The following three requirements must be met in order to guarantee security:
Confidentiality
It must not be possible to view any information that is not allowed to be viewed.
Integrity
Information must always be maintained in a complete form and not be altered without authorization, either intentionally or unintentionally.
Availability
The system must operate normally and be available at any time.
Threats can arise when these requirements are not met.
Failure to meet requirement | Specific example |
|---|---|
Loss of confidentiality | Password disclosure |
Loss of integrity | Planned execution of jobs is obstructed if definition data that is used for management is altered by someone without authorization. |
Loss of availability | Executed jobs terminate abnormally at unscheduled times. |
