You more or less understand. :)
It is a flawed an infrequently refered to theroy so I wouldn't waste the time on learning it much more exactly than you already do.
catch
Printable View
You more or less understand. :)
It is a flawed an infrequently refered to theroy so I wouldn't waste the time on learning it much more exactly than you already do.
catch
thanks catch
Y not look at a 3-d model instead of a triangle....... u will have a new dimetion to work with.....so u will have place for time as for the costes u must work on a 4-D image.... let time be the 4-th dimention as in the real world....//but it will make it incomperehasicble... for most ppl....
but if we stay in a 3-d model we can try to make a tetrahedron... then I think ther we will have 4-corners... for the 4 values...
Ok three things... a 4-d image? So you will do this with a collection of pyramids floating down a timeline? Um... wow.
The second thing is that the points are not all quantifiable and this leads to a lack of direct relationships between the points.
Lastly, computer systems can work in finite, perfectable modules which means that you can have all three points maxed out or bottomed out so the relationships are lost, completely defeating the concept on the model.
catch
catch i did some research and found out this
now which one is right??? :confused:Quote:
The "Security Functionality Triangle", or the CIA Triad as it is more commonly referred to are the three principles, or goals, of Information Security, namely:
Confidentiality
Integrity
Availability.
If any of these elements are disrupted, it has an impact on the overall security of an object.
Eachof the elements has differect threats to them, eg.
Confidentiality:
- cracking passwords
- disclosure of sensitive information
Integrity
- Spoofing attacks
- Man-in-the-middle Attacks
- Session Hi-jacking
Availability
- DoS / DDoS Attacks
Hope it helps.
If you have any other questions, feel free to ask.
Kind Regards
Sebastiaan Rothman
[email protected]
I have always seen that refered to as:
"The CIA Triad"
"The three security fundemantals"
"The three tenets of InfoSec"
These deal more with concepts then the level of functionality, I can see how it would be confusing though. On the CISSP the CIA triad will be refered to as such and not the "security functionality triangle"
The inverse of the CIA triad is the DAD (Disclosure, Alteration, Destruction) triad.
catch
I use yahoo it corrects all the time :D
ok thanks for clearing that up.