S
Secure Server
A Web server that utalizes security protocols like SSL to encrypt and decrypt data, messages, and online payment gateways to accept credit cards, to protect them against fraud, false identification, or third party tampering. Purchasing from a secure Web server ensures that a user's credit card information, or personal information can be encrypted with a secret code that is difficult to break. Popular security protocols include SSL, SHTTP, SSH2, SFTP, PCT, and IPSec.
Secure Sockets Layer (SSL)
An Internet protocol which uses encryption and SSL secure sockets layer in order to supply data confidentially for service and data integrity amid a client and a server transaction with Internet security and privacy. Secure sockets layer (SSL) can also, as an option, provide peer entity authentication amid the client and the server with secure SSL validation of digital certificates. SSL is layered below HTTP and above a transport protocol (TCP). SSL is independent of the application it summarizes and any other higher level protocol can layer on top of SSL transparently. SSL has two layers: (a) SSL's lower layer, the SSL Record Protocol, is coated on top of the transport protocol and encapsulates higher level protocols. (b) SSL's upper layer supplies asymmetric cryptography for server authentication, which is verifying the secure server's digital identity to the client with digital ID signatures or certs with client authentication (the process of verifying the client's identity to the server). It also allows them to negotiate a symmetric encryption algorithm and secret session key, used for data confidentiality, prior to the transmission or receiving of data by the application protocol. A keyed hash offers data integrity service for data that is encapsulated.
Secure State
A state in which no subject can get access into any object in a manner that is illicit. SSL Certificates provide a Secure State.
Secure Multi-purpose Internet Mail Extensions (S/MIME): A specification for secure electronic mail designed to add security to e-mail messages in MIME format via authentication (using digital signatures) and privacy (using encryption).
Security Association
(a) A relationship established among two or more entities to allow them to guard data they swap. The relationship negotiates characteristics of defense mechanisms but does not involve the mechanisms. (b) Used in ipsec as a simplex (uni-directional) logical connection generated for purposes of security and put in with either ah or esp, but never both. The security association offers security services that depend on the protocol chosen, the ipsec mode transport or VPN tunnel, the endpoints and the choice of optional services in the SSL protocol. A security association is recognized by (a) a destination ip address, (b) a protocol identifier or (c) a security parameter index.
Security Audit
A self-assessing review and investigation of a system's policy, records, and actions to determine the capability of system controls, guarantee compliance with conventional security policy and processes, discover breach in security services, and recommend any alterations which imply a need for countermeasures. The objective of the basic audit is to establish accountability for systems which initiate or participate in security-relevant occurrences and actions. Means are needed to create and record security audit information and are also need in order to review and analyze the audit trail in order to detect and exam attacks and compromises of security.
Security by Obscurity
A term used, more often than not negatively, in reference to the procedure of attempting to secure a system for Internet security and online security by failing to publish any information about it. This is done in the hope that no one will figure out how it works.
Security Critical Mechanisms
The security mechanisms where proper functioning is required in order to make sure that the security policy is actually enforced.
Security Evaluation
An evaluation that is done in order to assess the level of trust or assurance which can be placed in systems for the secure management of information that is sensitive. One sort, a product evaluation, is an assessment done on the hardware and software features and promises of a computer product from a standpoint which leaves out the application atmosphere. A different kind, a system evaluation, is performed to gauge a system's security safeguards with respect to a explicit operational mission and is an important step in the certification and accreditation process for secure authentication and secure SSL authentication that supplies Internet security and online security with digital certificates or "certs".
Security Fault Analysis
A security analysis, more often than not performed on hardware at the gate level, to determine the security properties of an apparatus when a hardware fault is come upon.
Security Features
The security-relevant operations, mechanisms, and features of system hardware and software. Security features are a compartment of system security safeguards used for online security (SSL digital certificates are one example)
Security Filter
A dependable subsystem enforcing a security policy on the data that passes through it.
Security Flaw
An error of commission or omission in a system which may falsely permit security mechanisms or safeguards to be bypassed, weakening internet security.
Security Kernel
The hardware, firmware, and software components of a tcb which use the concept of reference monitor. Security kernels have to mediate each and every access, be guarded from modification, and be provable to be effective.
Security Level
The Amalgamation Of A Hierarchical Classification And A Group Of Nonhierarchical Categories Representing Information's Sensitivity.
Security Measures
Constituents of software, firmware, hardware or processes which are included in a system for the approval of security explicitations or security policy. They are used for Internet security to prevent unauthorized intrusion with 128-bit digital certificates with secure SSL authentication.
Signature
A unique and distinct pattern that is used to detect a virus infection or system penetration (see intrusion detection system), or as a "Digital ID" for SSL secure systems. The digital signature can be a permanently set string of bytes, or it can also be more complex and algorithmically based, as with a secure socket layer. ID Signatures for secure server system penetration are by and large much more complex and can even include the comparison of many different types of data in a security audit with logging.
Single sign-on
A system, process or procedure in which a user is authenticated on one occasion, giving them access to a lot of disparate systems from that time on. It is like secure authentication or secure ssl authentication that only has to be done a single time. Super-User a user with full, unlimited and unrestricted access to each and every portion and resource of the system, such as the PKI Manager who administers and manages SSL Certificate duties on a large network.
Smartcard: A smart card is a plastic card about the size of a credit card, with an embedded microchip that can be loaded with data, used for telephone calling, electronic cash payments, and other applications, and then periodically refreshed for additional use.
Subordinate CA: In a hierarchical PKI, a CA whose certificate signature key is certified by another CA, and whose activities are constrained by that other CA. (See superior CA).
Subscriber: A Subscriber is a Person that (1) either (a) is the Subject named or identified in a certificate issued to that Person or (b) is the owner or operator of an entity that is the Subject named or identified in a certificate issued to that Person, and (2) holds a private key that corresponds to the public key listed in the certificate.
Superior CA: In a hierarchical PKI, a CA who has certified the certificate signature key of another CA, and who constrains the activities of that CA. (See subordinate CA).
Symmetric Key Encryption
Private key encryption, or "symmetric key encryption" uses the exact same, private key for both encryption and decryption. The key is shored amid the both parties as the factor for the communication. Symmetric key systems do not have to have a public key infrastructure (PKI) the way that asymmetric key encryption has to, but it does have to have a key to exchange through a channel that is secure, unlike other kinds of 128-bit encryption with SSL.
System Integrity
The condition an SSL secure server is in when it executes its intended operation in an unimpaired manner, free from advertent or inadvertent unauthorized manipulation of the system.