Confidentiality, Integrity, Availability

Confidentiality, Information, Access

Control, Integrity, Authentication

Communication, Information, Access

A threat is a potential danger, while a vulnerability is a weakness.

A threat is a weakness, while a vulnerability is a potential danger.

A threat is always intentional, while a vulnerability is accidental.

A threat is a software issue, while a vulnerability is a hardware issue.

Regular software updates

Ignoring minor threats

Using outdated software

Sharing passwords

Confidentiality, Integrity, Availability

Confidentiality, Accessibility, Security

Integrity, Security, Accessibility

Availability, Security, Confidentiality

Only approved users have access to data

Data is always encrypted

Information is backed up regularly

Data is shared with everyone

Ensuring data is accessible by approved users when needed

Making sure data is always encrypted

Allowing data to be shared with everyone

Ensuring data is never deleted

People, Processes, and Technology

Policies, Procedures, and Tools

Protection, Prevention, and Training

Programs, Plans, and Techniques