Information security consists of methods used to protect data or information being transmitted for preserving the integrity, confidentiality, and availability of the information.
- Confidentiality Confidentiality is the protection of transmitted data from passive attacks. The two important concepts are:
- Data Confidentiality: Assures that private or confidential information is not disclosed to the unauthorized user.
- Privacy: Assures that individual control information related to them.
- Integrity Integrity assures that messages are received as sent with no duplication, insertion, modification, reordering or replays. The two important concepts are:
- Data Integrity: Assures information is changed only in an authorized manner.
- System integrity: Assures that the system performs intended function property and free from unauthorized manipulation.
- Availability Assures that system works correctly and service is available to authorized users.