TMS zl Management and Configuration Guide ST.1.2.100916

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

1481

B-28

Glossary

services OS An underlying layer of software on which the TMS zl Module's product

software runs.The services OS is designed primarily for blade maintenance.

It is from this CLI context that you install licenses and update the module's

software.

SHA-1 Secure Hash Algorithm One. One of five cryptographic hash functions that

were designated by the National Security Agency. SHA-1 is used in TLS, SSL,

and IPsec and is considered to be a successor to MD5. For more information,

see RFC 3174 at http://www.ietf.org/rfc/rfc3174.txt.

shared secret Any authentication information such as a password that is “known” by two or

more network devices. The shared secret is identical on both devices.

signature A preset definition that specifies characteristics that are indicative of a

particular attack.

signature-based

IDS

Attack detection that compares audit data with known attack signatures that

are stored in a signature database.

signature family A grouping of signatures that detect similar kinds of attacks, for example, DoS,

XSS, backdoor, gain access, and so on.

signature server The HP server from which the latest signature files are downloaded. The

signature server address is preloaded in the TMS zl Module and cannot be

altered.

single-entry

address object

An address object that specifies only a single IP address, IP address range, or

network address.

site-to-site A type of VPN tunnel between two VPN gateways, both of which can be initiator

and responder.

sliding window A TCP header field that specifies the maximum number of unacknowledged

bytes allowed in a session.

slot ID The number assigned to the chassis slot.

SNMP Simple Network Management Protocol. An application-layer protocol that

supports the exchange of management information between network devices.

An SNMP network consists of agents, managed devices, and network-manage-

ment systems. Hierarchically organized information about network devices is

stored in and accessed from a MIB. The NAC 800 supports SNMPv2, which

controls access based on community. For example, a server that knows the

NAC 800’s read-only community name can read. For more information, see RFC

1157 at http://www.ietf.org/rfc/rfc1157.txt.