Which of the following security objectives are defined for information and information systems by
the FISMA? Each correct answer represents a part of the solution. Choose all that apply.
A.
Authenticity
B.
Availability
C.
Integrity
D.
Confidentiality
Explanation:
FISMA defines the following three security objectives for information and information
systems: Confidentiality: It means that the data should only be accessible to authorized users.
Access includes printing, displaying, and other such forms of disclosure, including simply revealing
the existence of an object. Integrity: It means that only authorized users are able to modify data.
Modification admits changing, changing the status, deleting, and creating. Availability: It means
not defined by the FISMA as one of the security objectives for information and information
systems.