Glossary

This following table lists and defines technical terms used throughout this site. To locate a specific term, use the glossary search box above the table.

InitialismTermDefinition
AAMCAssertion Assessment Management CapabilityThe Assertion Assessment Management Capability (AAMC) is a software component of the Assertion Assessor Capability (AAC) that enables assessors to perform assessments, manage the assessment lifecycles for those assessments, issue assertions based on those assessments, and manage the lifecycles for assertions issued.
AACAssertion Assessor CapabilityThe Assertion Assessor Capability (AAC) is a component of the ABA that enables ISE participants to undergo formal assessment processes to demonstrate conformance to select policy and technical requirements, and then receive published assertion artifacts based on those assessment processes.
AAPCAssertion Authoring and Publishing CapabilityThe Assertion Authoring and Publishing Capability (AAPC) is a component of the ABA that enables IS&S stakeholder organizations and communities to manage all their activities associated with the development, componentization, harmonization, aggregation, publication, and lifecycle management of Assertion Definitions (ADs) and Assertion Profiles (APs)
ADAssertion DefinitionAn Assertion Definition (AD) is a structured, machine-readable artifact that precisely describes the set of requirements or prerequisites that a prospective Assertion Recipient must satisfy prior to receiving a specific type of assertion, as well as the formal step-by-step process that an Assessor must follow when deciding whether to issue an assertion to a prospective assertion recipient.
AOICAssertion Operational Infrastructure CapabilityThe Assertion Operational Infrastructure Capability (AOIC) is a component of the ABA that enables ISE participants to take advantage of machine-readable assertions, machine-readable trust policies, and cryptographic bindings of assertions to system and application endpoints, to enable automated partner discovery and automated trust policy enforcement within the ISE
Assertion PolicyAn Assertion Policy defines the terms and conditions under which an assertion was published. It is published by an assessor, and can contain any disclaimers, limitations, or other conditions that may be pertinent to the assertion. An Assertion Policy is typically included by reference in an Assertion Recipient Agreement and in an Assertion Relying Party Agreement.
APAssertion ProfileAn Assertion Profile (AP) is a structured, machine-readable artifact that precisely specifies a set of requirements or prerequisites that a prospective mission participant must satisfy prior to participating in a specified mission in a specified role. An AP expresses these requirements through references to other artifacts — other APs as well as assertion definitions (ADs) — that exist independently as individual, reusable components. A prospective mission participant can demonstrate satisfaction of the AP through possession of a set of assertions that prove satisfaction of each of its constituent APs and ADs.
Assertion Recipient AgreementAn Assertion Recipient Agreement is a two-party legal agreement, executed between an Assessor and an Assertion Recipient, that describes all the roles, responsibilities, guarantees, limitations, and other legal conditions pertaining to the issuance of assertions to the assertion recipient by the assessor.
ARAssertion RecipientAn Assertion Recipient (AR) is an entity for which, and about which, an assertion is published.
Assertion Relying Party AgreementAn Assertion Relying Party Agreement is a two-party legal agreement between an Assessor and an Assertion Relying Party (ARP). The agreement is typically not executed via a formal signature process, but rather through a "click wrap" mechanism in which the agreement takes effect immediately when the ARP begins to use and rely upon one or more assertions issued by the Assessor.
ARPAssertion Relying PartyAn Assertion Relying Party (ARP) is an entity that relies upon an assertion as part or all of its basis upon which to trust the entity about which the assertion was published.
ASRAssertion Status ReportAn Assertion Status Report (ASR) is a structured, machine-readable artifact that provides an online, queryable source of status information about an assertion. An ASR is published by the Assessor that published the assertion, and the Assessor updates the ASR whenever the status of the assertion changes.
ABAAssertion-Based ArchitectureThe Assertion-Based Architecture (ABA) is a technical framework that enables the wide-scale use of digital assertions for the purpose of conveying trusted statements about entities within the ISE. The ABA is a robust framework that contains many individual capabilities to support all aspects of the assertion and trust lifecycle.
AssertionAn Assertion is a digital artifact that constitutes a formal statement of conformance to a well-scoped set of requirements related to technical capabilities, policy compliance, or other topics related to trust.
Assessor RegistryThe Assessor Registry is a software component of the Assertion Assessor Capability (AAC) that maintains records of all Qualified Third-Party Assessors and Qualified Self-Assessors across the ISE communities. The purpose of this registry is to provide Assertion Relying Parties with a trusted source of information about the trustworthiness of assertions issued by various entities.
AssessorAn Assessor is an entity (e.g., a business) that performs assessments (audits) of other entities (e.g., ISE participant agencies) with respect to well-defined assessment criteria, and then issues digital assertions describing the results of those assessments.
COICommunity of InterestWithin the ISE, a Community of Interest (COI) is a group of agencies and/or individuals that have self-organized for the purpose of fulfilling a common goal or mission. A COI may have a formal governance structure, or it may be organized in a looser, ad hoc manner.
ABCInformation Sharing Agreement Builder CapabilityThe Information Sharing Agreement Builder Capability, or simply Agreement Builder Capability (ABC), is a component of the ABA that enables ISE participants to rapidly develop and execute machine-readable information sharing legal agreements with partner agencies
ICIFInformation Sharing and Safeguarding Core Interoperability FrameworkThe Information Sharing and Safeguarding Core Interoperability Framework (ICIF) is the core framework for facilitating interoperability across many dimensions and concerns among agencies that participate in the Terrorism-Related Information Sharing Environment (TR ISE). The ICIF helps to facilitate interoperability in the areas related to policy (e.g., security, policies, identity assurance, etc.) as well as technical concerns (standards, specifications, profiles, etc.)
IS&SInformation Sharing and SafeguardingInformation Sharing and Safeguarding refers to measures and controls that are prescribed to protect sensitive information and also share sensitive information with other parties that are duly authorized to access it.
ISEInformation Sharing EnvironmentThe Information Sharing Environment (ISE) broadly refers to the people, projects, systems, and agencies that enable responsible information sharing in support of national security concerns, including terrorism-related information, homeland-security-related information, and any other information that may help to further the missions of the agencies that comprise the ISE community. See also: Terrorism-Related ISE (TR ISE).
PM-ISEOffice of the Program Manager for the Information Sharing EnvironmentThe Intelligence Reform and Terrorism Prevention Act of 2004 (IRTPA) established the Office of the Program Manager for the Information Sharing Environment (PM-ISE) and granted it the authority to plan, oversee, and manage the Information Sharing Environment. PM-ISE is located within the Office of the Director of National Intelligence, Partner Engagement office. See this page for more information about PM-ISE.
Qualified Self-AssessorA Qualified Self-Assessor is an entity (e.g., an ISE participant agency) that has completed the Self-Assessment Onboarding Program.
Qualified Third-Party AssessorA Qualified Third-Party Assessor is an entity (e.g., an ISE participant agency) that has completed the Third-Party Assessor Onboarding Program.
Self-Assessment Onboarding ProgramThe Self-Assessment Onboarding Program is a component of the Assertion Assessor Capability (AAC) that provides prospective self-assessors with the training and tools that they need to begin performing self-assessments and issue assertions to themselves based on those assessments. An entity that undergoes and completes this program can register in the Assessor Registry as a Qualified Self-Assessor.
SEARService Endpoint and Assertion RegistryThe Service Endpoint and Assertion Registry (SEAR) is a cloud-based software component of the Assertion Operational Infrastructure Capability (AOIC) that stores assertions made about ISE participants, trust policies (APs) published by ISE participants, and bindings of those assertions and trust policies to system and application endpoints owned by those ISE participants.
SCCStandards Coordinating CouncilThe Standards Coordinating Council (SCC) is an advisory group, composed of industry consortium and standards development organizations (SDOs), that provides advice and counsel to SDOs on issues related to information sharing standards within the context of the overall landscape of information sharing and safeguarding initiatives. See the SCC Website for more information.
TR ISETerrorism-Related Information Sharing EnvironmentThe Terrorism-Related Information Sharing Environment (TR ISE) is a Congressionally mandated ISE that includes agencies at the federal, regional, state, local, and tribal-territorial levels of government, plus other organizations (e.g., private companies, foreign governments, etc.). The purpose of the TR ISE is to provide key technical, policy, and organizational aid to those executing the missions of counter-terrorism (CT) and the proliferation of weapons of mass destruction (WMDs) at the domestic nexus of national security and public safety.
Third-Party Assessor Onboarding ProgramThe Third-Party Assessor Onboarding Program is a component of the Assertion Assessor Capability (AAC) that provides prospective third-party assessors with the training and tools that they need to begin performing third-party assessments and issuing assertions to other entities. An entity that undergoes and completes this program can register in the Assessor Registry as a Qualified Third-Party Assessor.
TMFTrustmark FrameworkThe Trustmark Framework (TMF)is the low-level technical framework upon which the Assertion-Based Architecture (ABA) is built. The TMF originated in a U.S. government-funded research project on scalable identity trust through the National Strategy of Trusted Identities in Cyberspace (NSTIC) program, and was developed by the Georgia Tech Research Institute (GTRI).
TMITrustmark InitiativeThe Trustmark Initiative (TMI) seeks to promote fine-grained, wide-scale, cross-organizational and cross-community trust, in support of trusted information sharing and federated identity, through the development and maturation of the Trustmark Framework (TMF) and supporting artifacts, tools, and communities. See the TMI Website for more information.