Internet Policies: April 2020 Archives

NASA Internal Memo: Website Modernization and Enhanced Security Protocols 15 May 2019 (PDF)

"Currently there are an estimated 3,000 public-facing NASA Web sites, yet the top 10 sites receive 80 percent of all Web traffic. Additionally, some NASA partners operate Web sites on our behalf outside of the Agency, creating redundancy and accumulating unnecessary costs. Not only does this duplication of information cause confusion, each Wen site provides potential access for a cyber-attack on NASA's assets. The shutdown earlier this year gave us a clear view of the cyber vulnerabilities inherent in operating thousands of Web sites. We need to take steps to protect our resources in a hostile cyber landscap, examine our digital footprint, reduce costs, and maximize the effectiveness of communications efforts. In addition to security risk, multiple sites dilute our effectiveness in communicating key messages about our missions."

Keith's update: OK. In 2 weeks it will have been a year since the NASA Administrator told NASA to get its whole Internet act together. Has anyone actually done anything called for in his memo? The CIO shows no evidence of having done so (no surprise). She is leaving NASA this week - so there won't be much incentive to pick up this task there. As for PAO they seem to be perfectly content to list multiple NASA maintained websites for the same mission in their press releases. It is not even clear who is responsible for implementing this directive. I have heard that the task was tossed into the Chief Scientist's lap - that makes no sense. SMD issued a memo about this in September 2019 yet little seems to have been done since then.

In last year's memo Jim Bridenstine said "The shutdown earlier this year gave us a clear view of the cyber vulnerabilities inherent in operating thousands of Web sites." Here we are a year later with an even more extensive shutdown - with everyone, everywhere - relying upon the Internet - for everything. The whole #NASAatHome thing is great but it lacks an overall strategy. Its like HBO and Showtime making everything free for a month so you can binge watch. NASA simply takes everything it has and throws it out at everyone - everywhere. They have so many websites and Twitter accounts that there is little, if any, strategic coordination between these various efforts. They are counting on sheer volume. Soon the content is going to get stale. Then what? It's like a monstrous swarm of bees - NASA lets them loose and eventually they will sting something, somewhere.

One would hope that this second dose of living and communicating virtually will finally get the message through to NASA. Your cool stuff often gets out to people in spite of your efforts to communicate - and not always because of these efforts.

It takes more than a Twitter hashtag and a few buzz words to coordinate things, NASA. Sure, you'll get a sugar rush when the SpaceX and Mars 2020 launches happen - but then its back to the same old, same old. We're all in this remote collaboration thing for the long haul. Its time to start thinking that way.

- NASA Just Can't Stop Doing Web Stuff Twice UPDATE: Three Times, earlier post
- NASA's Confusing ICESAT-2 Websites, earlier post
- Progress Made In Making NASA's Internet Presence Leaner, earlier post
- Dueling NASA Websites Update, earlier post

Update

NASA Bans Use Of Zoom

NASA Internal Memo: NASA's Authorized Internal and External Collaboration Tools, NASA CIO

"The NASA CIO has worked for the past several years to establish a consistent and modern set of tools to support both internal and external collaboration. While there is still work to do to support some of the more complex use-cases, such as sharing sensitive data with foreign partners, many others are met through Agency approved collaboration tools. A site has been established, with current approved collaboration resources."

"Zoom is not licensed nor authorized for use by NASA employees and contractors, and is not allowed on NASA IT devices. This includes all Government Furnished Equipment (GFE) or contractor-provided equipment, or any device that connects to the NASA network or VPN. This includes desktops, laptops and mobile devices (smartphones and tablets)."

- Beware Of Using Zoom, earlier post
- Cyber Threats At NASA Significantly Increasing, earlier post

Foreign Spies Are Targeting Americans on Zoom and Other Video Chat Platforms, U.S. Intel Officials Say, Time

"The U.S. intelligence officials stress there is no evidence that Zoom is cooperating with China or has been compromised by it, only that Zoom's security measures leave gaps, some of which may make the application less secure than others. All three intelligence officials, who requested anonymity because they are not authorized to discuss ongoing operations with the media, said spies are using multiple applications to search government, corporate, and academic conversations for financial, personal, product development, research, and intellectual property information and leads. Federal experts have warned both government and private officials not to use video conference applications to discuss or exchange sensitive information. In a memo on Thursday, the Senate Sergeant-at-Arms told Senators not to use Zoom, according to one person who received the memo."


Loading

 



Monthly Archives

About this Archive

This page is an archive of entries in the Internet Policies category from April 2020.

Internet Policies: October 2019 is the previous archive.

Internet Policies: August 2020 is the next archive.

Find recent content on the main index or look in the archives to find all content.