IBM RD | Abstract | Data-centric security: Integrating data privacy and data security

Country/region [change]

Services & solutions

Support & downloads

Journals Home
Systems Journal
Journal of Research and Development
	Current Issue
	Recent Issues
	Papers in Progress
	Search Journal Archives
	Subscribe/Order
	Description
	Author's Guide
Staff
Contact Us
Finish Shopping

Related links
	Security and Privacy
	IT Services: Security and Privacy Services
	IBM Privacy Research Institute

	Harmonizing Security and Privacy Abstract

PDF

Data-centric security: Integrating data privacy and data security

by S. D. Hennessy
G. D. Lauer
N. Zunic
B. Gerber
and A. C. Nelson


	Classifying data according to its permissible use, appropriate handling, and business value is critical for data privacy and security protection. This is essential for compliance with the constantly evolving regulatory landscape concerning protected data. Problems arise when users compromise data privacy and security by overlooking the critical need to manage data according to these requirements. This paper considers the creation and application of data classification systems for security and privacy purposes. It focuses primarily on classifying information in a meaningful way through the use of a partially automated methodology that normalizes and classifies structured data throughout an enterprise. We introduce the three pillars of the data-centric security model, which are based on the data-centric security classification offering by IBM Global Business Services (GBS) and the IBM Research Division. In particular, we describe the data classification pillar of the data-centric security architecture, which provides the framework and method for partially automated classification of data to meet the demands of compliance standards. Full paper