Secure Software Lifecycle Professional – CSSLP – Question200 - Secure Software Lifecycle Professional

The Phase 3 of DITSCAP C&A is known as Validation. The goal of Phase 3 is to validate that the preceding work has produced an IS that operates in a specified computing environment. What are the process activities of this phase? Each correct answer represents a complete solution. Choose all that apply.

A. Certification and accreditation decision
B. Continue to review and refine the SSAA
C. Perform certification evaluation of the integrated system
D. System development
E. Develop recommendation to the DAA

Correct Answer: ABCE

Explanation:

Explanation: The Phase 3 of DITSCAP C&A is known as Validation. The goal of Phase 3 is to validate that the preceding work has produced an IS that operates in a specified computing environment. The process activities of this phase are as follows: Continue to review and refine the SSAA Perform certification evaluation of the integrated system Develop recommendation to the DAA Certification and accreditation decision Answer: D is incorrect. System development is a Phase 2 activity.