Ver:
Esperanza
firme que se tiene de alguien o algo.
DRAE.
Diccionario de la Lengua Española.
Se dice que A
confía en B cuando A presume que B se comportará de una determinada forma. La
confianza suele estar limitada a una determinada función de B y no
necesariamente se extiende a otras funciones.
En general,
se puede decir que una entidad acepta como "fiduciaria" a una segunda
entidad cuando aquella (la primera entidad) supone que la segunda entidad se
comportará exactamente como ella lo espera. Esta relación de confianza se puede
aplicar solamente para alguna función específica. El cometido principal de la
confianza en el marco de la autenticación es describir la relación entre una
entidad autenticadora y una entidad de certificación; una entidad autenticadora
tendrá que estar segura de que puede confiar en que la autoridad de
certificación crea solamente certificados válidos y fiables. [X.509:2005]
Se dice que
la entidad X confía en la entidad Y para un conjunto de actividades solamente
si la entidad X puede confiar en que la entidad Y se comporta de una manera
particular con respecto a las actividades. [X.810:1995]
The attribute of
a person or enterprise that provides confidence to others of the
qualifications, capabilities, and reliability of that entity to perform
specific tasks and fulfill assigned responsibilities. [CNSSI_4009:2010]
1. (I)
/information system/ A feeling of certainty (sometimes based on inconclusive
evidence) either (a) that the system will not fail or (b) that the system meets
its specifications (i.e., the system does what it claims to do and does not
perform unwanted functions). (See: trust level, trusted system, trustworthy system.
Compare: assurance.)
2. (I) /PKI/ A
relationship between a certificate user and a CA in which the user acts
according to the assumption that the CA creates only valid digital
certificates.
[RFC4949:2007]
Generally, an
entity can be said to "trust" a second entity when it (the first
entity) makes the assumption that the second entity will behave exactly as the
first entity expects. This trust may apply only for some specific function. The
key role of trust in this framework is to describe the relationship between an authenticating
entity and a authority; an entity shall be certain that it can trust the
authority to create only valid and reliable certificates. [X.509:2005]
A relationship
between two elements, a set of activities and a security policy in which
element x trusts element y if and only if x has confidence that y will behave
in a well defined way (with respect to the activities) that does not violate
the given security policy. [ISO-13888-1:2004]
Entity X is said
to trust entity Y for a set of activities if and only if entity X relies upon
entity Y behaving in a particular way with respect to the activities.
[X.810:1995]
A method of
organizing "trust" within an organization by allowing one Certificate
Authority to delegate a portion of its responsibility to a subordinate
Certificate Authority. For example, a business might have a master Certificate
Authority, which vouches for a Certificate Authority at the company's Los
Angeles office, which vouches for a Certificate Authority at the company's
Phoenix office. Commonly used in ANSI X.509 certificates.
http://www.watchguard.com/glossary/
an IT product
other than the TOE which has its security functional requirements
administratively coordinated with the TOE and which is assumed to enforce its
security functional requirements correctly (e. g. by being separately
evaluated).
TOE - Target of
Evaluation
[CC:2006]
on peut dire d'une
manière générale qu'une entité "fait confiance" à une autre entité si
la première fait l'hypothèse que la deuxième se comportera exactement comme
attendu (par la première). Il se peut que cette confiance s'applique uniquement
pour une fonction donnée. Le rôle clé de la confiance dans ce cadre décrit la
relation entre une entité effectuant l'authentification et une autorité; une
entité sera certaine qu'elle peut faire confiance à l'autorité pour ne créer
que des certificats valides et fiables. [X.509:2005]
on dit que l'entité X
fait confiance à l'entité Y pour un ensemble d'activités si et seulement si
l'entité X suppose que l'entité Y se comportera d'une certaine façon par
rapport aux activités. [X.810:1995]
Temas relacionados