%PDF-1.2
%
12 0 obj
<<
/Length 13 0 R
>>
stream
BT
302.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (1) Tj
-273 698.25 TD (1) Tj
24.75 -42 TD /F1 24 Tf
0.0213 Tc 0.0567 Tw (OASIS Security Services TC Glossary) Tj
-24.75 0 TD /F0 12 Tf
0.078 Tc 0 Tw (2) Tj
24.75 -39 TD /F2 12 Tf
-0.0014 Tc (draft-sstc-ftf3-glossary-00.doc) Tj
-24.75 0 TD /F0 12 Tf
0.078 Tc (3) Tj
24.75 -24 TD /F2 12 Tf
-0.0117 Tc 0.0117 Tw (Incorporates draft-sstc-glossary-00.doc) Tj
-24.75 0 TD /F0 12 Tf
0.078 Tc 0 Tw (4) Tj
24.75 -23.25 TD /F2 12 Tf
-0.0996 Tc 0.0996 Tw (20 June 2001) Tj
-24.75 0 TD /F0 12 Tf
0.078 Tc 0 Tw (5) Tj
ET
endstream
endobj
13 0 obj
596
endobj
4 0 obj
<<
/Type /Page
/Parent 5 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F2 10 0 R
>>
/ProcSet 2 0 R
>>
/Contents 12 0 R
>>
endobj
17 0 obj
<<
/Length 18 0 R
>>
stream
BT
302.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (2) Tj
-273 698.25 TD (6) Tj
24.75 -24 TD /F3 9.75 Tf
0.1459 Tc -0.1459 Tw (1. STATUS OF THIS DOCUMENT) Tj
153 0 TD -0.1875 Tc 0 Tw (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (.........................) Tj
57 0 TD 0.375 Tc (3) Tj
-522.75 0 TD /F0 12 Tf
0.078 Tc (7) Tj
36.75 -17.25 TD /F2 9.75 Tf
0.0171 Tc 0.5454 Tw (1.1. V) Tj
23.25 0 TD /F2 8.25 Tf
0.1599 Tc 0.0276 Tw (ERSION ) Tj
33 0 TD /F2 9.75 Tf
-0.2895 Tc 0 Tw (H) Tj
6.75 0 TD /F2 8.25 Tf
-0.2151 Tc (ISTORY) Tj
30.75 0 TD /F2 9.75 Tf
-0.1875 Tc (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (..............) Tj
33 0 TD 0.375 Tc (3) Tj
-523.5 0 TD /F0 12 Tf
0.078 Tc (8) Tj
48.75 -12 TD /F4 9.75 Tf
-0.0658 Tc (1.1.1.) Tj
24.75 0 TD /F5 9.75 Tf
0.2322 Tc -0.4197 Tw ( Document Filenames and Links) Tj
131.25 0 TD -0.1875 Tc 0 Tw (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (.............) Tj
30 0 TD 0.375 Tc (3) Tj
-522.75 0 TD /F0 12 Tf
0.078 Tc (9) Tj
48.75 -11.25 TD /F4 9.75 Tf
-0.0658 Tc (1.1.2.) Tj
24.75 0 TD /F5 9.75 Tf
0.23 Tc -0.4175 Tw ( Modification Log) Tj
75 0 TD -0.1875 Tc 0 Tw (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (......) Tj
14.25 0 TD 0.375 Tc (3) Tj
-529.5 0 TD /F0 12 Tf
0.078 Tc (10) Tj
31.5 -17.25 TD /F3 9.75 Tf
0.1205 Tc 0.442 Tw (2. INTRODUCTION) Tj
90 0 TD -0.1875 Tc 0 Tw (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (.....................) Tj
48 0 TD 0.375 Tc (4) Tj
-529.5 0 TD /F0 12 Tf
0.078 Tc (11) Tj
43.5 -18 TD /F2 9.75 Tf
0.0408 Tc 0.5217 Tw (2.1. S) Tj
22.5 0 TD /F2 8.25 Tf
-0.0883 Tc -0.0242 Tw (TYLE OF USE BY OTHER ) Tj
95.25 0 TD /F2 9.75 Tf
-0.2089 Tc -0.7286 Tw (SAML ) Tj
28.5 0 TD /F2 8.25 Tf
0.1298 Tc 0 Tw (DOCUMENTS) Tj
51 0 TD /F2 9.75 Tf
-0.1875 Tc (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
73.5 0 TD 0.375 Tc (4) Tj
-530.25 0 TD /F0 12 Tf
0.078 Tc (12) Tj
31.5 -17.25 TD /F3 9.75 Tf
0.1849 Tc -0.3724 Tw (3. NOTATION) Tj
65.25 0 TD -0.1875 Tc 0 Tw (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72.75 0 TD 0.375 Tc (5) Tj
-529.5 0 TD /F0 12 Tf
0.078 Tc (13) Tj
31.5 -23.25 TD /F3 9.75 Tf
0.0193 Tc -0.2068 Tw (4. NOTES) Tj
45 0 TD -0.1875 Tc 0 Tw (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (.........) Tj
21 0 TD 0.375 Tc (5) Tj
-529.5 0 TD /F0 12 Tf
0.078 Tc (14) Tj
31.5 -24 TD /F3 9.75 Tf
0.1893 Tc -0.0018 Tw (5. THE GLOSSARY) Tj
87.75 0 TD -0.1875 Tc 0 Tw (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (......................) Tj
50.25 0 TD 0.375 Tc (6) Tj
-529.5 0 TD /F0 12 Tf
0.078 Tc (15) Tj
31.5 -23.25 TD /F3 9.75 Tf
0.0303 Tc 0.1572 Tw (APPENDIX A. REFERENCES) Tj
132.75 0 TD -0.1875 Tc 0 Tw (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD (................................) Tj
72 0 TD 0.375 Tc (21) Tj
-524.25 0 TD /F0 12 Tf
0.078 Tc (16) Tj
0 -24.75 TD (17) Tj
0 -21.75 TD (18) Tj
0 -11.25 TD (19) Tj
ET
endstream
endobj
18 0 obj
4740
endobj
14 0 obj
<<
/Type /Page
/Parent 5 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F2 10 0 R
/F3 15 0 R
/F4 19 0 R
/F5 21 0 R
>>
/ProcSet 2 0 R
>>
/Contents 17 0 R
>>
endobj
24 0 obj
<<
/Length 25 0 R
>>
stream
BT
302.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (3) Tj
-248.25 684.75 TD /F1 24 Tf
0.117 Tc (1.) Tj
20.25 0 TD 0 Tc 0.078 Tw ( ) Tj
6.75 0 TD /F1 20.25 Tf
-0.0753 Tc -0.0542 Tw (Status of this Document) Tj
-58.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (20) Tj
31.5 -24 TD /F0 9.75 Tf
0.0636 Tc 0.27 Tw (This document is an OASIS-Draft and is \(for the most part\) in conformance with relevant OASIS SSTC document) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (21) Tj
31.5 -11.25 TD /F0 9.75 Tf
0.0977 Tc (standards.) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc (22) Tj
31.5 -21.75 TD /F0 9.75 Tf
0.0871 Tc 0.2024 Tw (Send overall comments on this document to: ) Tj
200.25 0 TD 0 0 1 rg
0.1192 Tc 0 Tw (security-services@lists.oasis-open.org) Tj
170.25 0 TD 0 0 0 rg
0.0668 Tc 0.2227 Tw (, though this document, as of) Tj
-402 0 TD /F0 12 Tf
0.078 Tc 0 Tw (23) Tj
31.5 -12 TD /F0 9.75 Tf
0.0669 Tc 0.1289 Tw (this update, been most actively discussed on the ) Tj
217.5 0 TD 0 0 1 rg
0.108 Tc 0 Tw (security-use@lists.oasis-open.org) Tj
150 0 TD 0 0 0 rg
0.1219 Tc 0.1676 Tw ( list and comments to that list) Tj
-399 0 TD /F0 12 Tf
0.078 Tc 0 Tw (24) Tj
31.5 -10.5 TD /F0 9.75 Tf
0.0431 Tc 0.2464 Tw (about this document are just find, too.) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (25) Tj
31.5 -21.75 TD /F0 9.75 Tf
0.0766 Tc 0.2706 Tw (The OASIS Security Services Technical Committee \(SSTC\) web pages and document repository are available) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (26) Tj
31.5 -11.25 TD /F0 9.75 Tf
-0.0941 Tc (here:) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc (27) Tj
178.5 -21.75 TD 0 0 1 rg
/F0 9.75 Tf
0.1082 Tc (http://www.oasis-open.org/committees/security/) Tj
-178.5 0 TD 0 0 0 rg
/F0 12 Tf
0.078 Tc (28) Tj
31.5 -29.25 TD /F1 18 Tf
-0.1935 Tc (1.1.) Tj
30 0 TD 0 Tc 0.246 Tw ( ) Tj
5.25 0 TD /F1 15.75 Tf
0.1407 Tc 0.7308 Tw (Version History) Tj
-66.75 0 TD /F0 12 Tf
0.078 Tc 0 Tw (29) Tj
31.5 -33 TD /F1 14.25 Tf
0.1827 Tc (1.1.1.) Tj
36 0 TD 0 Tc -0.2115 Tw ( ) Tj
3.75 0 TD /F1 12 Tf
0.0384 Tc -0.3744 Tw (Document Filenames and Links) Tj
-71.25 0 TD /F0 12 Tf
0.078 Tc 0 Tw (30) Tj
31.5 -20.25 TD /F0 9.75 Tf
0.1007 Tc 0.1888 Tw (This document:) Tj
72 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1287 Tc 0 Tw (draft-sstc-glossary-00.doc) Tj
-103.5 0 TD 0 0 0 rg
/F0 12 Tf
0.078 Tc (31) Tj
103.5 -12 TD 0 0 1 rg
/F1 9.75 Tf
0.1148 Tc (draft-sstc-glossary-00.html) Tj
-103.5 0 TD 0 0 0 rg
/F0 12 Tf
0.078 Tc (32) Tj
103.5 -10.5 TD 0 0 1 rg
/F1 9.75 Tf
0.1258 Tc (draft-sstc-glossary-00.pdf) Tj
-103.5 0 TD 0 0 0 rg
/F0 12 Tf
0.078 Tc (33) Tj
31.5 -21.75 TD /F0 9.75 Tf
0.0525 Tc 0.387 Tw (Prior version of this document: ) Tj
138 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1009 Tc 0 Tw (draft-sstc-hodges-glossary-01.html) Tj
-169.5 0 TD 0 0 0 rg
/F0 12 Tf
0.078 Tc (34) Tj
31.5 -32.25 TD /F1 14.25 Tf
0.1827 Tc (1.1.2.) Tj
36 0 TD 0 Tc -0.2115 Tw ( ) Tj
3.75 0 TD /F1 12 Tf
0.0224 Tc -0.3584 Tw (Modification Log) Tj
-71.25 0 TD /F0 12 Tf
0.078 Tc 0 Tw (35) Tj
30 -18.75 TD /F1 9.75 Tf
-0.0321 Tc (Date) Tj
111 0 TD 0.0839 Tc 0.2056 Tw (By Whom) Tj
81 0 TD 0.4177 Tc 0 Tw (What) Tj
ET
0.502 0.502 0.502 rg
49.5 405 0.75 3 re f
49.5 407.25 3 0.75 re f
51 405 1.5 1.5 re f
51 405 1.5 1.5 re f
52.5 407.25 108 0.75 re f
52.5 405 108 1.5 re f
160.5 407.25 3 0.75 re f
160.5 405 0.75 1.5 re f
162 405 1.5 1.5 re f
163.5 407.25 78 0.75 re f
163.5 405 78 1.5 re f
241.5 407.25 3 0.75 re f
241.5 405 0.75 1.5 re f
243 405 1.5 1.5 re f
244.5 407.25 315 0.75 re f
244.5 405 315 1.5 re f
561 405 1.5 3 re f
559.5 407.25 3 0.75 re f
559.5 405 0.75 1.5 re f
559.5 405 0.75 1.5 re f
49.5 393.75 0.75 11.25 re f
51 393.75 1.5 11.25 re f
160.5 393.75 0.75 11.25 re f
162 393.75 1.5 11.25 re f
241.5 393.75 0.75 11.25 re f
243 393.75 1.5 11.25 re f
559.5 393.75 0.75 11.25 re f
561 393.75 1.5 11.25 re f
BT
52.5 381 TD
0 0 0 rg
/F0 9.75 Tf
-0.08 Tc 0.557 Tw (21 Jan 2001 v00) Tj
111 0 TD 0.0184 Tc 0.271 Tw (Jeff Hodges) Tj
81 0 TD -0.0802 Tc 0 Tw (Created.) Tj
ET
0.502 0.502 0.502 rg
49.5 390.75 0.75 3 re f
51 393 1.5 0.75 re f
51 390.75 1.5 1.5 re f
52.5 393 108 0.75 re f
52.5 390.75 108 1.5 re f
160.5 393 0.75 0.75 re f
160.5 390.75 0.75 1.5 re f
162 393 1.5 0.75 re f
162 390.75 1.5 1.5 re f
163.5 393 78 0.75 re f
163.5 390.75 78 1.5 re f
241.5 393 0.75 0.75 re f
241.5 390.75 0.75 1.5 re f
243 393 1.5 0.75 re f
243 390.75 1.5 1.5 re f
244.5 393 315 0.75 re f
244.5 390.75 315 1.5 re f
559.5 393 0.75 0.75 re f
559.5 390.75 0.75 1.5 re f
561 390.75 1.5 3 re f
49.5 379.5 0.75 11.25 re f
51 379.5 1.5 11.25 re f
160.5 379.5 0.75 11.25 re f
162 379.5 1.5 11.25 re f
241.5 379.5 0.75 11.25 re f
243 379.5 1.5 11.25 re f
559.5 379.5 0.75 11.25 re f
561 379.5 1.5 11.25 re f
BT
52.5 366.75 TD
0 0 0 rg
0.0344 Tc 0.5051 Tw (8 Feb 2001 v01) Tj
111 0 TD 0.0184 Tc 0.271 Tw (Jeff Hodges) Tj
81 0 TD 0.0588 Tc 0.3057 Tw (Added various terms supplied by Bob Blakley, and others culled from) Tj
0 -11.25 TD 0.0735 Tc 0.216 Tw (S2ML 0.8a doc.) Tj
ET
0.502 0.502 0.502 rg
49.5 375.75 0.75 3 re f
51 378 1.5 0.75 re f
51 375.75 1.5 1.5 re f
52.5 378 108 0.75 re f
52.5 375.75 108 1.5 re f
160.5 378 0.75 0.75 re f
160.5 375.75 0.75 1.5 re f
162 378 1.5 0.75 re f
162 375.75 1.5 1.5 re f
163.5 378 78 0.75 re f
163.5 375.75 78 1.5 re f
241.5 378 0.75 0.75 re f
241.5 375.75 0.75 1.5 re f
243 378 1.5 0.75 re f
243 375.75 1.5 1.5 re f
244.5 378 315 0.75 re f
244.5 375.75 315 1.5 re f
559.5 378 0.75 0.75 re f
559.5 375.75 0.75 1.5 re f
561 375.75 1.5 3 re f
49.5 352.5 0.75 23.25 re f
51 352.5 1.5 23.25 re f
160.5 352.5 0.75 23.25 re f
162 352.5 1.5 23.25 re f
241.5 352.5 0.75 23.25 re f
243 352.5 1.5 23.25 re f
559.5 352.5 0.75 23.25 re f
561 352.5 1.5 23.25 re f
BT
52.5 340.5 TD
0 0 0 rg
0.0344 Tc 0.5051 Tw (9 Feb 2001 v01) Tj
111 0 TD 0.0184 Tc 0.271 Tw (Jeff Hodges) Tj
81 0 TD 0.0733 Tc 0.2996 Tw (Cleaned up refs, added refs, added definitions, enhanced or otherwise) Tj
0 -11.25 TD 0.0752 Tc 0.2143 Tw (mangled others.) Tj
ET
0.502 0.502 0.502 rg
49.5 350.25 0.75 3 re f
51 352.5 1.5 0.75 re f
51 350.25 1.5 1.5 re f
52.5 352.5 108 0.75 re f
52.5 350.25 108 1.5 re f
160.5 352.5 0.75 0.75 re f
160.5 350.25 0.75 1.5 re f
162 352.5 1.5 0.75 re f
162 350.25 1.5 1.5 re f
163.5 352.5 78 0.75 re f
163.5 350.25 78 1.5 re f
241.5 352.5 0.75 0.75 re f
241.5 350.25 0.75 1.5 re f
243 352.5 1.5 0.75 re f
243 350.25 1.5 1.5 re f
244.5 352.5 315 0.75 re f
244.5 350.25 315 1.5 re f
559.5 352.5 0.75 0.75 re f
559.5 350.25 0.75 1.5 re f
561 350.25 1.5 3 re f
49.5 327 0.75 23.25 re f
51 327 1.5 23.25 re f
160.5 327 0.75 23.25 re f
162 327 1.5 23.25 re f
241.5 327 0.75 23.25 re f
243 327 1.5 23.25 re f
559.5 327 0.75 23.25 re f
561 327 1.5 23.25 re f
BT
52.5 315 TD
0 0 0 rg
-0.0444 Tc 0.5839 Tw (30 Mar 2001 v00) Tj
111 0 TD 0.0184 Tc 0.271 Tw (Jeff Hodges) Tj
81 -0.75 TD /F6 9.75 Tf
0.015 Tc 0 Tw (\267) Tj
4.5 0 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
13.5 0 TD 0.0483 Tc -0.0088 Tw (Aligned terms with ) Tj
84 0 TD 0 0 1 rg
0.1099 Tc 0 Tw (draft-sstc-use-domain-02) Tj
111 0 TD 0 0 0 rg
0.0942 Tc 0.1953 Tw ( and discussion) Tj
-195 -12 TD 0.0933 Tc 0.1962 Tw (thereof in the security-use subgoup\222s conference calls.) Tj
-18 -12 TD /F6 9.75 Tf
0.015 Tc 0 Tw (\267) Tj
4.5 0 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
13.5 0 TD 0.0725 Tc 0.3108 Tw (Aligned terms with usage in X.8xx/ISO-10181 series of docs.) Tj
-18 -12 TD /F6 9.75 Tf
0.015 Tc 0 Tw (\267) Tj
4.5 0 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
13.5 0 TD 0.089 Tc 0.3255 Tw (Added commentary to various definitions where security-use) Tj
0 -11.25 TD 0.0766 Tc 0.2962 Tw (needs to come to consensus and/or make decision\(s\) on refining) Tj
0 -12 TD 0.0946 Tc 0.1949 Tw (said definitions.) Tj
-18 -12 TD /F6 9.75 Tf
0.015 Tc 0 Tw (\267) Tj
4.5 0 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
13.5 0 TD 0.0873 Tc 0.2959 Tw (Deleted various referenceable terms such as HTTP, LDAP, etc.) Tj
-18 -12 TD /F6 9.75 Tf
0.015 Tc 0 Tw (\267) Tj
4.5 0 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
13.5 0 TD 0.0699 Tc 0.2196 Tw (Renamed doc to draft-sstc-glossary-00.) Tj
ET
0.502 0.502 0.502 rg
49.5 324 0.75 3 re f
51 326.25 1.5 0.75 re f
51 324 1.5 1.5 re f
52.5 326.25 108 0.75 re f
52.5 324 108 1.5 re f
160.5 326.25 0.75 0.75 re f
160.5 324 0.75 1.5 re f
162 326.25 1.5 0.75 re f
162 324 1.5 1.5 re f
163.5 326.25 78 0.75 re f
163.5 324 78 1.5 re f
241.5 326.25 0.75 0.75 re f
241.5 324 0.75 1.5 re f
243 326.25 1.5 0.75 re f
243 324 1.5 1.5 re f
244.5 326.25 315 0.75 re f
244.5 324 315 1.5 re f
559.5 326.25 0.75 0.75 re f
559.5 324 0.75 1.5 re f
561 324 1.5 3 re f
49.5 217.5 0.75 106.5 re f
51 217.5 1.5 106.5 re f
49.5 214.5 0.75 3 re f
49.5 214.5 3 1.5 re f
51 216.75 1.5 0.75 re f
51 216.75 1.5 0.75 re f
52.5 216.75 108 0.75 re f
52.5 214.5 108 1.5 re f
160.5 217.5 0.75 106.5 re f
162 217.5 1.5 106.5 re f
160.5 216.75 0.75 0.75 re f
162 216.75 1.5 0.75 re f
160.5 214.5 3 1.5 re f
163.5 216.75 78 0.75 re f
163.5 214.5 78 1.5 re f
241.5 217.5 0.75 106.5 re f
243 217.5 1.5 106.5 re f
241.5 216.75 0.75 0.75 re f
243 216.75 1.5 0.75 re f
241.5 214.5 3 1.5 re f
244.5 216.75 315 0.75 re f
244.5 214.5 315 1.5 re f
559.5 217.5 0.75 106.5 re f
561 217.5 1.5 106.5 re f
561 214.5 1.5 3 re f
559.5 214.5 3 1.5 re f
559.5 216.75 0.75 0.75 re f
559.5 216.75 0.75 0.75 re f
BT
22.5 201 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (36) Tj
ET
endstream
endobj
25 0 obj
9523
endobj
23 0 obj
<<
/Type /Page
/Parent 5 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F6 26 0 R
>>
/ProcSet 2 0 R
>>
/Contents 24 0 R
>>
endobj
29 0 obj
<<
/Length 30 0 R
>>
stream
BT
302.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (4) Tj
-248.25 684.75 TD /F1 24 Tf
0.117 Tc (2.) Tj
20.25 0 TD 0 Tc 0.078 Tw ( ) Tj
6.75 0 TD /F1 20.25 Tf
-0.0307 Tc 0 Tw (Introduction) Tj
-58.5 0 TD /F0 12 Tf
0.078 Tc (37) Tj
31.5 -24 TD /F0 9.75 Tf
0.0712 Tc 0.379 Tw (This document comprises an overall glossary for the OASIS Security Services Technical Committee \(SSTC\) and) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (38) Tj
31.5 -12 TD /F0 9.75 Tf
0.0809 Tc 0.2086 Tw (it\222s subgroups. Individual SSTC documents and/or subgroup documents may either reference this document) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (39) Tj
31.5 -10.5 TD /F0 9.75 Tf
0.0785 Tc 0.211 Tw (and/or \223import\224 select subsets of terms.) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (40) Tj
31.5 -21.75 TD /F0 9.75 Tf
0.0532 Tc 0.2363 Tw (The sources for the terms and definitions herein are referenced in ) Tj
292.5 0 TD 0.1777 Tc 0.1118 Tw (Appendix A) Tj
51.75 0 TD 0.0412 Tc 0.2483 Tw (. Please refer to those sources for) Tj
-375.75 0 TD /F0 12 Tf
0.078 Tc 0 Tw (41) Tj
31.5 -12 TD /F0 9.75 Tf
0.0963 Tc 0.1932 Tw (definitions of terms not explicitly defined here. Where possible and convenient, hypertext links directly to) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (42) Tj
31.5 -12 TD /F0 9.75 Tf
0.0835 Tc 0.206 Tw (definitions within the aforementioned sources are included. Some definitions are quoted directly from the sources,) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (43) Tj
31.5 -10.5 TD /F0 9.75 Tf
0.0598 Tc 0.2874 Tw (some are modified to fit the context of the OASIS SSTC \(aka SAML\) effort.) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (44) Tj
31.5 -29.25 TD /F1 18 Tf
-0.1935 Tc (2.1.) Tj
30 0 TD 0 Tc 0.246 Tw ( ) Tj
5.25 0 TD /F1 15.75 Tf
0.1072 Tc 0.0143 Tw (Style of use by other SAML documents) Tj
-66.75 0 TD /F0 12 Tf
0.078 Tc 0 Tw (45) Tj
31.5 -22.5 TD /F0 9.75 Tf
0.0599 Tc 0.3129 Tw (Other SAML documents may either or both \(a\) include copies of definitions herein \(define by value\), \(b\) refer to) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (46) Tj
31.5 -12 TD /F0 9.75 Tf
0.0743 Tc 0.2152 Tw (this document and the applicable definitions \(define by reference\). In the case of \(a\), editors of those documents) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (47) Tj
31.5 -10.5 TD /F0 9.75 Tf
0.0406 Tc 0.4096 Tw (should work with the glossary editor in order to normalize the value\(s\) of the definitions.) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (48) Tj
ET
endstream
endobj
30 0 obj
2568
endobj
28 0 obj
<<
/Type /Page
/Parent 5 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
>>
/ProcSet 2 0 R
>>
/Contents 29 0 R
>>
endobj
32 0 obj
<<
/Length 33 0 R
>>
stream
BT
302.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (5) Tj
-248.25 684.75 TD /F1 24 Tf
0.117 Tc (3.) Tj
20.25 0 TD 0 Tc 0.078 Tw ( ) Tj
6.75 0 TD /F1 20.25 Tf
-0.1392 Tc 0 Tw (Notation) Tj
-58.5 0 TD /F0 12 Tf
0.078 Tc (49) Tj
31.5 -24 TD /F0 9.75 Tf
0.0726 Tc 0.2169 Tw (Definitions that need to be added \(i.e. the entry is presently blank\), decisions made about, or otherwise enhanced) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (50) Tj
31.5 -15.75 TD /F0 9.75 Tf
-0.0251 Tc 0.3146 Tw (are marked with a ) Tj
81.75 0 TD /F1 14.25 Tf
0.4159 Tc 0 Tw (?.) Tj
-113.25 0 TD /F0 12 Tf
0.078 Tc (51) Tj
31.5 -21.75 TD /F0 9.75 Tf
0.0314 Tc 0.3706 Tw (Definition senses and/or options \226 i.e. we need to decide which one\(s\) to base our usage on -- are denoted by) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (52) Tj
31.5 -11.25 TD /F0 9.75 Tf
0.0076 Tc 0.2819 Tw (\223\(a\)\224, \223\(b\)\224, and so on.) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (53) Tj
31.5 -21.75 TD /F0 9.75 Tf
0.0749 Tc 0.2771 Tw (Definitions that\222ve been specifically agreed to by the Use Case & Requirements \() Tj
357 0 TD 0 0 1 rg
0.1042 Tc 0 Tw (security-use@oasis-open.org) Tj
130.5 0 TD 0 0 0 rg
-0.2467 Tc (\)) Tj
-519 0 TD /F0 12 Tf
0.078 Tc (54) Tj
31.5 -11.25 TD /F0 9.75 Tf
0.0756 Tc 0.2139 Tw (subgroup are denoted by reference to \223) Tj
175.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD 0.579 Tc (33) Tj
11.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
-0.3536 Tc (\224.) Tj
-224.25 0 TD /F0 12 Tf
0.078 Tc (55) Tj
31.5 -24.75 TD /F0 9.75 Tf
0.0601 Tc 0.2293 Tw (Entries with a definition of \223) Tj
120 0 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.0918 Tc 0.1977 Tw (\(xxx\)\224 means that at least the document editor suspects we need to condsider) Tj
-162 0 TD /F0 12 Tf
0.078 Tc 0 Tw (56) Tj
31.5 -12.75 TD /F0 9.75 Tf
0.0436 Tc 0.3248 Tw (defining this term, and we haven\222t yet discussed it and/or no-one\222s taken a stab at defining it and/or we might) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (57) Tj
31.5 -10.5 TD /F0 9.75 Tf
0.0744 Tc 0.2151 Tw (actually not need to define it.) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (58) Tj
31.5 -21.75 TD /F0 9.75 Tf
0.0489 Tc -0.0094 Tw (Editorial comments are ) Tj
ET
1 1 0 rg
159 529.5 79.5 11.25 re f
BT
159 532.5 TD
0 0 0 rg
0.1281 Tc 0.1614 Tw (highlighted like so) Tj
79.5 0 TD 0.0669 Tc 0.2851 Tw (. Some may also have comments attached at the end of the document.) Tj
-216 0 TD /F0 12 Tf
0.078 Tc 0 Tw (59) Tj
31.5 -34.5 TD /F1 24 Tf
0.117 Tc (4.) Tj
20.25 0 TD 0 Tc 0.078 Tw ( ) Tj
6.75 0 TD /F1 20.25 Tf
-0.0009 Tc 0 Tw (Notes) Tj
-58.5 0 TD /F0 12 Tf
0.078 Tc (60) Tj
31.5 -23.25 TD /F1 9.75 Tf
0.1204 Tc 0.1691 Tw (Clarifications & Musings) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (61) Tj
31.5 -21.75 TD /F0 9.75 Tf
0.0718 Tc 0.2177 Tw (It will arguably be reasonable to refer to a system implementing & using SAML as a \223A\224, \223AA\224, or \223AAA\224 service \226) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (62) Tj
31.5 -12.75 TD /F0 9.75 Tf
0.0701 Tc 0.2635 Tw (which one depending upon the functionality of the version of SAML being used, what the SSTC decides the) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (63) Tj
31.5 -11.25 TD /F0 9.75 Tf
0.0617 Tc 0.3068 Tw (functionality of the \(potentially\) various versions of SAML turn out to be, and so on. Looking ahead, may want to) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (64) Tj
31.5 -10.5 TD /F0 9.75 Tf
0.0754 Tc 0.2141 Tw (coin a phrase such as \223a SAML-based AAA service\224, and think about contracting that phrase into a shorter term.) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (65) Tj
31.5 -21.75 TD /F1 9.75 Tf
0.103 Tc 0.1865 Tw (Candidates for removal) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (66) Tj
31.5 -21 TD /F0 9.75 Tf
0.064 Tc 0.2255 Tw (These are term that the editor thought more folks than just himself ought to think about removing.) Tj
-31.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (67) Tj
67.5 -21.75 TD /F0 9.75 Tf
0.1418 Tc 0.1477 Tw (AAA Server) Tj
108 0 TD 0.0526 Tc 0.4243 Tw (- synonymous with a PDP?) Tj
-175.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (68) Tj
67.5 -21.75 TD /F0 9.75 Tf
0.0322 Tc 0.2572 Tw (Access Control Factors) Tj
108 0 TD 0.0861 Tc 0.3534 Tw (- synonymous with access control information?) Tj
-175.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (69) Tj
67.5 -21 TD /F0 9.75 Tf
0.0987 Tc (Actor) Tj
108 0 TD 0.0156 Tc 0.2739 Tw (- synonymous with princ) Tj
109.5 0 TD 0.0816 Tc 0 Tw (ipal?) Tj
-285 0 TD /F0 12 Tf
0.078 Tc (70) Tj
67.5 -21.75 TD /F0 9.75 Tf
-0.0361 Tc (Authc) Tj
108 0 TD 0.0298 Tc 0.5097 Tw (- synonymous with authn?) Tj
-175.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (71) Tj
67.5 -21.75 TD /F0 9.75 Tf
0.1466 Tc (Clearance) Tj
108 0 TD 0.1097 Tc 0.1798 Tw (- specific to Multilevel Security \(MLS\)) Tj
-175.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (72) Tj
67.5 -21 TD /F0 9.75 Tf
0.0303 Tc (Label) Tj
108 0 TD 0.1097 Tc 0.1798 Tw (- specific to Multilevel Security \(MLS\)) Tj
-175.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (73) Tj
67.5 -21.75 TD /F0 9.75 Tf
0.0797 Tc 0.2098 Tw (Policy Decision) Tj
108 0 TD 0.0549 Tc 0.0471 Tw (- essentially synonymous with ) Tj
134.25 0 TD 0 0 1 rg
0.12 Tc 0.1695 Tw (Access Control Decision) Tj
108.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
-418.5 0 TD /F0 12 Tf
0.078 Tc (74) Tj
67.5 -21.75 TD /F0 9.75 Tf
0.146 Tc 0.1435 Tw (Receiving Site) Tj
108 0 TD 0.0732 Tc 0.4038 Tw (- synonymous with Relying party.) Tj
-175.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (75) Tj
0 -21 TD (76) Tj
ET
endstream
endobj
33 0 obj
5747
endobj
31 0 obj
<<
/Type /Page
/Parent 5 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
>>
/ProcSet 2 0 R
>>
/Contents 32 0 R
>>
endobj
35 0 obj
<<
/Length 36 0 R
>>
stream
BT
302.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (6) Tj
-248.25 684.75 TD /F1 24 Tf
0.117 Tc (5.) Tj
20.25 0 TD 0 Tc 0.078 Tw ( ) Tj
6.75 0 TD /F1 20.25 Tf
-0.0386 Tc 0.4091 Tw (The Glossary) Tj
-58.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (77) Tj
45.75 -24.75 TD /F0 9.75 Tf
0.1166 Tc 0.1729 Tw (AA or AAA) Tj
144 -0.75 TD -0.2467 Tc 0 Tw (\223) Tj
3 0 TD 0 0 1 rg
0.0867 Tc (Authentication) Tj
63 0 TD 0 0 0 rg
0.079 Tc -0.1645 Tw ( and ) Tj
22.5 0 TD 0 0 1 rg
0.1807 Tc 0 Tw (Authorization) Tj
58.5 0 TD 0 0 0 rg
0.0256 Tc 0.2638 Tw (\224, or \223) Tj
23.25 0 TD 0 0 1 rg
0.1403 Tc 0 Tw (Authentication) Tj
63.75 0 TD 0 0 0 rg
0.2895 Tc (, ) Tj
6 0 TD 0 0 1 rg
0.0653 Tc (Authorization) Tj
57.75 0 TD 0 0 0 rg
0.3191 Tc -0.0296 Tw (, and) Tj
-297.75 -11.25 TD 0.0463 Tc -0.1318 Tw (Accounting \(or ) Tj
66.75 0 TD 0 0 1 rg
0.0967 Tc 0 Tw (Auditing) Tj
36 0 TD 0 0 0 rg
0.0396 Tc 0.1561 Tw (\)\224 \226 each of the \223A\224s being a ) Tj
126.75 0 TD /F4 9.75 Tf
0.1894 Tc 0.1001 Tw (general class) Tj
60 0 TD /F0 9.75 Tf
-0.3158 Tc 0.2303 Tw ( of ) Tj
13.5 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
-303 -11.25 TD 0.0453 Tc (mechanism) Tj
50.25 0 TD 0 0 0 rg
0.0615 Tc 0.4155 Tw (. These mechanisms are key building blocks for implementing) Tj
-50.25 -11.25 TD 0 0 1 rg
0.0287 Tc 0.2608 Tw (security architectures) Tj
93.75 0 TD 0 0 0 rg
0.079 Tc -0.1645 Tw ( and ) Tj
22.5 0 TD 0 0 1 rg
0.0724 Tc 0.2171 Tw (security services) Tj
74.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 696.75 0.75 0.75 re f
62.25 696.75 0.75 0.75 re f
63 696.75 143.25 0.75 re f
206.25 696.75 0.75 0.75 re f
207 696.75 350.25 0.75 re f
557.25 696.75 0.75 0.75 re f
557.25 696.75 0.75 0.75 re f
62.25 641.25 0.75 55.5 re f
206.25 641.25 0.75 55.5 re f
557.25 641.25 0.75 55.5 re f
BT
68.25 626.25 TD
-0.1677 Tc (ACI) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0992 Tc 0.5652 Tw (Access Control Information) Tj
120 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 640.5 0.75 0.75 re f
63 640.5 143.25 0.75 re f
206.25 640.5 0.75 0.75 re f
207 640.5 350.25 0.75 re f
557.25 640.5 0.75 0.75 re f
62.25 619.5 0.75 21 re f
206.25 619.5 0.75 21 re f
557.25 619.5 0.75 21 re f
BT
68.25 604.5 TD
0 Tc (ADF) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0906 Tc 0.1989 Tw (Access Control Decision Function) Tj
149.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 618.75 0.75 0.75 re f
63 618.75 143.25 0.75 re f
206.25 618.75 0.75 0.75 re f
207 618.75 350.25 0.75 re f
557.25 618.75 0.75 0.75 re f
62.25 597.75 0.75 21 re f
206.25 597.75 0.75 21 re f
557.25 597.75 0.75 21 re f
BT
68.25 582.75 TD
-0.1677 Tc (ADI) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0781 Tc 0.2114 Tw (Access Control Decision Information) Tj
160.5 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 596.25 0.75 0.75 re f
63 596.25 143.25 0.75 re f
206.25 596.25 0.75 0.75 re f
207 596.25 350.25 0.75 re f
557.25 596.25 0.75 0.75 re f
62.25 575.25 0.75 21 re f
206.25 575.25 0.75 21 re f
557.25 575.25 0.75 21 re f
BT
68.25 560.25 TD
0.1788 Tc (AEF) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0855 Tc 0.204 Tw (Access Control Enforcement Function) Tj
167.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 574.5 0.75 0.75 re f
63 574.5 143.25 0.75 re f
206.25 574.5 0.75 0.75 re f
207 574.5 350.25 0.75 re f
557.25 574.5 0.75 0.75 re f
62.25 553.5 0.75 21 re f
206.25 553.5 0.75 21 re f
557.25 553.5 0.75 21 re f
BT
68.25 538.5 TD
0.2468 Tc (AP) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.1325 Tc 0.157 Tw (Asserting Party) Tj
68.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 552.75 0.75 0.75 re f
63 552.75 143.25 0.75 re f
206.25 552.75 0.75 0.75 re f
207 552.75 350.25 0.75 re f
557.25 552.75 0.75 0.75 re f
62.25 531.75 0.75 21 re f
206.25 531.75 0.75 21 re f
557.25 531.75 0.75 21 re f
BT
68.25 516 TD
0.0159 Tc 0.2736 Tw (AAA Administrative) Tj
0 -11.25 TD -0.0164 Tc 0 Tw (Component) Tj
144 11.25 TD 0.0379 Tc -0.4984 Tw (An ) Tj
15 0 TD 0 0 1 rg
0.0627 Tc 0.2268 Tw (AAA system component) Tj
106.5 0 TD 0 0 0 rg
0.0645 Tc -0.15 Tw ( whose ) Tj
34.5 0 TD 0 0 1 rg
-0.1178 Tc 0 Tw (users) Tj
24 0 TD 0 0 0 rg
0.1242 Tc 0.1653 Tw ( are typically ) Tj
59.25 0 TD 0 0 1 rg
0.02 Tc 0 Tw (administrators) Tj
62.25 0 TD 0 0 0 rg
0.329 Tc -0.0395 Tw ( and) Tj
-301.5 -11.25 TD 0.057 Tc 0.2325 Tw (whose function is mangement of various aspects of a ) Tj
237.75 0 TD 0 0 1 rg
0.1513 Tc 0.1382 Tw (AAA system) Tj
-237.75 -11.25 TD -0.0148 Tc 0 Tw (deployment) Tj
51 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 530.25 0.75 0.75 re f
63 530.25 143.25 0.75 re f
206.25 530.25 0.75 0.75 re f
207 530.25 350.25 0.75 re f
557.25 530.25 0.75 0.75 re f
62.25 486 0.75 44.25 re f
206.25 486 0.75 44.25 re f
557.25 486 0.75 44.25 re f
BT
68.25 471.75 TD
0.1234 Tc 0.1661 Tw (AAA Service) Tj
144 -0.75 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.0705 Tc 0.219 Tw (network service) Tj
68.25 0 TD 0 0 0 rg
0.1049 Tc -0.1904 Tw ( providing ) Tj
46.5 0 TD 0 0 1 rg
0.1166 Tc 0.1729 Tw (AAA or AA) Tj
48 0 TD 0 0 0 rg
0.1066 Tc 0.1829 Tw ( functionality. AAA services typically) Tj
-172.5 -11.25 TD 0.0774 Tc -0.0379 Tw (implement portions of ) Tj
98.25 0 TD 0 0 1 rg
0.0409 Tc 0.2486 Tw (security policies) Tj
70.5 0 TD 0 0 0 rg
0.0666 Tc 0.2229 Tw (, and are implemented by ) Tj
115.5 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
-284.25 -11.25 TD 0.0783 Tc (mechanisms) Tj
55.5 0 TD 0 0 0 rg
0.0828 Tc 0.1129 Tw (. AAA services are essentially a subset of ) Tj
186.75 0 TD 0 0 1 rg
0.0255 Tc 0.264 Tw (security services) Tj
73.5 0 TD 0 0 0 rg
-0.1283 Tc 0.4178 Tw (, but) Tj
-315.75 -11.25 TD 0.0963 Tc 0.1932 Tw (the terms are sometimes informally used synonymously.) Tj
ET
62.25 485.25 0.75 0.75 re f
63 485.25 143.25 0.75 re f
206.25 485.25 0.75 0.75 re f
207 485.25 350.25 0.75 re f
557.25 485.25 0.75 0.75 re f
62.25 429.75 0.75 55.5 re f
206.25 429.75 0.75 55.5 re f
557.25 429.75 0.75 55.5 re f
BT
68.25 414.75 TD
0.1418 Tc 0.1477 Tw (AAA Server) Tj
144 0 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.1099 Tc 0.1796 Tw (system entity) Tj
58.5 0 TD 0 0 0 rg
-0.023 Tc 0.1625 Tw ( that is also an ) Tj
66.75 0 TD 0 0 1 rg
0.0627 Tc 0.2268 Tw (AAA system component) Tj
106.5 0 TD 0 0 0 rg
0.1181 Tc 0.1714 Tw ( whose function is to) Tj
-241.5 -11.25 TD 0.0403 Tc -0.5008 Tw (make ) Tj
27 0 TD 0 0 1 rg
0.0965 Tc 0 Tw (policy) Tj
25.5 0 TD 0 0 0 rg
0.0437 Tc 0.0958 Tw ( decisions on behalf of ) Tj
102 0 TD 0 0 1 rg
0.0441 Tc 0 Tw (requesters) Tj
47.25 0 TD 0 0 0 rg
0.0104 Tc 0.4666 Tw (. It accepts and answers) Tj
-201.75 -12 TD 0.0358 Tc 0.3787 Tw (queries via some network protocol \(TBD\). It may or may not rely on) Tj
0 -11.25 TD 0.0685 Tc 0.221 Tw (information stored in a \(external\) repository, e.g. in a directory service, or a) Tj
T* 0.1115 Tc 0.178 Tw (RDBMS, etc. ) Tj
60.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (23) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 429 0.75 0.75 re f
63 429 143.25 0.75 re f
206.25 429 0.75 0.75 re f
207 429 350.25 0.75 re f
557.25 429 0.75 0.75 re f
62.25 361.5 0.75 67.5 re f
206.25 361.5 0.75 67.5 re f
557.25 361.5 0.75 67.5 re f
BT
68.25 347.25 TD
0.1371 Tc 0.1524 Tw (AAA System) Tj
144 0 TD 0.0181 Tc 0.0214 Tw (A set of ) Tj
36.75 0 TD 0 0 1 rg
0.1186 Tc 0.1709 Tw (AAA system components) Tj
111.75 0 TD 0 0 0 rg
0.0099 Tc 0.0296 Tw ( delivering a ) Tj
56.25 0 TD 0 0 1 rg
0.1362 Tc 0.1533 Tw (AAA service) Tj
54 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 360.75 0.75 0.75 re f
63 360.75 143.25 0.75 re f
206.25 360.75 0.75 0.75 re f
207 360.75 350.25 0.75 re f
557.25 360.75 0.75 0.75 re f
62.25 339.75 0.75 21 re f
206.25 339.75 0.75 21 re f
557.25 339.75 0.75 21 re f
BT
68.25 324.75 TD
0.0603 Tc 0.2292 Tw (AAA System Component) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw (? ) Tj
10.5 0 TD /F0 9.75 Tf
0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.1724 Tc 0.1171 Tw (system entity) Tj
59.25 0 TD 0 0 0 rg
0.0691 Tc 0.2204 Tw ( that is one of the identifiable components of embodiments) Tj
-79.5 -12 TD 0.165 Tc 0.1245 Tw (of AAA systems.) Tj
ET
62.25 339 0.75 0.75 re f
63 339 143.25 0.75 re f
206.25 339 0.75 0.75 re f
207 339 350.25 0.75 re f
557.25 339 0.75 0.75 re f
62.25 303 0.75 36 re f
206.25 303 0.75 36 re f
557.25 303 0.75 36 re f
BT
68.25 288 TD
0.0509 Tc 0.2386 Tw (AAA System Deployment) Tj
144 0 TD 0.0666 Tc 0.0729 Tw (An instance of a deployed ) Tj
117.75 0 TD 0 0 1 rg
0.1513 Tc 0.1382 Tw (AAA system) Tj
54.75 0 TD 0 0 0 rg
0.0747 Tc 0.2148 Tw (. An AAA System Deployment is) Tj
-172.5 -12 TD 0.0781 Tc 0.2114 Tw (typically hosted within, and delivers ) Tj
159 0 TD 0 0 1 rg
0.0255 Tc 0.264 Tw (security services) Tj
73.5 0 TD 0 0 0 rg
0.1038 Tc 0.1857 Tw ( to, a given) Tj
-232.5 -11.25 TD 0 0 1 rg
0.1196 Tc 0.1699 Tw (administrative domain) Tj
96.75 0 TD 0 0 0 rg
0.0943 Tc 0.1952 Tw (, It also may be utilized to provide such services to) Tj
-96.75 -11.25 TD 0.0402 Tc 0.9993 Tw (other administrative domains.) Tj
ET
62.25 302.25 0.75 0.75 re f
63 302.25 143.25 0.75 re f
206.25 302.25 0.75 0.75 re f
207 302.25 350.25 0.75 re f
557.25 302.25 0.75 0.75 re f
62.25 246.75 0.75 55.5 re f
206.25 246.75 0.75 55.5 re f
557.25 246.75 0.75 55.5 re f
BT
68.25 231.75 TD
0.2626 Tc 0 Tw (Access) Tj
144 -0.75 TD 0.0743 Tc 0.2834 Tw (The ability and means to communicate with, or otherwise interact with, a) Tj
0 -11.25 TD 0 0 1 rg
0.1724 Tc 0.1171 Tw (system entity) Tj
59.25 0 TD 0 0 0 rg
0.0441 Tc 0.2454 Tw ( in order to manipulate, and/or use, and/or gain knowledge of,) Tj
-59.25 -11.25 TD 0.0885 Tc 0.201 Tw (some \(or all\) of a system entity\222s ) Tj
147 0 TD 0 0 1 rg
-0.0121 Tc 0.3016 Tw (system resources) Tj
77.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (. ) Tj
9 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 245.25 0.75 0.75 re f
63 245.25 143.25 0.75 re f
206.25 245.25 0.75 0.75 re f
207 245.25 350.25 0.75 re f
557.25 245.25 0.75 0.75 re f
62.25 201 0.75 44.25 re f
206.25 201 0.75 44.25 re f
557.25 201 0.75 44.25 re f
BT
68.25 186.75 TD
0.0693 Tc 0.2202 Tw (Access Control) Tj
144 -0.75 TD 0.0423 Tc -0.0028 Tw (1. Protection of ) Tj
69.75 0 TD 0 0 1 rg
0.0379 Tc 0.2516 Tw (system resources) Tj
78 0 TD 0 0 0 rg
0.1166 Tc 0.1729 Tw ( against ) Tj
38.25 0 TD 0 0 1 rg
0.1779 Tc 0 Tw (unauthorized) Tj
57.75 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
0.0537 Tc 0.2357 Tw (; a process) Tj
-278.25 -11.25 TD 0.06 Tc 0.1614 Tw (by which use of system resources is regulated according to a ) Tj
272.25 0 TD 0 0 1 rg
0.16 Tc 0.1295 Tw (security policy) Tj
-272.25 -11.25 TD 0 0 0 rg
0.062 Tc 0.1025 Tw (and is permitted by only authorized ) Tj
157.5 0 TD 0 0 1 rg
0.0881 Tc 0.2014 Tw (system entities) Tj
66.75 0 TD 0 0 0 rg
0.0825 Tc 0.207 Tw ( \(users, programs,) Tj
-224.25 -11.25 TD 0.0765 Tc 0.213 Tw (processes, or other systems\) according to that ) Tj
207.75 0 TD 0 0 1 rg
0.0965 Tc 0 Tw (policy) Tj
25.5 0 TD 0 0 0 rg
0.2895 Tc (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
-247.5 -21.75 TD 0 0 0 rg
0.0538 Tc 0.0482 Tw (2. The prevention of ) Tj
91.5 0 TD 0 0 1 rg
0.0529 Tc 0 Tw (unauthorized) Tj
57 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3.75 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
-0.2675 Tc 0.307 Tw ( of a ) Tj
21.75 0 TD 0 0 1 rg
0.1341 Tc 0 Tw (resource) Tj
38.25 0 TD 0 0 0 rg
0.1741 Tc 0.1154 Tw (, including the) Tj
-243.75 -11.25 TD 0.0682 Tc 0.2213 Tw (prevention of use of a resource in an unauthorized manner. ) Tj
264.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (9) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 200.25 0.75 0.75 re f
63 200.25 143.25 0.75 re f
206.25 200.25 0.75 0.75 re f
207 200.25 350.25 0.75 re f
557.25 200.25 0.75 0.75 re f
62.25 111.75 0.75 88.5 re f
206.25 111.75 0.75 88.5 re f
557.25 111.75 0.75 88.5 re f
BT
68.25 96.75 TD
0.12 Tc 0.1695 Tw (Access Control Decision) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
-0.0998 Tc -0.3608 Tw (The ) Tj
19.5 0 TD 0 0 1 rg
0.1234 Tc -0.5839 Tw (decision ) Tj
39.75 0 TD 0 0 0 rg
0.0346 Tc 0.2549 Tw (arrived at as a result of evaluating the ) Tj
169.5 0 TD 0 0 1 rg
0.116 Tc 0 Tw (requester\222s) Tj
49.5 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.1702 Tc 0 Tw (identity) Tj
32.25 0 TD 0 0 0 rg
0.2895 Tc (,) Tj
-324 -12 TD 0.0759 Tc 0.0886 Tw (the requested operation, and the requested ) Tj
194.25 0 TD 0 0 1 rg
0.1341 Tc 0 Tw (resource) Tj
38.25 0 TD 0 0 0 rg
0.0662 Tc 0.2233 Tw ( in light of applicable) Tj
-232.5 -11.25 TD 0 0 1 rg
0.1064 Tc 0.1831 Tw (security policy) Tj
63 0 TD 0 0 0 rg
0.0595 Tc 0.1229 Tw (. \(surprisingly enough, not explicitly defined in ) Tj
204 0 TD 0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0.5033 Tc -0.2138 Tw ( \)) Tj
ET
62.25 111 0.75 0.75 re f
63 111 143.25 0.75 re f
206.25 111 0.75 0.75 re f
207 111 350.25 0.75 re f
557.25 111 0.75 0.75 re f
62.25 63.75 0.75 47.25 re f
62.25 63 0.75 0.75 re f
62.25 63 0.75 0.75 re f
63 63 143.25 0.75 re f
206.25 63.75 0.75 47.25 re f
206.25 63 0.75 0.75 re f
207 63 350.25 0.75 re f
557.25 63.75 0.75 47.25 re f
557.25 63 0.75 0.75 re f
557.25 63 0.75 0.75 re f
endstream
endobj
36 0 obj
13863
endobj
34 0 obj
<<
/Type /Page
/Parent 5 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 35 0 R
>>
endobj
39 0 obj
<<
/Length 40 0 R
>>
stream
BT
302.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (7) Tj
-234 696 TD /F0 9.75 Tf
0.12 Tc 0.1695 Tw (Access Control Decision) Tj
0 -11.25 TD 0.0136 Tc 0 Tw (Function) Tj
144 11.25 TD 0.0656 Tc 0.2239 Tw (A specialized function that makes ) Tj
150.75 0 TD 0 0 1 rg
0.08 Tc 0.2095 Tw (access control decisions) Tj
108.75 0 TD 0 0 0 rg
-0.0105 Tc 0.3 Tw ( by applying) Tj
ET
1 1 0 rg
212.25 705.75 95.25 11.25 re f
BT
212.25 708 TD
0 0 0 rg
0.0909 Tc 0.1986 Tw (access control policy ) Tj
ET
1 1 0 rg
307.5 705.75 21 11.25 re f
BT
307.5 708 TD
0 0 0 rg
-0.1757 Tc 0 Tw (rules) Tj
21 0 TD 0 Tc 0.2895 Tw ( ) Tj
3 0 TD -0.0559 Tc -0.0296 Tw (to an ) Tj
24.75 0 TD 0 0 1 rg
0.1263 Tc 0.1632 Tw (access request) Tj
67.5 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (, ) Tj
6 0 TD 0 0 1 rg
0.066 Tc 0.2235 Tw (access control decision) Tj
-217.5 -11.25 TD 0.0479 Tc 0 Tw (information) Tj
48.75 0 TD 0 0 0 rg
-0.0428 Tc -0.0428 Tw ( \(of ) Tj
17.25 0 TD 0 0 1 rg
0.0451 Tc 0 Tw (initiators) Tj
37.5 0 TD 0 0 0 rg
0.2895 Tc (, ) Tj
6 0 TD 0 0 1 rg
0.0277 Tc (targets) Tj
30 0 TD 0 0 0 rg
0.101 Tc 0.1885 Tw (, access requests, or that retained from prior) Tj
-139.5 -11.25 TD 0.0494 Tc -0.0099 Tw (decisions\), and the ) Tj
86.25 0 TD 0 0 1 rg
0.1166 Tc 0 Tw (context) Tj
32.25 0 TD 0 0 0 rg
0.0744 Tc 0.1213 Tw ( in which the access request is made ) Tj
166.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 678 0.75 55.5 re f
206.25 678 0.75 55.5 re f
557.25 678 0.75 55.5 re f
BT
68.25 663 TD
0.12 Tc 0.1695 Tw (Access Control Decision) Tj
0 -11.25 TD 0.1346 Tc 0 Tw (Information) Tj
144 11.25 TD 0.0089 Tc 0.2806 Tw (The portion \(possibly all\) of the ) Tj
138.75 0 TD 0 0 1 rg
0.0992 Tc 0.1902 Tw (Access Control Information) Tj
120 0 TD 0 0 0 rg
0.184 Tc 0.1055 Tw ( made available) Tj
-258.75 -11.25 TD 0.0132 Tc -0.0987 Tw (to the ) Tj
27.75 0 TD 0 0 1 rg
0.082 Tc 0.2075 Tw (Access Decision Function) Tj
114 0 TD 0 0 0 rg
0.0514 Tc 0.0881 Tw ( in making a particular ) Tj
100.5 0 TD 0 0 1 rg
0.0883 Tc 0.2012 Tw (access control) Tj
-242.25 -11.25 TD 0.0296 Tc 0 Tw (decision) Tj
36 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 677.25 0.75 0.75 re f
63 677.25 143.25 0.75 re f
206.25 677.25 0.75 0.75 re f
207 677.25 350.25 0.75 re f
557.25 677.25 0.75 0.75 re f
62.25 633 0.75 44.25 re f
206.25 633 0.75 44.25 re f
557.25 633 0.75 44.25 re f
BT
68.25 618 TD
0.047 Tc 0.2425 Tw (Access Control Enforcement) Tj
0 -11.25 TD 0.0136 Tc 0 Tw (Function) Tj
144 11.25 TD 0.0663 Tc 0.1607 Tw (A specialized function that is part of the access path between an ) Tj
287.25 0 TD 0 0 1 rg
0.0084 Tc 0 Tw (initiator) Tj
31.5 0 TD 0 0 0 rg
-0.171 Tc 1.2105 Tw ( and) Tj
-318.75 -11.25 TD -0.2895 Tw (a ) Tj
8.25 0 TD 0 0 1 rg
-0.0301 Tc 0 Tw (target) Tj
25.5 0 TD 0 0 0 rg
0.0592 Tc 0.2985 Tw ( on each access request and enforces the decision made by the) Tj
-33.75 -11.25 TD 0 0 1 rg
0.0648 Tc 0.0372 Tw (Access Control Decision Function ) Tj
151.5 0 TD 0.2895 Tc 0 Tw ([) Tj
3 0 TD 0.579 Tc (10) Tj
11.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 632.25 0.75 0.75 re f
63 632.25 143.25 0.75 re f
206.25 632.25 0.75 0.75 re f
207 632.25 350.25 0.75 re f
557.25 632.25 0.75 0.75 re f
62.25 588 0.75 44.25 re f
206.25 588 0.75 44.25 re f
557.25 588 0.75 44.25 re f
BT
68.25 573 TD
0.068 Tc 0.2215 Tw (Access Control Information) Tj
144 0 TD 0.0339 Tc 0.2556 Tw (Any information used for ) Tj
111 0 TD 0 0 1 rg
0.0883 Tc 0.2012 Tw (access control) Tj
63.75 0 TD 0 0 0 rg
0.0901 Tc 0.1994 Tw ( purposes, including contextual) Tj
-174.75 -11.25 TD 0.0479 Tc -0.5084 Tw (information ) Tj
51.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 587.25 0.75 0.75 re f
63 587.25 143.25 0.75 re f
206.25 587.25 0.75 0.75 re f
207 587.25 350.25 0.75 re f
557.25 587.25 0.75 0.75 re f
62.25 554.25 0.75 33 re f
206.25 554.25 0.75 33 re f
557.25 554.25 0.75 33 re f
BT
68.25 540 TD
0.0322 Tc 0.2572 Tw (Access Control Factors) Tj
144 -0.75 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.0691 Tc 0 Tw (request) Tj
33 0 TD 0 0 0 rg
0.0202 Tc 0.2693 Tw (, when being processed by a ) Tj
129.75 0 TD 0 0 1 rg
0.2357 Tc 0 Tw (server) Tj
27.75 0 TD 0 0 0 rg
0.0675 Tc 0.372 Tw (, may be associated with a) Tj
-200.25 -11.25 TD 0.0334 Tc 0.2561 Tw (wide variety of security-related ) Tj
137.25 0 TD /F4 9.75 Tf
-0.0014 Tc 0 Tw (factors) Tj
30 0 TD /F0 9.75 Tf
0.0393 Tc 0.1002 Tw ( \(e.g. section 4.2 of ) Tj
87.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD 0.579 Tc (17) Tj
11.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.1053 Tc 0.1842 Tw (\). The server) Tj
-272.25 -11.25 TD 0.0866 Tc 0.2029 Tw (uses these factors to determine whether and how to process the request.) Tj
0 -12 TD 0.0606 Tc -0.0211 Tw (These are called ) Tj
76.5 0 TD /F4 9.75 Tf
0.0569 Tc 0.2326 Tw (access control factors) Tj
96.75 0 TD /F0 9.75 Tf
0.0607 Tc 0.3538 Tw ( \(ACFs\). They might include source) Tj
-173.25 -11.25 TD 0.0778 Tc 0.2117 Tw (IP address, encryption strength, the type of operation being requested, time) Tj
0 -11.25 TD 0.0486 Tc 0.2409 Tw (of day, etc. Some factors may be specific to the request itself, others may) Tj
0 -12 TD 0.0466 Tc 0.3929 Tw (be associated with the connection via which the request is transmitted,) Tj
0 -11.25 TD 0.0836 Tc 0.2059 Tw (others \(e.g. time of day\) may be "environmental". ) Tj
219.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (25) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 553.5 0.75 0.75 re f
63 553.5 143.25 0.75 re f
206.25 553.5 0.75 0.75 re f
207 553.5 350.25 0.75 re f
557.25 553.5 0.75 0.75 re f
62.25 451.5 0.75 102 re f
206.25 451.5 0.75 102 re f
557.25 451.5 0.75 102 re f
BT
68.25 437.25 TD
0.0999 Tc 0.1896 Tw (Access Control Policy) Tj
144 0 TD 0.0567 Tc 0.1646 Tw (The set of rules that define the conditions under which an ) Tj
255.75 0 TD 0 0 1 rg
0.193 Tc 0.0965 Tw (access ) Tj
34.5 0 TD 0 0 0 rg
0.2007 Tc 0.0888 Tw (may take) Tj
-290.25 -11.25 TD -0.0105 Tc -0.45 Tw (place ) Tj
26.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 451.5 0.75 0.75 re f
63 451.5 143.25 0.75 re f
206.25 451.5 0.75 0.75 re f
207 451.5 350.25 0.75 re f
557.25 451.5 0.75 0.75 re f
62.25 418.5 0.75 33 re f
206.25 418.5 0.75 33 re f
557.25 418.5 0.75 33 re f
BT
68.25 403.5 TD
0.0407 Tc 0.2488 Tw (Access Control Policy Rules) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.0712 Tc 0.2183 Tw (Security policy rules concerning the provision of the access control) Tj
-10.5 -12 TD -0.0183 Tc -0.4422 Tw (service ) Tj
33.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD 0.579 Tc (10) Tj
11.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 417.75 0.75 0.75 re f
63 417.75 143.25 0.75 re f
206.25 417.75 0.75 0.75 re f
207 417.75 350.25 0.75 re f
557.25 417.75 0.75 0.75 re f
62.25 381.75 0.75 36 re f
206.25 381.75 0.75 36 re f
557.25 381.75 0.75 36 re f
BT
68.25 366.75 TD
0.252 Tc 0.0375 Tw (Access Path) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.0445 Tc 0.2986 Tw (\(haven\222t been able to find a concise def for this with a modicum of looking) Tj
324.75 0 TD /F1 9.75 Tf
-0.2467 Tc 0 Tw (\)) Tj
ET
62.25 381 0.75 0.75 re f
63 381 143.25 0.75 re f
206.25 381 0.75 0.75 re f
207 381 350.25 0.75 re f
557.25 381 0.75 0.75 re f
62.25 356.25 0.75 24.75 re f
206.25 356.25 0.75 24.75 re f
557.25 356.25 0.75 24.75 re f
BT
68.25 341.25 TD
/F0 9.75 Tf
0.1022 Tc 0.1873 Tw (Access Permissions) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.2763 Tc 0 Tw (\(xxx\)) Tj
ET
62.25 355.5 0.75 0.75 re f
63 355.5 143.25 0.75 re f
206.25 355.5 0.75 0.75 re f
207 355.5 350.25 0.75 re f
557.25 355.5 0.75 0.75 re f
62.25 330.75 0.75 24.75 re f
206.25 330.75 0.75 24.75 re f
557.25 330.75 0.75 24.75 re f
BT
68.25 315.75 TD
0.0356 Tc 0.2539 Tw (Access Privileges) Tj
144 -2.25 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.2763 Tc 0 Tw (\(xxx\)) Tj
ET
62.25 330 0.75 0.75 re f
63 330 143.25 0.75 re f
206.25 330 0.75 0.75 re f
207 330 350.25 0.75 re f
557.25 330 0.75 0.75 re f
62.25 305.25 0.75 24.75 re f
206.25 305.25 0.75 24.75 re f
557.25 305.25 0.75 24.75 re f
BT
68.25 290.25 TD
0.1412 Tc 0.1483 Tw (Access Rights) Tj
144 -2.25 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.2763 Tc 0 Tw (\(xxx\)) Tj
ET
62.25 304.5 0.75 0.75 re f
63 304.5 143.25 0.75 re f
206.25 304.5 0.75 0.75 re f
207 304.5 350.25 0.75 re f
557.25 304.5 0.75 0.75 re f
62.25 279.75 0.75 24.75 re f
206.25 279.75 0.75 24.75 re f
557.25 279.75 0.75 24.75 re f
BT
68.25 264.75 TD
0.0974 Tc 0.1921 Tw (Access Request) Tj
144 0 TD 0.0739 Tc 0.1406 Tw (The operations and operands that form part of an attempted ) Tj
267.75 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
-0.0175 Tc 0.307 Tw ( of a) Tj
-299.25 -11.25 TD 0 0 1 rg
0.121 Tc 0.1685 Tw (system resource) Tj
72.75 0 TD 0 0 0 rg
0.0795 Tc 0.21 Tw (. An access request may be communicated between parties) Tj
-72.75 -11.25 TD -0.1579 Tc 0.0724 Tw (via a ) Tj
23.25 0 TD 0 0 1 rg
0.1762 Tc 0 Tw (request) Tj
33.75 0 TD 0 0 0 rg
0.2895 Tc (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 279 0.75 0.75 re f
63 279 143.25 0.75 re f
206.25 279 0.75 0.75 re f
207 279 350.25 0.75 re f
557.25 279 0.75 0.75 re f
62.25 234.75 0.75 44.25 re f
206.25 234.75 0.75 44.25 re f
557.25 234.75 0.75 44.25 re f
BT
68.25 219.75 TD
-0.0845 Tc 1.124 Tw (Active Role) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F0 9.75 Tf
0.2468 Tc 0.0427 Tw ( A ) Tj
18.75 0 TD 0 0 1 rg
-0.1258 Tc 0 Tw (role) Tj
15.75 0 TD 0 0 0 rg
-0.0175 Tc 0.057 Tw ( that an ) Tj
36 0 TD 0 0 1 rg
0.0151 Tc 0 Tw (actor) Tj
21.75 0 TD 0 0 0 rg
0.0585 Tc 0.4453 Tw ( has donned when performing some operation, e.g.) Tj
-99.75 -12 TD 0 0 1 rg
0.1002 Tc 0 Tw (accessing) Tj
44.25 0 TD 0 0 0 rg
-0.171 Tc 0.0855 Tw ( a ) Tj
11.25 0 TD 0 0 1 rg
0.1341 Tc 0 Tw (resource) Tj
38.25 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 234 0.75 0.75 re f
63 234 143.25 0.75 re f
206.25 234 0.75 0.75 re f
207 234 350.25 0.75 re f
557.25 234 0.75 0.75 re f
62.25 198 0.75 36 re f
206.25 198 0.75 36 re f
557.25 198 0.75 36 re f
BT
68.25 183 TD
0.0987 Tc (Actor) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F0 9.75 Tf
-0.0617 Tc 0.3512 Tw ( From ) Tj
28.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (2) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.1374 Tc 0.1521 Tw (: A computational entity [i.e. ) Tj
126.75 0 TD 0 0 1 rg
0.1099 Tc 0.1796 Tw (system entity) Tj
58.5 0 TD 0 0 0 rg
0.0033 Tc -0.0888 Tw (] utilizing ) Tj
41.25 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
-273.75 -12 TD -0.0629 Tc (services) Tj
36 0 TD 0 0 0 rg
0.0903 Tc 0.0492 Tw (. Examples of actors include ) Tj
128.25 0 TD 0 0 1 rg
0.0519 Tc 0.2376 Tw (application servers) Tj
83.25 0 TD 0 0 0 rg
0.1404 Tc 0.1491 Tw (, application) Tj
-247.5 -12 TD 0.0777 Tc 0.2118 Tw (programs, security services \(?\), transport and message-level interceptors) Tj
0 -11.25 TD 0.1957 Tc 0 Tw (etc.) Tj
ET
1 1 0 rg
212.25 121.5 263.25 10.5 re f
BT
212.25 123.75 TD
0 0 0 rg
0.0658 Tc 0.0987 Tw (Perhaps actor is effectively synonymous with ) Tj
201 0 TD 0 0 1 rg
0.1724 Tc 0.1171 Tw (system entity) Tj
59.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 197.25 0.75 0.75 re f
63 197.25 143.25 0.75 re f
206.25 197.25 0.75 0.75 re f
207 197.25 350.25 0.75 re f
557.25 197.25 0.75 0.75 re f
62.25 117 0.75 80.25 re f
62.25 116.25 0.75 0.75 re f
62.25 116.25 0.75 0.75 re f
63 116.25 143.25 0.75 re f
206.25 117 0.75 80.25 re f
206.25 116.25 0.75 0.75 re f
207 116.25 350.25 0.75 re f
557.25 117 0.75 80.25 re f
557.25 116.25 0.75 0.75 re f
557.25 116.25 0.75 0.75 re f
endstream
endobj
40 0 obj
12885
endobj
37 0 obj
<<
/Type /Page
/Parent 38 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 39 0 R
>>
endobj
42 0 obj
<<
/Length 43 0 R
>>
stream
BT
302.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (8) Tj
-234 696.75 TD /F0 9.75 Tf
0.0595 Tc 0.2299 Tw (Administrative Domain) Tj
144 -0.75 TD 0.0689 Tc 0.2956 Tw (An environment or context that is defined by some combination of) Tj
0 -11.25 TD 0.0799 Tc 0.2096 Tw (administrative policies, Internet Domain Name registration\(s\), civil legal) Tj
T* 0.0774 Tc 0.3192 Tw (entity\(ies\) \(e.g. individual\(s\), corporation\(s\), or other formally organized) Tj
0 -12 TD 0.0405 Tc 0.099 Tw (entity\(ies\)\), plus a collection of ) Tj
137.25 0 TD 0 0 1 rg
0.1395 Tc 0 Tw (hosts) Tj
24 0 TD 0 0 0 rg
0.2895 Tc (, ) Tj
6 0 TD 0 0 1 rg
-0.0312 Tc 0.3207 Tw (network devices) Tj
70.5 0 TD 0 0 0 rg
0.0307 Tc 0.2588 Tw ( and the) Tj
-237.75 -11.25 TD 0.0661 Tc 0.4109 Tw (interconnecting networks \(and possibly other traits\), plus \(often various\)) Tj
0 -11.25 TD 0 0 1 rg
0.0908 Tc 0.1987 Tw (network services ) Tj
77.25 0 TD 0 0 0 rg
-0.171 Tc -0.2895 Tw (and ) Tj
18.75 0 TD 0 0 1 rg
0.1475 Tc 0.142 Tw (applications ) Tj
56.25 0 TD 0 0 0 rg
0.055 Tc 0.047 Tw (running upon them. An ) Tj
103.5 0 TD 0 0 1 rg
0.1271 Tc 0 Tw (Administrative) Tj
-255.75 -12 TD 0.0269 Tc (Domain) Tj
33.75 0 TD 0 0 0 rg
0.0752 Tc 0.1206 Tw ( may contain or define one or more ) Tj
158.25 0 TD 0 0 1 rg
0.0544 Tc 0.2351 Tw (security domains) Tj
75 0 TD 0 0 0 rg
0.3718 Tc -0.0823 Tw (. An) Tj
-267 -11.25 TD 0.0765 Tc 0.088 Tw (administrative domain may encompass a single ) Tj
212.25 0 TD 0 0 1 rg
0.3322 Tc 0 Tw (site) Tj
15.75 0 TD 0 0 0 rg
0.1151 Tc 0.1744 Tw ( or multiple sites. The) Tj
-228 -11.25 TD 0.0634 Tc 0.2943 Tw (traits defining an Administrative Domain may, and in many cases will, evolve) Tj
0 -12 TD 0.0898 Tc 0.1997 Tw (over time. Administrative Domains may interact and enter into agreements) Tj
0 -11.25 TD 0.0616 Tc 0.4422 Tw (for providing and/or consuming services across Administrative Domain) Tj
T* 0.0733 Tc 0 Tw (boundaries.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 585.75 0.75 147.75 re f
206.25 585.75 0.75 147.75 re f
557.25 585.75 0.75 147.75 re f
BT
68.25 571.5 TD
0.1402 Tc (Administrator) Tj
144 -0.75 TD 0.0627 Tc 0.2893 Tw (A person who installs, maintains, and/or makes use of the resources of a) Tj
0 -11.25 TD 0 0 1 rg
0.0509 Tc 0.2386 Tw (AAA System Deployment) Tj
111.75 0 TD 0 0 0 rg
0.092 Tc 0.1975 Tw ( for system management and/or user management) Tj
-111.75 -11.25 TD 0.0974 Tc 0.1921 Tw (and/or content management purposes \(as opposed to application purposes.) Tj
0 -12 TD 0.0033 Tc -0.0888 Tw (See also ) Tj
41.25 0 TD 0 0 1 rg
-0.0611 Tc 1.1006 Tw (End User) Tj
42 0 TD 0 0 0 rg
0.0595 Tc 0.23 Tw (\). An administrator is typically affiliated with a particular) Tj
-83.25 -11.25 TD 0 0 1 rg
0.1196 Tc 0.1699 Tw (administrative domain) Tj
96.75 0 TD 0 0 0 rg
0.079 Tc -0.1645 Tw ( and ) Tj
22.5 0 TD /F4 9.75 Tf
0.3607 Tc 0 Tw (may) Tj
18.75 0 TD /F0 9.75 Tf
0.0951 Tc 0.1944 Tw ( be affiliated with more than one) Tj
-138 -11.25 TD 0.0698 Tc 0.0322 Tw (administrative domain. See also ) Tj
144 0 TD 0 0 1 rg
0.1073 Tc 0 Tw (deployer) Tj
38.25 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 585 0.75 0.75 re f
63 585 143.25 0.75 re f
206.25 585 0.75 0.75 re f
207 585 350.25 0.75 re f
557.25 585 0.75 0.75 re f
62.25 506.25 0.75 78.75 re f
206.25 506.25 0.75 78.75 re f
557.25 506.25 0.75 78.75 re f
BT
68.25 492 TD
0.1097 Tc (Anonymity) Tj
144 0 TD 0.0516 Tc 0.1129 Tw (The quality or state of being ) Tj
126 0 TD 0 0 1 rg
0.0669 Tc 0 Tw (anonymous) Tj
51.75 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 505.5 0.75 0.75 re f
63 505.5 143.25 0.75 re f
206.25 505.5 0.75 0.75 re f
207 505.5 350.25 0.75 re f
557.25 505.5 0.75 0.75 re f
62.25 484.5 0.75 21 re f
206.25 484.5 0.75 21 re f
557.25 484.5 0.75 21 re f
BT
68.25 469.5 TD
0.03 Tc (Anonymous) Tj
144 0 TD 0.0408 Tc 0.1416 Tw (The condition of having a name [or ) Tj
156 0 TD 0 0 1 rg
0.1702 Tc 0 Tw (identity) Tj
32.25 0 TD 0 0 0 rg
0.025 Tc 0.4145 Tw (] that is unknown or concealed.) Tj
-188.25 -11.25 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 483.75 0.75 0.75 re f
63 483.75 143.25 0.75 re f
206.25 483.75 0.75 0.75 re f
207 483.75 350.25 0.75 re f
557.25 483.75 0.75 0.75 re f
62.25 450.75 0.75 33 re f
206.25 450.75 0.75 33 re f
557.25 450.75 0.75 33 re f
BT
68.25 436.5 TD
0.0499 Tc 0.2396 Tw (Application Server) Tj
144 -0.75 TD 0.0558 Tc 0.1087 Tw (A software system run on a ) Tj
123.75 0 TD 0 0 1 rg
0.0806 Tc 0 Tw (host) Tj
18.75 0 TD 0 0 0 rg
0.0486 Tc 0.3659 Tw ( that provides an execution environment for) Tj
-142.5 -11.25 TD 0.0904 Tc 0.1991 Tw (higher-level applications, for example business-oriented apps.) Tj
ET
62.25 450 0.75 0.75 re f
63 450 143.25 0.75 re f
206.25 450 0.75 0.75 re f
207 450 350.25 0.75 re f
557.25 450 0.75 0.75 re f
62.25 417 0.75 33 re f
206.25 417 0.75 33 re f
557.25 417 0.75 33 re f
BT
68.25 402.75 TD
0.068 Tc 0 Tw (Assertion) Tj
144 0 TD -0.2215 Tc (\(a\)) Tj
12 0 TD /F1 12.75 Tf
0 Tc 0.2055 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.0141 Tc 0.4629 Tw (A piece of data constituting a declaration of ) Tj
194.25 0 TD 0 0 1 rg
0.1702 Tc 0 Tw (identity) Tj
32.25 0 TD 0 0 0 rg
-0.2089 Tc 0.1234 Tw ( or ) Tj
14.25 0 TD 0 0 1 rg
0.0576 Tc 0 Tw (authorizations) Tj
62.25 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
-318 -14.25 TD 0.0391 Tc 0.2504 Tw (See also: ) Tj
44.25 0 TD 0 0 1 rg
0.0484 Tc 0 Tw (credential) Tj
42.75 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
3.75 0 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw ( ?) Tj
-90.75 -22.5 TD /F0 9.75 Tf
0.0672 Tc 0.1389 Tw (\(b\) "Data that is transferred to establish the claimed ) Tj
230.25 0 TD 0 0 1 rg
0.0765 Tc 0 Tw (identity) Tj
31.5 0 TD 0 0 0 rg
-0.0559 Tc 0.0954 Tw ( of an ) Tj
27.75 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
0.2891 Tc 0 Tw (." ) Tj
9.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (9) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 417 0.75 0.75 re f
63 417 143.25 0.75 re f
206.25 417 0.75 0.75 re f
207 417 350.25 0.75 re f
557.25 417 0.75 0.75 re f
62.25 359.25 0.75 57.75 re f
206.25 359.25 0.75 57.75 re f
557.25 359.25 0.75 57.75 re f
BT
68.25 344.25 TD
0.079 Tc 0.2105 Tw (Asserting Party) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F0 9.75 Tf
0.0379 Tc 0.0016 Tw ( An ) Tj
21 0 TD 0 0 1 rg
0.0411 Tc -0.5016 Tw (issuer ) Tj
29.25 0 TD 0 0 0 rg
0.0175 Tc 1.022 Tw (of assertions.) Tj
ET
62.25 358.5 0.75 0.75 re f
63 358.5 143.25 0.75 re f
206.25 358.5 0.75 0.75 re f
207 358.5 350.25 0.75 re f
557.25 358.5 0.75 0.75 re f
62.25 333.75 0.75 24.75 re f
206.25 333.75 0.75 24.75 re f
557.25 333.75 0.75 24.75 re f
BT
68.25 318.75 TD
0.2341 Tc 0 Tw (Attack) Tj
144 0 TD 0.101 Tc 0.1885 Tw (An assault on system ) Tj
98.25 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
34.5 0 TD 0 0 0 rg
0.0013 Tc 0.4132 Tw ( that derives from an intelligent ) Tj
138 0 TD 0 0 1 rg
-0.0301 Tc 0 Tw (threat) Tj
25.5 0 TD 0 0 0 rg
0.0913 Tc 0.1982 Tw (, i.e., an) Tj
-296.25 -12 TD 0.0686 Tc 0.2209 Tw (intelligent act that is a deliberate attempt \(especially in the sense of a) Tj
0 -11.25 TD 0.0341 Tc 0.2554 Tw (method or technique\) to evade ) Tj
138 0 TD 0 0 1 rg
0.0724 Tc 0.2171 Tw (security services) Tj
74.25 0 TD 0 0 0 rg
-0.0187 Tc 0.3082 Tw ( and violate the ) Tj
70.5 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
-282.75 -11.25 TD 0.0965 Tc (policy) Tj
25.5 0 TD 0 0 0 rg
0.0859 Tc 0.2036 Tw ( of a system. ) Tj
60 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 333 0.75 0.75 re f
63 333 143.25 0.75 re f
206.25 333 0.75 0.75 re f
207 333 350.25 0.75 re f
557.25 333 0.75 0.75 re f
62.25 277.5 0.75 55.5 re f
206.25 277.5 0.75 55.5 re f
557.25 277.5 0.75 55.5 re f
BT
68.25 262.5 TD
0.1323 Tc (Attribute) Tj
144 -0.75 TD 0.081 Tc 0.1404 Tw (A distinct characteristic of an object. An object\222s attributes are said to) Tj
0 -11.25 TD 0.0822 Tc 0.2073 Tw (describe the object. Objects\222 attributes are often specified in terms of their) Tj
T* 0.0697 Tc 0.2197 Tw (physical traits, such as size, shape, weight, and color, address, phone) Tj
0 -12 TD 0.0627 Tc 0.3102 Tw (number, etc., for real-world objects. Objects in cyberspace might have) Tj
0 -11.25 TD 0.1095 Tc 0.18 Tw (attributes describing size, type of encoding, network address, etc. Which) Tj
T* 0.0465 Tc 0.243 Tw (attributes of an object are salient is decided by the beholder.) Tj
0 -21.75 TD 0.0473 Tc 0.4467 Tw (Attributes are of various types, and are often represented by an attribute) Tj
0 -11.25 TD 0.0501 Tc 0.3075 Tw (name along with one or more attribute values. See also Attribute Value) Tj
T* 0.0901 Tc 0.1993 Tw (Assertion, ) Tj
47.25 0 TD 0 0 1 rg
-0.1349 Tc 0 Tw (entry) Tj
21.75 0 TD 0 0 0 rg
0.2895 Tc (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (11) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (17) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 276 0.75 0.75 re f
63 276 143.25 0.75 re f
206.25 276 0.75 0.75 re f
207 276 350.25 0.75 re f
557.25 276 0.75 0.75 re f
62.25 153 0.75 123 re f
206.25 153 0.75 123 re f
557.25 153 0.75 123 re f
BT
68.25 138 TD
0.0954 Tc 0.1941 Tw (Attribute Authority) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw (? ) Tj
11.25 0 TD /F0 9.75 Tf
0.1057 Tc 0.1838 Tw (\(a\) A system entity that produces Attribute assertions, based upon TBD) Tj
-11.25 -12 TD 0.0752 Tc 0.2143 Tw (inputs. ) Tj
32.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (33) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-45.75 -21 TD 0 0 0 rg
0.0814 Tc 0.2081 Tw (\(b\) An authority which assigns privileges by issuing attribute certificates. ) Tj
321 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (32) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 152.25 0.75 0.75 re f
63 152.25 143.25 0.75 re f
206.25 152.25 0.75 0.75 re f
207 152.25 350.25 0.75 re f
557.25 152.25 0.75 0.75 re f
62.25 94.5 0.75 57.75 re f
206.25 94.5 0.75 57.75 re f
557.25 94.5 0.75 57.75 re f
BT
68.25 79.5 TD
0.0585 Tc 0.231 Tw (Attribute Assertion) Tj
144 -2.25 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw (? ) Tj
10.5 0 TD /F0 9.75 Tf
0.1016 Tc 0.1879 Tw (An assertion about attributes of a principal.) Tj
ET
62.25 93.75 0.75 0.75 re f
63 93.75 143.25 0.75 re f
206.25 93.75 0.75 0.75 re f
207 93.75 350.25 0.75 re f
557.25 93.75 0.75 0.75 re f
62.25 69 0.75 24.75 re f
62.25 68.25 0.75 0.75 re f
62.25 68.25 0.75 0.75 re f
63 68.25 143.25 0.75 re f
206.25 69 0.75 24.75 re f
206.25 68.25 0.75 0.75 re f
207 68.25 350.25 0.75 re f
557.25 69 0.75 24.75 re f
557.25 68.25 0.75 0.75 re f
557.25 68.25 0.75 0.75 re f
endstream
endobj
43 0 obj
11173
endobj
41 0 obj
<<
/Type /Page
/Parent 38 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 42 0 R
>>
endobj
45 0 obj
<<
/Length 46 0 R
>>
stream
BT
302.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (9) Tj
-234 696.75 TD /F0 9.75 Tf
0.0529 Tc 0.2366 Tw (Attribute Name) Tj
144 0 TD 0.085 Tc 0.0974 Tw (The human-palatable name associated with a particular ) Tj
248.25 0 TD 0 0 1 rg
0.0843 Tc 0.2052 Tw (attribute type) Tj
57.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 712.5 0.75 21 re f
206.25 712.5 0.75 21 re f
557.25 712.5 0.75 21 re f
BT
68.25 697.5 TD
0.0785 Tc 0.211 Tw (Attribute List) Tj
144 0 TD 0.0589 Tc 0.1234 Tw (A data structure consisting of lists of ) Tj
162.75 0 TD 0 0 1 rg
0.0225 Tc 0.642 Tw (attribute value assertions) Tj
111 0 TD 0 0 0 rg
0.1561 Tc 0.1334 Tw ( \(aka name-) Tj
-273.75 -11.25 TD 0.051 Tc 0.2385 Tw (value pairs\). ) Tj
60 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 711.75 0.75 0.75 re f
63 711.75 143.25 0.75 re f
206.25 711.75 0.75 0.75 re f
207 711.75 350.25 0.75 re f
557.25 711.75 0.75 0.75 re f
62.25 678.75 0.75 33 re f
206.25 678.75 0.75 33 re f
557.25 678.75 0.75 33 re f
BT
68.25 664.5 TD
-0.0179 Tc 1.0574 Tw (Attribute Type) Tj
144 -0.75 TD 0.0503 Tc 0.3074 Tw (An attribute type typically governs whether an attribute is single- or multi-) Tj
0 -11.25 TD 0.0726 Tc 0.2794 Tw (valued, the syntax to which the values must conform, the kinds of matching) Tj
T* 0.0619 Tc 0.2901 Tw (which can be performed on values of that attribute, and other functions. ) Tj
318 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (17) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 678 0.75 0.75 re f
63 678 143.25 0.75 re f
206.25 678 0.75 0.75 re f
207 678 350.25 0.75 re f
557.25 678 0.75 0.75 re f
62.25 633.75 0.75 44.25 re f
206.25 633.75 0.75 44.25 re f
557.25 633.75 0.75 44.25 re f
BT
68.25 619.5 TD
0.1257 Tc 0.1638 Tw (Attribute Value) Tj
144 -0.75 TD 0.0536 Tc 0.2936 Tw (An attribute value is one or more pieces of data, encoded according to the) Tj
0 -11.25 TD 0.0353 Tc 0.0042 Tw (syntax of the ) Tj
59.25 0 TD 0 0 1 rg
0.1037 Tc 0.1857 Tw (attribute\222s type) Tj
65.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (17) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 633 0.75 0.75 re f
63 633 143.25 0.75 re f
206.25 633 0.75 0.75 re f
207 633 350.25 0.75 re f
557.25 633 0.75 0.75 re f
62.25 600 0.75 33 re f
206.25 600 0.75 33 re f
557.25 600 0.75 33 re f
BT
68.25 585.75 TD
0.0705 Tc 0.219 Tw (Attribute Value Assertion) Tj
144 0 TD 0.0626 Tc 0.1019 Tw (An Attribute Value Assertion is an ) Tj
151.5 0 TD 0 0 1 rg
0.1882 Tc 0 Tw (assertion) Tj
40.5 0 TD 0 0 0 rg
0.0637 Tc 0.3508 Tw ( with the general abstract form of) Tj
-192 -11.25 TD -0.2467 Tc 0 Tw (\223) Tj
3 0 TD 0 0 1 rg
0.0843 Tc 0.2052 Tw (attribute type) Tj
57.75 0 TD 0 0 0 rg
-0.1069 Tc 0.3964 Tw ( IS ) Tj
15 0 TD 0 0 1 rg
-0.0021 Tc 1.0416 Tw (attribute value) Tj
63 0 TD 0 0 0 rg
0.0214 Tc 0.2681 Tw (\224. ) Tj
9 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (17) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 600 0.75 0.75 re f
63 600 143.25 0.75 re f
206.25 600 0.75 0.75 re f
207 600 350.25 0.75 re f
557.25 600 0.75 0.75 re f
62.25 567 0.75 33 re f
206.25 567 0.75 33 re f
557.25 567 0.75 33 re f
BT
68.25 552 TD
0.056 Tc (Audit) Tj
144 0 TD 0.0709 Tc 0.3853 Tw (Independent review and examination of records and activities to determine) Tj
0 -11.25 TD 0.0495 Tc 0.24 Tw (compliance with established usage ) Tj
156.75 0 TD 0 0 1 rg
0.0617 Tc 0 Tw (policies) Tj
33.75 0 TD 0 0 0 rg
0.0544 Tc 0.2351 Tw ( and to detect possible) Tj
-190.5 -11.25 TD 0.0909 Tc 0.1986 Tw (inadequacies in product technical ) Tj
150.75 0 TD 0 0 1 rg
0.0409 Tc 0.2486 Tw (security policies) Tj
70.5 0 TD 0 0 0 rg
0.0791 Tc 0.2104 Tw ( of their enforcement. ) Tj
97.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 566.25 0.75 0.75 re f
63 566.25 143.25 0.75 re f
206.25 566.25 0.75 0.75 re f
207 566.25 350.25 0.75 re f
557.25 566.25 0.75 0.75 re f
62.25 522 0.75 44.25 re f
206.25 522 0.75 44.25 re f
557.25 522 0.75 44.25 re f
BT
68.25 507 TD
0.0843 Tc 0.2052 Tw (Audit Identity) Tj
144 0 TD 0.0832 Tc 0.2063 Tw (An identity attribute containing an identity used only for accountability) Tj
0 -11.25 TD 0.0764 Tc 0.2131 Tw (purposes. ) Tj
46.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (13) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 521.25 0.75 0.75 re f
63 521.25 143.25 0.75 re f
206.25 521.25 0.75 0.75 re f
207 521.25 350.25 0.75 re f
557.25 521.25 0.75 0.75 re f
62.25 488.25 0.75 33 re f
206.25 488.25 0.75 33 re f
557.25 488.25 0.75 33 re f
BT
68.25 474 TD
-0.0361 Tc (Authc) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0867 Tc 0 Tw (Authentication) Tj
ET
0 0 0 rg
62.25 487.5 0.75 0.75 re f
63 487.5 143.25 0.75 re f
206.25 487.5 0.75 0.75 re f
207 487.5 350.25 0.75 re f
557.25 487.5 0.75 0.75 re f
62.25 466.5 0.75 21 re f
206.25 466.5 0.75 21 re f
557.25 466.5 0.75 21 re f
BT
68.25 451.5 TD
0.0046 Tc (Authn) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0867 Tc 0 Tw (Authentication) Tj
ET
0 0 0 rg
62.25 465.75 0.75 0.75 re f
63 465.75 143.25 0.75 re f
206.25 465.75 0.75 0.75 re f
207 465.75 350.25 0.75 re f
557.25 465.75 0.75 0.75 re f
62.25 444.75 0.75 21 re f
206.25 444.75 0.75 21 re f
557.25 444.75 0.75 21 re f
BT
68.25 429.75 TD
-0.0361 Tc (Authz) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0653 Tc 0 Tw (Authorization) Tj
ET
0 0 0 rg
62.25 444 0.75 0.75 re f
63 444 143.25 0.75 re f
206.25 444 0.75 0.75 re f
207 444 350.25 0.75 re f
557.25 444 0.75 0.75 re f
62.25 423 0.75 21 re f
206.25 423 0.75 21 re f
557.25 423 0.75 21 re f
BT
68.25 408 TD
0.1083 Tc (Authenticate) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.0114 Tc 0.3614 Tw (\(a\) To verify \(i.e., establish the truth of\) an ) Tj
188.25 0 TD 0 0 1 rg
0.1702 Tc 0.1192 Tw (identity ) Tj
35.25 0 TD 0 0 0 rg
0.0265 Tc 0.263 Tw (claimed by or for a) Tj
-234 -12 TD 0 0 1 rg
0.1724 Tc 0.1171 Tw (system entity) Tj
59.25 0 TD 0 0 0 rg
-0.4605 Tc 0 Tw (. ) Tj
5.25 0 TD 0 0 1 rg
0.2895 Tc ([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
2.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
-86.25 -21.75 TD 0 0 0 rg
0.0641 Tc 0.2879 Tw (\(b\) \223to authenticate\224 \226 the act of presenting one\222s credentials in order to) Tj
0 -11.25 TD 0.0035 Tc 1.036 Tw (become authenticated.) Tj
ET
62.25 421.5 0.75 0.75 re f
63 421.5 143.25 0.75 re f
206.25 421.5 0.75 0.75 re f
207 421.5 350.25 0.75 re f
557.25 421.5 0.75 0.75 re f
62.25 352.5 0.75 69 re f
206.25 352.5 0.75 69 re f
557.25 352.5 0.75 69 re f
BT
68.25 337.5 TD
0.1403 Tc 0 Tw (Authentication) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.0667 Tc 0.129 Tw (\(a\) Authentication is the process of confirming a ) Tj
213.75 0 TD 0 0 1 rg
0.1807 Tc 0.1088 Tw (system entity\222s) Tj
66.75 0 TD 0 0 0 rg
0.0136 Tc 0.2759 Tw ( asserted) Tj
-291 -12 TD 0 0 1 rg
0.1066 Tc 0.1829 Tw (principal identity ) Tj
75 0 TD 0 0 0 rg
0.0568 Tc 0.2327 Tw (with a specified, or understood, level of confidence. ) Tj
228.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (7) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (33) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-331.5 -21.75 TD 0 0 0 rg
-0.008 Tc 0.4225 Tw (\(b\) The process of verifying a ) Tj
132 0 TD 0 0 1 rg
0.1066 Tc 0.1829 Tw (principal identity ) Tj
75 0 TD 0 0 0 rg
-0.0735 Tc 0.513 Tw (claimed by or for a ) Tj
84.75 0 TD 0 0 1 rg
0.2286 Tc 0 Tw (system) Tj
-291.75 -11.25 TD 0.1162 Tc (entity) Tj
24 0 TD 0 0 0 rg
0.2895 Tc (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (33) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 351.75 0.75 0.75 re f
63 351.75 143.25 0.75 re f
206.25 351.75 0.75 0.75 re f
207 351.75 350.25 0.75 re f
557.25 351.75 0.75 0.75 re f
62.25 282.75 0.75 69 re f
206.25 282.75 0.75 69 re f
557.25 282.75 0.75 69 re f
BT
68.25 267.75 TD
0.0794 Tc 0.2101 Tw (Authentication Assertion) Tj
144 0 TD 0.0394 Tc 0.4376 Tw (Data vouching for the occurrence of an authentication of a principal at a) Tj
0 -12 TD 0.0608 Tc 0.3358 Tw (particular time using a particular authentication mechanism. Synonym\(s\):) Tj
0 -11.25 TD 0.0071 Tc 0.2824 Tw (name assertion.) Tj
ET
62.25 282 0.75 0.75 re f
63 282 143.25 0.75 re f
206.25 282 0.75 0.75 re f
207 282 350.25 0.75 re f
557.25 282 0.75 0.75 re f
62.25 237.75 0.75 44.25 re f
206.25 237.75 0.75 44.25 re f
557.25 237.75 0.75 44.25 re f
BT
68.25 222.75 TD
0.1083 Tc 0.1812 Tw (Authentication Authority) Tj
144 0 TD 0.0773 Tc 0.2122 Tw (A system entity that verifies credentials and produces authentication) Tj
0 -11.25 TD 0.0781 Tc 0.2114 Tw (assertions. ) Tj
51 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (33) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 237 0.75 0.75 re f
63 237 143.25 0.75 re f
206.25 237 0.75 0.75 re f
207 237 350.25 0.75 re f
557.25 237 0.75 0.75 re f
62.25 204.75 0.75 32.25 re f
62.25 204 0.75 0.75 re f
62.25 204 0.75 0.75 re f
63 204 143.25 0.75 re f
206.25 204.75 0.75 32.25 re f
206.25 204 0.75 0.75 re f
207 204 350.25 0.75 re f
557.25 204.75 0.75 32.25 re f
557.25 204 0.75 0.75 re f
557.25 204 0.75 0.75 re f
endstream
endobj
46 0 obj
10109
endobj
44 0 obj
<<
/Type /Page
/Parent 38 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
>>
/ProcSet 2 0 R
>>
/Contents 45 0 R
>>
endobj
48 0 obj
<<
/Length 49 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (10) Tj
-231 696.75 TD /F0 9.75 Tf
0.1031 Tc 0.1864 Tw (Authentication Mechanism) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F4 9.75 Tf
-0.0066 Tc 0 Tw (Examples) Tj
43.5 0 TD /F0 9.75 Tf
0.2895 Tc (..) Tj
-36 -23.25 TD /F6 9.75 Tf
0.015 Tc (\267) Tj
4.5 0 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
13.5 0 TD 0.0488 Tc 0.2407 Tw (Simple username & password.) Tj
-18 -21.75 TD /F6 9.75 Tf
0.015 Tc 0 Tw (\267) Tj
4.5 0 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
13.5 0 TD -0.0695 Tc 0 Tw (Kerberos) Tj
-18 -22.5 TD /F6 9.75 Tf
0.015 Tc (\267) Tj
4.5 0 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
13.5 0 TD 0.0656 Tc 0.4382 Tw (Client-side \(and server-side\) authn via the TLS/SSL \223handshake) Tj
0 -11.25 TD 0.0767 Tc 0.4003 Tw (protocol\224 during TLS/SSL session establishment.) Tj
-18 -22.5 TD /F6 9.75 Tf
0.015 Tc 0 Tw (\267) Tj
4.5 0 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
13.5 0 TD 0.101 Tc 0.1885 Tw (Any SASL mechanism.) Tj
ET
1 1 0 rg
212.25 592.5 300 10.5 re f
BT
212.25 594.75 TD
0 0 0 rg
0.0719 Tc 0.2176 Tw (JeffH hasn\222t yet found a concise and referenceable def for this term.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 587.25 0.75 146.25 re f
206.25 587.25 0.75 146.25 re f
557.25 587.25 0.75 146.25 re f
BT
68.25 572.25 TD
0.0585 Tc 0 Tw (Authority) Tj
144 0 TD 0.0909 Tc -0.0514 Tw (An identified computer-based ) Tj
132.75 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
0.0273 Tc 0.0122 Tw ( implementing a ) Tj
72.75 0 TD 0 0 1 rg
0.1522 Tc 0.1373 Tw (security service) Tj
69 0 TD 0 0 0 rg
-0.002 Tc 0.2915 Tw ( \(e.g.) Tj
-298.5 -11.25 TD -0.0812 Tc 0.3707 Tw (creation of ) Tj
48.75 0 TD 0 0 1 rg
0.0569 Tc 0 Tw (assertions) Tj
45.75 0 TD 0 0 0 rg
0.2895 Tc (, ) Tj
6 0 TD 0 0 1 rg
0.0781 Tc (credentials) Tj
48 0 TD 0 0 0 rg
0.2895 Tc (, ) Tj
6 0 TD 0 0 1 rg
0.318 Tc (PAC) Tj
20.25 0 TD 0 0 0 rg
0.0733 Tc 0.2162 Tw (s, and so on\). ) Tj
63.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 586.5 0.75 0.75 re f
63 586.5 143.25 0.75 re f
206.25 586.5 0.75 0.75 re f
207 586.5 350.25 0.75 re f
557.25 586.5 0.75 0.75 re f
62.25 553.5 0.75 33 re f
206.25 553.5 0.75 33 re f
557.25 553.5 0.75 33 re f
BT
68.25 539.25 TD
0.123 Tc (Authorization) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F0 9.75 Tf
0.0358 Tc 0.3787 Tw ( The process of determining which types of activities are permitted.) Tj
-7.5 -12.75 TD 0.0613 Tc 0.1211 Tw (Usually, authorization is in the context of ) Tj
181.5 0 TD 0 0 1 rg
0.164 Tc 0 Tw (authentication) Tj
62.25 0 TD 0 0 0 rg
0.0735 Tc 0.216 Tw (. Once you have) Tj
-243.75 -11.25 TD 0.0746 Tc -0.1601 Tw (authenticated an ) Tj
76.5 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
0.0592 Tc -0.1447 Tw (, the ) Tj
22.5 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
0.0825 Tc 0.207 Tw ( may be authorized different types of) Tj
-147 -11.25 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
0.0069 Tc 0.2826 Tw ( or activity. ) Tj
53.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
-93 -21.75 TD 0 0 0 rg
0.0394 Tc 0.2501 Tw (The \223act of authorization\224 is when an ) Tj
201 0 TD 0 0 1 rg
0.1788 Tc 0 Tw (AEF) Tj
19.5 0 TD 0 0 0 rg
0.0769 Tc 0.2126 Tw ( acts upon information) Tj
-220.5 -11.25 TD -0.0312 Tc 0.3207 Tw (received from an ) Tj
76.5 0 TD 0 0 1 rg
0.25 Tc 0 Tw (ADF) Tj
20.25 0 TD 0 0 0 rg
0.0289 Tc (.) Tj
-96.75 -21.75 TD 0.0548 Tc 0.2347 Tw (The \(act of\) granting of access rights to a subject \(for example, a user, or) Tj
0 -11.25 TD 0.0548 Tc 0.2347 Tw (program\). ) Tj
45.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 552.75 0.75 0.75 re f
63 552.75 143.25 0.75 re f
206.25 552.75 0.75 0.75 re f
207 552.75 350.25 0.75 re f
557.25 552.75 0.75 0.75 re f
62.25 427.5 0.75 125.25 re f
206.25 427.5 0.75 125.25 re f
557.25 427.5 0.75 125.25 re f
BT
68.25 413.25 TD
0.0664 Tc 0.2231 Tw (Authorization Assertion) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F0 9.75 Tf
0.0641 Tc 0.0754 Tw ( In concept, an authorization ) Tj
128.25 0 TD 0 0 1 rg
0.1049 Tc 0 Tw (assertion) Tj
40.5 0 TD 0 0 0 rg
0.0783 Tc 0.0612 Tw ( is a statement of ) Tj
79.5 0 TD 0 0 1 rg
0.0965 Tc 0 Tw (policy) Tj
25.5 0 TD 0 0 0 rg
0.1557 Tc 0.1338 Tw ( about a) Tj
-281.25 -12 TD 0 0 1 rg
0.1341 Tc 0 Tw (resource) Tj
38.25 0 TD 0 0 0 rg
0.1489 Tc 0.1406 Tw (, such as:) Tj
-2.25 -21.75 TD 0.0834 Tc 0.2061 Tw (The user "noodles" is granted "execute" privileges on the resource) Tj
0 -11.25 TD 0.112 Tc 0 Tw ("/usr/bin/guitar.\224) Tj
ET
1 1 0 rg
212.25 341.25 170.25 11.25 re f
BT
212.25 343.5 TD
0 0 0 rg
0.0642 Tc 0.2253 Tw (Should this be Authorization Decision?) Tj
ET
62.25 426.75 0.75 0.75 re f
63 426.75 143.25 0.75 re f
206.25 426.75 0.75 0.75 re f
207 426.75 350.25 0.75 re f
557.25 426.75 0.75 0.75 re f
62.25 336 0.75 90.75 re f
206.25 336 0.75 90.75 re f
557.25 336 0.75 90.75 re f
BT
68.25 321.75 TD
0.0927 Tc 0.1968 Tw (Authorization Attribute) Tj
144 0 TD 0.0719 Tc 0.2176 Tw (Attributes about a principal which may be useful in an authorization decision) Tj
0 -11.25 TD 0.0805 Tc 0.209 Tw (\(group, role, title, contract code,...\). ) Tj
158.25 0 TD 0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (33) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
62.25 336 0.75 0.75 re f
63 336 143.25 0.75 re f
206.25 336 0.75 0.75 re f
207 336 350.25 0.75 re f
557.25 336 0.75 0.75 re f
62.25 303 0.75 33 re f
206.25 303 0.75 33 re f
557.25 303 0.75 33 re f
BT
68.25 288 TD
0.1181 Tc 0.1714 Tw (Authorization Data) Tj
144 0 TD 0.0767 Tc 0.2128 Tw (A data structure that contains Authentication Assertions and Authorization) Tj
0 -11.25 TD 0.0625 Tc 0 Tw (attributes.) Tj
ET
62.25 302.25 0.75 0.75 re f
63 302.25 143.25 0.75 re f
206.25 302.25 0.75 0.75 re f
207 302.25 350.25 0.75 re f
557.25 302.25 0.75 0.75 re f
62.25 269.25 0.75 33 re f
206.25 269.25 0.75 33 re f
557.25 269.25 0.75 33 re f
BT
68.25 255 TD
0.115 Tc 0.1745 Tw (Authorization Identity) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw (? ) Tj
10.5 0 TD /F0 9.75 Tf
0.4129 Tc -0.8734 Tw (An ) Tj
15.75 0 TD 0 0 1 rg
0.1486 Tc 0 Tw (authorization) Tj
57 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.1702 Tc 0 Tw (identity) Tj
32.25 0 TD 0 0 0 rg
-0.0514 Tc 0.1909 Tw ( is one kind of ) Tj
63.75 0 TD 0 0 1 rg
0.0797 Tc 0.2098 Tw (access control factor) Tj
91.5 0 TD 0 0 0 rg
0.0658 Tc 0.2237 Tw (. It is the) Tj
-273.75 -12.75 TD -0.0354 Tc 0.0749 Tw (name of the ) Tj
55.5 0 TD 0 0 1 rg
-0.0534 Tc 0 Tw (user) Tj
18.75 0 TD 0 0 0 rg
0.0874 Tc -0.0479 Tw ( or other ) Tj
40.5 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
0.0547 Tc 0.2348 Tw ( that requests that operations be performed.) Tj
-138.75 -11.25 TD 0 0 1 rg
0.0624 Tc -0.1479 Tw (Access control policies) Tj
100.5 0 TD 0 0 0 rg
0.1049 Tc 0.1846 Tw ( are often expressed in terms of authorization) Tj
-100.5 -11.25 TD 0.0497 Tc 0.2398 Tw (identities; e.g., entity X can perform operation Y on ) Tj
227.25 0 TD 0 0 1 rg
0.1341 Tc 0 Tw (resource) Tj
38.25 0 TD 0 0 0 rg
-0.2089 Tc 0.7484 Tw ( Z. ) Tj
18 0 TD 0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (25) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-297 -21.75 TD 0.0758 Tc 0.2137 Tw (The transmitted authorization identity may be different than the identity in the) Tj
0 -11.25 TD 0.0633 Tc 0.2262 Tw (client's ) Tj
33 0 TD 0 0 1 rg
0.0569 Tc 0 Tw (authentication) Tj
61.5 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.1462 Tc 0 Tw (credentials) Tj
48.75 0 TD 0 0 0 rg
0.0627 Tc 0.2268 Tw (. This permits agents such as ) Tj
135.75 0 TD 0 0 1 rg
0.1822 Tc 0 Tw (proxy) Tj
-282 -12 TD -0.0658 Tc (servers) Tj
32.25 0 TD 0 0 0 rg
0.0592 Tc -0.1447 Tw ( to ) Tj
14.25 0 TD 0 0 1 rg
0.136 Tc 0 Tw (authenticate) Tj
54 0 TD 0 0 0 rg
0.0463 Tc 0.0557 Tw ( using their own ) Tj
72.75 0 TD 0 0 1 rg
0.1462 Tc 0 Tw (credentials) Tj
48.75 0 TD 0 0 0 rg
0.0867 Tc 0.0153 Tw (, yet request the ) Tj
75 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
-297 -11.25 TD 0.0076 Tc (privileges) Tj
42 0 TD 0 0 0 rg
-0.1368 Tc 0.1763 Tw ( of the ) Tj
30 0 TD 0 0 1 rg
0.1702 Tc 0 Tw (identity) Tj
32.25 0 TD 0 0 0 rg
0.0123 Tc 0.1272 Tw ( for which they are ) Tj
84.75 0 TD 0 0 1 rg
0.1756 Tc 0 Tw (proxying) Tj
37.5 0 TD 0 0 0 rg
0.2895 Tc (. ) Tj
9 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (27) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 268.5 0.75 0.75 re f
63 268.5 143.25 0.75 re f
206.25 268.5 0.75 0.75 re f
207 268.5 350.25 0.75 re f
557.25 268.5 0.75 0.75 re f
62.25 153 0.75 115.5 re f
206.25 153 0.75 115.5 re f
557.25 153 0.75 115.5 re f
BT
68.25 138.75 TD
0.1395 Tc (Authorized) Tj
144 0 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.1099 Tc 0.1796 Tw (system entity) Tj
58.5 0 TD 0 0 0 rg
-0.2089 Tc 0.1234 Tw ( or ) Tj
14.25 0 TD 0 0 1 rg
0.0151 Tc 0 Tw (actor) Tj
21.75 0 TD 0 0 0 rg
0.0432 Tc 0.2463 Tw ( is \223authorized\224 if it is granted a right or a permission) Tj
-104.25 -11.25 TD -0.1963 Tc 0.1108 Tw (or a ) Tj
19.5 0 TD 0 0 1 rg
0.1362 Tc 0 Tw (capability) Tj
42 0 TD 0 0 0 rg
0.0592 Tc -0.1447 Tw ( to ) Tj
14.25 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
-0.171 Tc 0.0855 Tw ( a ) Tj
11.25 0 TD 0 0 1 rg
0.0674 Tc 0.2221 Tw (system resource) Tj
72 0 TD 0 0 0 rg
0.0391 Tc 0 Tw (. See also ) Tj
47.25 0 TD 0 0 1 rg
0.0909 Tc 0 Tw (authorization) Tj
57 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 153 0.75 0.75 re f
63 153 143.25 0.75 re f
206.25 153 0.75 0.75 re f
207 153 350.25 0.75 re f
557.25 153 0.75 0.75 re f
62.25 120 0.75 33 re f
206.25 120 0.75 33 re f
557.25 120 0.75 33 re f
BT
68.25 105 TD
0.0697 Tc (Capability) Tj
144 0 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.0303 Tc 0 Tw (token) Tj
24 0 TD 0 0 0 rg
0.0442 Tc 0.1516 Tw ( that gives its holder the right to ) Tj
141.75 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
-0.171 Tc 0.0855 Tw ( a ) Tj
11.25 0 TD 0 0 1 rg
0.1746 Tc 0.1149 Tw (system resource) Tj
72.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
-291 -11.25 TD 0.0665 Tc 0.223 Tw (Possession of the token is accepted by the access control mechanism as) Tj
0 -12 TD 0.0187 Tc 0.2708 Tw (proof that the holder has been ) Tj
135.75 0 TD 0 0 1 rg
0.0977 Tc 0 Tw (authorized) Tj
46.5 0 TD 0 0 0 rg
0.1113 Tc -0.0093 Tw ( to access the ) Tj
65.25 0 TD 0 0 1 rg
0.1341 Tc 0 Tw (resource) Tj
38.25 0 TD 0 0 0 rg
-0.0319 Tc 0.6964 Tw ( named or) Tj
-285.75 -11.25 TD 0.0286 Tc 0.4484 Tw (indicated by the token. ) Tj
102.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 119.25 0.75 0.75 re f
63 119.25 143.25 0.75 re f
206.25 119.25 0.75 0.75 re f
207 119.25 350.25 0.75 re f
557.25 119.25 0.75 0.75 re f
62.25 63.75 0.75 55.5 re f
62.25 63 0.75 0.75 re f
62.25 63 0.75 0.75 re f
63 63 143.25 0.75 re f
206.25 63.75 0.75 55.5 re f
206.25 63 0.75 0.75 re f
207 63 350.25 0.75 re f
557.25 63.75 0.75 55.5 re f
557.25 63 0.75 0.75 re f
557.25 63 0.75 0.75 re f
endstream
endobj
49 0 obj
11756
endobj
47 0 obj
<<
/Type /Page
/Parent 38 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
/F6 26 0 R
>>
/ProcSet 2 0 R
>>
/Contents 48 0 R
>>
endobj
51 0 obj
<<
/Length 52 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (11) Tj
-231 696.75 TD /F0 9.75 Tf
0.1466 Tc (Clearance) Tj
144 0 TD 0 0 1 rg
0.1144 Tc (Initiator) Tj
32.25 0 TD 0 0 0 rg
0.0664 Tc -0.5269 Tw (-bound ) Tj
33.75 0 TD 0 0 1 rg
0.0823 Tc 0 Tw (ACI) Tj
16.5 0 TD 0 0 0 rg
0.0829 Tc 0.3137 Tw ( that can be compared with security ) Tj
161.25 0 TD 0 0 1 rg
0.0055 Tc 0 Tw (labels) Tj
25.5 0 TD 0 0 0 rg
-0.3158 Tc 0.2303 Tw ( of ) Tj
13.5 0 TD 0 0 1 rg
0.242 Tc 0 Tw (targets) Tj
31.5 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 712.5 0.75 21 re f
206.25 712.5 0.75 21 re f
557.25 712.5 0.75 21 re f
BT
68.25 697.5 TD
-0.1535 Tc (Client) Tj
144 0 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.1099 Tc 0.1796 Tw (system entity) Tj
58.5 0 TD 0 0 0 rg
0.0592 Tc 0.2303 Tw ( that ) Tj
22.5 0 TD 0 0 1 rg
0.0136 Tc 0 Tw (requests) Tj
37.5 0 TD 0 0 0 rg
-0.0345 Tc 0.1365 Tw ( and uses a ) Tj
54 0 TD 0 0 1 rg
0.196 Tc 0 Tw (service) Tj
31.5 0 TD 0 0 0 rg
0.1471 Tc 0.1424 Tw ( provided by another) Tj
-213.75 -11.25 TD 0.0838 Tc 0.2057 Tw (system entity, called a ") Tj
105 0 TD 0 0 1 rg
0.1107 Tc 0 Tw (server) Tj
27 0 TD 0 0 0 rg
0.2891 Tc 0 Tw (". ) Tj
9.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 711.75 0.75 0.75 re f
63 711.75 143.25 0.75 re f
206.25 711.75 0.75 0.75 re f
207 711.75 350.25 0.75 re f
557.25 711.75 0.75 0.75 re f
62.25 678.75 0.75 33 re f
206.25 678.75 0.75 33 re f
557.25 678.75 0.75 33 re f
BT
68.25 664.5 TD
0.1288 Tc (Context) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw (? ) Tj
10.5 0 TD /F0 9.75 Tf
0.2183 Tc -0.6788 Tw (See ) Tj
21 0 TD 0 0 1 rg
0.1012 Tc 0.1883 Tw (Contextual Information) Tj
100.5 0 TD 0 0 0 rg
0.0667 Tc 0.2228 Tw (. \(we may actually want to use a much more) Tj
-132 -12.75 TD 0.0733 Tc 0.2162 Tw (general, commonplace definition of context \226 i.e. what we mean when we\222re) Tj
0 -11.25 TD 0.0874 Tc 0.2021 Tw (waving our hands and saying something like \223that all depends upon the) Tj
T* 0.0908 Tc 0.1987 Tw (context\224. This because contextual information is defined narrowly.) Tj
ET
62.25 678 0.75 0.75 re f
63 678 143.25 0.75 re f
206.25 678 0.75 0.75 re f
207 678 350.25 0.75 re f
557.25 678 0.75 0.75 re f
62.25 618.75 0.75 59.25 re f
206.25 618.75 0.75 59.25 re f
557.25 618.75 0.75 59.25 re f
BT
68.25 604.5 TD
0.0655 Tc 0.224 Tw (Contextual Information) Tj
144 -0.75 TD 0.0544 Tc 0.2351 Tw (Information about or derived from the context in which an ) Tj
255 0 TD 0 0 1 rg
0.1263 Tc 0.1632 Tw (access request) Tj
67.5 0 TD 0 0 0 rg
0.2303 Tc 0.0592 Tw ( is) Tj
-322.5 -11.25 TD 0.0066 Tc 0.4329 Tw (made \(e.g. time of day\). ) Tj
108 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
-124.5 -21 TD 0.0803 Tc -0.0408 Tw (Effectively synonymous with ) Tj
127.5 0 TD 0 0 1 rg
0.0569 Tc 0.2326 Tw (access control factors) Tj
96.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 618 0.75 0.75 re f
63 618 143.25 0.75 re f
206.25 618 0.75 0.75 re f
207 618 350.25 0.75 re f
557.25 618 0.75 0.75 re f
62.25 564 0.75 54 re f
206.25 564 0.75 54 re f
557.25 564 0.75 54 re f
BT
68.25 549 TD
0.0792 Tc 0.2103 Tw (Control Attribute) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw (? ) Tj
10.5 0 TD 0 0 1 rg
/F0 9.75 Tf
0.0816 Tc 0 Tw (Attributes) Tj
42.75 0 TD 0 0 0 rg
0.0424 Tc 0.2471 Tw (, associated with a ) Tj
85.5 0 TD 0 0 1 rg
0.082 Tc 0.2075 Tw (security object) Tj
63.75 0 TD 0 0 0 rg
0.0934 Tc 0.1961 Tw ( that, when matched against) Tj
-202.5 -12 TD 0.0298 Tc 0.1097 Tw (the privilege attributes of a ) Tj
119.25 0 TD 0 0 1 rg
0.1515 Tc 0.1379 Tw (security subject) Tj
69.75 0 TD 0 0 0 rg
0.0074 Tc 0.2821 Tw (, are used to grant or deny) Tj
-189 -11.25 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
0.0752 Tc 0.2143 Tw ( to the security object. ) Tj
100.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (19) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 563.25 0.75 0.75 re f
63 563.25 143.25 0.75 re f
206.25 563.25 0.75 0.75 re f
207 563.25 350.25 0.75 re f
557.25 563.25 0.75 0.75 re f
62.25 515.25 0.75 48 re f
206.25 515.25 0.75 48 re f
557.25 515.25 0.75 48 re f
BT
68.25 501 TD
0.0569 Tc (Credential) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw (? ) Tj
11.25 0 TD /F0 9.75 Tf
0.0837 Tc 0.2058 Tw (\(a\) Data that is transferred or presented to establish either a claimed) Tj
-11.25 -12.75 TD 0 0 1 rg
0.0765 Tc 0 Tw (identity) Tj
31.5 0 TD 0 0 0 rg
-0.0941 Tc 0.1336 Tw ( or the ) Tj
30.75 0 TD 0 0 1 rg
0.0576 Tc 0 Tw (authorizations) Tj
62.25 0 TD 0 0 0 rg
-0.0175 Tc 0.057 Tw ( of a ) Tj
22.5 0 TD 0 0 1 rg
0.1724 Tc 0.1171 Tw (system entity) Tj
59.25 0 TD 0 0 0 rg
0.0355 Tc 0.2539 Tw (. \(See also: ) Tj
53.25 0 TD 0 0 1 rg
0.0216 Tc 0 Tw (assertion) Tj
39.75 0 TD 0 0 0 rg
0.2895 Tc (,) Tj
-299.25 -11.25 TD 0.0909 Tc 0.1986 Tw (authentication information, ) Tj
120 0 TD 0 0 1 rg
0.1362 Tc 0 Tw (capability) Tj
42 0 TD 0 0 0 rg
0.2895 Tc (, ) Tj
6 0 TD 0 0 1 rg
-0.0428 Tc (ticket) Tj
23.25 0 TD 0 0 0 rg
0.0214 Tc 0.2681 Tw (.\) ) Tj
12 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
-211.5 -21 TD 0 0 0 rg
0.045 Tc 0.2445 Tw (\(b\) Data that is transferred to establish a claimed ) Tj
218.25 0 TD 0 0 1 rg
0.1066 Tc 0.1829 Tw (principal identity) Tj
72 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (9) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (33) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-324 -21.75 TD -0.2467 Tc (---) Tj
ET
1 1 0 rg
212.25 417.75 175.5 11.25 re f
BT
212.25 420 TD
0 0 0 rg
-0.0426 Tc 0.6536 Tw (We need to decide between \(a\) and \(b\).) Tj
ET
62.25 514.5 0.75 0.75 re f
63 514.5 143.25 0.75 re f
206.25 514.5 0.75 0.75 re f
207 514.5 350.25 0.75 re f
557.25 514.5 0.75 0.75 re f
62.25 386.25 0.75 128.25 re f
206.25 386.25 0.75 128.25 re f
557.25 386.25 0.75 128.25 re f
BT
68.25 372 TD
0.0148 Tc 0 Tw (Decision) Tj
144 -0.75 TD -0.0083 Tc 0.2978 Tw (The response of an ) Tj
88.5 0 TD 0 0 1 rg
0.0648 Tc 0.2247 Tw (Access Control Decision Function ) Tj
152.25 0 TD 0 0 0 rg
-0.0175 Tc -0.068 Tw (to a ) Tj
19.5 0 TD 0 0 1 rg
0.148 Tc 0.1415 Tw (decision request) Tj
-260.25 -11.25 TD 0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.0761 Tc 0.2134 Tw (, using terminology from ) Tj
109.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.0391 Tc 0 Tw (. See also ) Tj
47.25 0 TD 0 0 1 rg
0.066 Tc 0.2235 Tw (access control decision) Tj
102.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 385.5 0.75 0.75 re f
63 385.5 143.25 0.75 re f
206.25 385.5 0.75 0.75 re f
207 385.5 350.25 0.75 re f
557.25 385.5 0.75 0.75 re f
62.25 352.5 0.75 33 re f
206.25 352.5 0.75 33 re f
557.25 352.5 0.75 33 re f
BT
68.25 338.25 TD
0.0873 Tc 0.2022 Tw (Decision Request) Tj
144 0 TD 0.0252 Tc 0.0143 Tw (The message an ) Tj
76.5 0 TD 0 0 1 rg
0.109 Tc -0.007 Tw (Access Control Enforcement Function ) Tj
171 0 TD 0 0 0 rg
0.0848 Tc -0.0453 Tw (sends to an ) Tj
54.75 0 TD 0 0 1 rg
0.2626 Tc 0 Tw (Access) Tj
-302.25 -12 TD 0.0611 Tc 0.2284 Tw (Decision Function) Tj
78.75 0 TD 0 0 0 rg
0.0751 Tc 0.1072 Tw ( to ask it whether a particular ) Tj
131.25 0 TD 0 0 1 rg
0.1263 Tc 0.1632 Tw (access request) Tj
67.5 0 TD 0 0 0 rg
0.1168 Tc 0.1727 Tw ( should be) Tj
-277.5 -11.25 TD 0.0667 Tc -0.0272 Tw (granted or denied ) Tj
81 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.0761 Tc 0.2134 Tw ( , using terminology from ) Tj
112.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 352.5 0.75 0.75 re f
63 352.5 143.25 0.75 re f
206.25 352.5 0.75 0.75 re f
207 352.5 350.25 0.75 re f
557.25 352.5 0.75 0.75 re f
62.25 308.25 0.75 44.25 re f
206.25 308.25 0.75 44.25 re f
557.25 308.25 0.75 44.25 re f
BT
68.25 293.25 TD
-0.0012 Tc (Deployer) Tj
144 0 TD 0.0379 Tc -0.4984 Tw (An ) Tj
15 0 TD 0 0 1 rg
0.0504 Tc 0 Tw (administrator) Tj
57 0 TD 0 0 0 rg
0.043 Tc 0.4132 Tw ( in the act of, and/or \(sometimes\) primarily responsible for) Tj
-72 -12 TD 0.0628 Tc -0.0234 Tw (deploying a particular ) Tj
97.5 0 TD 0 0 1 rg
0.18 Tc 0.1095 Tw (system or systems ) Tj
87 0 TD 0 0 0 rg
-0.1069 Tc 0.0214 Tw (in an ) Tj
24 0 TD 0 0 1 rg
0.0615 Tc 0.228 Tw (administrative domain\222s) Tj
-208.5 -11.25 TD 0 0 0 rg
0.0853 Tc 0.2875 Tw (network infrastructure. This may involve configuring the system or systems) Tj
0 -11.25 TD 0.0803 Tc 0.2092 Tw (to interact with systems of other administrative domains.) Tj
ET
62.25 307.5 0.75 0.75 re f
63 307.5 143.25 0.75 re f
206.25 307.5 0.75 0.75 re f
207 307.5 350.25 0.75 re f
557.25 307.5 0.75 0.75 re f
62.25 252 0.75 55.5 re f
206.25 252 0.75 55.5 re f
557.25 252 0.75 55.5 re f
BT
68.25 237 TD
0.0942 Tc 0.9453 Tw (Deployment Time) Tj
144 -0.75 TD 0.0373 Tc 0.1022 Tw (The time at which a ) Tj
89.25 0 TD 0 0 1 rg
0.2286 Tc 0.0609 Tw (system ) Tj
35.25 0 TD 0 0 0 rg
0.0326 Tc 0.2569 Tw (is actually configured, tested, and/or put to use,) Tj
-124.5 -11.25 TD 0.0503 Tc 0.3642 Tw (as opposed to its being in the vendor\222s development pipeline or in transit) Tj
0 -11.25 TD 0.0437 Tc 0.2458 Tw (between the vendor and a customer. See also ) Tj
206.25 0 TD 0 0 1 rg
0.1212 Tc 0 Tw (site-specific) Tj
52.5 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 250.5 0.75 0.75 re f
63 250.5 143.25 0.75 re f
206.25 250.5 0.75 0.75 re f
207 250.5 350.25 0.75 re f
557.25 250.5 0.75 0.75 re f
62.25 206.25 0.75 44.25 re f
206.25 206.25 0.75 44.25 re f
557.25 206.25 0.75 44.25 re f
BT
68.25 192 TD
0.4605 Tc (DMZ) Tj
144 -0.75 TD 0.0566 Tc 0.2954 Tw (\223DMZ\224 is from the military term for an area between two opponents where) Tj
0 -11.25 TD 0.0641 Tc 0.0754 Tw (fighting is prevented. See also ) Tj
136.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (6) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
-0.171 Tc 0.0855 Tw ( and ) Tj
22.5 0 TD 0 0 1 rg
0.0247 Tc 0.2648 Tw (DMZ network) Tj
59.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 205.5 0.75 0.75 re f
63 205.5 143.25 0.75 re f
206.25 205.5 0.75 0.75 re f
207 205.5 350.25 0.75 re f
557.25 205.5 0.75 0.75 re f
62.25 172.5 0.75 33 re f
206.25 172.5 0.75 33 re f
557.25 172.5 0.75 33 re f
BT
68.25 158.25 TD
0.0247 Tc 0.2648 Tw (DMZ network) Tj
144 0 TD 0.0634 Tc 0.2261 Tw (DMZ network is a commonly-used, equivalent term for \(see also\) ) Tj
288.75 0 TD 0 0 1 rg
0.1751 Tc 0 Tw (perimeter) Tj
-288.75 -11.25 TD -0.055 Tc (network) Tj
34.5 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 172.5 0.75 0.75 re f
63 172.5 143.25 0.75 re f
206.25 172.5 0.75 0.75 re f
207 172.5 350.25 0.75 re f
557.25 172.5 0.75 0.75 re f
62.25 139.5 0.75 33 re f
206.25 139.5 0.75 33 re f
557.25 139.5 0.75 33 re f
BT
68.25 124.5 TD
0.1532 Tc 0.1363 Tw (End User) Tj
144 0 TD 0.0379 Tc -0.4984 Tw (An ) Tj
15 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
0.0461 Tc 0.1601 Tw (, usually a human individual, that makes use of ) Tj
210 0 TD 0 0 1 rg
0.0775 Tc 0.212 Tw (resources ) Tj
46.5 0 TD 0 0 0 rg
-0.0428 Tc 0 Tw (for) Tj
-295.5 -11.25 TD 0.0937 Tc 0.1958 Tw (application purposes \(as opposed to system management purposes. See) Tj
0 -11.25 TD 0 0 1 rg
0.1402 Tc 0 Tw (Administrator) Tj
58.5 0 TD 0 0 0 rg
-0.3536 Tc (\).) Tj
ET
62.25 138.75 0.75 0.75 re f
63 138.75 143.25 0.75 re f
206.25 138.75 0.75 0.75 re f
207 138.75 350.25 0.75 re f
557.25 138.75 0.75 0.75 re f
62.25 94.5 0.75 44.25 re f
206.25 94.5 0.75 44.25 re f
557.25 94.5 0.75 44.25 re f
BT
68.25 79.5 TD
0.1312 Tc 0.1583 Tw (End User\222s Computer) Tj
144 0 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.0806 Tc 0 Tw (host) Tj
18.75 0 TD 0 0 0 rg
0.0507 Tc 0.2388 Tw ( that an end user makes use of for general computational, application,) Tj
-28.5 -11.25 TD 0.1146 Tc 0.1749 Tw (and communication purposes.) Tj
ET
62.25 93.75 0.75 0.75 re f
63 93.75 143.25 0.75 re f
206.25 93.75 0.75 0.75 re f
207 93.75 350.25 0.75 re f
557.25 93.75 0.75 0.75 re f
62.25 61.5 0.75 32.25 re f
62.25 60.75 0.75 0.75 re f
62.25 60.75 0.75 0.75 re f
63 60.75 143.25 0.75 re f
206.25 61.5 0.75 32.25 re f
206.25 60.75 0.75 0.75 re f
207 60.75 350.25 0.75 re f
557.25 61.5 0.75 32.25 re f
557.25 60.75 0.75 0.75 re f
557.25 60.75 0.75 0.75 re f
endstream
endobj
52 0 obj
13255
endobj
50 0 obj
<<
/Type /Page
/Parent 38 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
>>
/ProcSet 2 0 R
>>
/Contents 51 0 R
>>
endobj
54 0 obj
<<
/Length 55 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (12) Tj
-231 696.75 TD /F0 9.75 Tf
0.0315 Tc 0.258 Tw (End User Profile) Tj
144 -0.75 TD 0.0996 Tc 0.1899 Tw (Various ) Tj
36.75 0 TD 0 0 1 rg
-0.0352 Tc 0 Tw (attributes) Tj
40.5 0 TD 0 0 0 rg
0.079 Tc -0.1645 Tw ( and ) Tj
22.5 0 TD 0 0 1 rg
-0.027 Tc 1.0664 Tw (attribute values) Tj
67.5 0 TD 0 0 0 rg
0.0638 Tc 0.0757 Tw (, mapped to a given ) Tj
90.75 0 TD 0 0 1 rg
0.2176 Tc 0.0719 Tw (end user) Tj
39 0 TD 0 0 0 rg
-0.0085 Tc 0.298 Tw (. User) Tj
-297 -11.25 TD 0.0766 Tc 0.2129 Tw (attributes are stored in the profile, e.g. identifier\(s\), name\(s\), contact) Tj
0 -11.25 TD 0.0772 Tc 0.2123 Tw (information, organizational information, computing infrastructure information,) Tj
T* 0.0809 Tc 0.2086 Tw (etc. Profiles are often implemented as directory entries.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 678 0.75 55.5 re f
206.25 678 0.75 55.5 re f
557.25 678 0.75 55.5 re f
BT
68.25 663 TD
0.1205 Tc 0.169 Tw (End User System) Tj
144 0 TD 0.0637 Tc 0.0758 Tw (Typically the combination of: an ) Tj
142.5 0 TD 0 0 1 rg
-0.0611 Tc 1.1006 Tw (End User) Tj
41.25 0 TD 0 0 0 rg
0.0444 Tc -0.0049 Tw (, plus the ) Tj
43.5 0 TD 0 0 1 rg
0.1703 Tc 0.1192 Tw (End User\222s computer) Tj
93.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (,) Tj
-321 -11.25 TD 0.0094 Tc -0.0949 Tw (plus the ) Tj
37.5 0 TD 0 0 1 rg
0.1899 Tc 0 Tw (browser) Tj
35.25 0 TD 0 0 0 rg
0.0701 Tc 0.2194 Tw ( running on that computer. End User system is \(often?) Tj
-72.75 -12 TD 0.0635 Tc 0.3332 Tw (sometimes?\) used, in place of the terms \223) Tj
183 0 TD 0 0 1 rg
-0.0428 Tc 0 Tw (client) Tj
23.25 0 TD 0 0 0 rg
0.1472 Tc 0.1423 Tw (\224 or \223) Tj
21 0 TD 0 0 1 rg
0.3216 Tc 0 Tw (user) Tj
19.5 0 TD 0 0 0 rg
0.1462 Tc 0.1433 Tw (\224 because there are) Tj
-246.75 -11.25 TD 0.0872 Tc 0.2023 Tw (often many components that act as clients of other components, and which) Tj
0 -11.25 TD 0.0365 Tc 0.3363 Tw (may not be directly and/or actively controlled by a user.) Tj
ET
62.25 677.25 0.75 0.75 re f
63 677.25 143.25 0.75 re f
206.25 677.25 0.75 0.75 re f
207 677.25 350.25 0.75 re f
557.25 677.25 0.75 0.75 re f
62.25 609.75 0.75 67.5 re f
206.25 609.75 0.75 67.5 re f
557.25 609.75 0.75 67.5 re f
BT
68.25 595.5 TD
-0.0018 Tc 0 Tw (Entitlement) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw (? ) Tj
11.25 0 TD /F0 9.75 Tf
0.0645 Tc 0.075 Tw (\(a\) A data structure containing ) Tj
136.5 0 TD 0 0 1 rg
0.1016 Tc 0.4379 Tw (Access Control Decision Information) Tj
-147.75 -12.75 TD 0 0 0 rg
0.0181 Tc -0.4786 Tw (and/or ) Tj
30.75 0 TD 0 0 1 rg
0.1184 Tc 0.1711 Tw (access control policy rule) Tj
111.75 0 TD 0 0 0 rg
0.0334 Tc 0.3632 Tw ( information in a form usable by applications) Tj
-142.5 -11.25 TD 0.0717 Tc 0.124 Tw (to, for example, customize their behavior based on ) Tj
226.5 0 TD 0 0 1 rg
0.0909 Tc 0.1986 Tw (access control policy) Tj
92.25 0 TD 0 0 0 rg
-0.2089 Tc 0.4984 Tw ( or) Tj
-318.75 -11.25 TD 0.0466 Tc -0.1321 Tw (to make ) Tj
38.25 0 TD 0 0 1 rg
0.0459 Tc 0.2436 Tw (access control decisions) Tj
108 0 TD 0 0 0 rg
-0.0228 Tc 0.3123 Tw ( in their own code ) Tj
81 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD 0.579 Tc (12) Tj
11.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.0058 Tc 0.2837 Tw ( , using terminology) Tj
-244.5 -11.25 TD -0 Tc 0.2895 Tw (from ) Tj
22.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
-39 -21.75 TD 0.0155 Tc 0.5468 Tw (\(b\) a digitally signed XML assertion consisting of a \223portable\224 package of) Tj
0 -12 TD 0.0588 Tc 0.3245 Tw (authorization data created by an issuing authority concerning an) Tj
0 -11.25 TD 0.1125 Tc 0.177 Tw (authenticated subject. ) Tj
100.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (2) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 609 0.75 0.75 re f
63 609 143.25 0.75 re f
206.25 609 0.75 0.75 re f
207 609 350.25 0.75 re f
557.25 609 0.75 0.75 re f
62.25 493.5 0.75 115.5 re f
206.25 493.5 0.75 115.5 re f
557.25 493.5 0.75 115.5 re f
BT
68.25 479.25 TD
0.1859 Tc (Entity) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.1966 Tc 0.0929 Tw (System Entity) Tj
62.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 493.5 0.75 0.75 re f
63 493.5 143.25 0.75 re f
206.25 493.5 0.75 0.75 re f
207 493.5 350.25 0.75 re f
557.25 493.5 0.75 0.75 re f
62.25 472.5 0.75 21 re f
206.25 472.5 0.75 21 re f
557.25 472.5 0.75 21 re f
BT
68.25 457.5 TD
0.1501 Tc 0.1394 Tw (EU System) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0628 Tc 0.6017 Tw (End User System) Tj
78 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 471 0.75 0.75 re f
63 471 143.25 0.75 re f
206.25 471 0.75 0.75 re f
207 471 350.25 0.75 re f
557.25 471 0.75 0.75 re f
62.25 450 0.75 21 re f
206.25 450 0.75 21 re f
557.25 450 0.75 21 re f
BT
68.25 435 TD
-0.182 Tc (EUS) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0628 Tc 0.6017 Tw (End User System) Tj
78 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 449.25 0.75 0.75 re f
63 449.25 143.25 0.75 re f
206.25 449.25 0.75 0.75 re f
207 449.25 350.25 0.75 re f
557.25 449.25 0.75 0.75 re f
62.25 428.25 0.75 21 re f
206.25 428.25 0.75 21 re f
557.25 428.25 0.75 21 re f
BT
68.25 413.25 TD
0.1036 Tc 0.1859 Tw (External Network\(s\)) Tj
144 0 TD 0.0693 Tc 0.2202 Tw (Networks outside one\222s ) Tj
105.75 0 TD 0 0 1 rg
0.0821 Tc 0.2074 Tw (administrative domain) Tj
96.75 0 TD 0 0 0 rg
0.0883 Tc 0.3262 Tw ( and \(in typical usage of the) Tj
-202.5 -11.25 TD 0.0537 Tc 0.2358 Tw (term\) with which one\222s networks are connected.) Tj
ET
62.25 427.5 0.75 0.75 re f
63 427.5 143.25 0.75 re f
206.25 427.5 0.75 0.75 re f
207 427.5 350.25 0.75 re f
557.25 427.5 0.75 0.75 re f
62.25 394.5 0.75 33 re f
206.25 394.5 0.75 33 re f
557.25 394.5 0.75 33 re f
BT
68.25 379.5 TD
-0.0386 Tc 0 Tw (Extranet) Tj
144 0 TD 0.0871 Tc 0.2024 Tw (The part of a company or organization's computer network which is available) Tj
0 -11.25 TD 0.0712 Tc 0.2183 Tw (to outside users, for example, information services for customers and/or) Tj
T* 0.103 Tc 0.1865 Tw (suppliers. ) Tj
45.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (14) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.0033 Tc 0.0362 Tw ( See also ) Tj
44.25 0 TD 0 0 1 rg
0.0029 Tc 0 Tw (extranet) Tj
36 0 TD 0 0 0 rg
-0.0428 Tc -0.0428 Tw ( in ) Tj
13.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (6) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 393.75 0.75 0.75 re f
63 393.75 143.25 0.75 re f
206.25 393.75 0.75 0.75 re f
207 393.75 350.25 0.75 re f
557.25 393.75 0.75 0.75 re f
62.25 349.5 0.75 44.25 re f
206.25 349.5 0.75 44.25 re f
557.25 349.5 0.75 44.25 re f
BT
68.25 334.5 TD
0.0214 Tc (Firewall) Tj
144 0 TD 0.0316 Tc 0.1642 Tw (A firewall is a device that gives an ) Tj
152.25 0 TD 0 0 1 rg
0.1571 Tc 0.1324 Tw (administrative domain) Tj
97.5 0 TD 0 0 0 rg
0.0452 Tc 0.2443 Tw ( a means to control) Tj
-249.75 -11.25 TD 0.0757 Tc 0.0888 Tw (how their internal network\(s\) interact with ) Tj
184.5 0 TD 0 0 1 rg
0.0818 Tc 0.2077 Tw (external networks) Tj
78 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 348.75 0.75 0.75 re f
63 348.75 143.25 0.75 re f
206.25 348.75 0.75 0.75 re f
207 348.75 350.25 0.75 re f
557.25 348.75 0.75 0.75 re f
62.25 315.75 0.75 33 re f
206.25 315.75 0.75 33 re f
557.25 315.75 0.75 33 re f
BT
68.25 301.5 TD
0.0483 Tc 0.2412 Tw (Firewall boundary) Tj
144 -0.75 TD 0.078 Tc 0.0865 Tw (A commonly-used term referring to a ) Tj
165 0 TD 0 0 1 rg
0.0581 Tc 0.2314 Tw (security perimeter) Tj
78.75 0 TD 0 0 0 rg
0.0949 Tc 0.1946 Tw ( that is largely) Tj
-243.75 -11.25 TD 0.0338 Tc 0.2557 Tw (defined by the presence of one or more ) Tj
177 0 TD 0 0 1 rg
0.0522 Tc 0 Tw (firewall) Tj
30.75 0 TD 0 0 0 rg
0.3322 Tc (s.) Tj
ET
62.25 315 0.75 0.75 re f
63 315 143.25 0.75 re f
206.25 315 0.75 0.75 re f
207 315 350.25 0.75 re f
557.25 315 0.75 0.75 re f
62.25 282 0.75 33 re f
206.25 282 0.75 33 re f
557.25 282 0.75 33 re f
BT
68.25 267.75 TD
0.051 Tc (Host) Tj
144 0 TD 0.0691 Tc 0.1454 Tw (A computer that is attached to a communication subnetwork or ) Tj
279 0 TD 0 0 1 rg
0.0751 Tc 0 Tw (internetwork) Tj
-279 -12 TD 0 0 0 rg
-0.0497 Tc 0.3392 Tw (and can use ) Tj
57 0 TD 0 0 1 rg
0.0308 Tc 0 Tw (services) Tj
36.75 0 TD 0 0 0 rg
0.0625 Tc 0.227 Tw ( provided by the network to exchange data with other) Tj
-93.75 -11.25 TD 0.0924 Tc 0.1971 Tw (attached systems. A host is distinguished from other similarly connected and) Tj
0 -11.25 TD 0.0596 Tc 0.3549 Tw (addressable devices on the network, e.g. ) Tj
184.5 0 TD 0 0 1 rg
-0.0489 Tc 0 Tw (routers) Tj
30.75 0 TD 0 0 0 rg
0.0924 Tc 0.1971 Tw (, in that it doesn\222t forward) Tj
-215.25 -12 TD 0 0 1 rg
0.0578 Tc 0.2317 Tw (Internet Protocol) Tj
72.75 0 TD 0 0 0 rg
0.0677 Tc 0.2218 Tw ( packets that are not addressed to it. A host may be either) Tj
-72.75 -11.25 TD -0.171 Tc -0.2895 Tw (an ) Tj
13.5 0 TD 0 0 1 rg
0.0645 Tc 0.225 Tw (end user\222s computer) Tj
90 0 TD 0 0 0 rg
-0.1963 Tc 0.4858 Tw ( or a ) Tj
23.25 0 TD 0 0 1 rg
0.2357 Tc 0 Tw (server) Tj
27.75 0 TD 0 0 0 rg
0.2895 Tc (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 282 0.75 0.75 re f
63 282 143.25 0.75 re f
206.25 282 0.75 0.75 re f
207 282 350.25 0.75 re f
557.25 282 0.75 0.75 re f
62.25 203.25 0.75 78.75 re f
206.25 203.25 0.75 78.75 re f
557.25 203.25 0.75 78.75 re f
BT
68.25 188.25 TD
0.102 Tc (Identity) Tj
144 0 TD 0.0571 Tc 0.1491 Tw (A representation \(e.g. a string\) uniquely mapped to a ) Tj
235.5 0 TD 0 0 1 rg
0.1724 Tc 0.1171 Tw (system entity ) Tj
62.25 0 TD 0 0 0 rg
-0.0503 Tc 0.3398 Tw (\(e.g. an) Tj
-297.75 -12 TD 0 0 1 rg
0.1105 Tc 0.179 Tw (end user) Tj
38.25 0 TD 0 0 0 rg
-0.0175 Tc -0.068 Tw (, an ) Tj
19.5 0 TD 0 0 1 rg
0.1081 Tc 0 Tw (administrator) Tj
57.75 0 TD 0 0 0 rg
0.0592 Tc -0.1447 Tw (, a ) Tj
14.25 0 TD 0 0 1 rg
0.0806 Tc 0 Tw (host) Tj
18.75 0 TD 0 0 0 rg
0.0562 Tc 0.1083 Tw (, or some process, or some ) Tj
123.75 0 TD 0 0 1 rg
0.0522 Tc 0 Tw (network) Tj
-272.25 -11.25 TD 0.3037 Tc (device) Tj
28.5 0 TD 0 0 0 rg
-0.3536 Tc (\).) Tj
ET
62.25 202.5 0.75 0.75 re f
63 202.5 143.25 0.75 re f
206.25 202.5 0.75 0.75 re f
207 202.5 350.25 0.75 re f
557.25 202.5 0.75 0.75 re f
62.25 158.25 0.75 44.25 re f
206.25 158.25 0.75 44.25 re f
557.25 158.25 0.75 44.25 re f
BT
68.25 143.25 TD
0.1144 Tc (Initiator) Tj
144 0 TD 0.0379 Tc -0.4984 Tw (An ) Tj
15 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
0.0184 Tc 0.0211 Tw ( \(e.g. human ) Tj
58.5 0 TD 0 0 1 rg
-0.0534 Tc 0 Tw (user) Tj
18.75 0 TD 0 0 0 rg
0.0954 Tc 0.3441 Tw ( or computer-based entity\) that ) Tj
140.25 0 TD /F4 9.75 Tf
0.1727 Tc 0.1168 Tw (attempts to) Tj
-256.5 -11.25 TD 0.193 Tc 0.0965 Tw (access ) Tj
34.5 0 TD /F0 9.75 Tf
0.0109 Tc 0.2786 Tw (other entities ) Tj
59.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 157.5 0.75 0.75 re f
63 157.5 143.25 0.75 re f
206.25 157.5 0.75 0.75 re f
207 157.5 350.25 0.75 re f
557.25 157.5 0.75 0.75 re f
62.25 125.25 0.75 32.25 re f
62.25 124.5 0.75 0.75 re f
62.25 124.5 0.75 0.75 re f
63 124.5 143.25 0.75 re f
206.25 125.25 0.75 32.25 re f
206.25 124.5 0.75 0.75 re f
207 124.5 350.25 0.75 re f
557.25 125.25 0.75 32.25 re f
557.25 124.5 0.75 0.75 re f
557.25 124.5 0.75 0.75 re f
endstream
endobj
55 0 obj
12021
endobj
53 0 obj
<<
/Type /Page
/Parent 38 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 54 0 R
>>
endobj
58 0 obj
<<
/Length 59 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (13) Tj
-231 696.75 TD /F0 9.75 Tf
-0.0151 Tc (Intermediary) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw (? ) Tj
10.5 0 TD /F0 9.75 Tf
0.4129 Tc -0.8734 Tw (An ) Tj
15.75 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
0.0571 Tc 0.0824 Tw ( which, after receiving an ) Tj
113.25 0 TD 0 0 1 rg
0.1263 Tc 0.1632 Tw (access request) Tj
67.5 0 TD 0 0 0 rg
-0.057 Tc 0.0965 Tw ( from an ) Tj
39 0 TD 0 0 1 rg
0.1751 Tc 0 Tw (initiator) Tj
32.25 0 TD 0 0 0 rg
0.0583 Tc 0.2312 Tw (, issues) Tj
-302.25 -12 TD -0.0089 Tc -0.4516 Tw (another ) Tj
36 0 TD 0 0 1 rg
0.1263 Tc 0.1632 Tw (access request) Tj
67.5 0 TD 0 0 0 rg
0.0705 Tc 0.069 Tw ( on that initiator\222s behalf ) Tj
108.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
1 1 0 rg
212.25 681 312.75 11.25 re f
BT
212.25 683.25 TD
0 0 0 rg
0.0723 Tc 0.2172 Tw (This is a narrow definition of intermediary and is essentially the same a) Tj
ET
1 1 0 rg
212.25 669 327 12 re f
BT
212.25 671.25 TD
0 0 0 rg
0.0525 Tc 0.2946 Tw (\223proxy\224. We need to carefully think about our use of this term and carefully) Tj
ET
1 1 0 rg
212.25 657.75 135.75 11.25 re f
BT
212.25 660 TD
0 0 0 rg
0.0875 Tc 0.202 Tw (define it and associated terms.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 652.5 0.75 81 re f
206.25 652.5 0.75 81 re f
557.25 652.5 0.75 81 re f
BT
68.25 638.25 TD
-0.0013 Tc 0.2908 Tw (Internal Network) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
-0.0078 Tc 0 Tw (Intranet) Tj
33.75 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 652.5 0.75 0.75 re f
63 652.5 143.25 0.75 re f
206.25 652.5 0.75 0.75 re f
207 652.5 350.25 0.75 re f
557.25 652.5 0.75 0.75 re f
62.25 631.5 0.75 21 re f
206.25 631.5 0.75 21 re f
557.25 631.5 0.75 21 re f
BT
68.25 616.5 TD
-0.0078 Tc (Intranet) Tj
144 -0.75 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
-0.0588 Tc 0.7233 Tw (local area network) Tj
80.25 0 TD 0 0 0 rg
0.0711 Tc 0.135 Tw ( which may or may not be connected to ) Tj
177 0 TD 0 0 1 rg
-0.0786 Tc 1.1181 Tw (the Internet) Tj
50.25 0 TD 0 0 0 rg
-0.1283 Tc 0.4178 Tw (, but) Tj
-317.25 -11.25 TD 0.085 Tc 0.1211 Tw (which has some similar functions. Some organizations set up ) Tj
273 0 TD 0 0 1 rg
0.0369 Tc 0.2526 Tw (World Wide) Tj
-273 -11.25 TD 0.068 Tc 0 Tw (Web) Tj
20.25 0 TD 0 0 0 rg
0.0951 Tc 0.2626 Tw ( servers on their own internal networks so employees have access to) Tj
-20.25 -11.25 TD 0.1024 Tc 0.1871 Tw (the organization's web documents. ) Tj
156.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (14) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.0033 Tc 0.1362 Tw ( See also ) Tj
50.25 0 TD 0 0 1 rg
-0.127 Tc 0 Tw (intranet) Tj
32.25 0 TD 0 0 0 rg
-0.0428 Tc -0.0428 Tw ( in ) Tj
13.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (6) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 630 0.75 0.75 re f
63 630 143.25 0.75 re f
206.25 630 0.75 0.75 re f
207 630 350.25 0.75 re f
557.25 630 0.75 0.75 re f
62.25 574.5 0.75 55.5 re f
206.25 574.5 0.75 55.5 re f
557.25 574.5 0.75 55.5 re f
BT
68.25 559.5 TD
-0.0499 Tc (Issuer) Tj
144 -2.25 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F0 9.75 Tf
0.2468 Tc 0.0427 Tw ( A ) Tj
12.75 0 TD 0 0 1 rg
0.1099 Tc -0.1954 Tw (system entity ) Tj
61.5 0 TD 0 0 0 rg
0.0159 Tc 0.1664 Tw (that issues stuff, e.g. an issuer of ) Tj
148.5 0 TD 0 0 1 rg
-0.0181 Tc 0 Tw (assertions) Tj
45 0 TD 0 0 0 rg
0.2895 Tc (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (2) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 573.75 0.75 0.75 re f
63 573.75 143.25 0.75 re f
206.25 573.75 0.75 0.75 re f
207 573.75 350.25 0.75 re f
557.25 573.75 0.75 0.75 re f
62.25 549 0.75 24.75 re f
206.25 549 0.75 24.75 re f
557.25 549 0.75 24.75 re f
BT
68.25 534 TD
0.0303 Tc (Label) Tj
144 0 TD 0.028 Tc 0.1544 Tw (A marking that is bound to a ) Tj
126.75 0 TD 0 0 1 rg
0.0985 Tc 0.941 Tw (protected resource) Tj
83.25 0 TD 0 0 0 rg
0.0569 Tc 0.2326 Tw ( and that names or) Tj
-210 -11.25 TD 0.0927 Tc 0.1968 Tw (designates the security-relevant ) Tj
144 0 TD 0 0 1 rg
-0.0352 Tc 0 Tw (attributes) Tj
40.5 0 TD 0 0 0 rg
0.0562 Tc 0.3583 Tw ( of that resource \(derived from ) Tj
137.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (9) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
-0.3536 Tc (\).) Tj
ET
62.25 548.25 0.75 0.75 re f
63 548.25 143.25 0.75 re f
206.25 548.25 0.75 0.75 re f
207 548.25 350.25 0.75 re f
557.25 548.25 0.75 0.75 re f
62.25 515.25 0.75 33 re f
206.25 515.25 0.75 33 re f
557.25 515.25 0.75 33 re f
BT
68.25 501 TD
0.1001 Tc 0.1894 Tw (Network-based security) Tj
144 -0.75 TD 0.0412 Tc 0.3983 Tw (The notion of controlling network ) Tj
147 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
0.0941 Tc 0.1954 Tw ( and usage, and consequently) Tj
-178.5 -11.25 TD 0.0688 Tc -0.5293 Tw (protecting ) Tj
46.5 0 TD 0 0 1 rg
0.1395 Tc 0 Tw (hosts) Tj
24 0 TD 0 0 0 rg
0.0446 Tc 0.3386 Tw ( from attack, via network routing configuration and filtering,) Tj
-70.5 -11.25 TD 0.0124 Tc 0.0271 Tw (the use of ) Tj
46.5 0 TD 0 0 1 rg
0.0881 Tc 0 Tw (firewalls) Tj
36 0 TD 0 0 0 rg
0.0579 Tc -0.0184 Tw ( and similar ) Tj
54 0 TD 0 0 1 rg
-0.0075 Tc 0 Tw (devices) Tj
33.75 0 TD 0 0 0 rg
0.0711 Tc 0.2184 Tw (, or some combination thereof. See) Tj
-170.25 -11.25 TD 0.0296 Tc -0.4901 Tw (also ) Tj
21 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (5) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 514.5 0.75 0.75 re f
63 514.5 143.25 0.75 re f
206.25 514.5 0.75 0.75 re f
207 514.5 350.25 0.75 re f
557.25 514.5 0.75 0.75 re f
62.25 459 0.75 55.5 re f
206.25 459 0.75 55.5 re f
557.25 459 0.75 55.5 re f
BT
68.25 444 TD
0.0127 Tc 0.5268 Tw (Network Device or Network) Tj
0 -11.25 TD -0.0733 Tc 0 Tw (Element) Tj
144 11.25 TD 0.0589 Tc 0.1369 Tw (For the purposes of this document, one of ) Tj
187.5 0 TD 0 0 1 rg
-0.0489 Tc 0 Tw (routers) Tj
30.75 0 TD 0 0 0 rg
0.2895 Tc (, ) Tj
6 0 TD 0 0 1 rg
0.04 Tc (bridges) Tj
33 0 TD 0 0 0 rg
0.0967 Tc 0.1928 Tw (, repeaters, hubs,) Tj
-257.25 -11.25 TD 0.1493 Tc 0.1402 Tw (switches, etc.) Tj
ET
62.25 458.25 0.75 0.75 re f
63 458.25 143.25 0.75 re f
206.25 458.25 0.75 0.75 re f
207 458.25 350.25 0.75 re f
557.25 458.25 0.75 0.75 re f
62.25 425.25 0.75 33 re f
206.25 425.25 0.75 33 re f
557.25 425.25 0.75 33 re f
BT
68.25 411 TD
0.1064 Tc 0.1831 Tw (Network Service) Tj
144 -0.75 TD 0.0497 Tc 0.1148 Tw (Work performed \(or offered\) by a ) Tj
147.75 0 TD 0 0 1 rg
0.2357 Tc 0 Tw (server) Tj
27.75 0 TD 0 0 0 rg
0.1167 Tc 0.1728 Tw ( over a network. This may mean) Tj
-175.5 -11.25 TD 0.0677 Tc -0.0282 Tw (simply serving simple ) Tj
97.5 0 TD 0 0 1 rg
0.2011 Tc 0 Tw (requests) Tj
39 0 TD 0 0 0 rg
0.0202 Tc 0.1943 Tw ( for data to be sent or stored \(as with ) Tj
165 0 TD 0 0 1 rg
0.0395 Tc 0 Tw (web) Tj
-301.5 -11.25 TD -0.0658 Tc (servers) Tj
32.25 0 TD 0 0 0 rg
0.0677 Tc 0.2218 Tw (\); or it may be more complex work, such as that of print servers,) Tj
-32.25 -12 TD 0.0685 Tc 0.346 Tw (distributed file servers, X Windows servers, ) Tj
194.25 0 TD 0 0 1 rg
-0.047 Tc 0.3365 Tw (AAA servers) Tj
54.75 0 TD 0 0 0 rg
-0.0428 Tc -0.0428 Tw (, or ) Tj
17.25 0 TD 0 0 1 rg
0.195 Tc 0 Tw (application) Tj
-266.25 -11.25 TD -0.0658 Tc (servers) Tj
32.25 0 TD 0 0 0 rg
0.0569 Tc 0.2326 Tw (. \(definition largely from ) Tj
106.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (6) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
-0.2467 Tc (\)) Tj
ET
62.25 424.5 0.75 0.75 re f
63 424.5 143.25 0.75 re f
206.25 424.5 0.75 0.75 re f
207 424.5 350.25 0.75 re f
557.25 424.5 0.75 0.75 re f
62.25 357 0.75 67.5 re f
206.25 357 0.75 67.5 re f
557.25 357 0.75 67.5 re f
BT
68.25 342.75 TD
-0.007 Tc 1.0465 Tw (Network Topology) Tj
144 0 TD 0.0498 Tc -0.0103 Tw (A configuration of ) Tj
80.25 0 TD 0 0 1 rg
0.0759 Tc 0.2136 Tw (network devices) Tj
72 0 TD 0 0 0 rg
-0.171 Tc 0.0855 Tw ( and ) Tj
21.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw (hosts) Tj
24.75 0 TD 0 0 0 rg
0.062 Tc 0.2275 Tw (, and their interconnections.) Tj
ET
62.25 357 0.75 0.75 re f
63 357 143.25 0.75 re f
206.25 357 0.75 0.75 re f
207 357 350.25 0.75 re f
557.25 357 0.75 0.75 re f
62.25 336 0.75 21 re f
206.25 336 0.75 21 re f
557.25 336 0.75 21 re f
BT
68.25 321 TD
0.1597 Tc 0 Tw (Operation) Tj
144 -0.75 TD 0.0388 Tc 0.0632 Tw (The action that an ) Tj
82.5 0 TD 0 0 1 rg
0.0487 Tc 0 Tw (initiator\222s) Tj
39 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.1263 Tc 0.1632 Tw (access request) Tj
67.5 0 TD 0 0 0 rg
0.0791 Tc 0.2104 Tw ( asks to have performed on a) Tj
-192 -11.25 TD 0 0 1 rg
0.0985 Tc 0.191 Tw (protected resource) Tj
82.5 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 334.5 0.75 0.75 re f
63 334.5 143.25 0.75 re f
206.25 334.5 0.75 0.75 re f
207 334.5 350.25 0.75 re f
557.25 334.5 0.75 0.75 re f
62.25 301.5 0.75 33 re f
206.25 301.5 0.75 33 re f
557.25 301.5 0.75 33 re f
BT
68.25 287.25 TD
0.1277 Tc 0.1617 Tw (Origin Server) Tj
144 0 TD -0.0998 Tc -0.3608 Tw (The ) Tj
19.5 0 TD 0 0 1 rg
0.2357 Tc 0 Tw (server) Tj
27.75 0 TD 0 0 0 rg
0.001 Tc 0.2885 Tw ( on which a given ) Tj
80.25 0 TD 0 0 1 rg
0.1341 Tc 0 Tw (resource) Tj
38.25 0 TD 0 0 0 rg
0.0617 Tc 0.335 Tw ( resides or is to be created. ) Tj
124.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (16) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 301.5 0.75 0.75 re f
63 301.5 143.25 0.75 re f
206.25 301.5 0.75 0.75 re f
207 301.5 350.25 0.75 re f
557.25 301.5 0.75 0.75 re f
62.25 280.5 0.75 21 re f
206.25 280.5 0.75 21 re f
557.25 280.5 0.75 21 re f
BT
68.25 265.5 TD
0.0883 Tc 0.2012 Tw (Origin Site, Originating Site) Tj
144 -3.75 TD /F1 14.25 Tf
0.2932 Tc 0 Tw (?) Tj
9 0 TD /F0 9.75 Tf
-0.3498 Tc 0.2642 Tw ( The ) Tj
21.75 0 TD 0 0 1 rg
0.3322 Tc 0 Tw (site) Tj
15.75 0 TD 0 0 0 rg
0.0498 Tc -0.0103 Tw ( where the ) Tj
49.5 0 TD 0 0 1 rg
0.1313 Tc 0.1582 Tw (origin server) Tj
54.75 0 TD 0 0 0 rg
0.1394 Tc 0.1501 Tw ( resides.) Tj
ET
62.25 279 0.75 0.75 re f
63 279 143.25 0.75 re f
206.25 279 0.75 0.75 re f
207 279 350.25 0.75 re f
557.25 279 0.75 0.75 re f
62.25 253.5 0.75 25.5 re f
206.25 253.5 0.75 25.5 re f
557.25 253.5 0.75 25.5 re f
BT
68.25 238.5 TD
0.318 Tc 0 Tw (PAC) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.1095 Tc 0.18 Tw (Privilege Attribute Certificate) Tj
126 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 252.75 0.75 0.75 re f
63 252.75 143.25 0.75 re f
206.25 252.75 0.75 0.75 re f
207 252.75 350.25 0.75 re f
557.25 252.75 0.75 0.75 re f
62.25 231.75 0.75 21 re f
206.25 231.75 0.75 21 re f
557.25 231.75 0.75 21 re f
BT
68.25 216.75 TD
-0.182 Tc (PDP) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0339 Tc 0.2556 Tw (Policy Decision Point) Tj
93 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 231 0.75 0.75 re f
63 231 143.25 0.75 re f
206.25 231 0.75 0.75 re f
207 231 350.25 0.75 re f
557.25 231 0.75 0.75 re f
62.25 210 0.75 21 re f
206.25 210 0.75 21 re f
557.25 210 0.75 21 re f
BT
68.25 195 TD
0.2468 Tc (PEP) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0684 Tc 0.2211 Tw (Policy Enforcement Point) Tj
111.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 208.5 0.75 0.75 re f
63 208.5 143.25 0.75 re f
206.25 208.5 0.75 0.75 re f
207 208.5 350.25 0.75 re f
557.25 208.5 0.75 0.75 re f
62.25 187.5 0.75 21 re f
206.25 187.5 0.75 21 re f
557.25 187.5 0.75 21 re f
BT
68.25 172.5 TD
0.0447 Tc (Package) Tj
144 -2.25 TD 0.0694 Tc 0.2201 Tw (= assertions [+ entitlements] + payload ) Tj
177 0 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
ET
62.25 186.75 0.75 0.75 re f
63 186.75 143.25 0.75 re f
206.25 186.75 0.75 0.75 re f
207 186.75 350.25 0.75 re f
557.25 186.75 0.75 0.75 re f
62.25 162 0.75 24.75 re f
206.25 162 0.75 24.75 re f
557.25 162 0.75 24.75 re f
BT
68.25 147 TD
/F0 9.75 Tf
0.0987 Tc (Party) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc -0.2542 Tw (? ) Tj
10.5 0 TD /F0 9.75 Tf
0.4129 Tc -0.8734 Tw (An ) Tj
15.75 0 TD 0 0 1 rg
0.0151 Tc 0 Tw (actor) Tj
21.75 0 TD 0 0 0 rg
0.1429 Tc 0.1466 Tw ( or actors \() Tj
48 0 TD 0 0 1 rg
0.1334 Tc 0.1561 Tw (principal ) Tj
40.5 0 TD 0 0 0 rg
0.0762 Tc 0.2133 Tw (or principals\) participating in some process or) Tj
-136.5 -12 TD 0.1046 Tc 0.1849 Tw (communication, such as ) Tj
110.25 0 TD 0 0 1 rg
0.1002 Tc 0 Tw (accessing) Tj
44.25 0 TD 0 0 0 rg
-0.171 Tc 0.0855 Tw ( a ) Tj
11.25 0 TD 0 0 1 rg
0.1341 Tc 0 Tw (resource) Tj
38.25 0 TD 0 0 0 rg
0.0669 Tc 0.2226 Tw (. See also: ) Tj
50.25 0 TD 0 0 1 rg
0.1263 Tc 0.1632 Tw (access request) Tj
67.5 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (,) Tj
-321.75 -11.25 TD 0 0 1 rg
0.1724 Tc 0.1171 Tw (system entity) Tj
59.25 0 TD 0 0 0 rg
-0.4605 Tc 0 Tw (, ) Tj
5.25 0 TD 0 0 1 rg
-0.0534 Tc (user) Tj
18.75 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 161.25 0.75 0.75 re f
63 161.25 143.25 0.75 re f
206.25 161.25 0.75 0.75 re f
207 161.25 350.25 0.75 re f
557.25 161.25 0.75 0.75 re f
62.25 113.25 0.75 48 re f
206.25 113.25 0.75 48 re f
557.25 113.25 0.75 48 re f
BT
68.25 99 TD
0.1199 Tc 0.1696 Tw (Passive Role) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F0 9.75 Tf
0.2468 Tc 0.0427 Tw ( A ) Tj
18.75 0 TD 0 0 1 rg
-0.1258 Tc 0 Tw (role) Tj
15.75 0 TD 0 0 0 rg
0.0132 Tc 0.0263 Tw ( that a ) Tj
30.75 0 TD 0 0 1 rg
0.1341 Tc 0 Tw (resource) Tj
38.25 0 TD 0 0 0 rg
0.0863 Tc 0.2032 Tw ( effectively dons when it is the) Tj
133.5 0 TD /F4 9.75 Tf
0.1645 Tc 0.125 Tw ( object) Tj
30 0 TD /F0 9.75 Tf
-0.0784 Tc 0.3679 Tw ( of some) Tj
-274.5 -12 TD 0 0 1 rg
0.1502 Tc 0 Tw (operation) Tj
41.25 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 112.5 0.75 0.75 re f
63 112.5 143.25 0.75 re f
206.25 112.5 0.75 0.75 re f
207 112.5 350.25 0.75 re f
557.25 112.5 0.75 0.75 re f
62.25 76.5 0.75 36 re f
62.25 75.75 0.75 0.75 re f
62.25 75.75 0.75 0.75 re f
63 75.75 143.25 0.75 re f
206.25 76.5 0.75 36 re f
206.25 75.75 0.75 0.75 re f
207 75.75 350.25 0.75 re f
557.25 76.5 0.75 36 re f
557.25 75.75 0.75 0.75 re f
557.25 75.75 0.75 0.75 re f
endstream
endobj
59 0 obj
14871
endobj
56 0 obj
<<
/Type /Page
/Parent 57 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 58 0 R
>>
endobj
61 0 obj
<<
/Length 62 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (14) Tj
-231 696.75 TD /F0 9.75 Tf
0.0033 Tc (Payload) Tj
144 -0.75 TD 0.054 Tc 0.1521 Tw (The essential data that is being carried within a ) Tj
210.75 0 TD 0 0 1 rg
0.0877 Tc 0 Tw (packet) Tj
30 0 TD 0 0 0 rg
0.0339 Tc 0.2556 Tw ( or other transmission) Tj
-240.75 -11.25 TD 0.0678 Tc 0.2217 Tw (unit. The payload does not include the "overhead" data required to get the) Tj
0 -11.25 TD 0.0706 Tc 0.2189 Tw (packet to its destination. Note that what constitutes the payload may depend) Tj
0 -12 TD 0.0623 Tc 0.3636 Tw (on the point-of-view. To a communications layer that needs some of the) Tj
0 -11.25 TD 0.0693 Tc 0.2202 Tw (overhead data to do its job, the payload is sometimes considered to include) Tj
T* 0.0798 Tc 0.2097 Tw (the part of the overhead data that this layer handles. However, in more) Tj
0 -12 TD 0.0723 Tc 0.2172 Tw (general usage, the payload is the bits that get delivered to the end user \(or) Tj
0 -11.25 TD 0.0578 Tc 0.2317 Tw (whatever entity\) at the destination. ) Tj
154.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (26) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 631.5 0.75 102 re f
206.25 631.5 0.75 102 re f
557.25 631.5 0.75 102 re f
BT
68.25 617.25 TD
0.0463 Tc 0.2432 Tw (Perimeter Network) Tj
144 0 TD 0.0338 Tc 0.0057 Tw (A network between ) Tj
87.75 0 TD 0 0 1 rg
0.0818 Tc 0.2077 Tw (external networks) Tj
78 0 TD 0 0 0 rg
0.079 Tc -0.1645 Tw ( and ) Tj
22.5 0 TD 0 0 1 rg
0.1106 Tc 0.1789 Tw (internal networks) Tj
75.75 0 TD 0 0 0 rg
0.0405 Tc 0.624 Tw ( whose explicit) Tj
-264 -12 TD 0.0611 Tc 0.1602 Tw (role is to facilitate creation and management of additional layer\(s\) of ) Tj
302.25 0 TD 0 0 1 rg
0.2077 Tc 0 Tw (security) Tj
-302.25 -11.25 TD 0 0 0 rg
0.0866 Tc 0.2029 Tw (\(as compared to not having a perimeter network\). Also sometimes called a) Tj
0 -11.25 TD 0 0 1 rg
0.0247 Tc 0.2648 Tw (DMZ network) Tj
59.25 0 TD 0 0 0 rg
0.0391 Tc 0 Tw (. See also ) Tj
47.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (5) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 631.5 0.75 0.75 re f
63 631.5 143.25 0.75 re f
206.25 631.5 0.75 0.75 re f
207 631.5 350.25 0.75 re f
557.25 631.5 0.75 0.75 re f
62.25 576 0.75 55.5 re f
206.25 576 0.75 55.5 re f
557.25 576 0.75 55.5 re f
BT
68.25 561 TD
0.0751 Tc 0.2144 Tw (Perimeter Security) Tj
144 -0.75 TD 0 0 1 rg
0.1001 Tc 0.1894 Tw (Network-based security) Tj
104.25 0 TD 0 0 0 rg
0.0633 Tc 0.2262 Tw ( applied at the perimeter of one\222s ) Tj
148.5 0 TD 0 0 1 rg
0.1386 Tc 0.1509 Tw (security domain) Tj
69.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
-322.5 -11.25 TD 0.0033 Tc -0.0888 Tw (See also ) Tj
41.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (5) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 574.5 0.75 0.75 re f
63 574.5 143.25 0.75 re f
206.25 574.5 0.75 0.75 re f
207 574.5 350.25 0.75 re f
557.25 574.5 0.75 0.75 re f
62.25 541.5 0.75 33 re f
206.25 541.5 0.75 33 re f
557.25 541.5 0.75 33 re f
BT
68.25 527.25 TD
0.0965 Tc 0.193 Tw (Policy, Policies) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.068 Tc 0.1277 Tw (Concisely, a policy is a mapping of user ) Tj
178.5 0 TD 0 0 1 rg
0.0781 Tc 0 Tw (credentials) Tj
48 0 TD /F4 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 0 rg
/F0 9.75 Tf
-0.0214 Tc -0.4391 Tw (with ) Tj
20.25 0 TD 0 0 1 rg
0.1787 Tc 0 Tw (authority) Tj
39 0 TD 0 0 0 rg
0.1224 Tc 0.1671 Tw ( to act) Tj
-299.25 -12 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.0595 Tc 0.23 Tw (. Policies are often essentially ) Tj
134.25 0 TD 0 0 1 rg
0.0883 Tc 0.2012 Tw (access control ) Tj
66.75 0 TD 0 0 0 rg
/F4 9.75 Tf
0.2421 Tc 0 Tw (lists) Tj
18 0 TD /F0 9.75 Tf
0.2895 Tc (. ) Tj
5.25 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 541.5 0.75 0.75 re f
63 541.5 143.25 0.75 re f
206.25 541.5 0.75 0.75 re f
207 541.5 350.25 0.75 re f
557.25 541.5 0.75 0.75 re f
62.25 505.5 0.75 36 re f
206.25 505.5 0.75 36 re f
557.25 505.5 0.75 36 re f
BT
68.25 490.5 TD
0.0797 Tc 0.2098 Tw (Policy Decision) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
222.75 484.5 240 14.25 re f
BT
222.75 487.5 TD
0 0 0 rg
/F0 9.75 Tf
0.097 Tc -0.0575 Tw (essentially synonymous with ) Tj
129 0 TD 0 0 1 rg
0.0843 Tc 0.2052 Tw (Access Control Decision) Tj
108 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 504 0.75 0.75 re f
63 504 143.25 0.75 re f
206.25 504 0.75 0.75 re f
207 504 350.25 0.75 re f
557.25 504 0.75 0.75 re f
62.25 479.25 0.75 24.75 re f
206.25 479.25 0.75 24.75 re f
557.25 479.25 0.75 24.75 re f
BT
68.25 465 TD
0.0339 Tc 0.2556 Tw (Policy Decision Point) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0.4958 Tw (? ) Tj
15 0 TD /F0 9.75 Tf
0.1277 Tc 0.1617 Tw (\(a\) A [system] ) Tj
65.25 0 TD 0 0 1 rg
0.1162 Tc 0.1732 Tw (entity ) Tj
27 0 TD 0 0 0 rg
0.0859 Tc 0.2036 Tw (that makes ) Tj
51.75 0 TD 0 0 1 rg
0.0794 Tc 0.2101 Tw (policy decisions ) Tj
72.75 0 TD 0 0 0 rg
-0.0495 Tc 0.714 Tw (for itself or for other) Tj
-231.75 -12 TD 0.0837 Tc 0.2058 Tw (system entities that request such decisions. ) Tj
195.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (31) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-209.25 -21.75 TD 0 0 0 rg
0.0821 Tc -0.0426 Tw (\(b\) Synonymous with ) Tj
96 0 TD 0 0 1 rg
0.0906 Tc 0.1989 Tw (Access Control Decision Function) Tj
149.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-264.75 -21.75 TD 0 0 0 rg
0.0701 Tc -0.0306 Tw (\(c\) Synonymous with ) Tj
95.25 0 TD 0 0 1 rg
0.0585 Tc 0.231 Tw (AAA Server) Tj
51.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
-147 -21.75 TD -0.2467 Tc (---) Tj
ET
1 1 0 rg
212.25 371.25 333.75 11.25 re f
BT
212.25 373.5 TD
0 0 0 rg
0.035 Tc 0.3699 Tw (JeffH feels that \(a\) and \(b\) are essentially equivalent and we need to decide) Tj
ET
1 1 0 rg
212.25 360 40.5 11.25 re f
BT
212.25 362.25 TD
0 0 0 rg
0.0442 Tc 0 Tw (whether..) Tj
ET
1 1 0 rg
230.25 338.25 18 11.25 re f
BT
230.25 340.5 TD
0 0 0 rg
-0.3158 Tc (1.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
248.25 338.25 93.75 11.25 re f
BT
248.25 340.5 TD
0 0 0 rg
-0 Tc 0.29 Tw (we use \(a\) \223as is\224, or,) Tj
ET
1 1 0 rg
230.25 316.5 18 11.25 re f
BT
230.25 318.75 TD
0 0 0 rg
-0.3158 Tc 0 Tw (2.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
248.25 316.5 273 11.25 re f
BT
248.25 318.75 TD
0 0 0 rg
0.0442 Tc 0.1828 Tw (we use \(b\) \223as is\224 \(this would mean moving the def for ) Tj
240 0 TD 0 0 1 rg
0.2626 Tc 0 Tw (Access) Tj
ET
1 1 0 rg
248.25 305.25 201 11.25 re f
BT
248.25 307.5 TD
0 0 1 rg
0.0784 Tc 0.2111 Tw (Control Decision Function) Tj
114 0 TD 0 0 0 rg
0 Tc 0.2888 Tw ( to this location\), or,) Tj
ET
1 1 0 rg
230.25 284.25 18 10.5 re f
BT
230.25 286.5 TD
0 0 0 rg
-0.3158 Tc 0 Tw (3.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
248.25 284.25 93 10.5 re f
BT
248.25 286.5 TD
0 0 0 rg
-0.0119 Tc 0.3014 Tw (we use \(c\) \223as is\224, or,) Tj
ET
1 1 0 rg
230.25 262.5 18 11.25 re f
BT
230.25 264.75 TD
0 0 0 rg
-0.3158 Tc 0 Tw (4.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
248.25 262.5 168.75 11.25 re f
BT
248.25 264.75 TD
0 0 0 rg
0.0589 Tc 0.2306 Tw (we blend the three definitions together) Tj
ET
1 1 0 rg
212.25 240.75 332.25 11.25 re f
BT
212.25 243 TD
0 0 0 rg
0.0725 Tc 0.217 Tw (Selecting any of the above options involves deleting the entries for ) Tj
299.25 0 TD 0 0 1 rg
0.2626 Tc 0 Tw (Access) Tj
ET
1 1 0 rg
212.25 229.5 324.75 11.25 re f
BT
212.25 231.75 TD
0 0 1 rg
0.0784 Tc 0.2111 Tw (Control Decision Function) Tj
114 0 TD 0 0 0 rg
0.079 Tc -0.1645 Tw ( and ) Tj
22.5 0 TD 0 0 1 rg
0.0585 Tc 0.231 Tw (AAA Server) Tj
51.75 0 TD 0 0 0 rg
0.0476 Tc 0.3669 Tw ( from this doc, and updating all) Tj
ET
1 1 0 rg
212.25 218.25 225 11.25 re f
BT
212.25 220.5 TD
0 0 0 rg
0.0747 Tc 0.2148 Tw (definitions using those terms to use the new terms.) Tj
ET
62.25 478.5 0.75 0.75 re f
63 478.5 143.25 0.75 re f
206.25 478.5 0.75 0.75 re f
207 478.5 350.25 0.75 re f
557.25 478.5 0.75 0.75 re f
62.25 213 0.75 265.5 re f
62.25 212.25 0.75 0.75 re f
62.25 212.25 0.75 0.75 re f
63 212.25 143.25 0.75 re f
206.25 213 0.75 265.5 re f
206.25 212.25 0.75 0.75 re f
207 212.25 350.25 0.75 re f
557.25 213 0.75 265.5 re f
557.25 212.25 0.75 0.75 re f
557.25 212.25 0.75 0.75 re f
endstream
endobj
62 0 obj
9027
endobj
60 0 obj
<<
/Type /Page
/Parent 57 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 61 0 R
>>
endobj
64 0 obj
<<
/Length 65 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (15) Tj
-231 696.75 TD /F0 9.75 Tf
0.0343 Tc 0.2552 Tw (Policy Enforcement Point) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
6 0 TD /F0 9.75 Tf
0.1277 Tc 0.1617 Tw (\(a\) A [system] ) Tj
65.25 0 TD 0 0 1 rg
0.1162 Tc 0.1732 Tw (entity ) Tj
26.25 0 TD 0 0 0 rg
0.0831 Tc 0.2064 Tw (that [requests and subsequently] enforces ) Tj
188.25 0 TD 0 0 1 rg
0.0965 Tc 0 Tw (policy) Tj
-293.25 -12 TD -0.0153 Tc (decisions) Tj
41.25 0 TD 0 0 0 rg
0.2895 Tc (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (31) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-60.75 -21.75 TD 0 0 0 rg
0.0821 Tc -0.0426 Tw (\(b\) Synonymous with ) Tj
96 0 TD 0 0 1 rg
0.0855 Tc 0.204 Tw (Access Control Enforcement Function) Tj
167.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-282.75 -21.75 TD 0 0 0 rg
-0.2467 Tc (---) Tj
ET
1 1 0 rg
212.25 648 333.75 11.25 re f
BT
212.25 650.25 TD
0 0 0 rg
0.035 Tc 0.3699 Tw (JeffH feels that \(a\) and \(b\) are essentially equivalent and we need to decide) Tj
ET
1 1 0 rg
212.25 636.75 40.5 11.25 re f
BT
212.25 639 TD
0 0 0 rg
0.0442 Tc 0 Tw (whether..) Tj
ET
1 1 0 rg
230.25 615 18 11.25 re f
BT
230.25 617.25 TD
0 0 0 rg
-0.3158 Tc (1.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
248.25 615 93.75 11.25 re f
BT
248.25 617.25 TD
0 0 0 rg
-0 Tc 0.29 Tw (we use \(a\) \223as is\224, or,) Tj
ET
1 1 0 rg
230.25 593.25 18 11.25 re f
BT
230.25 595.5 TD
0 0 0 rg
-0.3158 Tc 0 Tw (2.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
248.25 593.25 273 11.25 re f
BT
248.25 595.5 TD
0 0 0 rg
0.0442 Tc 0.1828 Tw (we use \(b\) \223as is\224 \(this would mean moving the def for ) Tj
240 0 TD 0 0 1 rg
0.2626 Tc 0 Tw (Access) Tj
ET
1 1 0 rg
248.25 582 219.75 11.25 re f
BT
248.25 584.25 TD
0 0 1 rg
0.0735 Tc 0.216 Tw (Control Enforcement Function) Tj
132 0 TD 0 0 0 rg
0.0402 Tc 0.2493 Tw ( to this location\), or,) Tj
ET
1 1 0 rg
230.25 560.25 18 11.25 re f
BT
230.25 562.5 TD
0 0 0 rg
-0.3158 Tc 0 Tw (3.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
248.25 560.25 165 11.25 re f
BT
248.25 562.5 TD
0 0 0 rg
0.0557 Tc 0.2338 Tw (we blend the two definitions together.) Tj
ET
1 1 0 rg
212.25 538.5 321 11.25 re f
BT
212.25 540.75 TD
0 0 0 rg
0.0632 Tc 0.1581 Tw (Selecting any of the above options involves deleting the entry for ) Tj
288 0 TD 0 0 1 rg
0.2626 Tc 0 Tw (Access) Tj
ET
1 1 0 rg
212.25 527.25 291.75 11.25 re f
BT
212.25 529.5 TD
0 0 1 rg
0.0735 Tc 0.216 Tw (Control Enforcement Function) Tj
132 0 TD 0 0 0 rg
0.045 Tc 0.3516 Tw ( itself from this doc, and updating all) Tj
ET
1 1 0 rg
212.25 516 225 11.25 re f
BT
212.25 518.25 TD
0 0 0 rg
0.0747 Tc 0.2148 Tw (definitions using those terms to use the new terms.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 510.75 0.75 222.75 re f
206.25 510.75 0.75 222.75 re f
557.25 510.75 0.75 222.75 re f
BT
68.25 495.75 TD
0.0132 Tc 0 Tw (Principal) Tj
0 -11.25 TD 0.055 Tc 0.9845 Tw (Principal Identity) Tj
144 9 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F0 9.75 Tf
0.0285 Tc -0.114 Tw ( \(a\) ) Tj
18 0 TD 0 0 1 rg
0.1234 Tc 0.1661 Tw (AAA Service) Tj
55.5 0 TD 0 0 0 rg
0.0772 Tc 0.0623 Tw ( clients are sometimes called ) Tj
132 0 TD /F4 9.75 Tf
0.0826 Tc 0 Tw (principals) Tj
42 0 TD /F0 9.75 Tf
0.0585 Tc 0.231 Tw ( in order to) Tj
-255 -12.75 TD 0.0313 Tc 0.2582 Tw (distinguish them from clients of other ) Tj
165 0 TD 0 0 1 rg
0.0308 Tc 0 Tw (services) Tj
36.75 0 TD 0 0 0 rg
0.0634 Tc 0.2261 Tw (, and perhaps their own) Tj
-201.75 -11.25 TD 0 0 1 rg
0.1241 Tc 0 Tw (clients) Tj
28.5 0 TD 0 0 0 rg
0.0296 Tc 0.2599 Tw (, if they are themselves ) Tj
105 0 TD 0 0 1 rg
0.0414 Tc 0 Tw (servers) Tj
33 0 TD 0 0 0 rg
0.0371 Tc 0.3774 Tw (. Note that a AAA service principal) Tj
-166.5 -11.25 TD 0.0101 Tc 0.1294 Tw (may be any form of ) Tj
87.75 0 TD 0 0 1 rg
0.1724 Tc 0.1171 Tw (system entity) Tj
59.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (29) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-166.5 -21.75 TD 0 0 0 rg
0.0686 Tc 0.2209 Tw (\(b\) An instantiation of a system entity within the security domain. ) Tj
287.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (33) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-300.75 -21 TD 0 0 0 rg
0.0705 Tc 0.219 Tw (\(c\) An entity whose identity can be authenticated. ) Tj
220.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (34) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 510 0.75 0.75 re f
63 510 143.25 0.75 re f
206.25 510 0.75 0.75 re f
207 510 350.25 0.75 re f
557.25 510 0.75 0.75 re f
62.25 408 0.75 102 re f
206.25 408 0.75 102 re f
557.25 408 0.75 102 re f
BT
68.25 393 TD
0.1561 Tc 0.1334 Tw (Privilege Attribute) Tj
144 0 TD 0.0379 Tc -0.4984 Tw (An ) Tj
15 0 TD 0 0 1 rg
0.0859 Tc 0 Tw (attribute) Tj
35.25 0 TD 0 0 0 rg
0.1073 Tc -0.0053 Tw ( associated with an ) Tj
88.5 0 TD 0 0 1 rg
0.0084 Tc 0 Tw (initiator) Tj
31.5 0 TD 0 0 0 rg
0.0963 Tc 0.1932 Tw ( that, when matched against control) Tj
-170.25 -11.25 TD 0.0599 Tc 0.2296 Tw (attributes of a protected resource is used to grant or deny ) Tj
256.5 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
-0.0658 Tc 0.3553 Tw ( to that) Tj
-288 -11.25 TD 0.0503 Tc 0.4535 Tw (protected resource \(derived from ECMA TR/46 definition\). ) Tj
258 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (19) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 407.25 0.75 0.75 re f
63 407.25 143.25 0.75 re f
206.25 407.25 0.75 0.75 re f
207 407.25 350.25 0.75 re f
557.25 407.25 0.75 0.75 re f
62.25 363 0.75 44.25 re f
206.25 363 0.75 44.25 re f
557.25 363 0.75 44.25 re f
BT
68.25 348 TD
0.0836 Tc 0.2059 Tw (Privilege Attribute Certificate) Tj
144 0 TD 0.0702 Tc 0.2193 Tw (A data structure containing privilege attributes. May be signed by the) Tj
0 -11.25 TD 0.0863 Tc 0.2032 Tw (authority which generated it ) Tj
125.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 362.25 0.75 0.75 re f
63 362.25 143.25 0.75 re f
206.25 362.25 0.75 0.75 re f
207 362.25 350.25 0.75 re f
557.25 362.25 0.75 0.75 re f
62.25 329.25 0.75 33 re f
206.25 329.25 0.75 33 re f
557.25 329.25 0.75 33 re f
BT
68.25 315 TD
0.1206 Tc 0.1689 Tw (Protected Resource) Tj
144 0 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
-0.1551 Tc 0 Tw (target) Tj
24.75 0 TD 0 0 0 rg
0.2895 Tc (, ) Tj
6 0 TD 0 0 1 rg
0.193 Tc 0.0965 Tw (access ) Tj
34.5 0 TD 0 0 0 rg
0.0295 Tc 0.135 Tw (to which is restricted by an ) Tj
120 0 TD 0 0 1 rg
0.0909 Tc 0.1986 Tw (access control policy ) Tj
95.25 0 TD 0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (12) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 328.5 0.75 0.75 re f
63 328.5 143.25 0.75 re f
206.25 328.5 0.75 0.75 re f
207 328.5 350.25 0.75 re f
557.25 328.5 0.75 0.75 re f
62.25 307.5 0.75 21 re f
206.25 307.5 0.75 21 re f
557.25 307.5 0.75 21 re f
BT
68.25 292.5 TD
0.018 Tc 0.6465 Tw (Protected Web Resources) Tj
144 0 TD 0 0 1 rg
0.0126 Tc 0.2769 Tw (Web resources) Tj
66.75 0 TD 0 0 0 rg
0.1039 Tc -0.0019 Tw ( whose availability to ) Tj
95.25 0 TD 0 0 1 rg
-0.0309 Tc 0 Tw (requesters) Tj
46.5 0 TD 0 0 0 rg
0.0656 Tc 0.2239 Tw ( is being managed, i.e.) Tj
-208.5 -11.25 TD -0.0093 Tc 0.2988 Tw (protected, via some ) Tj
90 0 TD 0 0 1 rg
0.0883 Tc 0.2012 Tw (access control) Tj
63.75 0 TD 0 0 0 rg
0.1447 Tc 0.1448 Tw ( mechanism.) Tj
ET
62.25 306.75 0.75 0.75 re f
63 306.75 143.25 0.75 re f
206.25 306.75 0.75 0.75 re f
207 306.75 350.25 0.75 re f
557.25 306.75 0.75 0.75 re f
62.25 273.75 0.75 33 re f
206.25 273.75 0.75 33 re f
557.25 273.75 0.75 33 re f
BT
68.25 259.5 TD
0.1158 Tc 0 Tw (Proxy) Tj
144 -0.75 TD -0.1177 Tc 0.0322 Tw (\(a\) An ) Tj
29.25 0 TD 0 0 1 rg
0.2412 Tc 0 Tw (entity) Tj
24.75 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.0977 Tc 0 Tw (authorized) Tj
45.75 0 TD 0 0 0 rg
0.0505 Tc 0.239 Tw ( to act for another; \(b\) authority or power to act for) Tj
-102.75 -11.25 TD 0.0741 Tc 0.2154 Tw (another ; \(c\) a document giving such authority; ) Tj
208.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (28) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 273 0.75 0.75 re f
63 273 143.25 0.75 re f
206.25 273 0.75 0.75 re f
207 273 350.25 0.75 re f
557.25 273 0.75 0.75 re f
62.25 240 0.75 33 re f
206.25 240 0.75 33 re f
557.25 240 0.75 33 re f
BT
68.25 225.75 TD
0.0332 Tc 0.2563 Tw (Proxy Server) Tj
144 0 TD 0.0655 Tc 0.1303 Tw (A computer process that relays a protocol between ) Tj
227.25 0 TD 0 0 1 rg
-0.0428 Tc 0 Tw (client) Tj
23.25 0 TD 0 0 0 rg
0.079 Tc -0.1645 Tw ( and ) Tj
22.5 0 TD 0 0 1 rg
0.2357 Tc 0 Tw (server) Tj
-273 -12 TD 0 0 0 rg
0.0686 Tc 0.2209 Tw (computer systems, by appearing to the client to be the server and appearing) Tj
0 -11.25 TD 0.0495 Tc 0.24 Tw (to the server to be the client. ) Tj
129 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 240 0.75 0.75 re f
63 240 143.25 0.75 re f
206.25 240 0.75 0.75 re f
207 240 350.25 0.75 re f
557.25 240 0.75 0.75 re f
62.25 195.75 0.75 44.25 re f
206.25 195.75 0.75 44.25 re f
557.25 195.75 0.75 44.25 re f
BT
68.25 180.75 TD
0.0617 Tc (Pull) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.2763 Tc 0 Tw (\(xxx\)) Tj
ET
62.25 195 0.75 0.75 re f
63 195 143.25 0.75 re f
206.25 195 0.75 0.75 re f
207 195 350.25 0.75 re f
557.25 195 0.75 0.75 re f
62.25 170.25 0.75 24.75 re f
206.25 170.25 0.75 24.75 re f
557.25 170.25 0.75 24.75 re f
BT
68.25 155.25 TD
0.2574 Tc (Push) Tj
144 -2.25 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F1 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F0 9.75 Tf
0.2763 Tc 0 Tw (\(xxx\)) Tj
ET
62.25 169.5 0.75 0.75 re f
63 169.5 143.25 0.75 re f
206.25 169.5 0.75 0.75 re f
207 169.5 350.25 0.75 re f
557.25 169.5 0.75 0.75 re f
62.25 144.75 0.75 24.75 re f
206.25 144.75 0.75 24.75 re f
557.25 144.75 0.75 24.75 re f
BT
68.25 129.75 TD
-0.3964 Tc (RP) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0823 Tc 0.2072 Tw (Relying Party) Tj
59.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 144 0.75 0.75 re f
63 144 143.25 0.75 re f
206.25 144 0.75 0.75 re f
207 144 350.25 0.75 re f
557.25 144 0.75 0.75 re f
62.25 123 0.75 21 re f
206.25 123 0.75 21 re f
557.25 123 0.75 21 re f
BT
68.25 108 TD
0.146 Tc 0.1435 Tw (Receiving Site) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F0 9.75 Tf
0.2468 Tc 0.0427 Tw ( A ) Tj
21.75 0 TD 0 0 1 rg
0.1447 Tc 0 Tw (site) Tj
15 0 TD 0 0 0 rg
0.0675 Tc 0.1282 Tw ( that receives, interprets, and acts according to ) Tj
210 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
-254.25 -12 TD -0.0181 Tc (assertions) Tj
45 0 TD 0 0 0 rg
0.1077 Tc -0.0058 Tw (. Essentially synonymous to ) Tj
126.75 0 TD 0 0 1 rg
-0.0115 Tc 1.051 Tw (relying party) Tj
54 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 122.25 0.75 0.75 re f
63 122.25 143.25 0.75 re f
206.25 122.25 0.75 0.75 re f
207 122.25 350.25 0.75 re f
557.25 122.25 0.75 0.75 re f
62.25 86.25 0.75 36 re f
62.25 85.5 0.75 0.75 re f
62.25 85.5 0.75 0.75 re f
63 85.5 143.25 0.75 re f
206.25 86.25 0.75 36 re f
206.25 85.5 0.75 0.75 re f
207 85.5 350.25 0.75 re f
557.25 86.25 0.75 36 re f
557.25 85.5 0.75 0.75 re f
557.25 85.5 0.75 0.75 re f
endstream
endobj
65 0 obj
11967
endobj
63 0 obj
<<
/Type /Page
/Parent 57 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 64 0 R
>>
endobj
67 0 obj
<<
/Length 68 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (16) Tj
-231 696.75 TD /F0 9.75 Tf
0.0823 Tc 0.2072 Tw (Relying Party) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F0 9.75 Tf
0.0813 Tc 0.2082 Tw ( One who is making a decision contingent upon information or advice) Tj
-7.5 -12.75 TD 0.0625 Tc -0.148 Tw (from another ) Tj
59.25 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
0.0656 Tc 0.0989 Tw (. E.g. an entity that is ) Tj
96.75 0 TD /F4 9.75 Tf
0.0766 Tc 0 Tw (relying) Tj
28.5 0 TD /F0 9.75 Tf
0.0129 Tc 0.5266 Tw ( upon various ) Tj
63 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
-271.5 -11.25 TD -0.0181 Tc (assertions) Tj
45 0 TD 0 0 0 rg
0.0569 Tc 0.0451 Tw ( about some other ) Tj
83.25 0 TD 0 0 1 rg
0.1651 Tc 0 Tw (party) Tj
22.5 0 TD 0 0 0 rg
0.0378 Tc 0.4017 Tw (\(ies\), made by yet another party\(ies\).) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 685.5 0.75 48 re f
206.25 685.5 0.75 48 re f
557.25 685.5 0.75 48 re f
BT
68.25 671.25 TD
0.1287 Tc 0 Tw (Resource) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F0 9.75 Tf
0.0629 Tc 0.1195 Tw ( Synonymous in this document for ) Tj
156 0 TD 0 0 1 rg
0.1624 Tc 0.1271 Tw (System Resource) Tj
78.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
1 1 0 rg
212.25 643.5 324.75 11.25 re f
BT
212.25 645.75 TD
0 0 0 rg
0.0662 Tc 0.2809 Tw (JeffH feel\222s that we need to decide whether we use the term \223resource\224 or) Tj
ET
1 1 0 rg
212.25 632.25 338.25 11.25 re f
BT
212.25 634.5 TD
0 0 0 rg
0.0756 Tc 0.2716 Tw (\223system resource\224 in this and other SAML docs. We need to choose one and) Tj
ET
1 1 0 rg
212.25 621 82.5 11.25 re f
BT
212.25 623.25 TD
0 0 0 rg
0.1257 Tc 0.1637 Tw (use it consistently.) Tj
ET
62.25 685.5 0.75 0.75 re f
63 685.5 143.25 0.75 re f
206.25 685.5 0.75 0.75 re f
207 685.5 350.25 0.75 re f
557.25 685.5 0.75 0.75 re f
62.25 616.5 0.75 69 re f
206.25 616.5 0.75 69 re f
557.25 616.5 0.75 69 re f
BT
68.25 601.5 TD
0.063 Tc 0 Tw (Request) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F0 9.75 Tf
0.1234 Tc 0.1661 Tw ( What ) Tj
35.25 0 TD 0 0 1 rg
0.1241 Tc 0 Tw (clients) Tj
28.5 0 TD 0 0 0 rg
0.0466 Tc -0.0071 Tw ( make to ) Tj
41.25 0 TD 0 0 1 rg
-0.1729 Tc 0 Tw (servers) Tj
31.5 0 TD 0 0 0 rg
0.1166 Tc 0.1729 Tw (. \(need to enhance this ;\)) Tj
ET
62.25 615 0.75 0.75 re f
63 615 143.25 0.75 re f
206.25 615 0.75 0.75 re f
207 615 350.25 0.75 re f
557.25 615 0.75 0.75 re f
62.25 590.25 0.75 24.75 re f
206.25 590.25 0.75 24.75 re f
557.25 590.25 0.75 24.75 re f
BT
68.25 576 TD
0.1692 Tc 0 Tw (Requester) Tj
144 -0.75 TD 0.0551 Tc 0.1272 Tw (As in \223service requester\224, or \223requester of ) Tj
184.5 0 TD 0 0 1 rg
0.0775 Tc 0 Tw (resources) Tj
44.25 0 TD 0 0 0 rg
0.0965 Tc 0.193 Tw (\224. A ) Tj
18.75 0 TD 0 0 1 rg
0.1724 Tc 0.1171 Tw (system entity) Tj
58.5 0 TD 0 0 0 rg
0.1162 Tc 0.1732 Tw ( that is) Tj
-306 -11.25 TD 0.0322 Tc -0.1178 Tw (utilizing a ) Tj
44.25 0 TD 0 0 1 rg
0.0712 Tc 0 Tw (protocol) Tj
35.25 0 TD 0 0 0 rg
0.0592 Tc -0.1447 Tw ( to ) Tj
14.25 0 TD 0 0 1 rg
0.0691 Tc 0 Tw (request) Tj
33 0 TD 0 0 0 rg
0.0635 Tc 0.0385 Tw ( services from a ) Tj
73.5 0 TD 0 0 1 rg
0.196 Tc 0 Tw (service) Tj
31.5 0 TD 0 0 0 rg
0.101 Tc 0.1885 Tw (. Essentially functionally) Tj
-231.75 -11.25 TD 0.0329 Tc 0.2566 Tw (equivalent to the term ) Tj
98.25 0 TD 0 0 1 rg
-0.0428 Tc 0 Tw (client) Tj
23.25 0 TD 0 0 0 rg
0.0755 Tc 0.3211 Tw (, but often used rather than \223client\224 because) Tj
-121.5 -12 TD 0.0403 Tc 0.2492 Tw (many ) Tj
27 0 TD 0 0 1 rg
0.0881 Tc 0.2014 Tw (system entities) Tj
66.75 0 TD 0 0 0 rg
0.0613 Tc 0.2282 Tw ( simultaneously and/or serially act as both clients and) Tj
-93.75 -11.25 TD 0.0724 Tc 0 Tw (servers.) Tj
ET
62.25 589.5 0.75 0.75 re f
63 589.5 143.25 0.75 re f
206.25 589.5 0.75 0.75 re f
207 589.5 350.25 0.75 re f
557.25 589.5 0.75 0.75 re f
62.25 522 0.75 67.5 re f
206.25 522 0.75 67.5 re f
557.25 522 0.75 67.5 re f
BT
68.25 507.75 TD
0.1365 Tc (Risk) Tj
144 0 TD 0.0543 Tc 0.2352 Tw (\(a\) In the computer system and networking sense: An ) Tj
239.25 0 TD /F4 9.75 Tf
0.113 Tc 0.1765 Tw (expectation of loss) Tj
-239.25 -12 TD /F0 9.75 Tf
0.0679 Tc 0.1144 Tw (expressed as the probability that a particular ) Tj
198.75 0 TD 0 0 1 rg
-0.0301 Tc 0 Tw (threat) Tj
25.5 0 TD 0 0 0 rg
0.0306 Tc 0.2589 Tw ( \(or set of threats\) will) Tj
-224.25 -11.25 TD 0.0311 Tc 0.0084 Tw (exploit a particular ) Tj
84 0 TD 0 0 1 rg
0.0792 Tc 0 Tw (vulnerability) Tj
52.5 0 TD 0 0 0 rg
0.0589 Tc 0.3378 Tw ( \(or set of vulnerabilities\) with a particular) Tj
-136.5 -11.25 TD 0.0486 Tc 0.2409 Tw (harmful result\(s\). ) Tj
77.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
-85.5 -21.75 TD 0 0 0 rg
0.0445 Tc 0.3522 Tw (\(b\) In general, the level of risk in a given context is inversely proportional to) Tj
0 -11.25 TD 0.063 Tc 0.2265 Tw (the level of trust the relationships within the context are accorded. ) Tj
292.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (30) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-306 -21.75 TD 0 0 0 rg
0.0584 Tc 0.2311 Tw (\(c\) More generally: possibility of loss or injury. ) Tj
204.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (28) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 522 0.75 0.75 re f
63 522 143.25 0.75 re f
206.25 522 0.75 0.75 re f
207 522 350.25 0.75 re f
557.25 522 0.75 0.75 re f
62.25 411.75 0.75 110.25 re f
206.25 411.75 0.75 110.25 re f
557.25 411.75 0.75 110.25 re f
BT
68.25 396.75 TD
0.1456 Tc 0.1439 Tw (Risk Analysis) Tj
144 0 TD 0.0721 Tc 0.2174 Tw (Risk analysis involves determining what you need to protect, what you need) Tj
0 -12 TD 0.0698 Tc 0.1728 Tw (to protect it from, and how to protect it. It is the process of examining all of) Tj
0 -11.25 TD 0.0794 Tc 0.2101 Tw (your risks, then ranking those risks by level of severity. For example, see the) Tj
T* 0.0527 Tc 0.1296 Tw (Risk Assessment section of Chapter 2 in ) Tj
181.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD 0.579 Tc (22) Tj
11.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 411 0.75 0.75 re f
63 411 143.25 0.75 re f
206.25 411 0.75 0.75 re f
207 411 350.25 0.75 re f
557.25 411 0.75 0.75 re f
62.25 355.5 0.75 55.5 re f
206.25 355.5 0.75 55.5 re f
557.25 355.5 0.75 55.5 re f
BT
68.25 340.5 TD
-0.1365 Tc (Role) Tj
144 2.25 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F0 12 Tf
0 Tc 0.164 Tw ( ) Tj
9.75 0 TD /F0 11.25 Tf
-0.1005 Tc -0.027 Tw (Dictionaries define a ) Tj
102.75 0 TD /F4 11.25 Tf
-0.0009 Tc 0.6234 Tw (role ) Tj
21.75 0 TD /F0 11.25 Tf
-0.1137 Tc -0.0138 Tw (as \223a character or part played by a) Tj
-141.75 -13.5 TD -0.119 Tc -0.0085 Tw (performer\224 or \223a function or position.\224 ) Tj
181.5 0 TD 0 0 1 rg
-0.0758 Tc 0.6982 Tw (Principals ) Tj
51 0 TD 0 0 0 rg
/F4 11.25 Tf
-0.255 Tc 0 Tw (don) Tj
18 0 TD /F0 11.25 Tf
-0.1449 Tc 0.2674 Tw ( various types of) Tj
-250.5 -12.75 TD -0.12 Tc -0.0075 Tw (roles serially and/or simultaneously, e.g. ) Tj
198 0 TD 0 0 1 rg
-0.1149 Tc -0.0126 Tw (active roles) Tj
56.25 0 TD 0 0 0 rg
-0.255 Tc 0.1275 Tw ( and ) Tj
24 0 TD 0 0 1 rg
-0.0911 Tc 0 Tw (passive) Tj
-278.25 -12.75 TD -0.2258 Tc (roles) Tj
24 0 TD 0 0 0 rg
-0.2178 Tc 0.2403 Tw (. The notion of an ) Tj
88.5 0 TD 0 0 1 rg
-0.1356 Tc 0 Tw (Administrator) Tj
64.5 0 TD 0 0 0 rg
-0.1431 Tc 0.1228 Tw ( is often an example of a role.) Tj
ET
62.25 354 0.75 0.75 re f
63 354 143.25 0.75 re f
206.25 354 0.75 0.75 re f
207 354 350.25 0.75 re f
557.25 354 0.75 0.75 re f
62.25 301.5 0.75 52.5 re f
206.25 301.5 0.75 52.5 re f
557.25 301.5 0.75 52.5 re f
BT
68.25 287.25 TD
/F0 9.75 Tf
0.1447 Tc 0 Tw (Scrutinize) Tj
144 0 TD 0.0788 Tc 0.2941 Tw (To examine or observe with great care; inspect critically. ) Tj
252.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (28) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 300.75 0.75 0.75 re f
63 300.75 143.25 0.75 re f
206.25 300.75 0.75 0.75 re f
207 300.75 350.25 0.75 re f
557.25 300.75 0.75 0.75 re f
62.25 279.75 0.75 21 re f
206.25 279.75 0.75 21 re f
557.25 279.75 0.75 21 re f
BT
68.25 264.75 TD
0.0979 Tc (Security) Tj
144 0 TD 0.0687 Tc 0.2208 Tw (Security refers to a collection of safeguards that ensure the confidentiality of) Tj
0 -11.25 TD 0.0651 Tc 0.2994 Tw (information, protect the system\(s\) or network\(s\) used to process it, and) Tj
0 -12 TD 0.0759 Tc 0.2136 Tw (control access to it \(them\). Security typically encompasses the) Tj
0 -11.25 TD 0.0725 Tc -0.158 Tw (concepts/topics/themes of ) Tj
117.75 0 TD /F4 9.75 Tf
0.2373 Tc 0 Tw (secrecy) Tj
34.5 0 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 0 TD /F4 9.75 Tf
0.1123 Tc (confidentiality) Tj
60 0 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 0 TD /F4 9.75 Tf
0.1239 Tc (integrity) Tj
34.5 0 TD /F0 9.75 Tf
0.1316 Tc -0.2171 Tw (, and ) Tj
25.5 0 TD /F4 9.75 Tf
0.1277 Tc 0 Tw (availability) Tj
45.75 0 TD /F0 9.75 Tf
0.0395 Tc (.It) Tj
-330 -11.25 TD 0.0684 Tc 0.1461 Tw (is intended to ensure that a system resists potentially correlated ) Tj
284.25 0 TD 0 0 1 rg
0.1946 Tc 0 Tw (attacks) Tj
32.25 0 TD 0 0 0 rg
0.2895 Tc (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (7) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 279 0.75 0.75 re f
63 279 143.25 0.75 re f
206.25 279 0.75 0.75 re f
207 279 350.25 0.75 re f
557.25 279 0.75 0.75 re f
62.25 211.5 0.75 67.5 re f
206.25 211.5 0.75 67.5 re f
557.25 211.5 0.75 67.5 re f
BT
68.25 197.25 TD
0.0633 Tc 0.2262 Tw (Security Architecture) Tj
144 -0.75 TD 0.0098 Tc 0.2797 Tw (A plan and set of principles for an ) Tj
150.75 0 TD 0 0 1 rg
0.0821 Tc 0.2074 Tw (administrative domain) Tj
96.75 0 TD 0 0 0 rg
0.0395 Tc 0.5 Tw ( and its ) Tj
36 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
-283.5 -11.25 TD -0.0136 Tc (domains) Tj
37.5 0 TD 0 0 0 rg
0.0514 Tc 0.0881 Tw ( that describe \(a\) the ) Tj
94.5 0 TD 0 0 1 rg
0.0255 Tc 0.264 Tw (security services) Tj
73.5 0 TD 0 0 0 rg
0.098 Tc 0.1915 Tw ( that a system is required to) Tj
-205.5 -11.25 TD 0.0788 Tc 0.2107 Tw (provide to meet the needs of its users, \(b\) the system elements required to) Tj
0 -12 TD 0.0714 Tc 0.2181 Tw (implement the services, and \(c\) the performance levels required in the) Tj
0 -11.25 TD 0.0957 Tc 0.1938 Tw (elements to deal with the threat environment. A complete system security) Tj
T* 0.0991 Tc 0.1904 Tw (architecture addresses administrative security, communication security,) Tj
0 -12 TD 0.0888 Tc 0.2007 Tw (computer security, emanations security, personnel security, and physical) Tj
0 -11.25 TD 0.0506 Tc 0.2389 Tw (security. It prescribes ) Tj
96.75 0 TD 0 0 1 rg
0.0409 Tc 0.2486 Tw (security policies) Tj
70.5 0 TD 0 0 0 rg
0.085 Tc 0.2045 Tw ( for each. A complete security) Tj
-167.25 -11.25 TD 0.0704 Tc 0.2191 Tw (architecture needs to deal with both intentional, intelligent ) Tj
256.5 0 TD 0 0 1 rg
0.1349 Tc 0 Tw (threats) Tj
30.75 0 TD 0 0 0 rg
-0.171 Tc 0.4605 Tw ( and) Tj
-287.25 -12 TD 0.0726 Tc 0.2169 Tw (accidental kinds of threats. A security architecture should explicitly evolve) Tj
0 -11.25 TD 0.0648 Tc 0.2247 Tw (over time as an integral part of its administrative domain\222s evolution. ) Tj
303 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 210.75 0.75 0.75 re f
63 210.75 143.25 0.75 re f
206.25 210.75 0.75 0.75 re f
207 210.75 350.25 0.75 re f
557.25 210.75 0.75 0.75 re f
62.25 75 0.75 135.75 re f
62.25 74.25 0.75 0.75 re f
62.25 74.25 0.75 0.75 re f
63 74.25 143.25 0.75 re f
206.25 75 0.75 135.75 re f
206.25 74.25 0.75 0.75 re f
207 74.25 350.25 0.75 re f
557.25 75 0.75 135.75 re f
557.25 74.25 0.75 0.75 re f
557.25 74.25 0.75 0.75 re f
endstream
endobj
68 0 obj
12254
endobj
66 0 obj
<<
/Type /Page
/Parent 57 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 67 0 R
>>
endobj
70 0 obj
<<
/Length 71 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (17) Tj
-231 696.75 TD /F0 9.75 Tf
0.0821 Tc 0.2074 Tw (Security Assertion) Tj
144 -4.5 TD /F1 14.25 Tf
0.2932 Tc 0.2453 Tw (? ) Tj
12.75 0 TD /F0 9.75 Tf
0.0379 Tc -0.4984 Tw (An ) Tj
15 0 TD 0 0 1 rg
0.0216 Tc 0 Tw (assertion) Tj
39.75 0 TD 0 0 0 rg
0.1351 Tc 0.1544 Tw ( that is typically ) Tj
72 0 TD 0 0 1 rg
-0.0087 Tc 0 Tw (scrutinized) Tj
46.5 0 TD 0 0 0 rg
0.0417 Tc 0.1228 Tw ( in the context of a ) Tj
84.75 0 TD 0 0 1 rg
0.1064 Tc 0.1831 Tw (security policy) Tj
63 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 708 0.75 25.5 re f
206.25 708 0.75 25.5 re f
557.25 708 0.75 25.5 re f
BT
68.25 693 TD
0.121 Tc 0.1685 Tw (Security Domain) Tj
144 0 TD 0.0541 Tc 0.3292 Tw (An environment or context that is defined by ) Tj
198 0 TD 0 0 1 rg
0.0409 Tc 0.2486 Tw (security policies) Tj
70.5 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (, ) Tj
6 0 TD /F4 9.75 Tf
0.1139 Tc (security) Tj
-274.5 -12 TD 0.0126 Tc (models) Tj
31.5 0 TD /F0 9.75 Tf
0.0711 Tc -0.0316 Tw (, and a ) Tj
33.75 0 TD 0 0 1 rg
0.1239 Tc 0.1656 Tw (security architecture) Tj
89.25 0 TD 0 0 0 rg
0.0317 Tc 0.1078 Tw (, including a set of ) Tj
83.25 0 TD 0 0 1 rg
0.0879 Tc 0.2016 Tw (system resources) Tj
78.75 0 TD 0 0 0 rg
0.329 Tc -0.0395 Tw ( and) Tj
-316.5 -11.25 TD -0.0276 Tc -0.0579 Tw (set of ) Tj
27 0 TD 0 0 1 rg
0.0881 Tc 0.2014 Tw (system entities) Tj
66.75 0 TD 0 0 0 rg
-0.0503 Tc 0.0898 Tw ( that are ) Tj
39 0 TD 0 0 1 rg
0.0227 Tc 0 Tw (authorized) Tj
45.75 0 TD 0 0 0 rg
0.0592 Tc -0.1447 Tw ( to ) Tj
14.25 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
0.1173 Tc 0.1721 Tw ( the resources. An) Tj
-224.25 -11.25 TD 0 0 1 rg
0.1196 Tc 0.1699 Tw (administrative domain) Tj
96.75 0 TD 0 0 0 rg
0.061 Tc 0.3118 Tw ( may contain one or more security domains. The traits) Tj
-96.75 -11.25 TD 0.0795 Tc 0.21 Tw (defining a given security domain typically evolve over time. ) Tj
262.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 707.25 0.75 0.75 re f
63 707.25 143.25 0.75 re f
206.25 707.25 0.75 0.75 re f
207 707.25 350.25 0.75 re f
557.25 707.25 0.75 0.75 re f
62.25 639.75 0.75 67.5 re f
206.25 639.75 0.75 67.5 re f
557.25 639.75 0.75 67.5 re f
BT
68.25 624.75 TD
0.0701 Tc 0.2194 Tw (Security Mechanism) Tj
144 0 TD 0.0691 Tc 0.2204 Tw (The logic or algorithm that implements a particular security-enforcing or) Tj
0 -11.25 TD 0.0701 Tc 0.3444 Tw (security-relevant function in hardware and software. ) Tj
231.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 639 0.75 0.75 re f
63 639 143.25 0.75 re f
206.25 639 0.75 0.75 re f
207 639 350.25 0.75 re f
557.25 639 0.75 0.75 re f
62.25 606 0.75 33 re f
206.25 606 0.75 33 re f
557.25 606 0.75 33 re f
BT
68.25 591.75 TD
0.079 Tc 0.2105 Tw (Security Object) Tj
144 0 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.1099 Tc 0.1796 Tw (system entity ) Tj
61.5 0 TD 0 0 0 rg
-0.0855 Tc 0 Tw (in a ) Tj
18.75 0 TD 0 0 1 rg
0.0177 Tc -0.1032 Tw (passive role ) Tj
55.5 0 TD 0 0 0 rg
-0.0279 Tc 0.0674 Tw (to which a ) Tj
47.25 0 TD 0 0 1 rg
0.16 Tc 0.1295 Tw (security policy ) Tj
66.75 0 TD 0 0 0 rg
0.0189 Tc 0.2706 Tw (applies. ) Tj
36.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (19) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 605.25 0.75 0.75 re f
63 605.25 143.25 0.75 re f
206.25 605.25 0.75 0.75 re f
207 605.25 350.25 0.75 re f
557.25 605.25 0.75 0.75 re f
62.25 584.25 0.75 21 re f
206.25 584.25 0.75 21 re f
557.25 584.25 0.75 21 re f
BT
68.25 569.25 TD
0.073 Tc 0.2164 Tw (Security Package) Tj
144 -1.5 TD /F1 12 Tf
0.168 Tc 0 Tw (?) Tj
7.5 0 TD /F0 9.75 Tf
-0.0713 Tc 0.1733 Tw ( one or more ) Tj
58.5 0 TD 0 0 1 rg
0.0822 Tc 0.2072 Tw (security assertions) Tj
83.25 0 TD 0 0 0 rg
-0.2089 Tc 0.1234 Tw ( or ) Tj
14.25 0 TD 0 0 1 rg
0.1462 Tc 0 Tw (credentials) Tj
48.75 0 TD 0 0 0 rg
0.0989 Tc 0.1906 Tw ( combined into a single) Tj
-212.25 -12 TD 0.0799 Tc 0.1024 Tw (overall, for example, MIME-encoded data structure, or ) Tj
241.5 0 TD 0 0 1 rg
0.0921 Tc 0 Tw (package) Tj
37.5 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 583.5 0.75 0.75 re f
63 583.5 143.25 0.75 re f
206.25 583.5 0.75 0.75 re f
207 583.5 350.25 0.75 re f
557.25 583.5 0.75 0.75 re f
62.25 548.25 0.75 35.25 re f
206.25 548.25 0.75 35.25 re f
557.25 548.25 0.75 35.25 re f
BT
68.25 534 TD
0.1192 Tc 0.1703 Tw (Security Perimeter) Tj
144 0 TD 0.0179 Tc 0.0841 Tw (The boundary of a ) Tj
83.25 0 TD 0 0 1 rg
0.0851 Tc 0.2044 Tw (security domain) Tj
69.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 547.5 0.75 0.75 re f
63 547.5 143.25 0.75 re f
206.25 547.5 0.75 0.75 re f
207 547.5 350.25 0.75 re f
557.25 547.5 0.75 0.75 re f
62.25 526.5 0.75 21 re f
206.25 526.5 0.75 21 re f
557.25 526.5 0.75 21 re f
BT
68.25 511.5 TD
0.1271 Tc 0.1624 Tw (Security Policy) Tj
144 0 TD 0.0631 Tc 0.2264 Tw (A set of rules and practices specifying the \223who, what, when, why, where,) Tj
0 -11.25 TD 0.0252 Tc 0.0143 Tw (and how\224 of ) Tj
54.75 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
0.0592 Tc -0.1447 Tw ( to ) Tj
14.25 0 TD 0 0 1 rg
-0.0121 Tc 0.3016 Tw (system resources) Tj
77.25 0 TD 0 0 0 rg
0.102 Tc 0.1875 Tw ( by ) Tj
16.5 0 TD 0 0 1 rg
0.1417 Tc 0.1478 Tw (system entities ) Tj
69.75 0 TD 0 0 0 rg
-0.0574 Tc 0.3469 Tw (\(often, but not) Tj
-264 -12 TD 0.0471 Tc 0.1352 Tw (always, involving or acting on behalf of ) Tj
174 0 TD /F4 9.75 Tf
-0.0033 Tc 0 Tw (people) Tj
30 0 TD /F0 9.75 Tf
0.098 Tc 0.1915 Tw (\). Significant portions of) Tj
-204 -11.25 TD 0.0469 Tc 0.2426 Tw (security policies are implemented via ) Tj
165.75 0 TD 0 0 1 rg
0.0724 Tc 0.2171 Tw (security services) Tj
74.25 0 TD 0 0 0 rg
0.0489 Tc 0.2406 Tw (. Security policies are) Tj
-240 -11.25 TD 0.0842 Tc -0.1697 Tw (components of ) Tj
68.25 0 TD 0 0 1 rg
0.0644 Tc 0.2251 Tw (security architectures) Tj
94.5 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 525.75 0.75 0.75 re f
63 525.75 143.25 0.75 re f
206.25 525.75 0.75 0.75 re f
207 525.75 350.25 0.75 re f
557.25 525.75 0.75 0.75 re f
62.25 458.25 0.75 67.5 re f
206.25 458.25 0.75 67.5 re f
557.25 458.25 0.75 67.5 re f
BT
68.25 444 TD
0.1174 Tc 0.172 Tw (Security Requirements) Tj
144 -0.75 TD 0.0544 Tc 0.3185 Tw (The types and levels of protection necessary for equipment, data,) Tj
0 -11.25 TD 0.0713 Tc 0.2182 Tw (information, applications, and facilities to meet ) Tj
207 0 TD 0 0 1 rg
0.1064 Tc 0.1831 Tw (security policy) Tj
63 0 TD 0 0 0 rg
0.0205 Tc 0.269 Tw ( [given the) Tj
-270 -11.25 TD -0.0266 Tc 0.0661 Tw (results of a ) Tj
51 0 TD 0 0 1 rg
0.1768 Tc 0.1127 Tw (risk analysis) Tj
55.5 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (]. ) Tj
8.25 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 457.5 0.75 0.75 re f
63 457.5 143.25 0.75 re f
206.25 457.5 0.75 0.75 re f
207 457.5 350.25 0.75 re f
557.25 457.5 0.75 0.75 re f
62.25 413.25 0.75 44.25 re f
206.25 413.25 0.75 44.25 re f
557.25 413.25 0.75 44.25 re f
BT
68.25 399 TD
0.0851 Tc 0.2044 Tw (Security Service) Tj
144 -0.75 TD 0.0723 Tc 0.0297 Tw (A processing or communication ) Tj
141.75 0 TD 0 0 1 rg
0.0888 Tc -0.5493 Tw (service ) Tj
34.5 0 TD 0 0 0 rg
0.0327 Tc 0.2568 Tw (that is provided by a system to give) Tj
-176.25 -11.25 TD 0.0506 Tc 0.1139 Tw (a specific kind of protection to ) Tj
134.25 0 TD 0 0 1 rg
0.0379 Tc 0.2516 Tw (system resources) Tj
78 0 TD 0 0 0 rg
0.0517 Tc 0.2377 Tw (, where said resources may) Tj
-212.25 -11.25 TD 0.0575 Tc 0.3002 Tw (reside with said system or reside with other systems. E.g. an ) Tj
271.5 0 TD 0 0 1 rg
0.0033 Tc 0 Tw (authentication) Tj
-271.5 -12 TD 0 0 0 rg
0.0857 Tc 0.2038 Tw (service, a PKI-based document attribution & authentication service. Security) Tj
0 -11.25 TD 0.0307 Tc 0.2588 Tw (Service describes a superset of ) Tj
141.75 0 TD 0 0 1 rg
0.0215 Tc 0.268 Tw (AAA services) Tj
59.25 0 TD 0 0 0 rg
0.1307 Tc 0.1588 Tw (. Security services typically) Tj
-201 -11.25 TD 0.0774 Tc -0.0379 Tw (implement portions of ) Tj
98.25 0 TD 0 0 1 rg
0.0409 Tc 0.2486 Tw (security policies) Tj
70.5 0 TD 0 0 0 rg
0.0318 Tc 0.2577 Tw (, and are implemented via ) Tj
117.75 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
-286.5 -11.25 TD 0.0783 Tc (mechanisms) Tj
55.5 0 TD 0 0 0 rg
0.2895 Tc (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 412.5 0.75 0.75 re f
63 412.5 143.25 0.75 re f
206.25 412.5 0.75 0.75 re f
207 412.5 350.25 0.75 re f
557.25 412.5 0.75 0.75 re f
62.25 322.5 0.75 90 re f
206.25 322.5 0.75 90 re f
557.25 322.5 0.75 90 re f
BT
68.25 307.5 TD
0.0845 Tc 0.205 Tw (Security Subject) Tj
144 0 TD 0.0379 Tc -0.4984 Tw (An ) Tj
15 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
-0.1069 Tc 0.1464 Tw ( in an ) Tj
27 0 TD 0 0 1 rg
0.028 Tc 0.2615 Tw (active role) Tj
45 0 TD 0 0 0 rg
0.0658 Tc 0.0362 Tw ( to which a ) Tj
51 0 TD 0 0 1 rg
0.1064 Tc 0.1831 Tw (security policy) Tj
63 0 TD 0 0 0 rg
0.1127 Tc 0.1768 Tw ( applies. ) Tj
40.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (19) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 321.75 0.75 0.75 re f
63 321.75 143.25 0.75 re f
206.25 321.75 0.75 0.75 re f
207 321.75 350.25 0.75 re f
557.25 321.75 0.75 0.75 re f
62.25 300.75 0.75 21 re f
206.25 300.75 0.75 21 re f
557.25 300.75 0.75 21 re f
BT
68.25 285.75 TD
-0.0356 Tc (Server) Tj
144 0 TD 0.0396 Tc 0.2499 Tw (A process or set of processes running on a ) Tj
192.75 0 TD 0 0 1 rg
0.0806 Tc 0.2089 Tw (host ) Tj
21.75 0 TD 0 0 0 rg
0.0288 Tc 0.0107 Tw (that provide a ) Tj
63 0 TD 0 0 1 rg
0.0522 Tc 0 Tw (network) Tj
-277.5 -11.25 TD 0.0888 Tc (service) Tj
30.75 0 TD 0 0 0 rg
0.0391 Tc 0.2504 Tw (. See also ) Tj
48 0 TD 0 0 1 rg
0.074 Tc 0.2155 Tw (Server Host) Tj
52.5 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 300 0.75 0.75 re f
63 300 143.25 0.75 re f
206.25 300 0.75 0.75 re f
207 300 350.25 0.75 re f
557.25 300 0.75 0.75 re f
62.25 267 0.75 33 re f
206.25 267 0.75 33 re f
557.25 267 0.75 33 re f
BT
68.25 252 TD
-0.001 Tc 1.0405 Tw (Server Host) Tj
144 0 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.0806 Tc 0 Tw (host) Tj
18.75 0 TD 0 0 0 rg
-0.0855 Tc 0.1875 Tw ( on which a ) Tj
52.5 0 TD 0 0 1 rg
0.1776 Tc 0.1119 Tw (network service) Tj
69.75 0 TD 0 0 0 rg
0.0369 Tc 0.3463 Tw ( is being run. For example, the host upon) Tj
-150.75 -11.25 TD -0.057 Tc -0.0285 Tw (which a ) Tj
36.75 0 TD 0 0 1 rg
0.0037 Tc 0.2858 Tw (web server) Tj
48 0 TD 0 0 0 rg
0.0547 Tc 0.2348 Tw ( is being run is one kind of a server host, referred to in) Tj
-84.75 -12 TD 0.0708 Tc 0.0311 Tw (this glossary as a ) Tj
80.25 0 TD 0 0 1 rg
0.085 Tc 0.2045 Tw (web server host) Tj
70.5 0 TD 0 0 0 rg
0.0609 Tc 0.2286 Tw (. Hosts regarded as server hosts are) Tj
-150.75 -11.25 TD /F4 9.75 Tf
-0.0811 Tc 1.1206 Tw (typically not) Tj
51.75 0 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F4 9.75 Tf
0.1186 Tc 0.1709 Tw (used simultaneously) Tj
90 0 TD /F0 9.75 Tf
0.102 Tc 0.1875 Tw ( as ) Tj
16.5 0 TD 0 0 1 rg
0.0817 Tc 0.2078 Tw (end users\222 computers) Tj
96 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (, ) Tj
6 0 TD /F4 9.75 Tf
0.1797 Tc 0.1098 Tw (but may be) Tj
49.5 0 TD /F0 9.75 Tf
0.2895 Tc 0 Tw (.) Tj
ET
62.25 266.25 0.75 0.75 re f
63 266.25 143.25 0.75 re f
206.25 266.25 0.75 0.75 re f
207 266.25 350.25 0.75 re f
557.25 266.25 0.75 0.75 re f
62.25 210.75 0.75 55.5 re f
206.25 210.75 0.75 55.5 re f
557.25 210.75 0.75 55.5 re f
BT
68.25 195.75 TD
0.0705 Tc (Service) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.2136 Tc 0.0759 Tw (Network Service) Tj
72.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 210 0.75 0.75 re f
63 210 143.25 0.75 re f
206.25 210 0.75 0.75 re f
207 210 350.25 0.75 re f
557.25 210 0.75 0.75 re f
62.25 189 0.75 21 re f
206.25 189 0.75 21 re f
557.25 189 0.75 21 re f
BT
68.25 174 TD
0.3002 Tc (Site) Tj
144 -0.75 TD 0.0549 Tc 0.1409 Tw (A term commonly used to refer to an ) Tj
164.25 0 TD 0 0 1 rg
0.0821 Tc 0.2074 Tw (administrative domain) Tj
96.75 0 TD 0 0 0 rg
0.0783 Tc 0.2112 Tw ( in geographical) Tj
-261 -11.25 TD 0.0323 Tc 0.4072 Tw (and/or DNS name sense. Thus ) Tj
139.5 0 TD /F4 9.75 Tf
0.3322 Tc 0 Tw (site) Tj
15.75 0 TD /F0 9.75 Tf
0.0628 Tc 0.2267 Tw ( may refer to a particular geographical) Tj
-155.25 -11.25 TD 0.0643 Tc 0.2252 Tw (and/or topological subportion of an administrative domain, or, a site may) Tj
0 -11.25 TD 0.0656 Tc 0.1557 Tw (contain multiple administrative domains, as may be the case at an ) Tj
294 0 TD 0 0 1 rg
0.2468 Tc 0 Tw (ASP) Tj
20.25 0 TD 0 0 0 rg
0.0237 Tc 0.2658 Tw ( site.) Tj
ET
62.25 187.5 0.75 0.75 re f
63 187.5 143.25 0.75 re f
206.25 187.5 0.75 0.75 re f
207 187.5 350.25 0.75 re f
557.25 187.5 0.75 0.75 re f
62.25 132 0.75 55.5 re f
206.25 132 0.75 55.5 re f
557.25 132 0.75 55.5 re f
BT
68.25 117 TD
0.0537 Tc 0 Tw (Site-specific) Tj
144 0 TD 0.0766 Tc 0.2129 Tw (A thing or a thing\222s deployment configuration that is tailored on a site-by-site) Tj
0 -11.25 TD 0.0795 Tc 0.21 Tw (basis. For example, ) Tj
90 0 TD /F4 9.75 Tf
0.2895 Tc 0 Tw (how) Tj
17.25 0 TD /F0 9.75 Tf
-0.171 Tc 0.4605 Tw ( a ) Tj
12 0 TD 0 0 1 rg
0.3322 Tc 0 Tw (site) Tj
15.75 0 TD 0 0 0 rg
0.021 Tc 0.5185 Tw ( configures and performs load balancing of) Tj
-135 -12 TD 0.08 Tc 0.2095 Tw (incoming HTTP requests to ) Tj
124.5 0 TD 0 0 1 rg
0.0522 Tc 0.2373 Tw (web server hosts) Tj
75 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F4 9.75 Tf
0.1357 Tc 0.1537 Tw (is site-specific) Tj
63 0 TD /F0 9.75 Tf
-0.0214 Tc 0.3109 Tw (. From a) Tj
-265.5 -11.25 TD 0.079 Tc 0.2105 Tw (vendor\222s perspective, site-specific decisions are usually made at ) Tj
286.5 0 TD 0 0 1 rg
0.0602 Tc 0 Tw (deployment) Tj
-286.5 -11.25 TD 0.0831 Tc (time) Tj
18.75 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 131.25 0.75 0.75 re f
63 131.25 143.25 0.75 re f
206.25 131.25 0.75 0.75 re f
207 131.25 350.25 0.75 re f
557.25 131.25 0.75 0.75 re f
62.25 64.5 0.75 66.75 re f
62.25 63.75 0.75 0.75 re f
62.25 63.75 0.75 0.75 re f
63 63.75 143.25 0.75 re f
206.25 64.5 0.75 66.75 re f
206.25 63.75 0.75 0.75 re f
207 63.75 350.25 0.75 re f
557.25 64.5 0.75 66.75 re f
557.25 63.75 0.75 0.75 re f
557.25 63.75 0.75 0.75 re f
endstream
endobj
71 0 obj
15290
endobj
69 0 obj
<<
/Type /Page
/Parent 57 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 70 0 R
>>
endobj
73 0 obj
<<
/Length 74 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (18) Tj
-231 696.75 TD /F0 9.75 Tf
-0.0062 Tc (SSL/TCP/IP) Tj
144 -0.75 TD 0.0815 Tc 0.208 Tw (A shorthand notation denoting a protocol stack consisting of the SSL) Tj
0 -11.25 TD 0.0659 Tc 0.2986 Tw (session layer running over the TCP/IP layers. An application layer protocol,) Tj
T* 0.0518 Tc 0.2846 Tw (e.g. LDAP or HTTP, is typically run on top of the SSL layer \(which in turn is) Tj
0 -12 TD 0.0291 Tc 0.5331 Tw (running on top of TCP/IP\), and uses that layer \(SSL\) for end-to-end) Tj
0 -11.25 TD 0.0849 Tc -0.5454 Tw (connection ) Tj
51 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
34.5 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 666 0.75 67.5 re f
206.25 666 0.75 67.5 re f
557.25 666 0.75 67.5 re f
BT
68.25 651.75 TD
0.0691 Tc (Subject) Tj
144 -3.75 TD /F1 14.25 Tf
0.2932 Tc 0.2453 Tw (? ) Tj
12.75 0 TD /F0 9.75 Tf
-0.0021 Tc -0.0834 Tw (An identifiable ) Tj
65.25 0 TD 0 0 1 rg
0.1162 Tc 0 Tw (entity) Tj
24 0 TD 0 0 0 rg
0.0391 Tc 0 Tw (. See also ) Tj
47.25 0 TD 0 0 1 rg
0.1015 Tc 0.1879 Tw (security subject) Tj
69 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
1 1 0 rg
212.25 623.25 335.25 11.25 re f
BT
212.25 625.5 TD
0 0 0 rg
0.0548 Tc 0.2347 Tw (We will likely be describing a subject in terms of a principal, e.g. a subject of) Tj
ET
1 1 0 rg
212.25 612 302.25 11.25 re f
BT
212.25 614.25 TD
0 0 0 rg
0.0643 Tc 0.2252 Tw (a PK certificate identifies the principal the certificate binds the PK to.) Tj
ET
62.25 666 0.75 0.75 re f
63 666 143.25 0.75 re f
206.25 666 0.75 0.75 re f
207 666 350.25 0.75 re f
557.25 666 0.75 0.75 re f
62.25 607.5 0.75 58.5 re f
206.25 607.5 0.75 58.5 re f
557.25 607.5 0.75 58.5 re f
BT
68.25 591.75 TD
0.2072 Tc 0 Tw (System) Tj
144 0 TD 0.0566 Tc 0.3079 Tw (\(a\) A specific IT installation, with a particular purpose and operational) Tj
0 -11.25 TD 0.1162 Tc 0 Tw (environment.) Tj
0 -21.75 TD 0.0736 Tc 0.2159 Tw (\(b\) An assembly of computer and/or communications hardware, software,) Tj
0 -11.25 TD 0.0498 Tc 0.4064 Tw (and firmware configured for the purpose of classifying, sorting, calculating,) Tj
0 -12 TD 0.0789 Tc 0.2106 Tw (computing, summarizing, transmitting, receiving, storing, and retrieving) Tj
0 -11.25 TD 0.081 Tc 0.2085 Tw (data, with the purpose of supporting users.) Tj
0 -21.75 TD 0.0683 Tc 0.2212 Tw (\(c\) IT products assembled together - either directly or with additional) Tj
0 -11.25 TD 0.0948 Tc 0.278 Tw (computer hardware, software, and/or firmware - configured to perform a) Tj
T* 0.0731 Tc 0.3414 Tw (particular function within a particular operational environment.) Tj
0 -21.75 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (35) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
-0.0733 Tc 0.1753 Tw ( by way of ) Tj
47.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 606 0.75 0.75 re f
63 606 143.25 0.75 re f
206.25 606 0.75 0.75 re f
207 606 350.25 0.75 re f
557.25 606 0.75 0.75 re f
62.25 451.5 0.75 154.5 re f
206.25 451.5 0.75 154.5 re f
557.25 451.5 0.75 154.5 re f
BT
68.25 436.5 TD
0.1966 Tc 0.0929 Tw (System Entity) Tj
144 0 TD 0.0347 Tc 0.1048 Tw (An active element of a ) Tj
101.25 0 TD 0 0 1 rg
0.2286 Tc 0 Tw (system) Tj
32.25 0 TD 0 0 0 rg
0.0447 Tc 0.2448 Tw (--e.g., an automated process or set of) Tj
-133.5 -12 TD 0.0742 Tc 0.2903 Tw (processes, a subsystem, a person or group of persons--that incorporates a) Tj
0 -11.25 TD 0.0739 Tc 0.2156 Tw (specific set of capabilities. ) Tj
118.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (33) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
1 1 0 rg
212.25 389.25 304.5 11.25 re f
BT
212.25 391.5 TD
0 0 0 rg
0.0606 Tc 0.2289 Tw (JeffH wonders if we shouldn\222t use a phrase other than \223specific set of) Tj
ET
1 1 0 rg
212.25 378 338.25 11.25 re f
BT
212.25 380.25 TD
0 0 0 rg
0.055 Tc 0.3027 Tw (capabilities here because the latter might be confused with capabilities in the) Tj
ET
1 1 0 rg
212.25 366.75 334.5 11.25 re f
BT
212.25 369 TD
0 0 0 rg
0.072 Tc 0.3112 Tw (access control mechanism sense rather than generic capabilities something) Tj
ET
1 1 0 rg
212.25 355.5 189 11.25 re f
BT
212.25 357.75 TD
0 0 0 rg
0.0782 Tc 0.2113 Tw (like a system entity might have or embody.) Tj
ET
62.25 450.75 0.75 0.75 re f
63 450.75 143.25 0.75 re f
206.25 450.75 0.75 0.75 re f
207 450.75 350.25 0.75 re f
557.25 450.75 0.75 0.75 re f
62.25 350.25 0.75 100.5 re f
206.25 350.25 0.75 100.5 re f
557.25 350.25 0.75 100.5 re f
BT
68.25 335.25 TD
0.1088 Tc 0.1807 Tw (System Resource) Tj
144 -2.25 TD /F1 12.75 Tf
-0.2903 Tc 0 Tw (?) Tj
7.5 0 TD /F0 9.75 Tf
0.0443 Tc 0.3606 Tw ( \(a\) Data contained in an information system \(e.g. in the form of files,) Tj
-7.5 -12.75 TD 0.0525 Tc 0.112 Tw (information in memory, etc\); or a ) Tj
146.25 0 TD 0 0 1 rg
0.196 Tc 0 Tw (service) Tj
31.5 0 TD 0 0 0 rg
0.1236 Tc 0.1659 Tw ( provided by a system; or a system) Tj
-177.75 -11.25 TD 0.0973 Tc 0.1922 Tw (capability, such as processing power or communication bandwidth; or an) Tj
0 -11.25 TD 0.0695 Tc 0.22 Tw (item of system equipment \(i.e., a system component--hardware, firmware,) Tj
0 -12 TD 0.0732 Tc 0.2163 Tw (software, or documentation\); or a facility that houses system operations and) Tj
0 -11.25 TD 0.1267 Tc 0.1628 Tw (equipment. ) Tj
52.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
-60.75 -21 TD 0 0 0 rg
0.0557 Tc 0.4005 Tw (\(b\) Anything used or consumed while performing a function. ) Tj
267 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
-275.25 -21.75 TD 0 0 0 rg
0.0597 Tc 0.2298 Tw (\(c\) Data contained in a system entity \(e.g. in the form of files, information in) Tj
0 -11.25 TD 0.0686 Tc 0.0334 Tw (memory, etc\); or a ) Tj
84 0 TD 0 0 1 rg
0.0888 Tc 0 Tw (service) Tj
30.75 0 TD 0 0 0 rg
0.1354 Tc 0.1541 Tw ( provided by a system entity;) Tj
-114.75 -21.75 TD -0.2467 Tc 0 Tw (---) Tj
ET
1 1 0 rg
212.25 184.5 333.75 12 re f
BT
212.25 186.75 TD
0 0 0 rg
0.035 Tc 0.3699 Tw (JeffH feels that \(a\) and \(b\) are essentially equivalent and we need to decide) Tj
ET
1 1 0 rg
212.25 173.25 40.5 11.25 re f
BT
212.25 175.5 TD
0 0 0 rg
0.0442 Tc 0 Tw (whether..) Tj
ET
1 1 0 rg
230.25 152.25 18 10.5 re f
BT
230.25 154.5 TD
0 0 0 rg
-0.3158 Tc (1.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
248.25 152.25 93.75 10.5 re f
BT
248.25 154.5 TD
0 0 0 rg
-0 Tc 0.29 Tw (we use \(a\) \223as is\224, or,) Tj
ET
1 1 0 rg
230.25 130.5 18 11.25 re f
BT
230.25 132.75 TD
0 0 0 rg
-0.3158 Tc 0 Tw (2.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
248.25 130.5 93.75 11.25 re f
BT
248.25 132.75 TD
0 0 0 rg
-0 Tc 0.29 Tw (we use \(b\) \223as is\224, or,) Tj
-18 -21.75 TD -0.3158 Tc 0 Tw (3.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
248.25 108.75 300.75 11.25 re f
BT
248.25 111 TD
0 0 0 rg
0.0553 Tc 0.2342 Tw (we create another definition, perhaps based upon \(a\) &| \(b\), e.g. \(c\),) Tj
ET
1 1 0 rg
248.25 97.5 57.75 11.25 re f
BT
248.25 99.75 TD
0 0 0 rg
0.0724 Tc 0.2171 Tw (and use that.) Tj
ET
62.25 349.5 0.75 0.75 re f
63 349.5 143.25 0.75 re f
206.25 349.5 0.75 0.75 re f
207 349.5 350.25 0.75 re f
557.25 349.5 0.75 0.75 re f
62.25 92.25 0.75 257.25 re f
62.25 91.5 0.75 0.75 re f
62.25 91.5 0.75 0.75 re f
63 91.5 143.25 0.75 re f
206.25 92.25 0.75 257.25 re f
206.25 91.5 0.75 0.75 re f
207 91.5 350.25 0.75 re f
557.25 92.25 0.75 257.25 re f
557.25 91.5 0.75 0.75 re f
557.25 91.5 0.75 0.75 re f
endstream
endobj
74 0 obj
8079
endobj
72 0 obj
<<
/Type /Page
/Parent 57 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
>>
/ProcSet 2 0 R
>>
/Contents 73 0 R
>>
endobj
77 0 obj
<<
/Length 78 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (19) Tj
-231 696.75 TD /F0 9.75 Tf
-0.0713 Tc (Target) Tj
144 -3 TD /F1 12.75 Tf
-0.2903 Tc (?) Tj
7.5 0 TD /F0 9.75 Tf
0.0448 Tc 0.1197 Tw ( \(a\) An entity to which ) Tj
99 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
0.063 Tc 0.039 Tw ( may be attempted ) Tj
85.5 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (10) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
-240 -22.5 TD -0.1044 Tc 0.3939 Tw (\(b\) A ) Tj
24 0 TD 0 0 1 rg
0.3216 Tc 0 Tw (resource) Tj
39 0 TD 0 0 0 rg
-0.171 Tc 0.0855 Tw ( an ) Tj
16.5 0 TD 0 0 1 rg
0.2412 Tc 0 Tw (entity) Tj
24.75 0 TD 0 0 0 rg
0.0977 Tc -0.0582 Tw ( attempts to ) Tj
55.5 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
30.75 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
1 1 0 rg
212.25 671.25 225 10.5 re f
BT
212.25 673.5 TD
0 0 0 rg
0.0214 Tc 0.3515 Tw (JeffH suspects sense \(b\) is the one we should use.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 666 0.75 67.5 re f
206.25 666 0.75 67.5 re f
557.25 666 0.75 67.5 re f
BT
68.25 651 TD
-0.0713 Tc 0 Tw (Threat) Tj
144 0 TD 0.0154 Tc 0.2741 Tw (A potential for violation of ) Tj
114.75 0 TD 0 0 1 rg
0.1139 Tc 0 Tw (security) Tj
34.5 0 TD 0 0 0 rg
0.0818 Tc 0.2077 Tw (, which exists when there is a) Tj
-149.25 -11.25 TD 0.075 Tc 0.2145 Tw (circumstance, capability, action, or event that could breach security and) Tj
0 -12 TD 0.0721 Tc 0.2174 Tw (cause harm. That is, a threat is a possible danger that might exploit a) Tj
0 -11.25 TD 0.0629 Tc 0.2266 Tw (vulnerability. A threat can be either "intentional" \(i.e., intelligent; e.g., an) Tj
T* 0.0644 Tc 0.3084 Tw (individual cracker or a criminal organization\) or "accidental" \(e.g., the) Tj
0 -12 TD 0.0529 Tc 0.2366 Tw (possibility of a computer malfunctioning, or the possibility of an "act of God") Tj
0 -11.25 TD 0.0607 Tc 0.2288 Tw (such as an earthquake, a fire, or a tornado\). ) Tj
197.25 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.0463 Tc 0.2432 Tw ( See especially ) Tj
72.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (8) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 665.25 0.75 0.75 re f
63 665.25 143.25 0.75 re f
206.25 665.25 0.75 0.75 re f
207 665.25 350.25 0.75 re f
557.25 665.25 0.75 0.75 re f
62.25 575.25 0.75 90 re f
206.25 575.25 0.75 90 re f
557.25 575.25 0.75 90 re f
BT
68.25 560.25 TD
-0.0993 Tc 0.7638 Tw (TCP or TCP/IP) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
21 0 TD 0 0 1 rg
0.0592 Tc 0.2303 Tw (Transmission Control Protocol) Tj
132.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 574.5 0.75 0.75 re f
63 574.5 143.25 0.75 re f
206.25 574.5 0.75 0.75 re f
207 574.5 350.25 0.75 re f
557.25 574.5 0.75 0.75 re f
62.25 553.5 0.75 21 re f
206.25 553.5 0.75 21 re f
557.25 553.5 0.75 21 re f
BT
68.25 538.5 TD
-0.0839 Tc (Ticket) Tj
144 -4.5 TD /F1 14.25 Tf
0.2932 Tc 0.2453 Tw (? ) Tj
12.75 0 TD /F0 9.75 Tf
0.0699 Tc -0.1554 Tw (Aka a ) Tj
28.5 0 TD 0 0 1 rg
0.0303 Tc 0 Tw (token) Tj
24 0 TD 0 0 0 rg
0.0692 Tc 0.314 Tw (. Specific example: Kerberos Tickets. See [RFC1510]. A) Tj
-65.25 -12 TD 0.2072 Tc 0.0822 Tw (ticket ) Tj
27 0 TD /F4 9.75 Tf
-0.1393 Tc 0 Tw (may) Tj
18 0 TD /F0 9.75 Tf
0.0423 Tc 0.0597 Tw ( be considered a ) Tj
76.5 0 TD 0 0 1 rg
0.0484 Tc 0 Tw (credential) Tj
42.75 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 552 0.75 0.75 re f
63 552 143.25 0.75 re f
206.25 552 0.75 0.75 re f
207 552 350.25 0.75 re f
557.25 552 0.75 0.75 re f
62.25 514.5 0.75 37.5 re f
206.25 514.5 0.75 37.5 re f
557.25 514.5 0.75 37.5 re f
BT
68.25 500.25 TD
-0.0191 Tc (Token) Tj
144 -3.75 TD /F1 14.25 Tf
0.2932 Tc (?) Tj
9 0 TD /F0 9.75 Tf
-0.0317 Tc 0.0712 Tw ( See ) Tj
26.25 0 TD 0 0 1 rg
-0.0428 Tc 0 Tw (ticket) Tj
23.25 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 513.75 0.75 0.75 re f
63 513.75 143.25 0.75 re f
206.25 513.75 0.75 0.75 re f
207 513.75 350.25 0.75 re f
557.25 513.75 0.75 0.75 re f
62.25 488.25 0.75 25.5 re f
206.25 488.25 0.75 25.5 re f
557.25 488.25 0.75 25.5 re f
BT
68.25 473.25 TD
0.0431 Tc (Unauthorized) Tj
144 0 TD 0.0209 Tc 0.0811 Tw (The opposite of a ) Tj
79.5 0 TD 0 0 1 rg
0.1724 Tc 0.1171 Tw (system entity) Tj
59.25 0 TD 0 0 0 rg
-0.2089 Tc 0.1234 Tw ( or ) Tj
14.25 0 TD 0 0 1 rg
0.0073 Tc 0 Tw (requester) Tj
41.25 0 TD 0 0 0 rg
0.1803 Tc -0.2658 Tw ( being ) Tj
30.75 0 TD 0 0 1 rg
0.1727 Tc 0 Tw (authorized) Tj
46.5 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 487.5 0.75 0.75 re f
63 487.5 143.25 0.75 re f
206.25 487.5 0.75 0.75 re f
207 487.5 350.25 0.75 re f
557.25 487.5 0.75 0.75 re f
62.25 466.5 0.75 21 re f
206.25 466.5 0.75 21 re f
557.25 466.5 0.75 21 re f
BT
68.25 451.5 TD
0.25 Tc (URL) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0858 Tc 0.2037 Tw (Uniform Resource Locator) Tj
116.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 465.75 0.75 0.75 re f
63 465.75 143.25 0.75 re f
206.25 465.75 0.75 0.75 re f
207 465.75 350.25 0.75 re f
557.25 465.75 0.75 0.75 re f
62.25 444.75 0.75 21 re f
206.25 444.75 0.75 21 re f
557.25 444.75 0.75 21 re f
BT
68.25 429.75 TD
-0.0831 Tc (User) Tj
144 -0.75 TD 0.0212 Tc 0.2683 Tw (\(a\) A corporeal human making use of ) Tj
167.25 0 TD 0 0 1 rg
0.0908 Tc 0.1987 Tw (network services ) Tj
77.25 0 TD 0 0 0 rg
0.1068 Tc 0.1827 Tw (and/or application\(s\)) Tj
-244.5 -11.25 TD 0.0498 Tc -0.0103 Tw (inhabiting a given ) Tj
80.25 0 TD 0 0 1 rg
0.0821 Tc 0.2074 Tw (administrative domain) Tj
97.5 0 TD 0 0 0 rg
0.0427 Tc 0.2467 Tw (\(s\), ) Tj
17.25 0 TD /F4 9.75 Tf
0.0029 Tc 0.2866 Tw (as a means) Tj
51.75 0 TD /F0 9.75 Tf
-0.0235 Tc 0.5005 Tw ( rather than as an) Tj
-246.75 -11.25 TD 0.0192 Tc 0.4203 Tw (end. \(based on \223user\224 from ) Tj
120.75 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (6) Tj
5.25 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
0.0073 Tc 0.0322 Tw (\). See also ) Tj
50.25 0 TD 0 0 1 rg
0.1979 Tc 0 Tw (Administrator) Tj
59.25 0 TD 0 0 0 rg
0.2895 Tc (, ) Tj
6 0 TD 0 0 1 rg
0.1532 Tc 0.1363 Tw (End User) Tj
41.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
-288.75 -21.75 TD 0.0692 Tc 0.2203 Tw (\(b\) A human individual that makes use of resources for application purposes) Tj
0 -11.25 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (33) Tj
10.5 0 TD 0.2895 Tc (]) Tj
-13.5 -21.75 TD 0 0 0 rg
-0.2467 Tc (---) Tj
ET
1 1 0 rg
212.25 338.25 333.75 11.25 re f
BT
212.25 340.5 TD
0 0 0 rg
0.035 Tc 0.3699 Tw (JeffH feels that \(a\) and \(b\) are essentially equivalent and we need to decide) Tj
ET
1 1 0 rg
212.25 327 40.5 11.25 re f
BT
212.25 329.25 TD
0 0 0 rg
0.0442 Tc 0 Tw (whether..) Tj
ET
1 1 0 rg
248.25 305.25 18 11.25 re f
BT
248.25 307.5 TD
0 0 0 rg
-0.3158 Tc (1.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
266.25 305.25 93.75 11.25 re f
BT
266.25 307.5 TD
0 0 0 rg
-0 Tc 0.29 Tw (we use \(a\) \223as is\224, or,) Tj
ET
1 1 0 rg
248.25 283.5 18 11.25 re f
BT
248.25 285.75 TD
0 0 0 rg
-0.3158 Tc 0 Tw (2.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
266.25 283.5 93.75 11.25 re f
BT
266.25 285.75 TD
0 0 0 rg
-0 Tc 0.29 Tw (we use \(b\) \223as is\224, or,) Tj
-18 -21 TD -0.3158 Tc 0 Tw (3.) Tj
8.25 0 TD 0 Tc 0.2895 Tw ( ) Tj
ET
1 1 0 rg
266.25 262.5 165 10.5 re f
BT
266.25 264.75 TD
0 0 0 rg
0.0557 Tc 0.2338 Tw (we blend the two definitions together.) Tj
ET
62.25 443.25 0.75 0.75 re f
63 443.25 143.25 0.75 re f
206.25 443.25 0.75 0.75 re f
207 443.25 350.25 0.75 re f
557.25 443.25 0.75 0.75 re f
62.25 257.25 0.75 186 re f
206.25 257.25 0.75 186 re f
557.25 257.25 0.75 186 re f
BT
68.25 242.25 TD
0.014 Tc 0.463 Tw (User Profile or User\222s Profile) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.0851 Tc 0.5794 Tw (End User Profile) Tj
72.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 256.5 0.75 0.75 re f
63 256.5 143.25 0.75 re f
206.25 256.5 0.75 0.75 re f
207 256.5 350.25 0.75 re f
557.25 256.5 0.75 0.75 re f
62.25 235.5 0.75 21 re f
206.25 235.5 0.75 21 re f
557.25 235.5 0.75 21 re f
BT
68.25 220.5 TD
0.0215 Tc 0.268 Tw (User Session) Tj
144 0 TD 0.0716 Tc 0.286 Tw (A \223container\224 for the authentication and attribute assertions that apply to a) Tj
0 -12 TD 0.0648 Tc 0.2247 Tw (given system entity through the principals incarnated by that entity. The) Tj
0 -11.25 TD 0.0631 Tc 0.2264 Tw (purpose is to maintain the relationship of the assertions to the initiating) Tj
T* 0.141 Tc 0.1485 Tw (entity. ) Tj
33 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (33) Tj
10.5 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 234.75 0.75 0.75 re f
63 234.75 143.25 0.75 re f
206.25 234.75 0.75 0.75 re f
207 234.75 350.25 0.75 re f
557.25 234.75 0.75 0.75 re f
62.25 179.25 0.75 55.5 re f
206.25 179.25 0.75 55.5 re f
557.25 179.25 0.75 55.5 re f
BT
68.25 164.25 TD
0.0858 Tc 0.5787 Tw (Uniform Resource Locator) Tj
144 -0.75 TD 0.0627 Tc 0.1331 Tw (Defined as \223a compact string representation for a ) Tj
219 0 TD 0 0 1 rg
0.2278 Tc 0 Tw (resource) Tj
39 0 TD 0 0 0 rg
0.0009 Tc 0.5386 Tw ( available via the) Tj
-258 -11.25 TD 0.0489 Tc -0.1344 Tw (Internet.\224 See ) Tj
63 0 TD 0 0 1 rg
0.2895 Tc 0 Tw ([) Tj
3 0 TD -0.171 Tc (21) Tj
10.5 0 TD 0.2895 Tc (]) Tj
3 0 TD 0 0 0 rg
(.) Tj
ET
62.25 177.75 0.75 0.75 re f
63 177.75 143.25 0.75 re f
206.25 177.75 0.75 0.75 re f
207 177.75 350.25 0.75 re f
557.25 177.75 0.75 0.75 re f
62.25 144.75 0.75 33 re f
206.25 144.75 0.75 33 re f
557.25 144.75 0.75 33 re f
BT
68.25 130.5 TD
0.0693 Tc (Vulnerability) Tj
144 0 TD 0.0757 Tc 0.282 Tw (A flaw or weakness in a system's design, implementation, or operation and) Tj
0 -12 TD 0.0489 Tc 0.4073 Tw (management that could be exploited to violate the system's ) Tj
264.75 0 TD 0 0 1 rg
0.1064 Tc 0.1831 Tw (security policy) Tj
63 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
-327.75 -11.25 TD 0 0 1 rg
([) Tj
3 0 TD -0.171 Tc (4) Tj
5.25 0 TD 0.2895 Tc (]) Tj
ET
0 0 0 rg
62.25 144.75 0.75 0.75 re f
63 144.75 143.25 0.75 re f
206.25 144.75 0.75 0.75 re f
207 144.75 350.25 0.75 re f
557.25 144.75 0.75 0.75 re f
62.25 100.5 0.75 44.25 re f
62.25 99.75 0.75 0.75 re f
62.25 99.75 0.75 0.75 re f
63 99.75 143.25 0.75 re f
206.25 100.5 0.75 44.25 re f
206.25 99.75 0.75 0.75 re f
207 99.75 350.25 0.75 re f
557.25 100.5 0.75 44.25 re f
557.25 99.75 0.75 0.75 re f
557.25 99.75 0.75 0.75 re f
endstream
endobj
78 0 obj
10800
endobj
75 0 obj
<<
/Type /Page
/Parent 76 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 77 0 R
>>
endobj
80 0 obj
<<
/Length 81 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (20) Tj
-231 696.75 TD /F0 9.75 Tf
0.1026 Tc 0.1869 Tw (Web-based Service) Tj
144 -0.75 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.0705 Tc 0.219 Tw (network service) Tj
68.25 0 TD 0 0 0 rg
-0.0599 Tc 0.3493 Tw ( where ) Tj
33 0 TD 0 0 1 rg
0.0907 Tc 0 Tw (requester) Tj
42 0 TD 0 0 0 rg
0.1435 Tc 0.146 Tw (s are typically ) Tj
64.5 0 TD 0 0 1 rg
0.1447 Tc 0.1447 Tw (web browser) Tj
56.25 0 TD 0 0 0 rg
0.2127 Tc 0.0768 Tw (s being) Tj
-273.75 -11.25 TD 0.0168 Tc 0.2727 Tw (wielded by ) Tj
49.5 0 TD 0 0 1 rg
0.0658 Tc 0 Tw (end-user) Tj
39 0 TD 0 0 0 rg
0.0811 Tc 0.3022 Tw (s, and where the content delivered to the end-users\222) Tj
-88.5 -11.25 TD -0.0221 Tc 0.3116 Tw (browsers via the ) Tj
75 0 TD 0 0 1 rg
0.0408 Tc 0.2487 Tw (web servers) Tj
54 0 TD 0 0 0 rg
0.101 Tc 0.1885 Tw ( is the network service\222s primary end-user) Tj
-129 -11.25 TD -0.0352 Tc 0 Tw (interface.) Tj
ET
62.25 733.5 0.75 0.75 re f
62.25 733.5 0.75 0.75 re f
63 733.5 143.25 0.75 re f
206.25 733.5 0.75 0.75 re f
207 733.5 350.25 0.75 re f
557.25 733.5 0.75 0.75 re f
557.25 733.5 0.75 0.75 re f
62.25 678 0.75 55.5 re f
206.25 678 0.75 55.5 re f
557.25 678 0.75 55.5 re f
BT
68.25 663 TD
0.0451 Tc 0.2444 Tw (Web Browser) Tj
144 0 TD 0.0786 Tc 0.2109 Tw (A software application used to locate and display web pages.) Tj
ET
62.25 677.25 0.75 0.75 re f
63 677.25 143.25 0.75 re f
206.25 677.25 0.75 0.75 re f
207 677.25 350.25 0.75 re f
557.25 677.25 0.75 0.75 re f
62.25 656.25 0.75 21 re f
206.25 656.25 0.75 21 re f
557.25 656.25 0.75 21 re f
BT
68.25 641.25 TD
0.1122 Tc 0.1773 Tw (Web Resource) Tj
144 0 TD 0.053 Tc 0.183 Tw (Any object \(e.g. a file \(e.g. a web page\), a program, or any other ) Tj
286.5 0 TD 0 0 1 rg
0.2286 Tc 0 Tw (system) Tj
-286.5 -12 TD 0.1341 Tc (resource) Tj
38.25 0 TD 0 0 0 rg
0.0597 Tc 0.1226 Tw (\) that is being made available to ) Tj
144 0 TD 0 0 1 rg
0.0441 Tc 0 Tw (requesters) Tj
47.25 0 TD 0 0 0 rg
-0.1579 Tc 0.4474 Tw ( via a ) Tj
27 0 TD 0 0 1 rg
0.1703 Tc 0.1192 Tw (web server) Tj
48.75 0 TD 0 0 0 rg
0.3152 Tc -0.0257 Tw (. Also) Tj
-305.25 -11.25 TD 0.0712 Tc 0.2183 Tw (known as \223web-accessible resource\224. The implication here is that one may) Tj
0 -11.25 TD 0.0459 Tc 0.0561 Tw (make reference to, and ) Tj
105 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
-0.0484 Tc 0.4629 Tw (, a web resource via a ) Tj
100.5 0 TD 0 0 1 rg
0 Tc 0 Tw (URL) Tj
19.5 0 TD 0 0 0 rg
0.2895 Tc (.) Tj
ET
62.25 655.5 0.75 0.75 re f
63 655.5 143.25 0.75 re f
206.25 655.5 0.75 0.75 re f
207 655.5 350.25 0.75 re f
557.25 655.5 0.75 0.75 re f
62.25 600 0.75 55.5 re f
206.25 600 0.75 55.5 re f
557.25 600 0.75 55.5 re f
BT
68.25 585 TD
-0.0011 Tc 0.2906 Tw (Web Server) Tj
144 -0.75 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.1107 Tc 0 Tw (server) Tj
27 0 TD 0 0 0 rg
0.0639 Tc 0.0756 Tw ( process running on a ) Tj
99 0 TD 0 0 1 rg
0.0987 Tc 0.1908 Tw (server host) Tj
49.5 0 TD 0 0 0 rg
0.0672 Tc -0.0277 Tw ( and answering ) Tj
70.5 0 TD 0 0 1 rg
0.1982 Tc 0 Tw (HTTP) Tj
26.25 0 TD 0 0 0 rg
-0.0018 Tc 0.2913 Tw ( requests \(at) Tj
-282 -11.25 TD 0.0638 Tc 0.0757 Tw (least\),and often also several other ) Tj
153 0 TD 0 0 1 rg
0.1049 Tc 0 Tw (protocols) Tj
40.5 0 TD 0 0 0 rg
0.1109 Tc 0.1786 Tw ( \(e.g. FTP, Gopher\). See also) Tj
-193.5 -11.25 TD 0 0 1 rg
0.1329 Tc 0.1566 Tw (HTTP Server) Tj
57.75 0 TD 0 0 0 rg
0.068 Tc 0.2215 Tw ( in [) Tj
16.5 0 TD -0.171 Tc 0 Tw (6) Tj
5.25 0 TD 0.0639 Tc 0.1506 Tw (]. A web server is typically used to implement a ) Tj
210.75 0 TD 0 0 1 rg
0.3429 Tc 0 Tw (web-) Tj
-290.25 -11.25 TD 0.0886 Tc 0.2009 Tw (based service) Tj
60.75 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 598.5 0.75 0.75 re f
63 598.5 143.25 0.75 re f
206.25 598.5 0.75 0.75 re f
207 598.5 350.25 0.75 re f
557.25 598.5 0.75 0.75 re f
62.25 543 0.75 55.5 re f
206.25 543 0.75 55.5 re f
557.25 543 0.75 55.5 re f
BT
68.25 528 TD
0.0149 Tc 0.6496 Tw (Web Server Host) Tj
144 0 TD 0.2468 Tc 0.0427 Tw (A ) Tj
9.75 0 TD 0 0 1 rg
0.0806 Tc 0 Tw (host) Tj
18.75 0 TD 0 0 0 rg
-0.0547 Tc 0.0942 Tw ( running a ) Tj
46.5 0 TD 0 0 1 rg
0.087 Tc 0.2025 Tw (web server) Tj
48.75 0 TD 0 0 0 rg
0.0519 Tc 0.1694 Tw ( that is in turn providing some or all of the ) Tj
186 0 TD 0 0 1 rg
0.0395 Tc 0 Tw (web) Tj
-309.75 -11.25 TD -0.0058 Tc (resources) Tj
43.5 0 TD 0 0 0 rg
0.0306 Tc 0.4089 Tw ( accessible via the web server.) Tj
ET
62.25 542.25 0.75 0.75 re f
63 542.25 143.25 0.75 re f
206.25 542.25 0.75 0.75 re f
207 542.25 350.25 0.75 re f
557.25 542.25 0.75 0.75 re f
62.25 509.25 0.75 33 re f
206.25 509.25 0.75 33 re f
557.25 509.25 0.75 33 re f
BT
68.25 495 TD
0.1447 Tc 0.1447 Tw (Web Service) Tj
144 0 TD -0.0317 Tc -0.4288 Tw (See ) Tj
20.25 0 TD 0 0 1 rg
0.1575 Tc 0.132 Tw (Web-based service) Tj
85.5 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
ET
62.25 508.5 0.75 0.75 re f
63 508.5 143.25 0.75 re f
206.25 508.5 0.75 0.75 re f
207 508.5 350.25 0.75 re f
557.25 508.5 0.75 0.75 re f
62.25 487.5 0.75 21 re f
206.25 487.5 0.75 21 re f
557.25 487.5 0.75 21 re f
BT
68.25 472.5 TD
0.2007 Tc 0.0888 Tw (Web Site) Tj
144 0 TD 0.044 Tc 0.0955 Tw (A web site is a ) Tj
67.5 0 TD 0 0 1 rg
0.1447 Tc -0.6053 Tw (site ) Tj
18.75 0 TD 0 0 0 rg
-0.1069 Tc -0.3536 Tw (and/or ) Tj
30 0 TD 0 0 1 rg
0.0821 Tc -0.1676 Tw (administrative domain ) Tj
100.5 0 TD 0 0 0 rg
0.0919 Tc 0.1976 Tw (providing at least ) Tj
78.75 0 TD 0 0 1 rg
-0.1768 Tc 0 Tw (HTTP) Tj
25.5 0 TD 0 0 0 rg
-0.2467 Tc (-) Tj
-321 -11.25 TD 0.0572 Tc -0.0177 Tw (\(and often FTP-based\) ) Tj
102.75 0 TD 0 0 1 rg
0.1408 Tc 0.1487 Tw (network services ) Tj
78 0 TD 0 0 0 rg
0.0409 Tc -0.1264 Tw (\(sometimes called ) Tj
83.25 0 TD 0 0 1 rg
0.0332 Tc 0.2563 Tw (web services) Tj
57.75 0 TD 0 0 0 rg
0.2072 Tc 0.0823 Tw (\) to) Tj
-321.75 -12 TD 0.0026 Tc 0.0369 Tw (some set of ) Tj
54 0 TD 0 0 1 rg
0.0322 Tc 0 Tw (users) Tj
24.75 0 TD 0 0 0 rg
0.0567 Tc 0.2328 Tw (, with perhaps additional ) Tj
110.25 0 TD 0 0 1 rg
0.1246 Tc 0.1649 Tw (services ) Tj
39.75 0 TD 0 0 0 rg
0.0583 Tc 0.2312 Tw (offered based on yet) Tj
-228.75 -11.25 TD 0.0543 Tc 0.4227 Tw (other protocols such as ) Tj
106.5 0 TD 0 0 1 rg
0.0083 Tc 0.2812 Tw (LDAP ) Tj
28.5 0 TD 0 0 0 rg
0.074 Tc 0.3405 Tw (. The distinguishing characteristic of a web) Tj
-135 -11.25 TD 0.0444 Tc 0.2451 Tw (site is that its users may make use of ) Tj
169.5 0 TD 0 0 1 rg
0.25 Tc 0 Tw (URL) Tj
19.5 0 TD 0 0 0 rg
0.0859 Tc 0.2036 Tw (s to make reference to, and also) Tj
-189 -11.25 TD 0.0592 Tc -0.5197 Tw (to ) Tj
11.25 0 TD 0 0 1 rg
0.193 Tc 0 Tw (access) Tj
31.5 0 TD 0 0 0 rg
0.0401 Tc 0.3565 Tw (, the web site\222s services and web resources.) Tj
ET
62.25 486.75 0.75 0.75 re f
63 486.75 143.25 0.75 re f
206.25 486.75 0.75 0.75 re f
207 486.75 350.25 0.75 re f
557.25 486.75 0.75 0.75 re f
62.25 408 0.75 78.75 re f
62.25 407.25 0.75 0.75 re f
62.25 407.25 0.75 0.75 re f
63 407.25 143.25 0.75 re f
206.25 408 0.75 78.75 re f
206.25 407.25 0.75 0.75 re f
207 407.25 350.25 0.75 re f
557.25 408 0.75 78.75 re f
557.25 407.25 0.75 0.75 re f
557.25 407.25 0.75 0.75 re f
BT
22.5 394.5 TD
/F0 12 Tf
0.078 Tc 0 Tw (78) Tj
ET
endstream
endobj
81 0 obj
7486
endobj
79 0 obj
<<
/Type /Page
/Parent 76 0 R
/Resources <<
/Font <<
/F0 6 0 R
>>
/ProcSet 2 0 R
>>
/Contents 80 0 R
>>
endobj
83 0 obj
<<
/Length 84 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (21) Tj
-245.25 684 TD /F1 24 Tf
-0.0594 Tc 0.1374 Tw (Appendix A.) Tj
139.5 0 TD 0 Tc 0.078 Tw ( ) Tj
6.75 0 TD 0.0366 Tc 0 Tw (References) Tj
-177.75 0 TD /F0 12 Tf
0.078 Tc (79) Tj
31.5 -24 TD /F0 9.75 Tf
0.0389 Tc 0.3756 Tw (Many of the definitions in this glossary are based on those found in the references below: ) Tj
402.75 5.25 TD /F0 6.75 Tf
-0.003 Tc 0 Tw (1) Tj
3.75 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (2) Tj
3.75 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (3) Tj
3.75 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (4) Tj
3.75 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (5) Tj
3.75 -5.25 TD /F0 9.75 Tf
-0.0651 Tc 0.3546 Tw ( \(page 102\),) Tj
-475.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (80) Tj
31.5 -6 TD /F0 6.75 Tf
-0.003 Tc (6) Tj
3.75 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (7) Tj
3.75 -5.25 TD /F0 9.75 Tf
0.1352 Tc 0.1543 Tw ( \(Appendix K ) Tj
60.75 0 TD /F4 9.75 Tf
-0.0267 Tc 0 Tw (Glossary) Tj
39 0 TD /F0 9.75 Tf
0.0214 Tc 0.2681 Tw (\), ) Tj
9 5.25 TD /F0 6.75 Tf
-0.003 Tc 0 Tw (8) Tj
3.75 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (9) Tj
3.75 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (10) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (11) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (12) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (13) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (14) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (15) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (16) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (17) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (18) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (19) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (20) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (,) Tj
3 5.25 TD /F0 6.75 Tf
-0.003 Tc (21) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (22) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (23) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (24) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (25) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (26) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (27) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (28) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (29) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (30) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (31) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (32) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
6 5.25 TD /F0 6.75 Tf
-0.003 Tc (33) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (34) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.2895 Tc (, ) Tj
5.25 5.25 TD /F0 6.75 Tf
-0.003 Tc (35) Tj
7.5 -5.25 TD /F0 9.75 Tf
0.102 Tc -0.0625 Tw (, , , ,) Tj
-502.5 0 TD /F0 12 Tf
0.078 Tc 0 Tw (81) Tj
31.5 -26.25 TD /F0 6.75 Tf
-0.003 Tc (1) Tj
3.75 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0854 Tc 0.2041 Tw (Authentication Markup Language \226 AuthXML) Tj
212.25 0 TD 0 0 0 rg
/F0 9.75 Tf
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0.0699 Tc -0.5304 Tw (Evan ) Tj
25.5 0 TD 0.2252 Tc 0 Tw (Prodromou) Tj
49.5 0 TD 0.0777 Tc 0.2118 Tw (, Darren Platt, Robert L. ) Tj
108.75 0 TD 0.1628 Tc 0 Tw (Grzywinski) Tj
48.75 0 TD 0.15 Tc 0.1395 Tw (, Eric) Tj
-457.5 -11.25 TD 0.0087 Tc 0.4951 Tw (Olden, Third Draft - Version 0.3 - 12/14/2000.) Tj
0 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1053 Tc 0 Tw (http://www.oasis-open.org/committees/security/docs/draft-authxml-v2.pdf) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (2) Tj
3.75 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0898 Tc 0.1997 Tw (Security Services Markup Language) Tj
171.75 0 TD 0 0 0 rg
-0.0411 Tc 0.3306 Tw ( \(S2ML\)) Tj
35.25 0 TD /F0 9.75 Tf
0.2753 Tc 0.0142 Tw (. P. ) Tj
18.75 0 TD 0.0917 Tc 0.1977 Tw (Mishra, P. ) Tj
48 0 TD 0.038 Tc 0.2515 Tw (Hallam-Baker, ) Tj
66 0 TD 0.0702 Tc 0.2193 Tw (Zahid Ahmed, Alex ) Tj
87 0 TD 0.0717 Tc 0 Tw (Ceponkus,) Tj
-433.5 -11.25 TD 0.0214 Tc 0.2681 Tw (Marc ) Tj
24.75 0 TD 0.0772 Tc 0.0873 Tw (Chanliau, Jeremy Epstein, Chris Ferris, David ) Tj
205.5 0 TD 0.0517 Tc -0.1372 Tw (Jablon, Eve ) Tj
54.75 0 TD 0.0729 Tc 0.2166 Tw (Maler, David Orchard. Rev 0.8a, 8-Jan-2001.) Tj
-285 -12 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1339 Tc 0 Tw (http://www.s2ml.org/downloads/S2MLV08a.pdf) Tj
-57 -19.5 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (3) Tj
3.75 0 TD 0 Tc 0.3735 Tw ( ) Tj
2.25 -5.25 TD /F1 9.75 Tf
0.0976 Tc 0.3169 Tw (ITML MESSAGE AND PROTOCOL SPECIFICATION WORKING DRAFT) Tj
328.5 0 TD /F0 12 Tf
-0.336 Tc 0 Tw (. ) Tj
6.75 0 TD /F0 9.75 Tf
0.0531 Tc 0.2364 Tw (Dave Orchard et al. ) Tj
89.25 0 TD 0.1941 Tc 0 Tw (Jamcraker) Tj
46.5 0 TD 0.3037 Tc -0.0142 Tw ( 22-) Tj
-477 -12 TD 0.0168 Tc 0.6477 Tw (Nov-2000, version 0.8.) Tj
0 -11.25 TD 0.0779 Tc 0.2116 Tw (available at: ) Tj
56.25 0 TD 0.1043 Tc 0 Tw (http://www.oasis-open.org/committees/security/docs/draft-orchard-itml-messaging-00.pdf) Tj
-56.25 -18 TD /F0 6.75 Tf
-0.003 Tc (4) Tj
3.75 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.106 Tc 0.1835 Tw (Internet Security Glossary) Tj
123.75 0 TD 0 0 0 rg
/F0 9.75 Tf
0.2072 Tc 0.0823 Tw (. Robert W. ) Tj
54.75 0 TD 0.0072 Tc 0.2823 Tw (Shirey, RFC 2828, May 2000.) Tj
-185.25 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1198 Tc 0 Tw (http://www.ietf.org/rfc/rfc2828.txt) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (5) Tj
3.75 -5.25 TD 0 0 1 rg
/F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F1 9.75 Tf
0.1069 Tc 0.1826 Tw (Building Internet Firewalls, 2) Tj
135.75 5.25 TD /F1 6.75 Tf
0.3757 Tc 0 Tw (nd) Tj
9 -5.25 TD /F1 9.75 Tf
-0.6052 Tc 0.8947 Tw ( Ed) Tj
15 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0506 Tc 0.2389 Tw (. D. Brent Chapman & Elizabeth D. ) Tj
157.5 0 TD 0.0455 Tc 0.244 Tw (Zwicky, O\222Reilly, ISBN 1-56592-871-7,) Tj
-324 -11.25 TD -0.0592 Tc 0.3487 Tw (June 2000.) Tj
0 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.0719 Tc 0 Tw (http://www.oreilly.com/catalog/fire2/) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (6) Tj
3.75 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.07 Tc 0.2195 Tw (Free On-Line Dictionary of Computing) Tj
180 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0795 Tc 0.21 Tw (. Denis Howe, on-going.) Tj
-186.75 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.102 Tc 0 Tw (http://foldoc.doc.ic.ac.uk/foldoc/) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (7) Tj
3.75 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.055 Tc 0.2345 Tw (Trust in Cyberspace) Tj
96 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0657 Tc 0.3602 Tw (. Committee on Information Systems Trustworthiness, Fred B. Schneider - Editor, National) Tj
-102.75 -11.25 TD 0.0705 Tc 0.219 Tw (Research Council, ISBN 0-309-06558-5, 1999.) Tj
0 -12 TD 0.0871 Tc 0.2024 Tw (On-line copy and ordering information available at: ) Tj
226.5 0 TD 0 0 1 rg
0.1278 Tc 0 Tw (http://www.nap.edu/readingroom/books/trust/) Tj
-226.5 -11.25 TD 0 0 0 rg
0.0917 Tc 0.1978 Tw (Glossary: ) Tj
45 0 TD 0 0 1 rg
0.12 Tc 0 Tw (http://www.nap.edu/readingroom/books/trust/trustapk.htm) Tj
-45 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (8) Tj
3.75 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0815 Tc 0.208 Tw (Security Taxonomy and Glossary) Tj
157.5 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0679 Tc 0.2216 Tw (. Lynn Wheeler, on-going.) Tj
-164.25 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1088 Tc 0 Tw (http://www.garlic.com/~lynn/secure.htm) Tj
174 0 TD 0 0 0 rg
0.0806 Tc -0.1661 Tw (; see ) Tj
24.75 0 TD 0 0 1 rg
0.1021 Tc 0 Tw (http://www.garlic.com/~lynn/) Tj
125.25 0 TD 0 0 0 rg
0.0339 Tc 0.2556 Tw ( for the list of sources.) Tj
-381 -18 TD /F0 6.75 Tf
-0.003 Tc 0 Tw (9) Tj
3.75 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0794 Tc 0.3255 Tw (Information processing systems -- Open Systems Interconnection -- Basic Reference Model -- Part 2:) Tj
-6.75 -11.25 TD 0.0799 Tc 0.2095 Tw (Security Architecture) Tj
101.25 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0501 Tc 0.4894 Tw (. ISO 7498-2:1989, ITU-T Recommendation X.800 \(1991\).) Tj
-101.25 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.0978 Tc 0 Tw (http://www.itu.int/itudoc/itu-t/rec/x/x500up/x800.html) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (10) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F1 9.75 Tf
( ) Tj
3 0 TD 0 0 1 rg
0.0637 Tc 0.5473 Tw (Security frameworks for open systems: Access control framework) Tj
315 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0523 Tc 0.6122 Tw (. ITU-T Recommendation X.812 \(1995) Tj
-328.5 -11.25 TD 0.0645 Tc 0.4125 Tw (E\), ISO/IEC 10181-3: 1996 \(E\)) Tj
0 -12 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.0978 Tc 0 Tw (http://www.itu.int/itudoc/itu-t/rec/x/x500up/x812.html) Tj
-57 -17.25 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (11) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1203 Tc 0.1692 Tw (Understanding and Deploying LDAP Directory Services) Tj
261.75 0 TD 0 0 0 rg
/F0 9.75 Tf
-0.051 Tc 0.7155 Tw (. Tim ) Tj
25.5 0 TD 0.087 Tc 0.2025 Tw (Howes, Mark Smith, and Gordon Good,) Tj
-297.75 -12 TD 0.077 Tc 0.2959 Tw (Macmillan Technical Publishing & Netscape Communications Corporation, 1999, ISBN: 1578700701.) Tj
0 -11.25 TD 0.082 Tc 0.2075 Tw (Description at: ) Tj
66.75 0 TD 0 0 1 rg
0.0949 Tc 0 Tw (http://www.informit.com/product/1578700701/) Tj
-66.75 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (12) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.078 Tc 0.2115 Tw (Authorization \(AZN\) API) Tj
113.25 0 TD 0 0 0 rg
/F0 9.75 Tf
0.057 Tc 0.3991 Tw (. Open Group Technical Standard, C908, ISBN 1-85912-266-3, January 2000.) Tj
-123.75 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1151 Tc 0 Tw (http://www.opengroup.org/publications/catalog/c908.htm) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (13) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0966 Tc 0.2611 Tw (Authentication and Privilege Attribute Security Application with related Key Distribution Functions -) Tj
-10.5 -11.25 TD 0.157 Tc 0.1325 Tw (Part 1, 2 and 3) Tj
68.25 0 TD 0 0 0 rg
/F0 9.75 Tf
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0.0535 Tc 0.236 Tw (Standard ECMA-219, 2nd edition \(March 1996\).) Tj
-74.25 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1102 Tc 0 Tw (http://www.ecma.ch/ecma1/STAND/ECMA-219.HTM) Tj
-57 -36.75 TD 0 0 0 rg
0.0702 Tc 0.2193 Tw (References are continued on the next page\205) Tj
ET
endstream
endobj
84 0 obj
12122
endobj
82 0 obj
<<
/Type /Page
/Parent 76 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F4 19 0 R
>>
/ProcSet 2 0 R
>>
/Contents 83 0 R
>>
endobj
86 0 obj
<<
/Length 87 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (22) Tj
-245.25 693 TD /F0 6.75 Tf
-0.003 Tc (14) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0925 Tc 0.197 Tw (Computer Currents High-Tech Dictionary) Tj
194.25 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0764 Tc 0.2131 Tw (. On-going) Tj
-204.75 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1087 Tc 0 Tw (http://www.currents.net/resources/dictionary/) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (15) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.129 Tc 0.1605 Tw (Hypertext Transfer Protocol -- HTTP/1.0) Tj
186.75 0 TD 0 0 0 rg
/F0 9.75 Tf
-0.0428 Tc 0.3322 Tw (. T. ) Tj
17.25 0 TD 0.082 Tc 0.2075 Tw (Berners-Lee, R. Fielding, H. ) Tj
126.75 0 TD 0.068 Tc 0.2215 Tw (Frystyk, RFC1945, May 1996.) Tj
-341.25 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1185 Tc 0 Tw (http://www.normos.org/ietf/rfc/rfc1945.txt) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (16) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.129 Tc 0.1605 Tw (Hypertext Transfer Protocol -- HTTP/1.1) Tj
186.75 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0613 Tc 0.2282 Tw (. R. Fielding, J. ) Tj
69.75 0 TD 0.0745 Tc 0.215 Tw (Gettys, J. Mogul, H. ) Tj
90.75 0 TD 0.0707 Tc 0.2188 Tw (Frystyk, T. ) Tj
49.5 0 TD -0.0088 Tc 0 Tw (Berners-Lee,) Tj
-407.25 -11.25 TD 0.0022 Tc 0.6623 Tw (RFC2616, June 1999.) Tj
0 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1185 Tc 0 Tw (http://www.normos.org/ietf/rfc/rfc2616.txt) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (17) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0714 Tc 0.2181 Tw (Lightweight Directory Access Protocol \(v3\)) Tj
203.25 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
3 0 TD /F0 9.75 Tf
0.0643 Tc 0.2252 Tw ( M. Wahl, T. ) Tj
57 0 TD 0.2225 Tc 0.067 Tw (Howes, S. ) Tj
49.5 0 TD 0.0307 Tc 0.2588 Tw (Kille, RFC2251, December 1997.) Tj
-323.25 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1185 Tc 0 Tw (http://www.normos.org/ietf/rfc/rfc2251.txt) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (18) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1103 Tc 0.2474 Tw (Multipurpose Internet Mail Extensions \(MIME\) Part One: Format of Internet Message Bodies) Tj
432.75 0 TD 0 0 0 rg
/F0 9.75 Tf
-0.0125 Tc 0.302 Tw (. N. Freed, N.) Tj
-443.25 -11.25 TD 0.0826 Tc 0.2069 Tw (Borenstein, RFC2045, November 1996.) Tj
0 -12 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1185 Tc 0 Tw (http://www.normos.org/ietf/rfc/rfc2045.txt) Tj
-57 -17.25 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (19) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0765 Tc 0.3201 Tw (Security in Open Systems - A Security Framework) Tj
237.75 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0543 Tc 0.2352 Tw (. ECMA Technical Report TR/46, July 1988.) Tj
-248.25 -12 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1082 Tc 0 Tw (http://www.ecma.ch/ecma1/TECHREP/E-TR-046.HTM) Tj
-57 -17.25 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (20) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1079 Tc 0.1816 Tw (SSL 3.0 Specification) Tj
101.25 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0691 Tc 0.2204 Tw (. Alan O. ) Tj
42 0 TD -0.0197 Tc -0.0658 Tw (Freier, Philip ) Tj
57.75 0 TD 0.0637 Tc 0.4758 Tw (Karlton, Paul C. ) Tj
73.5 0 TD 0.0669 Tc 0.2226 Tw (Kocher, Netscape Communications Corp., 1996.) Tj
-285 -12 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.094 Tc 0 Tw (http://www.netscape.com/eng/ssl3/) Tj
-57 -17.25 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (21) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0444 Tc 0.4951 Tw (Uniform Resource Locators \(URL\)) Tj
160.5 0 TD 0 0 0 rg
0.2895 Tc 0 Tw (.) Tj
3 0 TD /F0 9.75 Tf
-0.2089 Tc 0.8734 Tw ( T. ) Tj
15 0 TD 0.1081 Tc 0.1814 Tw (Berners-Lee, L. ) Tj
72 0 TD 0.0751 Tc 0.2144 Tw (Masinter, M. ) Tj
57.75 0 TD 0.0708 Tc 0.2186 Tw (McCahill, RFC1738, December 1994.) Tj
-318.75 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1216 Tc 0 Tw (http://www.rfc-editor.org/rfc/rfc1738.txt) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (22) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1039 Tc 0.1856 Tw (Practical Unix & Internet Security, 2) Tj
168.75 5.25 TD /F1 6.75 Tf
0.3757 Tc 0 Tw (nd) Tj
8.25 -5.25 TD /F1 9.75 Tf
-0.0061 Tc 0.2956 Tw ( Edition) Tj
36 0 TD 0 0 0 rg
/F0 9.75 Tf
0.2895 Tc 0 Tw (. ) Tj
6 0 TD 0.0822 Tc -0.5428 Tw (Simson ) Tj
36 0 TD 0.0813 Tc -0.0418 Tw (Garfinkel & Gene ) Tj
79.5 0 TD 0.1123 Tc 0.1772 Tw (Spafford, O\222Reilly, ISBN 1-56592-) Tj
-345 -11.25 TD 0.029 Tc 0.2605 Tw (148-8, April 1996.) Tj
0 -12 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.104 Tc 0 Tw (http://www.oreilly.com/catalog/puis/) Tj
-57 -22.5 TD 0 0 0 rg
-0.171 Tc (23) Tj
10.5 0 TD 0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1115 Tc 0.178 Tw (AAA Authorization Framework) Tj
144.75 0 TD 0 0 0 rg
/F0 9.75 Tf
0.068 Tc 0.2215 Tw (. J. ) Tj
16.5 0 TD 0.0615 Tc 0.228 Tw (Vollbrecht, P. Calhoun, S. Farrell, L. ) Tj
162 0 TD 0.1003 Tc 0.0392 Tw (Gommans, G. Gross, B. de ) Tj
123.75 0 TD -0.0702 Tc 0.3597 Tw (Bruijn, C.) Tj
-460.5 -12 TD -0.171 Tc -0.2895 Tw (de ) Tj
13.5 0 TD 0.0743 Tc 0.2152 Tw (Laat, M. Holdrege, D. Spence. RFC 2904, August 2000.) Tj
-13.5 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1216 Tc 0 Tw (http://www.rfc-editor.org/rfc/rfc2904.txt) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (24) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1065 Tc 0.183 Tw (Uniform Resource Identifiers \(URI\): Generic Syntax) Tj
243 0 TD 0 0 0 rg
/F0 9.75 Tf
-0.0428 Tc 0.3322 Tw (. T. ) Tj
17.25 0 TD 0.0567 Tc 0.2328 Tw (Berners-Lee, R. Fielding, L. ) Tj
124.5 0 TD 0.0134 Tc 0.6511 Tw (Masinter. RFC 2396,) Tj
-395.25 -11.25 TD 0 Tc 0.2892 Tw (August 1998.) Tj
0 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1216 Tc 0 Tw (http://www.rfc-editor.org/rfc/rfc2396.txt) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (25) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0226 Tc 0.5169 Tw (Authentication Methods for LDAP) Tj
159 0 TD 0 0 0 rg
/F0 9.75 Tf
0.1286 Tc 0.1609 Tw (. M. Wahl, H. ) Tj
61.5 0 TD 0.0573 Tc 0.2322 Tw (Alvestrand, J. Hodges, R. Morgan. RFC 2829, May 2000.) Tj
-231 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1216 Tc 0 Tw (http://www.rfc-editor.org/rfc/rfc2829.txt) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (26) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1098 Tc 0.1797 Tw (Whatis: IT-specific encyclopedia) Tj
154.5 0 TD 0 0 0 rg
/F0 9.75 Tf
-0.0523 Tc 0.3418 Tw (. On-going.) Tj
-165 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1144 Tc 0 Tw (http://whatis.techtarget.com/) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (27) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.0884 Tc 0.2011 Tw (Simple Authentication and Security Layer \(SASL\)) Tj
233.25 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0327 Tc 0.3818 Tw (. J. Myers, RFC 2222, October 1997.) Tj
-243.75 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1216 Tc 0 Tw (http://www.rfc-editor.org/rfc/rfc2222.txt) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (28) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1097 Tc 0.1798 Tw (Merriam-Webster Collegiate Dictionary) Tj
183.75 0 TD 0 0 0 rg
/F0 9.75 Tf
0.006 Tc 0.471 Tw (. CDROM version 2.5, 2000.) Tj
-194.25 -11.25 TD 0.0262 Tc 0.5133 Tw (An on-line version is available at: ) Tj
149.25 0 TD 0 0 1 rg
0.0937 Tc 0 Tw (http://www.m-w.com/) Tj
-149.25 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (29) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1232 Tc 0.2734 Tw (Kerberos: An Authentication Service for Open Network Systems) Tj
304.5 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0188 Tc 0.3957 Tw (. J.G. Steiner, C. Neumann, and J.I.) Tj
-315 -11.25 TD 0.0825 Tc 0.207 Tw (Schiller, USENIX, ) Tj
81 0 TD -0.0057 Tc 0.2952 Tw (Winter 1988.) Tj
-81 -12 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1198 Tc 0 Tw (http://sunsite.utk.edu/net/security/kerberos/usenix.PS) Tj
-57 -36.75 TD 0 0 0 rg
0.0702 Tc 0.2193 Tw (References are continued on the next page\205) Tj
ET
endstream
endobj
87 0 obj
9009
endobj
85 0 obj
<<
/Type /Page
/Parent 76 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
>>
/ProcSet 2 0 R
>>
/Contents 86 0 R
>>
endobj
89 0 obj
<<
/Length 90 0 R
>>
stream
BT
299.25 23.25 TD
0 0 0 rg
/F0 12 Tf
0.078 Tc 0 Tw (23) Tj
-245.25 693 TD /F0 6.75 Tf
-0.003 Tc (30) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1453 Tc 0.1442 Tw (Risk Management is Where the Money Is) Tj
192.75 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0745 Tc 0.3221 Tw (. Daniel Geer, 3-Nov-1998 presentation to Digital Commerce) Tj
-203.25 -11.25 TD 0.0541 Tc 0.2931 Tw (Society of Boston, as reprinted in Risks Digest, Wed, 11 Nov 1998 22:20:09 \2260500.) Tj
0 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.1113 Tc 0 Tw (http://catless.ncl.ac.uk/Risks/20.06.html#subj1.1) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (31) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1186 Tc 0.1709 Tw (Policy Terminology) Tj
92.25 0 TD /F0 9.75 Tf
0.2895 Tc 0 Tw (.) Tj
3 0 TD 0 0 0 rg
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0.0954 Tc 0.1941 Tw (Westerinen et al. Work-in-progress INTERNET-DRAFT, draft-ietf-policy-terminology-) Tj
-108.75 -11.25 TD 0.1701 Tc 0 Tw (02.txt.) Tj
0 -12 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.111 Tc 0.1785 Tw ( http://www.ietf.org/internet-drafts/draft-ietf-policy-terminology-02.txt) Tj
-57 -16.5 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc 0 Tw (32) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1004 Tc 0.1891 Tw (X.509 4) Tj
33.75 5.25 TD /F1 6.75 Tf
0.189 Tc 0 Tw (th) Tj
6.75 -5.25 TD /F1 9.75 Tf
0.0439 Tc -0.0044 Tw ( Edition 2001: ) Tj
67.5 0 TD /F7 8.25 Tf
0.093 Tc -0.8003 Tw (PUBLIC-KEY AND ATTRIBUTE CERTIFICATE FRAMEWORKS) Tj
241.5 0 TD 0 0 0 rg
/F8 8.25 Tf
0.0378 Tc -0.3701 Tw (. ITU-T, COM 7-250-E Revision 1,) Tj
-360 -9 TD 0.0569 Tc -0.3891 Tw (Feb 23, 2001.) Tj
0 -8.25 TD -0.0182 Tc -0.3141 Tw (Available at: ) Tj
50.25 0 TD 0 0 1 rg
-0.0012 Tc 0 Tw (http://www.itu.int/itudoc/itu-t/rec/x/x500up/x509.html) Tj
-50.25 -15.75 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (33) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F1 9.75 Tf
0.1136 Tc 0.1759 Tw (OASIS Security Services TC Use Case and Requirements Conference Call Consensus) Tj
405.75 0 TD /F0 9.75 Tf
0.0917 Tc 0.1978 Tw (. Consensus on the) Tj
-416.25 -11.25 TD 0.0594 Tc 0.23 Tw (wording for this item occurred during one or more conference calls of the SSTC Use Case and ) Tj
419.25 0 TD 0.1579 Tc 0 Tw (Requirments) Tj
-419.25 -11.25 TD 0.0744 Tc 0.2151 Tw (subgroup. See minutes of the conference calls in the security-use email distribution list archives for details.) Tj
0 -12 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.0927 Tc 0 Tw (http://lists.oasis-open.org/archives/security-use/) Tj
-57 -17.25 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (34) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD 0 0 1 rg
/F1 9.75 Tf
0.1126 Tc 0.1769 Tw (Security Frameworks for Open Systems: Authentication Framework) Tj
321.75 0 TD 0 0 0 rg
/F0 9.75 Tf
0.0273 Tc 0.6372 Tw (. ITU-T Recommendation X.811 \(1995) Tj
-332.25 -12 TD 0.0155 Tc 0.4615 Tw (E\), ISO/IEC 10181-2: 1996 \(E\).) Tj
0 -11.25 TD 0.0502 Tc 0.2393 Tw (Available at: ) Tj
57 0 TD 0 0 1 rg
0.0978 Tc 0 Tw (http://www.itu.int/itudoc/itu-t/rec/x/x500up/x811.html) Tj
-57 -18 TD 0 0 0 rg
/F0 6.75 Tf
-0.003 Tc (35) Tj
7.5 -5.25 TD /F0 9.75 Tf
0 Tc 0.2895 Tw ( ) Tj
3 0 TD /F1 9.75 Tf
0.1088 Tc 0.1807 Tw (Information Security An Integrated Collection of Essays) Tj
264 0 TD /F0 9.75 Tf
0.2037 Tc 0.0858 Tw (. M. Abrams, S. ) Tj
73.5 0 TD -0.0278 Tc 0.3173 Tw (Jajodia, and H. ) Tj
68.25 0 TD 0.1349 Tc 0.1546 Tw (Podell, ) Tj
33.75 0 TD 0.0753 Tc 0.2142 Tw (eds. IEEE) Tj
-450 -11.25 TD 0.0612 Tc 0.2283 Tw (Computer Society Press, January 1995.) Tj
ET
endstream
endobj
90 0 obj
3842
endobj
88 0 obj
<<
/Type /Page
/Parent 76 0 R
/Resources <<
/Font <<
/F0 6 0 R
/F1 8 0 R
/F7 91 0 R
/F8 93 0 R
>>
/ProcSet 2 0 R
>>
/Contents 89 0 R
>>
endobj
6 0 obj
<<
/Type /Font
/Subtype /TrueType
/Name /F0
/BaseFont /Arial
/FirstChar 31
/LastChar 255
/Widths [ 750 278 278 355 556 556 889 667 191 333 333 389 584 278 333 278
278 556 556 556 556 556 556 556 556 556 556 278 278 584 584 584
556 1015 667 667 722 722 667 611 778 722 278 500 667 556 833 722
778 667 778 722 667 611 722 667 944 667 667 611 278 278 278 469
556 333 556 556 500 556 556 278 556 556 222 222 500 222 833 556
556 556 556 333 500 278 556 500 722 500 500 500 334 260 334 584
750 556 750 222 556 333 1000 556 556 333 1000 667 333 1000 750 750
750 750 222 222 333 333 350 556 1000 333 1000 500 333 944 750 750
667 278 333 556 556 556 556 260 556 333 737 370 556 584 333 737
552 400 549 333 333 333 576 537 278 333 333 365 556 834 834 834
611 667 667 667 667 667 667 1000 722 667 667 667 667 278 278 278
278 722 722 778 778 778 778 778 584 778 722 722 722 722 667 667
611 556 556 556 556 556 556 889 500 556 556 556 556 278 278 278
278 556 556 556 556 556 556 556 549 611 556 556 556 556 500 556
500 ]
/Encoding /WinAnsiEncoding
/FontDescriptor 7 0 R
>>
endobj
7 0 obj
<<
/Type /FontDescriptor
/FontName /Arial
/Flags 32
/FontBBox [ -250 -188 1276 938 ]
/MissingWidth 750
/StemV 80
/StemH 80
/ItalicAngle 0
/CapHeight 938
/XHeight 656
/Ascent 938
/Descent -188
/Leading 188
/MaxWidth 1063
/AvgWidth 438
>>
endobj
8 0 obj
<<
/Type /Font
/Subtype /TrueType
/Name /F1
/BaseFont /Arial,Bold
/FirstChar 31
/LastChar 255
/Widths [ 750 278 333 474 556 556 889 722 238 333 333 389 584 278 333 278
278 556 556 556 556 556 556 556 556 556 556 333 333 584 584 584
611 975 722 722 722 722 667 611 778 722 278 556 722 611 833 722
778 667 778 722 667 611 722 667 944 667 667 611 333 278 333 584
556 333 556 611 556 611 556 333 611 611 278 278 556 278 889 611
611 611 611 389 556 333 611 556 778 556 556 500 389 280 389 584
750 556 750 278 556 500 1000 556 556 333 1000 667 333 1000 750 750
750 750 278 278 500 500 350 556 1000 333 1000 556 333 944 750 750
667 278 333 556 556 556 556 280 556 333 737 370 556 584 333 737
552 400 549 333 333 333 576 556 278 333 333 365 556 834 834 834
611 722 722 722 722 722 722 1000 722 667 667 667 667 278 278 278
278 722 722 778 778 778 778 778 584 778 722 722 722 722 667 667
611 556 556 556 556 556 556 889 556 556 556 556 556 278 278 278
278 611 611 611 611 611 611 611 549 611 611 611 611 611 556 611
556 ]
/Encoding /WinAnsiEncoding
/FontDescriptor 9 0 R
>>
endobj
9 0 obj
<<
/Type /FontDescriptor
/FontName /Arial,Bold
/Flags 16416
/FontBBox [ -250 -219 1200 938 ]
/MissingWidth 750
/StemV 149
/StemH 149
/ItalicAngle 0
/CapHeight 938
/XHeight 656
/Ascent 938
/Descent -219
/Leading 187
/MaxWidth 1000
/AvgWidth 469
/FontFile2 95 0 R
>>
endobj
95 0 obj
<<
/Filter /FlateDecode
/Length 96 0 R
/Length1 98 0 R
>>
stream
HVlS} ( 8cB( IHR5̓1Vc&$XQlH
Z6:֭*ĊV*JL;m7iurw MmG_)@iytx%j]s}xs ҋ8\$wP/W'@rFu؍+ MX% 诡ma%"Coz8=ꡒ| ?;y< ̰GT%x[0>ϧ)i5ֿXqU$_l▗ j*a7 .Hƴ~+h2+E| YBGvW!&\OI-@2)R?VΝX}+eʏk+糋3q{l-G§mnhÝ;g퐝\Ir`. C21.2% OYi>!Sbʷ&~ǜڧ%4`ϲy{h[%`!VٝYM cK2zyO`8#
VcI6BZ`fK[x6je( [QnX lC]
,C a*C`%0nKaǦ
l![v(eXgm/l;#;WL·yKvB( IQ^%NcY;1 8es?~ ֱM`aPq<&0#<奎
,s%\F/OEkD`㯄RZ5佑?M`|3ZWĕ=O{<9y:s9gR*{#*LGkRI-Q-Wt?(qg_pIu$Юon[h8YVSjpm*Ď3J q%5̴п
Rj8ՔdQu*:a~ \LIKcTse