| Term | Description |
| Authentication | Process by which person proves to department they are entitled to use an electronic identity. Authentication process involves a claimant (person seeking access) and a verifier (person who verifies identity). |
| Business Case | Provides justification for implementing an initiative, in terms of evaluating the benefit, cost and risk of alternative options and rationale for a preferred solution. Its purpose is to obtain management commitment and approval for the proposal. |
| Business System Owner | An individual, usually the Manager of an organisational unit, who has accountability for the specified application or system. They are responsible for authorising major changes such as large scale design and functionality changes to IT systems and applications. An ICT System Owner also assumes the role of information owner. |
| Classification | Process by which data or information is assigned a security classification level based on value of information and / or confidentiality, integrity and availability requirements of information. |
| Credential | Means of identification for an identity. Used to authenticate individual when they seek access to ICT systems. Most common credentials are user IDs and passwords. Also includes smart cards, biometric forms of identification (voice print, finger print or iris scan) and secure tokens. |
| Custodianship | An individual who has the custody or care of a set of data. |
| Data | Representation of facts, concepts or instructions in a formalised manner suitable for communication, interpretation, or processing by human or automatic means. A collection of data may be referred to as a data set, usually held electronically in databases. |
| Data Classification | Process by which data or information is assigned a security classification level based on value of information and / or confidentiality, integrity and availability requirements of information. |
| Departmental ICT System | Any application or system within department that hosts or allows access to departmental information. |
| Evidence of Identity | One or more documents used in isolation or in combination with each other to confirm an individual 's identity. Documents may include a passport, birth certificate and drivers licence, as stipulated under the Queensland Government Authentication Framework (QGAF) |
| External Users | Role played by persons who participate in departmental business processes but are not departmental employees, students or directly related to student with respect to the role. Examples: Medical service providers, work experience supervisors, pre-service teachers, casual employees of schools and school volunteers. |
| Identity | A unique entity within a particular domain, or a particular presentation of an entity. An identity may correspond to a role played by the entity, and an entity may have multiple identities, though not usually in the same domain. |
| Identity Assurance Levels | A point at which a level of confidence is determined after an Identity Assertion process that considers certain criteria. |
| Identity Directories | A directory of a collection of users, detailing information about what network resources the users may access. |
| Information | Collection of data in any form maintained by department. May be transmitted, manipulated, and stored by an ICT system |
| Information Owner | Delegated position responsible for the data entities assigned to that position. An information owner may be responsible for collecting the data entities. Information Owner may include corporate, regional, district and school staff. In the context of this policy, the Information Owner is responsible to defining access rights to the information contained in the relevant business system/s. |
| Person | Any individual who participates in departmental business process or who has a significant relationship with such an individual. A given person may play one or more roles in processes either simultaneously or over time. Examples: System owner, maths teacher or manager. |
| Privacy Statement | A statement that indicates how personal information received will be used and protected. |
| Provision | Creation and management of electronic identities that are used for authentication and access control. It also covers the provision of other services such as email, the issuing of security access cards and a personalised web page. Provisioning is usually carried out as part of another process. Examples of processes that include a provisioning element are the enrolment of students at a school, the employment of new staff members and a person changing their name. |
| Registration | Process of creating an electronic identity for first time. Made up of collection of data from person and identification of that person. |
| Registration Framework | A conceptual structure that is used to manage identity registration issues. |
| Responsible Adult | A person who is formally responsible for a student enrolled in a state school. The person is independent of relationship between two persons (parent, foster parent, step parent etc.). Student may be associated with none, one or more responsible adults depending on their age and/or family circumstances.. |
| Secondment | A temporary transfer from an officer 's substantive role to another position for a set period of time which may or may not be extended. |
| Staff Member | Person who is employed by department and participates in departmental business processes on behalf of organisation. Includes public servants, teachers, other crown employees, contractors and consultants. Teacher, administrator, planner, auditor and evaluator, support service provider etc. are further sub-roles of staff member. |
| Student | A person, who is enrolled, has been enrolled or has declared an intention to enrol in one or more departmental offerings at a state school or TAFE Institute. |
| System Administrator | An individual who is responsible for the technical aspects of an IT system or software application. Responsibilities may include installing and configuring new hardware and software and providing technical support to end users. They are responsible for ensuring the successful installation and use of the system by other users. |
| Users | Any individual or entity that requires access to departmental information systems and / or applications. Departmental Users include:
|
Copyright |
Disclaimer |
Privacy |
Access keys |
Other languages
© The State of Queensland (Department of Education, Training and Employment) 2007.