Type: Lessons Learned
Publisher: Los Alamos National Laboratory, Los Alamos, NM (LANL)
Published As: Public
Through discussions, a potential security incident was identified based on the discovery that an oscilloscope capable of data storage, with a Windows-7 operating system, had been released to an approved source for calibration due to internal capability/capacity limits for performing the calibration. It was further identified that:
- Data was stored on the oscilloscope that had not been derivatively classified;
- Guest accounts on the system allowed for administrative rights to the data stored on the unit; and
- Potential loss of data could have occurred.
Lessons Learned: Evaluate your inspection, measuring, and test equipment for other capabilities and risks more frequently. Due to advances in technology, items are capable of more functions and present additional risks to users in the area of safety, security, and software. Therefore, additional requirements may apply.
You must be logged in to open the attachment.Download Article