NASA Information Security Is Still Broken
Follow-up Evaluation of NASA’s Implementation of Executive Order 13526, Classified National Security Information, NASA OIG
“Although NASA has taken steps to implement our prior recommendations, we continued to identify inconsistencies in the Agency’s application of CNSI policies and procedures that led to improper marking of classified documents. This occurred because of insufficient identification and training of classifiers. Further, implementation of the Agency’s self-inspection program was not fully effective because NASA Centers did not consistently review documents to verify the accuracy of classified markings. Improved identification and training of classification officials and effective self-inspections would help ensure classified information at NASA is managed in accordance with Federal requirements.”
Information Security: NASA Needs to Improve Controls over Selected High-Impact Systems. GAO-16-688SU, September 23, GAO (Restricted report)
Maybe they should run for President?
I have no clearances, so I have no idea to what this refers, but it’s pretty much of a reach to extrapolate from CNSI to the hugely (to coin a phrase) more extensive IT security issues that the agency has. The large-scale issues have to do with things like leaving an unencrypted laptop with hundreds of peoples’ PII in a car trunk, or trusting the OPM to secure employees’ sensitive information.
NASA has some information that is proprietary or confidential, but I am not aware of any that is classified, or has been since the last military shuttle launch. If anyone knows what this is about please let us know. .. unless, you know, it’s secret.
I can’t think of anything, but there are some marginal cases. NASA has flown instruments as a “mission of opportunity” or hosted payload on national security spacecraft. They ones I’m familiar with have a very elaborate firewall to keep any classified information away from the science team.
On the other hand, the alien life discovered on Pluto is a very highly classified secret. Unfortunately, H. P. Lovecraft leaked that almost a hundred years ago.