Supply Chain News / eSupply Chain / Risk & Compliance

IT Supply Chain Security Weak at Major U.S. Agencies

March 27, 2012

According to the U.S. Government Accountability Office (GAO), reliance on a global supply chain introduces multiple risks to federal information systems and underscores the importance of threat assessments and mitigation. In a recent report, supply chain threats are present at various phases of a system’s development life cycle and could create an unacceptable risk to federal agencies. Key supply chain-related threats include:

  • installation of intentionally harmful hardware or software (i.e., containing “malicious logic”);
  • installation of counterfeit hardware or software;
  • failure or disruption in the production or distribution of critical products;
  • reliance on malicious or unqualified service providers for the performance of technical services; and
  • installation of hardware or software containing unintentional vulnerabilities, such as defective code.

These threats can have a range of impacts, including allowing attackers to take control of systems or decreasing the availability of critical materials needed to develop systems. These threats can be introduced by exploiting vulnerabilities that could exist at multiple points in the supply chain.

Examples of such vulnerabilities include acquisition of products or parts from unauthorized distributors; application of untested updates and software patches; acquisition of equipment, software, or services from suppliers without knowledge of their past performance or corporate structure; and use of insecure delivery or storage mechanisms. These vulnerabilities could by exploited by malicious actors, leading to the loss of the confidentiality, integrity, or availability of federal systems and the information they contain.

More information can be found on GAO's website, including a 14 page copy of the report.

Source: GAO
You must login or register in order to post a comment.

Multimedia

Videos

Image Galleries

KC SmartPort Momentum

Kansas City SmartPort Momentum 2013 focused on 3PLs, the issues facing the industry, and the role or logistics in economic development

Podcasts

 

Calculating a true landed cost for global sourcing directly correlates with the profitability of purchased goods. However, few companies can command real-time visibility in to all the costs involved for cross border movements. In this podcast, World Trade 100 and Amber Road highlight how a comprehensive global trade platform that converges both logistics and compliance costs can deliver true landed cost visibility.

 

Speaker: Hung Lee, Senior Product Manager, Amber Road

More Podcasts

THE MAGAZINE

World Trade 100 Magazine

april cover wt100 2014

2014 April

Check out the April 2014 edition of World Trade WT100, featuring articles on fueling changes for trucking plus much more!

Table Of Contents Subscribe

Supply Chain Disruptions

Which are the most common causes of disruptions in your supply chain?
View Results Poll Archive

WT100 STORE

world-class-warehousing.gif
World-Class Warehousing and Material Handling, 1st Edition

Filled with proven operational solutions, it will guide managers as they develop a warehouse master plan, one designed to minimize the effects of supply chain inefficiencies as it improves logistics accuracy and inventory management - and reduces overall warehousing expense.

More Products

Clear Seas Research

Clear Seas ResearchWith access to over one million professionals and more than 60 industry-specific publications,Clear Seas Research offers relevant insights from those who know your industry best. Let us customize a market research solution that exceeds your marketing goals.

Use our interactive maps to locate service providers across North America.Interactive Map

Logistics Development Partners 

IWLA Members

STAY CONNECTED