<div dir="ltr">FWIW t<font size="2"><span style="font-weight:normal">o help with looking at the "Zones" ballot and distinguishing between physical and logical security, here are just a few NIST definitions from <a href="https://csrc.nist.gov/glossary/">https://csrc.nist.gov/glossary/</a>.</span></font><span></span><h3 id="gmail-term-text">Physically Isolated Network</h3>
<div><span><span id="gmail-term-def-text-0">A network that is not connected to entities or systems outside a physically controlled space.
<span><span id="gmail-term-def-sources-0"><span>
<a href="https://doi.org/10.6028/NIST.SP.800-32" id="gmail-term-def-src-link-0-0">NIST SP 800-32</a> </span></span></span><br></span></span></div><div><span><span id="gmail-term-def-text-0"><br></span></span></div><div><span><span id="gmail-term-def-text-0">
</span></span><h3 id="gmail-term-text">internal network</h3>
</div><div>
<span><span id="gmail-term-def-text-2">A network where the establishment,
maintenance, and provisioning of security controls are under the direct
control of organizational employees or contractors.</span></span>
<span><span id="gmail-term-def-sources-2"><span>
<a href="https://doi.org/10.6028/NIST.SP.800-53r5" id="gmail-term-def-src-link-2-0">NIST SP 800-53 Rev. 5</a><br></span></span></span></div><div><br></div><div>
<span><span id="gmail-term-def-text-0">
</span></span><h3 id="gmail-term-text">external network</h3>
</div><div><span><span id="gmail-term-def-text-0">A network not controlled by the organization.
<span><span id="gmail-term-def-sources-0"><span>
<a href="https://doi.org/10.6028/NIST.SP.800-53r5" id="gmail-term-def-src-link-0-3">NIST SP 800-53 Rev. 5</a></span></span></span>, etc.</span></span>
<span><span id="gmail-term-def-sources-2"><span>
</span>
</span></span>
</div><div><span><span id="gmail-term-def-text-0">
<span><span id="gmail-term-def-text-0">
</span></span></span></span><h3 id="gmail-term-text">logical perimeter</h3>
<span><span id="gmail-term-def-text-0"><span><span id="gmail-term-def-text-0">A conceptual perimeter that extends to
all intended users of the system, both directly and indirectly
connected, who receive output from the system without a reliable human
review by an appropriate authority. The location of such a review is
commonly referred to as an “air gap”.
<span><span id="gmail-term-def-sources-0"><span>
<a href="https://www.cnss.gov/CNSS/issuances/Instructions.cfm" id="gmail-term-def-src-link-0-0">CNSSI 4009-2015</a><br></span></span></span></span></span></span></span></div><div>
<h3 id="gmail-term-text">boundary</h3>
</div><div>
<span><span id="gmail-term-def-text-0">Physical or logical perimeter of a system.</span></span>
<span><span id="gmail-term-def-sources-0"><span>
<a href="https://www.cnss.gov/CNSS/issuances/Instructions.cfm" id="gmail-term-def-src-link-0-0">CNSSI 4009-2015</a>
</span>
<br>
<span>
<a href="https://doi.org/10.6028/NIST.SP.800-171r2" id="gmail-term-def-src-link-0-1">NIST SP 800-172</a><br></span></span></span></div><div><br></div><div>
<h3 id="gmail-term-text">boundary protection</h3>
<span><span id="gmail-term-def-text-1">Monitoring and control of
communications at the external interface to a system to prevent and
detect malicious and other unauthorized communications using boundary
protection devices.</span> <span id="gmail-term-def-sources-1"><span><a href="https://doi.org/10.6028/NIST.SP.800-53r5" id="gmail-term-def-src-link-1-0">NIST SP 800-53 Rev. 5</a><br></span></span></span></div><div>
<span><span id="gmail-term-def-text-1">
</span></span><h3 id="gmail-term-text">security domain</h3>
<span><span id="gmail-term-def-text-1">An environment or context that includes
a set of system resources and a set of system entities that have the
right to access the resources as defined by a common security policy,
security model, or security architecture. See Security Domain.</span><strong> </strong><span id="gmail-term-def-sources-1"><span><a href="https://doi.org/10.6028/NIST.SP.800-53r5" id="gmail-term-def-src-link-1-0">NIST SP 800-53 Rev. 5</a>
<span id="gmail-term-def-src-under-1-0"> under domain <br></span></span></span></span></div><div><span><span id="gmail-term-def-sources-1"><span><span id="gmail-term-def-src-under-1-0"><br></span></span></span></span></div><div><span><span id="gmail-term-def-sources-1"><span><span id="gmail-term-def-src-under-1-0">
<span><span id="gmail-term-def-text-0">
</span></span></span></span></span></span><h3 id="gmail-term-text">environment of operation</h3>
</div><div><span><span id="gmail-term-def-sources-1"><span><span id="gmail-term-def-src-under-1-0"><span><span id="gmail-term-def-text-0">The physical surroundings in which an information system processes, stores, and transmits information.
<span><span id="gmail-term-def-sources-0"><span>
<a href="https://doi.org/10.6028/NIST.SP.800-37r2" id="gmail-term-def-src-link-0-3">NIST SP 800-37 Rev. 2</a></span></span></span>, etc.</span></span></span></span></span></span></div><div><span><span id="gmail-term-def-sources-1"><span><span id="gmail-term-def-src-under-1-0"><span><span id="gmail-term-def-text-0"><br></span></span></span></span></span></span></div><div><span><span id="gmail-term-def-sources-1"><span><span id="gmail-term-def-src-under-1-0"><span><span id="gmail-term-def-text-0"><br></span></span></span></span></span></span></div><div><span><span id="gmail-term-def-sources-1"><span><span id="gmail-term-def-src-under-1-0"><span><span id="gmail-term-def-text-0"><br></span></span></span></span></span></span></div><div><span><span id="gmail-term-def-sources-1"><span><span id="gmail-term-def-src-under-1-0"><span><span id="gmail-term-def-text-0"><br></span></span></span></span></span></span></div><div><span><span id="gmail-term-def-sources-1"><span><span id="gmail-term-def-src-under-1-0"><span><span id="gmail-term-def-text-0"><br></span></span></span></span></span></span></div><div><span><span id="gmail-term-def-sources-1"><span><span id="gmail-term-def-src-under-1-0"><span><span id="gmail-term-def-text-0"><br></span></span>
</span>
</span>
</span></span>
<span><span id="gmail-term-def-sources-1"><span>
</span>
</span></span>
<span><span id="gmail-term-def-sources-0"><span>
</span>
</span></span>
<span><span id="gmail-term-def-text-0"><span><span id="gmail-term-def-text-0"><span><span id="gmail-term-def-sources-0"><span>
</span>
</span></span>
</span></span>
</span></span></div>
</div>