ISC Exam Questions

Which of the following security objectives are defined for information and information systems by th

Which of the following security objectives are defined for information and information systems by
the FISMA? Each correct answer represents a part of the solution. Choose all that apply.

A.
Authenticity

B.
Availability

C.
Integrity

D.
Confidentiality

Explanation:
FISMA defines the following three security objectives for information and information
systems: Confidentiality: It means that the data should only be accessible to authorized users.
Access includes printing, displaying, and other such forms of disclosure, including simply revealing
the existence of an object. Integrity: It means that only authorized users are able to modify data.
Modification admits changing, changing the status, deleting, and creating. Availability: It means
not defined by the FISMA as one of the security objectives for information and information
systems.