Pomerium logo
Log In Contact Sign Up
Mobile Menu
Pomerium Zero Pomerium Enterprise Secure Human Access Secure Service Access Secure Agentic Access
Mobile Menu
Secure Human Access
 Secure Internal Access Scoped Contractor Access Time-Bound Access Just-In-Time Access Policy Change History Native SSH Access
Secure Service Access
 Kubernetes Security Secure Internal APIs Multi-tenant Environments Third-party Tools
Secure Agentic Access
 AI Agents Prompts & Autonomous Workflows Audit Agent Actions Control Agentic Sprawl Model Endpoints
Pricing
Mobile Menu
Comparisons Integrations Blog eBooks Glossary Customer Stories
Mobile Menu
Get Started with Zero Quickstart Fundamentals Architecture Changelog Guides Discuss Forum GitHub Careers

Key Terms and Definitions

The Pomerium Glossary

From Access Control to Zero Trust, refer to this glossary for network and information security terms.

Filter:
Loading...
2FA Authenticator
A 2FA (Two-Factor Authentication) authenticator is a software-based security tool that generates one-time codes for use in two-factor authentication processes. 2FA authenticators are typically used in conjunction with passwords to provide an additional layer of security and protection against unauthorized access to online accounts and systems. 2FA authenticators work by generating unique codes tha
Authentication
Read More
Access Control
Access control in cybersecurity refers to the methods and technologies used to regulate who or what is allowed to access sensitive information and resources in a computer system or network. The goal of access control in cybersecurity is to ensure that sensitive information and resources are protected against unauthorized access, misuse, or modification. Access control in cybersecurity can be imple
Access Control Authentication Authorization cybersecurity
Read More
Access Token
An access token is a string of characters that represents authorization to access a particular resource, such as an API or a specific piece of content in a system. Access tokens are generated by an authentication server and are then passed to the client application, which uses them to access the authorized resources. Access tokens are typically short-lived, and may need to be refreshed after a cer
Access Control Authentication Authorization
Read More
Agent
A software system that interprets user intent, selects tools, and executes actions on behalf of a principal within an MCP architecture.
Model Context Protocol (MCP)
Read More
Agent Blast Radius
The maximum scope of action an agent can achieve through dynamic tool composition and delegated authority.
Model Context Protocol (MCP)
Read More
Agentic Access Management (AAM)
An authorization architecture model extending Zero Trust principles to agent-driven systems, emphasizing identity propagation, per-request evaluation, and Layer-7 enforcement.
Model Context Protocol (MCP)
Read More
Attack Surface
The attack surface of a system refers to the total number of potential entry points that an attacker could use to gain unauthorized access to the system or the data it contains. The attack surface can include anything from well-known vulnerabilities in software to physical access to the system or its components. The larger the attack surface, the more potential entry points there are for an attack
cybersecurity
Read More
Attribute-Based Access Control (ABAC)
ABAC (Attribute-Based Access Control) is a type of access control that defines access policies based on attributes (such as user role, location, time, and device) rather than roles or permissions. In ABAC, access decisions are made based on the evaluation of multiple attributes, rather than relying on a single factor (such as a user's role). The main advantage of ABAC is its flexibility. Because A
Authentication Authorization cybersecurity Network Security
Read More

Revolutionize
Your Security

Embrace Seamless Resource Access, Robust Zero Trust Integration, and Streamlined Compliance with Our App.

Try Now

Company

About Privacy Policy Terms of Service Newsletter Careers

Use Cases

VPN Replacement Secure Remote Access Zero Trust Application Access Clientless Access Continuous Verification Context-Aware Access Secure Kubernetes

Quicklinks

Comparisons Integrations Customer Stories Resources Docs

Stay Connected

Stay up to date with Pomerium news and announcements.

Pomerium logo
© 2026 Pomerium. All rights reserved