What is the CIA Triad?
The CIA Triad is a model that is designed to guide policies for information security within an organization. The letters CIA stand for confidentiality, integrity, and availability. Confidentiality is the practice of ensuring that personal information and sensitive data are kept protected. Integrity is how the data can be trusted, from not being and always containing accurate information. Availability refers to how readily accessible information is from systems. These characteristics are used to find and prevent vulnerabilities in security systems. They also help to find different solutions and methods to fights off these vulnerabilities.
Authentication vs. Authorization
Authentication is a way for a system to verify a user’s identity and secure online security for accounts and systems. For example, Two-Factor authentication has become more popular as an extra layer of protection. This adds another layer of protection rather than just having one simple username and password, the user would have another option, like a passcode or fingerprint. Authorization is the process of verifying what the user is being allowed access to. They appear to be very similar but they both play different parts in providing internet security.
Conclusion
CIA Triad was put together after years of trying to find an efficient method to keep information and data protected. It is important to ensure that private information is protected from tampering and always available to those who have access to it. Authentication and Authorization are very important to be included in the CIA Triad because it helps to guarantee the confidentiality, integrity, and availability of data.
References
Chai, W. (n.d.). What is the Cia Triad? Definition, Explanation, Examples.