Defense in depth

nounid 2266·updated May 9, 2026

candidate

GlossaryL1 — what DictionaryL2 — how used ThesaurusL3 — relations Universaleverything

The practice of layering defenses to provide added protection Defense in depth increases security by raising the effort needed in an attack. This strategy places multiple barriers between an attacker and an enterprise's computing and information resources.

MWE

Classifications

per-axis with provenance

Entity Type

Capability90%rule-basedr:entity.capability.service.v1

Sensitivity

unclassified

Information Class

unclassified

Variants

11 surface forms

alternatephrasing: Defense In-DepthDefense-in-Depth
plural: Defense in depthsDefense In-DepthsDefense-in-Depths
possessive: Defense in depth'sDefense In-Depth'sDefense-in-Depth's
pluralpossessive: Defense in depths'Defense In-Depths'Defense-in-Depths'

Framework definitions

6 senses across 6 frameworks

SANS Glossary of Security Terms1 senseview framework →

§1: Defense In-Depth is the approach of using multiple layers of security to guard against failure of a single security component.

ISACA Cybersecurity Glossary1 senseview framework →

§1: The practice of layering defenses to provide added protection Defense in depth increases security by raising the effort needed in an attack. This strategy places multiple barriers between an attacker and an enterprise's computing and information resources.

Federal Financial Institutions Examination Council (FFIEC) IT Examination Handbook Infobase, Glossary1 senseview framework →

§1: Information security strategy integrating people, technology, and operations capabilities to establish variable barriers across multiple layers and dimensions of the organization.

NISTIR 7298: Glossary of Key Information Security Terms, Revision 21 senseview framework →

§1: Information security strategy integrating people, technology, and operations capabilities to establish variable barriers across multiple layers and dimensions of the organization.

CNSSI-4009 (Glossary of Information Assurance Terms)1 senseview framework →

§1: Information security strategy integrating people, technology, and operations capabilities to establish variable barriers across multiple layers and dimensions of the organization.

NIST SP 800-531 senseview framework →

§1: Information security strategy integrating people, technology, and operations capabilities to establish variable barriers across multiple layers and dimensions of the organization.

Outgoing relationships

term as subject — 0 triples

No outgoing triples

This term is not the subject of any RDF-style relationship yet.

Incoming relationships

term as object — 0 triples

No incoming triples

No other term currently asserts a relationship to this one.