Relación
establecida entre dos entidades que les permite proteger la información que
intercambian.
A relationship established
between two or more entities to enable them to protect data they exchange.
[CNSSI_4009:2010]
1. (I) A relationship
established between two or more entities to enable them to protect data they
exchange. (See: association, ISAKMP, SAD. Compare: session.)
2. (I) /IPsec/ A simplex
(uni-directional) logical connection created for security purposes and
implemented with either AH or ESP (but not both). The security services offered
by a security association depend on the protocol (AH or ESP), the IPsec mode
(transport or tunnel), the endpoints, and the election of optional services
within the protocol. A security association is identified by a triple
consisting of (a) a destination IP address, (b) a protocol (AH or ESP)
identifier, and (c) a Security Parameter Index.
3. (O) "A set of policy
and cryptographic keys that provide security services to network traffic that
matches that policy". [R3740] (See: cryptographic association, group
security association.)
4. (O) "The totality of
communications and security mechanisms and functions (e.g., communications
protocols, security protocols, security mechanisms and functions) that securely
binds together two security contexts in different end systems or relay systems
supporting the same information domain." [DoD6]
[RFC4949:2007]
In Internet Protocol
Security (IPSec), settings that establish policy and encryption keys used to
protect communications between two end points in a Virtual Private Network
(VPN). Security associations are negotiated between two computers during the
first phase of establishing an Internet Key Exchange (IKE) connection.
http://www.watchguard.com/glossary/