NASA Needs Better Cloud Computing Strategy for Public Contracts According to Audit
July 30, 2013 2:24 PM
comment(s) - last by
A NASA audit found that stock vendor contracts and lack of oversight are exposing it to potential security threats
An audit of NASA's public cloud computing contracts recently found that the space agency isn't meeting federal IT security requirements.
The NASA Office of Inspector General (OIG) recently audited the space agency's public cloud computing system and found that a combination of stock vendor contracts and lack of oversight are exposing it to
potential security threats
The OIG reviewed five NASA contracts in the audit, where four relied on the cloud providers' standard contracts and one was made by NASA. All five failed to meet "federal privacy, discovery, and data retention and destruction requirements" according to
In addition, the OIG found that a third-party cloud service that sends over 100 NASA internal and public websites had been operating without security plans or written authorization for more than two years.
To top it off, NASA's Office of the CIO wasn't clued in on all of the cloud services that different NASA organizations had used, and in many instances, the movement to public clouds was not planned through "a central office."
The OIG concluded that NASA's public cloud contracts are at increased risk of vulnerabilities and need to be addressed through a better-coordinated cloud strategy.
On the upside, moving to the cloud does save NASA about $1 million each year.
In 2012, NASA stopped using the Nebula private cloud and moved its data to Azure and Amazon Web Services. The audit, which only looked at a small portion of NASA's computer infrastructure, said up to 75 percent of new IT programs are expected to start in the cloud within five years, and almost all of NASA's public data could be moved to the cloud as well. As much as 40 percent of its legacy systems could go to the cloud, too.
This article is over a month old, voting and posting comments is disabled
RE: Cloud computing
7/31/2013 4:34:49 AM
they are the National Aeronautics and Space
, after all.
"We are going to continue to work with them to make sure they understand the reality of the Internet. A lot of these people don't have Ph.Ds, and they don't have a degree in computer science." -- RIM co-CEO Michael Lazaridis
NASA's ISS Control Codes Were Stolen, IT Department Incapable of Patching PCs
March 1, 2012, 6:46 PM
Nail Polish May Soon be Able to Detect Date Rape Drugs
August 26, 2014, 7:57 AM
SpaceX Falcon 9-R Rocket Suffers Malfunction, Self-Destructs During Test Flight
August 23, 2014, 9:36 AM
Texas Chosen as Site for SpaceX's First Commercial Launchpad
August 5, 2014, 1:44 PM
South Carolina Prison Finds Crashed Drone Carrying Drugs, Phones
August 1, 2014, 2:49 PM
NASA's Mars 2020 Rover Gains Seven New Instruments for Exploration
August 1, 2014, 1:30 PM
NASA Opportunity Rover Breaks Record for Most Miles Traveled on Another Planet
July 29, 2014, 1:38 PM
Most Popular Articles
HTC Preps Nexus 9 With Nvidia K1 64-Bit "Denver" SoC, Android L Onboard
September 10, 2014, 10:21 PM
Quick Note: Buy an Xbox One Sept 7-13, Get a Free Game
September 4, 2014, 10:42 AM
Dell Announces "World's Thinnest" Tablet: The Venue 8 7000 Series
September 11, 2014, 8:51 AM
Apple iPhone 6, iPhone 6 Plus Reviews Roll In
September 16, 2014, 9:13 PM
Samsung Calls Out “Copycat” Apple for 5.5” iPhone 6 Plus in New Ads
September 14, 2014, 11:06 PM
Latest Blog Posts
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
Space Terrorism is a Looming Threat For the United States
Apr 23, 2014, 7:47 PM
Facebook Aims to Provide Internet to "Every Person in the World" with Drones, Satellites
Apr 1, 2014, 10:20 AM
Retail Mobile Sites Experience Outages in Light of Simplexity's Bankruptcy
Mar 14, 2014, 8:48 AM
Tesla vs. BMW: Who Has the Safer EV?
Feb 1, 2014, 2:56 PM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information