Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Data Classification

From: Ced Bennett <ced.bennett () STANFORD EDU>
Date: Wed, 2 Aug 2006 11:36:04 -0700
Here's some references to Stanford's approach:

http://www.stanford.edu/group/security/securecomputing/dataclass.html
And
http://www.stanford.edu/group/security/securecomputing/dataclass_chart.html
which is referenced by the previous site but in a way that is sometimes
overlooked.

And here's a reference to the U's policy from which the previous references
derive their authority
http://adminguide.stanford.edu/63.pdf

Ced
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Cedric Bennett  Ph: 650 858-0883  Cell: 650 619-0145
  Emeritus Director, Information Security Services
Stanford University         Ced.Bennett () Stanford edu



-----Original Message-----
From: Steve Brukbacher [mailto:sab2 () UWM EDU]
Sent: Wednesday, July 26, 2006 11:50 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Data Classification

 Does anyone have a data classification policy at their school?
We're currently developing a model using Confidential, Sensitive and
Non-Classified data.  Once we have this framework ironed out and well
defined we'd like to correlate those with some specific do's and
don'ts.  This would be a high level campus wide guideline more than a
policy at this time.

I was wondering if anyone else had developed anything like this.......

--
Steve Brukbacher
University of Wisconsin Milwaukee
Information Security Coordinator
UWM Computer Security Web Site
www.security.uwm.edu
Phone: 414.229.2224
Previous By Date Next
Previous By Thread Next

Current thread: