WeeklyĀ CISSPĀ Practice
Exam Questions
Week 43 - Question 2
What does the 'C' in CIA triad stand for?
A. Certification
B. Calculation
C. Confidentiality
D. Compliance
Answer: C. Confidentiality
Explanation:
Confidentiality ensures that sensitive information is not disclosed to unauthorized individuals, entities, or processes.
-
The Goal: Protecting data from being "viewed" or "stolen" by the wrong people.
-
Common Controls: Encryption (at rest and in transit), Access Control Lists (ACLs), and Multi-Factor Authentication (MFA).
-
The Threat: Examples include shoulder surfing, social engineering, and man-in-the-middle attacks.
Comparison with the Distractors
-
A. Certification: This is an administrative process used to formally evaluate a system's technical and non-technical security controls. It is a component of a larger security program but not a pillar of the triad.
-
B. Calculation: This is not a standard term in information security frameworks.
-
D. Compliance: While the CIA triad helps you achieve compliance (meeting laws like GDPR or HIPAA), compliance is a regulatory requirement rather than a core security principle.
Podcasts
Check out my weekly podcasts that delve deep into the relevant topics related to each of CISSP domains. In addition, I will go over specific questions and they can be interpreted and answered.
CISSP Cyber Training Academy
Tired of not knowingĀ howĀ to study for the CISSP Exam?Ā
Check out the CISSP Cyber Training Academy to help you on your journey!
CISSP Cyber Training - YouTube
Check out my video collection on YouTube discussing all the details needed to help you pass the CISSP exam.Ā Ā
