The CIA triad is widely used by organizations to help guide them to keep their efforts and policies aimed to keeping data secure. CIA does not stand for what you think, it actually stands for Confidentiality, integrity, and availability. These are the three main pillars for the CIA triad. First Confidentiality means that only authorized people should be able to see the data that belongs to them, nobody else should be able to see the data. Secondly, Integrity means that data should be maintained in a correct state and nobody should be able to modify it. Thirdly, Availability this means authorized users should be able to access the data whenever they want. 

When was the triad created and when? The CIA triad wasn’t created by one person it emerged overtime as an article of wisdom from information security pros. Ben Miller, was the VP of the cybersecurity firm Dragos, has been traced back to the early mentions of the components of the triad in a blog post. Ben Miller thinks that the concept of Confidentiality was formalized in a 1976 U.S Air Force study. He also, thinks that the idea of integrity was laid out in a newspaper during 1987 that recognized the focus of data correctness. Availability is a harder one to pin down but, the idea rose when Morris worm knocked most of the internet offline. 

Confidentiality examples consist of two big A’s. Authentication which, allows the process that enables the system to determine if the user says who they say they are. This includes passwords and panoply techniques available for establishing identity.  Authorization determines who can access which data. The system won’t open all of its data for your perusal. An important way to enforce Confidentiality is to establish a need-to-know mechanisms for data access. An example of authentication is knowledge factors which is like passwords or pins but, instead of just random numbers it is a question only you would know. An authorization example is that a bank can only access certain data of a customer like, name, address, and profession. While Higher Bandwidth professionals can view their PAN and IP address.