0
DITSCAP is the outdated version of the DoD process for assessing the security of DoD information systems. It was replaced by DIACAP. DIACAP is, in turn, being replaced by the RMF process where continuous montoring is to be implemented.
DIACAP :
- Platform-centric as opposed to system or network centric.
- Information belongs to system owner and risks are identified specific to the system
- Individual C/S/A defined IA controls
- Certification appointed Certification Authority
Wiki User
∙ 7y ago
Add your answer:
Earn +20 pts
Does ditscap supersedes diacap?
DIACAP replaced DITSCAP as the process for certification and accreditation of DoD information systems. DIACAP supersedes DITSCAP.
Ditscap supersedes diacap?
False
Does DISCAP supersede DIACAP?
No - DIACAP (DoDI 8510.01) superseded DITSCAP (DoDI 5200.40) in 2006.
What is the follow on to ditscap?
DODI 8510.01 (DIACAP) is the current DoD process for IA Certification and Accreditation of DoD systems. It replaced DITSCAP.
The DoD IS has initiated the DITSCAP but does not have a signed Phase One System Security Authorization What is the next step?
C. Continue DITSCAP This might have been a correct answer to a quiz in the past, but DoDI 5200.40 (DITSCAP) and DoD 8510.1-M (DITSCAP Manual) were cancelled when DoDI 8510.01 (DIACAP) was issued on November 28, 2007. If a system does not have a signed Phase One System Security Authorization Agreement (SSAA) they are required to conduct their certification and accreditation under DIACAP. Anything prepared under DITSCAP is useful only as reference material to aid in preparing the DIACAP documentation.
The dod information system has a ditscap authorization to operate that is four years old what is the next step?
Contact the DAA to request an IATO while you hurry up and get your act together and get the DIACAP documentation together before they shut the system down!
The dod information system has a ditscap authorization to operate that is four years old?
DIACAP has been in force for more that 3 years so a system with a DITSCAP authorization has an EXPIRED authorization and the DAA should issue a DATO immediately unless the system owner can provide justifcation for continued operation AND sufficient documentation to allow the CA to evaluate the risk of continued operation and for DAA to accept the risk and issue an IATO until a full re-accreditation can be completed. Note that the DoD will soon be moving to RMF (risk management framework) so DITSCAP will be WAY, WAY out of date then!
Are dod instruction under DIACAP?
DIACAP is DoD Instruction 8510.01. In that respect, SOME DoD instructions fall under DIACAP, but most DoD instructions have nothing to do with DIACAP.
The dod is has signed phase one system security authorization agreement and is currently in ditscap phase three what is the next step?
Continue DITSCAP for a set period of time
Where will you find role descriptions for DIACAP team members?
DIACAP Knowledge Service.
What is the dod instruction which covers diacap?
DIACAP is established by DoD Instruction 8510.01.
Who are the diacap team members responsible for implementing diacap?
According to DODI 8500.2, the "DIACAP team members" are defined as: E2.25. DIACAP Team. Comprised of the individuals responsible for implementing the DIACAP for a specific DoD IS. At a minimum the DIACAP Team includes the DAA, the CA, the DoD IS program manager (PM) or system manager (SM), the DoD IS IA manager (IAM), IA officer (IAO), and a user representative (UR) or their representatives.
