Definition: An unauthorized change in your computer or computer network can cause serious problems to arise. The very act of departing from a known condition by altering the physical or logical nature of a computer or network without knowledge that the modification that its been done is reckless and negligent. Information systems require stability and should produce the same results for a known set of values.
Known performance attributes are fundamental to information security. If parameters or equipment are altered the confidentiality, integrity and availability of information can be compromised.
Change management of information processing resources is necessary.
Its Relevance: Information security is based upon knowledge of how the system should perform. If a critical value associated with the computer or network is made distinctly different from an established baseline the viability of the information plan can instantly called into question. The continuity of business operations is at risk.