Which of the following phases of the DITSCAP C&A process is used to define the C&A level of effort, to identify the main C&A roles and responsibilities, and to create an agreement on the method for implementing the security requirements?
A.
Phase 3
B.
Phase 2
C.
Phase 4
D.
Phase 1