nerdexam
(ISC)2

CAP · Question #391

Which of the following objectives are defined by integrity in the C.I.A triad of information security systems? Each correct answer represents a part of the solution. Choose three.

The correct answer is A. It preservesthe internal and external consistency of information. B. It prevents the unauthorized or unintentional modification of information by the authorized C. It prevents the modification of information by the unauthorized users.. Integrity in the CIA triad ensures data is accurate, consistent, and protected from unauthorized or unintentional modification, covering both internal/external consistency and access-based controls.

Security and Privacy Governance, Risk Management, and Compliance Program

Question

Which of the following objectives are defined by integrity in the C.I.A triad of information security systems? Each correct answer represents a part of the solution. Choose three.

Options

  • AIt preservesthe internal and external consistency of information.
  • BIt prevents the unauthorized or unintentional modification of information by the authorized
  • CIt prevents the modification of information by the unauthorized users.
  • DIt prevents the intentional or unintentional unauthorized disclosure of a message's contents .

How the community answered

(39 responses)
  • A
    90% (35)
  • D
    10% (4)

Why each option

Integrity in the CIA triad ensures data is accurate, consistent, and protected from unauthorized or unintentional modification, covering both internal/external consistency and access-based controls.

AIt preservesthe internal and external consistency of information.Correct

Integrity requires preserving internal consistency (data is self-consistent) and external consistency (data accurately reflects real-world entities), ensuring accuracy across all contexts and systems.

BIt prevents the unauthorized or unintentional modification of information by the authorizedCorrect

Integrity controls must prevent even authorized users from making unauthorized or unintentional changes, enforcing proper approval workflows and change management to ensure only sanctioned modifications occur.

CIt prevents the modification of information by the unauthorized users.Correct

A core function of integrity is blocking unauthorized users from modifying data, which is enforced through access controls, checksums, digital signatures, and audit logs.

DIt prevents the intentional or unintentional unauthorized disclosure of a message's contents .

Preventing unauthorized disclosure of message contents is the objective of confidentiality, not integrity, in the CIA triad.

Concept tested: CIA triad integrity objectives

Source: https://csrc.nist.gov/glossary/term/integrity

Topics

#CIA triad#Integrity#Information security principles#Data consistency

Community Discussion

No community discussion yet for this question.

Full CAP Practice