Title :
Applying the TNI to system certification and accreditation
Author :
Niemeyer, Robert E.
Author_Institution :
MITRE Corp., McLean, VA, USA
Abstract :
Department of Defense systems that process sensitive (including classified) information must undergo formal technical assessment and approval before they are allowed to operate. The technical assessment and approval processes are called certification and accreditation, respectively. The author presents issues involved in certifying and accrediting networks with respect to the two network views, the Single Trusted System (STS) view and the Interconnected Accredited AIS (IAA) view, presented in the Trusted Network Interpretation of the Trusted Computer Security Evaluation Criteria, NCSC-TG-005. Certification and Accreditation procedures differ significantly between the STS view and the IAA view of networks
Keywords :
computer networks; security of data; IAA; Interconnected Accredited AIS; STS; Single Trusted System; TNI; accreditation; networks; system certification; technical assessment; Accreditation; Application software; Certification; Computer security; Guidelines; Information security; Information systems; Risk analysis; Sociotechnical systems; US Department of Defense;
Conference_Titel :
Computer Security Applications Conference, 1989., Fifth Annual
Conference_Location :
Tucson, AZ
Print_ISBN :
0-8186-2006-4
DOI :
10.1109/CSAC.1989.81058
