Keeping Private Data Confidential
Many of the compliance requirements that we presented in earlier sections address data confidentiality. Even though ensuring availability and integrity of data is important, keeping private information confidential garners the most attention because, once the confidentiality of data has been breached, it cannot be undone. In other words, once people view confidential data, there is no way to remove that data from their memory. Careful attention must be paid to each of the three tenets of information security, as shown in FIGURE 4-3, to protect an organization’s data assets.
Get Fundamentals of Information Systems Security, 4th Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.