XACTA Web-C&A Enables Rigorous DOD Certification and Accreditation Process.Business Editors/High Tech WritersASHBURN, Va.--(BUSINESS WIRE)--Aug. 15, 2000 Xacta(TM) delivers first Web-based tool aimed at reducing the time and cost of the DITSCAP DITSCAP DoD Information Technology Security Certification and Accreditation Process (DoD Instruction 5200.40) DITSCAP Defense Information Technology Security Certification and Accreditation Process Process Xacta Corporation, a provider of knowledge management solutions for trusted e-markets resulting in Confident Commerce(TM), today announced Xacta Web-C&A, a web-based tool that provides a consistent implementation of proven risk management processes, guidance, and documentation. Xacta Web-C&A automates the security certification A certification issued by competent authority to indicate that a person has been investigated and is eligible for access to classified matter to the extent stated in the certification. and accreditation process in a web-based application See Web application. that perfects security risk assessments, certification test procedure development, system configuration guidance, and residual risk Residual risk Related: Unsystematic risk acceptance. Web-C&A addresses DITSCAP requirements, the Department of Defense's mandatory process which identifies threats and vulnerabilities that pose risk to critical information systems. Rapid changes in technology and hacker A person who writes programs in assembly language or in system-level languages, such as C. The term often refers to any programmer, but its true meaning is someone with a strong technical background who is "hacking away" at the bits and bytes. threats have dramatically increased the need for DITSCAP compliance. Xacta Web-C&A automates security certification and accreditation and facilitates compliance, thereby improving risk posture and mitigating potential liability for system "owners". "Most organizations lack fulltime information security policy and engineering professionals needed to complete a meaningful security certification and accreditation program," said Richard Tracy, Senior Vice President of Xacta. "With Xacta Web-C&A, our users will get the guidance, documentation templates and expert support to assist their existing IT personnel. That means internal staff can concentrate on their primary responsibilities while Xacta Web-C&A catalogs and documents your system configuration, threats, vulnerabilities and residual risks." Certification and Accreditation is Mandatory DITSCAP is the standard for the DOD (1) (Dial On Demand) A feature that allows a device to automatically dial a telephone number. For example, an ISDN router with dial on demand will automatically dial up the ISP when it senses IP traffic destined for the Internet. security C&A process and must be performed every three years or when major system changes are introduced, whichever occurs first. Non-compliance can put critical business systems and data at risk and leave individuals personally liable. Free Your Resources Xacta Web-C&A is a do-it-yourself tool allowing organizations to internally complete the C&A effort, potentially eliminating dependence on costly "time-and-materials" consultants and time-consuming DITSCAP training. Flexible and Intelligent Solution Xacta Web-C&A provides the ease-of-use expected with browser-based solutions. At the same time, the dynamic Security Requirements Traceability Overview Traceability as a general term is the "ability to chronologically interrelate the uniquely identifiable entities in a way that matters." The word chronology Matrix (SRTM SRTM Shuttle Radar Topography Mission SRTM Security Requirements Traceability Matrix SRTM Software Requirements Traceability Matrix SRTM System Requirements Traceability Matrix SRTM Security Requirements Tractability Matrix SRTM Static Root of Trust for Measurement ) allows customization of the application for use at any organization, system, network or application. Moreover, this intelligent solution provides integrated templates and automated au·to·mate v. au·to·mat·ed, au·to·mat·ing, au·to·mates v.tr. 1. To convert to automatic operation: automate a factory. 2. processes to guide users through the complex DITSCAP process in an intelligent and efficient manner. Because the business rules and logic are automated, data gathering is always complete and consistent. At the same time, the product offers the ability to override An arrangement whereby commissions are made by sales managers based upon the sales made by their subordinate sales representatives. A term found in an agreement between a real estate agent and a property owner whereby the agent keeps the right to receive a commission for the sale of default settings for ultimate flexibility. Broad Applicability Xacta Web-C&A is currently applicable to any organization requiring DOD-grade risk management processes and guidance, to include Government organizations who are required to perform periodic security certification and accreditation exercises. The product is currently being expanded to address the needs of commercial organizations looking to certify cer·ti·fy v. cer·ti·fied, cer·ti·fy·ing, cer·ti·fies v.tr. 1. a. To confirm formally as true, accurate, or genuine. b. their security environments and those of their partners while engaging in electronic commerce and e-business. Availability Xacta Web-C&A is currently available on a subscription basis through Telos Corporation. About Xacta Xacta is a provider of managed solutions for trusted e-markets resulting in Confident Commerce(TM). Focusing on security, process, and content management and automation, Xacta's knowledge management offerings enable organizations to effectively leverage their existing technology to quickly and confidently achieve their e-business objectives. Xacta is a subsidiary of Telos Corporation. |
|
Printer friendly
Cite/link
Email
Feedback
Reader Opinion