Risk
7/26/2011
02:06 PM
50%
50%

FBI Data Exchange System Now Fully Operational

The National Data Exchange system lets the agency share information with 18,000 local and regional criminal justice organizations.

Government Innovators
Slideshow: Government Innovators
(clickimage for larger view and for full slideshow)
A new system that allows the FBI to automatically share information with local, state, regional, and other law-enforcement and criminal justice partners is now fully operational.

Raytheon said it completed work on the last phase of the National Data Exchange (N-DEx) system, which allows the FBI to pass on information about criminal justice cases automatically to 200,000 investigators in more than 18,000 federal, local, state, and tribal agencies. The system also performs analysis to identify crime trends and patterns to aid in crime-prevention tactics, according to the FBI.

The completion of N-DEx is slightly behind schedule, as original plans called for it to be completed last year, according to the FBI website. Nonetheless, authorized FBI partners now can use the system to make nationwide searches for information such as incident reports and criminal incarceration records; receive notifications of similar investigations and suspects to ones they are querying; and identify hotspots for criminal activity, among other capabilities.

The system uses standards-based technology and Web services to connect multiple disparate systems and users to rapidly search and visualize FBI data about incidents and cases, the company said. The FBI awarded Raytheon the contract to build the system in 2007.

In the last phase of development, Raytheon added a set of Web services that allow users, among other things, to receive information alerts about persons of interests when new records are entered into the system.

The FBI's Criminal Justice Information Services Division (CJIS)--which also manages another key information-sharing FBI database, the National Crime Information Center (NCIC) system--is managing N-DEx. Once the system is available to all the users that are authorized to access it, the agency expects it to handle about 6 million queries a day, which is on par with the NCIC system.

FBI has been stepping up improvements to how it shares information and data with various law-enforcement organizations that need swift access to it, a task that historically has been difficult and arduous. Earlier this year it deployed a new biometric ID system aimed at creating a more effective and accurate process for identifying fingerprints and other forms of biometric information and sharing it with appropriate organizations.

Developed by Lockheed Martin, the multimillion-dollar Next Generation Identification System (NGIS) allows the FBI exchange fingerprints with more than 18,000 law-enforcement agencies and other authorized criminal-justice partners. It also provides automated fingerprint and latent search capabilities, as well as electronic image storage.

What industry can teach government about IT innovation and efficiency. Also in the new, all-digital issue of InformationWeek Government: Federal agencies have to shift from annual IT security assessments to continuous monitoring of their risks. Download it now. (Free registration required.)

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-4231
Published: 2015-07-03
The Python interpreter in Cisco NX-OS 6.2(8a) on Nexus 7000 devices allows local users to bypass intended access restrictions and delete an arbitrary VDC's files by leveraging administrative privileges in one VDC, aka Bug ID CSCur08416.

CVE-2015-4232
Published: 2015-07-03
Cisco NX-OS 6.2(10) on Nexus and MDS 9000 devices allows local users to execute arbitrary OS commands by entering crafted tar parameters in the CLI, aka Bug ID CSCus44856.

CVE-2015-4234
Published: 2015-07-03
Cisco NX-OS 6.0(2) and 6.2(2) on Nexus devices has an improper OS configuration, which allows local users to obtain root access via unspecified input to the Python interpreter, aka Bug IDs CSCun02887, CSCur00115, and CSCur00127.

CVE-2015-4237
Published: 2015-07-03
The CLI parser in Cisco NX-OS 4.1(2)E1(1), 6.2(11b), 6.2(12), 7.2(0)ZZ(99.1), 7.2(0)ZZ(99.3), and 9.1(1)SV1(3.1.8) on Nexus devices allows local users to execute arbitrary OS commands via crafted characters in a filename, aka Bug IDs CSCuv08491, CSCuv08443, CSCuv08480, CSCuv08448, CSCuu99291, CSCuv0...

CVE-2015-4239
Published: 2015-07-03
Cisco Adaptive Security Appliance (ASA) Software 9.3(2.243) and 100.13(0.21) allows remote attackers to cause a denial of service (device reload) by sending crafted OSPFv2 packets on the local network, aka Bug ID CSCus84220.

Dark Reading Radio
Archived Dark Reading Radio
Marc Spitler, co-author of the Verizon DBIR will share some of the lesser-known but most intriguing tidbits from the massive report