Computer Security: DEA Is Not Adequately Protecting National Security Information
IMTEC-92-31
Published: Feb 19, 1992. Publicly Released: Feb 25, 1992.
Skip to Highlights
Highlights
Pursuant to a congressional request, GAO reviewed: (1) the Drug Enforcement Administration's (DEA) computer security; and (2) weaknesses involving national security information.
Recommendations
Recommendations for Executive Action
| Agency Affected | Recommendation | Status |
|---|---|---|
| Department of Justice | The Attorney General should direct the Administrator, DEA, to identify all computers processing national security information, perform risk analyses to assess security threats, and establish appropriate security safeguards as needed in conformance with federal requirements. This should include ensuring that: (1) adequate controls are in place over access to areas where national security information is processed and stored; and (2) DEA employees are made aware of their responsibility to appropriately safeguard national security information. |
DOJ and DEA have taken actions necessary to respond to the recommendation.
|
| Drug Enforcement Administration | The Administrator, DEA, should determine whether similar national security information weaknesses exist at other DEA domestic and foreign locations, and take the required corrective action, where necessary. |
DEA has completed security compliance reviews and has taken action to improve operations.
|
Full Report
Public Inquiries
Topics
Classified informationComputer equipment managementComputer securityFacility securityInformation resources managementLaw enforcement information systemsNoncomplianceNational securityComputersComputer systems