Integrity
Integrity prevents unauthorized modification of data, systems, and information, thereby providing assurance of
the accuracy of information and systems. If your data has integrity, you can be sure that it is an accurate and
unchanged representation of the original secure information. A common type of a security attack is man-in-themiddle.
In this type of attack, an intruder intercepts data in transfer and makes changes to it.
Availability
Availability is the prevention of loss of access to resources and information to ensure that information is
available for use when it is needed. It is imperative to make sure that information requested is readily
accessible to the authorized users at all times. Denial of service (DoS) is one of several types of security attacks
that attempts to deny access to the appropriate user, often for the sake of disruption of service.
Policies, Standards, Procedures, Baselines, Guidelines
A security model is a multilayered framework made of many integrated entities and logical and physical
protection mechanisms, all working together to provide a secure system that complies with industry best
practices and regulations.
Security Policy
A security policy is a set of rules, practices, and procedures dictating how sensitive information is managed,
protected, and distributed.
Pages:
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54