The IPSec sender can encrypt packets before transmitting them across a network.

A security service where the protected data cannot be observed.

The ability to encrypt packets before transmitting them across a network. With confidentiality, the designated recipient can decrypt and read data, while those without authorization cannot decrypt and read this data. It is provided by encryption algorithms such as Data Encryption Standard (DES). Method where protected data is manipulated so that no attacker can read it. This is commonly provided by data encryption and keys that are only available to the parties involved in the communication.

means the protection of communications or stored data against interception and reading by unauthorized persons.

Security service that provides for the protection of data from unauthorized disclosure.

Some files have a higher degree of confidentiality than others, e.g. payroll databases. Each file can be rated on how high the confidentiality is, and how protected it should be.