fbpx
Wikipedia

Traffic Light Protocol

January 01, 1970

This article is about areas of classified information and document classification. For operation of traffic signalling devices, see traffic-light signalling and operation. For other uses, see Traffic light (disambiguation).

The Traffic Light Protocol (TLP) is a system for classifying sensitive information created in the early 2000s by the UK Government's National Infrastructure Security Co-ordination Centre, in order to encourage greater sharing of sensitive information.[1]

The fundamental concept is for the originator to signal how widely they want their information to be circulated beyond the immediate recipient. It is designed to improve the flow of information between individuals, organizations or communities in a controlled and trusted way. It is important that everyone who handles TLP-labeled communications understands and obeys the rules of the protocol. Only then can trust be established and the benefits of information sharing realized. The TLP is based on the concept of the originator labeling information with one of four colors to indicate what further dissemination, if any, can be undertaken by the recipient. The recipient must consult the originator if wider dissemination is required.

A number of current specifications for TLP exist.

  • From ISO/IEC, as part of the Standard on Information security management for inter-sector and inter-organizational communications[2]
  • From US-CERT, which is intended to provide a publicly available simple definition[3]
  • From the Forum of Incident Response and Security Teams (FIRST), which published version 1.0 of its consolidated TLP document on August 31, 2016.[4] arising from a Special Interest Group it created to ensure that interpretations of TLP are consistent, and clear expectations exist across user communities. FIRST deprecated version 1.0 in August 2022 (though may still be used until 31 December 2022[5]), on the release of version 2.0.[6]

Summary of TLP's four colours and their meanings edit

There are four colors (or traffic lights):[7]

  •  RED  - personal for named recipients only
In the context of a meeting, for example, RED information is limited to those present at the meeting. The distribution of RED information will generally be via a defined list and in extreme circumstances may only be passed verbally or in person.
  •  AMBER  - limited distribution
The recipient may share AMBER information with others within their organization and their clients, but only on a ‘need-to-know’ basis. The originator may be expected to specify the intended limits of that sharing.
 AMBER+STRICT , introduced in TLP version 2.0, restricts sharing to the organisation only.[8]
  •  GREEN  - community wide
Information in this category can be circulated widely within a particular community. However, the information may not be published or posted publicly on the Internet, nor released outside of the community. Note: when “community” is not defined, assume the cybersecurity/defense community.
  •  CLEAR  - unlimited formerly:  WHITE  - unlimited
Subject to standard copyright rules, CLEAR/WHITE information may be distributed freely, without restriction.

In practice, one will indicate a document's classification with the acronym "TLP", followed by a colon and classification level, for example: "TLP:RED".

See also edit

References edit

  1. ^ Eric Luiijf; Allard Kernkamp (March 2015). "Sharing Cyber Security Information" (PDF). Global Conference on CyberSpace 2015. Toegepast Natuurwetenschappelijk Onderzoek. Retrieved 2016-10-25.
    Don Stikvoort (11 November 2009). "ISTLP - Information Sharing Traffic Light Protocol" (PDF). Trusted Introducer. National Infrastructure Security Co-ordination Centre. Retrieved 2016-10-25.
    "Development of Policies for Protection of Critical Information Infrastructures" (PDF). Organisation for Economic Co-operation and Development. Retrieved 2015-11-19.
    "'Re: OpenSSH security advisory: cbc.adv' - MARC". Mailing list ARChive. Retrieved 2012-11-25. (alt source SecurityFocus archive entry)
  2. ^ "ISO/IEC 27010:2015 [ISO/IEC 27010:2015] | Information technology — Security techniques — Information security management for inter-sector and inter-organizational communications". International Organization for Standardization/International Electrotechnical Commission. November 2015. Retrieved 2019-12-31.
  3. ^ "Traffic Light Protocol (TLP) Definitions and Usage". United States Department of Homeland Security. Retrieved 2019-12-31.
  4. ^ "FIRST announces Traffic Light Protocol (TLP) version 1.0". Forum of Incident Response and Security Teams. Retrieved 2019-12-31.
  5. ^ "Traffic Light Protocol (TLP)". FIRST — Forum of Incident Response and Security Teams. Retrieved 2022-08-05.
  6. ^ "FIRST announces Traffic Light Protocol (TLP) version 2.0" (PDF).
  7. ^ . Centre for Critical Infrastructure Protection. Archived from the original on 2013-02-05. Retrieved 2012-11-25.
  8. ^ "FIRST Traffic Light Protocol version 2.0" (PDF).

External links edit

  • Forum of Incident Response and Security Teams
  • U.S. Department of Homeland Security

January 01, 1970
traffic, light, protocol, this, article, about, areas, classified, information, document, classification, operation, traffic, signalling, devices, traffic, light, signalling, operation, other, uses, traffic, light, disambiguation, system, classifying, sensitiv. This article is about areas of classified information and document classification For operation of traffic signalling devices see traffic light signalling and operation For other uses see Traffic light disambiguation The Traffic Light Protocol TLP is a system for classifying sensitive information created in the early 2000s by the UK Government s National Infrastructure Security Co ordination Centre in order to encourage greater sharing of sensitive information 1 The fundamental concept is for the originator to signal how widely they want their information to be circulated beyond the immediate recipient It is designed to improve the flow of information between individuals organizations or communities in a controlled and trusted way It is important that everyone who handles TLP labeled communications understands and obeys the rules of the protocol Only then can trust be established and the benefits of information sharing realized The TLP is based on the concept of the originator labeling information with one of four colors to indicate what further dissemination if any can be undertaken by the recipient The recipient must consult the originator if wider dissemination is required A number of current specifications for TLP exist From ISO IEC as part of the Standard on Information security management for inter sector and inter organizational communications 2 From US CERT which is intended to provide a publicly available simple definition 3 From the Forum of Incident Response and Security Teams FIRST which published version 1 0 of its consolidated TLP document on August 31 2016 4 arising from a Special Interest Group it created to ensure that interpretations of TLP are consistent and clear expectations exist across user communities FIRST deprecated version 1 0 in August 2022 though may still be used until 31 December 2022 5 on the release of version 2 0 6 Contents 1 Summary of TLP s four colours and their meanings 2 See also 3 References 4 External linksSummary of TLP s four colours and their meanings editThere are four colors or traffic lights 7 RED personal for named recipients only In the context of a meeting for example RED information is limited to those present at the meeting The distribution of RED information will generally be via a defined list and in extreme circumstances may only be passed verbally or in person AMBER limited distribution The recipient may share AMBER information with others within their organization and their clients but only on a need to know basis The originator may be expected to specify the intended limits of that sharing AMBER STRICT introduced in TLP version 2 0 restricts sharing to the organisation only 8 GREEN community wide Information in this category can be circulated widely within a particular community However the information may not be published or posted publicly on the Internet nor released outside of the community Note when community is not defined assume the cybersecurity defense community CLEAR unlimited formerly WHITE unlimited Subject to standard copyright rules CLEAR WHITE information may be distributed freely without restriction In practice one will indicate a document s classification with the acronym TLP followed by a colon and classification level for example TLP RED See also editIndicator of compromiseReferences edit Eric Luiijf Allard Kernkamp March 2015 Sharing Cyber Security Information PDF Global Conference on CyberSpace 2015 Toegepast Natuurwetenschappelijk Onderzoek Retrieved 2016 10 25 Don Stikvoort 11 November 2009 ISTLP Information Sharing Traffic Light Protocol PDF Trusted Introducer National Infrastructure Security Co ordination Centre Retrieved 2016 10 25 Development of Policies for Protection of Critical Information Infrastructures PDF Organisation for Economic Co operation and Development Retrieved 2015 11 19 Re OpenSSH security advisory cbc adv MARC Mailing list ARChive Retrieved 2012 11 25 alt source SecurityFocus archive entry ISO IEC 27010 2015 ISO IEC 27010 2015 Information technology Security techniques Information security management for inter sector and inter organizational communications International Organization for Standardization International Electrotechnical Commission November 2015 Retrieved 2019 12 31 Traffic Light Protocol TLP Definitions and Usage United States Department of Homeland Security Retrieved 2019 12 31 FIRST announces Traffic Light Protocol TLP version 1 0 Forum of Incident Response and Security Teams Retrieved 2019 12 31 Traffic Light Protocol TLP FIRST Forum of Incident Response and Security Teams Retrieved 2022 08 05 FIRST announces Traffic Light Protocol TLP version 2 0 PDF Traffic Light Protocol Centre for Critical Infrastructure Protection Archived from the original on 2013 02 05 Retrieved 2012 11 25 FIRST Traffic Light Protocol version 2 0 PDF External links editForum of Incident Response and Security Teams U S Department of Homeland Security Retrieved from https en wikipedia org w index php title Traffic Light Protocol amp oldid 1214339062, wikipedia, wiki, book, books, library,

article

, read, download, free, free download, mp3, video, mp4, 3gp, jpg, jpeg, gif, png, picture, music, song, movie, book, game, games.