The main purpose of information security is data protection. The security sector offers a triangle of three principles to protect data from cyberattacks. The CIA triad is the name of this principle.
The CIA is a model designed to guide the policy of Confidentiality, Integrity, Availability Information Security. This is one of the most popular models used by organizations.
- Confidentiality: The information should be accessible and readable only to authorized personnel. It should not be accessible to unauthorized workers. If someone uses a hacker to access information, the information must be strongly encrypted so that even if the information is obtained, it will not be readable or understandable.
- Integrity: Make sure that data is not altered by an unauthorized entity. Integrity ensures that information is not corrupted or altered by unauthorized employees. If an authorized person or system tries to change the data and the change fails, the data must be returned and not damaged.
- Availability: Information must be available to the user when requested. Equipment needs to be maintained, regularly upgraded, and data backed up and restored.