# GGS-3: Compartmentalized Information Protection ## Definitions ### Compartmentalization Compartmentalization, in [information security](https://en.wikipedia.org/wiki/Information_security), whether public or private, is the limiting of [access to information](https://en.wikipedia.org/wiki/Access_to_information) to persons or other entities on a [need-to-know](https://en.wikipedia.org/wiki/Need-to-know) basis to perform certain tasks. ### Information Information is an [abstract concept](https://en.wikipedia.org/wiki/Abstraction) that refers to something which has the power [to inform](https://en.wikipedia.org/wiki/Communication). At the most fundamental level, it pertains to the [interpretation](https://en.wikipedia.org/wiki/Interpretation_\(philosophy\)) (perhaps [formally](https://en.wikipedia.org/wiki/Interpretation_\(logic\))) of that which may be [sensed](https://en.wikipedia.org/wiki/Sense), or their [abstractions](https://en.wikipedia.org/wiki/Abstraction). Any natural process that is not completely [random](https://en.wikipedia.org/wiki/Random) and any observable [pattern](https://en.wikipedia.org/wiki/Pattern) in any [medium](https://en.wikipedia.org/wiki/Media_\(communication\)) can be said to convey some amount of information. Information is not [knowledge](https://en.wikipedia.org/wiki/Knowledge) itself, but the [meaning](https://en.wikipedia.org/wiki/Meaning_\(philosophy\)) that may be derived from a [representation](https://en.wikipedia.org/wiki/Representation_\(mathematics\)) through interpretation. For instance, this standard contains information and those who understand it know about it. ### Protection Protection is any measure taken to guard something against damage (changes introduced into the system that adversely affect its current or future performance). ### CIP Short for **C**ompartmentalized **I**nformation **P**rotection. It is the standard used in the Gen6 ecosystem, designed to safeguard sensitive information by isolating it into separate compartments, ensuring that access is restricted to only those who need it for specific tasks. This approach prevents unauthorized access and minimizes the risk of data leakage, misuse, or corruption. CIP leverages a layered defense strategy ("defense in depth"), using multiple levels of security to maintain the confidentiality, integrity, and availability of information while maintaining compliance with regulatory standards. ## **Standard Structure of CIP** ### **Immutable Proof Information Storage: Blockchain** Immutable proofs are stored on the blockchain without revealing the data. All proofs's timestamp can be verified through the inspecting the block it was written into. This provides: * Undeniability of proof creation * Undeniability of timestamp of event * Privacy, as the data itself is off-chain * Permissionless access to proofs. ### **Data Information Storage: G6 Middleware** G6 Middleware provides data storage and permissioned access to them. While the data remains private, it can be revealed to selected entities. Data can be optionally encrypted, so not even the G6 Middleware provider can understand its content. This provides: * Permissions control of data * Information and data security * Privacy, as only the proofs are on-chain * Allows encryption of data * Allows ZK implementations * Possibility for 3rd party storage providers and backups * Scalable and fast data storage ### **User Stored Information: Secrets** The user keeps her/his own wallet in form of private keys or alternatively using the G6 OAuth system at 3rd party provider. This setup provides: * Freedom to create your own identity and share data with your own preferences * Free choice of what to encrypt, reveal or publish * Central authorities (except OAuth if you use it) cannot block your wallet and account * Self-custody and censorship resistance --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://wiki.gen6.life/standards/ggs-3-compartmentalized-information-protection.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.