CYBERSECURITY: Continued Efforts Are Needed to Protect Information Systems From Evolving Threats
Abstract
As computer technology has advanced, federal agencies have become dependent on computerized information systems to carry out their operations and to process, maintain, and report essential information. Virtually all federal operations are supported by automated systems and electronic data, and agencies would find it difficult, if not impossible, to carry out their missions, deliver services to the public, and account for their resources without these information assets. Information security is thus especially important for federal agencies to ensure the confidentiality, integrity, and availability of their information and information systems. Conversely, ineffective information security controls can result in significant risk to a broad array of government operations and assets. Examples of such risks include the following: Resources, such as federal payments and collections, could be lost or stolen. Computer resources could be used for unauthorized purposes or to launch attacks on other computer systems. Sensitive information, such as taxpayer data, Social Security records, medical records, intellectual property, and proprietary business information, could be inappropriately disclosed, browsed, or copied for purposes of identity theft, espionage, or other types of crime. Critical operations, such as those supporting critical infrastructure, national defense, and emergency services, could be disrupted. Data could be added, modified, or deleted for purposes of fraud, subterfuge, or disruption.
Document Details
- Document Type
- Technical Report
- Publication Date
- Nov 17, 2009
- Accession Number
- ADA516401
Entities
People
- David A. Powner
- Gregory C. Wilshusen
Organizations
- United States Government Accountability Office