GAO raps feds on cybersecurity


A 2008 cybersecurity blueprint laid out and funded by the Bush administration remains largely unfulfilled, according to the Government Accountability office (GAO). As a result, the GAO said in a new report that the secret federal cybersecurity program started by President Bush, and now declassified by President Obama, has been largely ineffective, with many agencies still lacking clearly defined roles and safeguards still not in place.

The report focused on the Comprehensive National Cybersecurity Initiative (CNCI), a blueprint outlining 12 government cybersecurity programs. The GAOs said CNCI called for White House officials to centralize their cybersecurity efforts to facilitate information-sharing among agencies and departments, a task that remains incomplete and fraught with confusion.

The report said the government still has a long way to go before fully securing its computer systems, which includes "reducing potential vulnerabilities, protecting against intrusion attempts, and anticipating future threats."

The congressional watchdog agency also cited challenges involving coordination with international entities and building a government-wide identity management and authentication system.

To get the full picture:
- read this article in The Hill
- here's the GAO report

Related Articles:
Secret agency goes public with budget request
Obama declassifies parts of cybersecurity plan