News & Information for Technology Purchasers
NewsFactor Network Sites:   NewsFactor.com Security CRM Business Sci-Tech Newsletters XML/RSS Feed  
   
Home Enterprise I.T. Hardware Software Communications More Topics...
Network Security
Average Rating:
Rate this article:  
FBI Network Still Not So Secure, Says GAO FBI Network Still Not So Secure, Says GAO
By Frederick Lane
May 26, 2007 9:37AM

    Bookmark and Share
The GAO report about FBI network security illustrates that the FBI "underestimates the insider risk," according to Congressman James Sensenbrenner, who also said that the FBI is "ignoring the sad lessons of the past." Sensenbrenner wants "to see the FBI Director hold someone accountable for this indifference to network security," while the report outlines specific security flaws to be fixed.
 



A report issued by the U.S. Government Accountability Office (GAO) at the end of last month strongly criticizes the efforts by the Federal Bureau of Investigation (FBI) to protect "the confidentiality, integrity, and availability of law enforcement and investigative information" on its new Trilogy data Relevant Products/Services network Relevant Products/Services.

The GAO listed seven specific flaws in the FBI's handling of data and maintenance of its new network, and concluded that, "Taken collectively, these weaknesses place sensitive information transmitted on the network at increased risk of unauthorized disclosure or modification, and could result in a disruption of service Relevant Products/Services."

John Miller, the FBI's Assistant Director for Public Affairs, said that, "The majority of issues and recommendations brought up in the GAO report have been previously identified by the FBI through our own audits and internal controls. The report omitted the fact that the FBI already has corrective action plans in place that proactively and aggressively address information security issues."

Dean Hall, the FBI's Deputy CIO, and Charles Fred Newberry, Jr., Section Chief for the Information Assurance Division, responded to the report and agreed with many of the GAO's technical recommendations. "However," they said, "the FBI takes exception with the GAO's conclusion that the collective result of the information security weaknesses identified by the GAO present an increased risk to FBI information. The FBI does not agree that it has placed sensitive information at an unacceptable risk for unauthorized disclosure, modification, or insider threat exploitation."

'Sad Lessons of the Past'

The GAO investigation was commissioned by U.S. Representative James Sensenbrenner (R-Ohio) when he was serving as chair of the House Judiciary Committee during the last Congress. In a press release, Rep. Sensenbrenner noted that similar problems were identified in 2001, and called on FBI Director Robert S. Mueller, III, to hold someone accountable for the network flaws.

"This report illustrates that the FBI underestimates the insider risk," said Sensenbrenner.

"This baffles me," he said, "given the incredible damage former FBI agent Robert Hanssen inflicted on the FBI's worldwide intelligence network, primarily because he knew exactly how to extract information from the system Relevant Products/Services. Now the FBI has installed two-thirds of the Trilogy system at a cost approaching half a billion dollars, and, once again, it is ignoring the sad lessons of the past."

Not Just the FBI

Largely overlooked in the media coverage of the GAO report is the grim fact that the government oversight agency has been warning of similar problems for a full decade. "We have designated information security as a government-wide, high-risk area since 1997," the GAO report said, "a designation that remains today."

In December 2002, partially in response to those warnings, Congress passed the Federal Information Security Management Act (FISMA), which requires every federal agency to improve its information security. The FBI response to FISMA was the Information Technology Upgrade Project, which later became known as Trilogy.

The GAO report raises serious questions about whether the half-billion spent on Trilogy has been effectively allocated.
 

Tell Us What You Think
Your Comment:



Advertisement


 Network Security
1.   China Cyberattacks: Pervasive Threat
2.   Patch Tuesday Will Tie MS Record
3.   Cybersecurity Appears Hot for 2010
4.   EPIC Objects To Google-NSA Ties
5.   Torrent Traps Used To Harvest Logins


advertisement
EPIC Objects To Google-NSA TiesEPIC Objects To Google-NSA Ties
Cyberattack meant to rattle Google?
Average Rating:
Torrent Traps Used To Harvest LoginsTorrent Traps Used To Harvest Logins
Web sites sold with backdoor access.
Average Rating:
Social Networks: A Hacker's DelightSocial Networks: A Hacker's Delight
Workers urged to be 'trained skeptics.'
Average Rating:
Product Information and Resources for Technology You Can Use To Boost Your Business

Enterprise Hardware Spotlight
Nvidia Auto-Switches Notebook GPU To Save Battery Life
Nvidia has taken the wraps off a notebook technology that chooses the best graphics processor for any given application and automatically routes the workload to Nvidia or Intel processors.
 
Microsoft Says Battery Woes Not Caused By Windows 7
Battery problems on Windows 7 machines are not caused by the operating system. That's the position of Stephen Sinofsky, head of the Windows division, in a long posting on the Windows engineering blog.
 
IBM's New POWER7 Servers Save Energy with Big Loads
IBM has unveiled high-capacity servers that are the first to be based on its new, multi-core POWER7 chip. It said the new line is designed "to manage the most demanding emerging applications."
 

Enterprise Technology Spotlight
Intel Launches Quad-Core Itanium 9300 Series Processor
After two unexpected delays, Intel has launched the Itanium 9300 series, a 64-bit, quad-core processor code-named Tukwila that is expected to double the performance of its predecessor.
 
Google May Add Facebook, Twitter Links to Gmail
Google will reportedly roll more social-networking features into Gmail, the fastest-growing e-mail service. The new features could save users the trouble of switching to Facebook or Twitter.
 
IBM's New POWER7 Servers Save Energy with Big Loads
IBM has unveiled high-capacity servers that are the first to be based on its new, multi-core POWER7 chip. It said the new line is designed "to manage the most demanding emerging applications."
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Hardware | Software | Communications | Network Security | Wireless Tech | Linux/Open Source
Apple/Macintosh | Microsoft/Windows | World Wide Web | Data Storage | E-Commerce | Personal Tech | Tech Trends | Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | Free Whitepapers | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2010 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo.