Which of the following DoD directives defines DITSCAP as the standard C&A process for the Department of Defense.
Click on the arrows to vote for the correct answer
A. B. C. D.C.
The correct answer is B. DoD 8910.1.
DITSCAP (Department of Defense Information Technology Security Certification and Accreditation Process) is a process used by the Department of Defense (DoD) to certify and accredit information systems. It was replaced by DIACAP (DoD Information Assurance Certification and Accreditation Process), which has now been replaced by RMF (Risk Management Framework).
DoD 5200.22-M, titled "National Industrial Security Program Operating Manual," provides guidance for industrial security in government contracts. This manual does not specifically address DITSCAP.
DoD 5200.40, titled "DoD Information Technology Security Certification and Accreditation Process (DITSCAP)," provides guidance for DITSCAP. This directive does not define DITSCAP as the standard C&A process for the DoD.
DoD 8000.1, titled "Management of the Department of Defense Information Enterprise," provides guidance for managing the DoD information enterprise. This directive does not address DITSCAP.
DoD 8910.1, titled "DoD Information Assurance Certification and Accreditation Process (DIACAP)," is the directive that defines DITSCAP as the standard C&A process for the DoD. This directive was later replaced by the RMF, which is currently used by the DoD for the certification and accreditation of information systems.
In summary, DoD 8910.1 is the correct answer as it specifically defines DITSCAP as the standard C&A process for the DoD.