Pursuant to a congressional request, GAO reviewed: (1) the Drug Enforcement Administration's (DEA) computer security; and (2) weaknesses involving national security information.

GAO found that DEA: (1) has not identified all computer systems that process classified data as required by Department of Justice policy; (2) personnel are improperly using an unapproved and unprotected computer network to routinely process classified data; and (3) is not properly safeguarding computer-generated materials and documents or adequately controlling access to areas where computers process national security information.