U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Project Description (Initial Public Draft)

Data Classification Practices: Facilitating Data-Centric Security Management

Date Published: May 2021
Comments Due: June 21, 2021 (public comment period is CLOSED)
Email Questions to: data-nccoe@nist.gov

Author(s)

Karen Scarfone (Scarfone Cybersecurity), Murugiah Souppaya (NIST)

Announcement

The National Cybersecurity Center of Excellence (NCCoE) has released a new draft project description, Data Classification Practices: Facilitating Data-Centric Security. This begins a process to further identify project requirements, scope, and hardware and software components for use in a laboratory environment. 
 
The NCCoE will solicit participation from industry to develop an approach for defining data classifications and data handling rulesets and for communicating them to others. In addition, this project will attempt a basic proof-of-concept implementation that will include limited data discovery, analysis, classification, and labeling capabilities, as well as a rudimentary method for expressing how data with a particular label should be handled for each use case scenario. This project will result in practice guides and other publications to encourage increased standardization and adoption of data classification methods.
 
Besides providing public comments on the draft, you can join the Community of Interest by sending an email to data-nccoe@nist.gov

Abstract

Keywords

data-centric security management; data classification; data labeling; data protection; zero trust architecture; zero trust security
Control Families

None selected

Documentation

Publication:
Draft Project Description (pdf)

Supplemental Material:
Submit comments
Project homepage

Document History:
05/19/21: Project Description (Draft)
07/22/21: Project Description (Final)

Topics

Security and Privacy

general security & privacy, zero trust