Question

What are the three main goals of the CIA (Confidentiality-Integrity-Availability) Security Triad and what are the most common gaps you see exploited today? What is the relevance of CIA Triad in the globalized networked environments today?

Answer 1

The CIA is a security and privacy based model brought to favour organisation as they now mostly rely on computer systems for various sensitive stuffs such as security, authorization etc to other aspects such as research from data or marketing activities etc. Meanwhile as the data involves computer system, it is necessary to impose security and privacy constraint over the data so that it can't be exploited.

Goals of Confidentiality in CIA --

-- Provides encryption services on the data and network which ensures the data is not available in raw form in rest or in-transit situation.

-- Confidentiality ensures sensitive information of organization is kept private and authorized limited data is available for access only by authorized individuals.

-- Organisation collective database can be kept secretive from the competitors.

Goals of Integrity in CIA --

-- It ensures the data, system and network is consistent over any instance.

-- It ensures to retrieve the lost data , also provides integrity to data in-transit which means data on the sender and receiver side are same and exact data without any alteration.

-- It makes sure that no amount of data is unprotected from unauthorized sources and data have to be accurate.

  Goals of Availability in CIA --

-- It ensures system, data or network is available anytime it is requested for access, to authorized users.

-- It ensures reliability of network, system and data that is accessed.

In today's era as the organisations, be it a IT or non - IT firm, is moving into computer system for maintaining all its business transaction or keeping track of operational activities, As the data held in system by the organization is vulnerable and essential for the business, it is an important task to make sure the data and the complete system of organisation is kept secure and private along with high security standards, Here, comes CIA to ensure all the above factors are implied.