Protect Data With a Label Policy

The label policy on your computer system is an information protection policy that is enforced in software. For example, an information protection policy classifies its data according to sensitivity, value to the organization, and legal requirements related to confidentiality. Once identified, files that hold sensitive, valuable, or legally required information can be appropriately labeled. Labels such as Confidential - Restricted, and Confidential - Highly Restricted can isolate and protect information in every department. You can create file systems or modify existing file systems to contain labeled data, and assign individual users the ability to access the sensitive files that they are responsible for.

Users, user processes, and other processes can access data whose label they dominate. How you label processes is part of your label policy. To create labeled processes, see Chapter 6, Labeling Processes for Data Loss Protection in Securing Users and Processes in Oracle Solaris 11.4.