Which of the Confidentiality, Integrity, Availability (CIA) principles of the credit card file are violated?

A hacker gains access to a webserver and can view a file on the server containing credit card numbers.

Which of the Confidentiality, Integrity, Availability (CIA) principles of the credit card file are violated?
A . Availability
B . Confidentiality
C . Integrity
D . Compliance

Answer: B

Explanation:

Confidentiality is one of the Confidentiality, Integrity, Availability (CIA) principles of information security that states that only authorized parties should have access to information assets. Confidentiality protects the secrecy and privacy of information from unauthorized disclosure or exposure. A hacker gaining access to a web server and viewing a file containing credit card numbers violates the confidentiality principle, as he or she is not an authorized party and has access to sensitive information that belongs to others. Therefore, the correct answer is B.

Reference: ISO/IEC 27000:2022, clause 3.8; Defining Security Principles – Pearson IT Certification.

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments