Need-To-Know

From CIPedia
Revision as of 21:41, 9 May 2016 by Eluiijf (talk | contribs) (NIST)
Jump to navigation Jump to search

National Definitions

United States

NIST
Need-to-know (NTK) is a method of isolating information resources based on a user's need to have access to that resource in order to perform their job but no more. [1]

The terms ‘need-to know” and “least privilege” express the same idea. Need-to-know is generally applied to people, while least privilege is generally applied to processes.

International Standard

See also

Notes