The process of identifying, assessing, and mitigating risks to the security and functioning of distributed systems.