14 terms

McCumber Cube

STUDY
PLAY
What is the McCumber Cube?
model framework for establishing and evaluating information security (information assurance) programs
What are the three dimensions of the McCumber Cube?
Desired goals, Information states and security measures
What are the desired goals?
Confidentiality, integrity and availability.
What are the information states?
Storage, transmission and processed
What are the security measures?
Technology, policies, people
Define confidentiality as it relates to the McCumber Cube.
Prevent the disclosure of sensitive information from unauthorized people, resources, and processes
Define integrity as it relates to the McCumber Cube.
The protection of system information or processes from intentional or accidental modification
Define availability as it relates to the McCumber Cube.
The assurance that systems and data are accessible by authorized users when needed
Define storage as it relates to the McCumber Cube.
Data at rest, information that is stored in memory or on disk
Define transmission as it relates to the McCumber Cube.
Data in transit, transferring data between information systems
Define processing as it relates to the McCumber Cube.
performing operations on data in order to achieve a desired objective.
Define policies as it relates to the McCumber Cube.
administrative controls, such as management directives, that provide a foundation for how information assurance is to be implemented within an organization
Define people as it relates to the McCumber Cube.
ensuring that the users of information systems are aware of their roles and responsibilities regarding the protection of information systems and are capable of following standards
Define technology as it relates to the McCumber Cube.
software and hardware-based solutions designed to protect information systems (examples: anti-virus, firewalls, intrusion detection systems, etc.)
YOU MIGHT ALSO LIKE...