Which of the following objectives are defined by integrity in the C.I.A triad of information security systems? Each correct answer represents a part of the solution.
Choose three.
Click on the arrows to vote for the correct answer
A. B. C. D.ABD.
The C.I.A triad of information security systems is a model that consists of three fundamental pillars of information security: confidentiality, integrity, and availability. Each of these pillars represents an essential aspect of information security that organizations must protect to ensure the confidentiality, accuracy, and availability of their information.
Integrity is one of the critical objectives defined by the C.I.A triad of information security systems. It refers to the protection of information from unauthorized or unintentional modification by authorized users and the prevention of modification by unauthorized users. The following are the objectives defined by integrity:
A. Preserves the internal and external consistency of information: Integrity ensures that the information is consistent and accurate both internally and externally. It means that the data must be accurate and consistent within the system and externally, such as when transferred between systems. Any changes made to the data should be legitimate and authorized, and any unauthorized modifications should be detected and prevented.
B. Prevents the unauthorized or unintentional modification of information by authorized users: Integrity ensures that the information is protected from unauthorized or unintentional modification by authorized users. The integrity controls should ensure that only authorized users with the necessary permissions and privileges can modify the information. Unauthorized changes or modifications should be detected and prevented.
D. Prevents the modification of information by the unauthorized users: Integrity ensures that the information is protected from modification by unauthorized users. Unauthorized changes or modifications should be detected and prevented. This objective aims to ensure that only authorized users can modify the information and prevent any unauthorized changes.
C. It is incorrect as confidentiality, not integrity, ensures that the message's content is not disclosed to unauthorized parties. Confidentiality is the protection of information from unauthorized disclosure, and it is one of the critical objectives defined by the C.I.A triad.
In conclusion, the objectives defined by integrity in the C.I.A triad are preserving the internal and external consistency of information, preventing the unauthorized or unintentional modification of information by authorized users, and preventing the modification of information by unauthorized users.