The Information Protection Life Cycle and Framework: Control Access
The modern economy is driven by information. Digital Transformation is made possible by information. But most forms of information must be protected to create and maintain value. The Information Protection Life Cycle and Framework provides concepts to organize the discovery, protection, and disposition of information objects. This article is the third in the series introducing the Information Protection Life Cycle and Framework.
1 Executive Summary
The Information Protection Life Cycle (IPLC) and Framework describes the phases, methods, and controls associated with the protection of information. The IPLC documents three stages in the life of information and multiple categories of controls which can be applied to secure information. The “main sequence” of information is Active Use Life, and Control Access is the first set of controls we consider. Controlling access to information objects is a key concern and control category in the Information Protection Framework.