trending:

sponsored:

Just In

More News Load more
Technology

Live security tests at Commerce subdivision ‘confirm our worst fears’

by Joe Uchill - 10/11/17 11:51 AM ET
by Joe Uchill - 10/11/17 11:51 AM ET

Undercover agents breached the physical security of the National Institute of Standards and Technology 15 out of 15 times, House Science Committee Chairman Lamar Smith (R-Texas) said Wednesday during a hearing on the institute’s cybersecurity.

The Government Accountability Office (GAO) ran the testing at the committee’s urging and presented a full report, including videotapes of the test, to the committee before the hearing. 

“Their findings are alarming and confirmed our worst fears,” said Smith. “NIST is a sieve.”

NIST, a division of the Commerce Department, conducts research on everything from voting machines to nuclear reactors to developing federal standards. It has campuses in both Maryland and Colorado. 

{mosads}

While the full report was not released to the public over security concerns, the public report mentions a variety of problems in the security policy at NIST. Those include poor training of security experts and scientists and a security strategy giving some responsibilities to the Commerce Department and other responsibilities to NIST.

While the bifurcated security structure is required by statute and can only be changed by Congress, the GAO report discusses poor integration between the two branches.

NIST and the Department of Commerce have accepted every recommendation given by the report.

The specifically tested security vulnerabilities are being withheld, but the committee is working to get the videos released.

The GAO deferred discussing whether its investigators had access to either computers that could be infected with malware or labs. But, a GAO representative noted, it would be reasonable to assume, given that NIST buildings largely exist to host laboratories and offices, that this would be the case. 

The House Science Committee first took interest in NIST security in 2015, when a meth lab that was run by a former NIST security employee out of an unused lab exploded. In 2016 an intruder was found wandering through the NIST campus.

Tags cybersecurity Hackers NIST Vulnerability

Copyright 2023 Nexstar Media Inc. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed. Regular the hill posts

Main Area Top ↴

THE HILL MORNING SHOW

More Technology News

See All

See All
Main Area Bottom ↴

Testing Video

ASR RAW Boys Lacrosse: Coronado 8, Poway 6

ASR RAW Boys Lacrosse: Coronado 8, Poway 6
ASR RAW Girls Lacrosse: Coronado 15, Cathedral ...
Former Torrey Pines teammates take home another NCAA ...
Boys Lacrosse: Torrey Pines 11, Bishop's 9
More Videos

Top Stories

See All

See All
Sidebar Top ↴

Sidebar Top Image

Most Popular

  1. Marjorie Taylor Greene stumps for Steve Bannon as he reports to prison
  2. Housing costs have nearly doubled in swing states since 2020
  3. Potential cause of lupus may be identified: Study
  4. Evictions rising across Southwest, dropping in Northeast: Data
Load more
Sidebar Middle ↴

The Hill Podcasts

Sidebar Middle ↴

People – Custom HTML – Sidebar Bottom – Any Person

SIDEBAR BOTTOM