Getting Started in Cybersecurity: Basics

⚠️ WARNING ⚠️

This content may seem unnecessary at first... Trust me, if you truly understand, it matters.

1. Security Triad’s and Security Models

`CIA TRAID’s and concepts`

<aside> 💡

The objective:

Explain the security functions: Confidentiality, Integrity and Availability (CIA).

Confidentiality

Integrity

Availability

Authenticity

Utility

Possession

Present the opposite of the security triad, CIA: Disclosure, Alteration, and Destruction/Denial (DAD).

Introduce the fundamental concepts of security models, such as the Bell-LaPadula model.

Explain security principles such as Defense-in-Depth, Zero Trust, and Trust but Verify.

Introduce ISO/IEC 19249.

Explain the difference between Vulnerability, Threat, and Risk.

Parkerian Hexad, a set of six security elements, They are </aside>

`SECURITY ELEMENTS:`

**Confidentiality** ensures that only the intended persons or recipients can access the data.
Integrity aims to ensure that the data cannot be altered; moreover, we can detect any alteration if it occurs.
Availability aims to ensure that the system or service is available when needed.

Let’s consider the CIA security triad in the case of placing an order for online shopping:

Confidentiality: During online shopping, you expect your credit card number to be disclosed only to the entity that processes the payment. If you doubt that your credit card information will be disclosed to an untrusted party, you will most likely refrain from continuing with the transaction. Moreover, if a data breach results in the disclosure of personally identifiable information, including credit cards, the company will incur huge losses on multiple levels.
Integrity: After filling out your order, if an intruder can alter the shipping address you have submitted, the package will be sent to someone else. Without data integrity, you might be very reluctant to place your order with this seller.
Availability: To place your online order, you will either browse the store’s website or use its official app. If the service is unavailable, you won’t be able to browse the products or place an order. If you continue to face such technical issues, you might eventually give up and start looking for a different online store.