Glossary
Product-related Terms
| Terminology | Description |
|---|---|
| Security365 | SOFTCAMP's integrated security service platform. It offers various security services such as SHIELDrive, SHIELD Gate, and Document Security. |
| Security365 Management Center | A dedicated platform for administrators to centrally manage Security365 services. Control users, groups, licenses, and policies from a single console. |
| SHIELDrive | Security365's cloud document security storage service. Provides file encryption storage and access control features. |
| SHIELD Gate | Remote Browser Isolation (RBI) based web security service of Security365. Protecting users from web threats. |
| Document Security | Security365's document encryption and access control service. Provides DRM-based document security. |
Account and Authentication Terms
| Terminology | Description |
|---|---|
| SSO (Single Sign-On) | Single Sign-On. An authentication method that allows access to multiple Security365 services with a single login. |
| SAML (Security Assertion Markup Language) | Standard protocols for implementing SSO. Implementing integrated authentication in conjunction with the organization's IdP. |
| IdP (Identity Provider) | ID Provider. A system responsible for user authentication in an SSO environment. When setting up SAML SSO, it is necessary to register the organization's IdP information. |
| SP (Service Provider) | Service Provider. A system that provides services in an SSO environment. Security365 acts as the SP. |
| OTP (One-Time Password) | One-time password. Used as an additional authentication method, verifying identity with a time-based code generated by an authentication app. |
| MFA (Multi-Factor Authentication) | Multi-Factor Authentication. Requires additional authentication methods such as OTP, email verification, etc., in addition to ID/password to enhance security. |
| CSP Certification | Cloud service provider authentication. Login methods using external accounts such as Microsoft and Google. |
User Management Terminology
| Terminology | Description |
|---|---|
| User | Members of the organization using the Security365 service. Registration and management in the management center. |
| Administrator | Users with permission to access the Security365 management center and manage settings. |
| Super Administrator | An administrator with full permissions across the system. Can grant/revoke permissions for other administrators. At least 1 is required. |
| Editor Manager | Administrator who can view and edit all service menus. Administrator menu access not allowed. |
| Query Manager | Administrator who can only view all service menus. No modification rights. |
| Log Viewer Administrator | Granted to administrators who can only view the log menu, such as audit personnel. |
| Activate/Deactivate | Availability status of the user account. If deactivated, service access is not possible, and the license is automatically released. |
Group Management Terms
| Terminology | Description |
|---|---|
| Basic Group | A group created to reflect the organizational structure (departments, teams, etc.). Created through manual registration, CSV bulk registration, and synchronization. |
| Policy Group | A virtual group created separately for policy application. Members can be designated regardless of the organizational structure. |
| Condition-based Group | A policy group that members are automatically assigned to based on specific conditions (e.g., IDs starting with 'dev') |
Policy-related Terms
| Terminology | Description |
|---|---|
| Conditional Policy | A policy that dynamically controls service access based on conditions such as the user's IP, time, country, device, etc. |
| Condition Items | Components of access conditions used in conditional policies. Location (IP), country, and time conditions can be registered. |
| Access Policy | Policies applied when conditions are met. Choose from Allow access, Block access, or Allow access + Additional authentication. |
| Priority | A value that determines the order of policy application. If a user is included in multiple policies, the policy with the highest priority is applied. |
| Zero Trust | "Do not trust blindly, always verify" is a security principle. Validate all access attempts and grant only the minimum necessary permissions. |
Terms Related to Synchronization
| Terminology | Description |
|---|---|
| Inbound Provisioning | Process of importing user/group information from external systems (Microsoft 365, SCI Server) to Security365 |
| Full Synchronization | How to synchronize all AD groups and user information of a Microsoft 365 tenant |
| Designated Group Synchronization | A method to synchronize only specific AD groups and members selected by the administrator in Microsoft 365. |
| Automatic Synchronization | Synchronization that automatically runs daily at the set time. Real-time reflection of personnel changes. |
| Manual Synchronization | Synchronization performed by the administrator by clicking the execute button immediately |
| AD (Active Directory) | Microsoft's directory service. Used for managing user accounts and groups, and can be integrated with Security365. |
| Azure AD | Microsoft's cloud-based ID management service. Currently renamed to Microsoft Entra ID. |
| SCI Server | Personnel Information Management Server used in SOFTCAMP's Document Security |
| Tenant | A unit that distinguishes organizations in cloud services. When synchronizing Microsoft 365, integration is based on the tenant. |
License-related Terms
| Terminology | Description |
|---|---|
| License | Permission for a user to use a specific Security365 service. Must be assigned to the user for service access. |
| Plan | Security365 service subscription unit. The features available and the number of licenses are determined by the plan. |
| Automatic License Assignment | Feature that automatically grants licenses when a user is activated |
| Remaining License | The remaining quantity excluding allocated licenses from the total number of licenses. |
Security Classification Terms
| Terminology | Description |
|---|---|
| Security Classification Label | A feature for systematically classifying the security level of data. A two-tier structure of grades and labels. |
| Grade | Top classification that distinguishes the security level of data. For example: Confidential, Sensitive, Public. Color coding can be assigned by grade. |
| Label | Subcategories of grades. Detailed classification based on the nature or purpose of the data. For example: personnel information, customer information. |
Logging and Monitoring Terms
| Terminology | Description |
|---|---|
| log | User and administrator service usage activity records. Connection date and time, IP, performed actions, etc. are recorded. |
| Log Backup | A feature that regularly saves log data as archive files. Backup cycle and collection period can be set. |
| archive file | Compressed file generated during log backup. Includes log data for the configured collection period. |
| Master Log | Original log data before backup. Deleted after backup when automatic deletion is set. |
| External Log Transmission | Function to automatically transfer log backup files to an external server using SSH/SFTP method |
Account Security Terms
| Terminology | Description |
|---|---|
| Password Policy | Security rules applied when creating and changing passwords. Settings for minimum length, character combinations, change frequency, etc. |
| Password Reuse Restriction | A feature that restricts the reuse of the last N passwords. |
| Account Lockout | A security feature that temporarily locks the account after multiple incorrect password entries. |
| Automatic Logout | A feature that automatically logs out if the service is not used for a set period of time. |
| Account Deactivation Period | Setting to automatically deactivate user accounts after a certain period of inactivity |
Other Terms
| Terminology | Description |
|---|---|
| CSV (Comma-Separated Values) | Comma-separated values format file. Used for bulk registration of users and groups. |
| GNB (Global Navigation Bar) | Global Navigation Bar. The menu area displayed at the top of the service. |
| Favicon | Small icon image displayed on the browser tab |
| Approval Service | A feature for centrally managing approval requests generated by linked services. |
| On-Premise | A method of directly installing and operating on an internal server of the organization. It is contrasted with the cloud method. |