Automated Information System Security Accreditation Guidelines

摘要

The Federal Aviation Administration's publication, 'Automated Information System Security Accreditation Guidelines,' provides procedures for the preparation of documentation required for security accreditation of automated information systems. It has been designed to make the accreditation process as straightforward as possible for any system, whatever its purpose or level of complexity. The accreditation process requires the identification of the data processing activities in the data processing installation and the completion of the forms in this guideline to develop a security profile of the system, conduct a risk assessment and document contingency plans. A Designated Approving Authority then signs the accreditation statements that formally accept the risks to each data processing activity.