The Department of Homeland Security started its BioWatch program in response to the 2001 anthrax attack. The program is intended to provide early warning of similar terrorist attacks.
A prior effort to upgrade the BioWatch system proposed using sensors that couldn't distinguish particles like pollen or dust from dangerous agents—causing false alarms. The current effort aims to improve results by using the sensors with new technologies, including machine learning.
These technologies are still in the early stages. To manage acquisition risks, we recommended DHS follow our best practices for technology readiness assessments, and more.
First responders in hazmat suits practicing in a BioWatch safety drill
What GAO Found
The Department of Homeland Security (DHS) is following the agency's acquisition policy and guidance to acquire Biological Detection for the 21st Century (BD21). This system-of-systems concept—an assembly of technologies to gain higher functionality—is intended to combine various technologies, such as biological sensors, data analytics, anomaly detection tools, collectors, and field screening devices to enable timelier and more efficient detection of an aerosolized attack involving a biological agent than the current biodetection system. The BD21 program is early in the acquisition lifecycle and DHS has not yet selected the technologies to be used. Potential technologies are still being analyzed to demonstrate that certain components of the overall concept are feasible, such as an anomaly detection algorithm.
However, BD21 faces technical challenges due to inherent limitations in the technologies and uncertainties with combining technologies for use in biodetection. For example, biological aerosol sensors that monitor the air are to provide data on biological material in the environment, but common environmental material such as pollen, soil, and diesel exhaust can emit a signal in the same range as a biological threat agent, thereby increasing false alarm rates. Program officials report that the risk of false alarms produced by biological sensor technologies could be reduced by using an anomaly detection algorithm in addition to the sensor. However, it is too early to determine whether integration of an anomaly detection algorithm will successfully mitigate the false alarm rate. Specifically because the algorithms have never been developed and used for the purpose of biodetection in an urban, civilian environment.
BD21 program is following the agency's acquisition policy and guidance to mitigate technological risks in acquisition programs, and plans to conduct technology readiness assessments (TRA) along the way. In 2020, DHS issued a TRA guide, but it lacked detailed information about how the department will ensure objectivity and independence, among other important best practices GAO has identified. If DHS follows GAO's best practices guide, decision makers and program managers will be in a better position to make informed decisions at key acquisition decision events.
Why GAO Did This Study
Early detection of a biological attack can help reduce illness and loss of life, but DHS has faced challenges in acquiring biodetection capabilities to replace BioWatch, the current system used to detect aerosolized biological attacks. According to DHS, it is exploring the use of a new anomaly detection capability that, if developed successfully, could reduce the time to detection.
GAO was asked to examine the BD21 acquisition and assess technical maturity. This report (1) describes BD21 and the extent to which the program has followed DHS's acquisition policy, and (2) examines potential technical challenges to successful BD21 development, and actions to mitigate acquisition risks. GAO analyzed program acquisition documents against DHS acquisition policy and analyzed DHS's TRA guide against GAO's TRA best practices guide. GAO also interviewed DHS and DOD officials familiar with the BD21 acquisition effort for additional context.
GAO makes three recommendations including that DHS incorporate best practices as outlined in GAO's TRA best practice guide into its TRA guidance, and ensures the BD21 program conducts TRAs that follow these best practices prior to the program's acquisition decision events. DHS concurred with all three GAO recommendations.
Recommendations for Executive Action
|Department of Homeland Security||1. The Secretary of Homeland Security should ensure the BD21 program office clarifies in its acquisition documentation before the ADE 2A decision point the intention of the situational awareness and common operating picture capability identified as a gap, including the specific functionality, sources of information, and distinction from existing common operating picture functions at DHS. (Recommendation 1)|
|Department of Homeland Security||2. The Secretary of Homeland Security should ensure DHS fully incorporate the best practices outlined in GAO's TRA best practice guide in DHS's TRA/MRA guide to ensure that its acquisition projects have the best practices for conducting high-quality TRAs. (Recommendation 2)|
|Department of Homeland Security||3. The Secretary of Homeland Security should ensure the BD21 program conducts high-quality TRAs of all critical technologies for BD21 before the ADE 2A decision and before the ADE 2B decision (including a TRA of the overall system level interaction with the anomaly detection algorithm), in accordance with GAO's TRA best practice guide. (Recommendation 3)|