Glossary
The Terms Shaping Modern Identity Security
A
Access Certification
Access Certification Campaign
Access Control
Access Control Framework
Access Control Policy
Access Deprovisioning
Access Drift
Access Governance
Access Governance Framework
Access Lifecycle Management
Access Management
Access Provisioning
Access Request
Access Review
Access Review Campaign
Access Risk Management
Access Sprawl
Access Transparency
Account Takeover Prevention
Adaptive Authentication
AI Identity Impersonation Risk
AI-Driven Access Decisions
Anomalous Access Detection
API Identity Security
Application-Level Identity
Attribute-Based Access Control (ABAC)
Audit Automation
Audit Compliance
Audit Evidence
Audit Logs
Audit Readiness
Audit Trail
Authentication
Automated Access Reviews
Automated Provisioning
Autonomous Identity Governance
B
Bastion Host
Behavioral Analytics
Biometric Authentication
Biometric Liveness Detection
Breach Detection
Brute Force Attack
C
CI/CD Pipeline Security
Cloud Access Security Broker (CASB)
Cloud Entitlement Sprawl
Cloud Identity
Cloud Infrastructure Entitlement Management (CIEM)
Cloud PAM
Compliance Automation
Compliance Framework
Compliance Management
Compliance Reporting
Conditional Access
Consent Management
Container Identity
Context-Aware Authorization
Continuous Authentication
Continuous Compliance
Continuous Identity Verification
Continuous Privilege Validation
Credential Deception Technology
Credential Exposure
Credential Management
Credential Rotation
Credential Stuffing
Credential Theft
Credential Vaulting
Cross-Border Identity Compliance
Cross-Tenant Access Risk
Cryptographic Identity Binding
Customer Identity and Access Management (CIAM)
D
Data Breach
Data Classification
Data Governance
Data Loss Prevention (DLP)
Data Privacy
Decentralized Identifiers (DIDs)
Decentralized Identity
Defense in Depth
Delegated Administration
Deny by Default
DevSecOps Identity Integration
Digital Certificate
Digital Identity
Digital Signature
Directory Services
Dynamic Access Control
E
Encryption Key Management
Endpoint Detection and Response (EDR)
Entitlement Creep
Entitlement Intelligence
Entitlement Management
Entitlement Review
Ephemeral Credentials
Exposure Management
F
Fast Identity Online (FIDO)
Federated Identity
Federated Identity Management
FIDO2
G
General Data Protection Regulation (GDPR)
GitOps Identity Controls
Governance Automation
Governance Framework
Governance, Risk, and Compliance (GRC)
H
Hardware Security Module (HSM)
Human vs Non-Human Identity
Hybrid Identity
I
IaC Security Posture
Identity Analytics
Identity and Access Management (IAM)
Identity Assurance
Identity Attack Path Analysis
Identity Attack Surface
Identity Blast Radius
Identity Choreography
Identity Compliance
Identity Correlation
Identity Data Lineage
Identity Fabric
Identity Fabric Architecture
Identity Federation
Identity Governance
Identity Governance and Administration (IGA)
Identity Graph
Identity Honeytokens
Identity Intelligence
Identity Lifecycle Management
Identity Mesh
Identity Orchestration
Identity Posture
Identity Proofing
Identity Provider (IdP)
Identity Resilience
Identity Risk Management
Identity Risk Scoring
Identity Security
Identity Security Posture Management (ISPM)
Identity Segmentation
Identity Threat Detection
Identity Threat Intelligence
Identity Threat Response
Identity Verification
Identity-Based Access Control
Identity-Centric Security
Incident Response
Infrastructure Identity
Insider Threat
J
K
Kerberos Authentication
Key Management
Knowledge-Based Authentication (KBA)
L
Lateral Movement
Lateral Movement Detection
LDAP (Lightweight Directory Access Protocol)
Least Privilege
Least Privilege Access
Least Privilege Enforcement
Lifecycle Automation
M
Machine Identity
Machine-to-Machine Authentication
Microsegmentation
Multi-Factor Authentication (MFA)
Mutual Authentication
N
Non-Human Identity
Non-Human Identity Governance
O
P
Password Management
Password Policy
Passwordless Authentication
Peer Group Analytics
Phishing Attack
Phishing Detection
Phishing-Resistant Authentication
Policy Enforcement
Policy Management
Post-Quantum Authentication
Principle of Least Privilege
Privacy-Preserving Authentication
Privilege Escalation
Privileged Access Management (PAM)
Privileged Account
Privileged Cloud Access
Privileged Identity Management (PIM)
Privileged Session Management
Public Key Infrastructure (PKI)
Q
Quantum Cryptography
R
Risk Assessment
Risk-Based Access
Risk-Based Authentication
Role Certification
Role Engineering
Role Governance
Role Management
Role Mining (LP Page link )
Role-Based Access Control (RBAC)
Role-Based Provisioning
Root Access
Root Privileges
Runtime Access Controls
S
SaaS Governance
SaaS Identity Sprawl
Secrets Management
Secrets Rotation Automation
Secure Access Service Edge (SASE)
Security Information and Event Management (SIEM)
Security Operations Center (SOC)
Segregation of Duties (SoD)
Self-Sovereign Identity (SSI)
Service Account
Session Hijacking
Session Management
Session Recording
Shadow IT
Single Sign-On (SSO)
Step-Up Authentication
Strong Authentication
Supply Chain Identity Risk
T
Threat Detection
Threat Intelligence
Time-Based One-Time Password (TOTP)
Token Management
Token Theft Prevention
Token-Based Authentication
Tokenized Identity
Trust Score
U
Unified Identity Platform
User Behavior Analytics (UBA)
User Deprovisioning
User Lifecycle Management
User Provisioning
V
Verified Credentials
Vulnerability Management
W
Web Application Firewall (WAF)
Workforce Identity Federation
Workload Identity
X
XDR (Extended Detection and Response)
Z
Zero Trust
Zero Trust Architecture
Zero Trust Identity
Zero Trust Network Access (ZTNA)
Zero Trust Security
Zero-Day Vulnerability
ZKP (Zero-Knowledge Proof)
GET A PERSONALIZED DEMO
Ready to see Tech Prescient in action?
“As an industrial, securing capacity and optimizing budget are key. In that perspective, you are looking for a transport”
Murli Ramsunder
Senior Architect, Vonage