CHARON
| Term | Explanation | Source |
|---|---|---|
| Access Control | Ability to enforce a policy that identifies permissible actions on a particular resource by a particular subject. | |
| Assertion | An assertion is a proposition that is held to be true by a stakeholder. It is essentially a claim about the state of the world. Note: In the context of SAML the term Assertion is used as a synonymous expression for Ticket. | SOA-RA, 2008 |
| Authentication | Concerns the identity of the participants in an exchange. Authentication refers to the means by which one participant can be assured of the identity of other participants. | SOA-RA, 2008 |
| Credential | Information used as proof of Identity (e.g. a password). Note: during an Authentication process, credentials are presented to an Identity Provider to obtain related identity information (Ticket). | |
| Identity | The collective aspect of the set of characteristics b which a thing is definitively recognisable or known. Note: In the SANY project, the term Identity refers to a concept that is used to recognise a subject. A subject may have several identities. | (Dictionary, 2004) |
| Identity Provider | Entity that issues identity information and possibly acts as authentication authority. | |
| Policy | Representation of a contraint or condition on the use, deployment, or description of a resource. | derived from SOA-RM, 2006 |
| Profile | Information (set of attributes) describing a subject. | |
| Security Domain | Set of resources protected in accordance with a common policy. | |
| Session | Temporary valid ticket(s) | |
| Subject | Abstract representation of a user or a software component in an application. | OGC 07-097 |
| Principal | See Identity. | |
| Ticket | Information issued by an identity provider to be used as proof of identity when accessing a resource. |