CIA TRIAD

1.) CONFIDENTIALITY - OBTAINED BY ENCRYPTION

2.) INTEGRITY - OBTAINED BY HASHING

3.) AUTHENTICATION - OBTAINED BY DIGITAL CERTIFICATE / DIGITAL SIGNATURE / DIGITAL TOKEN etc..

# Some methods of proving identity , is that the device must send you something about itself that is trustworthy and reliable.

# Digital Certificates serve dual-purposes:

1.) Provide verifiable authentication credentials.

2.) Provide a public key for use with asymmetric encryption.

# Digital Certificate also called as RSA certificate , SSL certificate , Identity certificate , public key certificate , X.509 certificates, SubCA or root certificate.

# A digital certificate is an electronic passport that allows a person , computer or organization to exchange information securely over the internet using the public key infrastructure.

# Digital certificates are commonly obtained by , and stored by web browsers.

# It contains the public key of a webserver , VPN endpoint , etc.

# Some features that use certificates are shown below.

An Internet Protocol Security (IPSec) tunnel is a set of standards and protocols originally developed by the Internet Engineering Task Force (IETF) to support secure communication as packets of information are transported from an IP address across network boundaries and vice versa.

802.1X protocol - An IEEE standard for port-based network access control (PNAC) on wired and wireless access points. 802.1X defines authentication controls for any user or device trying to access a LAN or WLAN.

NAC : A proven networking concept that identifies users and devices by controlling access to the network.