| |
|
|
|
Terms
The DES cipher applied three times with three (or two) different keys in order to make an algorithm that can be used for high security applications, but is still backward compatible with DES.
A build tool for Java made by the Apache Software Foundation. The source distribution of the ICEssl module uses Ant to build the software from source.
A language and message format used by an application program to communicate with the operating system or some other system or control program such as a communications protocol.
A small Java application run from a browser.
Abstract syntax notation one. A language for specification of data structures. ASN.1 specifies the data structure. When an ASN.1 structure is stored, an encoding format must be used. For cryptographic structures, the DER format is most used.
A certificate has an owner and a signer.
An organization trusted to issue certificates.
A set of algorithms for key exchange, signing, encryption and message authentication. The SSL and TLS protocols contain a number of predefined combinations of such algorithms, called cipher suites. During the handshake, the client and server must first agree upon which cipher suite to use for the session.
A certificate used to authenticate the client side in a handshake.
Hardware or software that compresses digital data into a smaller binary format than the original. It generally refers to software routines that compress/decompress and possibly encrypt/decrypt data.
An international effort to produce robust, open-source cryptographic software libraries.
A style sheet format for HTML documents endorsed by the World Wide Web Consortium. CSS1 (Version 1.0) provides hundreds of layout settings that can be applied to all the subsequent HTML pages that are downloaded.
By attaching style sheets to structured documents on the Web, authors and readers can influence the presentation of documents without sacrificing device-independence or adding new HTML tags.
Version 2.0 of CSS (cascading style sheets) that adds support for XML, oral presentations for the visually impaired, soft fonts, and other enhancements.
An encoding of ASN.1 structures made for cryptographic needs.
A secret key cipher designed by IBM and NSA. This was a US standard for encryption. Due to its short key length, 56 bits, it is now only recommended for medium and low security applications. For high security e.g. 3DES or AES should be used instead.
A digital certificate contains a public key, along with the distinguished name of the owner and an expiry date. It is digitally signed by a certification authority, so the public key can be verified that it belongs to the owner.
The digital counterpart of a handwritten signature. This is a string that associates a message with an originator. Anyone can verify that the originator produced the signature, but only the originator could have produced it.
In X.509 certificates, a distinguished name is the name of a person, server, company, or others that needs to be authenticated. The distinguished name contains the name itself, together with the address and country, so that the owner can be uniquely identified.
A language that describes the contents of a Standard Generalized Markup Language (SGML) document. The DTD is also used with XML, and the DTD definitions may be embedded within an XML document or in a separate file. DTDs are expected to be replaced by an XML schema from the World Wide Web Consortium.
A technical specification developed by the World Wide Web Consortium that makes it easy for developers to access components and delete, add, or edit their content, attributes, and style. The DOM makes it possible for developers to write applications which work properly on all browsers, servers, and platforms.
DOM Level 1 concentrates on the actual core, HTML, and XML document models. It contains functionality for document navigation and manipulation. DOM Level 2 includes a style sheet object model and defines functionality for manipulating the style information attached to a document. It also enables traversals on the document, defines an event model, and provides support for XML namespaces.
The module that builds the actual Document Object Model (DOM) representation.
The module that compensates for invalid HTML. This module contains a Document Type Definition (DTD) for HTML 4.01. In addition to performing DTD validation, the fixer applies fuzzy logic to make incoming HTML conform with the HTML DTD. The DOM fixer is invoked when the DOM builder tries to insert an incorrect node into the DOM tree.
An organization founded in 1961 to meet the need for standardizing computer operational formats, including programming languages and input/output codes.
A standardized scripting language, based largely on Netscape's JavaScript and Microsoft's JScript. The ECMAScript standard is defined by ECMA's Technical Committee 39 (TC-39). For more information, see http://www.ecma.ch/ecma1/STAND/ECMA-262.HTM.
ECMAScript is an object-based language that manipulates the Web page objects specified by the Document Object Model (DOM). These objects can be added, deleted, moved, or have their properties changed. This lets Web developers implement such effects as animated text, graphic roll-overs, and pages that change based on user input.
Formally recommended by the World Wide Web Consortium, this language is similar to HTML. Both XML and HTML contain markup symbols to describe the contents of a page or file. HTML, however, describes the content of a Web page (mainly text and graphic images) only in terms of how it is to be displayed and interacted with.
XML is "extensible" because, unlike HTML, the markup symbols are unlimited and self-defining. XML is a simpler subset of the Standard Generalized Markup Language (SGML).
A mathematical technique for dealing with imprecise data and problems that have many solutions rather than one. Although it is implemented in digital computers which make only yes-no decisions, fuzzy logic works with ranges of values, and solves problems in a way that resembles human logic.
A class library of ready-made graphical user interface (GUI) functions, such as windowing routines, buttons, and scroll bars.
The handshake in SSL has two purposes: To establish a secret key used for an SSL session, and to authenticate the client and server to each other. Authentication of the client is optional.
The document format used on the World Wide Web. It is a non-proprietary format based upon SGML, and can be created and processed by a wide range of tools, from simple text editors to sophisticated authoring tools. HTML uses tags to structure text into headings, paragraphs, lists, hypertext links, and so on.
A required component that provides HTML rendering and Web browsing capabilities to applications.
The module that renders HTML. It has a number of internal components. Its object-oriented design ensures each part is self-contained, can be modified, or can be replaced without disturbing the rest of the module.
The Hypertext Transfer Protocol. This protocol is used by Web browsers to transfer contents from the Web server to the browser.
The HTTP protocol encrypted using the SSL protocol.
This algorithm is believed to be compatible with the rc4 encryption algorithm designed by Ronald Rivest.
A worldwide federation of national standards bodies. The mission of ISO is to promote the development of standardization and related activities with a view to facilitating the international exchange of goods and services.
The signer of a digital certificate.
A file format used to bundle many files, such as classes, images, and sounds, into one. A JAR file contains all the resources required to install and run a Java program in a single compressed file.
A portable, platform-independent component model written in the Java programming language. It enables developers to write reusable components once and run them anywhere.
An optional Java package that enables audio, video and other time-based media to be added to Java applications and applets.
Provides the framework and player applications in which raw codecs are ported. The JMF pilot can be used anywhere a traditional plugin can be used.
A script language from Netscape that is supported in Netscape Navigator as of Version 2.0. JavaScript uses the HTML page as its user interface, whereas Java can generate a completely custom interface. On the client, JavaScript applets are maintained in source code. On the server, they are compiled into byte code, similar to Java programs.
A Java interpreter from Sun Microsystems, Inc. The JVM converts the Java byte code into machine language one line at a time and then executes it. The Java Virtual Machine is licensed to software companies that incorporate it into their browsers and server software.
The layout engine takes content and formatting information and displays the formatted content on the screen. It renders elements from the DOM on the screen according to non-fixed rules, as the DOM can contain any kind of element, including the familiar HTML elements. The layout rules for any given document are specified in a style sheet. A style sheet interpreter is required to drive the layout engine.
All aspects of reflow, line, word, and character representation are optimized using proprietary technology. The layout engine uses a default built-in HTML style to define layout rules.
A secure hash function designed by Ronald Rivest. SHA-1 is a stronger algorithm than MD5, and should be used instead when applicable.
An open-source implementation of the JavaScript script language written entirely in Java. It is typically embedded in Java applications to provide scripting to end users. Rhino is an implementation of the core language only and does not contain objects or methods for manipulating HTML documents.
A program that receives input in the form of sequential source program instructions, interactive online commands, markup tags, or other defined interfaces and breaks them into parts that can then be managed by other programming. A parser may also check to see that all necessary input has been provided. The CSS parser is run when a document has an associated style sheet to parse the style parameters and create the CSS representation.
An ASCII text encoding format for X.509 certificates, private keys and other DER-encoded cryptographic data. The format is the binary DER data encoded using base64 and a header and footer. The acronym comes from the Privacy Enhanced Mail standard, where it was used first.
A certificate owned by a single person. This is most frequently used as a client certificate or for signing emails.
An application environment specifically designed for building network-connectable applications for consumer devices for home, office, and mobile use. It is comprised of the Java virtual machine (JVM) and a subset of the Java Application Programming Interface (API), including core and optional APIs and class libraries. In addition, the PersonalJava API includes specific features required by consumer applications in resource-limited environments.
Modules responsible for the actual rendering of content. Pilots are similar to the plugins of traditional browsers. However, a pilot is compact, platform-independent, and can be loaded dynamically. This makes it similar to an applet, except that a pilot has much closer integration with the underlying browser system, providing better support for displaying content.
A proprietary interface which is part of the ICEbrowser architecture. It is designed to handle any content, such as HTML or XML. You can write pilots for content in Java and integrate them into the ICEbrowser framework.
Storage format for RSA public and private keys.
Password based encryption format for files or data.
Standard storage format for certificate chains.
Standard storage format for private keys. The private key part may be encrypted using PKCS#5.
A software component that implements an application or service. Plugins can be dynamically installed (plugged) and removed (unplugged) from a device at run-time.
The ICEbrowser print renderer uses the DOM, CSS, and layout information representing the document. The print renderer takes care of page breaking with images, tables, and table cells.
Common name for public key encryption and digital signatures. In public key encryption a key owner has one key used for encryption, called the public key, and another key used for decryption, the private key. The public key is published, so anyone wanting to send encrypted data to the user can do so, but the private key is kept secret, so only the owner can decrypt it. Only the key owner can sign a document using his private key, but anyone can verify that it is signed by the key owner using the public key.
An example implementation of an ICEbrowser application. You can study an RI to learn about the product or you can use it as a basis for your own application.
A certificate in the end of a certificate chain. If the certificate chain is valid, and the root certificate is trusted, the certificate chain is trusted.
A widely used public key algorithm that can be used for both encryption and digital signatures.
A model for accessing Java applets. The sandboxing model allows an applet to access only the system resources it needs to run. That is, sandboxing limits resource accessibility so the applet cannot affect or manipulate the system.
The screen renderer is the main rendering module. It is responsible for fast, efficient rendering of the representation in the DOM and CSS.
A module that provides the glue between various pilots and the framework. The scripter knows how to execute commands in the scripting language it supports.
The ICEbrowser architecture interfaces to external scripting languages. For custom applications, the architecture can accommodate any scripting language with a Java interface.
A high-level command language that is interpreted rather than compiled ahead of time. In the context of the World Wide Web, a scripting language is often written to handle forms input or other services for a Web site and is processed on the Web server.
In a secret key encryption algorithm, the same key is used for encryption and decryption.
A function that calculates a (typically) 128 or 160 bit number (the hash) for a string, in such a way that it is cryptographically hard to find another string with the same hash, and to find which string the hash was calculated from.
The leading security protocol used on the Internet. The SSL protocol runs above TCP/IP and below higher-level protocols such as HTTP or IMAP. It uses TCP/IP on behalf of the higher-level protocols, and in the process allows an SSL-enabled server to authenticate itself to an SSL-enabled client, allows the client to authenticate itself to the server, and allows both machines to establish an encrypted connection.
A certificate which is signed by the same private key it is intended to certify, and where the owner and issuer is identical. CA certificates are usually self-signed. A self-signed certificate must be trusted, otherwise it is invalid.
A certificate owned by the server, and sent to the client during the handshake to authenticate the server.
Secure hash algorithm. A secure hash function standardized by the National Institute of Standards and Technology (NIST).
A bundle of images that give a particular look to a graphical user interface. You can apply a skin to a system in a way that allows each instance of the skin to provide a significantly different look while maintaining similar or identical functionality.
A component that supports the ISCL skinnable framework. These components can have a skin applied to them to define their appearance.
A set of skins designed to work together.
An ISO standard for defining the format of a text document. An SGML document uses a separate Document Type Definition (DTD) file that defines the format codes, or tags, embedded within it.
The owner of a digital certificate.
A certificate that a user or application has chosen to trust. The end certificate of a certificate chain must be trusted for the chain to be valid. If the certificate is a CA certificate, he is also trusted to issue certificates to others.
A sites where no known CA have signed its server certificate, but the user has chosen to trust that the site not is compromised.
An HTML frame or HTML frameset, which is usually created on a Web page. The ICEbrowser architecture uses the viewport concept to set up complex Web pages.
A plain viewport or HTML frame can serve as a container for a pilot. A viewport is not a graphical component, but a reference to a pilot. Viewports are decoupled from HTML rendering because the ICEbrowser architecture provides the possibility of displaying other content types, and you can display various content types in the same viewport simply by changing the pilot.
An international industry consortium founded in 1994 to develop common standards for the World Wide Web.
An XSLT processor for transforming XML documents into HTML, text, or other XML document types.
A unique name that identifies an organization that has developed an XML schema. It serves as a prefix so multiple schemas can be used to define tags in an XML document.
XML schemas provide a means for defining the structure, content, and semantics of XML documents.
The XML schema is a superset of Document Type Definition (DTD), which is the standard SGML schema. Unlike DTD, XML schemas are written in XML syntax, which although more verbose than DTD, can be created with any XML tools.
|
Copyright 2005. ICEsoft Technologies, Inc. http://www.icesoft.com |
| |
|
|
|