DoDI 8510.01 国防部信息技术风险管理框架

ID:23089

大小:1.14 MB

页数:50页

时间:2022-11-28

金币:20

上传者:战必胜
Department of Defense
INSTRUCTION
NUMBER 8510.01
March 12, 2014
Incorporating Change 2, July 28, 2017
DoD CIO
SUBJECT: Risk Management Framework (RMF) for DoD Information Technology (IT)
References: See Enclosure 1
1. PURPOSE. This instruction:
a. Reissues and renames DoD Instruction (DoDI) 8510.01 (Reference (a)) in accordance
with the authority in DoD Directive (DoDD) 5144.02 (Reference (b)).
b. Implements References (c) through (f) by establishing the RMF for DoD IT (referred to in
this instruction as “the RMF”), establishing associated cybersecurity policy, and assigning
responsibilities for executing and maintaining the RMF. The RMF replaces the DoD
Information Assurance Certification and Accreditation Process (DIACAP) and manages the life-
cycle cybersecurity risk to DoD IT in accordance with References (g) through (k).
c. Redesignates the DIACAP Technical Advisory Group (TAG) as the RMF TAG.
d. Directs visibility of authorization documentation and reuse of artifacts between and
among DoD Components deploying and receiving DoD IT.
e. Provides procedural guidance for the reciprocal acceptance of authorization decisions and
artifacts within DoD, and between DoD and other federal agencies, for the authorization and
connection of information systems (ISs).
2. APPLICABILITY
a. This instruction applies to:
(1) OSD, the Military Departments, the Office of the Chairman of the Joint Chiefs of
Staff (CJCS) and the Joint Staff, the Combatant Commands, the Office of the Inspector General
of the Department of Defense (OIG DoD), the Defense Agencies, the DoD Field Activities, and
资源描述:

当前文档最多预览五页,下载文档查看全文

此文档下载收益归作者所有

当前文档最多预览五页,下载文档查看全文
温馨提示:
1. 部分包含数学公式或PPT动画的文件,查看预览时可能会显示错乱或异常,文件下载后无此问题,请放心下载。
2. 本文档由用户上传,版权归属用户,天天文库负责整理代发布。如果您对本文档版权有争议请及时联系客服。
3. 下载前请仔细阅读文档内容,确认文档内容符合您的需求后进行下载,若出现内容与标题不符可向本站投诉处理。
4. 下载文档时可能由于网络波动等原因无法下载或下载错误,付费完成后未能成功下载的用户请联系客服处理。
关闭