Definitions[]
Security test and evaluation (ST&E) is a[n]
“ | [p]rocess to establish a high degree of confidence in the security of [a system] and to minimize threats.[1] | ” |
“ | [e]xamination and analysis of the safeguards required to protect an IT system, as they have been applied in an operational environment, to determine the security posture of that system.[2] | ” |
References[]
- ↑ Information Management: Challenges in Federal Agencies’ Use of Web 2.0 Technologies, at 12.
- ↑ DoD Instruction 5200.40, at 13 (E2.1.51).