When talking about the sensitivity of the information, which of the following is least related?
Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.
My suggested answer is D. Availability.
I came across a couple of videos that relate the terms “sensitivity” and “criticality” to confidentiality and integrity, and availability respectively, including the free ISC2 Official (ISC)² CISSP® Review.
- Sensitivity: confidentiality and integrity
- Criticality: availability
This question is designed to remind you again of the fact that integrity implicitly covers the authenticity and non-repudiation, according to the FISMA, as the slide shows.
The digital signature entails hashing and encryption to enforce non-repudiation. It’s a typical implementation to encrypt, with the sender’s private key, the hash of a message as the signature to enforce both authenticity and non-repudiation. It justifies how non-repudiation is related to sensitivity (confidentiality and integrity).
I have had a typo and corrected it upon the kind advice from Michael Halford! Thank you so much for correcting me, Michael!