CreatorTim Ramey
Description
The analysis in Phase 3 informs the DCT and OTA on appropriate threat level, threat tactics, user/operational considerations, and testing tools needed to support DT&E and OT&E adversarial testing in a mission context. At this point in the cybersecurity T&E process, primary responsibility shifts to the test community, with support from the SE community, to define the test strategy. The attack surface analysis is a planning and tracking tool to track what needs testing, what was tested, and what will not be tested. Contractor test activities shouldbe planned as the first opportunity to perform Phases 3 and 4 activities with government DT&E and OT&E integration. The government testers can provide sanitized, relevant threat information as well as specialized test tools.Owning Diagram A2: Phase 2: Characterize Attack Surface
cybersecurity T&E strategy update
Test and Evaulation Master Plan (TEMP)