Add accreditation to this mix and it would be even more useful! -Carlton ============================== Carlton A Samuels Mobile: 876-818-1799 *Strategy, Planning, Governance, Assessment & Turnaround* ============================= On Wed, Jul 20, 2016 at 1:19 PM, Mark Svancarek via gnso-rds-pdp-wg < gnso-rds-pdp-wg@icann.org> wrote:
We use these terms a lot and we also use phrases which mean things similar to these terms. I’d like to explicitly define them and I encourage all to use them as defined so as to be clear and concise. I think it will help.
· *Authentication* = based on the credentials you have shared (e.g. user name, password, SMS response, smart card, etc.), we know* who you are*
· *Authorization* = based on who you are, you are allowed to access specific resources and those resources only, i.e. we define *what you can do*
If you want to be extra-nerdy:
· Authentication can be abbreviated “*authN*”
· Authorization can be abbreviated “*authZ*”
· Authentication and Authorization together can be referenced as “ *authX*”
I hope that’s useful.
/marksv
_______________________________________________ gnso-rds-pdp-wg mailing list gnso-rds-pdp-wg@icann.org https://mm.icann.org/mailman/listinfo/gnso-rds-pdp-wg