DSD Logo


"The job is not finished until the customer is satisfied."







Information Assurance
About Us Nav Bar
Why DSD Nav Bar
Services Nav Bar
Contracts Nav Bar
Careers Nav Bar
Contacts Nav Bar


Security Certification
& Accreditation

Computer Security
Planning & Training

Disaster Recovery & Contingency Planning

Network & System Vulnerability/Threat ID

Common Criteria Testing Laboratory

Independent Validation
& Verification

Steganography Analysis
and Research Center

PCI Compliance

Managed Network Security Support Services


All Services




Independent Verification and Validation (IV&V)

The Software Engineering Institute (SEI) Capability Maturity Models (CMM) defines Validation and Verification as Level 3 Engineering Process Areas. Validation, as defined in “CMMI Guidelines for Process Integration and Product Improvement,” is to demonstrate that products or product components fulfill their intended purpose when placed in their intended environment. Verification ensures that selected work products meet their specified requirements.

The objective is to minimize your risk and maximize your benefits from implementing new products, systems, and applications.

Lines of Business have significant investments in new applications, systems, processes, architectures, training and procedures. Prior to implementation, concerns are raised: Will the new system work in the agency’s infrastructure? How will it work with other applications? What impact will the new application have on the infrastructure? Will the new application introduce any security vulnerabilities? Do we need additional infrastructure investment? How can we cost effectively assess these impacts?

DSD can minimize your risk with our DSD Information Assurance Laboratory (DIAL). Because of our experience as a Common Criteria Testing Laboratory (CCTL), DIAL has developed a rigorous, comprehensive test methodology to answer these key questions. DIAL uses a System Development Life Cycle (SDLC) methodology, tailored for each customer’s needs to address a system or component set. (Attached Exhibit)

DIAL is a secure 4100 square foot facility in Fairmont, WV dedicated to IV&V testing. The facility is well equipped to perform all testing operations and contains four dedicated test areas, each network capable with a cipher-lock secured entrance. Substantial space is also available to overflow test capability.

It is staffed, full-time, by a multi-disciplined team with expertise in full-spectrum IT infrastructure from the WAN entry point of the carrier through application layers of systems and components. DIAL’s staff is cleared and has both civilian and military agency experience.

DIAL IV&V Process
DSD can independently verify and validate applications by testing them in their intended environments. Typically, DIAL would leverage an agency’s current operating environment. Alternatively, DIAL could construct a test environment, install the application, and test it. DIAL would examine resource usage (bandwidth, memory, disk space, etc.) issues as well as integration issues with operating infrastructures. DIAL minimizes risk while maximizing benefits.


SDLC Phase
Typical Tailorable DSD Process Steps
Typical Techniques
DSD Deliverable
(System Request)
Identify Opportunity
Project Identification
System Request
Analyze Feasibility
Review Technical Feasibility
Assess Economic Feasibility
Examine Organizational Feasibility
Feasibility Analysis
Develop Workplan
Time Estimation
Task Identification
Work Breakdown Structure
Pert Chart
Scope Management
Staff Project
Project Staffing
Project Charter
Staffing Plan
Control and Direct

CASE Repository
Determine Standards
Manage & Identify Documentation
Risk Management

Standards List
Risk Assessment

(System Proposal)
Develop Analysis Strategy
Business Process Automation
Business Process Improvement
Business Process Reengineering
System Proposal
Determine Business Requirements
Interview key Stakeholders
JAD session
Document Analysis
Requirements Definition
Create Use Cases
Use-Case Analysis
Use Cases
Model Processes
Data Flow Diagramming
Process Models
Model Data
Entity Relationship Modeling
Data Model
Develop Continuity of Operation
Risk Management
Verify Standard, e.g. PDD-67
Disaster Recovery Plan
(System Specification)
Design Physical System
Design Selection
Data Flow Diagramming
Entity Relationship Modeling
Physical Process Models
Physical Data Model
System Specification
Design Architecture
Architecture Design
Hardware & Software Selection
Architecture Report
Hardware & Software Specifications
Design Interface
Use Scenario Modeling (Design Reference Mission Profile, DRMP)
Validate Interface Standards
Review Interface Prototype
Analyze Interface Evaluation
Interface Design
Design Databases and Files
Data Format Selection
Performance Tuning
Size Estimation
Data Storage Design
Design Programs
Transform Analysis
Program Structure Chart
Program Specification
Program Design
(Installed System)
Construct System

Software Testing
Performance Testing
Test Plan
Deployment of System

Deployment Strategy Session
System Delivery
Install System
Conversion Style Selection
Conversion Plan
Training Plan
Maintain System
Support Selection
System Maintenance
Project Assessment
Support Plan
Problem Report
Change Request
Post implementation
Post implementation Audit
Post implementation Audit Report

DSD Laboratories, Inc Copyright © 2007, All rights reserved.