Difference between revisions of "Non-repudiation"

From CIPedia
Jump to navigation Jump to search
(Netherlands)
(35 intermediate revisions by the same user not shown)
Line 1: Line 1:
 
== National Definitions==
 
== National Definitions==
 +
==== [[Argentina]] ====
 +
{{definition|No repudio: se refiere a evitar que una entidad que haya enviado o recibido información alegue ante terceros que no la envió o recibió. <ref>[http://servicios.infoleg.gob.ar/infolegInternet/anexos/215000-219999/219163/norma.htm Oficina Nacional de Tecnologías de Información ADMINISTRACION PUBLICA NACIONAL Disposición 3/2013 - Apruébase la “Política de Seguridad de la Información Modelo” (2013)]</ref>}}<br/><br/>
 +
====[[Belgium]]====
 +
{{definition|Onweerlegbaarheid betekent dat een bewerking of gebeurtenis daadwerkelijk plaatsvond en niet nu noch later ontkend kan worden. <ref>[https://www.gegevensbeschermingsautoriteit.be/sites/privacycommission/files/documents/nota_beveiliging_van_persoonsgegevens.pdf  Gegevensbeschermingsautoriteit]</ref>}}<br/><br/>
 +
 +
====[[Bolivia]] ====
 +
{{definition|No repudio: Garantía de que: al que envía la información se le provee con una prueba de entrega y al que recibe la información se le provee de una prueba de la identidad del que ha enviado la información, de tal manera que ninguno puede negar a futuro que la información no se ha procesado. <ref>[https://www.ctic.gob.bo/glosario/ Glosario. AGETIC: Agencia de Gobierno Electrónico y Tecnologías de la Información y Comunicación del Estado Plurinacional de Bolivia (CTIC-EPB)]</ref>}}<br /><br/>
 
==== [[Cameroon]] (Cameroun) ====
 
==== [[Cameroon]] (Cameroun) ====
 
{{definition|Non répudiation: critère de sécurité assurant la disponibilité de preuves qui peuvent être opposées à un tiers et utilisées pour prouver la traçabilité d’une communication électronique qui a eu lieu. <ref>[http://www.antic.cm/images/stories/data/IMG/pdf/cybersecurite/Loi_2010-012_cybersecurite_cybercriminalite.pdf LOI N°2010/012 DU 21 DECEMBRE 2010 RELATIVE A LA CYBERSECURITE ET LA CYBERCRIMINALITE AU CAMEROUN ]</ref>}}<br />
 
{{definition|Non répudiation: critère de sécurité assurant la disponibilité de preuves qui peuvent être opposées à un tiers et utilisées pour prouver la traçabilité d’une communication électronique qui a eu lieu. <ref>[http://www.antic.cm/images/stories/data/IMG/pdf/cybersecurite/Loi_2010-012_cybersecurite_cybercriminalite.pdf LOI N°2010/012 DU 21 DECEMBRE 2010 RELATIVE A LA CYBERSECURITE ET LA CYBERCRIMINALITE AU CAMEROUN ]</ref>}}<br />
 +
====[[Cuba]]====
 +
{{definition|No repudio: Servicio de seguridad que permite probar la participación de las partes en una comunicación. Servicio de seguridad que previene que un emisor niegue haber remitido un mensaje (cuando realmente lo ha emitido) y que un receptor niegue su recepción (cuando realmente lo ha recibido).  <ref>[http://www.cscuba.cu/es/glosario-de-terminos/A Glossary of Cyber terms/Glosario de términos, Centro de Seguridad del Ciberespacio]</ref>}}<br/>
 +
 
==== [[Czech Republic]] ====
 
==== [[Czech Republic]] ====
{{definition|Nepopiratelnost: Schopnost prokázat výskyt údajné události nebo činnosti a vznikajících entit s cílem řešit spory o výskytu nebo absence výskytu události nebo činnosti a zapojení entit do události. <ref>[http://www.govcert.cz/download/nodeid-561  Výkladový slovník kybernetické bezpečnosti (2013)]</ref> <br/><br/> Non-repudiation is the [[capability]] to prove the occurrence of an alleged [[event]] or activity, and originating entities with the objective to solve controversies about the occurrence of an event or an absence of an occurrence, or about the activity and involvement of entities into the events. <ref>[http://www.govcert.cz/download/nodeid-561  Výkladový slovník kybernetické bezpečnosti (2013)]</ref>}}<br/>
+
{{definition|Nepopiratelnost: Schopnost prokázat výskyt údajné události nebo činnosti a vznikajících entit s cílem řešit spory o výskytu nebo absence výskytu události nebo činnosti a zapojení entit do události. <ref>[http://www.govcert.cz/download/nodeid-561  Výkladový slovník kybernetické bezpečnosti (2013)]</ref> <br/><br/> Non-repudiation is the [[capability]] to prove the occurrence of an alleged [[event]] or activity, and originating entities with the objective to solve controversies about the occurrence of an event or an absence of an occurrence, or about the activity and involvement of entities into the events. <ref>[http://www.govcert.cz/download/nodeid-561  Výkladový slovník kybernetické bezpečnosti (2013)]</ref>}}<br/><br/>
 +
==== [[Hong Kong]] ====
 +
{{definition|不可否認性 :  提供原本的證據,使發件人不能否認曾發出信息,而收件人也 不能否認曾收取信息。 <br/><br/>Non-repudiation: The ability to provide proof of the origin such that the sender cannot deny sending the message, and the recipient cannot deny the receipt of the message.  <ref>[https://www.infosec.gov.hk/english/glossary/files/InfoSecGlossary_eng.pdf Glossary for Information Security Terms/資訊保安詞彙表] </ref>}}<br/><br/>
 +
 
 +
 
 +
==== [[Iceland]] ====
 +
{{definition|Óhrekjanleiki: Aðferð sem tryggir að sendandi upplýsinga geti ekki afneitað því að hafa sent tilteknar upplýsingar eða móttakandi að hafa tekið á móti þeim. <ref>[https://www.stjornartidindi.is Nr. 1223/2007 10. desember 2007 REGLUR um vernd, virkni og gæði IP fjarskiptaþjónustu.]</ref>}}<br />
  
 
====[[India]]====
 
====[[India]]====
{{definition|Non-repudiation provides proof of the origin or delivery of data in order to protect the sender against a false denial by the recipient that the data has been received or to protect the recipient against false denial by the sender that the data has been sent. <ref>[http://www.dgqadefence.gov.in/documents/pdf/cyber-security-policy-dgqa-2015.pdf India's DGQA Cyber Security Policy (2015)] </ref>}}Note: Only a trier of fact (someone with the authority to resolve disputes) can make an ultimate determination of non-repudiation. <br />
+
{{definition|Non-repudiation provides proof of the origin or delivery of data in order to protect the sender against a false denial by the recipient that the data has been received or to protect the recipient against false denial by the sender that the data has been sent. <ref>[http://www.dgqadefence.gov.in/documents/pdf/cyber-security-policy-dgqa-2015.pdf India's DGQA Cyber Security Policy (2015)] </ref>}}Note: Only a trier of fact (someone with the authority to resolve disputes) can make an ultimate determination of non-repudiation. <br/><br/>
<br/>
+
====[[Kingdom of Saudi Arabia]]====
 +
{{definition|Non-repudiation: Protection against an individual falsely denying having performed a particular action. Provides the capability to determine whether a given individual took a particular action such as creating information, sending a message, approving information, and receiving a message. (NISTIR 7298r2 Glossary of Key Information Security Terms) <ref>[http://www.sama.gov.sa/en-US/Laws/BankingRules/SAMA%20Cyber%20Security%20Framework.pdf Cyber Security Framework Saudi Arabian Monetary Authority Version 1.0 May 2017 ]</ref>}}<br/><br/>
 +
 
 +
==== [[Mexico]] ====
 +
{{definition|Protección a la duplicación: Consiste en asegurar que una transacción solo se realiza una vez, a menos que se especifique lo contrario, así como en impedir que se grabe una transacción para su posterior reproducción, con el objeto de simular múltiples​ ​peticiones​ ​del​ ​remitente​ ​original. <ref>[https://www.gob.mx/cms/uploads/attachment/file/271884/Estrategia_Nacional_Ciberseguridad.pdf Estragia Nacional de Ciberseguridad (November 2017)]</ref>}}<br/><br/>
 +
{{definition|No repudio. ​Se refiere a evitar que una entidad, órgano o persona que haya enviado o​ ​recibido​ ​información​ ​alegue​ ​ante​ ​terceros​ ​que​ ​no​ ​la​ ​envió​ ​o​ ​recibió. <ref>[https://www.gob.mx/cms/uploads/attachment/file/271884/Estrategia_Nacional_Ciberseguridad.pdf Estragia Nacional de Ciberseguridad (November 2017)]</ref>}}<br/><br/>
  
 +
==== [[Morocco]] ====
 +
{{definition|Non répudiation: Objectif de sécurité qui permet de garantir qu'une transaction ne peut être niée. <ref>[http://www.dgssi.gov.ma/uploads/media/DIRECTIVE_NATIONALE_DE_LA_SECURITE_DES_SYSTEMES_D_INFORMATION.pdf DIRECTIVE NATIONALE DE LA SECURITE DES SYSTEMES D'INFORMATION, Marocco 2013]</ref>}}<br/><br/>
  
 
==== [[Netherlands]] ====
 
==== [[Netherlands]] ====
{{Definition|Onweerlegbaarheid is het niet kunnen ontkennen, bijvoorbeeld, een bericht te hebben ontvangen dan wel
+
{{Definition|Onweerlegbaarheid is het niet kunnen ontkennen, bijvoorbeeld, een bericht te hebben ontvangen dan wel te hebben verstuurd. <ref>[https://www.digitaleoverheid.nl/images/stories/nieuws_2010/normenit_noradossier_informatiebeveiliging.pdf e-Overheid: Nora Dossier Informatiebeveiliging - Norm IT-voorzieningen, 2010]</ref>}}<br/>
te hebben verstuurd. <ref>[https://www.digitaleoverheid.nl/images/stories/nieuws_2010/normenit_noradossier_informatiebeveiliging.pdf e-Overheid: Nora Dossier Informatiebeveiliging - Norm IT-voorzieningen, 2010]</ref>}}
+
{{definition|Onweerlegbaarheid: Een kwaliteitskenmerk voor een object of dienst in het kader van de (informatie)beveiliging. Mate waarin onbetwistbaar bewezen kan worden dat een partij een valse ontkenning geeft van deelname in het geheel of deel van een communicatiestroom. <ref>[https://kennisopenbaarbestuur.nl/media/53867/handreiking-cybercrime.pdf Handreiking Cybercrime (2012)]</ref>}}<br/><br/>
 +
 
 +
====[[Oman]]====
 +
{{definition|Non-repudiation is the ability for a system to prove that a specific user and only that specific user sent a message and that it hasn't been modified. <ref>[http://www.cert.gov.om/library_information_glossary.aspx Oman CERT Glossary]</ref>}}<br /><br/>
 +
 
 +
==== [[Philippines]] ====
 +
{{definition|Non-repudiation: Assurance that the sender of information is provided with proof of delivery and the recipient is provided with proof of the sender‘s identity, so neither can later deny having processed the information; Protection against an individual falsely denying having performed a particular action. <ref>[http://www.dnd.gov.ph/miss/PDF/downloadables/Cybersecurity%20Glossary%20(Edited).pdf DND GLOSSARY OF CYBER SECURITY TERMS (v.4)]</ref>}}<br/>
 +
{{definition|Non Repudiation: A method of guaranteeing message transmission between parties via digital signature and/or encryption.  <ref>[https://digital.nhs.uk/services/data-and-cyber-security-protecting-information-and-data-in-health-and-care/cyber-and-data-security-policy-and-good-practice-in-health-and-care/cyber-and-data-security-resources/cyber-security-glossary NHS Cyber security glossary]</ref>}}It is one of the five pillars of information assurance. The other four are availability, integrity, confidentiality and authentication.  Nonrepudiation is often used for digital contracts, signatures and email messages.<br/><br/>
  
 +
 +
==== [[Senegal]] ====
 +
{{definition|Non-répudiation: signifie la possibilité de vérifier que l'envoyeur et le destinataire sont bien les parties qui disent avoir respectivement envoyé ou reçu le message. <ref>[http://www.numerique.gouv.sn/sites/default/files/SNC2022-vf.pdf STRATÉGIE NATIONALE DE CYBERSÉCURITÉ DU SÉNÉGAL (SNC2022)]</ref>}}<br/><br />
 +
==== [[Serbia]] ====
 +
{{definition|непорецивост представља способност доказивања да се догодила одређена радња или да је наступио одређени догађај, тако да га накнадно није могуће порећи. <ref>[http://www.parlament.gov.rs/upload/archive/files/cir/pdf/predlozi_zakona/3515-15.pdf ЗАКОН О ИНФОРМАЦИОНОЈ БЕЗБЕДНОСТИ (Law on Information Security), Serbia]</ref>}}<br><br>
 +
 +
====[[Spain]]====
 +
{{definition|No repudio El no repudio o irrenunciabilidad es un servicio de seguridad que permite probar la participación de las partes en una comunicación. Existirán por tanto dos posibilidades: <br/>- No repudio en origen: El emisor no puede negar que envió porque el destinatario tiene pruebas del envío. <br/>- No repudio en destino: El receptor no puede negar que recibió el mensaje porque el emisor tiene pruebas de la recepción. <br/>La posesión de un documento y su firma digital asociada será prueba efectiva del contenido y del autor del documento.    <ref>[http://www.hacienda.gob.es/Documentacion/Publico/SGT/CATALOGO_SEFP/014_MinHFP_diccionario_AE.pdf  Diccionario de términos y conceptos de la Administración Electrónica, Ministerio de Hacienda y Función  Pública Secretaría General Técnica, 2017]</ref>}}<br /><br/>
 +
 +
==== [[Tunisia]] ====
 +
{{definition|Non repudiation: Property expressing recognition of an electronic act (transaction, receipt of data, ...).  <ref>[https://www.ansi.tn/fr/pages/documentation/glossaire.html ANSI Glossary]</ref>}}<br/><br/>
 
====[[United States]]====
 
====[[United States]]====
 +
=====[[DHS]]=====
 +
{{definition|Non-repudiatiion is a property achieved through cryptographic methods to protect against an individual or entity falsely denying having performed a particular action related to data. <ref name=nicss>[https://niccs.us-cert.gov/glossary DHS/NICSS Glossary]</ref>}}<br/>
 
===== [[NIST]]=====
 
===== [[NIST]]=====
 
{{definition|Protection against an individual falsely denying having performed a particular action. <ref>[http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r4.pdf NIST Special Publication 800-53 Rev 4: Security and Privacy Controls for Federal Information Systems and Organizations (April 2013)]</ref>}}
 
{{definition|Protection against an individual falsely denying having performed a particular action. <ref>[http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r4.pdf NIST Special Publication 800-53 Rev 4: Security and Privacy Controls for Federal Information Systems and Organizations (April 2013)]</ref>}}
Line 20: Line 63:
  
 
{{definition|Non-repudiation is the assurance that the sender of information is provided with proof of delivery and the recipient is provided with proof of the sender’s identity, so neither can later deny having processed the information. <ref name="NISTIR7298"> [http://nvlpubs.nist.gov/nistpubs/ir/2013/NIST.IR.7298r2.pdf NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013/NIST SP 800-60]</ref>}}<br />
 
{{definition|Non-repudiation is the assurance that the sender of information is provided with proof of delivery and the recipient is provided with proof of the sender’s identity, so neither can later deny having processed the information. <ref name="NISTIR7298"> [http://nvlpubs.nist.gov/nistpubs/ir/2013/NIST.IR.7298r2.pdf NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013/NIST SP 800-60]</ref>}}<br />
 +
 +
{{definition|Non-repudiation: Assurance that the sender of information is provided with proof of delivery and the recipient is provided with proof of the sender’s identity, so neither can later deny having processed the information.  (from: NIST SP 800-18 Rev 1) <ref name=NIST>[https://csrc.nist.gov/Glossary NIST Glossary]</ref>}}<br/>
 +
{{definition|Non-repudiation is a service that is used to provide assurance of the integrity and origin of data in such a way that the integrity and origin can be verified by a third party as having originated from a specific entity in possession of the private key of the claimed signatory. (from: NIST SP 800-21 Rev 2/NIST SP 800-57) <ref name=NIST>[https://csrc.nist.gov/Glossary NIST Glossary]</ref>}}<br/>
  
 
== International Standard ==
 
== International Standard ==
 
====[[IETF]]====
 
====[[IETF]]====
{{definition|Non-repudiation (service) is (a security service that) provides protection against false denial of involvement in an association (especially a communication association that transfers data). <ref name="IETFrefs">[https://tools.ietf.org/html/rfc4949 IETF RFC449 Internet Security Glossary 2]</ref>}}<br />
+
{{definition|Non-repudiation (service) is (a security service that) provides protection against false denial of involvement in an association (especially a communication association that transfers data). <ref name="IETFrefs">[https://tools.ietf.org/html/rfc4949 IETF RFC449 Internet Security Glossary 2]</ref>}}<br/><br/>
 
+
==== [[ISA|ISA-62443-*]] ====
 +
{{definition|Non-repudiation is the ability to prove the occurrence of a claimed [[event]] or action and its originating entities. <ref name='ISA999'>ISA-62443 series</ref>}}<br/><br/>
 
=== [[ISO|ISO/IEC 27000]] ===
 
=== [[ISO|ISO/IEC 27000]] ===
 
{{definition|Ability to prove the occurrence of a claimed event or action and its originating entities. <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref>}}
 
{{definition|Ability to prove the occurrence of a claimed event or action and its originating entities. <ref name="ISO27000-14"> [http://www.iso.org/iso/home/store/catalogue_ics/catalogue_detail_ics.htm?csnumber=63411 ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary]</ref>}}
  
 +
=== [[Dictionary]]===
 +
{{definition|Onweerlegbaarheid: Een bericht is onweerlegbaar als de verzender niet kan ontkennen dat hij het bericht heeft verstuurd. De ontvanger kan niet ontkennen dat hij het bericht heeft ontvangen.  <ref>[https://www.cybersecurityalliantie.nl/ecp_images/2021/12/Cybersecurity-Woordenboek-2021_ZonderSpreads.pdf Cybersecurity Woordenboek 2021]</ref>}}<br/><br/>
 +
{{#set:defined by=Dictionary}}
 
==See also==
 
==See also==
 
  
 
==Notes==
 
==Notes==
<references />
 
  
<!--
 
 
==References==
 
==References==
* Test reference. -->
+
<references />
  
 
[[Category:Information]][[Category:Security]]
 
[[Category:Information]][[Category:Security]]
{{#set:defined by=Cameroon|defined by=Czech Republic|defined by=Netherlands|defined by=United States|defined by=India|defined by=ISO|defined by=IETF|defined by=NIST}}
+
{{#set:defined by=Argentina|defined by=Belgium|defined by=Bolivia|defined by=Cameroon|defined by=Cuba|defined by=Czech Republic|defined by=Hong Kong|defined by=Iceland|defined by=India|defined by=Kingdom of Saudi Arabia|defined by=Mexico|defined by=Morocco|defined by=Netherlands|defined by=Oman|defined by=Philippines|defined by=Senegal|defined by=Serbia|defined by=Spain|defined by=Tunisia|defined by=United States|defined by=DHS|defined by=ISO|defined by=IETF|defined by=ISA|defined by=NIST}}
 +
{{#set: Showmainpage=Yes}}

Revision as of 12:42, 15 August 2022

National Definitions

Argentina

No repudio: se refiere a evitar que una entidad que haya enviado o recibido información alegue ante terceros que no la envió o recibió. [1]



Belgium

Onweerlegbaarheid betekent dat een bewerking of gebeurtenis daadwerkelijk plaatsvond en niet nu noch later ontkend kan worden. [2]



Bolivia

No repudio: Garantía de que: al que envía la información se le provee con una prueba de entrega y al que recibe la información se le provee de una prueba de la identidad del que ha enviado la información, de tal manera que ninguno puede negar a futuro que la información no se ha procesado. [3]



Cameroon (Cameroun)

Non répudiation: critère de sécurité assurant la disponibilité de preuves qui peuvent être opposées à un tiers et utilisées pour prouver la traçabilité d’une communication électronique qui a eu lieu. [4]


Cuba

No repudio: Servicio de seguridad que permite probar la participación de las partes en una comunicación. Servicio de seguridad que previene que un emisor niegue haber remitido un mensaje (cuando realmente lo ha emitido) y que un receptor niegue su recepción (cuando realmente lo ha recibido). [5]


Czech Republic

Nepopiratelnost: Schopnost prokázat výskyt údajné události nebo činnosti a vznikajících entit s cílem řešit spory o výskytu nebo absence výskytu události nebo činnosti a zapojení entit do události. [6]

Non-repudiation is the capability to prove the occurrence of an alleged event or activity, and originating entities with the objective to solve controversies about the occurrence of an event or an absence of an occurrence, or about the activity and involvement of entities into the events. [7]



Hong Kong

不可否認性 : 提供原本的證據,使發件人不能否認曾發出信息,而收件人也 不能否認曾收取信息。

Non-repudiation: The ability to provide proof of the origin such that the sender cannot deny sending the message, and the recipient cannot deny the receipt of the message. [8]




Iceland

Óhrekjanleiki: Aðferð sem tryggir að sendandi upplýsinga geti ekki afneitað því að hafa sent tilteknar upplýsingar eða móttakandi að hafa tekið á móti þeim. [9]


India

Non-repudiation provides proof of the origin or delivery of data in order to protect the sender against a false denial by the recipient that the data has been received or to protect the recipient against false denial by the sender that the data has been sent. [10]

Note: Only a trier of fact (someone with the authority to resolve disputes) can make an ultimate determination of non-repudiation.

Kingdom of Saudi Arabia

Non-repudiation: Protection against an individual falsely denying having performed a particular action. Provides the capability to determine whether a given individual took a particular action such as creating information, sending a message, approving information, and receiving a message. (NISTIR 7298r2 Glossary of Key Information Security Terms) [11]



Mexico

Protección a la duplicación: Consiste en asegurar que una transacción solo se realiza una vez, a menos que se especifique lo contrario, así como en impedir que se grabe una transacción para su posterior reproducción, con el objeto de simular múltiples​ ​peticiones​ ​del​ ​remitente​ ​original. [12]



No repudio. ​Se refiere a evitar que una entidad, órgano o persona que haya enviado o​ ​recibido​ ​información​ ​alegue​ ​ante​ ​terceros​ ​que​ ​no​ ​la​ ​envió​ ​o​ ​recibió. [13]



Morocco

Non répudiation: Objectif de sécurité qui permet de garantir qu'une transaction ne peut être niée. [14]



Netherlands

Onweerlegbaarheid is het niet kunnen ontkennen, bijvoorbeeld, een bericht te hebben ontvangen dan wel te hebben verstuurd. [15]


Onweerlegbaarheid: Een kwaliteitskenmerk voor een object of dienst in het kader van de (informatie)beveiliging. Mate waarin onbetwistbaar bewezen kan worden dat een partij een valse ontkenning geeft van deelname in het geheel of deel van een communicatiestroom. [16]



Oman

Non-repudiation is the ability for a system to prove that a specific user and only that specific user sent a message and that it hasn't been modified. [17]



Philippines

Non-repudiation: Assurance that the sender of information is provided with proof of delivery and the recipient is provided with proof of the sender‘s identity, so neither can later deny having processed the information; Protection against an individual falsely denying having performed a particular action. [18]


Non Repudiation: A method of guaranteeing message transmission between parties via digital signature and/or encryption. [19]

It is one of the five pillars of information assurance. The other four are availability, integrity, confidentiality and authentication. Nonrepudiation is often used for digital contracts, signatures and email messages.


Senegal

Non-répudiation: signifie la possibilité de vérifier que l'envoyeur et le destinataire sont bien les parties qui disent avoir respectivement envoyé ou reçu le message. [20]



Serbia

непорецивост представља способност доказивања да се догодила одређена радња или да је наступио одређени догађај, тако да га накнадно није могуће порећи. [21]



Spain

No repudio El no repudio o irrenunciabilidad es un servicio de seguridad que permite probar la participación de las partes en una comunicación. Existirán por tanto dos posibilidades:
- No repudio en origen: El emisor no puede negar que envió porque el destinatario tiene pruebas del envío.
- No repudio en destino: El receptor no puede negar que recibió el mensaje porque el emisor tiene pruebas de la recepción.
La posesión de un documento y su firma digital asociada será prueba efectiva del contenido y del autor del documento. [22]



Tunisia

Non repudiation: Property expressing recognition of an electronic act (transaction, receipt of data, ...). [23]



United States

DHS
Non-repudiatiion is a property achieved through cryptographic methods to protect against an individual or entity falsely denying having performed a particular action related to data. [24]


NIST
Protection against an individual falsely denying having performed a particular action. [25]

Provides the capability to determine whether a given individual took a particular action such as creating information, sending a message, approving information, and receiving a message.

Non-repudiation is the assurance that the sender of information is provided with proof of delivery and the recipient is provided with proof of the sender’s identity, so neither can later deny having processed the information. [26]


Non-repudiation: Assurance that the sender of information is provided with proof of delivery and the recipient is provided with proof of the sender’s identity, so neither can later deny having processed the information. (from: NIST SP 800-18 Rev 1) [27]


Non-repudiation is a service that is used to provide assurance of the integrity and origin of data in such a way that the integrity and origin can be verified by a third party as having originated from a specific entity in possession of the private key of the claimed signatory. (from: NIST SP 800-21 Rev 2/NIST SP 800-57) [27]


International Standard

IETF

Non-repudiation (service) is (a security service that) provides protection against false denial of involvement in an association (especially a communication association that transfers data). [28]



ISA-62443-*

Non-repudiation is the ability to prove the occurrence of a claimed event or action and its originating entities. [29]



ISO/IEC 27000

Ability to prove the occurrence of a claimed event or action and its originating entities. [30]

Dictionary

Onweerlegbaarheid: Een bericht is onweerlegbaar als de verzender niet kan ontkennen dat hij het bericht heeft verstuurd. De ontvanger kan niet ontkennen dat hij het bericht heeft ontvangen. [31]



See also

Notes

References

  1. Oficina Nacional de Tecnologías de Información ADMINISTRACION PUBLICA NACIONAL Disposición 3/2013 - Apruébase la “Política de Seguridad de la Información Modelo” (2013)
  2. Gegevensbeschermingsautoriteit
  3. Glosario. AGETIC: Agencia de Gobierno Electrónico y Tecnologías de la Información y Comunicación del Estado Plurinacional de Bolivia (CTIC-EPB)
  4. LOI N°2010/012 DU 21 DECEMBRE 2010 RELATIVE A LA CYBERSECURITE ET LA CYBERCRIMINALITE AU CAMEROUN
  5. Glossary of Cyber terms/Glosario de términos, Centro de Seguridad del Ciberespacio
  6. Výkladový slovník kybernetické bezpečnosti (2013)
  7. Výkladový slovník kybernetické bezpečnosti (2013)
  8. Glossary for Information Security Terms/資訊保安詞彙表
  9. Nr. 1223/2007 10. desember 2007 REGLUR um vernd, virkni og gæði IP fjarskiptaþjónustu.
  10. India's DGQA Cyber Security Policy (2015)
  11. Cyber Security Framework Saudi Arabian Monetary Authority Version 1.0 May 2017
  12. Estragia Nacional de Ciberseguridad (November 2017)
  13. Estragia Nacional de Ciberseguridad (November 2017)
  14. DIRECTIVE NATIONALE DE LA SECURITE DES SYSTEMES D'INFORMATION, Marocco 2013
  15. e-Overheid: Nora Dossier Informatiebeveiliging - Norm IT-voorzieningen, 2010
  16. Handreiking Cybercrime (2012)
  17. Oman CERT Glossary
  18. DND GLOSSARY OF CYBER SECURITY TERMS (v.4)
  19. NHS Cyber security glossary
  20. STRATÉGIE NATIONALE DE CYBERSÉCURITÉ DU SÉNÉGAL (SNC2022)
  21. ЗАКОН О ИНФОРМАЦИОНОЈ БЕЗБЕДНОСТИ (Law on Information Security), Serbia
  22. Diccionario de términos y conceptos de la Administración Electrónica, Ministerio de Hacienda y Función Pública Secretaría General Técnica, 2017
  23. ANSI Glossary
  24. DHS/NICSS Glossary
  25. NIST Special Publication 800-53 Rev 4: Security and Privacy Controls for Federal Information Systems and Organizations (April 2013)
  26. NISTIR 7298 rev 2: Glossary of Key Information Security Terms, May 2013/NIST SP 800-60
  27. 27.0 27.1 NIST Glossary
  28. IETF RFC449 Internet Security Glossary 2
  29. ISA-62443 series
  30. ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary
  31. Cybersecurity Woordenboek 2021