DOD hurt by speed, agility to access info, official says

Senators warn about reverting to pre-9/11 days of hoarding information, but agencies need to balance concerns with needs

A senior Defense Department official has told a Senate committee the department sought speed and agility in its information-sharing systems, and that ended up biting DOD in the case of WikiLeaks.

“We took a risk that by putting the information out there to provide agility and flexibility, so the military forces could reach into any database,” and make it mobile, Tom Ferguson, principle deputy undersecretary for intelligence at DOD, said March 10 during a  hearing on how the government shares and protects its information. The Senate Homeland Security and Governmental Affairs Committee held the hearing to look at how the leak has affected sharing of information among agencies.

The military wanted to give military officials easy access to DOD’s Secret Internet Protocol Router Network, a database of classified information. Officers could download the data and move it across different secret domains and between coalition domains, too. The point was to let officials do it quickly, Ferguson said.

Taking that risk failed when Army Pvt. Bradley Manning allegedly stole millions of classified government documents and WikiLeaks released the information, officials said at the hearing.


Related stories:

Report: WikiLeaks source exploited security flaw

Info sharing: Compartmentalization vs. common sense


In 2008, DOD began protecting networks workstations with the Host Based Security System. It provides technical controls over the workstations, and it reports on machine configurations to allow monitoring. For example, HBSS could disable the use of removable media, experts testified. However, not all the systems, particularly the networks on the battlefield, are protected because there is no central, uniform system but rather numerous systems cobbled together, Ferguson said.

“The key is a failure on the part of not monitoring and following security regulations,” Ferguson said.

Senators were concerned that DOD and other agencies may tighten their hold on their own classified documents. But they also talked about the fears of returning to the days of stovepiped cultures when agencies shared no information.

Sen. Joe Lieberman (I-Conn.), the committee's chairman, warned officials about reverting to the time before the terrorist attacks of 2001 when agencies hoarded information, and also said they need to find a way to balance security concerns with the needs of a connected government, particularly in contingency operations.

“The bottom line is we cannot walk away from the progress we have made that has saved lives,” he said.

Terri Takai, CIO and acting assistant secretary for networks and information integration at DOD, said officials still are working to protect data while sharing it. DOD is moving toward a technology that looks for odd and unusual behavior around information networks, similar to credit card companies that watch for strange purchases.

Officials have wrestled with the issue of sharing and protecting data long before the WikiLeaks disclosure, said Corin Stone, intelligence community information sharing executive in the Office of the Director of National Intelligence. They have narrowed issues down to allowing the right people access to the networks, setting up technical protections against removing mass amounts of data, and auditing and monitoring users' activities.

Overall, she said officials must never use lose sight of the cenral point of sharing and protecting sensitive, classified information.

About the Author

Matthew Weigelt is a freelance journalist who writes about acquisition and procurement.

The Fed 100

Read the profiles of all this year's winners.

Featured

  • Then-presidential candidate Donald Trump at a 2016 campaign event. Image: Shutterstock

    'Buy American' order puts procurement in the spotlight

    Some IT contractors are worried that the "buy American" executive order from President Trump could squeeze key innovators out of the market.

  • OMB chief Mick Mulvaney, shown here in as a member of Congress in 2013. (Photo credit Gage Skidmore/Flickr)

    White House taps old policies for new government makeover

    New guidance from OMB advises agencies to use shared services, GWACs and federal schedules for acquisition, and to leverage IT wherever possible in restructuring plans.

  • Shutterstock image (by Everett Historical): aerial of the Pentagon.

    What DOD's next CIO will have to deal with

    It could be months before the Defense Department has a new CIO, and he or she will face a host of organizational and operational challenges from Day One

  • USAF Gen. John Hyten

    General: Cyber Command needs new platform before NSA split

    U.S. Cyber Command should be elevated to a full combatant command as soon as possible, the head of Strategic Command told Congress, but it cannot be separated from the NSA until it has its own cyber platform.

  • Image from Shutterstock.

    DLA goes virtual

    The Defense Logistics Agency is in the midst of an ambitious campaign to eliminate its IT infrastructure and transition to using exclusively shared, hosted and virtual services.

  • Fed 100 logo

    The 2017 Federal 100

    The women and men who make up this year's Fed 100 are proof positive of what one person can make possibile in federal IT. Read on to learn more about each and every winner's accomplishments.

Reader comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group