Dynamic information security level reclassification

Abstract

The use of data classification schemes to secure information of an organization has been in use right from the day information has been stored in physical medium. Generally information is classified as public, internal use only, confidential, and highly confidential based on the value. Once classified into a particular classification level, it remains static. But in the current scenario, factors such as change in user hierarchy, addition of more projects requires a change in classification level which ensures better security. In this paper we propose a novel approach for monitoring & dynamically changing the classification level of information. The proposed approach utilizes a technique which takes into consideration the information usage data to make a decision on the new classification level