Securing the physical door

Security through layers of a building

Securing only the external perimeter

Securing only the internal part of a building

Confidentiality, Integrity, and Authorization

Confidentiality, Integrity, and Authentication

Confidentiality, Integrity, and Accountability

Confidentiality, Integrity, and Availability

Proving the legitimacy of a message or data transfer

Ensuring data is accurate and valid

Protecting data from unauthorized changes

Providing undeniable evidence of authenticity and integrity

Protecting data from theft and natural disasters

Ensuring data is accessible when needed

Tracking who touches data and when

Verifying identification to an application or system

Organizational resources being protected

Weaknesses in data confidentiality

Probabilities of threats becoming realities

Parameters implemented to protect data

An organizational resource being protected

The act of verifying identification

A weakness in data confidentiality

A possibility of data or systems being compromised

Acknowledging risk without addressing it

Transferring risk to a third party

Avoiding risk by not engaging in the activity

Attempting to address risk by making it less serious