Updated glossary

hzbarcea · hzbarcea · commit 85e93332238a · 2025-02-23T22:22:10.000-05:00
Signed-off-by: Hadrian Zbarcea &lt;hadrian@apache.org&gt;
diff --git a/spec/glossary.md b/spec/glossary.md
@@ -1,2 +1,23 @@
- - <dfn>Storage Provider</dfn> - A Service Provider that ofers a cloud-based data storage service conformant with the LWS protocol.
- - <dfn>Identity Provider</dfn> - The party that manages the subscriber’s primary authentication credentials and issues assertions derived from those credentials ; see [NIST definition](https://csrc.nist.gov/glossary/term/identity_provider)
+ - <dfn>Entity</dfn> - An individual (person), organization, device or process. Used interchangeably with “party”; see [NIST definition](https://csrc.nist.gov/glossary/term/entity).
+ - <dfn>Identifier</dfn> - The bit string denoting the identifier associated with an Entity; see [NIST definition](https://csrc.nist.gov/glossary/term/identifier).
+ - <dfn>Controlled Identifier</dfn> - A type of Identifier that can be proven to be under the control of an Entity; see [W3C CID definition](https://www.w3.org/TR/cid-1.0/#dfn-controlled-identifier).
+ - <dfn>Self-Sovereign Identity (SSI)</dfn> - A digital identity that an Entity directly controls, without relying on a third party.
+ - <dfn>Profile Document</dfn> - see "Controlled Identifier Document".
+ - <dfn>Controlled Identifier Document</dfn> - A document that contains cryptographic material and lists service endpoints that can be used for verifying proofs from, and interacting with, the controller of an identifier; see [W3C CID definition](https://www.w3.org/TR/cid-1.0/#dfn-controlled-identifier-document).
+ - <dfn>Profile Document Address</dfn> - The URL of a Profile Document. URLs are defined as the "physical addresses of objects which are retrievable using protocols already deployed on the net"; see [W3C Addressing definition](https://www.w3.org/Addressing/URL/url-spec.html).
+ - <dfn>Authentication</dfn> -  Verifying the identity of a user, process, or device, often as a prerequisite to allowing access to resources in a system; see [NIST definition](https://csrc.nist.gov/glossary/term/authentication).
+ - <dfn>Authorization</dfn> - The process of verifying that a requested action or service is approved for a specific entity; see [NIST definition](https://csrc.nist.gov/glossary/term/authorization).
+ - <dfn>User</dfn> - A human entity; see [NIST definition](https://csrc.nist.gov/glossary/term/user).
+ - <dfn>Non-human Entity</dfn> - An entity with a digital identity that acts in cyberspace, but is not a human actor. This can include organizations, hardware devices, software applications, and information artifacts; see [NIST definition](https://csrc.nist.gov/glossary/term/non-human_entity)
+ - <dfn>Self-Sovereign Identity (SSI) Owner</dfn> – An entity that fully manages its own Identity credentials without relying on external Service(s).
+ - <dfn>User Agent</dfn> – Software acting on behalf of a User to interact with Services, such as a browser or identity client.
+ - <dfn>Service</dfn> - An abstract resource that represents a capability of performing tasks that form a coherent functionality; see [W3C Glossary](https://www.w3.org/TR/ws-gloss/#service)
+ - <dfn>Service Provider</dfn> - an Entity providing a Service; see [W3C Glossary](https://www.w3.org/TR/ws-gloss/#providerentity)
+ - <dfn>Identity Service</dfn> - a Service that manages the subscriber’s primary authentication credentials and issues assertions derived from those credentials; see [NIST definition](https://csrc.nist.gov/glossary/term/identity_provider).
+ - <dfn>Identity Provider</dfn> - a Service Provider that operates an Identity Service;
+ - <dfn>Relying Party</dfn> - non-pysical entity that trusts an Identity Provider for Authentication; see also [NIST definition](https://csrc.nist.gov/glossary/term/relying_party).
+ - <dfn>Storage</dfn> - description
+ - <dfn>Storage Service</dfn> - TBD
+ - <dfn>Storage Provider</dfn> - TBD
+ - <dfn>Application</dfn> - TBD
+ - <dfn>Notification Service</dfn> - TBD
