Question:
Define the three pillars of the CIA Triad.
Define the three pillars of the CIA Triad.
Show Hint
Remember the CIA Triad as the core goals of cybersecurity:
{Confidentiality} = Prevent unauthorized access,
{Integrity} = Prevent unauthorized changes,
{Availability} = Ensure reliable access.
{Integrity} = Prevent unauthorized changes,
{Availability} = Ensure reliable access.
Updated On: Mar 2, 2026
Hide Solution
Verified By Collegedunia
Solution and Explanation
Concept:
The CIA Triad is a foundational model in information security that defines the three primary objectives of protecting information systems and data. It ensures that data is protected from unauthorized access, remains accurate, and is accessible when needed.
Step 1: {\color{red}Confidentiality}
Confidentiality ensures that sensitive information is accessible only to authorized users and protected from unauthorized access. This is achieved through mechanisms such as:
Step 2: {\color{red}Integrity}
Integrity ensures that data remains accurate, consistent, and unaltered during storage or transmission. It protects against unauthorized modification or tampering. Common techniques include:
Step 3: {\color{red}Availability}
Availability ensures that authorized users have reliable and timely access to data and systems when required. It focuses on maintaining system uptime and resilience using:
Confidentiality ensures that sensitive information is accessible only to authorized users and protected from unauthorized access. This is achieved through mechanisms such as:
- Encryption
- Access control (passwords, biometrics)
- Data classification
Step 2: {\color{red}Integrity}
Integrity ensures that data remains accurate, consistent, and unaltered during storage or transmission. It protects against unauthorized modification or tampering. Common techniques include:
- Hashing and checksums
- Digital signatures
- Version control and audit logs
Step 3: {\color{red}Availability}
Availability ensures that authorized users have reliable and timely access to data and systems when required. It focuses on maintaining system uptime and resilience using:
- Redundancy and backups
- Disaster recovery plans
- Protection against DoS/DDoS attacks
Was this answer helpful?
0
0
Questions Asked in WBBSE exam
- What is Social Engineering, and why is it considered a non-technical threat?
- WBBSE XII - 2026
- Human-Based Threats
- Define Ransomware and suggest two methods to prevent such attacks.
- Define SQL Injection and how it affects database security.
- WBBSE XII - 2026
- Web Security
- What is the difference between a Denial of Service (DoS) and a Distributed Denial of Service (DDoS) attack?
- WBBSE XII - 2026
- Network Security
- What are the key provisions of the Indian IT Act 2000 regarding cyber crimes?
- WBBSE XII - 2026
- Cyber Law
View More Questions