1
.
"
Information
Security
"
consists
of
4
basic
parts
-
(
a
)
____________________
:
Accessibility
of
information
for
a
purpose
.
(
b
)
____________________
:
Completeness
,
wholeness
,
and
readability
of
information
,
and
the
quality
of
being
unchanged
from
a
baseline
state
.
(
c
)
____________________
:
Validity
,
conformance
,
and
genuineness
of
information
.
(
d
)
____________________
:
Limited
observation
and
disclosure
of
knowledge
only
to
authorized
individuals
.
Technological
advances
both
help
and
hinder
its
progress
.
2
.
In
1979
,
the
National
Bureau
of
Standards
published
its
Federal
Information
Processing
Standard
(
FIPS
)
,
Guideline
for
Automatic
Data
Processing
____________________
Analysis
.
3
.
Fear
of
____________________
motivates
some
companies
to
avoid
collecting
security
statistics
altogether
.
Company
could
be
found
____________________
because
it
knew
of
the
problems
and
didn't
act
on
them
and
is
therefore
liable
for
damages
.
4
.
Integrated
Business
Risk
Management
(
IBRM
)
:
Basic
idea
is
that
information
technology
-
related
risks
are
like
any
other
serious
?
business
risk
?
and
must
therefore
be
managed
as
such
.
Business
risks
include
operational
risks
,
____________________
risks
,
environmental
risks
,
and
others
.
4
.
Risk
management
not
linked
to
____________________
analysis
.
Not
even
a
retrospective
analysis
of
the
standard
?
s
effectiveness
,
cost
-
benefit
trade
-
offs
,
or
even
basic
applicability
to
threats
can
be
performed
.