From the course: Microsoft Security Essentials: Concepts, Solutions, and AI-Powered Protection
Security principles - Microsoft Security Copilot Tutorial
From the course: Microsoft Security Essentials: Concepts, Solutions, and AI-Powered Protection
Security principles
- [Narrator] What is information security really about? We can find the answer by understanding the fundamental principles of security. One of the most important security principles is called the CIA Triad. CIA stands for confidentiality, integrity, and availability. These represent the three key security concerns. Confidentiality is about controlling read permissions. For example, your social insurance number is confidential and you don't want others to know it without your consent. Integrity is about controlling change permissions. For example, if you transfer $100 to someone, you don't want anyone to change it to $50 without your approval. Availability is about ensuring access privileges. For example, when you log into your online banking account, you don't want to get an error message saying the service is down. What do you get when you achieve all three objectives, confidentiality, integrity, and availability? You get security. The CIA Triad is the foundation of security. So if someone asks you, "Have you worked in security?" If you have done anything to protect confidentiality, integrity, or availability, then yes, you have done a security job. In fact, security is such a broad field that you can add the word security after almost anything. For example, network security, system security, data security, application security, cloud security, IOT security, blockchain security, or AI security. The same security principles apply to all these areas. In other words, when it comes to security in these domains, our goal is to protect network confidentiality, integrity, and availability; system confidentiality, integrity and availability; data confidentiality, integrity and availability, and so on. Now you get the idea.