Please enable JavaScript.
Coggle requires JavaScript to display documents.
R10.2 The Principles of CIA/IAAA within Digital Systems - Coggle Diagram
R10.2 The Principles of CIA/IAAA within Digital Systems
CIA
Confidentiality, Integrity and Availability, the CIA triad, is a model designed to guide policies for information security within an organisation.
CONFIDENTIALITY
A set of rules that limits access to information. Equivalent to privacy.
Confidentiality measures are designed to prevent sensitive information from unauthorized access attempts.
INTEGRITY
Involves maintaining the consistency, accuracy and trustworthiness of data over it's lifecycle. Data should not be altered by unauthorized people.
Availability
Information should be consistently and readily accessible for relevant people. Involves Maintaining hardware and technical infrastructure and systems that hold and display the info.
Confidentiality
When someone logs into the bank website their log-in details provide access only to their account.
Integrity
Recent transactions using their debit or credit cards should also be reliable.
Availibility
Customers should be able to access banks accounts and financial data.
IMPORTANCE OF CIA
Internal and external stakeholders can trust the business or organization to keep data safe.
Less security risks
Unauthorized access to data can be minimized.
CONSEQUENCES OF NOT HAVING CIA
FINANCIAL
If data is breached, then fines can be issued under legislation relating to data.
The COMPUTER MISUSE ACT (CMA), have prevision to fine data holders where a breach has occured.
Compensation for whose data has been affected.
PROTECTION ACT 2018(DPA) requires data to be kept secure, by following the CIA triad.