A Access Control Model that provides the highest level of security. Uses document classification and clearance to allow for access to documents.
Document Classifications
- Top secret: Important company data
- Confidential: could be customer PII
- Restricted: Certain level of clearance required
Roles
- Owner: Writes the data and determines initial classification of data
- Steward: Works to ensure data is accurate, consistent and reliable. Defines data quality and governance policies
- Custodian: Responsible for the physical and technical aspects of data management. Manages storage and encryption
- Administrator: Work with the owner and custodian to ensure only authorized individuals can access data