News
Congress: Terror Threat System Full of Flaws
A U.S. House subcommittee is charging that a $500 million IT project intended to "connect the dots" on terrorists and help prevent another 9/11 is a failure
By Patrick Thibodeau, Computerworld
August 28, 2008 — CSO —
A U.S. House subcommittee is charging that a $500 million IT project intended to "connect the dots" on terrorists and help prevent another 9/11 is a failure; it can't even handle basic Boolean search terms, such as "and," "or" and "not."
Allegations of waste and mismanagement were outlined in a staff memo and letter (download PDF) from the Subcommittee on Investigations and Oversight, which is part of the Committee on Science and Technology. The material was released last week in what is a usually a quiet month for Congress during its August recess.
The bulk of the subcommittee's charges come from a memo (download PDF) prepared by subcommittee staff about a data integration project called Railhead, which is intended to help intelligence and law enforcement agencies uncover terrorist plots.
Railhead, due to be ready by year's end, was supposed to combine and upgrade existing databases called TIDE (Terrorist Identities Datamart Environment; download PDF) and improve terrorism-fighting capabilities. But the project is in such bad shape -- suffering from delays and cost overruns -- that Subcommittee Chairman Brad Miller (D-N.C.) said, "There may be current efforts under way to close down Railhead completely."
Miller's comment was included in a letter he wrote to Edward Maguire, inspector general for the Office of the Director of National Intelligence. Miller said he wants Maguire to investigate the project.
"The end result is a current system used to identify terrorist threats that has been crippled by technical flaws and a new system that, if actually deployed, will leave our country more vulnerable than the existing yet flawed system in operation today," wrote Miller.
The subcommittee makes a case for investigation through a variety of documents it obtained, including user-group meeting minutes, e-mails, internal blog postings and technical reports that raise issues with various aspects of the project. The lead systems integrator for Railhead is The Boeing Co.'s Space and Intelligence Systems Mission division.
Among the issues Miller wants the inspector general to probe is how Railhead is being used. His letter raises questions about money used by Boeing to renovate a building.
Railhead software was tested by the Hewlett-Packard Quality Center, which found that it "passed 148 tasks, but did not complete 26 others and failed 42," he said. Specific problems included a failure to create reports, as well as "find non-exact matches for key entities, such as a suspected terrorist's name," the memo said. "Incredibly, it also failed to demonstrate the ability to use basic Boolean search terms such as and, or and not."
Terrorism
Security Directions: A Virtual Conference
Available On Demand Sept. 30 - Dec. 30
Join us for a virtual event with candid, expert information on top security challenges and issues - all from the comfort of your desktop.
Protecting PII: How to Work with IT to Manage Risk
Understand the critical nature of the test data privacy problem and get tips on how to work with IT to implement a test data privacy program.
Get instant notifications when whitepapers, webcasts and case studies are added
to our library. Sign up for a Resource Alert now!
CSO Corporate Partners
Digital ID World
-
September 14 - 16, 2009Rio Hotel and CasinoRegister Now »
Las Vegas, Nevada
(ISC)2 members can earn up to 24 CPE Credits!
Reference priority code ONLINE and attend the full conference for the reduced rate of $995!
