Principal (Computer Security)

from Wikipedia, the free encyclopedia

In information security, a principal is an entity that can be authenticated by a computer or a network . The Java language and Microsoft literature use the term "security principal".

A security principal can refer to an individual user, computer, service, process, or thread. Security principals must be identified and authenticated before they can be assigned rights and privileges on a network. A security principal is identified by an associated identifier ( security identifier ) with which it is addressed for the assignment of properties and rights.

literature

  • RFC 2744 - Generic Security Service API Version 2 .
  • RFC 5397 - WebDAV Current Principal Extension .
  • RFC 4121 - The Kerberos Version 5 Generic Security Service Application Program Interface (GSS-API) Mechanism: Version 2 .

Individual evidence

  1. "Access Control (Overview)" , msdn.microsoft.com , October 27, 2018th