NotesFAQContact Us
Search Tips
ERIC Number: ED515536
Record Type: Non-Journal
Publication Date: 2009
Pages: 102
Abstractor: As Provided
Reference Count: 0
ISBN: ISBN-978-1-1096-4692-4
Government Certification and Accreditation: Make a Choice
Miles, Tracy L.
ProQuest LLC, D.C.S. Dissertation, Colorado Technical University
One of the most significant challenges faced by government officials today is securing information systems to make them more resilient to attack from increasingly complex challenges from cyber-criminals, state-sponsored groups, and other threats. Over the years, the federal government has developed and implemented Certification and Accreditation (C&A) frameworks to evaluate the effectiveness of the information security infrastructure including technology as well as policies, procedures, and practices. The most prevalent frameworks are the National Industrial Security Program Operating Manual (NISPOM), the Department of Defense (DoD) Information Technology Security Certification and Accreditation Process (DITSCAP), and the DoD Information Assurance Certification and Accreditation Program (DIACAP). But the existence of multiple C&A standards creates confusion and conflict. As a result, implementation can be costly and time consuming. More importantly, security gaps may develop which can be exploited. This dissertation examines the three leading C&A frameworks, develops a statistical model, and presents the argument that a standard can and should be used across the entire spectrum of the C&A process. [The dissertation citations contained here are published with the permission of ProQuest LLC. Further reproduction is prohibited without permission. Copies of dissertations may be obtained by Telephone (800) 1-800-521-0600. Web page:]
ProQuest LLC. 789 East Eisenhower Parkway, P.O. Box 1346, Ann Arbor, MI 48106. Tel: 800-521-0600; Web site:
Publication Type: Dissertations/Theses - Doctoral Dissertations
Education Level: N/A
Audience: N/A
Language: English
Sponsor: N/A
Authoring Institution: N/A