Designated Approval Authority (C.F.D.)

Designated Approval Authority (C.F.D.) definition in Computer Security terms:

Acronym(s): DAA

Definition(s): Official with the authority to formally assume responsibility for operating a system at an acceptable level of risk. This term is synonymous with authorizing official, designated accrediting authority, and delegated accrediting authority.
Source(s): CNSSI 4009-2015

Synonym(s): Authorizing Official
Official with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to agency operations (including mission, functions, image, or reputation), agency assets, or individuals.
Source(s): FIPS 200 NIST SP 800-18 Rev. 1 NIST SP 800-60 Vol 1 Rev. 1 A senior (federal) official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation.
Source(s): NIST SP 800-128 NIST SP 800-37 Rev. 1 NIST SP 800-53 Rev. 4 NIST SP 800-137 NIST SP 800-53A Rev. 4 CNSSI 4009-2015 Senior (federal) official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation.
Source(s): NIST SP 800-39 NIST SP 800-30 Senior federal official or executive with the authority to formally assume responsibility for operating an information system at an acceptable level of risk to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation.
Source(s): NIST SP 800-161 Delegated Accrediting Authority
Designated Accrediting Authority
Designated Approving Authority

 

reference: CSRC Glossary