GAO: Federal Computer Security Poor | eWeek

GAO: Federal Computer Security Poor

Verfasst von
eWEEK EDITORS
eWEEK EDITORS
Sep 13, 2001
2 minute read
eWeek Inhalte und Produktempfehlungen sind redaktionell unabhängig. Wir können Geld verdienen, wenn Sie auf Links zu unseren Partnern klicken. Mehr erfahren

Federal computer systems remain wide open to malicious attacks and unauthorized entries, a new study from the General Accounting Office said.

The report – an annual review – found serious security weaknesses in computers run by the Department of Commerce, the Department of Defense, the Department of Health and Human Services, the Department of the Interior and the Internal Revenue Service.

“Although the nature of agency operations and risks vary, striking similarities remain in the specific types of . . . weaknesses reported and in their serious negative impact on an agencys ability to ensure the integrity, availability and appropriate confidentiality of its computerized operations,” the report said.

The report reprimands the government for poor security management, weak user access controls, and inadequate software development and continuity controls. Federal agencies were also criticized for not adequately separating users access to unrelated areas of their departmental systems.

The GAO also tested agency computer access protocols and found most cyberlocks easily picked.

“Our auditors have been successful, in almost every test, in readily gaining unauthorized access that would allow both internal and external intruders to read, modify or delete data,” the report said.

The report characterized the efforts of the National Infrastructure Protection Center, the nations chief cybercrime investigative arm, as “mixed.” The center received good marks for computer investigations, but was found lacking in cooperation with private-industry security groups.

“Of the four Information Sharing and Analysis Centers that had been established as focal points for infrastructure sectors, a two-way information sharing partnership with the NIPC has developed with only one: the electric power industry,” the report said.

The GAO also said the NIPC has been hobbled by the lack of a standard methodology for categorizing and acting on cyberthreats.

Few of the weaknesses outlined by the GAO are new. The accounting office has consistently criticized the governments computer security preparedness since 1996.

eWeek Logo

eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site's focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

Eigentum von TechnologyAdvice. © 2026 TechnologyAdvice. Alle Rechte vorbehalten

Werbetreibenden-Offenlegung: Einige der auf dieser Website erscheinenden Produkte stammen von Unternehmen, von denen TechnologyAdvice eine Vergütung erhält. Diese Vergütung kann beeinflussen, wie und wo Produkte auf dieser Website erscheinen, einschließlich beispielsweise der Reihenfolge, in der sie erscheinen. TechnologyAdvice schließt nicht alle Unternehmen oder alle auf dem Marktplatz verfügbaren Produkttypen ein.