All components of an information system to be authorized for operation by an authorizing official and excludes separately authorized systems, to which the information system is connected.

Source: CNSSI 4009-2015 | Category: