The CIA Triad

-

The CIA triad of Confidentiality, Integrity and Availability are at the core of Information Security.
Information Security professionals who create policies and procedures must cosider each goal when creating a plan in order to protect computer system.





Confidentiality


In Information Security, Confidentiality is property that the information is not made available or disclosed to unauthorized use to individuals, entities or processes. Confidentiality is the component of privacy that implements to protect our data from unauthorized viewers. confidentiality involves set of rules or promise usually executed through confidentiality aggrements that limits access or places restrictions on certain type of information.


Attacks that affect Confidentiality
  • Password cracking
  • Packet sniffing
  • Wiretapping
  • Keylogging
  • Dumpster diving
  • Phishing

Integrity


In InfoSec data integrity means maintaining and assuring the accuracy and completeness of data over its entire lifecycle. This means data cannot be modified by any unauthorized way. Integrity is the practice of being honest and showing consistent and uncompromising adherence to strong ,moral and ethical principles and values. When a sender sends data, the receiver must receive exactly the same data as send by the sender. Dat must not be changed in transit. Any adddition or subtraction of data during transit means that the integrity is lost or compromised.
Attacks that affect Integrity

  • Salami attack
  • Data diddling attacks
  • Session hijacking
  • Man In The Middle (MITM) attack

Availability


Availability refers to authorized users that can freely access the systems, networks and data needed to perform their daily task. It is essential to have plans and procedures in place to prevent or mitigate data loss as a result of a disaster.
Attacks that affect Availability
  • DoS and DDoS attacks
  • SYN flood attacks
  • Physical attacks on server infrastructure


Stay always secure from digital threats


Comments

Post a Comment

Popular posts from this blog

T Bomb: SMS and Call Bomber! Hangs Your Smartphone!

-
Image
Discovering a tool which has capibility to hang your smartphone! T Bomb is an open source call and SMS bomber for Linux and Termux. T Bomb can send unlimited sms and calls on victim's phone so that the hang can get hang.  Installation Step 1. Type command  pkg install git Step 2. pkg install python Step 3. git clone https://github.com/TheSpeedX/TBomb.git Step 4. cd TBomb Step 5. chmod +x TBomb.sh  Now run the tool Step 6. cd TBomb Step 7. ./TBomb.sh And Boom!!! Now perform as per instructed. Press Enter Press 1 for SMS bomber Press 2 for Call bomber Press 3 To  Update (Works On Linux And Linux Emulators) Press 4 To  View Features Press 5 To  Exit Important: Only For Educational Purpose. We are not responsible if any kind of misuse of this tool is identified.
Read more

Phishing: A sweet poison!

-
Image
Phishing  is a fradulent attempt to obtain sensitive information such as passwords, usernames, credit card details by disguising oneself as a trustworthy entity in an electronic communication. This is how Phishing is defined.Got It? No. That's ok. You will get it by the end of this blog. Hackers are creative and they should be!  One such famous hacking technique or a way to gain information of target user is is called Phishing. Phising is method to gather personal information using mainly deceptive emails and websites. The goal is to make the target believe that the message,mail or website is something important for him for example a bank request,donation and to force him to click the link. It is one of the oldest type of cyberattacks dating back to 1990's and still one of the most popular attack between hackers. How Phishing got its name? Yes you guessed it right. Phishing is similar to word Fishing. The letter "f" is replaced by "p". As in fishing, the fis
Read more

Stay Secure Always!

-
Image
Stay Secure Always! We are living in 21st century. This era is what we can call it as an "Digital Era". The world is becoming digital day by day. Use of Smartphones, digital payments, and services based on internet are increasing. We can't imagine a single day without Internet today.It has made over life so easy. But as a coin has two sides, internet also has its evil side. Today "Data" is the currency. Data or we can say meaningful information is what matters the most. If you have data and you know how to use it, you can acquire the world. But if someone misused data it can also lead to death. So one should have knowledge about how to stay secure online. One should be aware of all the Digital Threats. So here are we....... Through InfoSec Hub you will be able to get knowledge about How to protect our data Kali Linux O.S. Hacking  Various attacks Various Tools And much more....So stay tuned.....
Read more