Abstract

This chapter provides an introduction of the certification and accreditation processes, sometimes referred to as Security Assessment and Authorization, by providing an in-depth review of the evolution of the processes within the federal government, including the multiple supporting standards and guidelines. In addition, each of the processes used across the federal government (Civilian Agencies, Department of Defense, and Intelligence Community) are briefly discussed to provide an understanding of the basis for the convergence toward a unified Risk Management Framework. Finally, for comparison, federal and international certification standards and guidelines ...