Risk
3/21/2013
01:09 PM
50%
50%

NASA Tightens Security In Response To Insider Threat

NASA shuts down database and tightens restrictions on remote access following the arrest of a Chinese contractor on suspicion of intellectual property theft.

Military Drones Present And Future: Visual Tour
Military Drones Present And Future: Visual Tour
(click image for larger view and for slideshow)
NASA has closed down its technical reports database and imposed tighter restrictions on remote access to its computer systems following the arrest of a Chinese contractor on suspicion of intellectual property theft.

NASA administrator Charles Bolden outlined those and other security measures in March 20 testimony before a congressional subcommittee. Bolden said he had ordered a review of the access that foreign nationals from designated countries -- including China, Iran and North Korea -- are given to NASA facilities and a moratorium on providing new access to citizens of those countries.

The agency's actions follow the March 16 arrest of Bo Jiang, a Chinese citizen, at Dulles Airport in Washington, D.C., as he prepared to leave the United States. The FBI, in its application for an arrest warrant, said it was investigating violations of the Arms Export Control Act.

[ NASA has suffered other security breaches in recent months. Read Stolen NASA Laptop Had Unencrypted Employee Data. ]

Jiang worked as a contractor with the National Institute of Aerospace, a nonprofit research organization, at NASA's Langley Research Center. During a border stop at Dulles, Jiang allegedly said that he had in his possession a cellphone, memory stick, external hard drive and new computer. During a subsequent search of Jiang's possessions, the agents found a second laptop, hard drive and SIM card, according to the arrest warrant.

Jiang was arraigned March 19 in federal district court in Norfolk, Va., on a charge of lying to federal agents. The contents of the confiscated electronic media have not been revealed.

Rep. Frank Wolf (R-Va.), chairman of the House appropriations subcommittee that funds the space agency, said in a press conference that whistleblowers at NASA prompted the investigation. Wolf said Jiang was working on high-tech imaging technology that could be of potential interest to the Chinese military. Citing the arrest warrant, Wolf said Jiang had previously traveled to China with a NASA laptop "that agents believe to have contained sensitive information."

Wolf accused NASA of circumventing restrictions on the hiring of foreign nationals and said he had evidence that the NIA might employ other Chinese nationals under similar arrangements. The congressman called on NASA to audit all of its contractors that employ citizens of countries or organizations considered "entities of concern."

Wolf, in his seventeenth year in Congress, has been focused on the threat of Chinese cyber espionage. Earlier this month, he warned of security threats and the potential leak of classified information at NASA's Ames Research Center, and he pointed to the Chinese government's "systematic and aggressive efforts to steal" sensitive technology.

A well-defended perimeter is only half the battle in securing the government's IT environments. Agencies must also protect their most valuable data. Also in the new, all-digital Secure The Data Center issue of InformationWeek Government: The White House's gun control efforts are at risk of failure because the Bureau of Alcohol, Tobacco, Firearms and Explosives' outdated Firearms Tracing System is in need of an upgrade. (Free registration required.)

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
PJS880
50%
50%
PJS880,
User Rank: Ninja
4/2/2013 | 3:03:58 PM
re: NASA Tightens Security In Response To Insider Threat
Any system administrator will tell you that having remote access to people is usually a bad idea if security measure is not taken for remote access. Good catch though, to bad they do not know what he already transported to China and what information was on it. There is an obvious issue here working with national, not saying eliminate them, just have tighter security measures imposed and deeper detailed background reports. I wonder what will become of this guy, do we have the authority to detain and convict him?

Paul Sprague
InformationWeek Contributor
moarsauce123
50%
50%
moarsauce123,
User Rank: Apprentice
3/22/2013 | 5:36:31 PM
re: NASA Tightens Security In Response To Insider Threat
Keep hiring Chinese nationals for sensitive stuff, you idiots!
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading December Tech Digest
Experts weigh in on the pros and cons of end-user security training.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-1421
Published: 2014-11-25
mountall 1.54, as used in Ubuntu 14.10, does not properly handle the umask when using the mount utility, which allows local users to bypass intended access restrictions via unspecified vectors.

CVE-2014-3605
Published: 2014-11-25
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-6407. Reason: This candidate is a reservation duplicate of CVE-2014-6407. Notes: All CVE users should reference CVE-2014-6407 instead of this candidate. All references and descriptions in this candidate have been removed to pre...

CVE-2014-7839
Published: 2014-11-25
DocumentProvider in RESTEasy 2.3.7 and 3.0.9 does not configure the (1) external-general-entities or (2) external-parameter-entities features, which allows remote attackers to conduct XML external entity (XXE) attacks via unspecified vectors.

CVE-2014-8001
Published: 2014-11-25
Buffer overflow in decode.cpp in Cisco OpenH264 1.2.0 and earlier allows remote attackers to execute arbitrary code via an encoded media file.

CVE-2014-8002
Published: 2014-11-25
Use-after-free vulnerability in decode_slice.cpp in Cisco OpenH264 1.2.0 and earlier allows remote attackers to execute arbitrary code via an encoded media file.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Now that the holiday season is about to begin both online and in stores, will this be yet another season of nonstop gifting to cybercriminals?