Walkthrough glossary

 

.pfx
A pfx file is a pkcs #12 certificate file. An encrypted file which contains a certificate to be used for authentication of a user or device (such as a PC or Web server). Opening a .pfx file requires password. It can be installed on the Windows platform by right-clicking and choosing Install PFX. On the Windows platform one can change the filetype of .pfx and .pkcs12 with no problems.


pkcs#12
A newer designation of the .pfx file format (see Wikipedia). On the Windows platform one can change the filetype of .pfx and .pkcs12 with no problems.


pkcs#7
Used to sign and/or encrypt messages under a Public Key Infrastructure (see Wikipedia). Used also for certificate dissemination (for instance as a response to a PKCS#10 message (see Wikipedia)


PP environment
Pre production environment. Is used by all service providers during development/testing of their NemID solution.


IG environment
Integration environment. Is deprecated and is no longer supported for use by service providers.


CRL
Stands for Certificate Revocation List (see Wikipedia). This revocation list contains serial numbers for all certificates which have been revoked. Is continously updated. The revoked certificates on the list should not be trusted. The default port settings for the CRL is the LDAP protocol which runs on port 389.


OCSP
Stands for Online Certificate Status Protocol (see Wikipedia). This protocol is used for creating requests/responds when communicating with a OCSP responder. The OCSP responder is an alternative to asking/requesting a CRL. The default port settings for the OCSP protocol is http (port 80).


OTP
Stands for One-Time Password (see Wikipedia). Passwords which is valid for only one login session / one transaction.


OCES
Stands for Offentlige Certifikater til Elektroniske Services.


OOAPI
Stands for OpenOCES API.


VOCES
Stands for OCES certificates, which is used to represent a company (Virksomheds-OCES). Is primarily used for system authentication towards another system.


MOCES
Stands for OCES certificates, which is used to represent an employee (Medarbejder-OCES) in a company/organisation (has a CVR number). Is primarily used for employee authentication towards a system.


POCES
Stands for OCES certificates, which is used to represent a citizen (Privat-OCES). Is primarily used for citizen authentication towards a system.


FOCES
Stands for OCES certificates, which is used to represent a specific system function (Funktions-OCES) within the company. Is primarily used for system authentication towards another system. However with limited functionality compared to VOCES.


PID/CPR service
Service which makes it possible to match PID/CPR numbers, or lookup CPR numbers by presenting a PID number. The lookup functionality is however only availbale for govermental usage.


SPID
Stands for Service Provider ID. This uniquely identifies the service provider. This ID is established durring registration as NemID Service Provider. The SPID is used for authentication when calling serivces like the PID/CPR service.