Risk
3/21/2013
01:09 PM
Connect Directly
RSS
E-Mail
50%
50%

NASA Tightens Security In Response To Insider Threat

NASA shuts down database and tightens restrictions on remote access following the arrest of a Chinese contractor on suspicion of intellectual property theft.

Military Drones Present And Future: Visual Tour
Military Drones Present And Future: Visual Tour
(click image for larger view and for slideshow)
NASA has closed down its technical reports database and imposed tighter restrictions on remote access to its computer systems following the arrest of a Chinese contractor on suspicion of intellectual property theft.

NASA administrator Charles Bolden outlined those and other security measures in March 20 testimony before a congressional subcommittee. Bolden said he had ordered a review of the access that foreign nationals from designated countries -- including China, Iran and North Korea -- are given to NASA facilities and a moratorium on providing new access to citizens of those countries.

The agency's actions follow the March 16 arrest of Bo Jiang, a Chinese citizen, at Dulles Airport in Washington, D.C., as he prepared to leave the United States. The FBI, in its application for an arrest warrant, said it was investigating violations of the Arms Export Control Act.

[ NASA has suffered other security breaches in recent months. Read Stolen NASA Laptop Had Unencrypted Employee Data. ]

Jiang worked as a contractor with the National Institute of Aerospace, a nonprofit research organization, at NASA's Langley Research Center. During a border stop at Dulles, Jiang allegedly said that he had in his possession a cellphone, memory stick, external hard drive and new computer. During a subsequent search of Jiang's possessions, the agents found a second laptop, hard drive and SIM card, according to the arrest warrant.

Jiang was arraigned March 19 in federal district court in Norfolk, Va., on a charge of lying to federal agents. The contents of the confiscated electronic media have not been revealed.

Rep. Frank Wolf (R-Va.), chairman of the House appropriations subcommittee that funds the space agency, said in a press conference that whistleblowers at NASA prompted the investigation. Wolf said Jiang was working on high-tech imaging technology that could be of potential interest to the Chinese military. Citing the arrest warrant, Wolf said Jiang had previously traveled to China with a NASA laptop "that agents believe to have contained sensitive information."

Wolf accused NASA of circumventing restrictions on the hiring of foreign nationals and said he had evidence that the NIA might employ other Chinese nationals under similar arrangements. The congressman called on NASA to audit all of its contractors that employ citizens of countries or organizations considered "entities of concern."

Wolf, in his seventeenth year in Congress, has been focused on the threat of Chinese cyber espionage. Earlier this month, he warned of security threats and the potential leak of classified information at NASA's Ames Research Center, and he pointed to the Chinese government's "systematic and aggressive efforts to steal" sensitive technology.

A well-defended perimeter is only half the battle in securing the government's IT environments. Agencies must also protect their most valuable data. Also in the new, all-digital Secure The Data Center issue of InformationWeek Government: The White House's gun control efforts are at risk of failure because the Bureau of Alcohol, Tobacco, Firearms and Explosives' outdated Firearms Tracing System is in need of an upgrade. (Free registration required.)

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
PJS880
50%
50%
PJS880,
User Rank: Ninja
4/2/2013 | 3:03:58 PM
re: NASA Tightens Security In Response To Insider Threat
Any system administrator will tell you that having remote access to people is usually a bad idea if security measure is not taken for remote access. Good catch though, to bad they do not know what he already transported to China and what information was on it. There is an obvious issue here working with national, not saying eliminate them, just have tighter security measures imposed and deeper detailed background reports. I wonder what will become of this guy, do we have the authority to detain and convict him?

Paul Sprague
InformationWeek Contributor
moarsauce123
50%
50%
moarsauce123,
User Rank: Apprentice
3/22/2013 | 5:36:31 PM
re: NASA Tightens Security In Response To Insider Threat
Keep hiring Chinese nationals for sensitive stuff, you idiots!
Register for Dark Reading Newsletters
Partner Perspectives
What's This?
In a digital world inundated with advanced security threats, Intel Security seeks to transform how we live and work to keep our information secure. Through hardware and software development, Intel Security delivers robust solutions that integrate security into every layer of every digital device. In combining the security expertise of McAfee with the innovation, performance, and trust of Intel, this vision becomes a reality.

As we rely on technology to enhance our everyday and business life, we must too consider the security of the intellectual property and confidential data that is housed on these devices. As we increase the number of devices we use, we increase the number of gateways and opportunity for security threats. Intel Security takes the “security connected” approach to ensure that every device is secure, and that all security solutions are seamlessly integrated.
Featured Writers
White Papers
Cartoon
Current Issue
Dark Reading's October Tech Digest
Fast data analysis can stymie attacks and strengthen enterprise security. Does your team have the data smarts?
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-7877
Published: 2014-10-30
Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows local users to cause a denial of service via unknown vectors.

CVE-2014-3051
Published: 2014-10-29
The Internet Service Monitor (ISM) agent in IBM Tivoli Composite Application Manager (ITCAM) for Transactions 7.1 and 7.2 before 7.2.0.3 IF28, 7.3 before 7.3.0.1 IF30, and 7.4 before 7.4.0.0 IF18 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof s...

CVE-2014-3668
Published: 2014-10-29
Buffer overflow in the date_from_ISO8601 function in the mkgmtime implementation in libxmlrpc/xmlrpc.c in the XMLRPC extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service (application crash) via (1) a crafted first argument t...

CVE-2014-3669
Published: 2014-10-29
Integer overflow in the object_custom function in ext/standard/var_unserializer.c in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an argument to the unserialize function ...

CVE-2014-3670
Published: 2014-10-29
The exif_ifd_make_value function in exif.c in the EXIF extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 operates on floating-point arrays incorrectly, which allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly exec...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Follow Dark Reading editors into the field as they talk with noted experts from the security world.