continuity: Minimally acceptable collection of business continuity services and/or products that is acceptable to an organization or industry to achieve its business objectives that can be influenced or dictated by regulation or legislation
Level 1 Control (UK): See also Strategic Control, Gold Control.
Level 2 Control (UK): See also Tactical Control, Silver Control.
Level 3 Control (UK): See also Operational Control, Bronze Control.
LFA: See Lead Federal Agency
Liaison: Designated official who works with individual agencies or agency officials to coordinate interagency communications
Liaison Officer: Federal agency official sent to another agency to facilitate interagency communications and coordination; member of field-level command staff responsible for coordinating with representatives from cooperating and assisting agencies
Life-Safety: Applies to joint consideration of both the life and physical well-being of individuals
Lightweight Directory Access Protocol (LDAP): Software protocol that helps users locate organizations, individuals, and other resources such as files and devices in a network, whether on the public Internet or on a corporate intranet
Limited Access: See also Access Control
Limited Disclosure: Policy regarding information disclosure which holds that facts about a vulnerability to the general public should be restricted in some manner, possibly being limited to announcements of the existence of the security problem, actions to be taken to restrict possible exploits, the existence of vendor patches, etc.
Limited Response: Response of a Federal agency to a request for assistance by a State or local government, or another Federal agency that involves limited agency resources or specialized technical assistance and does not require a formal field management/coordination structure
Line Rerouting: Short-term change in voice/data traffic routing which can be planned in advance or respond to an outage situation; an important service that helps business and government agencies quickly redirect network traffic, especially incoming calls, to a backup site
Link State: Process that compiles details about all routers and router-to-router links within a geographic area, and creates a table of best routes with that information
Liquefaction: Condition in which soil undergoes continued deformation at a constant low residual stress or with low residual resistance, due to the buildup and maintenance of high pore water pressures, which reduces the effective confining pressure to a very low value; results in loss of soil cohesion and appears to turn soil into a more liquid state
List-Based Access Control: Associates a list of users and their privileges with each object
List-Oriented: Computer protection system in which each protected object has a list of all subjects authorized to access it. See also Ticket-Oriented
Loadable Kernel Modules (LKM): Provide additional functionality directly into a kernel while system is running
Local Area Network (LAN): Group of computers and other devices in a relatively limited area (such as a single building) connected by communications links which permit devices to interact with any other device on the network
Local Authority Emergency Planning Officer (EPO): Civil authority role for civil emergency planning; interfaces with industry especially where legislation requires
Local Government: 1) Applies to a county, city, town, district, or political subdivision of a state, Indian tribe or authorized tribal organization, or Alaska native village or organization; and 2) other public entity for which a request for assistance is made by its State or political subdivision
Local Government Advisory Committee (LGAC): Forums established for exchange of information among cities and counties in a Mutual Aid Region
Lock-and-Key Protection System: Approach that involves matching a key or password with a specific access requirement
Log: Record of actions and events that take place on a computer or similar device; also the process of recording computer actions and events
Log Clipping: Selective removal of log entries from a system log to hide a compromise
Logic Bomb: Resident computer program that launches an unauthorized act when particular system states occur; may involve a section of code, pre-programmed into a larger program, which waits for some trigger event to perform a damaging function
Logic Gate: Elementary building block of a digital circuit that typically has two inputs and one output
Login: Process by which users gain access to a session where system resources can be used; usually requires a user sending a name and password to an access control system for authentication prior to access. See also Logon Procedures
Logistics Section: In the ICS, the team responsible for providing facilities, services and materials for the incident
Logistics/Transportation Team: Group comprised of members of various departments associated with supply acquisition and material transportation, responsible for ensuring acquisition, mobilization and delivery of hardware, supplies and support materials
Logon Procedures: Steps taken when users attempt to identify themselves to a computer after connecting to it locally or via a communications channel. See also Login
Loopback Address: Pseudo IP address that refers back to a local host and is never sent out onto a network
Loophole: Error of omission or oversight in software or hardware that permits circumventing system security policy. See also Trap Door, Maintenance Hook
Loss: Negative consequence, which may be financial, e.g. loss of revenue or cash, or non-financial, e.g. loss of information, goodwill, economic value, function, natural resources, ecological systems, environmental impact, health deterioration, mortality, morbidity
Loss Adjuster: Individual skilled in insurance claims who works at a disaster scene to assist in managing the event’s financial implications and should be involved as part of the management team where possible
Loss Reduction: Process of instituting mechanisms to lessen the exposure to a particular risk; involves planning for, and reacting to, an event to limit its impact; examples include sprinkler systems, insurance policies, and evacuation procedures
Lost Transaction Recovery: Repair/replacement/regeneration of data (paper within the work area and/or system entries) destroyed or lost following a disaster or other disruption
Loveletter: Email worm using Outlook and Windows Script Host; spread as an email with an attachment called LOVE-LETTER-FOR-YOU.TXT.vbs
CPM Dictionary
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z