Re: Data Classification: Legal criteria

[Chris Gauthier <cgauthie () PCC EDU>]

I would be cautious about using the actual words:
"confidential"
"secret"
"top secret"
"classified"

This is because of the potential to be confused with the US Government
Classification System

Here is a reference URL:
http://en.wikipedia.org/wiki/Classified_information_in_the_United_States

Chris

Basgen, Brian wrote:
>  We are in the process of developing a data classification policy with
> three types: public, internal, and confidential.
>
>  The criteria or logic behind classifying confidential data is fairly
> easy: FERPA, GLBA, PCI, etc, requires the confidentiality of certain
> data types. Yet, I am not clear on the best external criteria to use for
> classification of internal data. Peer institutions, "best practices" is
> one thought, but I'm wondering what other objective criteria people have
> employed for the justification of making certain kinds of data internal
> as opposed to public. Let me know, thanks.
>
> ~~~~~~~~~~~~~~~~~~
> Brian Basgen
> Information Security
> Pima Community College

--
Chris Gauthier, CCNA, Network+, A+
Network Administration Team
Portland Community College
Portland, Oregon

"For once you have tasted flight you will walk the earth with your eyes turned skywards, for there you have been and there 
you will long to return."
--Leonardo da Vinci