A Security Domain is the determining factor in the classification of an enclave of servers/computers. A network with a different security domain is maintained separate from other networks. For examples: NIPRNet, SIPRNet. JWICS, NSANet are all maintained separate.
A security domain is considered to be an application or collection of applications that all trust a common security token for authentication, authorization or session management. Generally speaking, a security token is issued to a user after the user has actively authenticated with a user ID and password to the security domain.
Examples of a security domain include:
All the Web applications that trust a session cookie issued by a Web Access Management product
All the Windows applications and services that trust a Kerberos ticket issued by Active Directory
In an Identity Federation that spans two different organizations that share a business partner, customer or BPO relation - A partner domain, would be another security domain with which users and applications (from the local security domain) interact.
Ping Identity Recommended Federation Deployment Architecture [1]
 |
This computer network-related article is a stub. You can help Wikipedia by expanding it. |
This entry is from Wikipedia, the leading user-contributed encyclopedia. It may not have been reviewed by professional editors (see full disclaimer)
