Content Verification Glossary

Kerberos:
A single sign-on type system utilizing symmetric key encryption through a ticket-oriented mechanism for network security.
Key:
Data used in cryptosystems in order to execute encryption, which comes in different forms like ssl encryption and also 128-bit encryption which provides internet security and online security.
Key Length:
Because many modern encryption algorithms are mathematically founded, the length of keys is a crucial determining factor in the strength of an algorithm and in the work factor involved in breaking a cryptographic system.
Key Management
The process of handling and controlling cryptographic keys and associated material during their life cycle in a cryptographic system. This includes ordering, generating, distributing, storing, loading, escrowing, archiving, auditing, and destroying the different types of material.
Key Pair
A private key and its corresponding public key in an asymmetric cryptosystem, keys which have the property that the public key can verify a digital signature that the private key creates.
Key Space:
The scope and extent of possible values of a cryptographic key, or the number of totally different transformations that are supported by a certain cryptographic algorithm.
Keyed Hash:
A cryptographic hash or digest in which the mapping to a hash result is assorted by a second input parameter which is a cryptographic key. The secret key protects the hash result in order for it to be used as a checksum.
Latency:
The time between the act of a secure system being penetrated, and any activity taking place. For example a virus that remains inactive until a certain date.
Latent Flow:
A vulnerability that is unintentionally introduced during development, without being discovered by either attackers or the developer, researchers, or users.
Licensed Certification Authority
A certification authority to whom a license has been issued by an appropriate agency whose license is in effect.
Lock-And-Key Protection System:
A system for protection which involves lining up a key or password with a overt access obligation.
Login:
The action of a system entity that is gaining access to a system's resources; more often than not this is accomplished by supplying a user name and password in an access control system which authenticates the user, providing secure SSL authentication for a secure socket layer of protection and online security.
Loophole:
An omission or oversight error in software or hardware permitting the circumventing of the system security policy. Compare trap door or maintenance hook.
Malware:
A cooperative term encompassing the loads of varieties of consciously malicious software, which is, software written in order to cause inconvenience, destruction, and/or the breaking of security policies or provisions, breaking down online security Malware is by and large regard as including programs such as DDoS clients (or zombies), logic bombs, RATs, trojan horses, internet security threats, and worms.
Managed PKI for SSL Certificates (Multiple Server IDs):
PKI Manager; Web-Based Managed PKI for SSL allows the secure server administrator, usually Certified (VCA) with Certification to manage PKI services for many different server IDs (128-bit SSL IDs). This makes the job of securing multiple web servers and control an entire network, with efficient ID management of Public Key Infrastructure (PKI) Services.
Mandatory Access Control (MAC):
A way to restrict the access to objects based on the sensitivity of the information that is contained in the objects and the official authorization of subjects in order to gain access to information of such sensitivity. Compare with discretionary access control.
Meet In The Middle:
A explicit kind of cryptanalytic attack in which the attacker uses known-plaintext and the consequent ciphertext to do both encryption and decryption in order to determine a multi-part key for security authentication and secure SSL authentication online.
Message
A digital representation of information.
Message integrity
The assurance of unaltered transmission and receipt of a message from the sender to the intended recipient.
Multilevel Device:
A device that allows the simultaneous processing of data of two or more security levels without any risk of compromise. In order to accomplish this, sensitivity labels are stored on a standard physical medium and form that are the same as the data that is being sorted out. It could help provide a secure ssl server.
Multilevel Security:
A type of system containing information with various sensitivities which simultaneously allows access by users with various security clearances while preventing users from gaining access to unauthorized information for online security, using digital certificates, certs, and SSL digital certificates in multilevel security mode.
National Computer Security Assessment Program:
A program made to assess the interrelationship of observed data of computer security infractions and vital systems profiles, while totally incorporating information from the cstvrp. The evaluation is intended to build threat and vulnerability scenarios which are founded on the gathering of facts from pertinent reported cases.
Need To Know:
The prerequisite for access to, knowledge of, or possession of explicit information that is necessary in order to do official duties, as in "need to know basis".
Network:
A system of two or more interlinked computers, (the Internet itself is a giant network), linked with wiring or cables (Cat5), in order to exchange information. The network may just be a small select group of users in a local area network (LAN), or a wide area network (WAN), like the Internet itself.
Network Forensic:
The Gathering And Investigation Of The Evidence Of Intrusion Or Malfeasance From Secure Server Network Activity And Data. It Is Related Closely To Intrusion Detection Systems And Is A Major Division Of Digital Forensics.
No-Lone Zone:
An area, room or other space where nobody can gain unaccompanied access and which, when occupied, is mandated to be occupied by two or more authorized persons.
Nonce:
A value which is randomly created and used in order to defeat replay attacks, preserving Internet security on a secure SSL server.
Non-repudiation
Strong and substantial evidence of the identity of the signer of a message and of message integrity, sufficient to prevent a party from successfully denying the origin, submission or delivery of the message and the integrity of its contents.
Notify
To communicate a fact to another person in a manner reasonably likely under the circumstances to impart knowledge of the information to the other person.
Object:
A passive unit containing or receiving information. Access to an object implies ability to get to the information that it contains. Some examples of objects are: records, blocks, pages, segments, files, directories, directory trees, and programs, as well as bits, bytes, fields, processors, and secure server SSL network nodes.
One-Time Pad:
An encryption system operating on a series of keys, each of which is used only one time; they are considered unbreakable. The encryption can be performed with 128-bit ssl encryption for online security.
One-Time Password:
An authentication token intended to be discarded after a single use.
One-Way Encryption:
Transformation of plaintext to ciphertext that is irreversible, where the plaintext cannot be brought back from the ciphertext by anything other than exhaustive processes even if the cryptographic key is known. One-way encryption has legitimate uses internet security and online security, such as password storage.
Onion Routing:
A Method For Anonymizing Routing, Making Traffic Analysis And Tracing A Bigger Challenge. The Packets Transiting A Chain Of Onion Routers Have Encrypted Headers. Each And Every Router Has The Job Of Encrypting And Ciphering The Socket Connections, Acting As A Proxy In The Chain.
Open Security Enviornment:
An environment involving systems with at least one of the following conditions: (A) application developers do not have sufficient clearance or authorization to give an acceptable presumption showing that they have not presented malicious logic. (B) configuration control does not supply enough assurance that applications are protected from the presentation of malicious logic prior to and during the functioning of system applications.
Operation Restrictor:
Like an activity monitor, it not only alerts the user to out of the ordinary or dangerous computer operations, but even confines them to maintain internet security and online security and a ssl secure server. Aka activity blocker or behavior blocker.
Operational Period of a Certificate
A time period beginning on the date and time a certificate is issued by a certification authority (or on a later date and time certain if stated in the certificate) and ending on the date and time such certificate expires or is earlier revoked or suspended.
Operative personnel
One or more natural persons acting as a certification authority or its agent, or in the employment of or under contract with a certification authority, and who have: (a) managerial or policy-making responsibilities for the certification authority; or (b) duties directly involving the issuance of certificates, creation of private keys, or administration of a certification authority's computing facilities.
Out of Band:
The transferring of information using an outside or separate channel. Out of band apparatus is recurrently used to disperse shared secrets with symmetric key encryption, to authorize sensitive information and initialize or otherwise facilitate the operation of cryptography or other security validation of a ssl certificate on a secure server.
Output Feedback (OFB):
A block cipher mode which changes the electronic codebook mode in order to operate on plaintext pieces of variable length which is equal to or less than the block length. This mode functions by directly using the algorithm's previously created output block as the algorithm's next input block and combining the output block with the following plaintext segment in order to generate the next ciphertext piece.
Overt Channel:
A conduit in a computer secure server network or system designed for authorized data transmission. Compare with covert channel.
Overwrite Procedure:
A procedure or prompting to alter the condition of a bit or other data. See magnetic remanence.