The Traffic Light Protocol (TLP) is a set of designations to ensure sensitive information is shared with the right audience. This guide explains the four TLP colors, which show how recipient(s) should manage sharing boundaries.1
TLP was created to facilitate greater information sharing. TLP will be used at the UW during incidents and incident response, with a TLP level applied to specific communications.
Not for disclosure, restricted to participants only.
Example: There is a security risk associated with critical infrastructure that does not have an immediate technological solution. The concern needs to be discussed but wider disclosure could increase risk.
Limited disclosure, restricted to the Information Security (IS).
Example: An event has been identified by an analyst, and additional IS personnel are required to properly investigate.
Limited disclosure, restricted to IS and its clients (other UW departments involved with incident and incident response).
Example: Notification of a UW department of an event involving their systems.
Limited disclosure, restricted to the UW community (professional and academic staff).
Example: Security risks to UW systems which have a technical solution that can be implemented immediately.
Disclosure is not limited.
Example: Risks that are public in nature and have been shared in public media, vendors, or other outside sources.
1 CISA. Traffic Light Protocol (TLP) Definitions and Usage (August 22, 2022). https://www.cisa.gov/news-events/news/traffic-light-protocol-tlp-definitions-and-usage