It been seen many organizations heavily invest on the security techniques and security devices like firewall, instruction detections, etc. however, almost all professional are believed that there is no 100 percent secure & reliable systems exist.

In other words, no security device or technology alone can protect the information on system or network. In addition it is need to have a good principle of information security and security plan to protect information resources from unauthorized access or damage. Data need to be classified and risk analysis must implement to the systems. The key functions of information security principles summaries in confidentiality, integrity and availability of information. 

• Confidentiality is to limiting information access to ensure that data access is confined to those with specific authority. By classification of information we can determine the confidentiality of information.

• Integrity refers to correctness and trustworthiness of information and its resources. In addition, ensure that data is an accurate and unchanged representation of the original information.

• Availability refers to allow user to access to computer system and the information on the system and the applications that perform operation on the information

Availability may be affected by technical issues like communication problems, natural disaster and accidental or deliberate human causes. The achievement of above matters only rely the combination of technology and a well-structured information plan and risk analysis. Security awareness and training should associate too.