CIA Triad
Confidentiality, Integrity, Availability
The CIA Triad is a commonly used model in information security that highlights the three fundamental goals of security: confidentiality, integrity, and availability.
1. Confidentiality: This refers to the protection of sensitive or classified information from unauthorized access or disclosure, both in transit or at rest. Confidentiality aims to ensure that only intended recipients can access the information and unauthorized parties cannot gain access to it. Examples of protections that can be put in place to safeguard confidentiality include encryption, access controls, and monitoring of user activity on systems containing sensitive information.
2. Integrity: This goal aims to ensure that information is accurate, complete, and trustworthy. The integrity of data must be maintained throughout its life cycle, from creation to deletion. Any alteration or modification to the data should be tracked and authorized. Protections that assure data integrity include data validation, checksums, and digital signatures.
3. Availability: This goal addresses the need to ensure timely and uninterrupted access to information when needed. This means ensuring that information and services are available to authorized users when they need them. This involves minimizing downtime, ensuring fast recovery from disruptions, and protecting against denial-of-service attacks.
Together, these three concepts form the basis for security controls and practices in the information security field. The CIA Triad helps organizations keep their sensitive information secure, prevent data breaches, and protect user privacy.
More Answers:
Unlocking Scientific Progress: The Importance of Availability in ScienceMaintaining Scientific Integrity: Key Principles for Honest and Ethical Research Conduct
Protecting Privacy and Dignity: The Importance of Confidentiality in Scientific Research