Confidentiality, integrity, and availability, or the CIA triad of security, is introduced in this session. These three dimensions of security may often conflict. Confidentiality and integrity often limit availability. So, a system should provide only what is truly needed. This means that a security expert has to carefully analyze what is more important among these three dimensions of security in a system or application.
Use this forum to provide three examples and justification:
- Where the confidentiality of a system is more important than the integrity or availability of that system.
- Where the integrity of a system is more important than the confidentiality or availability of that system.
- Where the availability of a system is more important than the confidentiality or integrity of that system.
For example, you might say availability is more important than integrity and confidentiality in a cell telephone system since one must be able to reach their loved ones in an emergency. Someone else might argue confidentiality/privacy is more important in such a system.
REMEMBER- every post (New Thread or Reply) must be supported by relevant information. Prove the point you are making by a) citing external research, b) citing readings from the class content, or c) providing examples or personal experiences that are relevant and support your position on the topic. It is always better to begin your reflection on the topic by doing some research/reading, either a) or b) or both, before considering personal experience. This research, reflection and subsequent writing is an essential part of the learning process, framing your personal experience against and alongside more general theories, concepts and writing on the topic. Grading of your participation will be according to the table outlined in the Grading Policy/Rubric for Class Participation (Weeks 1 – 8)” You can see the rubric by clicking on Discussions in the top nav bar, then scrolling down to the Weekly Discussions area.