security objective that assures the protection of data from being read by unintended parties