The policy is an operational and integral element of the System, thus making policy tangible and comprehensible – simply stated it is uncomplicated.

• Changes at the lower technology level do not affect the levels above, so relieving the cause of policy rework and providing self governance
  
  
• The System is self-reviewing and has internal analysis controls to identify trends and issue that re-occur; the benefit is loss prevention supported by incident correction.

The traditional reasons for security are generally accepted as:

• Confidentiality – the access of information by authorised users
  
  
• Integrity – the processing and distribution of information across systems to ensure its correctness and accuracy
  
  
• Availability – the productive and effective access of information across systems by users as and when required