• Confidentiality is probably the most common aspect of information security. We need to protect our confidential information. An organization needs to guard against those malicious actions that endanger the confidentiality of its information.
  • Integrity means that changes need to be done only by authorized entities and through authorized mechanisms. 
  • Availability: The information created and stored by an organization needs to be available to authorized entities