1. Confidentiality
Definition:
Confidentiality ensures that sensitive information is accessible only to authorized users and is kept secret from unauthorized individuals.
Purpose:
-
Protects private data such as passwords, financial information, medical records, or business secrets.
-
Prevents unauthorized disclosure of information.
Techniques to Ensure Confidentiality:
-
Encryption: Converts data into unreadable code for unauthorized users.
-
Access Control: Restricts who can access data or resources.
-
Authentication: Verifies user identity before granting access.
-
Data Classification: Categorizes data based on sensitivity and restricts access accordingly.
Example in Practice:
2. Integrity
Definition:
Integrity ensures that data is accurate, complete, and unaltered from its original form during storage or transmission.
Purpose:
Techniques to Ensure Integrity:
-
Hash Functions: Generates a unique code (hash) for data; any change in data changes the hash.
-
Digital Signatures: Verifies the authenticity and integrity of a message or document.
-
Checksums and Error Detection Codes: Detects accidental or intentional alterations during transmission.
-
Version Control: Tracks changes in files to prevent unauthorized modifications.
Example in Practice:
3. Availability
Definition:
Availability ensures that network resources, systems, and data are accessible to authorized users whenever needed.
Purpose:
Techniques to Ensure Availability:
-
Redundancy: Backup servers, network paths, and storage to handle failures.
-
Fault Tolerance: Systems that continue functioning even if part of the system fails.
-
Regular Backups: Protects against data loss.
-
Denial-of-Service (DoS) Protection: Prevents attacks that aim to make services unavailable.
-
Disaster Recovery Planning: Procedures to restore operations quickly after an incident.
Example in Practice: