CHAPTER 4

Information Assurance Concepts

Information assurance is a broad, interdisciplinary field. Executives and senior management should understand what risk the organization is being protected from. Failure to understand the security requirements means you will not be able to apply the best security protection to the user environment. There are fundamental security concepts that you should know. This chapter discusses three popular concepts in information security: the confidentiality, integrity, and availability (CIA) triad. Additionally, it covers concepts in information assurance such as nonrepudiation and identification, authentication, authorization, and accountability (IAAA). Among the three, the CIA triad (information security) was ...

Get Information Assurance Handbook: Effective Computer Security and Risk Management Strategies now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.