this post was submitted on 07 Apr 2024
532 points (95.9% liked)

Security

5005 readers
1 users here now

Confidentiality Integrity Availability

founded 4 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 7 points 7 months ago

No, it literally cannot be both, full stop. There should rigorous, well defined procedures and processes for handling classified data, and chiefly among those should be something along the lines of "don't upload classified documents to a publicly-available internet-connected location/service/filestore/etc". If it's not, a security officer has not done their job.