Glossary
COMPANY-SPECIFIC phrases and branding
NoPass™ Desktop Application
the NoPass™ program designed to run on a personal computer and necessary for authentication purposes.
NoPass™ Desktop Unlock Portal
one of the NoPass™ services that allows to log in to the user's profile without the password.
NoPass™ Mobile Application
the NoPass™ software designed to be used on a smartphone and necessary for authentication purposes.
NoPass™ Single Sign-On (SSO)
one of the NoPass™ services based on identity provider and allows to log in to several independent software systems.
NoPass™ Multi-Factor Authentication (MFA)
one of the NoPass™ authentication services based on using additional authentication factors such as biometrics and a smartphone as a security token.
NoPass™ Portal
a type of NoPass™ integration services.
NoPass™ Admin Console
an application that allows to administer integrations, manage user accounts, and grant permissions.
Full Duplex Authentication™ (FDA)
a patent-pending technology that verifies both the user's connection to the server as well as the application on the user's mobile device to reduce the chance of phishing attacks.
NoPass™ Preshop Portal
a web portal designed for demonstration purposes to test NoPass integration.
NoPass™ Profile
an option providing for access to accounts, devices, and sessions and enabling the users with the possibility to monitor and manage their accounts and sessions on their devices.
Special terms
Biometric (authentication)
one of the MFA used in the NoPass™ system, such as a fingerprint, eye scan, or face ID (depending on the mobile device).
Impersonation attack
a form of fraud where an attacker poses as a trusted person to steal money or sensitive information from a company.
Man-in-the-middle attack
a type of cyber-attack when the perpetrator secretly intercepts the communication between a user and an application with an aim of either eavesdropping or modifying messages between the parties.
MFA
Multi-Factor Authentication, a method that requires two or more different factors to achieve authentication.
Push server
a server that interacts with the application sending notification messages to the device. Acts as a Server Agent and can only send Server notifications.
Push notification
a message sent by the application to the user's device to confirm the user's action within the application.
Server
the authentication server that performs user authentication on the portal's request.
SSO
single sign-on, which means an authentication scheme that allows a user to use a single login and password to log in to several related, yet independent, software systems.
Passwordless authentication
a method in which a user can log in to a software system without entering a password.
Authentication
the process or action of verifying the identity of a user or process.
Authorization
the process or action of granting a user permission to access something.
Man-in-the-Browser Attack
a type of cyber-attack with a similar approach as a Man-in-the-middle attack, except in this case malware is used to act between the browser and the browser's security mechanism.
SAML
stands for Security Assertion Markup Language. It is an XML-based open standard used by identity providers to transfer authorization credentials to service providers.
OIDC
stands for OpenID Connect - an authentication protocol that allows verifying user identity when a user is trying to access a protected HTTPs endpoint.
Identity provider (IdP)
a trusted third-party service that creates and manages a user's identity and associated attributes, and then provides user authentication as a service to relying party applications. A common example of IdP is Keycloak, Okta.
Service provider (relying party, consumer)
a federation partner (a website) that provides services (hosts applications) to the user. Service providers do not authenticate users.
OpenID
an open standard authentication protocol that allows users to be authenticated by service providers using a third-party service (identity provider).
Password
an authentication factor, usually a unique secret string of characters that allows access to a service.
Software Development Kit (SDK)
a set of software development tools that facilitate the creation of the application.
SSL
stands for Secure Sockets Layer - a security protocol that creates an encrypted link between a web server and a web browser.
SSL Certificate
a digital certificate that authenticates the website's identity and enables the encrypted connection.
Wildcard certificate
a digital certificate that is applied to a domain and all its subdomains.
Public Certification Authority (CA)
a third-party entity that issues certificates on a fee-paying basis after necessary checks of the organization requesting a certificate.
Private Certification Authority (CA)
an enterprise-specific CA that issues certificates only to people or devices within the enterprise.
Self-signed certificate
a certificate that is not signed by either a private or public CA, but with its own private key.
S-Code
a secret key set by the administrator and used by the NoPass™ system to validate the service as another security check.
Admin ID
an Admin Login that was set during the portal registration in the server installation.
Portal ID
a unique identification number assigned to an individual portal by the NoPass™ authentication server.
RADIUS
stands for Remote Authentication Dial-In User Service, a networking protocol that provides centralized authentication, authorization, and accounting management for users who connect and use the network service.
GDPR
stands for General Data Protection Regulation, an EU law on data protection and privacy in the European Union and European Economic Area.
VPC
stands for Virtual Private Cloud, a secure isolated private cloud hosted within a private cloud.
NAT
stands for Network Address Translation, a method of mapping multiple local private addresses to a public address.
SSH key
stands for Secure Shell key, an access credential for SSH network protocol used for remote communication between machines on an unsecured open network.
GUID
stands for Globally Unique Identifier, a 128-bit text string that represents an identification (ID).
CE
stands for Community Edition, a free software version offered under an open-source license.
EE
stands for Enterprise Edition, a paid software version offered with tech support and updates.
LDAP
stands for Lightweight Directory Access Protocol, a standards-based mechanism for interacting with directory servers.
VPN
stands for Virtual Private Network, a service that establishes a secure encrypted connection between a user's computer and the Internet.
RDP
stands for Remote Desktop Protocol, a protocol for using a desktop computer remotely.
PAP/CHAP/EAP
types of authentication protocols: Password Authentication Protocol/ Challenge Handshake Authentication Protocol/ Extensible Authentication Protocol
NPS
stands for Network Policy Server, a Microsoft service implementing the RADIUS server and proxy.
OTP
stands for One-Time Password, an automatically generated string of characters to authenticate a user for a single transaction or login session.
SignalR
a free and open-source software library that allows developers to add real-time web functionality to their applications.
Maven
a build automation tool used to build and manage projects written in Java, Ruby, C#, Scala, and other languages.
Keycloak
is an open-source software product used to allow SSO with Identity and Access Management aimed at modern applications and services.
DNS
stands for Domain Name System, a hierarchical naming system that allows communication between devices on a network.
TTL
stands for Time to Live, the amount of time that a packet or data should exist on a computer or network before being discarded.
FCM
stands for Firebase Cloud Messaging, a cross-platform messaging solution that allows you to send messages reliably and at no cost.
SMTP
stands for Simple Mail Transfer Protocol, an application used by mail servers to send, receive, and \ or relay outgoing mail between email senders and receivers.