Authenticity applies to entities such as users, processes, systems and information [IEC 62210, ed. 1.0 (2003-05)] Authorization?? A right or a permission that is granted to a system entity to access a system resource. [RFC 2828] Authorization Server?? A server that consults the security policy, extracts the relevant security rules, evaluates these rules with the current access parameters, eventual