Enterprise Application Security Choices
Typical Requirements
Let’s briefly recap some of the key iterms used when discussed computer security. The term principal refers to a user, service, or agent who can can perform an operation. A principal presents credentials such as a password in order to allow authentication, which is the process of establishing the identity of a caller. Authorization refers to the process of determining whether a principal (authenticated or non-authenticated) is permitted to perform a given operation.