Controlled Unclassified Information Framework
Primary Investigator:
Baijian Yang
Jessica Ackerman, Benjamin Cook, Ziyang Tang
Abstract
Cybersecurity is not often a focus of researchers in all fields as they conduct experiments and make discoveries. It is common that researchers are not adequately informed about cybersecurity best practices or threats, which can cause data security concerns, especially for researchers utilizing Sensitive or Restricted data. Our team has begun creating a framework for researchers to follow as they conduct research in order to ensure that data is stored securely while also allowing researchers to function with the least possible restrictions. Cloud storage is a focus of the framework, as our team will educate researchers on secure data storage on the cloud using Box.com. As cloud services become more advanced and offer more features and security options, it can be effectively utilized to increase both data security and ease of access for researchers working with Sensitive or Restricted data, such as HIPAA, FERPA, or data categorized under NIST 800-171. Our framework involvesCybersecurity is not often a focus of researchers in all fields as they conduct experiments and make discoveries. It is common that researchers are not adequately informed about cybersecurity best practices or threats, which can cause data security concerns, especially for researchers utilizing Sensitive or Restricted data. Our team has begun creating a framework for researchers to follow as they conduct research in order to ensure that data is stored securely while also allowing researchers to function with the least possible restrictions. Cloud storage is a focus of the framework, as our team will educate researchers on secure data storage on the cloud using Box.com. As cloud services become more advanced and offer more features and security options, it can be effectively utilized to increase both data security and ease of access for researchers working with Sensitive or Restricted data, such as HIPAA, FERPA, or data categorized under NIST 800-171. Our framework involves training and outreach for researcher with the ultimate goal of increasing data security for all research projects taking place at training and outreach for researcher with the ultimate goal of increasing data security for all research projects taking place at Purdue.