Letter to Representatives Mica and Petri Regarding ATC Web Security
On August 5, 2010, we issued a letter in response to a request from Representative John Mica, Ranking Minority Member of the House Transportation and Infrastructure Committee and Representative Thomas Petri, Ranking Minority Member of the Committee's Aviation Subcommittee. Their request was the result of a roundtable discussion regarding the Federal Aviation Administration (FAA) air traffic control (ATC) system's vulnerability to cyber attack. Specifically, they requested that we provide a status of the recommendations made in our May 2009 report on Web Applications Security and Intrusion Detection in Air Traffic Control Systems. We provided the status of our recommendations from our May 2009 report noting that FAA implemented 4 of our 5 recommendations. FAA has not yet established a timetable to complete the work necessary to address the remaining recommendation.