The CIA Triad and the Difference Between Authentication and Authorization

BLUF:
The CIA Triad is basically the backbone of cybersecurity. It stands for Confidentiality, Integrity, and
Availability. These three things help make sure information stays safe, accurate, and accessible.
Authentication and authorization are also super important. They decide who can log in and what they can
do once they’re in. Authentication checks who you are, and authorization checks what you’re allowed to
do.

The CIA Triad:
The CIA Triad is made up of three main ideas that keep info and systems secure. (Chai, 2023)
Confidentiality keeps information private, so only the right people can access it. Examples include
password and encryption. Integrity makes sure data isn’t changed or corrupted. Hashes and digital
signatures help with this. Availability ensures data and systems are ready when needed, like through
backups or preventing attacks.
Together, these three principles protect information and systems from threats.

Authentication vs. Authorization:
Authentication proves your identity, logging into a school portal with a username and password.
Authorization decides what you’re allowed to do after logging in. For example, a professor can upload
grades, while a student can only view them.

Conclusion:
The CIA Triad guides how to protect data: keep it private, accurate, and available. Authentication and
authorization support it by controlling access and permissions. Together, they help keep systems secure
and working properly.

References:
Chai, W. (2023). What is the CIA triad (confidentiality, integrity and availability) TechTarget.