Which concept is defined as ensuring timely and reliable access to and use of information by authorized users?

Availability is the principle that ensures timely and reliable access to and use of information by authorized users. It means systems and data are accessible when needed and perform well enough to support business tasks, even in the face of failures or disruptions. This aspect of the CIA triad focuses on uptime, responsiveness, and resilience—things like redundant components, failover capabilities, backups, disaster recovery planning, and capacity planning help keep services available. It also involves proper authentication and access processes so that legitimate users aren’t blocked while unauthorized parties are kept out. In contrast, confidentiality protects against unauthorized disclosure of information, and data handling practices like classification determine how sensitive data should be protected. The term control is broad and refers to the mechanisms that enforce security, but it doesn’t by itself define the requirement for timely and reliable access.