Global level
- Network security + architecture
- Hosted data issues
- Encryption
- Data sharing
- Backups
- Redundancy
- Disaster Recovery
- Authentication
Logins
- Single sign-on
- Visitor/guest access
- Temporary access
- Affiliated access
Collaborative environments
- Joint-shows/Co-curated exhibitions
- Planning documents
- Facilitate collaboration across institutional boundaries
- Teaching
- Learning
Seamless integration with lDAP and other authentication services
Role-based profiles for create, read, update, delete
Institution must define what is 'sensitive'
Security groups
- Individuals may be part of multiple groups or have multiple roles
Audit
- At individual level
- History of change is important
Field-level security
- Associated with workflow
- Fine grained
No real 'deletes'
- Archive instead of discard
- Maintain data integrity
- Support roll back to previous state
Physical security for museum locations + requirements for storage
- Very similar to other sectors
- Enforce security through policy
- Manage change, approve change, etc.