Information Systems: Agencies Overlook Security Controls During Development

IMTEC-88-11S Published: May 31, 1988. Publicly Released: May 31, 1988.

Highlights

GAO provided a supplement to its report on agencies' development of automated systems. GAO provided information regarding the model it used in determining that federal agencies it reviewed did not meet federal criteria or practice sound system development methods for successfully incorporating appropriate security controls during their development of automated information systems.

Full Report

Full Report (88 pages)

Office of Public Affairs

Chuck Young

Managing Director

youngc1@gao.gov

(202) 512-4800

Topics

Information Security

Computer securityEvaluation criteriaEvaluation methodsInformation systemsInternal controlsStandards evaluationSystems designAutomated security systemsFederal Information Processing StandardsSystems development life cycle