Jump to content

Security domain

Add links
From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by Vermont (talk | contribs) at 23:06, 17 October 2019 (Reverted edits by 103.68.216.15 (talk) to last version by 87.239.102.10). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

A security domain is the determining factor in the classification of an enclave of servers/computers. A network with a different security domain is kept separate from other networks. Examples: NIPRNet, SIPRNet. JWICS, NSANet are all kept separate.

A security domain is considered to be an application or collection of applications that all trust a common security token for authentication, authorization or session management. Generally speaking, a security token is issued to a user after the user has actively authenticated with a user ID and password to the security domain.

Examples of a security domain include:

  • All the Web applications that trust a session cookie issued by a Web Access Management product
  • All the Windows applications and services that trust a Kerberos ticket issued by Active Directory

In an Identity Federation that spans two different organizations that share a business partner, customer or BPO relation - A partner domain, would be another security domain with which users and applications (from the local security domain) interact.

Stub icon

This computer networking article is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=Security_domain&oldid=921794439"