GAO Report - Nuclear Weapons Cybersecurity: NNSA Should Fully Implement
Foundational Cybersecurity Risk Management Practices
_"The National Nuclear Security Administration (NNSA) is increasingly
relying on advanced computers and integrating digital systems into
weapons and manufacturing equipment. But, these systems could be
hacked._
_Federal laws and policies suggest 6 key practices to set up a
cybersecurity management program, such as assigning risk management
responsibilities. However, NNSA and its contractors haven't fully
implemented these practices._
_Additionally, NNSA and its contractors rely on subcontractors for
services and equipment, but we found that oversight of subcontractors'
cybersecurity was inconsistent. Our recommendations [1] address these
issues."_
https://www.gao.gov/products/gao-22-104195?utm_campaign=usgao_email&utm_content=topic_energy&utm_medium=email&utm_source=govdelivery
Diego
--
Dott. Diego Latella - Senior Researcher CNR/ISTI, Via Moruzzi 1, 56124
Pisa, Italy (http:www.isti.cnr.it [2])
FM&&T Lab. (http://fmt.isti.cnr.it)
CNR/GI-STS (http://gists.pi.cnr.it)
https://www.isti.cnr.it/People/D.Latella - ph: +390506212982, fax:
+390506212040
===================
The quest for a war-free world has a basic purpose: survival. But if in
the process we learn how to achieve it by love rather than by fear, by
kindness rather than compulsion; if in the process we learn how to
combine the essential with the enjoyable, the expedient with the
benevolent, the practical with the beautiful, this will be an extra
incentive to embark on this great task.
Above all, remember your humanity.
-- Sir Joseph Rotblat
I don't quite know whether it is especially computer science or its
subdiscipline Artificial Intelligence that has such an enormous
affection for euphemism. We speak so spectacularly and so readily of
computer systems that understand, that see, decide, make judgments, and
so on, without ourselves recognizing our own superficiality and
immeasurable naivete with respect to these concepts. And, in the process
of so speaking, we anesthetise our ability to evaluate the quality of
our work and, what is more important, to identify and become conscious
of its end use. […] One can't escape this state without asking, again
and again: "What do I actually do? What is the final application and use
of the products of my work?" and ultimately, "am I content or ashamed to
have contributed to this use?"
-- Prof. Joseph Weizenbaum ["Not without us", ACM SIGCAS 16(2-3) 2--7 -
Aug. 1986]
Links:
------
[1] https://www.gao.gov/product_recommendations/GAO-22-104195
[2] http://www.isti.cnr.it
_______________________________________________
nexa mailing list
nexa@server-nexa.polito.it
https://server-nexa.polito.it/cgi-bin/mailman/listinfo/nexa
