ABSTRACT
Having identifi ed risks and steps taken to mitigate those risks, the question remains as to whether steps have been taken to satisfy various levels of authority within the system. For those who have an information management and information technology (IM/IT) security background, the concept of certifying security measures and accrediting participation in a networked context will be relatively straightforward. For those outside this community, this describes a series of eff orts that intend to manage risk in an auditable, accountable, and actionable system. Here the same concept applies to the context of the transportation system.
