[Previous]
[Next]
[Contents]
[Index]
This appendix provides a brief glossary of terms and abbreviations used in the NetCrusader/Web manuals. For more complete descriptions, see the body of the manual. Use the index to find the topic.
ACL — Access Control List. Used to control access to secure data. NetCrusader ACLs are similar to the file permission mechanisms provided by most operating systems, but provide much finer-grained access control. See also Real ACL, Inherited ACL.
ACL entry — Lists the permissions that are enabled for a specific user, group of users, or special object.
ACL model — A set of permissions that defines the restricted operations associated with a set of objects
Authentication — Proving "you are who you say you are" through such mechanisms as encrypted passwords, digital certificates, smart cards, or token cards.
Authorization — Ensuring that only authorized use of resources is allowed by matching an authenticated entity to established access control privileges.
CA — Certification Authority. Companies that issue and endorse certificates.
Certificate — A digital document that attests to the identity of an entity. Certificates are also referred to as digital IDs. The format of the certificate complies with the international standard X.509. Certificates can be stored on the browser or web server. Certificates on the browser are also referred to as client certificates or personal certificates. Certificates on the web server are referred to as server certificates or web site certificates.
Cookies — A standard mechanism for storing state information at the browser. NetCrusader/Web WSSO cookies contain only the username and session Universal User Identity (UUID).
DES — Data Encryption Standard.
Data privacy — Ensuring the protection of private information from electronic eavesdropping through the use of encryption.
Data integrity — Ensuring that information is not corrupted and that no unauthorized, malicious, or accidental changes happen to it during transmission.
Explicit ACL — An ACL that explicitly sets the access permissions for an object, and in the case of a container object, also sets the access permissions for the objects contained in that container object. See also ACL, Inherited ACL.
Group — A collection of users in the NetCrusader environment that have similar security requirements. Associating users into groups simplifies overall NetCrusader administration. For more information on NetCrusader groups, see the NetCrusader Commander User's Guide.
Inherited ACL — An ACL that is not explicitly set on an object, but is instead inherited from the next highest object on the file tree on which a real ACL has been set. See also ACL, Real ACL.
Junction — A mechanism to redirect URL requests from a Security Adapter server to another web server. Junctions make it possible to add NetCrusader security to an environment that runs non-secure web servers.
Junction Server — The web server on which you create a junction. See also Target Server.
Real ACL — See Explicit ACL.
Root ACL — The ACL at the top of the tree.
SSL — Secure Sockets Layer. A protocol for transmitting secure documents over the web. Data is encrypted using a private key.
Target Server — The web server that you access through the junction. See also Junction Server.
User — An individual or program in the NetCrusader environment with a unique, verifiable identity. NetCrusader restricts access to secure objects based on the authentication and authorization of user identity.
X.500 — International standard that defines how global directories are to be structured. Each entity in the directory has a unique identity. NetCrusader identities can be mapped to X.500 identities.
X.509 — International standard that defines the format for certificates.
[Previous]
[Next]
[Contents]
[Index]
To make comments or ask for help, contact
support@entegrity.com.
Copyright © 2000-2003 Entegrity Solutions Corporation & its subsidiaries