System Glossary
- Access Control List
This is a technical term to refer to permissions which control the visibility, usage and modification of assets (DAM)
- Access Control Rules
This is a property used to describe the situation in which some access control rules (written in AIR) are associated with a photo album. (PAC)
- Access Policy
An Access Policy (AP) is a composed by an Access Condition Set, a Subject, an Access Evaluation Context, an Access Privilege, and a URI of the resource to which it is applied. (S4AC)
- Agent Group
A group of persons or social entities to being given the right. (ACL)
- Application Programming Interface (API)
An API (Application Programming Interface) is a set of features and rules that exist inside a software program (the application) enabling interaction with it through software - as opposed to a human user interface. The API can be seen as a simple contract (the interface) between the application offering it and other items, such as third-party software or hardware. [MSDN]
- Authenticated Agent
A class of agents who have been authenticated. In other words, anyone can access this resource, but not anonymously. The authentication process provides an identity where an agent can be identified programmatically (ACL)
- Authentication
the verification of the identity of a user as a prerequisite to allowing access to resources in an information system. (adopted from NIST SP 800-53 Rev. 5)
- Authorization
The granting of rights and, based on these rights, the granting of access.
- Authorized User
Any appropriately provisioned individual with a requirement to access an information system. [NIST SP 1800-27B]
- Class
A definition of objects with properties (attributes, methods, relationships) that all objects in the class have in common. In data modeling, a class defines a set of objects that share the same attributes, relationships, and semantics. A class is usually an entity that represents a person, place, or thing. (HL7, 2001)
- Column
Columns are a component of table-oriented databases that label and potentially define the type of each value stored in that column. [PRISMA]
- Controlled Vocabulary
finite set of values that represent the only allowed values for a data item [ISO 11179]
- Data Model
A data model is a collection of descriptions of data structures and their contained fields, together with the operations or functions that manipulate them.
- Document (Electronic)
electronic representation of a page-oriented aggregation of text and graphic data, and metadata useful to identify, understand and render that data, that can be reproduced on paper or optical microform without significant loss of its information content (ISO 19005-1:2005)
- Label
Name of an entity in Human-readable form primarily for presentation purposes
- Model-View-Controller (MVC)
MVC (Model-View-Controller) is a pattern in software design commonly used to implement user interfaces, data, and controlling logic. It emphasizes a separation between the software's business logic and display. (https://developer.mozilla.org/en-US/docs/Glossary/MVC)
- Policy based access control (PBAC)
A form of access control that uses an authorization policy that is flexible in the types of evaluated parameters (e.g., identity, role, clearance, operational need, risk, heuristics). (CNSSI 4009-2015)
- Resource
Anything that has identity. Familiar examples include an electronic document, an image, a service (e.g., "today's weather report for Los Angeles"), as well as a collection of other resources. Not all resources are network "retrievable"; e.g., human beings, corporations, and bound books in a library can also be considered resources. (Web Characterization Terminology & Definitions Sheet)
- Role
A collection of permissions in role-based access control, usually associated with a role or position within an organization
- Role-based Access Control
A model for controlling access to resources where permitted actions on resources are identified with roles rather than with individual subject identities.
- Table (Database)
n relational databases, a table is a database structure that defines different attributes in the form of columns and stores records with the associated column values in the form of rows. [PRISMA]
- Upload
The process of transferring information stored as digital files from a local connected computer to a remote device, such as file or web server, in such a manner as to allow subsequent (Adopted from ISO/IEC 2382:2015)
- User
Individual, or (system) process acting on behalf of an individual, authorized to access an information system.
- Value Domain
Set of permissible values [ISO 11179]