Federal Computer Security Gets Failing Grade

Government Reform Committee Oversight Hearing: No Computer System Left Behind: A Review of the 2005 Federal Computer Security Scorecards, March 16, 2006.

Please note, the links to the House Committee originally cited in this posting are no longer available. For alternative access to the some of the same information, please see the following:

Washington Post: DHS Gets Another F in Computer Security – Annual ‘Report Card’ Contends Many Key Agencies Don’t Adequately Protect Networks

FEDERAL COMPUTER SECURITY REPORT CARD, March 16, 2006

Federal Computer Security Grades, 2001-2005, Wednesday, March 15, 2006

[Link to witness statements and related documentation]

“Background: Our economy and government have become more and more dependent on information technology and the Internet. Government agencies have improved the efficiency of their operations and services to citizens through electronic government initiatives. Given the interconnectivity of systems, all it takes is one weak link to break the chain. We must guard our information systems from hackers, terrorists, hostile foreign governments, and identity thieves to protect our national security, allow for continuity of government operations, and ensure the privacy of citizens personal information. An attack could originate anywhere at anytime. Unfortunately, last year’s overall grade for the government was only a D+.”

Computer Security Report Card 2005 (1 page, PDF)
“… agency compliance with the Federal Information Security Management Act (FISMA).”

Sixth Report Card on Computer Security at Federal Departments and Agencies: Overall Grade D+ (1 page, PDF)

Federal Computer Security Grades – 2001-2005 (1 page, PDF)

How Grades Were Assigned (3 pages, PDF)

Facebook Tweet LinkedIn

M	T	W	T	F	S	S
« Oct
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30