Welcome | RSA Information Security Glossary

21 CFR Part 11 access control, access management AES Alerting, alerts Anti-phishing service Anti-Phishing Working Group (APWG)authentication authorization Basel II Baseline, baselining biometrics/biometric authentication California AB 1950 and SB 1386 call center call center assist Card Management Systems (CMS)CAS certificate authority, certification authority (CA)Certificate Revocation List (CRL)Chip and PIN COBIT control framework credentials, credential store CVV DAS digital certificate digital identity digital rights management (DRM)digital signature directory service E-Authentication Initiative EMV™endpoint authentication EPS EU Data Protection Directive factoring, prime numbers Federal Information Processing Standards (FIPS)federated identity FFIEC FFIEC Online Banking Authentication Guidance FIPS 140 FIPS 201 GINA Gramm-Leach-Bliley Act (GLBA)hardware authenticator hijacking HIPAA Homeland Security Presidential Directive – Number 12 (HSPD-12)Identity and Access Management (IAM)identity theft Intelligent Questioning IPSec ISO 17799 ISO27002 key logging key management Knowledge Based Authentication (KBA)layered authentication LDAP Liberty Alliance, Liberty ID-FF logical access, physical access man-in-the-middle attacks (MITM)MasterCard's Chip Authentication Protocol (CAP)Microsoft.NET, Passport MPEG-LA mutual authentication NIST OASIS Open Mobile Alliance (OMA)OTP (One-Time Password)OTPS password, passcode, pass code Payment Card Industry (PCI) Data Security Standard Personal Identity Verification card (PIV Card)pharming phishing PKCS PKI provisioning RADIUS RBAC (Role Based Access Control)RC2, RC4, RC5, etc.RFID risk-based authentication RSA algorithm S/MIME SAML Sarbanes-Oxley Act (SOX)seed record sequential questions Service Oriented Architecture (SOA)single sign-on (SSO)smart badging smart card smart chip spoofing SSL-VPN strong authentication symmetric key cryptography time synchronous authentication token Trojans two-factor authentication U.K. Identity Cards Bill USB token user life-cycle management verification Visa's Dynamic Passcode Authentication (DPA)VPN web access management web services WS-Security XML	Welcome Welcome to the RSA Security Information Security Glossary. This glossary is offered as an aid to understanding current concepts and initiatives in the realm of Information Security. The terms were chosen based on their importance in understanding the solutions, services and products that RSA security provides for its customers. Esther Czekalski, CISSP, was the writer and principal contributor; however, the content is wholly owned and maintained by RSA Security (c) 2005. Recent Definitions ISO27002 New name for Complete Definition Knowledge Based Authentication (KBA) A method to authenticate an individual based on knowledge of personal information, substantiated by a real-time interactive question and answer ... Complete Definition Intelligent Questioning During a Knowledge Based Authentication session, the process of logically developing correct and incorrect answers using actual consumer data in order to diminish a person's ability to guess the correct responses. Intelligent Questioning compensates for minor input errors and name variations and accounts for errors in public data in order to identify meaningful facts for question development. The ... Complete Definition Top of Page	Feed Readers: To make it easier to keep up with additions and changes to the RSA Security Information Security Glossary, we're publishing it as an RSS Feed.
		Email to a friend Print