CO2521 Information Security Management - 3 week revision

Ensures that information is available to authorized parties

Ensures that only authorized parties can view the information.

Ensures that information is correct and there is no unauthorized modification

the technique used to compromise a system and take advantage of a vulnerability.

a single instance of an information asset suffering damage or destruction.

an intentional or unintentional act that causes damage/compromise information or systems

an action that has the potential to adversely affect operations and assets.

Ensures that no one other than the intended recipient of a message receives it or is able to read it.

Allows authorised users to access and interact with resources, but it actively prevents unauthorised users from doing so.

Measures to ensure the protection of the secrecy of data, objects, or resources.

Ensures that data remains correct, unaltered, and preserved.

Protecting the reliability and correctness of data.

Ensures that data remains correct, unaltered, and preserved

Prevents unauthorised alterations of data.

Authorised subjects are granted timely and uninterrupted access to objects.

not being able to deny having performed an action

being factually or logically sound.

being authentic or genuine.

being a true reflection of reality.

being correct and precise.

Ensures that no one other than the intended recipient of a message receives it or is able to read it.

Offers a high level of assurance that the data, objects, and resources are accessible to authorised subjects.

protection controls support sufficient bandwidth and timeliness of

processing as deemed necessary by the organisation or situation.

Includes efficient uninterrupted access to objects and prevention of denial-of service (DoS) attacks.