Research Catalog

Implications of aggregated DoD information systems for information assurance certification and accreditation

Title
Implications of aggregated DoD information systems for information assurance certification and accreditation / Eric Landree ... [et al.].
Publication
Santa Monica, CA : RAND, 2010.

Items in the Library & Off-site

Filter by

1 Item

StatusFormatAccessCall NumberItem Location
Request for On-site UseRequest Scan

Available - Can be used on site. Please visit New York Public Library - Schwarzman Building to submit a request in person.

TextUse in library JFE 10-4188Schwarzman Building - Main Reading Room 315

Details

Additional Authors
  • Landree, Eric.
  • National Defense Research Institute (U.S.)
Description
xx, 59 p. : ill. (some col.); 23 cm.
Summary
The challenges associated with securing U.S. Department of Defense (DoD) information systems have grown as the department's information infrastructure has become more complex and interconnected. At the same time, the potential negative consequences associated with cyber intrusions have become more severe. Are current information assurance (IA) policies and procedures sufficient to address this growing threat, and are they able to address vulnerability issues associated with highly networked information systems? The current IA certification and accreditation (C&A) process focuses on individual, discrete systems or components of larger, aggregated information systems and networks that are colocated or operate on the same platform (such as a Navy ship). An examination of current policy shows that a new approach is needed to effectively extend the IA C&A process to aggregations of information systems and improve the security of DoD information systems. A number of recommendations are put forth to improve current IA policy and to enable the IA C&A of aggregations of DoD information systems that reside on a common platform.
Series Statement
Rand Corporation monograph series
Uniform Title
Rand Corporation monograph series.
Subject
  • United States. Department of Defense > Information resources management
  • United States. Department of Defense > Information technology
  • Computer security > United States > Management
  • Cyberinfrastructure > United States
  • Computer networks > Security measures > United States
  • Computer networks > Certification > United States
  • Computer networks > Accreditation > United States
  • Information technology > Security measures > United States
  • Information technology > Certification > United States
  • Information technology > Accreditation > United States
Note
  • "Prepared for the United States Navy."
  • "RAND National Defense Research Institute."
  • "MG-951-NAVY."--P. [4] of cover.
Bibliography (note)
  • Includes bibliographical references (p. 57-59).
Call Number
JFE 10-4188
ISBN
  • 9780833049483 (pbk. : alk. paper)
  • 0833049488 (pbk. : alk. paper)
LCCN
2010004574
OCLC
519832778
Title
Implications of aggregated DoD information systems for information assurance certification and accreditation / Eric Landree ... [et al.].
Imprint
Santa Monica, CA : RAND, 2010.
Series
Rand Corporation monograph series
Rand Corporation monograph series.
Bibliography
Includes bibliographical references (p. 57-59).
Added Author
National Defense Research Institute (U.S.)
Landree, Eric.
Research Call Number
JFE 10-4188
View in Legacy Catalog