Assessment & Authorization

The A&A process establishes the extent to which a particular design and implementation, meet a set of specified security requirements defined by the organization, government guidelines, and federal mandates into a formal authorization package.

Best Segment for Countermeasure Deployment

Ground Segment

NIST Rev5 Controls

CA-2 - Control Assessments
CA-2(1) - Control Assessments | Independent Assessors
CA-2(2) - Control Assessments | Specialized Assessments
CA-5 - Plan of Action and Milestones
CA-6 - Authorization
RA-2 - Security Categorization

D3FEND Techniques

D3FEND Artifacts

None

ISO 27001

8.3 - Information security risk treatment
9.2.1 - General
9.2.2 - Internal audit programme
9.3.1 - General
9.3.3 - Management review results
10.2 - Nonconformity and corrective action
A.5.12 - Classification of information
A.5.30 - ICT readiness for business continuity
A.5.35 - Independent review of information security
A.5.36 - Compliance with policies, rules and standards for information security
A.8.2 - Privileged access rights

ID: CM0089

NASA Best Practice Guide: MI-AUTH-01 | MI-AUTH-02 | MI-INTG-01 | MI-DCO-02

ESA Space Shield Mitigation: None

Created: 2023/11/29

Last Modified: 2023/11/29

Techniques Addressed by Countermeasure

ID		Name	Description

Space Threats Addressed by Countermeasure

ID	Description