Jim is right on.
Basic Security uses certs for authentication which would require the user to have a valid user name and password and the proper cert on his/her machine.
Advanced Security takes it even a step further. An administrator can lock down what parts of Cloverleaf he/she wants each user to have.