Network Security Fundamentals

HomeAP Networking › Network Security Fundamentals
AP Networking · Core Concept Core Concept · Secure

Network Security Fundamentals

The core ideas behind every security control in AP Networking: the CIA triad, threats vs. vulnerabilities vs. risk, control types, defense in depth, and least privilege.

Network security rests on a small set of core ideas that appear in every unit of AP Networking. Master these and the specific controls in each topic become applications of the same principles rather than a list to memorize.

The CIA Triad

  • Confidentiality: only authorized people can read the data.
  • Integrity: the data is accurate and has not been altered.
  • Availability: the data and systems are usable when needed.

Every control serves one or more of these, and strong security balances all three. Encryption protects confidentiality; checks that detect tampering protect integrity; backups and resilience protect availability.

Threats, Vulnerabilities, and Risk

Term Meaning
Threat Something that could cause harm
Vulnerability A weakness a threat can exploit
Risk The chance and impact of a threat meeting a vulnerability

Risk lives where threats and vulnerabilities overlap. Good security concentrates effort where that overlap is largest, rather than treating every possible issue as equally urgent.

Types of Controls

Type Purpose
Protective (preventive) Stop harm before it happens
Detective Notice harm as or after it happens
Deterrent Discourage an attacker from trying
Recovery Restore after harm has occurred

Defense in Depth and Least Privilege

Defense in depth layers independent controls so the failure of one is caught by another, never relying on a single safeguard. Least privilege gives each user and device only the access it actually needs, so a mistake or compromise has limited reach. These two principles underlie most of the specific controls you will apply.

A control that protects a system but blocks legitimate use has failed. Security must preserve access and availability for the right people, not just lock things down.

Practice Questions

Ransomware encrypts a user's files so they cannot be opened. Which CIA goal is MOST directly harmed?
  • A. Confidentiality
  • B. Integrity
  • C. Availability
  • D. Authentication
Answer: C. Blocking access to files primarily harms availability, the data is no longer usable when needed. It may touch confidentiality too, but the defining harm is loss of access.
Giving each user and device only the access it needs, so a compromise has limited reach, is the principle of:
  • A. Defense in depth
  • B. Least privilege
  • C. Availability
  • D. Deterrence
Answer: B. Least privilege limits access to what is necessary, containing the damage from a mistake or compromise. Defense in depth is the separate idea of layering multiple independent controls.

Frequently Asked Questions

What is the CIA triad?

Confidentiality, integrity, and availability, the three goals of security. Every control serves one or more, and strong security balances all three.

What is defense in depth?

Layering independent controls so the failure of one is caught by another, rather than relying on a single safeguard.

What is least privilege?

Giving each user and device only the access it actually needs, so a mistake or compromise has limited reach.

Keep Studying

Topic 1.3: Device Security NeedsIdentifying risk for a device.Topic 2.6: Securing Your NetworkApplying layered defenses.Topic 1.4: Securing Your DeviceControl types in action.

Put It Into Practice

Test these concepts on the full interactive AP Networking practice exam.

Take the Practice Exam Course Hub

Get in Touch

Whether you're a student, parent, or teacher — I'd love to hear from you.

Just want free AP CS resources?

Enter your email below and check the subscribe box — no message needed. Students get daily practice questions and study tips. Teachers get curriculum resources and teaching strategies.

Typically responds within 24 hours

Message Sent!

Thanks for reaching out. I'll get back to you within 24 hours.

🏫 Welcome, fellow educator!

I offer curriculum resources, practice materials, and study guides designed for AP CS teachers. Let me know what you're looking for — whether it's classroom materials, a guest speaker, or Teachers Pay Teachers resources.

Email

[email protected]

📚

Courses

AP CSA, CSP, & Cybersecurity

Response Time

Within 24 hours

Prefer email? Reach me directly at [email protected]