For each of the following assets, assign a low, moderate, or high impact level for the loss of confidentiality, availability, and integrity, respectively. Justify your answers. a. A student maintaining a blog to post public information. b. An examination section of a university that is managing sensitive information about exam papers. c. An information system in a pathological laboratory maintaining the patient’s data.
Answers
Answered by
1
Explanation:
(a). Security Category of an organization managing public information on its web server: Confidentiality-NA (Not Applicable) Integrity-Moderate Availability-Moderate (b). Security Category of law enforcement organization managing extremely sensitive investigation information: Confidentiality-High Integrity-Moderate Availability-Moderate (c). Security Category of financial organization managing routine administrative information: Confidentiality-Low Integrity-Low Availability-Low (d). Security Category of Contract information: Confidentiality- Moderate Integrity-Moderate Availability-Low Security Category of administrative information:.
Similar questions