A privileged account is any account with elevated access rights beyond standard users — including administrator accounts, service accounts, root accounts, emergency accounts, and application.
Archives: Glossary Terms
Privileged Identity Management
PIM (specifically Microsoft Entra PIM) is a service that enables Just-in-Time privileged access to Azure resources and Entra ID roles, requiring activation and optional approval.
Passwordless Authentication
Passwordless Authentication eliminates passwords entirely, replacing them with more secure and user-friendly factors like biometrics, hardware keys, magic links, or passkeys.
Privileged Access Management
PAM is the cybersecurity domain focused on securing, controlling, monitoring, and auditing all privileged access to critical assets — protecting the keys to the kingdom.
Okta
Okta is a leading cloud identity platform providing workforce identity (SSO, MFA, lifecycle management) and customer identity (CIAM) solutions as a cloud-native service.
OpenID Connect
OIDC is an identity layer built on top of OAuth 2.0 that allows applications to verify user identity and obtain basic profile information through a.
OAuth 2.0
OAuth 2.0 is an open authorization framework that allows applications to obtain limited access to user accounts on third-party services without exposing user credentials.
NIST SP 800-207 Zero Trust
NIST SP 800-207 is the authoritative US government publication defining Zero Trust Architecture — its principles, components, deployment models, and implementation scenarios.
NIST Cybersecurity Framework
The NIST CSF is a voluntary framework providing standards and best practices for managing cybersecurity risk, organized around five core functions: Identify, Protect, Detect, Respond,.
MFA Fatigue Attack
MFA Fatigue (or MFA Bombing) is an attack where an adversary with a stolen password repeatedly sends MFA push notifications to a victim, hoping they.