The US Government Accountability Office (GAO) reported that Login.gov's identity verification system has made progress but lacks a robust backup testing policy. While the system does maintain data backups, auditors highlight the absence of established policies ensuring the effectiveness of these backups. Without thorough testing, there's a risk that compromised backup data could lead to complete data loss in the event of a cyber breach. GSA officials affirm that the backups are essential for maintaining Login.gov's core functionality, but the inadequate testing presents a significant cybersecurity concern.
If Login.gov's backup data was not tested to ensure that its integrity was not compromised, then it could result in complete loss of data if a breach were to occur.
Officials told us that the backups pertained to data that are critical to the availability of Login.gov. They also stated that if the data were to be lost it would negatively impact Login.gov's core services.
Collection
[
|
...
]