Access Control and Availability

Integrity and Encryption

Access Control and Encryption

Authentication and Authorization

To ensure data is not modified.

To verify the identity of a user.

To encrypt data for secure transmission.

To grant specific privileges to a user.

It verifies the identity of the sender.

It ensures data is not tampered with during transmission.

It obscures data, making it unreadable to unauthorized parties.

It grants access based on user roles.

To prevent unauthorized users from accessing data.

To ensure that data is true to itself and any modifications are detectable.

To guarantee continuous access to information.

To verify user privileges before granting access.

Implementing strong passwords.

Using encryption to hide data.

Applying digital signatures or hashing.

Distributing data across multiple servers.

Phishing attack

Distributed Denial of Service (DDoS) attack

Man-in-the-middle attack

SQL injection attack

By injecting malicious code into the server's database.

By sending an excessive number of incomplete connection requests, exhausting server resources.

By tricking users into revealing their login credentials.

By encrypting the server's files and demanding a ransom.