| privacy confidentiality | keeping information secret from all but those who are authrized to see it. |
data integrity | ensuring information has not been altered by unauthorized or unknown means. |
entity authentication or identification | corroboration of the identity of an entity (e.g., a person, a computer terminal, a credit card, etc.). |
message authentication | corroborating the source of information; also known as data origin authentication. |
signature | a means to bind information to an entity. |
authorization | conveyance, to another entity, of official sanction to do or be something. |
validation | a means to provide timeliness of authorization to use or manipulate information or resources. |
access control | restricting access to resources to privileged entities. |
certification | endorsement of information by a trusted entity. |
timestamping | recording the time of creation or existence of information. |
witnessing | verifying the creation or existence of information by an entity other than the creator. |
receipt | acknowledgement that information has been received. |
confirmation | acknowledgement that services have been provided. |
ownership | a means to provide an entity with the legal right to use or
transfer a resource to others. |
anonymity | concealing the identity of an entity involved in some process. |
non-repudiation | preventing the denial of previous commitments or actions. |
revocation | retraction of certification or authorization. |
