Too Cool for Internet Explorer

GIST v0.7 ― G
“gateway” to “GULS”

G

- gateway n. 
RFC 2828 (2000)
(I) A relay mechanism that attaches to two (or more) computer networks that have similar functions but dissimilar implementations and that enables host computers on one network to communicate with hosts on the other; an intermediate system that is the interface between two computer networks. (See: bridge, firewall, guard, internetwork, proxy server, router, and subnetwork.)
(C) In theory, gateways are conceivable at any OSI layer. In practice, they operate at OSI layer 3 (see: bridge, router) or layer 7 (see: proxy server). When the two networks differ in the protocol by which they offer service to hosts, the gateway may translate one protocol into another or otherwise facilitate interoperation of hosts (see: Internet Protocol).
- GCA n. 
See: geopolitical certificate authority.
- general support system n. 
NIST IR 7298 (2006)
SP 800-53; OMB Circular A-130, App. III
An interconnected set of information resources under the same direct management control that shares common functionality. It normally includes hardware, software, information, data, applications, communications, and people.
- GeneralizedTime n. 
RFC 2828 (2000)
(N) The ASN.1 data type GeneralizedTime (specified in ISO 8601) contains a calendar date (YYYYMMDD) and a time of day, which is either (a) the local time, (b) the Coordinated Universal Time, or (c) both the local time and an offset allowing Coordinated Universal Time to be calculated. (See: Coordinated Universal Time, UTCTime.)
- Generic Security Service Application Program Interface (GSS-API) n. 
RFC 2828 (2000)
(I) An Internet Standard protocol [R2078] that specifies calling conventions by which an application (typically another communication protocol) can obtain authentication, integrity, and confidentiality security services independently of the underlying security mechanisms and technologies, thus allowing the application source code to be ported to different environments.
(C) “A GSS-API caller accepts tokens provided to it by its local GSS-API implementation and transfers the tokens to a peer on a remote system; that peer passes the received tokens to its local GSS-API implementation for processing. The security services available through GSS-API in this fashion are implementable (and have been implemented) over a range of underlying mechanisms based on [symmetric] and [asymmetric cryptography].” [R2078]
- generic SIO class n.
SC 27 SD 6 (2002)
ISO/IEC 15816: 2001
An SIO class in which the data types for one or more of the components are not fully specified.
- genetic penetrance n. 
iAfB-ICSA 1999
The degree to which characteristics are passed from generation to generation.
- geopolitical certificate authority (GCA) n. 
RFC 2828 (2000)
(O) SET usage: In a SET certification hierarchy, an optional level that is certified by a BCA and that may certify cardholder CAs, merchant CAs, and payment gateway CAs. Using GCAs enables a brand to distribute responsibility for managing certificates to geographic or political regions, so that brand policies can vary between regions as needed.
- Global System for Mobile Communications (GSM) n.
GSM (originally from Groupe Spécial Mobile) is the most popular standard for mobile phones in the world, in which both signaling and speech channels are digital. GSM pioneered a low-cost alternative to voice calls, the short message service (SMS, also called text messaging).
- goats n. 
iAfB-ICSA 1999
Biometric system end users whose pattern of activity when interfacing with the system varies beyond the specified range allowed by the system, and who consequently may be falsely rejected by the system.
- Government Smart Card Interagency Advisory Board n.
Government Smart Card Interagency Advisory Board 
- graduated security n. 
NIST IR 7298 (2006)
FIPS 201
A security system that provides several levels (e.g., low, moderate, high) of protection based on threats, risks, available technology, support services, time, human concerns, and economics.
- Gramm-Leach-Bliley (GLB) em> n.
SCA ISCTAG (2007)
The Financial Services Modernization Act of 1999 (also known as the Gramm-Leach-Bliley Act), enacted to facilitate affiliation among banks, securities firms, and insurance companies. The Act includes provisions to protect consumers’ personal financial information held by financial institutions.
- Green Book n. 
RFC 2828 (2000)
(D) Except as an explanatory appositive, ISDs SHOULD NOT use this term as a synonym for Defense Password Management Guideline [CSC2]. Instead, use the full proper name of the document or, in subsequent references, a conventional abbreviation. (See: Rainbow Series.)
(D) Usage note: To improve international comprehensibility of Internet Standards and the Internet Standards Process, ISDs SHOULD NOT use “cute” synonyms for document titles. No matter how popular and clearly understood a nickname may be in one community, it is likely to cause confusion in others. For example, several other information system standards also are called the Green Book. The following are some examples:
  • Each volume of 1992 ITU-T (at that time, CCITT) standards.
  • PostScript Language Program Design, Adobe Systems, Addison-Wesley, 1988.
  • IEEE 1003.1 POSIX Operating Systems Interface.
  • Smalltalk-80: Bits of History, Words of Advice, Glenn Krasner, Addison-Wesley, 1983.
  • X/Open Compatibility Guide.
  • A particular CD-ROM format developed by Phillips.
- GRIP n. 
RFC 2828 (2000)
(I) A contraction of Guidelines and Recommendations for Security Incident Processing, the name of the IETF working group that seeks to facilitate consistent handling of security incidents in the Internet community. (See: security incident.)
(C) Guidelines to be produced by the WG will address technology vendors, network service providers, and response teams in their roles assisting organizations in resolving security incidents. These relationships are functional and can exist within and across organizational boundaries.
- GSM n.
See: Global System for Mobile Communications.
- GSS-API
See: Generic Security Service Application Program Interface.
- guard n. 
ISO/IEC 2382-8:1998
A functional unit that provides a security filter between two data processing systems operating at different security levels or between a user terminal and a database to filter out data that the user is not authorized to access.
RFC 2828 (2000)
(I) A gateway that is interposed between two networks (or computers, or other information systems) operating at different security levels (one level is usually higher than the other) and is trusted to mediate all information transfers between the two levels, either to ensure that no sensitive information from the first (higher) level is disclosed to the second (lower) level, or to protect the integrity of data on the first (higher) level. (See: firewall.)
NIST IR 7298 (2006)
SP 800-53 Rev 1; CNSSI-4009 Adapted
guard (system)
A mechanism limiting the exchange of information between information systems or subsystems.
- guessing entropy n. 
See: (secondary definition under) entropy.
- guest login n. 
See: anonymous login.
- GULS n. 
RFC 2828 (2000)
(I) Generic Upper Layer Security service element (ISO 11586), a five-part standard for the exchange of security information and security-transformation functions that protect confidentiality and integrity of application data.
The originals sources of these definitions may be protected by copyright. The definitions are republished here for review and commentary.
Copyleft & Creative Commons (cc) 2000–2008 Ant: This XHTML encoding and antnotations are dual-licensed under both ―
GFDL The GNU Free Documentation License   Creative Commons License A Creative Commons Attribution-Noncommercial-Share Alike 3.0 License
URL http://homepage.mac.com/antallan/gistg.html History Last updated Wednesday 10 December 2008

Made on a MacBuilt with BBEdit In Association with Amazon.co.uk Valid XHTML 1.0! Valid CSS!