Conjunto
denominado de reglas que indica la aplicabilidad de un certificado a una
determinada comunidad y/o clase de aplicación con requisitos de seguridad
comunes. Por ejemplo, una determinada política de certificado pudiera indicar
la aplicabilidad de un tipo de certificado a la autenticación de transacciones
de intercambio electrónico de datos para el comercio de bienes dentro de una
gama de precios dada. [X.509:2005]
A specialized form of
administrative policy tuned to electronic transactions performed during
certificate management. A Certificate Policy addresses all aspects associated
with the generation, production, distribution, accounting, compromise recovery,
and administration of digital certificates. Indirectly, a certificate policy
can also govern the transactions conducted using a communications system
protected by a certificate-based security system. By controlling critical
certificate extensions, such policies and associated enforcement technology can
support provision of the security services required by particular applications.
[CNSSI_4009:2010]
(D) Synonym for either
"certificate policy" or "certification practice statement".
[RFC4949:2007]
A named set of rules that
indicates the applicability of a certificate to a particular community and/or
class of application with common security requirements. For example, a
particular certificate policy might indicate applicability of a type of
certificate to the authentication of electronic data interchange transactions
for the trading of goods within a given price range. [X.509:2005]
ensemble nommé de
règles indiquant la possibilité d'appliquer un certificat pour une communauté
particulière et/ou une classe d'applications particulière avec des besoins de
sécurité communs. Une politique de certificat particulière peut, par exemple,
indiquer la possibilité d'application d'un certificat pour des transactions
avec échange de données électroniques pour le commerce de biens dans une
fourchette de prix donnée. [X.509:2005]