{"id":5007,"date":"2020-07-24T10:23:01","date_gmt":"2020-07-24T10:23:01","guid":{"rendered":"https:\/\/securityx.ca\/blog\/?p=5007"},"modified":"2020-08-18T12:32:21","modified_gmt":"2020-08-18T12:32:21","slug":"confidentiality-integrity-availability","status":"publish","type":"post","link":"https:\/\/securityx.ca\/blog\/confidentiality-integrity-availability\/","title":{"rendered":"EVERYTHING YOU NEED TO KNOW ABOUT THE CIA TRIAD"},"content":{"rendered":"

CONFIDENTIALITY, INTEGRITY AND AVAILABILITY<\/strong><\/h1>\n

The well-known CIA Triad of confidentiality, integrity and availability is considered the core underpinning of information security.\u00a0 Every security control and every security vulnerability can be viewed in light of one or more of these key concepts. For a security program to be considered comprehensive and complete, it must adequately address the entire CIA Triad.<\/p>\n

 <\/p>\n

WHAT IS THE\u00a0<\/strong>CONFIDENTIALITY, INTEGRITY AND AVAILABILITY (<\/strong>CIA) TRIAD?<\/strong><\/h2>\n
\"cia

CIA TRIAD<\/p><\/div>\n

Confidentiality means that data, objects and resources are protected from unauthorized viewing and other access. Integrity means that data is protected from unauthorized changes to ensure that it is reliable and correct. Availability means that authorized users have access to the systems and the resources they need.<\/p>\n

If you are preparing for the CISSP, Security+, CySA+, or another security certification exam, you will need to have an understanding of the importance of the CIA Triad, the definitions of each of the three elements, and how security controls address the elements to protect information systems.<\/p>\n

 <\/p>\n

HOW FREQUENT DO FINGERPRINTS CHANGE?<\/a><\/p>\n

WHAT IS CONFIDENTIALITY?<\/strong><\/h2>\n
\"what

WHAT IS CONFIDENTIALITY<\/p><\/div>\n

Confidentiality measures protect information from unauthorized access and misuse.\u00a0 Most information systems house information that has some degree of sensitivity. It might be proprietary business information that competitors could use to their advantage, or personal information regarding an organization\u2019s employees, customers or clients.<\/p>\n

Confidential information often has value and systems are therefore under frequent attack as criminals hunt for vulnerabilities to exploit.\u00a0 Threat vectors include direct attacks such as stealing passwords and capturing network traffic, and more layered attacks such as social engineering and phishing.\u00a0 Not all confidentiality breaches are intentional. A few types of common accidental breaches include emailing sensitive information to the wrong recipient, publishing private data to public web servers, and leaving confidential information displayed on an unattended computer monitor.<\/p>\n

 <\/p>\n

HOW MUCH SECURITY DOES A RETINAL SCAN OFFER?<\/a><\/p>\n

 <\/p>\n

WHAT ARE THE RISKS THAT CAN AFFECT CONFIDENTIALITY?<\/strong><\/h3>\n