Security test and evaluation (ST&E) is a[n]
|“||[p]rocess to establish a high degree of confidence in the security of [a system] and to minimize threats.||”|
|“||[e]xamination and analysis of the safeguards required to protect an IT system, as they have been applied in an operational environment, to determine the security posture of that system.||”|
- Information Management: Challenges in Federal Agencies’ Use of Web 2.0 Technologies, at 12.
- DoD Instruction 5200.40, at 13 (E2.1.51).