From 4cfecb33b7fea48cbd4332544ae21202f7e02edc Mon Sep 17 00:00:00 2001 From: Recolic <git@me.recolic.net> Date: Tue, 17 Sep 2024 02:27:25 +0000 Subject: [PATCH] Update unified-data-policy.md --- unified-data-policy.md | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/unified-data-policy.md b/unified-data-policy.md index 401b212..af87773 100644 --- a/unified-data-policy.md +++ b/unified-data-policy.md @@ -14,30 +14,30 @@ > `sensitive` means I don't want to leak it, `important` means I don't want to lost it. -- type I2: non-sensitive important data, such as environent setup script, software installation packs, saved movies, ... +- type I2: non-sensitive important data, such as environent setup script, software installation packs, saved movies. - type I: public personal data, or non-important public data. -- type C2: sensitive important personal data, such as photos, development, game save... +- type C2: sensitive important personal data, such as photos, game save; Encrypted type M data. -- type C: sensitive non-important personal data, such as system logs, chat logs, screenshots, web history, development environment, ... +- type C: sensitive non-important personal data, such as system logs, chat logs, screenshots, web history, development environment. -- type M: secret keys/seeds/passwords, server userdata... +- type M: secret keys/seeds/passwords, banking account/card information. - type MX: GPG masterkey itself. - [TODO]X -> **super key doesn't not apply any data policy, and FORBIDDEN to save on ANY medium.** +> **super key doesn't not apply any data policy, only allowed to store in-brain.** |Type|Encryption|Ownership|Replication|Current\_Solution| |---|---|---|---|---| -|M|Always, by GPG master key or super key|First-party|Level 4|extraDisk/.backup/typeM| -|MX|Always, by cold key and super key|First-party|Level 4|extraDisk/.backup/typeM/gpg-masterkey.tar.gz.gpg| -|C2|Only if accessed by untrusted device|First-party or Third-party|Level 3|~/extraDisk/.backup, online services| -|C|Always, by device encryption|First-party or Third-party|Level 1|normal encrypted devices| -|I2|Optional|First-party or Third-party|Level 2|nfs/rpc\_downloads| -|I|Optional|First-party or Third-party|Level 1|normal devices| +|M|Always, by GPG master key or super key|1P|Level 4|nfs/backup/C2_M| +|MX|Always, by cold key and super key|1P|Level 4|nfs/backup/MX| +|C2|Only on untrusted device|1P / 3P|Level 3|nfs/backup/C2_M, RecoDrive, encrypted devices| +|C|Device-level encryption|1P / 3P|Level 1|normal encrypted devices| +|I2|Optional|1P / 3P|Level 2|nfs/backup/I2, RecoGit, RecoDrive| +|I|Optional|1P / 3P|Level 1|normal devices| |Properties|Important|Non-Important| |---|---|---| -- GitLab