Term
|
Definition
| A trust model with one CA that acts as a facilitator to interconnect all other CAs. |
|
|
Term
| Certificate Authority (CA) |
|
Definition
| A trusted third-party agency that is responsible for issuing digital certificates |
|
|
Term
| Certificate Repository (CR) |
|
Definition
A publicly accessible centralized directory of digital certificates
that can be used to view the status of a digital certificate. |
|
|
Term
| Certificate Revocation List (CRL) |
|
Definition
| A repository that lists revoked digital certificates. |
|
|
Term
| Certificate Signing Request (CSR) |
|
Definition
| A specially formatted encrypted message that validates the information the CA requires to issue a digital certificate |
|
|
Term
|
Definition
| A named combination of the encryption, authentication, and message authentication code (MAC) algorithms that are used with SSL and TLS. |
|
|
Term
|
Definition
A technology used to associate a user’s identity to a public key, in which
the user’s public key is digitally signed by a trusted third party. |
|
|
Term
|
Definition
| A type of trust model in which a relationship exists between two individuals because one person knows the other person. |
|
|
Term
|
Definition
| A trust model that has multiple CAs that sign digital certificates |
|
|
Term
|
Definition
| A trust model that has a single hierarchy with one master CA. |
|
|
Term
| Hypertext Transport Protocol Secure (HTTPS) |
|
Definition
A secure version of HTTP sent over SSL or
TLS |
|
|
Term
| Internet Protocol Security (IPsec) |
|
Definition
A set of protocols developed to support the secure
exchange of packets between hosts or networks. |
|
|
Term
|
Definition
| A process in which keys are managed by a third party, such as a trusted CA. |
|
|
Term
|
Definition
A highly trusted person responsible for recovering lost or
damaged digital certificates. |
|
|
Term
| Online Certificate Status Protocol (OCSP) |
|
Definition
| A protocol that performs a real-time lookup of a certificate’s status. |
|
|
Term
| public key infrastructure (PKI) |
|
Definition
| A framework for managing all of the entities involved in creating, storing, distributing, and revoking digital certificates. |
|
|
Term
| Registration Authority (RA) |
|
Definition
| A subordinate entity designed to handle specific CA tasks such as processing certificate requests and authenticating users. |
|
|
Term
|
Definition
| A Linux/UNIX-based command interface and protocol for securely accessing a remote computer. |
|
|
Term
| Secure Sockets Layer (SSL) |
|
Definition
| A protocol originally developed by Netscape for securely transmitting data. |
|
|
Term
|
Definition
| Symmetric keys to encrypt and decrypt information exchanged during a handshake session between a web browser and web server. |
|
|
Term
|
Definition
A trust model in which two individuals trust each other because each
individually trusts a third party. |
|
|
Term
| Transport Layer Security (TLS) |
|
Definition
| A protocol that is more secure than SSL and guarantees privacy and data integrity between applications. |
|
|
Term
|
Definition
| The type of trust relationship that can exist between individuals or entities |
|
|
