RSS Alerts

Related Links

Related Stories

  • US loses cyberwarfare game
    A simulated cyber attack has shown once again that the US is unprepared for cyberwarfare, a year after the federal government conducted an extensive review of its cyber security stance.
  • US to be hit by simulated cyberattack
    On Tuesday, the US will undergo a simulated cyberattack to help policymakers decide how well the country would cope.
  • Los Alamos fails to toe information security line again
    Los Alamos National Laboratory has spent $45 million on information security for its classified computer network in the past eight years, but it is still inadequate, according to a report from the Government Accountability Office.
  • Swine flu could give internet a cold
    A physical pandemic such as the swine flu (H1N1) could swamp internet service providers serving residential users, according to a report from the Government Accountability Office – and the Department Of Homeland Security doesn't have a plan to deal with it.
  • GAO slams Federal agencies for poor information security
    The Government Accountability Office criticised Federal agencies this week for poorly implementing information security controls, arguing that most of them were deficient.
  • Largest US Power Company “Vulnerable To Hacking”
    The US Government Accountability Office (GAO) warned the nation’s largest public power company is vulnerable to computer hackers and terrorists ready to disrupt America’s power grid.

News

US government not properly coordinating cybersecurity efforts, warns GAO

09 March 2010

The US government is still failing on cybersecurity thanks to a lack of clear definitions among different agencies, the US Government Accountability Office has warned.

In a report issued last Friday, the GAO addressed the Comprehensive National Cyber Security Initiative (CNCI), which is a highly secretive initiative launched by the Bush administration in early 2008. The Office was asked to investigate how different federal agencies have been pulled together to plan and coordinate CNCI activities. It was also requested to identify the challenges faced by the initiative into achieving its objectives.

In a report entitled Cybersecurity: Progress Made but Challenges Remain in Defining and Coordinating the Comprehensive National Initiative, the GAO identified several critical challenges.

"Federal agencies have overlapping and uncoordinated responsibilities for cybersecurity, and it is unclear where the full responsibility for coordination lies," the GAO said. This will not please Howard Schmidt, who was appointed US cybersecurity czar almost a whole quarter ago in late December. It is his job to coordinate the federal cybersecurity efforts, and get all agencies working together.

The report also identified shortcomings in measurement processes that would evaluate the CNCI's success, adding that this was not for want of available mechanisms. "While federal agencies have begun to develop effectiveness measures for information security, these have not yet been applied to the initiative," it warned.

The GAO also criticized the level of opacity surrounding the CNCI, adding that the rationale for classifying related information remains unclear. This makes it difficult to coordinate efforts with private sector organizations, which has become a critical part of the Obama administration's cybersecurity drive.

It is still not even clear how much each CNCI should address public education on cybersecurity, the report complained, before outlining other challenges that go beyond the initiative. "The federal government does not have a formal strategy for coordinating outreach to international partners for the purposes of standards setting, law enforcement, and information sharing," it warned. Secondly, federal identity management and authentication mechanisms remain a "significant governmentwide challenge". 

 

This article is featured in:
Compliance and Policy Public Sector Security Training and Education

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Copyright © 2010
Elsevier Ltd. All rights reserved.
Terms & Conditions | Privacy | Website Design Working with water