RSA Security 6.1 User Manual

100

Glossary

September 2005

CA

Certificate authority. A trusted entity that registers the digital identity of a site or
individual and issues a digital certificate that guarantees the binding between the
the identity and the data items in a certificate.

CCM

Centralized configuration management. The process by which information is
shared between a Primary RADIUS server and one or more Replica RADIUS
servers in a multi-server environment.

certificate

A digital file signed by a CA that guarantees the binding between an identity and
the contents of the certificate.

CHAP

Challenge Handshake Authentication Protocol.

checklist
attribute

An attribute that must be sent from a RAS to a RADIUS server as part of an
authentication request. If a required checklist attribute is not present, the
RADIUS server returns an Access-Reject message to the RAS.

credentials

Data that is verified when presented to an authenticator, such as a password or a
digital certificate.

CRL

Certificate Revocation List. A data structure that identifies the digital certificates
that have been invalidated by the certificates’ issuing

CA

prior to their expiration

date.

dictionary

Text file that stores the lists of RADIUS attributes used to parse
authentication/accounting requests and generate responses.

DHCP

Dynamic Host Configuration Protocol. Protocol by which a server automatically
assigns (leases) a network address to a client temporarily or permanently.

DNIS

Dialed number identification service. A telephone service that identifies what
number was dialed by a caller.

DNS

Domain Name Service.

EAP

Extensible Authentication Protocol. An

IETF

-standard authentication protocol

for network access that acts as a transport for multiple authentication methods or
types. Defined by RFC 2284.

EAP-TTLS

Authentication method that uses EAP (Extensible Authentication Protocol) and
TTLS (Tunneled Transport Layer Security).

IEEE

Institute of Electrical and Electronics Engineers, Inc.