Description should include
- the use of the CIA triad model to provide the baseline standard of evaluating and implementing information security measures on any system
- describing the ways the CIA triad may shift in priority in manufacturing environments (e.g., availability over confidentiality if production time is more important than intellectual property)
- stating that each component in the CIA triad has designated goals that provide distinct requirements, and that each goal provides an essential component of information security measures.
Description should also include manufacturing-system-specific elements
- priority of the CIA triad based on specific critical infrastructure sectors
- emphasis on availability and integrity in manufacturing systems.
Process/Skill Questions:
- Why is there a trade-off between confidentiality, integrity, and availability?
- When might availability be more important than intellectual property?