Certified Ethical Hacker (CEH v10) — Question 59

Security Policy is a definition of what it means to be secure for a system, organization or other entity. For Information Technologies, there are sub-policies like
Computer Security Policy, Information Protection Policy, Information Security Policy, network Security Policy, Physical Security Policy, Remote Access Policy, and
User Account Policy.
What is the main theme of the sub-policies for Information Technologies?

Answer options

• A. Availability, Non-repudiation, Confidentiality
• B. Authenticity, Integrity, Non-repudiation
• C. Confidentiality, Integrity, Availability
• D. Authenticity, Confidentiality, Integrity

Correct answer: C

Explanation

The correct answer is C, as the main theme of Information Technologies sub-policies revolves around the principles of Confidentiality, Integrity, and Availability (CIA triad). Options A and B introduce non-repudiation which is not a primary focus of these sub-policies, while option D includes authenticity but lacks the essential element of availability.