Inspector General audit finds problems with NASA's cloud computing efforts

July 30, 2013 by Bob Yirka, Phys.org weblog

(Phys.org) —The Office of the Inspector General, led by Paul Martin, has published the results of an audit of NASA's cloud computing efforts and has found many such efforts lack proper security. The report also notes that many cloud efforts run by the agency were operating without the knowledge of its own Office of the Chief Information Officer.

Over the past several years, the Office of Management and Budget, which controls the purse strings of federal entities, has demanded that governmental agencies, such as NASA, begin transferring some or all of its and storage activities to the cloud. The idea is that doing so will save the government a lot of money. In following the directive, however, it appears that managers at NASA have failed to ensure that cloud operations are undertaken with the knowledge and approval of the agencies top information officer. Worse, it appears that many of the cloud initiatives were undertaken without due consideration given to necessary security precautions that must be put in place when applications and data become accessible across the Internet.

More specifically, the auditors found over a 100 NASA websites—both internal and external—had never been tested for security integrity. Incredibly, many of those same websites were found to have no security controls in place at all.

Government agencies have two main options when moving applications to the cloud—set up facilities on their own or contract out. NASA, like most other federal agencies has chosen the latter. Unfortunately, the auditors found that officials at the agency in many cases failed to include security issues when writing contracts, which of course resulted in them not being put in place.

Overall, the IG's report has found that weaknesses in cloud applications have impeded the agency from reaping the benefits of —namely reducing costs. And worse, the approach taken thus far has put NASA data at risk. Out of five contracts reviewed, the auditors found "none came close" to operating with industry standard security precautions.

The auditors recommend that NASA set up an office dedicated to cloud computing and the that must be put in place when such initiatives are undertaken.

Explore further: CIA faulted for choosing Amazon over IBM on cloud contract

Related Stories

Deutsche Boerse to launch cloud computing exchange

July 2, 2013

Deutsche Boerse, operator of the Frankfurt stock exchange, unveiled Tuesday plans to launch a new market place where companies, public sector bodies and research institutes can buy and sell excess cloud computing capacity.

US tech firms losing business over PRISM: poll

July 24, 2013

Revelations about the US government's vast data collection programs have already started hurting American technology firms, according to an industry survey released this week.

Head for the clouds, feet firmly on the ground

March 5, 2012

Computer engineers in the US writing in the International Journal of Communication Networks and Distributed Systems have reviewed the research literature to get a clear picture of cloud computing, its adoption, use and the ...

Recommended for you

Meteorite source in asteroid belt not a single debris field

February 17, 2019

A new study published online in Meteoritics and Planetary Science finds that our most common meteorites, those known as L chondrites, come from at least two different debris fields in the asteroid belt. The belt contains ...

Diagnosing 'art acne' in Georgia O'Keeffe's paintings

February 17, 2019

Even Georgia O'Keeffe noticed the pin-sized blisters bubbling on the surface of her paintings. For decades, conservationists and scholars assumed these tiny protrusions were grains of sand, kicked up from the New Mexico desert ...

Archaeologists discover Incan tomb in Peru

February 16, 2019

Peruvian archaeologists discovered an Incan tomb in the north of the country where an elite member of the pre-Columbian empire was buried, one of the investigators announced Friday.

Where is the universe hiding its missing mass?

February 15, 2019

Astronomers have spent decades looking for something that sounds like it would be hard to miss: about a third of the "normal" matter in the Universe. New results from NASA's Chandra X-ray Observatory may have helped them ...

What rising seas mean for local economies

February 15, 2019

Impacts from climate change are not always easy to see. But for many local businesses in coastal communities across the United States, the evidence is right outside their doors—or in their parking lots.

1 comment

Adjust slider to filter visible comments by rank

Display comments: newest first

MCPtz
not rated yet Jul 30, 2013
Cloud Computing is going to reduce costs?

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.