trust relationship [English]


InterPARES Definition

No definition in earlier IP projects. ITrust definition not yet developed.

Other Definitions

Citations

  • Duranti 2013 (†911 p. 28): The model of cloud computing is reminiscent of the mainframe environment of the 1960s, except that in this case we are not putting our trust in the proprietary and highly controlled environment of the company mainframe, but in global service providers, whose agendas and priorities as they build out their infrastructures are very different from our own. The trust relationship demands careful analysis and consideration and it is important to highlight specific challenges to entrusting data, records and archives to the cloud. Key issues of ownership, jurisdiction, and privacy have yet to be resolved. Longer term concerns around responsibility for maintenance, access, and preservation, all of which correspond to issues of trust, are looming on the horizon. (†2738)
  • ITrust NA. Research Project 4 - Proposal (†393 1): The expression ‘trust relationships’ includes the relationship between accuracy, reliability, and authenticity on the one hand, and trust on the other. (†429)
  • Liu 2013 (†913 p. 293): In our previous work (Liu, Aggarwal and Duan 2009; W. W. Liu 2010), we implemented four accountability principles, namely: identification, authorization, attestation and retribution, in a trust management framework for Internet servers to leverage organizations’ civil roles to improve accountability in their trust relationships with users, peers and authorities. Those principles also are crucial for servers to bring deterrence and recourse to enforce responsibility so they can trust better, putting reliance on responsible users and peers while holding rogue users or peers responsible. (†2739)
  • NIST 2013 (†734 p. F-163): The degree of confidence that the risk from using external services is at an acceptable level depends on the trust that organizations place in the external providers, individually or in combination. Trust relationships can help organization to gain increased levels of confidence that participating service providers are providing adequate protection for the services rendered. Such relationships can be complicated due to the number of potential entities participating in the consumer-provider interactions, subordinate relationships and levels of trust, and the types of interactions between the parties. In some cases, the degree of trust is based on the amount of direct control organizations are able to exert on external service providers with regard to employment of security controls necessary for the protection of the service/information and the evidence brought forth as to the effectiveness of those controls. The level of control is typically established by the terms and conditions of the contracts or service-level agreements and can range from extensive control (e.g., negotiating contracts or agreements that specify security requirements for the providers) to very limited control (e.g., using contracts or service-level agreements to obtain commodity servicessuch as commercial telecommunications services). (†1813)