Glossary#
- Access Control System (ACS)#
Access Control System: Microservices that regulates resource access.
- Audit Trail (AT)#
Trail of events about the access attempts regarding a protected resource.
- Contract Knowledge Graph#
RDF Graph that contains Contracts and Signatures as Semantic Data.
- Contract Management System (CMS)#
Contract Management System: Microservice that manages the contracts and signatures.
- Ecosystem#
Target System for the Custodian: in which the Custodian protects :term:` resources <Resource>`.
- Elliptic Curve Digital Signature Algorithm#
Algorithm that is justed by the Custodian to provide digital signatures.
- External Identity Provider#
Identity Provider that already exists in the ecosystem.
- External Knowledge Base#
Semantic Description of the Ecosystem if this exists. This can be referenced in the Contract Knowledge Graph.
- JSON-LD#
Representation of RDF that is compatible with JSON.
- Keycloak#
Authentication System that is currently used by the Custodian, see here.
- Microservice Architecture#
Software architecture style that structures an application as a collection of independent services.
- Mongo Database#
Document oriented NoSQL database.
- OpenID Connect#
Protocol for Authentication, see here.
- Policy Enforcement Point (PEP)#
Counterpart to the Policy Decision Point in the ecosystem, that enforces, what the Policy Decision Point decides.
- Policy Decision Point (PDP)#
Central part of the Access Control System that makes the decision whether to grant access to a protected resource.
- Rabbit Message Queue#
RabbitMQ is an open-source message-broker that implements the Advanced Message Queuing Protocol (AMQP) <https://de.wikipedia.org/wiki/Advanced_Message_Queuing_Protocol>.
- Resource#
Resource to protect by the Custodian: this can be a dataset or a service or a docker container. What it is depends on the ecosystem.
- Resource Owner#
user in the ecosystem who owns a protected resource and who will then have access to the :term`Audit Trail <Audit Trail (AT)>` of that resource.
- Resource User#
user in the ecosystem who is asking for access to a protected resource.
- Reverse Proxy#
Gateway to the Custodian that receives the API requests and passes them on to the API Endpoints of the Custodian. See here for an explanation of a Reverse Proxy.
- RDF#
The Resource Description Framework (RDF) is a standard model for data interchange on the web, designed to facilitate the merging of data even if the underlying schemas differ. RDF represents information using triples composed of a subject, predicate, and object, forming a graph structure that can be queried and extended. Each entity in the triple is represented as an URI.
- SPARQL#
Query Language for Semantic Data.
- SHACL#
Validation Language for RDF that uses RDF to validate RDF, see here.