Confidentiality Access controls help ensure that only authorized subjects can access objects. When unauthorized entities are able to access systems or data, it results in a loss of confidentiality.
Integrity Integrity ensures that data or system configurations are not modified without authorization. If unauthorized or unwanted changes to objects occur, or go undetected, this is known as loss of integrity.
Availability Authorized requests for objects must be granted to subjects within a reasonable amount of time. In other words, systems and data should be available to users and...
- Chapter 1: Access Control
- from CISSP: Certified Information Systems Security Professional Study Guide, 6th Edition
- Publisher: Sybex
- Released: July 2012