24周年

財(cái)稅實(shí)務(wù) 高薪就業(yè) 學(xué)歷教育
APP下載
APP下載新用戶掃碼下載
立享專屬優(yōu)惠

安卓版本:8.7.50 蘋果版本:8.7.50

開發(fā)者:北京正保會計(jì)科技有限公司

應(yīng)用涉及權(quán)限:查看權(quán)限>

APP隱私政策:查看政策>

HD版本上線:點(diǎn)擊下載>

美國國稅局急需加強(qiáng)無線網(wǎng)絡(luò)安全

來源: www.accountingtoday.com 編輯: 2011/11/01 08:44:55 字體:

The Internal Revenue Service needs to do a better job of protecting its computer systems and taxpayer data as it expands its use of wireless technology,according to a new government report.

The report,from the Treasury Inspector General for Tax Administration,noted that the IRS currently uses a wireless local area network,or WLAN,at its National Distribution Center in Bloomington,Ind.The wireless network makes it easier for some employees to connect to the IRS network remotely,but like much wireless technology,it also offers gaping security holes.

TIGTA reviewed whether the IRS has implemented effective controls to detect the unauthorized use of wireless technology and reviewed its plans for increasing use of WLAN technology.The report found that the IRS:established a wireless security policy that was generally in compliance with federal standards;deployed continuous monitoring procedures for detecting rogue wireless access points and other computing devices;and used a virtual private network to facilitate the secure transfer of sensitive data during remote access using wireless technology.

However,the TIGTA inspectors also found that some IRS employees were using personal unauthorized wireless devices on their laptops to connect to the IRS network.While these employees were authorized to access the network,the use of personal wireless devices is prohibited.

In addition,the IRS developed software to allow laptops to wirelessly connect to the IRS network from non-IRS facilities,such as a home,airport,or hotel,and allowed its use by approximately 300 users before the software was properly tested and approved for use enterprise-wide.

"While wireless communications can allow IRS employees to operate more efficiently,protecting the security of taxpayer data must always be the top priority,"said TIGTA Inspector General J.Russell George in a statement.

TIGTA recommended that the IRS implement automated nationwide network scans for unauthorized wireless activity,devices,and software;ensure that a security assessment and authorization is completed for all wireless technologies prior to use in the IRS environment;and resume monitoring of the WLAN at the National Distribution Center at appropriate intervals to ensure all files are set in accordance with IRS security policy.

The IRS agreed to take action to address two of TIGTA's recommendations,but disagreed that IRS policy requires completion of a security assessment and authorization on wireless technologies that it is piloting or demonstrating.

"In the case of IRS's wireless pilot,a risk assessment was performed to allow the IRS to understand what risks might exist so that the responsible Authorizing Official could make an informed decision before he or she signed a memo authorizing the pilot to begin,"wrote IRS chief technology officer Terence V.Milholland."Also,a full SA&A for the pilot would be premature as the wireless network was still in a design phase and being conducted in an area where users had little access to any taxpayer data.”

TIGTA,for its part,maintained that prior to placing wireless technologies on the live IRS network,the IRS should ensure that it has completed the required security assessment and authorization.

我要糾錯(cuò)】 責(zé)任編輯:xyz

免費(fèi)試聽

限時(shí)免費(fèi)資料

  • 美國注冊會計(jì)師思維導(dǎo)圖

    思維導(dǎo)圖

  • 美國注冊會計(jì)師學(xué)習(xí)計(jì)劃

    學(xué)習(xí)計(jì)劃

  • 美國注冊會計(jì)師科目特點(diǎn)

    科目特點(diǎn)

  • 美國注冊會計(jì)師報(bào)考指南

    報(bào)考指南

  • 美國注冊會計(jì)師歷年樣卷

    歷年樣卷

  • USCPA常用財(cái)會英語詞匯

    財(cái)會英語

回到頂部
折疊
網(wǎng)站地圖

Copyright © 2000 - odtgfuq.cn All Rights Reserved. 北京正保會計(jì)科技有限公司 版權(quán)所有

京B2-20200959 京ICP備20012371號-7 出版物經(jīng)營許可證 京公網(wǎng)安備 11010802044457號