CybersecurityHomeland Security

U.S. High-Tech Weapons Vulnerable To Cyber Threats

By IEEE-USA Staff

30 October 2018
0 109 1 minute read
cyber threats

So just how secure are the United States’ sophisticated weapons systems from cyber threats?  According to the U.S. Government Accountability Office (GAO), the answer may be not very.

In a widely covered assessment released on 9 Oct, the GAO reported that in operational testing, the Department of Defense (DoD) routinely found mission-critical cyber vulnerabilities in systems that were under development. Using relatively simple tools and techniques, testers posing as adversaries were able to take control of systems and largely operate undetected, due in part to basic issues, such as poor password management and unencrypted communications.

GAO also warned that DoD does not know the full scale of its weapon system vulnerabilities because, for a number of reasons, these tests were limited in scope and sophistication.

Advanced weapon systems increasingly rely on embedded software, automation and connectivity, with all important components networked into information systems to perform their mission critical functions, which by definition makes them more vulnerable than less “connected” systems to cyber intrusions.  What the GAO found, however, was that cybersecurity has not been an acquisition priority, and that the program officials they met with believed their systems were secure and were quick to discount some test results as unrealistic.

According to the GAO, DoD is just beginning to grapple with the scale of vulnerabilities it faces, but has recently taken several steps to improve the cybersecurity of weapon systems, including issuing revised policies and guidance that better incorporate cybersecurity considerations. Congress has also funded DoD initiatives to better understand and address critical cyber vulnerabilities.  The effectiveness of these steps has been limited, however, by DoD’s cyber workforce challenges and difficulties experienced in sharing information and lessons learned about vulnerabilities once they are discovered.

For more information, you can read the GAO report on Weapons Systems Cybersecurity (GAO-19-128) at:  https://www.gao.gov/assets/700/694913.pdf

Advertisement
30 October 2018
0 109 1 minute read
Photo of Guest Contributor

Guest Contributor

IEEE-USA is an organizational unit of the Institute of Electrical and Electronics Engineers, Inc. (IEEE), created in 1973 to support the career and public policy interests of IEEE’s U.S. members. IEEE-USA is primarily supported by an annual assessment paid by U.S. IEEE Members.

Related Articles

Discovering the Power of Our Mindless Moments

Discovering the Power of Our Mindless Moments

23 April 2024
More of IEEE-USA’s Career and Membership Services Programs (Part 2)

More IEEE-USA Career and Membership Services Programs (Part 2)

23 April 2024
Getting Ahead as a Remote Worker

Getting Ahead as a Remote Worker

23 April 2024
How Can Younger Members Get the Most Out of Benefits Provided by IEEE-USA?

How Can Younger Members Get the Most Out of Benefits Provided by IEEE-USA?

22 April 2024

Leave a Reply

Your email address will not be published. Required fields are marked *

Advertisement
Back to top button