The trust relationship is based upon the following set of attributes:
System authorization ID: Represents the user that establishes a database connection
IP address (or domain name): Represents the host from which a database connection is established
Data stream encryption: Represents the encryption setting (if any) for the data communication between the database server and the database client.
A trusted connection cannot be established if the connection is to a local database using inter-process communication (IPC).
https://www.ibm.com/support/knowledgecenter/SSEPGG_11.5.0/com.ibm.db2.luw.admin.sec.doc/doc/c0050514.html
If trusted connections exist for the trusted context being altered, the connections remain trusted with the definition in effect before the ALTER TRUSTED CONTEXT statement until the next switch user request or the connection terminates. If the trusted context is disabled while trusted connections for this context are active, the connections remain trusted until the next switch user request or the connection terminates. If trust attributes are changed with the ALTER TRUSTED CONTEXT statement, trusted connections that exist at the time of the ALTER TRUSTED CONTEXT statement that use the trusted context are allowed to continue.
https://www.ibm.com/support/knowledgecenter/SSEPGG_11.5.0/com.ibm.db2.luw.sql.ref.doc/doc/r0050604.html