The protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide confidentiality, integrity, and availability. The three objectives of information security are: Confidentiality, Integrity, and Availability. Confidentiality refers to Preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information. Integrity refers to Guarding against improper information modification or destruction, and includes ensuring information non-repudiation and authenticity. Availability refers to ensuring timely and reliable access to and use of information.
Retrieved 2018 from
CNSSI 4009-2015 and NIST SP 800-53 Rev. 4 under Confidentiality https://csrc.nist.gov/glossary/term/confidentiality;
FIPS 200 under AVAILABILITY and NIST SP 800-53 Rev. 4 under Availability https://csrc.nist.gov/glossary/term/availability;
CNSSI 4009-2015 and NIST SP 800-53 Rev. 4 under Integrity https://csrc.nist.gov/glossary/term/integrity;
NIST SP 800-53 Rev. 4 under Information Security https://csrc.nist.gov/glossary/term/information-security