CISSP Concepts of Confidentiality, Integrity, and Availability – Bk2D1T1

Module Objectives

  1. Explain the concepts of confidentiality, integrity, and availability.
  2. Differentiate between confidentiality, integrity, and availability.

Confidentiality, Integrity, and Availability (CIA) Triad

When practitioners discuss the field of security, we concentrate on three goals: ensuring the confidentiality, integrity, and availability (CIA) of assets. This is referred to as the CIA triad. In information security, the assets are data—information that requires security. This is true for data in any form, whether it is stored electronically or in printed hardcopy, and it also applies to any systems/mechanisms/techniques used to process/ manipulate/store that data.

Explaining the CIA triad in more detail, in the context of information security:

Confidentiality: only authorized entities have access to the data.

Integrity: there are no unauthorized modifications of the data.

Availability: authorized entities can access the data when and how they are permitted to do so.

Related Product : Certified Information System Security Professional | CISSP

CIA Triad Examples:

A lock on a file cabinet can provide confidentiality; only authorized personnel will be given a key to access the information inside the cabinet.

Using a template for version control of a document; comparing copies of the document against the template ensures the integrity of the data in the copies.

A backup of data stored electronically ensures availability of the data; if the primary version of the data is rendered useless, a copy of the backup can be restored and used as the new primary.

Some security controls provide other functions that are not aspects of the triad but are also desirable. These include nonrepudiation and authentication, which will be discussed in a subsequent domain.

The CIA triad is a fundamental concept of our field and is absolutely essential to understand. A lot of the material discussed throughout the course will be couched in its relation to the triad.

Follow Us
https://www.facebook.com/INF0SAVVY
https://www.linkedin.com/company/14639279/admin/