Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Data classification

From: "Hedrick, Gregory W" <hedrick () PURDUE EDU>
Date: Mon, 12 Jul 2004 10:23:46 -0500
We have 3 classification levels ...  

Public -- Information which may or must be open to the general public. It is defined as information with no existing 
local, national or international legal restrictions on access. 


Sensitive -- Information whose access must be guarded due to proprietary, ethical, or privacy considerations. This 
classification applies even though there may not be a civil statute requiring this protection.


Restricted -- Information protected because of protective statutes, policies or regulations. This level also represents 
information that isn't by default protected by legal statue, but for which the Information Owner has exercised their 
right to restrict access.


Greg Hedrick, CISSP
Manager, Security Services
Purdue University / ITaP
hedrick () purdue edu   


-----Original Message-----
From: The EDUCAUSE Security Discussion Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU]On Behalf Of Slade Griffin
Sent: Monday, July 12, 2004 9:55 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Data classification


All,
        Does anyone on this list deal with data classification?  If so I
would like to discuss what levels or classifications are used in the edu
community.  Thanks in advance.

Slade Griffin
ITSG
University of Tennessee
http://oit.utk.edu/infosec

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.
Previous By Date Next
Previous By Thread Next

Current thread: