You work as a security manager for BlueWell Inc. You are going through the NIST SP 800-37 C&A methodology, which is based on four well defined phases. In which of the following phases of NIST SP 800-37 C&A methodology does the security categorization occur 

Answer options:

A. Continuous Monitoring
B. Initiation
C. Security Certification
D. Security Accreditation

B