WHAT IS CIA TRIAD?

 CIA is a model that is designed to guide policies for information security. And it is used mostly in the organizations for securing the data. CIA stands for Confidentiality, Integrity and Availability.

 Confidentiality:- The information should be only accessible for the authorized person. It should not be accessible to unauthorized person. The data should be encrypted and not able to access to the hackers and even they accessed, that data should be not readable and understandable.

Integrity:- It ensures that the data is not modified by unauthorized person. By using hashing to check the data is modified.

Availability:- The data should be available for the user whenever the user requires it. Maintaining of hardware,upgrading regularly, data backups and recovery.

THREATS TO C-I-A:-

 Confidentiality:-Data theft and/or exposure

  • Shoulder surfing
  • Interception of message- Man-in--the-Middle
  • Physical theft of data storage device
Integrity:- Unauthorized modification
  • Modifying Configuration files 
  • Changing accounting records or system logs 
Availability:- Denial of access for authorized users
  • Man made or natural disaster
  • Terrorist attacks
  • Denial of service(DoS/DDoS)attacks
Questions on CIA Triad:-

1.How do you balance CIA?
  • Confidentiality is balanced by encryption
  • Integrity is balanced by hashing
  • Availability is balanced by patching
2.Explain CIA Triad?
  • CIA is the three main pillars of security
  • Confidentiality:- data is only accessible to only its concerned audience.
  • Integrity:-data is not modified by unauthorized person
  • Availability:- data should be available to authorized person.