Jim Kouri
September 29, 2008
Nuclear security: Los Alamos National Laboratory faces continued challenges
By Jim Kouri

Los Alamos National Laboratory (LANL) is one of three National Nuclear Security Administration (NNSA) laboratories that designs and develops nuclear weapons for the U.S. stockpile. LANL employees rely on sensitive and classified information and assets that are protected at different levels, depending on the risks posed if they were lost, stolen, or otherwise compromised. However, LANL has experienced several significant security breaches during the past decade.

The US Congress recently requested the Government Accountability Office to analyze data, review policies and procedures, interview laboratory officials, and conduct site inspections at the two laboratories.

Physical security at LANL is in a period of significant improvement, and LANL is implementing over two dozen initiatives to better protect its classified assets. However, while LANL's current initiatives address many physical security problems previously identified in external security evaluations, other significant security problems have received insufficient attention.

In addition, the management approaches that LANL and NNSA intend to use to sustain security improvements over the long term are in the early stages of development or contain weaknesses.

Furthermore, LANL's ability to sustain its improved physical security posture is unproven because the laboratory appears not to have done so after a significant security incident in 2004, with another significant security breach in 2006, and NNSA's Los Alamos Site Office — which is responsible for overseeing security at LANL — may not have enough staff or the proper training to execute a fully effective security oversight program.

GAO's report made recommendations to help further improve physical security at LANL and ensure that these improvements are sustained over the long term. As a result of poor performance on an April 2008 physical security evaluation conducted by the Department of Energy's (DOE) Office of Independent Oversight, GAO is reviewing physical security at Lawrence Livermore National Laboratory (Livermore). GAO's preliminary observations are that Livermore appears to experience difficulties similar to LANL's in sustaining security performance.

Furthermore, it appears that NNSA has not always provided effective oversight of Livermore. Specifically, an NNSA security survey conducted only 6 months prior to the April 2008 DOE evaluation gave Livermore the highest possible rating on its security program's performance. These results differ markedly from those documented by DOE's Office of Independent Oversight.

LANL has implemented measures to enhance cyber security, but weaknesses remain in protecting information on its unclassified network. This network possesses sensitive information such as unclassified controlled nuclear information, export control information, and personally identifiable information about LANL employees.

GAO investigators found vulnerabilities in critical areas, including identifying and authenticating users, encrypting sensitive information, and monitoring and auditing security policy compliance. A key reason for these information security weaknesses is that the laboratory has not fully implemented an information security program to ensure that controls are effectively established and maintained.

Furthermore, deficiencies in LANL's policies and procedures raise additional concern, particularly with respect to foreign nationals' accessing the network from the laboratory and remotely.

Finally, LANL cyber security officials told GAO analysts that funding to address some of their security concerns with the laboratory's unclassified network has been inadequate. However, NNSA officials asserted that LANL had not adequately justified its requests for additional funds. GAO made 52 recommendations to help strengthen LANL's information security program and controls over the unclassified network.

© Jim Kouri

 

The views expressed by RenewAmerica columnists are their own and do not necessarily reflect the position of RenewAmerica or its affiliates.
(See RenewAmerica's publishing standards.)


Jim Kouri

Jim Kouri, CPP is currently fifth vice-president of the National Association of Chiefs of Police... (more)

Subscribe

Receive future articles by Jim Kouri: Click here

Latest articles

May 3, 2016
New book by rising star provides political action plan for millennial voters


April 15, 2016
CIA chief more concerned with Obamaism than protecting Americans: Critics


April 13, 2016
State Dept. finally turns over Huma Abedin/Susan Rice Benghazi files


April 4, 2016
Federal judge allows watchdog group access to Clinton email


March 23, 2016
ISIS hackers post 'hit list' of Minnesota cops


March 15, 2016
World leaders want Hillary: best president money can buy


March 9, 2016
Iran's Ayatollah: Under Obama U.S. lacks the might it once had


February 3, 2016
Political cover up at State Dept. to benefit Hillary Clinton during primaries


January 26, 2016
ISIS builds stronghold in Libya: Obama and Hillary ignore their handiwork


January 24, 2016
Hillary Clinton's email fiasco worse than originally suspected


More articles