Flashcards in Lesson 1.1 Information Security Fundamentals Deck (16)
What are the 3 main principles of cyber or information security?
Confidentiality, Integrity, Availability
This principle states that only authorized people, processes, or systems have access to information and that information must be protected from unauthorized disclosure.
This principle states that data and systems should be protected from unintentional, unauthorized, or accidental changes.
What are the two components to the principle of integrity?
Data Integrity and System Integrity
What does the data integrity component imply?
information is known to be good, and that information can be trusted as being complete, consistent, and accurate
What does the term system integrity imply?
that a system will work as intended
This principle states that information systems and supporting infrastructure are operating and accessible when needed.
In the availability principle, what is meant by information systems and supporting infrastructure?
systems, processes, people, and facilities
What are the five A's of critical supporting activities for CIA?
the process of tracing actions to the source
the positive identification of a person or system who is seeking access to information or to a system
granting users and systems a predetermined level of access to resources
the logging of access and use of information resources
the processes we use to develop confidence that our security measures are working as intended
What is meant by the term trustworthy computing?
confidence that a system will act in a correct and predictable manner in every situation