CH 1 2043: Information Security Principles

Control, Information, Availability

Confidentiality, Integrity, Availability

Control, Integrity, Access

Confidentiality, Identity, Access

Virus

Trojan

Spyware

Ransomware

To ensure data is always available

To monitor network traffic

To maintain confidentiality, integrity, and availability of information

To prevent all types of cyber attacks

Insider threats

Data encryption

Cloud security

Phishing attacks

To implement security tools only

To ensure business operations are secure

To manage IT configurations

To focus solely on compliance

The speed of data processing

The accessibility of information

The privacy of data

The accuracy and consistency of information

Short-term attacks that are easy to detect

Long-term targeted attacks that are difficult to detect

Random attacks with no specific target

Attacks that only target mobile devices

Data encryption

Antivirus software

Firewalls

Phishing

Physical security of servers

Data redundancy

Network speed

User training

To reduce operational costs

To increase data storage

To protect against unauthorized access and attacks

To enhance user experience