U.S. flag   An unofficial archive of your favorite United States government website

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Glossary
A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

token

Abbreviation(s) and Synonym(s):

Authenticator

Definition(s):

  Something that the claimant possesses and controls (such as a key or password) that is used to authenticate a claim. See cryptographic token.
Source(s):
CNSSI 4009-2015 NIST SP 800-63-2 - Adapted

  Something that the Claimant possesses and controls (typically a key or password) that is used to authenticate the Claimant’s identity.
Source(s):
NIST SP 800-12 Rev. 1 under Token NIST SP 800-63-2

  The means used to confirm the identity of a user, processor, or device (e.g., user password or token).
Source(s):
NIST SP 800-53 Rev. 4 under Authenticator

  Something the claimant possesses and controls (typically a cryptographic module or password) that is used to authenticate the claimant’s identity. In previous editions of SP 800-63, this was referred to as atoken.
Source(s):
NIST SP 800-63-3 under Authenticator

  See Authenticator.
Source(s):
NIST SP 800-63-3 under Token

  A portable, user-controlled, physical device (e.g., smart card or memory stick) used to store cryptographic information and possibly also perform cryptographic functions.
Source(s):
NIST SP 800-57 Part 2 Rev.1 under Token

  Something the claimant possesses and controls (typically a cryptographic module or password) that is used to authenticate the claimant’s identity.
Source(s):
NIST SP 1800-17b under Authenticator
NIST SP 1800-17c under Authenticator

  See Authenticator
Source(s):
NIST SP 1800-17b under Token
NIST SP 1800-17c under Token

  Something the claimant possesses and controls (typically a cryptographic module or password) that is used to authenticate the claimant’s identity. In previous editions of SP 800-63, this was referred to as a token.
Source(s):
NIST SP 800-63-3 under Authenticator

  Either information that is only known to the person and the verifier, or a hardware device that can generate information that the verifier knows can only come from that device
Source(s):
NISTIR 7682 under Tokens

  A physical object a user possesses and controls that is used to authenticate the user’s identity.
Source(s):
NISTIR 7711 under Token

  Something that the Claimant possesses and controls (typically a cryptographic module or password) that is used to authenticate the Claimant’s identity.
Source(s):
NIST SP 800-63-2 under Token [Superseded]