Report: NASA Information at Risk Due to Security Flaws

by Douglas Messier
Managing Editor

NASA faces “unnecessary risks that may threaten the confidentiality, integrity, and availability of information” due to its failure to correct flaws in its Agency Common System (ACS), according to a new report from the agency’s Office of Inspector General (OIG).

“During our review of the ACS system, we found that NASA has not taken corrective action to address a longstanding deficiency regarding controls previously assessed as ineffective. We also found that a software error permitted an unauthorized data change in the Agency’s information security database affecting the accuracy of the assessment status of a control,” the report said.