Jonathan Rice

The Meaning of the CIA/AIC Triad and Authentication vs
Authorization
The CIA Triad stands for Confidentiality, Integrity, and Availability. It is a
set of rules and ideas companies follow in order to build and keep the trust of their
consumers. Authentication is the means to get conformation that someone has the
knowledge to access and hopefully has ownership over an account. Authorization
means giving an account permission to do certain things. (Chai, 2022 pp. 1-2)


The C in CIA Triad


The C in CIA stands for confidentiality, in which the goal is to keep their
customers’ information safe and private and to keep any unwanted eyes from
prying open a customer’s details. (Chai, 2022 pp. 3-4)

The I in CIA Triad


The I in CIA stands for integrity, in which the goal is to maintain any
information the customer has given so that it cannot be changed unless authorized
by someone with the authority to do so. (Chai, 2022 p. 4)

The A in CIA Triad

The A in CIA Triad stands for availability, in which the goal is to make sure
whatever service being provided continues to be provided. (Chai, 2022 pp. 4-5)
The Meaning of Authentication
Authentication “Is the process of ensuring ownership of an account”
(Epping, et al., 2021 p. 4) meaning it takes some step to double check some form
of information to make sure that whoever is trying to access the account is fit to do
so.


The Meaning of Authorization


Authorization “determines if you as the subject are allowed to access or do
whatever action you are trying to do.” (Epping, et al., 2021 pp. 5-6) meaning once
you have access to an account after authentication you are then checked on what
authorization you have which decides what abilities/permissions you have on a
system.


In conclusion all of these things help create a secure environment for
employees and customers alike and to make an efficient and growing company.

References:
Chai, W. (2022). What is the CIA Triad (confidentiality integrity and availability)?
https://www.techtarget.com/whatis/definition/Confidentiality-integrity-and-
availability-CIA?jr=on
Epping, M., & Morowczynski, M. (2021). Authentication and
Authorization. IDPro Body of Knowledge, 1(6). https://doi.org/10.55621/idpro.78