Confidentiality, Integrity, Availability

Protection, Encryption, Authentication

Prevention, Detection, Recovery

Hardware, Software, Network

Data is protected from unauthorized access

Data is accurate and has not been tampered with

Data is available when needed

Data is encrypted during transmission

Using encryption to protect sensitive files

Backing up critical business data

Implementing redundancy in servers

Monitoring system logs

SQL Injection

Denial-of-Service Attack

Phishing Email

Weak Passwords

Recovery after a disruption

Prevention of all cyberattacks

Enforcement of confidentiality

Replacement of firewalls

Planning

Design

Implementation

Testing

Injection

Broken Authentication

Cross-Site Scripting (XSS)

Sensitive Data Exposure