Access this content
Your content has been opened.
System Integrity management Platform has been emailed to . Entered the wrong email?
Don't see the content in your inbox?
Make sure to check your spam and other messages folders.
Can't get to your email right now?
Please enter a valid verification code.
Code sent to:
Register to access this content
By accessing content on the Government Security Directory you agree to our Terms of Service and Privacy Policy; and, you acknowledge that your information may be shared with the content publisher.
An internal National Security Agency (NSA) research and development project created a new framework that emphasized two approaches. In the first, regular feedback is provided to developers about how various system design choices might cascade and ultimately impact security compliance. In the second, an automated continuous diagnostics and mitigation (CDM) capability was introduced. With this framework, a system automatically monitors itself to verify that it is correctly enforcing security policies. If inconsistencies are detected, it would automatically self-remediate back to the authorized state. The result of this effort is called the System Integrity Management Platform, or “SIMP”, which has proven successful for organizations inside and outside of government to significantly reduce the time needed to deploy new technology or, for government projects, achieve Certification & Accreditation (C&A).