Information security. Protecting information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction in order to provide:
(1) Integrity, which means guarding against improper information modification or destruction, and includes ensuring information authenticity;
(2) Confidentiality, which means preserving authorized restrictions on access and disclosure, including means for protecting personal privacy and proprietary information; and
(3) Availability, which means ensuring timely and reliable access to and use of information.