1.5 KiB
1.5 KiB
Source: "The 6 Phases of Data Security", Cloud Security Alliance website Published: October 14, 2021 Retrieved: March 8, 2022
Data Security Lifecycle vs Information Lifecycle Management
Information Lifecycle Management is a tool to help understand the security boundaries and controls around data from its creation through retirement. Although Information Lifecycle Management is a fairly mature field, it doesn’t map well to the needs of security professionals.
The Data Security Lifecycle is different from Information Lifecycle Management in that it reflects the different needs of the security audience. It includes six phases from creation to destruction. Once created, data can bounce in between phases without restriction, and may not pass through all stages (not all data is eventually destroyed).
- Creation is the generation of new digital content, or the alteration of existing content.
- Storing is the act of committing the digital data to some sort of storage repository and typically occurs nearly simultaneously with creation.
- Data is viewed, processed, or used in some sort of activity, not including modification.
- Information is made accessible to others, such as in between users, to customers, and to partners.
- Data leaves active use and enters long-term storage.
- Data is permanently destroyed using physical or digital means.