3 KiB
3 KiB
Examples of measures for different TLP classifications
Voor Nederlands, zie hier.
TLP: CLEAR
- No measures
- No restriction on the use of AI tools
- Documents are labeled with TLP:CLEAR
TLP: GREEN
- Access limited to1 :
- the organization itself
- authorized external parties
- using MFA (Multi-Factor Authentication)
- SharePoint/Teams/OneDrive:
- placement in folders that are broadly accessible internally is allowed
- sharing only with authorized external parties
- placement on your personal OneDrive is allowed
- Cloud services and collaboration tools:
- only use solutions approved/managed by the organization
- Emailing and sending:
- additional measures are not necessary (such as encrypted email or secure connections)
- Use of Co-pilot is allowed
- Devices and locations:
- storage and access only via managed devices
- do not leave devices unattended
- printing only on approved/secure printers
- physical documents should only be kept in approved locations
- Documents are labeled with TLP:GREEN
- Devices and locations:
TLP: AMBER (+STRICT) All measures/restrictions of TLP:GREEN apply, plus:
- Access limited to:
- specific teams and departments within the organization
- specific authorized persons from external parties, under a signed NDA (Non-Disclosure Agreement)
- SharePoint/Teams/OneDrive:
- only place in folders that have limited internal access
- only specific external persons may be granted access
- placement on your personal OneDrive is not allowed
- Cloud services and collaboration tools:
- only use solutions managed by the organization (specify)
- only use services with strict security (such as DigiD or Bank-tokens)
- Emailing and sending:
- only via secure connections, in encrypted form, or via a 'secure mailing' solution (such as Zivver)
- data transfer is monitored for abnormal patterns
- Use of Co-pilot is not allowed
- Documents are labeled with TLP:AMBER
TLP: RED All measures/restrictions of TLP:AMBER apply, plus:
- Access limited to:
- specific persons within the organization
- SharePoint/Teams/OneDrive:
- only place in folders accessible to specific employees
- external persons may not be granted access
- placement on your personal OneDrive is not allowed
- Full monitoring of data transfer: control and logging of all data traffic
- Cloud services and collaboration tools:
- usage is limited to ...
- Emailing and sending:
- Not allowed
- Full and detailed logging of all activities
- Devices and locations:
- no access with mobile phones
- printing not allowed
- physical documents are kept in locked locations with restricted access (specify)
- Documents are labeled with TLP:RED