6 Questions
What is the primary purpose of information security?
To prevent loss, unauthorized access, or misuse of information
Which of the following is NOT one of the three key attributes of the 'CIA triad'?
Authenticity
What type of security control is a firewall?
Technical control
What is the main difference between information security and information privacy?
Information security is about protecting all types of information, while information privacy is about protecting personal information only
What type of security control is an incident response procedure?
Administrative control
What is the main goal of security controls?
To detect and correct security incidents
Study Notes
Information Security
- Information security is the protection of information to prevent loss, unauthorized access, or misuse.
CIA Triad
- Confidentiality: access to data is limited to authorized parties.
- Integrity: assurance that the data is authentic and complete.
- Availability: knowledge that the data is accessible, as needed, by those who are authorized to use it.
Security Controls
- Mechanisms put in place to prevent, detect, or correct a security incident.
- Three types of security controls:
- Physical controls: locks, security cameras, and fences.
- Administrative controls: incident response procedures and training.
- Technical controls: firewalls, antivirus software, and access logs.
Information Security vs. Information Privacy
- Information security: protection of information from unauthorized access, use, and disclosure.
- Information privacy: deciding what sorts of use and disclosure of personal information should be authorized.
Learn about the basics of information security, including the CIA triad and its key attributes: confidentiality, integrity, and availability.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free