Explain characteristics of information security within an organization?

      

Explain characteristics of information security within an organization?

  

Answers


Dominic
A, Confidentiality; is a set of rules that limits access to information. Confidentiality prevents sensitive information from reaching the wrong people, while making sure that the right people can get it. Some methods used to ensure confidentiality include data encryption, passwords, two-factor authentication and biometric verification.

B, Integrity; is the assurance that the information is trustworthy and accurate. Integrity involves maintaining the consistency, accuracy, and trustworthiness of data over its entire life cycle. Data must not be changed whilst being transmitted. Steps must be taken to ensure that data cannot be altered by unauthorized people. In addition, processes must be in place to detect any changes in data that might occur as a result of computer failure (e.g. server crash). Backup copies of data must be available to restore data when this is damaged, changed or lost.

C, Availability of information; refers to ensuring that authorized people are able to access the information when needed. Information is unavailable when it is lost, or when access to it is denied or delayed. For example, information on a website may not be readily available to users because the web server is over loaded by a denial-of-service attack. Measures to ensure that information is available include regular maintenance of hardware, implementing emergency backup power (e.g. uninterruptible power supply & generators), keeping offsite backup of data, providing adequate communications bandwidth, guarding against denial-of-service (DoS) attacks.

Dominic M answered the question on May 16, 2018 at 07:55


Next: Giving examples explain threats to data security
Previous: What is social Engineering?

View More Computer Science Questions and Answers | Return to Questions Index


Exams With Marking Schemes

Related Questions