Preservation of confidentiality within information syst…

Preservation of confidentiality within information systems requires that the information is not disclosed to:

Preservation of confidentiality within information systems requires that the information is not disclosed to:

A.
Authorized persons

B.
Unauthorized persons or processes.

C.
Unauthorized persons.

D.
Authorized persons and processes

Explanation:
Confidentiality is the assurance that information is not disclosed to unauthorized individuals, programs, or
processes. Some information is more sensitive than other information and requires a higher level of
confidentiality.
Confidentiality ensures that the necessary level of secrecy is enforced at each junction of data processing and
prevents unauthorized disclosure. This level of confidentiality should prevail while data resides on systems and
devices within the network, as it is transmitted, and once it reaches its destination.
Incorrect Answers:
A: Authorized persons are allowed to access the information.
C: Unauthorized processes should be included in the answer, not just unauthorized persons.
D: Authorized persons and processes are allowed to access the information.

Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, New York, 2013, p. 160



Leave a Reply 0

Your email address will not be published. Required fields are marked *