As a result of the implementation of the new Department of Defense Cybersecurity and Risk Management Framework instructions (DoDI 8500.01 and DoDI 8510.01), the term information assurance has been changed to cybersecurity.
This change was implemented because the term cybersecurity encompasses more than just information assurance. The definition of information assurance was limited to: "Measures that protect and defend information and information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation."* The official definition of cybersecurity expands on that definition: "The prevention of damage to, protection of, and restoration of computers, electronic communications systems, electronic communications services, wire communication, and electronic communication, including information contained therein, to ensure its availability, integrity, authentication, confidentiality, and nonrepudiation."*
The difference between cybersecurity and information assurance is an important distinction, and the terms are not interchangeable.
View more Fast Facts.
*Source: CNSSI 4009, National Information Assurance Glossary
*Source: DoDI 8500.01, Cybersecurity