In this write-up, I first describe the CIA triad and how all three functioning parts work<\/p>\n\n\n\n
together best to help a security system run smoothly while being properly protected by ensuring<\/p>\n\n\n\n
who needs to have access does, the systems have safe and reliable forms of backup protection in<\/p>\n\n\n\n
case errors or attacks on the system happen, and how the systems keep the right information for<\/p>\n\n\n\n
the right person available at any time. I then differentiate authentication as confirming one\u2019s<\/p>\n\n\n\n
identity vs. authorization as someone being able to access the information they are permitted to<\/p>\n\n\n\n
view.<\/p>\n\n\n\n
The CIA Triad<\/p>\n\n\n\n
When a company, or being, needs to better learn how to protect its security systems and the<\/p>\n\n\n\n
valuable information that it protects, they need to look at the balance needed to create a clean and<\/p>\n\n\n\n
consistent foundation for their security. The triad is broken down into three main parts that all<\/p>\n\n\n\n
coincide with each other, which are confidentiality, integrity, and availability. All, if balanced<\/p>\n\n\n\n
properly, work hand in hand with each other to ensure better safety for organizations. This<\/p>\n\n\n\n
module can be broken down into the simple idea that most organizations have certaininformation contained in their files that should only be accessed by those who need it and should<\/p>\n\n\n\n
have access to it, which is described through the confidentiality part of the triad. It is then broken<\/p>\n\n\n\n
down by the integrity side into the systems that protect all of that same information and how, if<\/p>\n\n\n\n
left accessible to the wrong person or a fault in the security system, the organization would be<\/p>\n\n\n\n
distraught. Finally, the availability side is seen as how accessible the information or data is to the<\/p>\n\n\n\n
people who need to view it. The systems that keep this running smooth are in place to ensure it is<\/p>\n\n\n\n
timely and effective at getting information kept organized and readily available to those needing<\/p>\n\n\n\n
to access it.<\/p>\n\n\n\n
Authentication vs. Authorization<\/p>\n\n\n\n
Authentication is the act of a system confirming who is accessing the content or<\/p>\n\n\n\n
information requested, while authorization can be defined as the confirmation that the right<\/p>\n\n\n\n
person is able to access their specific permitted data or information.<\/p>\n\n\n\n
Authorization examples could include the face ID on most devices nowadays, the<\/p>\n\n\n\n
usernames that are created specific to you, and even the use of a valid ID in required places. On<\/p>\n\n\n\n
the other hand, authorization would have examples as simple as who you give access to view or<\/p>\n\n\n\n
edit a document, managers deciding who gets access to the companies\u2019 asset information, or who<\/p>\n\n\n\n
can change settings on your home alarm system.<\/p>\n","protected":false},"excerpt":{"rendered":"
In this write-up, I first describe the CIA triad and how all three functioning parts work together best to help a security system run smoothly while being properly protected by ensuring who needs to have access does, the systems have safe and reliable forms of backup protection in case errors or attacks on the system… <\/p>\n