ASP

abstract service primitive

ATM

abstract test method

ATS

abstract test suite

acceptance test

examination that a product, process, or service is in conformity with the system specification

examination that a product, process, or service is in conformity with the system specification

access

admittance, entry, permit to use the road network and/or associated infrastructure (bridges, tunnels etc.)

admittance, entry, permit to use the road network and/or associated infrastructure (bridges, tunnels etc.)

access control

prevention of unauthorized use of a resource, including the prevention of use of a resource in an unauthorized manner

prevention of unauthorized use of a resource, including the prevention of use of a resource in an unauthorized manner

access control list (ACL)

list of entities, together with their access right, which are authorized to have access to a resource

list of entities, together with their access right, which are authorized to have access to a resource

access control policy

data source governing what access to resources is permissible by peer Applications

data source governing what access to resources is permissible by peer Applications

access controlled

conditions for use apply for which permission in writing is required

conditions for use apply for which permission in writing is required

active threat

threat of a deliberate unauthorized change to the state of the system
EXAMPLE: Examples of security-relevant active threats may include modification of messages, replay of messages, and insertion of spurious messages, masquerading as an authorized entity and denial of service.

threat of a deliberate unauthorized change to the state of the system
EXAMPLE: Examples of security-relevant active threats may include modification of messages, replay of messages, and insertion of spurious messages, masquerading as an authorized entity and denial of service.

AES

Advanced Encryption Standard

anonymisation

process by which personal information (PI) is irreversibly altered in such a way that an Individual or a legal entity can no longer be identified directly or indirectly either by the controller alone or in collaboration with any other party

process by which personal information (PI) is irreversibly altered in such a way that an Individual or a legal entity can no longer be identified directly or indirectly either by the controller alone or in collaboration with any other party

anonymised personal information

personal information that has been subject to a process of anonymisation and that by any means can no longer be used to identify an Individual or legal entity

personal information that has been subject to a process of anonymisation and that by any means can no longer be used to identify an Individual or legal entity

assurance requirement

security requirements to assure confidence in the implementation of functional requirements

security requirements to assure confidence in the implementation of functional requirements

attack

attempt to destroy, expose, alter, disable, steal or gain unauthorised access to or make use of an asset

attempt to destroy, expose, alter, disable, steal or gain unauthorised access to or make use of an asset

authorization

granting of rights, which includes the granting of access based on access rights

granting of rights, which includes the granting of access based on access rights

AA

authorization authority

BI

behaviour invalid

BV

behaviour valid

BCD

binary coded decimal

block cipher

family of functions and their inverse functions that is parameterized by cryptographic keys
NOTE 1 to entry: The functions map bit strings of a fixed length to bit strings of the same length.

family of functions and their inverse functions that is parameterized by cryptographic keys
NOTE 1 to entry: The functions map bit strings of a fixed length to bit strings of the same length.

block cipher mode of operation

algorithm that uses a block cipher to provide an information service such as confidentiality or authenticity

algorithm that uses a block cipher to provide an information service such as confidentiality or authenticity

BSME

Bounded Secured Managed Entity

COER

canonical octet encoding rules

CP

certificate policy

certificate revocation list (CRL)

signed list indicating a set of certificates that are no longer considered valid by the certificate issuer

signed list indicating a set of certificates that are no longer considered valid by the certificate issuer

CTL

certificate trust list

CPOC

certification point of contact

CPS

certification practice statement

CBC

cipher block chaining