Key Takeaways
- The CIA Triad is comprised of confidentiality, integrity, and availability.
- Confidentiality means information has not been disclosed to unauthorized people.
- Integrity means information has not been modified or altered without proper authorization.
- Availability means information can be stored, accessed, and protected at all times.
The InfoSec CIA Triad
Security professionals create multi-layered protections and defenses in order to provide confidentiality, integrity, and availability of information and systems. These three terms make up the CIA Triad of information security and making sure to strike the right balance of these is the second part of the job.
- Confidentiality means information has not been disclosed to unauthorized people. Those who shouldn’t have access don’t.
- Integrity means information has not been modified or altered without proper authorization. Those who shouldn’t be able to change it can’t.
- Availability means information is able to be stored, accessed, or protected at all times. Those who are authorized and need access have access.
Summary
The CIA Triad is really what information security is all about. It’s the guiding light of what professionals strive to achieve day in and day out in real-world operations. Next up, we’ll tackle another acronym (There are many! 😵💫) called InfoSec AAA. No, it has nothing to do with alcohol! 😅
