Skip to main content

← Back to glossary

Term · 7. Security & Standards

Integrity

IDM/IGA Domain
Standards GDPR

Definition

Security principle ensuring data is accurate, complete, and not modified by unauthorized parties. One of the CIA triad. For identity systems: protecting credentials from tampering, audit logs from alteration, identity attributes from unauthorized modification. Cryptographic mechanisms: hash functions, digital signatures, MAC.

Application
MidPoint: Integrity is a property of data or a communication channel, describing that the data or content of a communication channel were not modified in unintended way.
Standards & regulations
  • NIST SP 800-12 Rev. 1 «Integrity. Guarding against improper information modification or destruction, and includes ensuring information non-repudiation and authenticity.»
  • NIST IR 7298 Rev. 3 «Integrity: Guarding against improper information modification or destruction, and includes ensuring information non-repudiation and authenticity.»
  • ISO/IEC 27000:2018 «integrity: property of accuracy and completeness.»
  • ISO/IEC 27001:2022 «Information security is the preservation of confidentiality, integrity and availability of information. Note 1 to entry: In addition, other properties, such as authenticity, accountability, non-repudi»
  • ISO/IEC 24760-1:2019 «integrity: property of being complete and unaltered.»
  • RFC 4949 «integrity (I): The property that data has not been changed, destroyed, or lost in an unauthorized or accidental manner.»
  • FIPS 140-3 «Integrity: A security service that ensures that data do not undergo unauthorized modification, insertion, or deletion during storage, transmission, and processing.»
  • NIST SP 800-53 Rev. 5 «INTEGRITY: Guarding against improper information modification or destruction, and includes ensuring information non-repudiation and authenticity.»
Sources

Related terms

← Back to glossary  ·  Open in main list