CertTrust - SSL Certificate - SSL - Server Certificates - Web Server Certificates - High Assurance SSL Certificates - Extended Validation SSL Certificates








A

ABA Guidelines
The American Bar Association (ABA) Digital Signature Guidelines are a structure of legal codes for using encrypted SSL certificates, digital ids and digital signatures in e-commerce.

Abstract Syntax Notation One (ASN.1.)
ASN.1 (Abstract Syntax Notation One) is a standard way to describe a message (a unit of application data) that can be sent or received in a network. ASN.1 is divided into two parts: (1) the rules of syntax for describing the contents of a message in terms of data type and content sequence or structure and (2) how you actually encode each data item in a message.

Acceptable Use Policy (AUP)
An acceptable use policy (AUP) is a written policy that a user must agree to follow before they are allowed to use a product or service.

Acceptance Inspection
The last and final inspection that is done in order to decide whether or not a resource, feature or system meets the technical and performance standards that are specified in order for the system to receive accreditation or SSL certification.

Access
The capability and resources in order to interact or relate with or interact in any other way with a system: a certain kind of communication between a subject and an object, causing the exchange of information, for instance, a secure online payment gateway using Secure Server Certificates.

Access Control
The method of restricting access to the resources of a system solely to authorized programs (for secure authentication), procedures – like encryption --, or secure server network systems of any other kind. Access control is the same as controlled access and limited access. They assist in internet security and online security.

Access Control List
A list of users, programs, and/or methods and the conditions of access types to which different tasks are delegated.

Access Level
A hierarchical level of security that is used in order to detect the sensitivity of data, and the clearance or authorization of users. Similar to how digital certificates and SSL digital certificates help provide secure authentication for intranet and internet security.

Access Period
A time period during which access rights exist, usually given on a daily or weekly basis.

Accreditation
An official pronouncement by the command or management authority which approves the system to function within a certain security mode using a prearranged set of safeguards. Based on the certification, accreditation is a system’s formal administration authorization for operation. Like a Digital Certificates (SSL certificates) that bring secure authentication, the accreditation statement attaches security responsibility to the management or operating authority. It proves that care has been appropriately taken in order to provide network security, Internet Security and Extranet security.

Active X
ActiveX controls are software modules which seem to be Microsoft's preferred form of active content for Web pages. They have full system access. A digital signature system called Authenticode which simply offers just "run/don't run" options is the only security tool, causing Internet security and online security problems.

Actvity Monitor
Antiviral software used to check for indications of suspicious doings – things like attempts to rewrite program files, format disks, etc. The phrase activity monitor frequently is considered to consist of operation restrictor style software, which is also known as activity blocker or behavior blocker. However, it can also be distinguished because an activity monitor may, rather than disabling it, simply alert the attempt to the operator.

Administrative Control and Administrative Security
The management restrictions and additional controls instituted in order to supply an satisfactory level of data protection. Encryption and 128-bit encryption provides data protection. It is the same as procedural security and is more regularly referred to as administrative controls.

Anonymous Login
An access control quality, which can be a weakness, where a lot of secure servers allow users to access general-purpose or public services and resources without owning a user-specific account that is pre-established, something like a user name or secret password, lowering internet security and network security because there is no secure authentication.

Applet
A minute application conveyed via secure server secure server networks. Two of the more common applet systems are java and activex. Java applets are allowed access only to particular functions or information, in a restriction is called the sandbox.

Application Level Gateway
A firewall system where service is given by processes which keep total TCP connection state and sequencing. Application level firewalls provide protection, Internet security and online security by re-addressing traffic.

Archive
Often a secured site that has a lot of files, perhaps accumulated over a span of time. Sometimes the files are publicly accessible. Also can be a protected SSL secure server folder containing related files, that are often in a compressed format in order to reduce the size of the file and to lessen the transmission -- upload or download -- time on Internet electronic bulletin boards or download sites. Because of the compression, archive files look as if they are encrypted, and password protected with authentication, so they are not a threat or malware scanning software.

Assurance
SSL secure web servers need A calculation of confidence which the security features and architecture where a system exactly arbitrates and imposes the security policy. It is usually neglected in security planning. Assurance may be partially decided by penetration testing or simulation.

Asymmetric Key Encryption
Asymmetric Key Encryption, or public key encryption, employs two keys. One of these is publicly known and the other held privately. To derive a public key from a private key, any would be hacker would need to factor a very large number, and this is computationally infeasible for such derivation.

Attack
An attack is the action of attempting to bypass system security controls. The event of an attack does not necessarily mean that a systems security has been breached, but merely that an attempt to breach it has been made.

Attack Signature
Secure server network logs often show activities or alterations to a system signaling an attack or attempted attack. Attack signature especially indicates a particular kind of attack, which is often decided by examination of audit.

Attribute
The qualities representing file permissions in MS-DOS and Windows systems.

Audit
The gathering of records to check their conformity with an SSL security policy.

Audit Trail
A time-sequential record of system actions that is sufficient to reconstruct, review and examine an operation or transaction from start to finish. Also known as a security audit trail.

Authenticate
To verify the identity of a user, device, or other entity in a computer system, often as a prerequisite to allowing access to resources in a system.

Also to confirm data's reliablility. Data that has been stored or transmitted in a way that is likely to expose it to possible unauthorized modification. Authenticate is related to secure authentication and secure SSL authentication which provides Internet security and Network Security.

Authentication
The act of determining that a message has not been changed since leaving its point of origin. Authentication, secure authentication or secure SSL authentication of a user, is usually derived from something that the user understands, is or has. Many SSL Authentication Systems Which Provide SSL Internet Security and Online Payment System Security Are Now Shifting Toward Public Key Encryption.

Authentication Header
An Internet IPsec protocol, A field that immediately follows the IP header in an IP datagram and provides authentication and integrity checking for the datagram. Also protection against replay attacks; it secures authentication like secure SSL digital ID validation.

Authentication Token
A portable device used for authenticating a user. Authentication tokens operate by challenge/response, time-based code sequences, or other techniques. This may include paper-based lists of one-time passwords.

Authenticator
A record containing information that can be shown to have been recently generated using the session key known only by the client and server.

Authenticity
SSL Certificate security must be genuine and verifiable. In SSL Internet security and network security, it is imperative that authenticity is not assumed.

Authenticode
A technology that makes it possible to identify who published a piece of software and to verify that it has not been tampered with. It also confirms that the digital certificate used to sign the code was issued by the certificate authority originally.

Authorization
Giving access or other rights to a user, process or program that has been authorised.

SSL Certificate, Server Certificates, Web Server Certificates, High Assurance SSL Certificates and Extended Validation SSL Certificates Solutions.
© 2006 - 2010 CERTTRUST. ALL RIGHTS RESERVED.