Page 30 - Cyber Warnings
P. 30
Data Spill An Everyday Threat to National Security
by Michael Waksman, CEO, Jetico Inc. Oy
Data has a frequent troublesome habit of residing somewhere it shouldn't. In national security
spaces, classified data can end up on unclassified or lower level classification systems. This is
known as a data spill.
Other terms to describe this type of event include classified spill, contamination, and classified
message incident. But they all mean the same thing - classified data existing in a location where
it is not authorized.
How do data spills happen?
Several scenarios can lead to a data spill. A file moved to the wrong location is an obvious
common example. In that situation, either a person with clearance or an automated process with
clearance moves a file from a classified system to a system with lower classification or no
classification.
Accidental email distribution is another typical fault that leads to a data spill. Perhaps the wrong
file was mistakenly attached to an email.
Or someone accidentally clicked ‘Reply all’ rather than ‘Reply’ in a thread.
In addition, mismarked files on servers, improperly marked hard copies or media, and
Department of Defense (DoD) classification changes can all lead to data spills.
What kind of data spills happen?
There are three main categories of data spills:
Inadvertent
If someone had no reason to believe their actions would lead to a data spill, it can be
called inadvertent.
Relying on improperly marked data for decision making is a typical cause for an
inadvertent spill.
Willful
When an individual purposefully disregards procedures or policies and causes a data
spill, this is considered willful. Intentionally bypassing security controls is an example of
this.
30 Cyber Warnings E-Magazine – July 2017 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide
