Government Accountability Office
General Accounting Office
Security-related Reports

GAO Homeland Security Reports - Subcategories

September 11
Dept. of Homeland Security
Disaster Preparedness / Response
Combating Terrorism
Building Security
Nuclear/Chemical/Biological Terrorism
Aviation Security
Maritime Security
Critical Infrastructure Protection
Border Control
Coast Guard
Drug Control
Financial/Counterfeiting
Information Security
Information Technology
Flu Pandemic

Information Security

• Cybersecurity Workforce: Agencies Need to Accurately Categorize Positions to Effectively Identify Critical Staffing Needs, GAO-19-144, March 12, 2019
• DOD Training: U.S. Cyber Command and Services Should Take Actions to Maintain a Trained Cyber Mission Force, GAO-19-362, March 6, 2019
• Information Security: Agencies Need to Improve Implementation of Federal Approach to Securing Systems and Protecting against Intrusions, GAO-19-105, December 18, 2018
• Cybersecurity: Federal Agencies Met Legislative Requirements for Protecting Privacy When Sharing Threat Information, GAO-19-114R, December 6, 2018
• Cybersecurity: Office of Federal Student Aid Should Take Additional Steps to Oversee Non-School Partners' Protection of Borrower Information, GAO-18-518, September 17, 2018
• High-Risk Series: Urgent Actions Are Needed to Address Cybersecurity Challenges Facing the Nation, GAO-18-622, September 6, 2018
• High-Risk Series: Urgent Actions Are Needed to Address Cybersecurity Challenges Facing the Nation, Statement of Gene Dodaro, Comptroller General of the United States, GAO-18-645T, July 25, 2018
• Information Security: Supply Chain Risks Affecting Federal Agencies, Statement of Gregory Wilshusen, Director, Information Technology, GAO-18-667T, July 12, 2018
• Cybersecurity Workforce: Agencies Need to Improve Baseline Assessments and Procedures for Coding Positions, GAO-18-466, June 14, 2018
• Cybersecurity: DHS Needs to Enhance Efforts to Improve and Promote the Security of Federal and Private-Sector Networks, Statement of Gregory Wilshusen, Director, Information Technology, GAO-18-520T, April 24, 2018
• Cybersecurity Workforce: DHS Needs to Take Urgent Action to Identify Its Position and Critical Skill Requirements, Statement of Gregory Wilshusen, Director, Information Technology, GAO-18-430T, March 7, 2018
• Cybersecurity Workforce: Urgent Need for DHS to Take Actions to Identify Its Position and Critical Skill Requirements, GAO-18-175, February 6, 2018
• Defense Civil Support: DOD Needs to Address Cyber Incident Training Requirements, GAO-18-47, November 30, 2017
• Federal Information Security: Weaknesses Continue to Indicate Need for Effective Implementation of Policies and Practices, GAO-17-549, September 28, 2017
• Defense Cybersecurity: DOD's Monitoring of Progress in Implementing Cyber Strategies Can Be Strengthened, GAO-17-512, August 1, 2017
• State Department Telecommunications: Information on Vendors and Cyber-Threat Nations, GAO-17-688R, July 27, 2017
• Cybersecurity: Federal Efforts Are Under Way That May Address Workforce Challenges, GAO-17-533T, April 4, 2017
• Information Security: DHS Needs to Continue to Advance Initiatives to Protect Federal Systems, GAO-17-518T, March 28, 2017
• Cybersecurity: Actions Needed to Strengthen U.S. Capabilities, GAO-17-440T, February 14, 2017
• Cybersecurity: DHS's National Integration Center Generally Performs Required Functions but Needs to Evaluate Its Activities More Completely, GAO-17-163, February 1, 2017
• Information Security: Agencies Need to Improve Controls over Selected High-Impact Systems, GAO-16-501, May 18, 2016
• Vehicle Cybersecurity: DOT and Industry Have Efforts Under Way, but DOT Needs to Define Its Role in Responding to a Real-world Attack, GAO-16-350, March 24, 2016
• Information Security: DHS Needs to Enhance Capabilities, Improve Planning, and Support Greater Adoption of Its National Cybersecurity Protection System. GAO-16-294, January 28, 2016
• Information Security: Federal Agencies Need to Better Protect Sensitive Data, by Joel C. Willemssen, managing director, information technology, before the Subcommittee on Regulatory Affairs and Federal Management, Senate Committee on Homeland Security and Governmental Affairs, and the Subcommittee on Oversight and Management Efficiency, House Committee on Homeland Security, GAO-16-194T, November 17, 2015
• Federal Information Security: Agencies Need to Correct Weaknesses and Fully Implement Security Programs, GAO-15-714, September 29, 2015
• Defense Cybersecurity: Opportunities Exist for DOD to Share Cybersecurity Resources with Small Businesses, GAO-15-777, September 24, 2015
• Information Security: Cyber Threats and Data Breaches Illustrate Need for Stronger Controls across Federal Agencies, by Gregory C. Wilshusen, director, information security issues, before the Subcommittees on Research and Technology and Oversight, House Committee on Science, Space, and Technology, GAO-15-758T, July 8, 2015
• Cybersecurity: Bank and Other Depository Regulators Need Better Data Analytics and Depository Institutions Want More Usable Threat Information, GAO-15-509, July 2, 2015
• Cybersecurity: Recent Data Breaches Illustrate Need for Strong Controls across Federal Agencies, by Gregory C. Wilshusen, director, information security issues, before the Subcommittee on Cybersecurity, Infrastructure Protection, and Security Technologies, House Committee on Homeland Security, GAO-15-725T, June 24, 2015
• Cybersecurity: Actions Needed to Address Challenges Facing Federal Systems, by Gregory C. Wilshusen, director, information security issues, before the House Committee on Oversight and Government Reform, GAO-15-573T, April 22
• Federal Information Security: Mixed Progress in Implementing Program Components; Improved Metrics Needed to Measure Effectiveness, GAO-13-776, September 26, 2013
• Communications Network Security: Outcome-Based Measures Would Assist DHS in Assessing Effectiveness of Cybersecurity Efforts, GAO-13-275, April 3, 2013
• Cybersecurity: A Better Defined and Implemented National Strategy Is Needed to Address Persistent Challenges, by Gregory C. Wilshusen, director, information security issues, before the Senate Committee on Commerce, Science, and Transportation and the Senate Committee on Homeland Security and Governmental Affairs, GAO-13-462T, March 7, 2013
• Cybersecurity: National Strategy, Roles, and Responsibilities Need to Be Better Defined and More Effectively Implemented, GAO-13-187, February 14, 2013
• Information Security: Actions Needed by Census Bureau to Address Weaknesses, GAO-13-63, January 22, 2013
• Information Security: Federal Communications Commission Needs to Strengthen Controls over Enhanced Secured Network Project, GAO-13-155, January 25, 2013
• Information Security: Better Implementation of Controls for Mobile Devices Should Be Encouraged, GAO-12-757, September 18, 2012
• Cybersecurity: Challenges in Securing the Electricity Grid, by Gregory C. Wilshusen, director, information security issues, before the Senate Committee on Energy and Natural Resources, GAO-12-926T, July 17, 2012
• Information Security: Cyber Threats Facilitate Ability to Commit Economic Espionage, by Gregory C. Wilshusen, director, information security issues, before the Subcommittee on Counterterrorism and Intelligence, House Committee on Homeland Security, GAO-12-876T, June 28, 2012
• IT Supply Chain: Additional Efforts Needed by National Security-Related Agencies to Address Risks, by Greg C. Wilshusen, Director, Information Security Issues, before the House Energy and Commerce Committee, Subcommittee on Oversight and Investigations, GAO-12-579T, March 27, 2012
• IT Supply Chain: National Security-Related Agencies Need to Better Address Risks, GAO-12-361, March 23, 2012
• Cybersecurity: Challenges to Securing the Modernized Electricity Grid, by Greg C. Wilhusen, Director, Information Security Issues, and David C. Tremble, Director, Natural Resources and Environment, before the House Energy And Commerce Committee: Oversight And Investigations Subcommittee, GAO-12-507T, February 28, 2012
• Cybersecurity Human Capital: Initiatives Need Better Planning and Coordination, GAO-12-8, November 29, 2011
• Federal Bureau of Investigation: Actions Needed to Document Security Decisions and Address Issues with Condition of Headquarters Buildings. GAO-12-96, November 8, 2011
• Data Mining: DHS Needs to Improve Executive Oversight of Systems Supporting Counterterrorism. GAO-11-742, September 7, 2011
• Defense Department Cyber Efforts: Definitions, Focal Point, and Methodology Needed for DOD to Develop Full-Spectrum Cyberspace Budget Estimates, GAO-11-695R, Jul 29, 2011
• Cybersecurity: Continued Attention Needed to Protect Our Nation's Critical Infrastructure, GAO-11-865T, Jul 26, 2011
• Defense Department Cyber Efforts: DOD Faces Challenges In Its Cyber Activities, GAO-11-75, Jul 25, 2011
• Defense Department Cyber Efforts: More Detailed Guidance Needed to Ensure Military Services Develop Appropriate Cyberspace Capabilities, GAO-11-421, May 20, 2011
• Cybersecurity: Continued Attention Needed to Protect Our Nation's Critical Infrastructure and Federal Information Systems, GAO-11-463T, Mar 16, 2011
• Information Security: Federal Agencies Have Taken Steps to Secure Wireless Networks, but Further Actions Can Mitigate Risk, GAO-11-43, Nov 30, 2010
• Cyberspace Policy: Executive Branch Is Making Progress Implementing 2009 Policy Review Recommendations, but Sustained Leadership Is Needed, GAO-11-24, Oct 6, 2010
• Cyberspace: United States Faces Challenges in Addressing Global Cybersecurity and Governance, GAO-10-606, Jul 2, 2010
• Information Security: Governmentwide Guidance Needed to Assist Agencies in Implementing Cloud Computing, GAO-10-855T, Jul 1, 2010
• Cybersecurity: Continued Attention Is Needed to Protect Federal Information Systems from Evolving Threats, GAO-10-834T, Jun 16, 2010
• Cybersecurity: Key Challenges Need to Be Addressed to Improve Research and Development, GAO-10-466, Jun 3, 2010
• Information Security: Federal Guidance Needed to Address Control Issues with Implementing Cloud Computing, GAO-10-513, May 27, 2010
• Information Security: Concerted Response Needed to Resolve Persistent Weaknesses, GAO-10-536T, Mar 24, 2010
• Information Security: Concerted Effort Needed to Consolidate and Secure Internet Connections at Federal Agencies, GAO-10-237, Mar 12, 2010
• Cybersecurity: Progress Made but Challenges Remain in Defining and Coordinating the Comprehensive National Initiative, GAO-10-338, Mar 5, 2010
• Cybersecurity: Continued Efforts Are Needed to Protect Information Systems from Evolving Threats, GAO-10-230T, Nov 17, 2009
• Information Security: Concerted Effort Needed to Improve Federal Performance Measures, GAO-10-159T, Oct 29, 2009
• Information Security: Concerted Effort Needed to Improve Federal Performance Measures, GAO-09-617, Sep 14, 2009
• Information Security: Agencies Continue to Report Progress, but Need to Mitigate Persistent Weaknesses, GAO-09-546, Jul 17, 2009
• Federal Information Security Issues, GAO-09-817R, Jun 30, 2009
• Cybersecurity: Continued Federal Efforts Are Needed to Protect Critical Systems and Information, GAO-09-835T, Jun 25, 2009
• Information Security: Agencies Make Progress in Implementation of Requirements, but Significant Weaknesses Persist, GAO-09-701T, May 19, 2009
• National Cybersecurity Strategy: Key Improvements Are Needed to Strengthen the Nation's Posture, GAO-09-432T, Mar 10, 2009
• Information Security: Cyber Threats and Vulnerabilities Place Federal Systems at Risk, GAO-09-661T, May 5, 2009
• Cyber Analysis and Warning: DHS Faces Challenges in Establishing a Comprehensive National Capability, GAO-08-588, Jul 31, 2008
• Federal Reserve Banks: Areas for Improvement in Information Security Controls GAO-08-836R June 16, 2008
• Information Security: FDIC Sustains Progress but Needs to Improve Configuration Management of Key Financial Systems GAO-08-564 May 30, 2008
• Privacy: Agencies Should Ensure That Designated Senior Officials Have Oversight of Key Functions GAO-08-603 May 30, 2008
• Information Security: TVA Needs to Enhance Security of Critical Infrastructure Control Systems and Networks, GAO-08-775T, May 21, 2008
• Information Security: TVA Needs to Address Weaknesses in Control Systems and Networks, GAO-08-526, May 21, 2008
• Privacy: Alternatives Exist for Enhancing Protection of Personally Identifiable Information GAO-08-536 April 19, 2008
• Information Security: Progress Reported, but Weaknesses at Federal Agencies Persist GAO-08-571T March 12, 2008
• Information Security: Securities and Exchange Commission Needs to Continue to Improve Its Program GAO-08-280 February 29, 2008
• Information Security: Although Progress Reported, Federal Agencies Need to Resolve Significant Deficiencies GAO-08-496T February 14, 2008
• Information Security: IRS Needs to Address Pervasive Weaknesses GAO-08-211 January 8, 2008
• Critical Infrastructure Protection: Sector-Specific Plans' Coverage of Key Cyber Security Elements Varies GAO-08-64T October 31, 2007
• Critical Infrastructure Protection: Sector-Specific Plans' Coverage of Key Cyber Security Elements Varies GAO-08-113 October 31, 2007
• Information Security: Sustained Management Commitment and Oversight Are Vital to Resolving Long-standing Weaknesses at the Department of Veterans Affairs GAO-07-1019 September 7, 2007
• Information Security: Selected Departments Need to Address Challenges in Implementing Statutory Requirements GAO-07-528 August 31, 2007
• Information Security: Despite Reported Progress, Federal Agencies Need to Address Persistent Weaknesses GAO-07-837 July 27, 2007
• Homeland Security: DHS Privacy Office Has Made Progress but Faces Continuing Challenges GAO-07-1024T July 24, 2007
• Information Security: Homeland Security Needs to Immediately Address Significant Weaknesses in Systems Supporting the Program GAO-07-870 July 13, 2007
• Cybercrime: Public and Private Entities Face Challenges in Addressing Cyber Threats GAO-07-705 June 22, 2007
• Information Security: Homeland Security Needs to Enhance Effectiveness of Its Program GAO-07-1003T June 20, 2007
• Information Security: Agencies Report Progress, but Sensitive Data Remain at Risk GAO-07-935T June 7, 2007
• Personal Information: Data Breaches Are Frequent, but Evidence of Resulting Identity Theft Is Limited; However, the Full Extent Is Unknown GAO-07-737 June 4, 2007
• Information Security: Federal Deposit Insurance Corporation Needs to Sustain Progress Improving Its Program GAO-07-351, May 18, 2007
• Information Security: FBI Needs to Address Weaknesses in Critical Network GAO-07-368, April 30, 2007
• Information Security: Persistent Weaknesses Highlight Need for Further Improvement GAO-07-751T, April 19, 2007
• Information Security: Further Efforts Needed to Address Significant Weaknesses at the Internal Revenue Service GAO-07-364,March 30, 2007
• Information Security: Sustained Progress Needed to Strengthen Controls at the Securities and Exchange Commission GAO-07-256, March 27, 2007
• Information Security: Veterans Affairs Needs to Address Long-Standing Weaknesses GAO-07-532T, February 28, 2007
• Information Security: Agencies Need to Develop and Implement Adequate Policies for Periodic Testing GAO-07-65, October 20, 2006
• Information Security: Coordination of Federal Cyber Security Research and Development GAO-06-811, September 29, 2006
• Information Security: Federal Deposit Insurance Corporation Needs to Improve Its Program GAO-06-620, August 31, 2006
• Information Security: The Centers for Medicare & Medicaid Services Needs to Improve Controls over Key Communication Network GAO-06-750, August 30, 2006
• Information Security: Federal Reserve Needs to Address Treasury Auction Systems GAO-06-659, August 30, 2006
• Information Security: Leadership Needed to Address Weaknesses and Privacy Issues at Veterans Affairs GAO-06-897T, June 20,2006
• Data Mining: Agencies Have Taken Key Steps to Protect Privacy in Selected Efforts, but Significant Compliance Issues Remain. GAO-05-866, August 15, 2005.
• Information Security: Weaknesses Persist at Federal Agencies Despite Progress Made in Implementing Related Statutory Requirements. GAO-05-552, July 15, 2005.
• Identity Theft: Some Outreach Efforts to Promote Awareness of New Consumer Rights Are Under Way. GAO-05-710, June 30, 2005.
• Information Security: Key Considerations Related to Federal Implementation of Radio Frequency Identification Technology, by Gregory C. Wilshusen, director, information security issues, before the Subcommittee on Economic Security, Information Protection, and Cybersecurity, House Committee on Homeland Security. GAO-05-849T, June 22, 2005.
• Information Security: Department of Homeland Security Needs to Fully Implement Its Security Program. GAO-05-700, June 17, 2005.
• Information Security: Radio Frequency Identification Technology in the Federal Government. GAO-05-551, May 27, 2005.
• Information Security: Federal Agencies Need to Improve Controls over Wireless Networks. GAO-05-383, May 17, 2005. [PDF 1.5MB]
• Information Security: Emerging Cybersecurity Issues Threaten Federal Information Systems. GAO-05-231, May 13, 2005.
• Information Security: Improving Oversight of Access to Federal Systems and Data by Contractors Can Reduce Risk. GAO-05-362, April 22, 2005.
• Information Security: Internal Revenue Service Needs to Remedy Serious Weaknesses over Taxpayer and Bank Secrecy Act Data. GAO-05-482, April 15, 2005.
• Information Security: Department of Homeland Security Faces Challenges in Fulfilling Statutory Requirements, by Gregory C. Wilshusen, director, information security, before the Subcommittee on Management, Integration, and Oversight, House Committee on Homeland Security. GAO-05-567T, April 14, 2005.
• Information Security: Continued Efforts Needed to Sustain Progress in Implementing Statutory Requirements, by Gregory C. Wilshusen, director, information technology, before the House Committee on Government Reform. GAO-05-483T, April 7, 2005.
• Information Security: Securities and Exchange Commission Needs to Address Weak Controls Over Financial and Sensitive Data. GAO-05-262, March 23, 2005.
• Information Security: Agencies Need to Implement Consistent Processes in Authorizing Systems for Operation. GAO-04-376, June 28, 2004.
• Information Security: Continued Actions Needed to Improve Federal Software Patch Management. GAO-04-706, June 2, 2004.
• Information Security: Agencies Face Challenges in Implementing Effective Software Patch Management Processes, by Robert F. Dacey, director, information security, before the Subcommittee on Technology, Information Policy, Intergovernmental Relations, and the Census, House Committee on Government Reform. GAO-04-816T, June 2, 2004.
• SECURITY CLEARANCES FBI Has Enhanced Its Process for State and Local Law Enforcement Officials (GAO-04-596), April 2004 [PDF 1.3 Mb]
• Information Security: Continued Efforts Needed to Sustain Progress in Implementing Statutory Requirements, by Robert F. Dacey, director, information security, before the Subcommittee on Technology, Information Policy, Intergovernmental Relations, and the Census, House Committee on Government Reform. (GAO-04-483T), March 16, 2004 [PDF 574 KB]
• Information Security: Technologies to Secure Federal Systems. (GAO-04-467), March 9, 2004 [PDF 1.05 MB]
• Information Security: Further Efforts Needed to Address Serious Weaknesses at USDA. (GAO-04-154), January 30, 2004 [PDF 354 KB]
• Information Security: Status of Federal Public Key Infrastructure Activities at Major Departments and Agencies. (GAO-04-157, ), December 15, 2004 [PDF 534 KB]
• Information Security: Improvements Needed in Treasury's Security Management Program, (GAO-04-77), November 14, 2003 [PDF 493 Kb]
• Posthearing Questions from the September 10, 2003, Hearing on Worm andVirus Defense: How Can We Protect Our Nation's Computers from These Serious Threats?, (GAO-04-173R), October 17, 2003 [PDF 76 Kb]
• Information Security: Computer Controls Over Key Treasury Internet Payment System (GAO-03-837) July 30, 2003 [PDF 405 Kb]
• Information Security: Continued Efforts Needed to Fully Implement Statutory Requirements, by Robert F. Dacey, director, information security, before the Subcommittee on Technology, Information Policy, Intergovernmental Relations, and the Census, House Committee on Government Reform, June 24, 2003, (GAO-03-852T) [PDF 477 Kb]
• Information Technology: Homeland Security Needs to Improve Entry Exit System Expenditure Planning, June 9, 2003 (GAO-03-563) [PDF 932 Kb]
• Information Security: Progress Made, but Challenges Remain to Protect Federal Systems and the Nation's Critical Infrastructure, by Robert F. Dacey, director, information security issues, before the Subcommittee on Technology, Information Policy, Intergovernmental Relations, and the Census, House Committee on Government Operations, April 8, 2003 (GAO-03-564T) [PDF 776 Kb]
• COMPUTER SECURITY: Progress Made, But Critical Federal Operations and Assets Remain at Risk -- Statement of Robert F. Dacey, Director, Information Security Issues, November 19, 2002, (GAO-03-303T) [PDF 285 Kb]
• CRITICAL INFRASTRUCTURE PROTECTION: Federal Efforts Require a More Coordinated and Comprehensive Approach for Protecting Information Systems, July 2002 (GAO-02-474) [PDF 1.12 Mb]
• INFORMATION SECURITY: Corps of Engineers Making Improvements, But Weaknesses Continue, June 2002 (GAO-02-589) [PDF 237 Kb]
• CRITICAL INFRASTRUCTURE PROTECTION: Significant Challenges in Safeguarding Government and Privately Controlled Systems from Computer-Based Attacks -- Statement of Joel C. Willemssen Managing Director, Information Technology Issues, September 26, 2001 (GAO-01-1168T) [PDF 244 Kb]
• INFORMATION SECURITY: Code Red, Code Red II, and SirCam Attacks Highlight Need for Proactive Measures -- Statement of Keith A. Rhodes Chief Technologist, August 29, 2001 (GAO-01-1073T) [PDF 142 Kb]
• INFORMATION SECURITY: Weaknesses Place Commerce Data and Operations at Serious Risk, August 2001 (GAO-01-751) [PDF 288 Kb]
• INFORMATION SECURITY: Weaknesses Place Commerce Data and Operations at Serious Risk -- Statement of Robert F. Dacey Director, Information Security Issues, August 3, 2001 (GAO-01-1004T) [PDF 205 Kb]
• Information Security: Advances and Remaining Challenges to Adoption of Public Key Infrastructure Technology, (Chapter Report, 02/26/2001, GAO/GAO-01-277). [PDF 742 Kb]
• Computer Security: Weaknesses Continue to Place Critical Federal Operations and Assets at Risk -- Statement of Robert F. Dacey Director, Information Security Issues, (05-APR-01, GAO-01-600T). [PDF 147 Kb]
• Critical Infrastructure Protection: Challenges to Building a Comprehensive Strategy for Information Sharing and Coordination [T-AIMD-00-268] 07/26/2000. [PDF Version]
• Information Security: Software Change Controls at the Department of Energy [AIMD-00-189R] 06/30/2000
• Critical Infrastructure Protection: Comments on the Proposed Cyber Security Information Act of 2000 [T-AIMD-00-229] 06/22/2000. [PDF Version]
• Critical Infrastructure Protection: "ILOVEYOU" Computer Virus Highlights Need for Improved Alert and Coordination Capabilities [T-AIMD-00-181] 05/18/2000. [PDF Version]
• Information Security: "ILOVEYOU" Computer Virus Emphasizes Critical Need for Agency and Governmentwide Improvements [T-AIMD-00-171] 05/10/2000
• Critical Infrastructure Protection: Comments on the National Plan for Information Systems Protection [T-AIMD-00-072] 02/01/2000
• Information Security: Comments on Proposed Government Information Act of 1999 [T-AIMD-00-107] 03/02/2000
• Computer Security: FAA Needs to Improve Controls Over Use of Foreign Nationals to Remediate and Review Software [AIMD-00-055] 12/23/1999
• Critical Infrastructure Protection: Fundamental Improvements Needed to Assure Security of Federal Operations [T-AIMD-00-007] 10/06/1999. [PDF Version]
• Critical Infrastructure Protection: Comprehensive Strategy Can Draw on Year 2000 Experiences [AIMD-00-001] 10/01/1999. [PDF Version]
• Information Security: Serious Weaknesses Place Critical Federal Operations and Assets at Risk. AIMD-98-92. 63 pp. plus 4 appendices (10 pp.) September 23, 1998. [PDF Version]
• Information Security: Strengthened Management Needed to Protect Critical Federal Operations and Assets, by Gene L. Dodaro, Assistant Comptroller General for Accounting and Information Management Issues, before the Senate Committee on Governmental Affairs. GAO/T-AIMD-98-312, Sept. 23. [PDF Version]
• Information Security: Serious Weaknesses Put State Department and FAA Operations at Risk. T-AIMD-98-170. 14 pp. May 19, 1998. [PDF Version]
• Pervasive, Serious Weaknesses Jeopardize State Department Operations (AIMD-98-145) May 19, 1998.
• Air Traffic Control: Weak Computer Security Practices Jeopardize Flight Safety (Letter Report, 05/18/98, GAO/AIMD-98-155).
• Information Security: Opportunities for Improved OMB Oversight of Agency Practices GAO/AIMD-96-110, September 24, 1996. [PDF Version]
• Information Security: Computer Attacks at Department of Pose Increasing Risks (Chapter Report, GAO/AIMD-96-84, 05/22/96)
• Information Security: Computer Hacker Information Available on the Internet (Stmnt. for the Rec., 06/05/96, GAO/T-AIMD-96-108).
• COMPUTER SECURITY: Hackers Penetrate DOD Computer Systems GAO/T-IMTEC-92-5 November 20, 1991 [PDF]
• COMPUTER SECURITY: Governmentwide Planning Process Had Limited Impact GAO/IMTEC-90-48 May 10, 1990 [PDF 1.76 Mb]