Which trio defines the security objectives associated with impact levels?

The concept being tested is the CIA triad—the three security objectives used to gauge impact levels. In risk and security frameworks, protecting information means considering Confidentiality (preventing unauthorized disclosure), Integrity (maintaining accuracy and trustworthiness), and Availability (ensuring access for authorized users). When evaluating how severe a compromise would be, each of these objectives is assessed, and the trio forms the foundation for defining protection requirements. The conventional way to list them is Confidentiality, Integrity, Availability, which is why that order aligns with the standard answer. The other orderings include the same three objectives, but the accepted sequence that communicates the standard priorities is Confidentiality, Integrity, Availability.