Thursday, December 13, 2012
A new audit in Kansas is raising questions about whether state computer systems are secure enough to protect confidential information.
The Legislature's auditing division issued a report Thursday that said a review of nine agencies' systems, training and practices showed significant weaknesses.
Auditors said they were able to crack a significant number of computer passwords in six of the agencies because employees didn't create strong ones. Seven of the agencies didn't require employees to do an effective job of changing passwords.
The auditors said that in one agency, employees were directed to give their passwords to their supervisors and computer staff, compromising security.
The report didn't specify which agencies had particular problems, but the review included the departments of Commerce, Corrections, Education, Labor and Revenue.