back to the list of other resources

Home

Presentations

 

 


Wayne McKinnon's
Security Resource Center

Four security threats   (CIA + A)

Protective measures

  • Firewall

  • Program control

  • E-mail protection

  • Privacy

  • PKI/certificates/keys

 

Click here to return to "The ITcoach" Home pageor click here to go back to the list of other resources

Confidentiality

Confidentiality refers to the need to keep information private, and the ability to ensure that information is not intercepted as it passes through the one's corporate network, or the global Internet. Confidentiality can be achieved using encryption

Integrity

Preserving the integrity of data includes ensuring that the information is not tampered with or changed either while it is in transit, or while it is stored. Digital signatures are one method of ensuring data integrity. A document, e-mail message or other is said to be digitally signed in order for its integrity to be assured.

Authenticity

Authenticity proves that the sender of the data is who they say they are. A forged document is not authentic, since the sender has impersonated the author. Proving authenticity requires the recipient to be able to identify the supposed author by verifying the author's digital signature using a certificate belonging to the author.

Availability

While not directly considered to be a security threat, availability can be enhanced through better security protection, either by:

Reprints, links or forwarding these articles is encouraged providing that the following credit line is used: © Copyright 2002, Wayne McKinnon, ITcoach.com. For more information contact us at ITcoach.com, Suite 531, 900 Greenbank rd., Ottawa, Ontario, Canada K2J 4P6, (613) 860-1384, 1-888-712-6224, FAX (613) 825-4895, info@ITcoach.com

A copy of the publication in which the article appears would be appreciated.

Copyright 2002 by ITcoach.com. All rights reserved.

 

Click here to return to "The ITcoach" Home pageor click here to go back to the list of other resources