Active automation of the DITSCAP

Seok Won Lee; Robin A. Gandhi; Gail-Joon Ahn; Deepak S. Yavagal

Active automation of the DITSCAP

Seok Won Lee, Robin A. Gandhi, Gail-Joon Ahn, Deepak S. Yavagal

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The Defense Information Infrastructure (DII) connects Department of Defense (DoD) mission support, command and control, and intelligence computers and users through voice, data, imagery, video, and multimedia services, and provides information processing and value-added services. For such a critical infrastructure to effectively mitigate risk, optimize its security posture and evaluate its information assurance practices, we identify the need for a structured and comprehensive certification and accreditation (C&A) framework with appropriate tool support. In this paper, we present an active approach to provide effective tool support that automates the DoD Information Technology Security C&A Process (DITSCAP) for information networks in the DII.

Original language	English (US)
Title of host publication	Lecture Notes in Computer Science
Editors	P. Kantor, G. Muresan, F. Roberts, D.D. Zeng, F.-Y. Wang, H. Chen, R.C. Merkle
Pages	479-485
Number of pages	7
Volume	3495
State	Published - 2005
Externally published	Yes
Event	IEEE International Conference on Intelligence and Security Informatics, ISI 2005 - Atlanta, GA, United States Duration: May 19 2005 → May 20 2005

Other

Other	IEEE International Conference on Intelligence and Security Informatics, ISI 2005
Country/Territory	United States
City	Atlanta, GA
Period	5/19/05 → 5/20/05

ASJC Scopus subject areas

Computer Science (miscellaneous)

Cite this

@inproceedings{5e4de8ead6ef4b14a5179f1481de79f1,

title = "Active automation of the DITSCAP",

abstract = "The Defense Information Infrastructure (DII) connects Department of Defense (DoD) mission support, command and control, and intelligence computers and users through voice, data, imagery, video, and multimedia services, and provides information processing and value-added services. For such a critical infrastructure to effectively mitigate risk, optimize its security posture and evaluate its information assurance practices, we identify the need for a structured and comprehensive certification and accreditation (C&A) framework with appropriate tool support. In this paper, we present an active approach to provide effective tool support that automates the DoD Information Technology Security C&A Process (DITSCAP) for information networks in the DII.",

author = "Lee, {Seok Won} and Gandhi, {Robin A.} and Gail-Joon Ahn and Yavagal, {Deepak S.}",

year = "2005",

language = "English (US)",

volume = "3495",

pages = "479--485",

editor = "P. Kantor and G. Muresan and F. Roberts and D.D. Zeng and F.-Y. Wang and H. Chen and R.C. Merkle",

booktitle = "Lecture Notes in Computer Science",

note = "IEEE International Conference on Intelligence and Security Informatics, ISI 2005 ; Conference date: 19-05-2005 Through 20-05-2005",

}

TY - GEN

T1 - Active automation of the DITSCAP

AU - Lee, Seok Won

AU - Gandhi, Robin A.

AU - Ahn, Gail-Joon

AU - Yavagal, Deepak S.

PY - 2005

Y1 - 2005

N2 - The Defense Information Infrastructure (DII) connects Department of Defense (DoD) mission support, command and control, and intelligence computers and users through voice, data, imagery, video, and multimedia services, and provides information processing and value-added services. For such a critical infrastructure to effectively mitigate risk, optimize its security posture and evaluate its information assurance practices, we identify the need for a structured and comprehensive certification and accreditation (C&A) framework with appropriate tool support. In this paper, we present an active approach to provide effective tool support that automates the DoD Information Technology Security C&A Process (DITSCAP) for information networks in the DII.

AB - The Defense Information Infrastructure (DII) connects Department of Defense (DoD) mission support, command and control, and intelligence computers and users through voice, data, imagery, video, and multimedia services, and provides information processing and value-added services. For such a critical infrastructure to effectively mitigate risk, optimize its security posture and evaluate its information assurance practices, we identify the need for a structured and comprehensive certification and accreditation (C&A) framework with appropriate tool support. In this paper, we present an active approach to provide effective tool support that automates the DoD Information Technology Security C&A Process (DITSCAP) for information networks in the DII.

UR - http://www.scopus.com/inward/record.url?scp=24944589234&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=24944589234&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:24944589234

VL - 3495

SP - 479

EP - 485

BT - Lecture Notes in Computer Science

A2 - Kantor, P.

A2 - Muresan, G.

A2 - Roberts, F.

A2 - Zeng, D.D.

A2 - Wang, F.-Y.

A2 - Chen, H.

A2 - Merkle, R.C.

T2 - IEEE International Conference on Intelligence and Security Informatics, ISI 2005

Y2 - 19 May 2005 through 20 May 2005

ER -

Active automation of the DITSCAP

Abstract

Other

ASJC Scopus subject areas

Other files and links

Fingerprint

Cite this