Browse Definitions :
Definition

dark infrastructure

Contributor(s): Matthew Haughn

Dark infrastructure is undocumented but active software or services whose existence and function is unknown to system administrators -- despite the fact that it may be integral to the continued operation of documented infrastructure.

Dark infrastructure’s undocumented code may tie together pieces of known infrastructure, filling in needed functions.  Without inspection of how software is operating, an administrator might never discover that dark infrastructure exists. Often dark infrastructure may not be noticed until something stops working.

An administrator may discover dark infrastructure when they look for the source of a problem and may learn where the unknown service is and how it functions while they attempt to correct the issue. Dark infrastructure can cause additional difficulties in troubleshooting, especially while it remains undetected.

There are any number of situations that can lead to undocumented infrastructure. For example, a vendor may add software services at the last minute and not take the time to document the changes. In other cases, changes may be made by individual administrators to correct issues after deployment. Either way, this quick, quiet work may correct the immediate issues but result in dark infrastructure that causes problems down the road.

This was last updated in November 2015

Continue Reading About dark infrastructure

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

SearchCompliance

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

  • compliance as a service (CaaS)

    Compliance as a Service (CaaS) is a cloud service service level agreement (SLA) that specified how a managed service provider (...

  • data protection impact assessment (DPIA)

    A data protection impact assessment (DPIA) is a process designed to help organizations determine how data processing systems, ...

SearchSecurity

  • Port Scan

    A port scan is a series of messages sent by someone attempting to break into a computer to learn which computer network services ...

  • DMZ (networking)

    In computer networks, a DMZ (demilitarized zone), also sometimes known as a perimeter network or a screened subnetwork, is a ...

  • quantum supremacy

    Quantum supremacy is the experimental demonstration of a quantum computer's dominance and advantage over classic computers by ...

SearchHealthIT

SearchDisasterRecovery

  • business continuity plan (BCP)

    A business continuity plan (BCP) is a document that consists of the critical information an organization needs to continue ...

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

SearchStorage

Close