"description":"Provides a unique ID to identify a specific IEP policy."
},
{
"value":"name",
"expanded":"POLICY NAME",
"description":"This statement can be used to provide a name for an IEP policy."
},
{
"value":"description",
"expanded":"POLICY DESCRIPTION",
"description":"This statement can be used to provide more details as a background for an IEP policy."
},
{
"value":"iep_version",
"expanded":"IEP POLICY VERSION",
"description":"States the version of the IEP framework that has been used. Must be set to 2.0."
},
{
"value":"start_date",
"expanded":"POLICY START DATE",
"description":"States the UTC date that the IEP is effective from."
},
{
"value":"end_date",
"expanded":"POLICY END DATE",
"description":"States the UTC date that the IEP is effective until."
},
{
"value":"encrypt_in_transit",
"expanded":"ENCRYPT IN TRANSIT",
"description":"States whether the received information has to be encrypted when it is retransmitted by the recipient."
},
{
"value":"permitted_actions",
"expanded":"PERMITTED ACTIONS",
"description":"States the permitted actions that Recipients can take upon information received."
},
{
"value":"affected_party_notifications",
"expanded":"AFFECTED PARTY NOTIFICATIONS",
"description":"Recipients are permitted notify affected third parties of a potential compromise or threat."
},
{
"value":"tlp",
"expanded":"TRAFFIC LIGHT PROTOCOL",
"description":"Recipients are permitted to redistribute the information received within the redistribution scope as defined by the enumerations."
},
{
"value":"attribution",
"expanded":"ATTRIBUTION",
"description":"Recipients could be required to attribute or anonymize the Provider when redistributing the information received."
},
{
"value":"unmodified_resale",
"expanded":"UNMODIFIED RESALE",
"description":"States whether the recipient MAY or MUST NOT resell the information received unmodified or in a semantically equivalent format."
},
{
"value":"external_reference",
"expanded":"EXTERNAL REFERENCE",
"description":"This statement can be used to convey a description or reference to any applicable licenses, agreements, or conditions between the producer and receiver."
"expanded":"Recipients MAY conduct actions on the information received that are only visible on the Recipients internal networks and systems, and MUST NOT conduct actions that are visible outside of the Recipients networks and systems, or visible to third parties."
"expanded":"Recipients MAY conduct indirect, or passive, actions on the information received that are externally visible and MUST NOT conduct direct, or active, actions."
