skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: The evolving story of information assurance at the DoD.

Abstract

This document is a review of five documents on information assurance from the Department of Defense (DoD), namely 5200.40, 8510.1-M, 8500.1, 8500.2, and an ''interim'' document on DIACAP [9]. The five documents divide into three sets: (1) 5200.40 & 8510.1-M, (2) 8500.1 & 8500.2, and (3) the interim DIACAP document. The first two sets describe the certification and accreditation process known as ''DITSCAP''; the last two sets describe the certification and accreditation process known as ''DIACAP'' (the second set applies to both processes). Each set of documents describes (1) a process, (2) a systems classification, and (3) a measurement standard. Appendices in this report (a) list the Phases, Activities, and Tasks of DITSCAP, (b) note the discrepancies between 5200.40 and 8510.1-M concerning DITSCAP Tasks and the System Security Authorization Agreement (SSAA), (c) analyze the DIACAP constraints on role fusion and on reporting, (d) map terms shared across the documents, and (e) review three additional documents on information assurance, namely DCID 6/3, NIST 800-37, and COBIT{reg_sign}.

Authors:
Publication Date:
Research Org.:
Sandia National Laboratories
Sponsoring Org.:
USDOE
OSTI Identifier:
902561
Report Number(s):
SAND2006-7179
TRN: US200719%%9
DOE Contract Number:
AC04-94AL85000
Resource Type:
Technical Report
Country of Publication:
United States
Language:
English
Subject:
99 GENERAL AND MISCELLANEOUS//MATHEMATICS, COMPUTING, AND INFORMATION SCIENCE; CLASSIFICATION; SECURITY; US DOD; INFORMATION SYSTEMS; Intelligence service.; Information technology; United States-Management.; Military intelligence.; Information systems.; Technology-Information services.

Citation Formats

Campbell, Philip LaRoche. The evolving story of information assurance at the DoD.. United States: N. p., 2007. Web. doi:10.2172/902561.
Campbell, Philip LaRoche. The evolving story of information assurance at the DoD.. United States. doi:10.2172/902561.
Campbell, Philip LaRoche. Mon . "The evolving story of information assurance at the DoD.". United States. doi:10.2172/902561. https://www.osti.gov/servlets/purl/902561.
@article{osti_902561,
title = {The evolving story of information assurance at the DoD.},
author = {Campbell, Philip LaRoche},
abstractNote = {This document is a review of five documents on information assurance from the Department of Defense (DoD), namely 5200.40, 8510.1-M, 8500.1, 8500.2, and an ''interim'' document on DIACAP [9]. The five documents divide into three sets: (1) 5200.40 & 8510.1-M, (2) 8500.1 & 8500.2, and (3) the interim DIACAP document. The first two sets describe the certification and accreditation process known as ''DITSCAP''; the last two sets describe the certification and accreditation process known as ''DIACAP'' (the second set applies to both processes). Each set of documents describes (1) a process, (2) a systems classification, and (3) a measurement standard. Appendices in this report (a) list the Phases, Activities, and Tasks of DITSCAP, (b) note the discrepancies between 5200.40 and 8510.1-M concerning DITSCAP Tasks and the System Security Authorization Agreement (SSAA), (c) analyze the DIACAP constraints on role fusion and on reporting, (d) map terms shared across the documents, and (e) review three additional documents on information assurance, namely DCID 6/3, NIST 800-37, and COBIT{reg_sign}.},
doi = {10.2172/902561},
journal = {},
number = ,
volume = ,
place = {United States},
year = {Mon Jan 01 00:00:00 EST 2007},
month = {Mon Jan 01 00:00:00 EST 2007}
}

Technical Report:

Save / Share:
  • The basic objective of this study was to assess the potential for cooperative projects between the Department of Energy (DOE) and the Department of Defense (DOD) in areas concerned with the development of Total Energy (TE) Systems and to do the groundwork and liaison necessary to initiate those projects. The scope of the potential joint projects includes cooperative effort in the development and test of a variety of heat engines (prime movers) capable of utilizing coal as well as synthetic liquid fuels derived from coal and oil shale; as well as the indication of potential Military Department sites which wouldmore » be suitable for the demonstration of TE systems based on a variety of such prime movers. In order to accomplish the objective of the study, it was necessary to review a large number of DOD studies and plans and to discuss the objective of the TETAS studies with a large number of Military Department people. The DOD recognizes the requirement for an assured energy supply and the need to learn how to use the synthetic fuels from coal and shale being developed by the DOE. The need to modify engine systems to adapt them to differing fuel characteristics and make those engines more flexible relative to the range of fuels they will accept is clear. What is not so clear is the fact that the DOD has a much greater opportunity to conserve energy in now inefficient facility operations than it has in mobility operations which must continue to stress mission and high performance. This report indicates guidelines for the conduct of joint projects between the DOE and the DOD which can aid both in meeting their energy objective.« less
  • PNNL successfully completed the three tasks: Task 1 - This task provided DISA with an updated set of design checklists that can be used to measure compliance with the Style Guide. These checklists are in Microsoft{reg_sign}Word 6.0 format. Task 2 - This task provided a discussion of two basic models for using the Style Guide and the Design Checklist, as a compliance tool and as a design tool.
  • The Land Information System (LIS) was developed to use advanced flexible land surface modeling and data assimilation frameworks to integrate extremely large satellite- and ground-based observations with advanced land surface models to produce continuous high-resolution fields of land surface states and fluxes. The resulting fields are extremely useful for drought and flood assessment, agricultural planning, disaster management, weather and climate forecasting, water resources assessment, and the like. We envisioned transforming the LIS modeling system into a scientific cloud computing-aware web and data service that would allow clients to easily setup and configure for use in addressing large water management issues.more » The focus of this Phase 1 project was to determine the scientific, technical, commercial merit and feasibility of the proposed LIS-cloud innovations that are currently barriers to broad LIS applicability. We (a) quantified the barriers to broad LIS utility and commercialization (high performance computing, big data, user interface, and licensing issues); (b) designed the proposed LIS-cloud web service, model-data interface, database services, and user interfaces; (c) constructed a prototype LIS user interface including abstractions for simulation control, visualization, and data interaction, (d) used the prototype to conduct a market analysis and survey to determine potential market size and competition, (e) identified LIS software licensing and copyright limitations and developed solutions, and (f) developed a business plan for development and marketing of the LIS-cloud innovation. While some significant feasibility issues were found in the LIS licensing, overall a high degree of LIS-cloud technical feasibility was found.« less