FREE Registration is required
Overview:
Certification and accreditation processes formally evaluate the security of an information system, determine the risk of operating the information system, and then either accept or not accept that risk. There are four primary certification and accreditation models that agencies use as a basis for developing their standardized C&A process: the National Information Assurance Certification and Accreditation Process (NIACAP) model, the National Institute of Standards and Technology (NIST) model, the Defense Information Technology Systems Certification and Accreditation Process (DITSCAP) model, and the DCID 6/3 model. These different methodologies were developed for four different audiences (none within the private sector), but they all have the goal of accomplishing the same task: certifying and accrediting information systems. Therefore, drawing from these four models to develop private sector C&A processes can help businesses achieve compliance with laws (such as Sarbanes-Oxley, HIPAA, and others) that hold private sector enterprises responsible for maintaining basic levels of information security. In this sample chapter from FISMA Certification & Accreditation Handbook, closely study the different types of C&A processes. Chapter coverage includes:
- The NIACAP process
- The NIST process
- DITSCAP
- DCID 6/3
- The common denominator of all C&A methodologies
- C&A for private enterprises
ISBN: 1597491160
Published: November 2006
Authors: Laura Taylor, Matthew Shepherd
Chapter: Chapter 2: Types of Certification and Accreditation
Published by Syngress Publishing
(Is this item miscategorized? Does it need more tags? Let us know.)
| Format: | Size: | 575 KB | |
| Date: | Jan 2007 | Version: | 1.0 |
| License: | copyright | ||
| System Req: | Adobe Acrobat Reader 5.0 or later |
People who downloaded this item also downloaded
Top results from Sarbanes-Oxley
White Papers, Webcasts, and Resources
- Designing High Availability for Internet Information Services CA XOsoftEnd downtime forever on your Web servers running Microsoft Internet Information Services with this step-by-step guide to high availability.
- Live Webcast: Enhanced Availability in a Virtual Data Center with the Dell PS Series and Microsoft Windows Server 2008 R2 Hyper-V Dell EqualLogicLearn how to use the new features of Microsoft Windows Server 2008 R2 Hyper-V to boost the availability of your virtualized data center.
- Systems Management in Education: A Best Practice Guide KACEEnable the success of you and your students with these real-life best practices for IT pros in K-12 schools as well as higher-education environments.
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- News, Insights, Guidance
Visit CBSMoneyWatch.com Today -
MoneyWatch.com is the premier destination for smart, practical personal finance advice. Watch the latest Human Capital videos to make the most of your biggest asset - your earning power
- Learn more >>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer>>
Featured Training Courses
- Implementing and Administering Windows 7 in the Enterprise
- CCNA Boot Camp v2.0
- VMware vSphere: Install, Configure, Manage [V4]
- Certified Ethical Hacker
- Management and Leadership Skills
- Browse all Training Courses
SmartPlanet
- Thought-provoking progressive ideas on diverse topics that intersect with technology, business, and life, and matter to the world at large. Visit SmartPlanet
- More from IBM
-
- How to Drive Better Business Outcomes with Exceptional Web Experiences Download the eBook
- Driving Business Agility through SOA Connectivity & Integration Read the White Paper from IBM
- Linking Decisions and Information for Organizational Performance Read the Tom Davenport study
