Community Design Workshop Notes - Security

Global level

  • Network security + architecture
  • Hosted data issues
  • Encryption
  • Data sharing
  • Backups
  • Redundancy
  • Disaster Recovery
  • Authentication

Logins

  • Single sign-on
  • Visitor/guest access
  • Temporary access
  • Affiliated access

Collaborative environments

  • Joint-shows/Co-curated exhibitions
  • Planning documents
  • Facilitate collaboration across institutional boundaries
  • Teaching
  • Learning

Seamless integration with lDAP and other authentication services

Role-based profiles for create, read, update, delete

Institution must define what is 'sensitive'

Security groups

  • Individuals may be part of multiple groups or have multiple roles

Audit

  • At individual level
  • History of change is important

Field-level security

  • Associated with workflow
  • Fine grained

No real 'deletes'

  • Archive instead of discard
  • Maintain data integrity
  • Support roll back to previous state

Physical security for museum locations + requirements for storage

  • Very similar to other sectors
  • Enforce security through policy
  • Manage change, approve change, etc.