# Information assurance and security is the management and protection of knowledge, information, and data. It combines two fields: Information assurance, which focuses on ensuring the availability, integrity, authentication, confidentiality, and non-repudiation of information and systems.
🦋 Authentication: verifying the identity of a subject
🦋 Authorization: determining what a subject can access after authentication
🦋 Accountability: is what subject-did what-when-where!
(
🔍HUMAN
🔍POLITICAL
🔍NATURAL
VULNERABILITIES
➡️weaknesses on our system/network
CONTROL
➡️methods used to prevent and detect threats and respond to it immediately
3 TYPES OF CONTROL
🦋Technical control
🦋Administrative control
🦋Physical control
4 MAJOR CATEGORIES OF INFORMATION ASSURANCE
PHYSICAL SECURITY
IT SECURITY
PERSONAL SECURITY
OPERATIONAL SECURITY
Moreover, it is important to learn this topic, this is way we can detect threats early, control an correct the vulnerabilities to ensure the confidentially, integrity, and availability of data. Learning this topic enables to us more vigilant and it prepares us for incoming cyber attacks that may alter, destroy and misuse our data.
Furthermore, this topic IAS(INFORMATION ASSURANCE SECURITY) is applicable to many filed of study in a way that it help us to know on how to protect our computer system and network from unauthorized intrusion. Additionally, in this way we can establish a more secure environment to the future users of the application that we use in develop and program. !