--certificate authority. A certificate authority (CA) is an entity in a network that issues and manages security credentials
and public keys (in the form of X509v3 certificates) for message encryption. As part of a public key infrastructure (PKI),
a CA checks with a registration authority (RA) to verify information provided by the requestor of a digital certificate. If
the RA verifies the requestor's information, the CA can then issue a certificate. Certificates generally include the owner’s
public key, the expiration date of the certificate, the owner’s name, and other information about the public key owner.
--Internet Protocol Security. A framework of open standards that provides data confidentiality, data integrity, and data authentication
between participating peers. IPsec provides these security services at the IP layer. IPsec uses Internet Key Exchange (IKE)
to handle negotiation of protocols and algorithms based on local policy and to generate the encryption and authentication
keys to be used by IPsec. IPsec can be used to protect one or more data flows between a pair of hosts, between a pair of security
gateways, or between a security gateway and a host.
--Management Information Base. Database of network management information that is used and maintained by a network management
protocol such as Simple Network Management Protocol (SNMP) or Common Management Information Protocol (MIP). The value of a
MIB object can be changed or retrieved using SNMP or CMIP commands, usually through a graphical user interface (GUI) network
management system (NMS). MIB objects are organized in a tree structure that includes public (standard) and private (proprietary)
--Simple Network Management Protocol. An application-layer protocol that provides a message format for communication between
SNMP managers and agents.
--Message sent by an SNMP agent to a network management system, console, or terminal to indicate the occurrence of a significant
event, such as a specifically defined condition or a threshold that was reached.