![\"\"](\"https:\/\/sites.wp.odu.edu\/nickcarpenter\/wp-content\/uploads\/sites\/33778\/2025\/10\/pexels-energepic-com-27411-159888-1-1024x768.jpg\")
<\/figure><\/div>\n\n\n<\/p>\n\n\n\n
The CIA triad is the foundation of information security. This project showcases the ability to examine a foundational component of information security and objectively analyze it based on its current standing.
<\/p>\n\n\n\n
<\/p>\n\n\n\n
<\/p>\n\n\n\n
What is the CIA Triad?
The CIA triad is a model used in cyber security to guide security measures. The name is an acronym for its component\u2019s, confidentiality, integrity, and availability. Confidentiality keeps sensitive information a secret from those that should not be able to access it (\u201cWhat Is the CIA Triad? Definition, Explanation, Examples: TechTarget.\u201d, 2023). Integrity means that the data is accurate, reliable and should be free of being tampered with. Availability allows internal access to those that are authorized to view\/manage it. <\/p>\n\n\n\n
The CIA Triad Strengths:
\nThe CIA Triad is a useful cyber security practice in many ways. At the core of its principle, confidentiality, integrity and availability are considered the three most important concepts in information technology (\u201cWhat Is the CIA Triad? Definition, Explanation, Examples: TechTarget.\u201d, 2023). Confidentiality requests the authentication of its users, which simple terms, means verifying who a person is (What is the difference between authentication and authorization? 2023). This can be accomplished by encryption, 2 factor authentication, user IDs, passwords, biometric authentication, etc. (\u201cWhat Is the CIA Triad? Definition, Explanation, Examples: TechTarget.\u201d, 2023). The verification of these credentials can grant users access to benefit services, retirement plans, job\/patient portals, etc. Integrity expands employee knowledge which minimizes human errors. In addition, tools such as access controls, data logs, and checksums are often used to help maintain consistency within the organization (\u201cWhat Is the CIA Triad? Definition, Explanation, Examples: TechTarget.\u201d, 2023). Availability of the CIA triad is only obtainable through authorization. Authorization grants or restricts access to individuals within an organization. Some things a user may be granted\/restricted access to include applications, files, data, documents etc. (What is the difference between authentication and authorization? 2023). Each component of the CIA Triad contributes very useful measures to an organization\u2019s overall security.<\/p>\n\n\n\n
The CIA Triad drawbacks:
\nThe CIA Triad is a very useful guideline for organizations; however, it is not flawless. There have been many technological advancements\/developments with no update to the CIA Triad, which poses major risks to the model\u2019s effectiveness. Since there are various devices that now interact with the internet that are not just computers, these devices are often unpatched and can easily be exploited (\u201cWhat Is the CIA Triad? Definition, Explanation, Examples: TechTarget.\u201d, 2023). This topic has become even more complex over recent years with the development of AI (artificial intelligence) and how the CIA Triad is insufficient in monitoring such technologies. In addition, the CIA Triad lacks the ability to guide risk management decisions that other security measures such as the NIST framework have implemented. Many organizations and individuals have thought that the CIA Triad needs to be updated in order to be as efficient as other security practices. <\/p>\n\n\n\n
Conclusion:
The CIA Triad is used as a guide for cyber security measures. However, the lack of
updates in recent years has slightly decreased its effectiveness. The CIA Triad can still be a useful security measure, however, there should be additional security practices in place to protect the organization.<\/p>\n\n\n\n
References:<\/p>\n\n\n\n
What is the difference between authentication and authorization? SailPoint. (2023, March 7). https:\/\/www.sailpoint.com\/identity-library\/difference-between-authentication-and-authorization<\/a>.<\/p>\n\n\n\n Chai, Wesley. \u201cWhat Is the CIA Triad? Definition, Explanation, Examples: TechTarget.\u201d WhatIs.Com, TechTarget, 10 Feb. 2023, https:\/\/www.techtarget.com\/whatis\/definition \/Confidentiality-integrity-and-availability-CIA<\/a>.<\/p>\n\n\n\n <\/p>\n\n\n\n <\/p>\n\n\n\n The CIA triad is the foundation of information security. This project showcases the ability to examine a foundational component of information security and objectively analyze it based on its current standing. What is the CIA Triad? The CIA triad is a model used in cyber security to guide security measures. The name is an acronym… <\/p>\n
<\/p>\n\n\n\n
<\/p>\n","protected":false},"excerpt":{"rendered":"