Abbreviation | Meaning |
|---|---|
| API | Application Programing Interface |
| SDK | Software Development Kit |
| DC | Digital Credential |
| BLE | Bluetooth Low Energy |
| ISO | International Organization for Standardization |
| OIDC | OpenID Connect |
| PKI | Public Key Infrastructure |
| SSL | Secure Sockets Layer, a cryptographic protocol used for network traffic |
| PII | Personal Identifiable information |
| PIN | Personal Identification Number |
| REST | Representation State Transfer, an architectural style for developing web services. |
| QR Code | Quick Response Code |
| APNS | Apple Push Notification Service |
| CIBA | Client Initiated Back-End Authentication |
| DMV | Department of Motor Vehicles; also, Division of Motor Vehicles |
| DRS | Disaster Recovery System (or Site) |
| FCM | Firebase Cloud Messaging |
| MTLS | Method for mutual authentication. MTLS ensures that the parties at each end of a network connection are who they claim to be by verifying that they both have the correct private key. The information within their respective TLS certificates provides additional verification. |
| GAFAM | Google, Apple, Facebook, Amazon & Microsoft |
| GDPR | General Data Protection Regulation |
| GUIDs | Global Unique Identifiers |
| HSM | Hardware Security Module |
| ID&V | Identity Document & Verification |
| ICAM | Identity, Credentialing and Access Management |
| ICAO | International Civil Aviation Organization. A UN specialized agency that works with the member states and industry groups to set standards, recommended practices, and policies in support of a safe, efficient, secure, economically sustainable, and environmentally responsible civil aviation sector. |
| IdM | IDEMIA Identity Management |
| idp | Identity Provider |
| IDV | Identity Document & Verification |
| JAB | Joint Authorization Board |
| NFC | Near-Field Communication. A set of communication protocols between two electronic smartphones over a distance of 4 cm or less |
| OCSP | Certificate Status Protocol Checks |
| OWASP | Open Web Application Security Project, a nonprofit foundation that works to improve the software security. |
| SSN | Social Security Number |
| PAD | Presentation of Attack Detection |
| PAM | Privileged Access Management |
| TEE | Trusted Execution Environment |
| UMA | User Managed Access |
| PaaS | Platform-as-a-Service |
| SCIM | System for Cross-domain Identity Management, an open standard for automating the exchanged of end-user identify information between identify domains. |
| Salts | Random data that is used as an additional input to be hashing to increase data security. |
| LoT | Level of Trust |
General Terms and Definition
Terms | Definition |
|---|---|
| Issuing Authority | The company or agency issuing the digital version of the credential to the end-user to be stored as a Mobile ID |
| Relying Party | This is the party that requests attributes from credential holder |
| Enrollment | Collection of all steps user has to perform through mobile device to have a document registered on this device. |
| Disenrollment | Disenrollment is when an end-user unenrolls themselves from the Mobile ID App |
| eDocument | Electronic document |
| KeyStore | A repository of security certificates -- either authorization certificates or public key certificates -- plus corresponding private keys |
| Encryption Key | In cryptography, a random string of bits generated specifically to scramble and unscramble data |
| Whitelabel | A product feature that enables a technology partner to rebrand the product with its own logo, colors, fonts, and other branding elements. |
| Sor/ SOR | System of Record, an authoritative data store containing the most current driver's license information, including signatures and photos of the driver's license holders |
| Mobile ID Backend Service | Connects with core ID services to verify identities during enrollment, manage the lifecycle of the Mobile ID's, performs digital signatures to sign the digital identities attributes and integrate with Relying parties using OIDC standard. |
| Provisioning | initial loading of Mobile ID information into an Mobile ID app |
| Wallet | A Wallet is a centrally stored credential container - identified by a unique identifier. It contains an index to the credentials and their metadata. Wallet may be accessed from multiple devices, and it may index credentials from different issuers. A Wallet belongs to a single physical person. The Wallet does not maintain a master identity to which credential attributes contribute. |
| Digital Credential | A credential is a set of identifiers or attributes from an issuer stored on a given device (as opposed to centrally stored). The credential is bound to the device at issuance time by embedding key material unique to the device. The credential content integrity can be verified cryptographically by its issuer digital signature. |
| Credential Holder | An end-user (individual, company, or guardian of an object) who owns the digital credentials held in the smartphone. The Credential Holder receives requests for verification of their Mobile ID digital credential periodically from others via the Mobile ID Verify App. |
| Mobile ID Credential | This is the cryptographically signed and verified attribute package sent back to the end-user's smartphone. |
| Multi-tenet cloud | A cloud computing architecture that allows customers to share computing resources in a public or private cloud. Each tenant's data is isolated and not visible to other tenets. |
| Hash | A mathematically generated value from a string of text. Hashes are used to enable security during the process of message transmission. |
| Twilio | A cloud-based service that enables powerful communication between mobile smartphones, applications, services, and systems throughout the business in order to bridge the gap between conventional communication. |
| IDEMIA SoR Adapter | IDEMIA's interoperability solution that connects to an issuing Authority SoR to deliver and manage Mobile ID Solutions. |