Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Security of the Social Security Administration’s Wireless Networks (Limited Distribution)

February 12, 2014

According to the National Institute of Standards and Technology, a wireless local area network (wireless network) is a group of devices within a limited geographic area, such as an office building, that exchanges data through radio communications. Wireless networks are typically less secure than their wired counterparts for several reasons, including the ease of access to the network and often weak security configurations. The purpose of this report was to determine whether the SSA's wireless networks and attached devices were (1) authorized and (2) reasonably secure in accordance with Federal laws, regulations, guidelines, and standards as well as with Agency policy and procedures. As part of SSA’s Fiscal Year 2013 Financial Statement Audit, we contracted with Grant Thornton LLP (GT) to perform additional wireless testing. GT expanded its wireless testing to include wireless network mapping, a vulnerability assessment, and penetration testing to meet the objectives of this review and inform its Financial Statement Audit internal control opinion. </p>

  According to the National Institute of Standards and Technology, a wireless local area network (wireless network) is a group of devices within a limited geographic area, such as an office building, that exchanges data through radio communications. Wireless networks are typically less secure than their wired counterparts for several reasons, including the ease of access to the network and often weak security configurations. The purpose of this report was to determine whether the SSA's wireless networks and attached devices were (1) authorized and (2) reasonably secure in accordance with Federal laws, regulations, guidelines, and standards as well as with Agency policy and procedures. As part of SSA’s Fiscal Year 2013 Financial Statement Audit, we contracted with Grant Thornton LLP (GT) to perform additional wireless testing. GT expanded its wireless testing to include wireless network mapping, a vulnerability assessment, and penetration testing to meet the objectives of this review and inform its Financial Statement Audit internal control opinion. </p>

Read the summary report

Looking for U.S. government information and services?
Visit USA.gov