Confidentiality

It is the assurance that information is accessible only to those who are authorized.

---

Integrity

Integrity refers to the trustworthiness of the data. It is the assurance that information is sufficiently accurate for its purpose, and that information cannot be modified by any unauthorized entity.

---

Availability

Availability is the assurance that data/information/system are available only to those that are authorized to have access.

---

Authenticity

• One of the elements of cryptography.
• It ensures genuineness or uncorrupted.

---

Non-Repudiation

• One of the elements of cryptography.
• This guarantees that the sender of the message cannot deny sending it, and that recipient cannot deny receiving the message.
• Controls can be multi-factor authentication, digital signature or digital certificate.

---

Security, Functionality and Usability Triangle

• Functionality – Set of features provided by the system.
• Usability – The GUI components used to design the system for ease of use.
• Security – Restrictions imposed on accessing the components of the system.
• REMEMBER: The more secure, the less usable and less functional. These three need to be balanced out when implementing security controls.