Skip to main content
HashnodeCyberWithSharon

Command Palette

Search for a command to run...

The CIA Triad (TryHackMe)

Updated
3 min read
The CIA Triad (TryHackMe)
J
Jebitok
Part of seriesTryHackMe PreSecurity Series

The CIA Triad is a pre-security room in TryHackMe that covers the fundamentals of cybersecurity: the CIA Triad, which is made up of building block i.e confidentiality, Integrity and Availability. In other areas its said that the CIA Triad has been moved to CIANA pentagon i.e Confidentiality, Integrity, Authorization, Non-repudiation, and authentication. In all aspects of security, whether physical or software security, we’ll always consider these elements of the CIA Triad.

Introduction

Understanding the CIA Triad

The Security Mindset

By now, you have learned about the CIA Triad (Confidentiality, Integrity, and Availability) and how each of its pillars play their role in protecting the digital information. However, CIA is not just a set of definitions, it's a security mindset of cyber security professionals. When a security incident occurs, it is often explained in terms of what was affected. Security professionals generally by asking questions like:

Was sensitive data exposed to unauthorized individuals?

Was data being modified without permission?

Were systems or services unavailable to users when they needed?

Having a clear understanding of each component of the CIA Triad enables one to assess the impact of any incident and decide on an appropriate response.

Hands-on Scenario

You are attending a cyber security workshop. As part of engagement exercises, they have given you an exercise to assess your foundational cyber security concepts. One part of the exercise is related to the CIA Triad, which you learned.

In this exercise, you are given nine different security incidents. You have to read them carefully and one by one. After that, you have to determine which part of the CIA triad is affected by them. Drag and drop the incidents in the area they affect the most.

Answer the questions below

  1. What is the flag received after solving the exercise?

  2. CIA Triad is not just a set of definitions; it's a mindset. What type of mindset is it? Security mindset

Conclusion

Well done!

This room marks your first step into cybersecurity. You have learned a very important thing: What exactly do we protect in cyber security?

By understanding the CIA Triad, you have gained the knowledge of a core cyber security mindset, which is the foundation of many cyber security concepts you will encounter as you continue your journey in this field.

Key Terminology

Let’s recap the core terms you’ve learned. These definitions will help solidify your understanding before moving on to further learning.

  • Confidentiality Ensuring digital information is not available to unauthorized individuals.

  • Integrity Ensuring digital information is not modified without permission.

  • Availability Ensuring digital information is not unavailable when needed.

Further Learning

In the following rooms of this module, you will learn some other interesting areas of cyber security with some fun exercises.

#cia-triad#cybersecurity#beginners-cybersecurity#tryhackme
47 views

TryHackMe PreSecurity Series

Part 4 of 19
Up next

Database SQL Basics (TryHackMe)

Database SQL Basics is a pre-security room by TryHackMe that allows beginners to learn fundamentals of databases and the query language SQL which comes handy when learning about SQLI(SQL Injection) or other cybersecurity CTF challenges where the SQL ...

More from this blog

C

CyberWithSharon

432 posts