Maximizing C-I-A

One common goal in all domains is the pursuit of the most secure environment possible. Because maximizing the confidentiality, integrity, and availability of your organization’s information leads to a secure environment, all of your activities should be to maximize C-I-A.

Maximizing Confidentiality

Ensuring confidentiality in the LAN Domain is one of the simpler tasks. There are ­basically four steps to ensuring only authorized users can see confidential data:

  1. Identify confidential data.

  2. Require positive identification for all access requests and define strict access ­controls for all confidential data identified in Step 1.

  3. Use encryption to store all confidential data identified in Step 1.

  4. Use encryption to transfer all confidential ...

Get Auditing IT Infrastructures for Compliance, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.