After reading
State Department to face hearing on '06 security breach I realized when
FISMA might actually matter: combine repeated
poor FISMA scores (say three F's and one D+) with
publicly reported security breaches, and now Congress is investigating the State Department:
In a letter sent to Secretary of State Condoleeza Rice on April 6, committee Chairman Bennie Thompson asked the department to provide specific information regarding how quickly department security specialists detected the attack, whether the department knows how long the attackers had access to the network and what other systems may have been compromised during the attack. The three-page letter also asks the department to provide evidence that it completely eliminated any malicious software the attackers may have planted, as well as documentation of all of the communications between State and the Department of Homeland Security regarding the incident.
I'm going to keep an eye on the
Subcommittee on Emerging Threats, Cybersecurity, and Science and Technology to see what is published on these matters. It's ironic that FISMA scores really have nothing to do with State's problems, and no aspect of FISMA can answer any of the questions cited above.
Richard Bejtlich is
training in a city near you! Seats in classes at the
Sys Admin Magazine Conference,
Techno Security 2007,
SANSFIRE 2007,
USENIX Annual, and
Black Hat Las Vegas are filling fast -- register today.
Copyright 2007 Richard BejtlichCopyright 2003-2007 Richard Bejtlich
04-28-2007, 03:47 PM
Linear Mode
Similar Threads