Terminology
Glossary
3
3-D Secure
A
AAGUID (Authenticator Attestation Global Unique Identifier)
Access Control Server (ACS)
Access Token
Account Takeover (ATO)
Acquirer
Adaptive MFA
AGDIS (Australian Government Digital ID System)
allowCredentials
Assertion
Attestation
Authentication Assurance Level (AAL)
Authenticator
Authenticator App
authenticatorSelection
B
Biometric Authentication
Botnet
Brute Force Attack
C
Card Access Number (CAN)
Card Not Present (CNP)
CBOR
CDA (Cross-Device Authentication)
Certificate-Based Authentication (CBA)
Chrome on Mac
CISO
clientDataJSON
Conditional UI
Confidential and Public Applications
Credential Stuffing
Credential-on-File (COF) Token
Critical Infrastructure
Cross-Platform Authenticator
Cryptographic Challenge
CTAP (Client-to-Authenticator-Protocol)
Cyber Attack
Cyber Threat
D
Data Breach
Decentralized Identifier (DID)
Delegated Authentication
Digital Badge
DIRA (Digital Identity Risk Assessment)
Discoverable Credential
DNS Spoofing
E
eIDAS
excludeCredentials
Exploit
External Authenticator
F
FAL (Federation Assurance Level)
FIDO Alliance
FIDO2
FIPS 140-2
G
GDPR (General Data Protection Regulation)
Google Password Manager
H
HMAC-Secret
HSM (Hardware Security Module)
I
IAL (Identity Assurance Level)
IAM (Identity Access Management)
iCloud Keychain
Identity Proofing (IP)
IP Spoofing
ISO 18013-5 NFC, BLE, QR
ISO 18013-7 Remote Presentation
Issuer
J
JSON-LD
JWKS (JSON Web Key Sets)
JWT (JSON Web Token)
K
Kerberos
M
Machine-to-machine (M2M) Authentication
Malware
Man-in-the-Middle (MitM) Attack
mDoc
Merchant
MFA (Multi-Factor Authentication)
Microcredentials
N
Network Tokenisation
Non-Resident Keys (NRK)
O
OAuth 2.0
OIDC (OpenID Connect)
OpenID for Verifiable Credentials (OpenID4VC)
OpenID for Verifiable Presentations (OpenID4VP)
OpenID4VCI
OTP (One-Time Password)
P
PAM (Privileged Access Management)
Passkey
Password Authenticated Connection Establishment (PACE)
Password Hashing
Password Salting
Passwordless Authentication
Personal Identification Data (PID)
Phishing
Phishing-Resistant MFA
Platform Authenticator
Primary Account Number (PAN)
Public Key Cryptography
PublicKeyCredentialCreationOptions
PublicKeyCredentialRequestOptions
Q
Qualified Certificate (QC)
Qualified Electronic Attestations of Attributes (QEAA)
Qualified Electronic Signature (QES)
Qualified Trust Service Provider (QTSP)
R
Ransomware
Relying Party
Resident Key
Role-Based Access Control (RBAC)
Root of Trust (RoT)
S
SAML (Security Assertion Markup Language)
Secure Enclave
Secure Remote Commerce 2.0 (SRC 2.0)
Security Key
Selective Disclosure ( SD-JWT)
SIM Swap
Smart Card
Social Login
Spear Phishing
SSO (Single-Sign-On)
Step-Up Authentication
T
TDIF (Trusted Digital Identity Framework)
TPM (Trusted Platform Model)
Trust Framework
Trust Service Provider (TSP)
U
U2F (Universal 2nd Factor)
User Presence
User Verification
V
Verifiable Credential (VC)
Verifiable Presentation
Vishing
Vulnerability
W
W3C (World Wide Web Consortium)
WebAuthn
Windows Hello
Y
YubiKey
Z
Zero Trust
Start with visibility
See what's really happening in your authentication and passkey rollout. Keep everything else.
- Works with any IDP
- Debug auth issues in 5 minutes
- 10x higher passkey adoption