Glossary

Filter:
# A B C D E F G H I J K L M N O P Q R S T U V W X Y Z All
A
A1
AC
ACD
ACK
ACL
ACU
A-D
Ada
ADC
ADH
ADM
ADP
AE
AES
AFJ
AFR
AI
AIG
AIN
AIS
AJ
AK
AKM
ALC
ALE
ALU
AMA
AMI
AMS
ANI
AOS
AP
APC
APD
APL
App
APU
AR
Arg
ARQ
ARS
ASU
AV
AVP
Accreditation
  • Official authorization, by the appropriate DAA, to place an automated system into operational use. This authorization is a statement that the level of residual risk in operating the system is sufficiently low to allow operation for a specified use. Accreditation is site specific and dependent on meeting local security measures and procedures. (AFR 205-16;)
  • The official authorization granted to an information system to process sensitive information in its operational environment based on comprehensive security evaluation of the system's hardware, firmware, and software security design, configuration and implementation and of the other system procedural, administrative, physical, TEMPEST, personnel and communications security controls. (AFR 700-10;; CSC-STD-001-83;)
  • The authorization and approval granted to a system or network to process classified or sensitive data. Accreditation will be made on the basis of certification by a competent authority that designated technical personnel have verified that specified technical requirements for achieving adequate data security have been met. (AR 380-380;)
  • A formal declaration by the responsible SOIC, or his designee, as appropriate, that the ADP system or network provides an acceptable level of protection for processing and/or storing intelligence information. An accreditation should state the operating mode and other parameters peculiar to the ADP system or network being accredited. (DCID 1/16-1, Sup. ;)
  • A formal declaration by the DAA having accreditation responsibility that the AIS is approved to operate in a particular security mode using a prescribed set of safeguards. Accreditation is the official management authorization for operation of an AIS and is based on the certification process as well as other management considerations. The accreditation statement affixes security responsibility with the DAA and shows that due care has been taken for security. (DODD 5200. 28;; NCSC-WA-001-85;)
  • The documented authorization, by the designated authority, granted to an organization or individual to operate an ADP system or network in a specific environment to process, store, transfer or provide access to classified information. (DOE 5632A;) 7. The authorization and approval, granted to an ADP system or network to process sensitive data in an operational environment, and made on the basis of a certification by designated technical personnel of the extent to which design and implementation of the system meet pre-specified technical requirements for achieving adequate data security. (FIPS PUB 39;) 8. A policy decision by the responsible DAA resulting in a formal declaration that appropriate security countermeasures have been properly implemented for the ADP activity or network, so that the activity or network is operating at an acceptable level of risk. The accreditation should state the mode of operation and any operating limitations applicable to the ADP activity or network. (OPNAVINST 5239. 1A;)