At time when hear “CIA”, we think of Central Intelligence Agency of USA
But CIA has nothing to do with it, instead it stands for
C -Confidentiality
A -Availability
I- Integrity
These are the Fundamentals principles of Information Security and these are used to set the quality standards in an organisation.
CIA( Confidentiality, Integrity & Availability) are fundamental standards used to ensure whether the security standards are met or not.
The principles of Information Security :
1. Confidentiality
Simply put, Confidentiality is to uphold the standards of privacy
So, what Privacy are we talking here?
The privacy standard of an organisation depends on the level of authorisation .
The authorisation standard is to maintain the level of access to authorised people on the authorised information.
What are some of the techniques used to maintain confidentiality?
- Encryption
- Security Tokens
- Password Protection
- Multi-Factor Authentication
- User based access
2. Integrity
Simply put, to maintain the accuracy & reliability of the data.
Data Integrity is one of the key factors to uphold the standards of the company.
Unauthorised access to the data could lead to severe damages of the organisation.
Ex:- If someone got hold of your social media account
Recently twitter effected by hackers and posted from accounts of Elon Musk, Bill gates and other famous people.
So, what are the methods to ensure the Data Integrity?
- User Access Controls
- Cryptography
3. Availability
What is Availability?
The third pillar of the CIA traid.
Simply put, to maintain the availability of the data to the authorised persons without any delay.
Delays occur due to data loss and to maintain no delay, the data need to be safeguarded.
Methods used to ensure the availability
- Firewalls
- Backups