Information owners, custodians and users
Abstract
Defines a frequently encountered method for assigning information security responsibilities involving three terms: “owners”; “custodians”; and “users”. The objective of this responsibility assignment is clearly to indicate “where the buck stops”; owners being ultimately responsible for certain information, including its security. Custodians are actually in possession of it and implement and administer controls over it, according to owner instructions. Users are given access to data within guidelines from the owner.Quality indicators Research implications** Practice implications** Originality** Readability***
Keywords
Citation
Cresson Wood, C. (1996), "Information owners, custodians and users", Information Management & Computer Security, Vol. 4 No. 4, pp. 34-35. https://doi.org/10.1108/09685229610130495
Publisher
:MCB UP Ltd
Copyright © 1996, MCB UP Limited