Weapon Systems Cybersecurity: Guidance Would Help DOD Programs Better Communicate Requirements to Contractors
Abstract
DOD's network of sophisticated, expensive weapon systems must work when needed, without being in capacitated by cyber attacks. However, GAO reported in 2018 that DOD was routinely finding cyber vulnerabilities late in its development process. A Senate report accompanying the National Defense Authorization Act for Fiscal Year 2020 included a provision for GAO to review DOD's implementation of cybersecurity for weapon systems in development. GAO's report addresses (1) the extent to which DOD has made progress in implementing cybersecurity for weapon systems during development, and (2) the extent to which DOD and the military services have developed guidance for incorporating weapon systems cybersecurity requirements into contracts. GAO reviewed DOD and service guidance and policies related to cybersecurity for weapon systems in development, interviewed DOD and program officials, and reviewed supporting documentation for five acquisition programs. GAO also interviewed defense contractors about their experiences with weapon systems cybersecurity.
Document Details
- Document Type
- Technical Report
- Publication Date
- Mar 01, 2021
- Accession Number
- AD1149639
Entities
People
- Andrew Berglund
- Anne L. Taylor
- Brandon M Booth
- Laura Greifner
- Lori Fields
- Mary Diop
- Raj Chitikila
- W. W. Russell
Organizations
- United States Government Accountability Office