Authorize Processing

From FISMApedia
Jump to: navigation, search

NIST SP 800-18r1

See Accreditation.

NIST SP 800-26

Authorize Processing occurs when management authorizes in writing a system based on an assessment of management, operational, and technical controls. By authorizing processing in a system the management official accepts the risks associated with it. See also Accreditation, Certification, and Designated Approving Authority.

NIST SP 800-37

See Accreditation.

NIST SP 800-53AdF

See Accreditation.

NIST SP 800-53r1

The official management decision given by a senior agency official to authorize operation of an information system and to explicitly accept the risk to agency operations (including mission, functions, image, or reputation), agency assets, or individuals, based on the implementation of an agreed-upon set of security controls.

NIST SP 800-53r2

See Accreditation.