UCI has changed the way the campus classifies Institutional Information and IT Resources in order to standardize on the new classification scheme required by the updated system-wide IT policy, IS-3. The old classification scheme used three classifications levels, Normal, Sensitive, and Restricted which corresponded to three categories of risk, Low, Medium and High.
The new classification scheme uses four Protection Levels, P1 thru P4. The four Protection Levels are based on the level of concern related to confidentiality and integrity. P4 requires the most security controls and P1 requires a minimal set of controls.
