Security Protection – Information Security
Information Security means protecting information from different aspects. Regardless of activity, Information Security is about ensuring three aspects of information:
– Confidentiality: preventing unauthorized access to information.
– Accuracy: ensuring that the information used in the business can be trusted to be accurate and not manipulated.
– Availability: ensuring that information is available when it is needed.
In the context of Security Protection, Information Security is about ensuring access to reliable data that is essential for the functioning of a security sensitive capabilities . Therefore, it’s an important part of KTH's security protection work to identify which data the security sensitive capability or activity is dependent on, assessed from various perspectives.
To prevent damage to both KTH’s and Sweden's national security, KTH needs to identify which information that needs to be classified based on Security Protection. This is assessed based on the consequences that would be associated with the disclosure, falsification, or inaccessibility of the information.
Information Security in the field of protective security aims to:
- Prevent the unauthorized disclosure, modification, compromise, or destruction of classified information .
- Preventing other harmful effects on data and information systems relating to security-sensitive activities.