The Defense Department's compliance with its information assurance vulnerability policy has not been consistent, the DOD inspector general states in a report released today . The policy, issued in late 1999, directed the Defense Information Systems Agency to develop a database of information assurance vulnerability alerts "that would ensure a positive control mechanism for system administrators to receive, acknowledge and comply" with those alerts, the IG report states. Commanders-in-chief, service leaders and defense agencies were directed to acknowledge their receipt...
