The CIA triad is a set of guidelines that form a model to guide policies for information security within an organization. Confidentiality, Integrity, and availability are the three elements that form the CIA triad. Confidentiality refers to the ability for an organization to maintain the privacy of data by preventing unauthorized access to that data. Integrity refers to keeping data in an unaltered state through its life cycle and preventing it from being altered by unauthorized users. Availability is the element of the triad that states that data should be readily available for those authorized to access the data.
Authentication and authorization are at times used interchangeably even though they are different concepts. Authentication is the process of verifying that a user is who they claim to be where as authorization is the process of verifying what users have access to((Auth0). An example of authentication is an organization utilizing strong passwords, 2-factor authorization, or biometric checks. Authorization examples include things such as limiting the information that is available to an employee being confined to their department and only applicable to their day-to-day work, where management would have broader access to data.