Definitions

The capacity for data users to enter, modify, delete, view, copy, or download data.

 An administrative account is an account that is used interactively by administrators or other persons for service administration or management.

Administrative privileges are a level of permission that allows the user to install software and change configuration settings on a workstation (also known as administrator or admin privileges).

Antimalware is a type of software program designed to prevent, detect, and remove malicious software (malware) on an electronic device.  Although it is similar to antivirus, it has important differences from antivirus. Antimalware has more advanced features such as behavior monitoring that scans for suspicious behavior or files on the device. It can prevent malware from installing.  It addresses spyware, spam, and other threat issues that antivirus usually does not.

Application control software is an application that prevents unapproved software from running on a device and provides additional control over the software that runs on that device and records actions such as software installations and administratively privilege activity (e.g., Carbon Black Protect).  

Authentication Certificate is a digital certificate which is used to gain access to a system for secure electronic dealings. It is an electronic document that contains information on (1) the entity it belongs to, (2) the entity it was issued by, (3) unique serial number or some other unique identification, (4) valid dates and, (5) a digital fingerprint.

An individual at the University who is authorized to grant a request to access Electronically Stored Information (ESI).  This may include an individual who has been designated, either permanently or temporarily, by another individual to serve in the role of authorizing official on their behalf. The authorizing official (a.k.a approver) typically would be from within the same department, business unit, or reporting area, and must be at least two levels above the affected individual(s) on an organizational chart (except where the affected individual is the president or vice-president). The authorizing official is a person in a higher-level position of authority who is able to determine appropriateness and reasonableness after reviewing the applicable policies and standards related to the request. For most situations, the authorizing official will be either the department chairs or heads or their assigned designee, or the President or delegated representative, such as the Vice-Presidents and Deans or their assigned designee, depending on the affected user and requested access.