Terms and definitions

English
Swedish

Term	Synonym	Definition	Comment
active directory	AD	Windows OS directory service that facilitates working with interconnected, complex and different network resources in a unified manner
asymmetric encryption	public-key cryptography	krypteringssystem där olika nycklar används för kryptering respektive dekryptering
CA	certification authority certificate authority	certifies the ownership of a public key by the named subject of the certificate
class driver		intermediate driver designed to provide a simple interface between a vendor-written minidriver and the operating system
CRL distribution point	CDP	location where revocation list can be retrieved
DFA	delegated forms authentication	protocol that allows generation and processing of authentication forms, including credential validation, to be delegated to another component	NetScaler delegates its authentication to StoreFront, which then interacts with a third party authentication server or service.
digital certificate	certificate	electronic attachment that allows a person, computer or organization to exchange information securely over computer networks using the public key infrastructure (PKI)
digital signature		digital code, generated and authenticated by public key encryption, which is attached to an electronically transmitted document to verify its contents and the sender’s identity	Somewhat simplified, the digital signature can be considered as an electronic signature. The digital signature is a hash code.
FAS	federated authentication service	privileged component designed to integrate with Active Directory Certificate Services by dynamically issuing certificates for users, allowing them to log on to an Active Directory environment as if they had a smart card	This allows StoreFront to use a broader range of authentication options, such as SAML assertions.
GUI	graphical user interface
IdP	identity provider	system entity that creates, maintains, and manages identity information for principals while providing authentication services to relying applications within a federation or distributed network
issuer
minidriver		hardware-specific DLL that uses a Microsoft-provided class driver to accomplish most actions through function calls, and provides only device-specific controls
OTP	one time password	password that is valid for only one login session or transaction, on a computer system or other digital device
PKCS #7	public key cryptography standard #7	standard that signs and/or encrypts messages under a PKI	Often used for single sign-on.
PKI	public key infrastructure	set of roles, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates and manage public-key encryption	PKI allows users of the internet and other public networks to engage in secure communication, data exchange, and money exchange through public and private cryptographic key pairs provided by a certificate authority.
registration authority	RA	authority in a network that verifies user requests for a digital certificate and tells the certificate authority to issue it
SMS	short message service	text messaging service component of most telephone, internet, and mobile-device systems
SSO	single sign-on	authentication process that allows a user to access multiple applications with one set of login credentials
smart card	chip card integrated circuit card (ICC)	plastic card with a built-in microprocessor
smart card reader	card reader	device used for communication with a smart card or a memory card
soft token	software token	two-factor authentication security device that may be used to authorize the use of computer services
symmetric encryption		encryption where the same encryption key is used both to encrypt and decrypt data
WSDL	web services description language	XML format for describing network services as a set of endpoints operating on messages containing either document-oriented or procedure-oriented information	The operations and messages are described abstractly, and then bound to a concrete network protocol and message format to define an endpoint. Related concrete endpoints are combined into abstract endpoints (services). WSDL is extensible to allow description of endpoints and their messages regardless of what message formats or network protocols are used to communicate. However, the only bindings described in this document describe how to use WSDL in conjunction with SOAP 1.1, HTTP GET/POST, and MIME.

Term

Synonym

Definition

Comment

active directory

Windows OS directory service that facilitates working with interconnected, complex and different network resources in a unified manner

asymmetric encryption

public-key cryptography

krypteringssystem där olika nycklar används för kryptering respektive dekryptering

certification authority

certificate authority

certifies the ownership of a public key by the named subject of the certificate

class driver

intermediate driver designed to provide a simple interface between a vendor-written minidriver and the operating system

CRL distribution point

CDP

location where revocation list can be retrieved

DFA

delegated forms authentication

protocol that allows generation and processing of authentication forms, including credential validation, to be delegated to another component

NetScaler delegates its authentication to StoreFront, which then interacts with a third party authentication server or service.

digital certificate

certificate

electronic attachment that allows a person, computer or organization to exchange information securely over computer networks using the public key infrastructure (PKI)

digital signature

digital code, generated and authenticated by public key encryption, which is attached to an electronically transmitted document to verify its contents and the sender’s identity

Somewhat simplified, the digital signature can be considered as an electronic signature. The digital signature is a hash code.

FAS

federated authentication service

privileged component designed to integrate with Active Directory Certificate Services by dynamically issuing certificates for users, allowing them to log on to an Active Directory environment as if they had a smart card

This allows StoreFront to use a broader range of authentication options, such as SAML assertions.

GUI

graphical user interface

IdP

identity provider

system entity that creates, maintains, and manages identity information for principals while providing authentication services to relying applications within a federation or distributed network

issuer

minidriver

hardware-specific DLL that uses a Microsoft-provided class driver to accomplish most actions through function calls, and provides only device-specific controls

OTP

one time password

password that is valid for only one login session or transaction, on a computer system or other digital device

PKCS #7

public key cryptography standard #7

standard that signs and/or encrypts messages under a PKI

Often used for single sign-on.

PKI

public key infrastructure

set of roles, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates and manage public-key encryption

PKI allows users of the internet and other public networks to engage in secure communication, data exchange, and money exchange through public and private cryptographic key pairs provided by a certificate authority.

registration authority

authority in a network that verifies user requests for a digital certificate and tells the certificate authority to issue it

SMS

short message service

text messaging service component of most telephone, internet, and mobile-device systems

SSO

single sign-on

authentication process that allows a user to access multiple applications with one set of login credentials

smart card

chip card

integrated circuit card (ICC)

plastic card with a built-in microprocessor

smart card reader

card reader

device used for communication with a smart card or a memory card

soft token

software token

two-factor authentication security device that may be used to authorize the use of computer services

symmetric encryption

encryption where the same encryption key is used both to encrypt and decrypt data

WSDL

web services description language

XML format for describing network services as a set of endpoints operating on messages containing either document-oriented or procedure-oriented information

The operations and messages are described abstractly, and then bound to a concrete network protocol and message format to define an endpoint. Related concrete endpoints are combined into abstract endpoints (services). WSDL is extensible to allow description of endpoints and their messages regardless of what message formats or network protocols are used to communicate. However, the only bindings described in this document describe how to use WSDL in conjunction with SOAP 1.1, HTTP GET/POST, and MIME.

Term	Synonym	Definition	Comment
active directory	AD	Windows OS directory service that facilitates working with interconnected, complex and different network resources in a unified manner
assymetric encryption	public-key cryptography	krypteringssystem där olika nycklar används för kryptering respektive dekryptering
CA	certification authority certificate authority	certifies the ownership of a public key by the named subject of the certificate
class driver		intermediate driver designed to provide a simple interface between a vendor-written minidriver and the operating system
CRL distribution point	CDP	location where revocation list can be retrieved
DFA	delegated forms authentication	protocol that allows generation and processing of authentication forms, including credential validation, to be delegated to another component	NetScaler delegates its authentication to StoreFront, which then interacts with a third party authentication server or service.
digital certificate	certificate	electronic attachment that allows a person, computer or organization to exchange information securely over computer networks using the public key infrastructure (PKI)
digital signature		digital code, generated and authenticated by public key encryption, which is attached to an electronically transmitted document to verify its contents and the sender’s identity	Somewhat simplified, the digital signature can be considered as an electronic signature. The digital signature is a hash code.
FAS	federated authentication service	privileged component designed to integrate with Active Directory Certificate Services by dynamically issuing certificates for users, allowing them to log on to an Active Directory environment as if they had a smart card	This allows StoreFront to use a broader range of authentication options, such as SAML assertions.
GUI	graphical user interface
IdP	identity provider	system entity that creates, maintains, and manages identity information for principals while providing authentication services to relying applications within a federation or distributed network
issuer
minidriver		hardware-specific DLL that uses a Microsoft-provided class driver to accomplish most actions through function calls, and provides only device-specific controls
OTP	one time password	password that is valid for only one login session or transaction, on a computer system or other digital device
PKCS #7	public key cryptography standard #7	standard that signs and/or encrypts messages under a PKI	Often used for single sign-on.
PKI	public key infrastructure	set of roles, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates and manage public-key encryption	PKI allows users of the internet and other public networks to engage in secure communication, data exchange, and money exchange through public and private cryptographic key pairs provided by a certificate authority.
registration authority	RA	authority in a network that verifies user requests for a digital certificate and tells the certificate authority to issue it
SMS	short message service	text messaging service component of most telephone, internet, and mobile-device systems
SSO	single sign-on	authentication process that allows a user to access multiple applications with one set of login credentials
smart card	chip card integrated circuit card (ICC)	plastic card with a built-in microprocessor
smart card reader	card reader	device used for communication with a smart card or a memory card
soft token	software token	two-factor authentication security device that may be used to authorize the use of computer services
symmetric encryption		encryption where the same encryption key is used both to encrypt and decrypt data
WSDL	web services description language	XML format for describing network services as a set of endpoints operating on messages containing either document-oriented or procedure-oriented information	The operations and messages are described abstractly, and then bound to a concrete network protocol and message format to define an endpoint. Related concrete endpoints are combined into abstract endpoints (services). WSDL is extensible to allow description of endpoints and their messages regardless of what message formats or network protocols are used to communicate. However, the only bindings described in this document describe how to use WSDL in conjunction with SOAP 1.1, HTTP GET/POST, and MIME.