Advanced Access Content System (AACS)
A specification for managing content that is stored on the next generation of prerecorded and recorded optical media for consumer use with PCs and consumer electronic devices.
certification authority (CA)
An authority that provides certificates to confirm that the public key is from the subject who claims to have sent the public key.
code-signing certificate
A certificate that is issued for the purpose of signing binaries.
cross certification
The process of issuing subordinate CA certificates for existing CAs that link two root CAs.
cross-certification authority certificate
A certificate that is issued by one CA for another CA's signing key pair (that is, for another CA's public verification key). Also known as cross certificate.
DRM attribute
A code-signing attribute that is provided by the Windows Logo Program. It verifies that the driver complies with Universal Audio Architecture (UAA) audio hardware requirements and allows the driver to handle protected content.
discrete versus integrated graphics
A discrete graphics adapter is a stand-alone device, typically a plug-in board. An integrated graphics adapter is embedded in the system board chipset.
identified kernel
A kernel in which all kernel-mode drivers on the system are signed by a source that Microsoft trusts.
kernel-mode code signing (KMCS)
The process of digitally signing software so that it meets the system requirements to be loaded in kernel mode. When used by vendors, KMCS combines standard code signing with an additional cross certificate that verifies the code's identity.
Media Interoperability Gateway (MIG)
An extensible multimedia pipeline that is built on top of the new Media Foundation API and running inside the Protected Environment (PE).
MIG plug-in
Media processing or content protection components that are meant to be hosted inside the MIG pipeline and PE to process protected premium content. Examples of MIG plug-ins are codecs and content-protection components such as decryptors.
| 