IAM Terminology
General terms
| Term |
Definition |
Comment |
| IAM |
Identity and access management |
Gartner's definition |
| IdM |
Identity management (IdM) describes the management of individual principals, their authentication, authorization,[1] and privileges within or across system and enterprise boundaries with the goal of increasing security and productivity while decreasing cost, downtime and repetitive tasks. |
IdM on Wikipedia |
| AM |
Access management describes management of individuals authorization and privileges |
|
| SSO |
Single Sign on - The user logs on once for multiple applications. Also includes autentication of users towards backend services. |
|
SSO terms
| Term |
Definition |
Comment |
| UserIdentity |
This is the user as stored in LDAP and NOT the accesses and roles, which is derived from the user-company contract(s) (employee, member, buyer etc.) UserIdentityBackend - UIB |
|
| UserCredential |
Used for logging on, i.e. username and password |
|
| UserToken |
A key given to the applicatin on behalf of the logged on user. |
What is the diff between Security token and user token? Security token on Wikipedia |
| UserTokenID |
The session-representation for a user-session in Whydah SSO |
|
| ApplicationCredential |
|
|
| ApplicationToken |
|
|
| applicationTokenID |
The session-token for an application collaborating in the Whydah SSO |
|
| SSOTicket |
A one-time handover-token from one application to another to pass along a logged-on user between applications SSO |
Also called UserTicket or just Ticket in SSO terminology |
External resources
http://cs.uwsa.edu/IAM/glossary.aspx