A sequence of operations that ensure protection of data. Used with a communications protocol, it provides secure delivery of data between two parties. The term generally refers to a suite of components that work in tandem (see below). For example, the 802.11i standard provides these functions for wireless LANs.
For the Web, SSL is widely used to provide authentication and encryption in order to send sensitive data such as credit card numbers to a vendor. Following are the primary components of a security protocol. See cryptography, information security, HTTPS, SHTTP, SSL, PCT and IPsec.
Access Control
Authenticates user identity. Authorizes access to specific resources based on permissions level and policies. See access control and authentication.
Key Management
Create, distribute and maintain the keys. See key management.
Encryption Algorithm
The cryptographic cipher combined with various methods for encrypting the text. See encryption algorithm.
Message Integrity
Ensures that the encrypted message has not been tampered with. See message integrity.
For the Web, SSL is widely used to provide authentication and encryption in order to send sensitive data such as credit card numbers to a vendor. Following are the primary components of a security protocol. See cryptography, information security, HTTPS, SHTTP, SSL, PCT and IPsec.
Access Control
Authenticates user identity. Authorizes access to specific resources based on permissions level and policies. See access control and authentication.
Key Management
Create, distribute and maintain the keys. See key management.
Encryption Algorithm
The cryptographic cipher combined with various methods for encrypting the text. See encryption algorithm.
Message Integrity
Ensures that the encrypted message has not been tampered with. See message integrity.
 | Reproduced with permission from Computer Desktop Encyclopedia. Copyright (c) 1981-2008 The Computer Language Company Inc. All rights reserved. |
Additional Resources
- Google trying to take privacy seriously
- This week was a very interesting week as far as Google and privacy goes. First, a burglary the same on that affected CNET earlier last month was confirmed to have affected all Google employees hired before December 31, 2005. There's nothing Google could have done about it, but it's...
- Blog posts 2008-07-05
- Happy 4th of July
- For all of my blasting of the TSA and the US Government for our strange, inappropriate, inadequate, and sometimes unacceptable security practices, I am damn proud to be an American. There's many countries I've visited in this world, and I love many of them, but none like the good...
- Blog posts 2008-07-04
- July 4th, 2008: A trip down memory lane
- A 1 question civics quiz Today American's celebrate the Declaration of Independence, the legal foundation of the USA and, after the failure of the Articles of Confederation, the Constitution of the United States. I revere the Constitution as a magnificent piece of political engineering. But it...
- Blog posts 2008-07-04
- Stolen: Google employees' personal data
- Names, addresses, and Social Security numbers of pre-2006 staffers were taken from offices of Colt Express Outsourcing Services. Google has confirmed that personal data of U.S. employees hired prior to 2006 have been stolen in a recent burglary. Records kept at Colt Express Outsourcing Services, an external...
- News items 2008-07-03
- Say it ain't so AVG, say it ain't so: AVG LinkScanner = Badware?
- Say it ain't so AVG, say it ain't so: AVG LinkScanner = Badware?AVG Freeware Ain't So Free After All...Man, am I shocked that AVG is doing this. Of course I don't use the product but have made recommendations in the past to folks who could not afford to purchase good...
- Discussion threads 2008-07-03
- Say it ain't so AVG, say it ain't so: AVG LinkScanner = Badware?
- The Register covered a very interesting story about AVG. Apparently AVG is spamming the Internet with traffic that looks to be coming from Internet Explorer. AVG software pre-crawls search results to try to protect users, but uses a user agent that makes the software appear to be Internet Explorer. This pre-crawling is flooding websites with...
- Blog posts 2008-07-03
- Nothing stealthy about this Windows Update update
- Nothing stealthy about this Windows Update updateStill got it wrong?!?!What part of "check for updates but let me decide" do they not understand???If the people at MS are feeling so benevolentwhy not have the programmers pop up a box when the update occurs, sort of hand holding for the wary.If...
- Discussion threads 2008-07-03
- On deck from MS: Four 'important' patches but nothing for IE
- On deck from MS: Four 'important' patches but nothing for IEAm I correct that uninstalling Safari mitigates the problem?I realize it isn't a fix but am I correct in believing that for the time being, removing Safari effectively closes off the only known attack vector that can utilize this vulnerability?...
- Discussion threads 2008-07-03
- On deck from MS: Four 'important' patches but nothing for IE
- Next Tuesday, Microsoft plans to ship four security updates for multiple flaws affecting Windows, Microsoft SQL Server and Microsoft Exchange Server but the absence of fixes for publicly known Internet Explorer issues is causing raised eyebrows among security professionals. According to the company's advance notice for July's...
- Blog posts 2008-07-03
- Opera patches serious code exection flaw
- Opera patches serious code exection flawURI/Protocol Handler AbuseI can confirm that Rios has been working on a protocol handler flaw on Opera. I'm not sure if this is what was patched... we've both been so busy lately we haven't been researching together as much as we did in the...
- Discussion threads 2008-07-03
- Getaway day: How to secure your laptop for holiday travel
- Getaway day: How to secure your laptop for holiday travelNot for Vista Home Premium!Why not tell people that this does NOT WORK encryption radio button grayed out in Vista Home Premium - only suckers who paid for M$ for the Ultimate or business/enterprise editions!RE: Getaway day: How to secure your...
- Discussion threads 2008-07-03
- Apple caught neglecting iPhone security
- Apple caught neglecting iPhone securityApple doesn't really care.I believe that Apple puts security of its products at the bottom of the list, with cool design at the top. All this stuff just proves me right, that sure they have a neat casing and a touch screen, but underneath it...
- Discussion threads 2008-07-03
- Apple caught neglecting iPhone security
- If you're waiting on iPhone 2 to standardize your business on the awesome new device (yeah, I'll be on line to buy one), you might want to pay attention to the conspicuous absence of iPhone security patches over the last four months. As WaPo's Brian Krebs reports,...
- Blog posts 2008-07-03
- Can Mozilla's security metrics project end the patch-counting nonsense?
- Can Mozilla's security metrics project end the patch-counting nonsense?Can Mozilla's security metrics project end the patch-counting nonsense?I only had a quick look at the spreadsheet so I may be wrong. However it looks like this is bug counting exercise with a bit of 'how long were we exposed?' thrown in....
- Discussion threads 2008-07-03
- Opera patches serious code exection flaw
- Opera Software has joined the list of browser vendors shipping fixes for serious remote code execution vulnerabilities. The company's new Opera 9.5.1 patches at least four security issues, the most serious being a flaw reported by Microsoft's Billy Rios that could be used to execute arbitrary code....
- Blog posts 2008-07-03
- Airport security part 4: Attack of the body scanners!
- Airport security part 4: Attack of the body scanners!Airport SecurityI'm fairly sure if anyone was to see me naked... their eyeballs would no longer function anyway. I say go ahead, it's more a punishment for them than me. But I can certainly understand why many people would find...
- Discussion threads 2008-07-03
- Airport security part 4: Attack of the body scanners!
- If you read my blog postings semi-often, you know that I'm very, very critical of problems with airport security. Nicole Wong of the Boston Globe reported that Boston's Logan International Airport will become the next airport to implement full-body scanners (thanks for the link from the LiquidMatrix guys!) that can see...
- Blog posts 2008-07-03
- Can Mozilla's security metrics project end the patch-counting nonsense?
- In partnership with indie security consultant Rich Mogull left Mozilla has launched a valuable Security Metrics Project that could help to -- we can only hope -- put an end to the silly notion that patch-counting helps to determine a product's security posture. The idea is...
- Blog posts 2008-07-03
- NoScript vs. Internet Explorer 8 Filters
- NoScript vs. Internet Explorer 8 FiltersThink About End UsersI've tried, a couple of times, to use NoScript in my normal surfing, and it became unbearable quickly. Too many sites were disfunctional. MLB.com is a good example.It's one thing to make an add-in for technical users that they can tweak on...
- Discussion threads 2008-07-03
- Getaway day: How to secure your laptop for holiday travel
- It's getaway day and as we prepare to hit the road, trudge through airport security and snag that car rental, spare a thought for the valuable data that travels with you on that trusty old laptop. According to a recent study by the Ponemon Institute, more than...
- Blog posts 2008-07-03
Neighboring Terms
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- Hardware Assisted Virtualization to Mitigate Security Risks
-
In this podcast Intel's Malcolm Harkins and HP's Manny Novoa chat about the latest issues in security technologies, notably the emergence of hardware assisted virtualization.
- Watch the Podcast on the Intel Open Port General Blog >>
-
-
Tasty Baking’s new LEED factory
0:57
Tasty Baking CIO: Brendan O’Malley
-
Balancing act: innovation vs. reliability
1:28
Facebook VP of technical operations: Jonathan Heiliger
-
Securing data at E-Loan
1:47
E-Loan CIO: Jay Shah
-
When crops are scarce
1:47
Del Monte Foods CIO: Marc Brown
- View all CIO Vision Series Videos »
