US government failing on digital security

By

A report by the Government Accountability Office (GAO) has found that key US departments are failing to take data security seriously.


The 15 month investigation into twenty four major federal agencies found that around 70 per cent of laptops and handhelds didn’t use encryption, leaving the data available to anyone stealing them.

Since 2007 new rules from the Office of Management and Budget (OMB) require all federal laptops to be encrypted but these are largely being ignored. The report warned that many departments had not even begun to identify what data should be encrypted.

“We are recommending that OMB clarify governmentwide encryption policy to address agency efforts to plan for and implement encryption technologies,” said the report.

“We are also making recommendations to selected agencies to properly install and configure FIPS-compliant encryption technologies, to develop policies and procedures to manage encryption, and to provide encryption training to personnel.”

The report highlighted some unusually poor practice, including employees at Nasa refusing to put encryption software on their laptops and members of the Department of Education who weren’t told encryption software was installed so weren’t using it

The report makes 20 recommendations to improve the level of data security in government, including developing large scale education programs and a generic data encryption policy that can be rolled out across agencies.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers

Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies

Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames

Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound

Log In

  |  Forgot your password?