Access Control defines the mechanisms used to define or restrict the rights of authorized users, application programs, systems, or processes to information system resources.
Access Point (AP) is a central device that is usually connected to a wired network like the Internet or a corporate or home LAN to which several wireless clients communicate.
ActiveX is an architecture that lets the ActiveX control program interact with other programs over a network, e.g. the Internet. It is an umbrella of mechanisms to bring sound bytes, animation and interactivity to Web documents.
Agency: State government agencies and institutions and entities of state government within the executive and judicial branches of Washington State.
Assurance Level describes the degree of certainty that the person interfacing with a program or system is a party with authority to commit to an obligation related to a transaction.
Authentication is the process of ensuring the identity of a connected user or participants exchanging electronic data.
Beaconing refers to the broadcasting of a wireless access point's details to the public.
Board: The Information Services Board (ISB).
Browser is a software navigation tool that facilitates the display of information. A browser also allows a computer user to move easily among Web sites accessible by the Internet or within closed networks.
Catastrophic Disaster is one in which the outage will probably last more than seven days. Damage due to a catastrophic disaster is severe and could involve total destruction of the agency facility. Replacement of equipment or significant renovation of the facility may be necessary.
Certificate or Digital Certificate is a computer-based record that identifies the certification authority issuing digital signature certificate, names or identifies its subscriber, contains the subscriber's public key, and is digitally signed by the certification authority issuing it.
Certification Authority is a licensed, trusted third party (public or private) that issues, revokes, and manages digital certificates following pre-defined policy or rules (see Certificate Policy).
Certificate Policy involves a defined set of rules that indicates the applicability of a Certificate to a particular community and/or class of application with common security requirements.
Certificate Practice Statement is a public statement of the practices for issuing, validating and supporting reliance on Certificates.
Chain of Custody is the ability to track ownership of events.
Checksum is a numeric value used to verify the integrity of a block of data. When data is transmitted from point to point in a packet, the sending computer counts the bytes and adds a check digit at the end of the packet. The receiving computer calculates the bytes received and compares the sender's count with the receiver's count to determine if there is any change that might indicate tampering with the information.
Client Server is a common form of
distributed
system in which software is split between
server tasks and
client tasks. A client sends requests to a server, according to some
protocol, asking for information or action, and the server responds.
Command Center: The command center is a local, on or off premise area, from which to manage the emergency situation. It is a focal point for coordinating the recovery program, issuing information, and assembling personnel.
Corporate Agreement: Contracts negotiated and administered by DIS with the manufacturer or provider of an information technology produce or service where significant advantages will result to the state when DIS uses its leverage as a corporate buyer. DIS can offer agencies discretionary products and services resulting from corporate agreements under powers and duties granted to DIS for brokering and leasing services via the DIS enabling legislation, RCW
43.105.052(2)(d). Products and services may also be available to local governments if their local contracting regulations so allow and if they have a customer service agreement with DIS.
Critical Functions are those functions an agency must perform to survive. Failure to perform them would result in serious or irreparable harm to the agency. Impact may take the form of increased operating costs, loss of revenue collection, or inability to provide services to clients.
Cryptographic Hashes are an algorithm that secures data integrity through the detection of changes of data or errors that occur in transmission from one point to another.
Customer Service Agreement is an agreement between DIS and another governmental entity (local, state, federal, political subdivision) that allows the entity to purchase services from DIS.
Cyclic Redundancy Check (CRC) is a number derived from, and stored or transmitted with, a block of data in order to detect corruption. By recalculating the CRC and comparing it to the value originally transmitted, the receiver can detect some types of transmission errors.
Denial of Service (DoS) is a hacker attack designed to shut down or overwhelm a system, such as a Web server or authentication server.
Digital Signatures involve the electronic identification of a person or thing created by using a public key algorithm, intended to verify a recipient, the integrity of the data, and the identity of the sender. Digital signatures are also defined as a cryptographic process used to ensure message originator authenticity, integrity, and non-repudiation.
Digital Signature Hardware are computer systems, peripherals or devices used to issue or manage certificates used to create legally binding signatures pursuant to RCW 19.34; or, the use of a privately operated public key infrastructure (PKI) through contractual agreement.
Digital Signature Software is used to operate a cryptographic key system, a public key repository, or digital signature workstation software.
Direct Buy are purchases under $10,000 that may be made without formal competition, based upon the purchaser's experience and knowledge of the market, to acquire the resource which best meets the agency's needs.
Disaster: Any unplanned circumstance or event that results in an inability to support critical business functions within the current environment.
Disaster Recovery/Business Resumption Plan is a comprehensive statement of actions to be taken in response to a disaster. It includes documented, tested procedures that, if followed, will assure the availability of the critical resources and facilities required to maintain continuity of operations.
Domain Name System (DNS) is a general-purpose distributed, replicated, data query service chiefly used on the Internet for translating hostnames into Internet addresses. Also, the style of hostname used on the Internet, though such a name is properly called a fully qualified domain name. DNS can be configured to use a sequence of name servers, based on the domains in the name being looked for, until a match is found.
Electronic Commerce (EC, E-Commerce): The uses of communication technologies to transmit business information and transact business. Taking an order over the telephone is a simple form of EC. Commerce conducted via the internet is also called EC, but commercial exchanges on the internet are only one of several advanced forms of EC that use different technologies, integrated applications and business processes to link enterprises. Business-to-business EC focuses on transactions and communication, specifically the electronic exchange of information, goods, services and payments. Key business processes that are carried out by EC include procurement, order entry, transaction processing, payment, inventory, fulfillment, and customer support.
Encryption is any procedure used in
cryptography
to convert
plaintext into
ciphertext in order to prevent any but the intended recipient from reading that data. There are many types of data encryption used as the basis of network security. Common types include
Data Encryption Standardand
public-key encryption.
Enterprise-Wide Technology is a technology that supports a statewide, agency-wide, or mission-critical application, such as e-mail.
Equipment: Machines, devices, and transmission facilities used in information processing, such as computers, word processors, terminals, telephones, and cables.
Firewall describes a combination of hardware and software designed to
control the types of network connections allowed to a system or combination of
systems or that enforces a boundary between two or more networks.
Follow-On Use Solicitation and Follow-On Contract: A follow-on use solicitation is a solicitation that contains language that will permit an agency other than the one that issued the solicitation to execute a contract with the successful vendor. A follow-on contract is a contract that is executed by an agency based upon a solicitation authorizing follow-on use that was conducted by another agency. There are narrow conditions and restrictions on this type of
solicitation.
Fraud is defined as gaining privileged information about a computer system (such as a password) by skillfully lying - usually via a phone call. It often involves impersonating an authorized user.
Fully Qualified Domain Name (FQDN) is the full name of a system, consisting of its local hostname and its domain name, including a Top-Level Domain (TLD). For example, "venera" is a hostname and "venera.isi.edu" is an FQDN. A FQDN should be sufficient to determine a unique Internet address for any host on the Internet. This process, called "name resolution", uses the Domain Name System (DNS).
Geo-datasets are digital collections of spatial information primarily
managed or edited by geographic information system (GIS) software. Although some
computer aided design (CAD) systems have GIS like functions, for purposes of
this definition, CAD systems are not considered GIS.
Hypertext Transfer Protocol Secure (HTTPS or S-HTTP) was developed by Enterprise Integration Technologies (EIT). Like SSL, HTTPS creates a secure connection between a client and a server, over which any amount of data can be sent securely, HTTPS is designed to transmit individual messages securely. SSL and HTTPS, therefore, can be seen as complementary rather than competing technologies.
Identification is the process of matching a set of qualities or characteristics that uniquely identifies a person. It is a technique used by one party to ensure a second party is very likely the party claiming the identity. Assurance of identification can be increased by a number of practices appropriate to the need. These practices range from passwords to tokens, smart
cards, and public keys with Certificates.
Industry Standards are the common and repeated use of rules, conditions, guidelines or characteristics for products or related processes that are developed and promulgated by an industry for materials and products related to that industry.
Information Processing means the electronic capture, collection, storage, manipulation, transmission, retrieval, and presentation of information in the form of data, text, voice, or image and includes telecommunications and office automation functions.
Information Services: means data processing, telecommunications, office automation, and computerized information systems.
Information Technology (IT) Resources: Equipment, telecommunications, video telecommunications, proprietary software, and purchased services. It resources may also include personal services when OFM approvals are obtained and all reporting/approval requirements of OFM are followed.
Internet is an interconnection of networks that provides the enabling high-speed backbone that supports communications worldwide.
Internet Network Information Center (InterNIC): In 1992, in cooperation with the Internet community, the National Science Foundation selected three organizations to receive cooperative agreements in the areas of Information Services, Directory and Database Services, and Registration Services to provide and/or coordinate services for the NSFNet community. Together these three awards constitute the InterNIC. General Atomics provides information services, AT&T provides directory and database services, and Network Solutions, Inc. (NSI) provides registration services. See
www.internic.net/index.html
Internet Protocol (IP) Address is a numeric address such as 123.231.32.2 that the domain name server translates from a domain name.
Internetworking is a term that describes the connecting of two or more networks to facilitate communication.
An
Investment is a specific piece of hardware/peripherals or a software application developed at agency expense or acquired from vendors, or any combination of these events, that serves current and future needs of the agency. For purposes of the portfolio, an
investment is defined to be a specific piece of hardware/peripherals or a software application developed at agency expense or acquired from vendors, or any combination of these events, that serves current and future needs of the agency.
Investment Cost: The development and implementation costs required to make an IT resource/project fully operational. Investment cost includes all purchases, lease or finance costs, including all costs for hardware, software, networking and telecommunications equipment, installation, training, personal and purchased services, internal agency resources, and all applicable taxes.
IT Infrastructure refers to the computerized networks, intelligent terminals, and accompanying applications and services people use to access, create, disseminate, and utilize digital information; the equipment, software, services, and products used in storing, processing, transmitting, and displaying all forms of information. IT includes data processing, office automation, multimedia, and telecommunications; the knowledge and skills of the people who design and operate the technologies which supply business solutions.
Java is a programming language designed for writing software to leave on World Wide Web sites that can then be downloaded, using the Internet, to a personal computer. It is described as being a virtual machine and interpretive dynamic language and environment. It allows programs to be downloaded to any personal computer. It is not manufacturer dependent.
Local Area Network (LAN) is a localized network consisting of hardware and software. The LAN links personal computers with file servers and other devices for the purpose of facilitating the exchange and sharing of information and resources.
Local Government refers to county, municipal, and quasi-municipal corporations and political subdivisions and all agencies of these corporations and subdivisions that are authorized to contract separately.
Logon ID is a unique set of information that provides access to a computer or information system.
Major Disaster is one in which the outage will probably last from two to seven days. Damage due to a major disaster is more severe than that due to a minor disaster. For example, in a major disaster, key business units could be without telecommunications capability for an extended period. Or the computer room could suffer heavy damage.
Master Contract is a contract established by DIS through a competitive solicitation. Agencies that choose to acquire IT resources under a master contract need not conduct a competitive solicitation but must still obtain any necessary approvals described in the IT Investment Standards. All entities that desire to purchase under a master contract must have a customer service agreement with DIS.
Minor Disaster is one in which the outage will probably last longer than one shift, but less than two days. Damage due to a minor disaster is comparatively light. It may consist of minor damage to hardware, software, or electrical equipment from fire, water, chemicals, etc.
Mission Critical Systems are automated systems that are essential to the agency to complete required legal obligations or legislatively mandated business functions; any system that by failing could jeopardize the health, safety, or financial well being of the citizens or employees of the State of Washington; systems responsible for the administration of benefits to the public, the exchange of data with other governmental jurisdictions and business taxpayers, or otherwise required for the state to meet its legal obligations to the public and its employees; systems under the state's control that link to mission critical systems and that, if altered, could undermine the state's integrity.
Network is a term that describes an approach to link together computers and their peripherals in order to communicate among them and with outside parties.
Non-repudiation involves the use of techniques to prevent a party from denying responsibility for legitimate actions.
Operating System refers to a software program that manages the basic
operations of a computer system. It is complex in its functions that range from
apportioning memory to the ordering of tasks assigned to it. It controls the
flow of information into and from a main processor and manages the use of
printers and other peripheral systems.
PC Hard Drive is a memory access and storage device. It differs from 3 1/2 inch and CD-ROM media in its design. It is built into personal computers, stores large quantities of material and is relatively fast to access.
Personal Digital Assistant (PDA) is a hand-held electronic device used to perform tasks for functions like messages, phone directories or calendars. Communications may take place through the dial-up access, with a cable attached to a PC, or via infrared connections.
Personal Service refers to professional or other technical expertise provided by a consultant to accomplish a specific study, project, task, or other work statement per RCW 39.29.006(7).
A
planned or proposed investment entails the acquisition of a new capability that is identified in general terms but not yet funded or approved by the authorizing entities.
Private Key relates to the key of a Public/Private Key Pair kept secret by its holder, used to create Digital Signatures and to decrypt messages or files encrypted with the corresponding Public Key.
A
project is an investment in progress (developing or unfolding) that has a specific start and finish date.
Proprietary Software is software offered for sale or license where the vendor controls the source code.
Public Key Encryption is a type of cryptography also known as asymmetric cryptography. It uses a unique Public/Private Key Pair of mathematically related numbers. The Public Key can be made available to anyone who wishes to use it, while its holder keeps the Private Key secret. Either key can be used to encrypt information or generate a Digital Signature, but only the corresponding key can decrypt that information or verify that Digital Signature. The public key enables the encrypted document, file, e-mail or data stream to be deciphered using the related private key. Public-key encryption requires more computing power than symmetric-key encryption. To improve throughput, many systems use a public key to protect a symmetric key that, in turn, is used to protect the material.
Public Key Infrastructure (PKI) is the software and/or hardware components necessary to manage and enable the effective use of public key encryption technology, particularly on a large scale.
Purchased Services are services provided by a vendor to accomplish routine, continuing, and necessary functions such as equipment maintenance and repair, operation of a physical plant, security, computer hardware and software installation and maintenance, data entry, keypunch services, programming services and analysis, and computer time-sharing per RCW 43.19.190(2) and 43.105.052(2).
Recovery Teams are manageable units having common recovery requirements. The recovery teams will very likely parallel an existing agency departmental organization.
Secure Electronic Transaction (SET) is a protocol for transmitting private documents via the Internet. As such, it will enable secure credit card transactions on the Internet. Microsoft, Netscape, Visa and MasterCard have endorsed it.
Secure Sockets Layer (SSL) was developed by Netscape for transmitting private documents via the Internet. It works by using a private key to encrypt data that is transferred over the SSL connection. It is widely used and accepted by Netscape and Internet Explorer.
Senior Technology Management Consultant: DIS staff to the Information Services Board. Each is assigned to specific agencies to help be public stewards of the state's IT portfolio, including but not limited to major IT projects and the shared statewide IT infrastructure.
Service Set Identifier (SSID) is meant to differentiate networks from one another. Initially, wireless access point's (AP's) come set to a default depending on the manufacturer. For example, all Linksys AP's are set to the network name of 'linksys', while Cisco AP's are initially set to 'tsunami'. Because these default SSID's are so well known, not changing it makes your network much easier to detect.
Shared and Trusted Environment is one in which known parties, those who can authenticate themselves at whatever level of certainty is deemed appropriate, conduct business. The business may involve the exchange of information or the sale of products or services, or may simply involve communications. The qualification that the parties must be "known" relates to a need to control access to those who will not tamper with information, attack systems or otherwise disrupt the environment.
Significant geo-datasets meet one or more of the following criteria:
- geodata set is mission critical for agency or major program or is required for regulatory purposes and/or,
- estimated or expected life cycle costs or investment exceed $500,000 and/or,
- geodata is regularly distributed outside agency and/or,
- geodata holding has been designated significant by Information Services Board.
When completed, data sets developed as part of the Washington State Geospatial Framework will meet this definition.
State Government Network (SGN) is the DIS-managed, secured network for Washington state government organizations. The SGN provides Washington state government with a shared, fault-tolerant, economical network to meet the diverse business needs across state government. The SGN also provides the necessary security layers, including but not limited to firewalls, authentication gateways and intrusion detection to allow Washington state government organizations to perform government business securely over the Internet.
Subscriber Agreement is a document signed by a person who is identified in a certificate issued by a Certification Authority (CA) as its subject. The parties agree to follow the policies of the CA in order to ensure the security of the Certificate. By such actions the parties thereby ensure the level of confidence in the authentication associated with the
certificate.
System Life Cycle Cost is the investment cost of the new resources plus projected costs for maintenance, training, operations, and applicable taxes over the expected life of the acquired resources.
Technology Assessment refers to an acquisition process that employs a multi-stage RFP method to qualify vendors and provides for an interaction period prior to final proposal evaluation.
Technology Brokering is a service authorized under RCW 43.105.152(2)(d) that allows DIS to act as a broker and conduct procurements for purchases and leases on behalf of other agencies.
Telecommunications is the science and technology of communications at a distance by electronic transmission of impulses, such as by telegraph, telephone, radio or television. It is the foundation for the Internet and all of the emerging activities surrounding the Internet's activities. Telecommunications is the transmission of information by wire, radio, optical
cable, electromagnetic, or other means.
Top Level Domain (TLD) is the rightmost portion of a host name, such
as ".gov", is name of the top-level domain to which the host computer belongs. In addition to the ".gov" domain, for use by government entities, there are more than 200 other top-level domains, called generic Top-Level Domains (gTLDs). Most generic Top-Level Domains are country codes managed by national registries. A few are global top-level domains.
Transmission Control Protocol (TCP) is a transport layer (Layer 4 in the Open Systems Interconnection [OSI] data communications reference model) that is a connection-oriented, end-to-end protocol. It provides reliable, sequenced and unduplicated delivery of bytes to a remote or local user.
Transmission Control Protocol/Internet Protocol (TCP/IP) is a networking protocol that provides communications across interconnected networks, between computers with diverse hardware architecture and a variety of operating systems.
Universal Resource Location (URL) also known as
Uniform Resource Identifiers (URI): A standard way of specifying the location of an object, typically a Web page, on the Internet. They are used in HTML documents to specify the target of a hyperlink, which is often another HTML document, possibly stored on another computer.
Video Telecommunications is the electronic interconnection of two or more sites for the purpose of transmitting and/or receiving visual and associated audio information except for the public television broadcast stations designated by the department of community, trade and economic development under RCW 43.330.
Virtual Private Networks (VPNs) involve the use of encryption in the lower protocol layers to provide a secure connection through an otherwise insecure network, typically the Internet. A VPN can send voice, data or video, or a combination of these media, across secured and encrypted private channels between two points.
Virus is a software program capable of doing extensive harm, including destroying memory or corrupting networks. A virus is often capable of replicating itself.
Vulnerability relates to risk of attack. In Information Technology terms, vulnerability describes points of risk to penetration of security barriers. Awareness of potential vulnerability is very important to designing ever more effective defenses against attack by unauthorized parties.
Washington State Digital Government Framework is defined as the processes and mechanisms supported by Transact Washington, Fortress, and Secure Access Washington.
World Wide Web (the Web or WWW) is a universe of accessible information stored on computers throughout the world. The information is available through a gigantic network called the Internet.
Workstation is a term used to describe a computer with a moderate amount of computing power and relatively high quality graphics. Workstations lie between personal computers and minicomputers, although high-end personal computers are equivalent to low-end workstations. Most workstations are single-user computers, typically linked to others through local area networks, although they may be stand-alone systems. In networking, workstation refers to any computer connected to a local area network.