16 lines
No EOL
1.5 KiB
Markdown
16 lines
No EOL
1.5 KiB
Markdown
Source: "The 6 Phases of Data Security", [Cloud Security Alliance website](https://cloudsecurityalliance.org/blog/2021/10/14/the-6-phases-of-data-security/)
|
||
Published: October 14, 2021
|
||
Retrieved: March 8, 2022
|
||
|
||
### Data Security Lifecycle vs Information Lifecycle Management
|
||
|
||
Information Lifecycle Management is a tool to help understand the security boundaries and controls around data from its creation through retirement. Although Information Lifecycle Management is a fairly mature field, it doesn’t map well to the needs of security professionals.
|
||
|
||
The Data Security Lifecycle is different from Information Lifecycle Management in that it reflects the different needs of the security audience. It includes six phases from creation to destruction. Once created, data can bounce in between phases without restriction, and may not pass through all stages (not all data is eventually destroyed).
|
||
|
||
1. **Creation** is the generation of new digital content, or the alteration of existing content.
|
||
2. **Storing** is the act of committing the digital data to some sort of storage repository and typically occurs nearly simultaneously with creation.
|
||
3. Data is viewed, processed, or used in some sort of **activity**, not including modification.
|
||
4. Information is **made accessible** to others, such as in between users, to customers, and to partners.
|
||
5. Data leaves active use and enters **long-term storage**.
|
||
6. Data is permanently **destroyed** using physical or digital means. |