The PCI Sample taxonomy includes categories that cover basic payment card information including credit card and bank account numbers. The categories (medium/low) will help you assess the level of sensitivity of your data.
By default, the taxonomy is published with the following settings:
The taxonomy has been enabled for automatic classification based upon the template’s rules and extractors. If you would like to alter how the categories are applied, you can edit these variables. For details see, Working With Extractors.
If you apply the template with all defaults which includes the categories, text extractors, and rules your data will be categorized as follows:
| A category will be applied, based on the rule specified for the category. This takes into account the weight, strength, and threshold. The classification assigned by Identity Manager (Public, Internal, Private, or Secret) depend upon the risk calculated from the applied categories. For details see, Classifying Resources. | 
| Category | data MAtches that Cause Categorization | 
| Medium | One instance (within 1024 characters) of any: Name and Credit Card (Credit card is comprised of number, or number and credit card provider) OR Name and Bank Account (Bank account is comprised of number and type of bank account.) | 
| Low | One instance of any Credit Card or Bank Account | 
| To use the Titus commercial taxonomy, you must have previously categorized data with the Titus classification system and the data must be in a scanned data root marked for classification. | 
When users apply Titus categorizations to their documents, they are mapped to the associated Titus category within the Identity Manager system. The risk level of those categories, ultimately determine how the Titus categorized data will be classified by Identity Manager.
If you select to use the template for automatic classification with the default settings, the data will be classified as follows:
| Category | data MAtches that Cause Categorization | 
| Public | "sensitivity-public" | 
| Internal | "sensitivity-internal" | 
| Confidential | "sensitivity-confidential" | 
| Secret | "sensitivity-secret" | 
For details on altering the default values, see Rule Example Manipulating Threshold and Rule Weight.
For details on editing the templates to better suit your needs, see Working With Extractors.
The sample file contains the following components:
| Component | Description | 
| Extractors | XML blocks detailing what type of information should be extracted from resource files for analysis by the rules engine. Extractors are refined by grammars. | 
| Grammars | A collection of entities that refine the matches made by extractors by either excluding unnecessary patterns, or building new compound patterns. For example, the 'First Name' and 'Last Name' entities provided in the .ecr libraries can be combined within a custom grammar to form the 'Full Names' entity. The template includes examples of entities defined through a pattern (specified by referencing a library), as well as custom grammars. The template also contains grammars that are defined by headwords. This is a component that allows an analyst to define their own word libraries to be used in extractors. Rather than using regular expression within a <pattern> tag with zero or more additional parameters, you can create an entity with headwords that you can then reference. This facilitates updating custom lists. You can add or remove headwords from the entity created for them, and any extractor referencing that entity will be automatically updated. | 
| Patterns | A grammar defines patterns for matching text in a document. A pattern is a combination of characters and operators. An operator is a sequence of special characters that match text by following the rules associated with the operator. | 
| Name | ID | Use to find... | 
| Credit Card Number - Delimited | Extrators.Credit.Card.Delim | Credit card delimited numbers of 13 - 16 digits | 
| Credit Card Number - Non | Extrators.Credit.Card.NoDelim | Credit card non- delimited numbers of 13 - 16 digits | 
| Credit Card Provider | Extrators.Credit.Card.Providers | Names of major credit card providers | 
| Bank Account Number - IBAN | Extractors.Bank.IBAN | International bank account numbers | 
| Bank Account Type - IBAN | Extracors.IBAN.Name | “IBAN” or “International Bank Account Number” | 
| Name | Use to MAtch Patterns for... | 
| number_cc.ecr number_iban.ecr | Credit card numbers International Bank Account Number | 
| Headwords | Major credit card providers, “IBAN” | 
| Pattern | Description | 
| (?A^number_cc/cc/delim) | Any dash-delimited credit card number | 
| (?A^number/ccds) | Any space-delimited credit card number | 
| Pattern | Description | 
| (?A^number_cc/cc/nodelim) | Any non-delimited credit card values | 
| Pattern | Description | 
| (?A^number_bank/banking/ibans) | Space-delimited IBAN number | 
| (?A^number_bank/banking/iban) | Undelimited IBAN number | 
| Pattern | Description | 
| Defined by the following headwords:"iban" and ‘international bank account" | Case insensitive use of the acronym and full name for “International bank account” | 
| Sample Headwords | Description | 
| Defined by the following: “american express", "visa", "amex", "austrailian bankcard", "diners", "discover", "voyager", "jcb", "enroute", "mastercard", "credit card", "eurocard", "union pay" | Case insensitive use of major credit card providers | 
© ALL RIGHTS RESERVED. Nutzungsbedingungen Datenschutz Cookie-Einstellungen ändern