GIST v0.7 ― Z
“zero-effort forgery” to “zombie”

Z

- zero-effort forgery n.: iAfB-ICSA 1999; An arbitrary attack against biometrics system on a specific enrolee identity in which the impostor masquerades as the claimed enrolee using his or her own biometric sample.; An impostor may be able to use his or her own biometric, but not a sample (see: discussion under impostor).
- zero-knowledge password protocol n.: NIST SP 800-63-1 DRAFT (2008); A password based authentication protocol that allows a claimant to authenticate to a verifier without revealing the password to the verifier. Examples of such protocols are EKE, SPEKE and SRP.
- zeroization n., - zeroize vb.: RFC 2828 (2000); zeroize; (I) Use erasure or other means to render stored data unusable and unrecoverable, particularly a key stored in a cryptographic module or other device.; (O) Erase electronically stored data by altering the contents of the data storage so as to prevent the recovery of the data. [FP140]; NIST IR 7298 (2006); FIPS 140-2; zeroization; A method of erasing electronically stored data, cryptographic keys, and CSPs by altering or deleting the contents of the data storage to prevent recovery of the data.
- zombie n.: NIST IR 7298 (2006); SP 800-83; A program that is installed on a system to cause it to attack other systems.

The originals sources of these definitions may be protected by copyright. The definitions are republished here for review and commentary.
Copyleft & Creative Commons (cc) 2000–2008 Ant: This XHTML encoding and antnotations are dual-licensed under both ―
	The GNU Free Documentation License	A Creative Commons Attribution-Noncommercial-Share Alike 3.0 License
	http://homepage.mac.com/antallan/gistz.html	Last updated Wednesday 10 December 2008