The IT Law Wiki


32,062pages on
this wiki
Add New Page
Add New Page Talk0

Definitions Edit

Reciprocity is a

[m]utual agreement among participating enterprises to accept each other's security assessments in order to reuse information system resources and/or to accept each other's assessed security posture in order to share information.[1]
[r]ecognition and acceptance, without further processing, of: (1) security background investigations and clearance eligibility determinations; (2) accreditations of information systems; and (3) facility accreditations. Reciprocity is obligatory in the IC when there are no waivers, conditions, or deviations to Director of National Intelligence security standards.[2]

References Edit

  1. NIST Special Publication 800-53, Rev. 3.
  2. Intelligence Community Standard 700-01, at 19.

Also on Fandom

Random Wiki