Confidentiality, Integrity, and Availability (CIA) is a popular model which is designed to develop a security policy. CIA model consists of three concepts:
- Confidentiality: Ensure the sensitive data is accessed only by an authorized user.
- Integrity: Integrity means the information is in the right format.
- Availability: Ensure the data and resources are available for users who need them.
When the CIA was created, its purpose was to create a clearinghouse for foreign policy intelligence and analysis. Today, its primary purpose is to collect, analyze, evaluate, and disseminate foreign intelligence, and to carry out covert operations.
In cybersecurity, CIA refers to the CIA triad — a concept that focuses on the balance between the confidentiality, integrity and availability of data under the protection of your information security program.