| AAI |
authentication and authorisation infrastructure |
| A-Select |
software which enables authentication, authorisation and Federation |
| Attributes |
characteristics of a user, for example the role within an organisation |
| Authentication |
The process by means of which a person can demonstrate his or her identity |
| Authorisation |
The process of determining what someone is permitted to do on the basis of his or her specific characteristics |
| CFC |
Central Federation Components |
| Cross A-Select |
configuration of the A-Select product, which makes federative cooperation possible |
| eduroam |
SURFnet service for offering guest access to networks, based on RADIUS. See http://www.eduroam.nl/ |
| Federation |
a group of organisations which share cooperation and resources (network, Web applications) on the basis of agreements. |
| Federation member |
Institution from the SURFnet target group. This can fulfil two roles, that of identity provider and/or that of service provider |
| Federation partner |
a service provider which does not form part of the SURFnet target group of higher education and research |
| FQDN |
Fully Qualified Domain Name, full host name of a computer |
| Identification |
determining the identity of a person |
| IdP |
Identity Provider, manager of user identities |
| User characteristics |
see attributes |
| PKI |
Public Key Infrastructure. |
| policy, policies |
agreements within the federation regarding the use of resources. |
| SAML |
Security Assertion Markup Language - an XML framework for the exchange of authentication and authorisation data. SAML is a standard of OASIS. |
| SF |
SURFfederation |
| SP |
Service Provider, provider of (online) services and content. |
| Single SignOn (SSO) |
technical option by means of which access can be obtained to multiple services on the basis of a single login, without having to login repeatedly. |