Update On The Department of State’s Bureau of Consular Affairs Consular Consolidated Database: A system that touches the entire nation

Bob Gourley July 13, 2015

Federal technology news and analysis over the last month has been dominated by the OPM cybersecurity failures, and with good cause. We should all continue to track and learn from the lessons there. But there is also a danger that we will all focus too hard on that single topic when there are so many other important enterprise IT issues to dive into. One topic I believe federally focused enterprise technologists should have paid more attention to is the recent reporting of issues at the Department of State’s Bureau of Consular Affairs.

The Bureau of Consular Affairs Consular Consolidated Database (CCD) is a system critical to the nation. When it works the unsung heroes who keep it running do not get nearly enough credit. When it fails, the disruption to U.S. citizens abroad and at home and business interests everywhere is almost too high to calculate.

The CCD is fundamental to most all the services provided by the Bureau. It is key to processing passport applications for citizens who wish to travel as well as for visa applicants. The reviews of data associated with the over 50,000 visa applications a day is in many ways the first line of defense for the nation. So really, the data held by and operated on by this group is of paramount importance to our national security.

Imagine if the system of systems supporting the Bureau’s missions were to have outages. Our citizens overseas would not be served as well as they could be, overseas emergency passport applications would be delayed, visa applications would be more backlogged, and important collaboration with the national security community on issues like counterterrorism would be jeopardized.

Now imagine of the data in this system was made available to our nation’s adversaries. Imagine, for example, if the same actor that had over 100 million health records of U.S. citizens and 18 million investigation and employment records of federal employees from the OPM breach now had access to every passport ever applied for by a U.S. citizen and every visa ever applied for by any foreign citizen.

Imagine if that data included addresses, contact info and even photos of everyone involved. Imagine the correlation of data between and among those data sets and the knowledge that could be extracted.

Imagining this failure scenario is important so we understand the importance of maintaining both the availability and security of the CCD.

I read everything I could regarding outages impacting the CCD over the last year, including the official statements by the Department of State (the July 2014 outage was reported on here, the June 2015 outage was reported on here) as well as the additional color and context provided byNPR, US News and World Report, and Nextgov. I then contacted the Bureau to ask a few clarifying questions, seeking to extract information that will be of use to the more technical of us in the community.

The following is what I believe the current situation to be:

The outages of 2014 and 2015 had different causes. The 2014 outages were due to a patch added to the system intended to resolve a known issue but resulted in unintended consequences. The 2015 outage was due to hardware failure with a recovery process compounded by both the production system and backup being impacted.
The 2015 outage was painful, but the system is back online and the backlog the outage caused has for the most part been worked off.
There is no indication that either outage was caused by hostile actors. There are certainly attack scenarios to think through and to plan to mitigate, but all available information I have seen or heard indicates there is no indication that this was anything other than software (2014) and hardware (2015) failures.
Plans to improve the system are to upgrade it to provide a reliable service while at the same time execute a modernization effort. Upgrading a large, complex system of systems like this is done in ways that cause brief outages. Sometimes this is just totally unavoidable. Due to unforeseen events (the Nepal earthquake, Collapse and war in Yemen were cited by State) the upgrades were delayed. Had they been made the system might have continued to function.

Opinions:

Outages occur in complex systems (like the 8 July NYSE and United Airlines outages). However, important systems should not suffer outages.
The fact that there are outages of a mission critical system means it is in need of modernization. It also means the senior leadership team at the Bureau should consider changes to their plans.
The modernization needed may well be redesign vice incremental updates. With new data approaches available from industry (including now proven/production ready Hadoop-based solutions), State should look at a total redesign, asap. Key criteria for the new system should be no outages, ever. Hardware and software both fail, that is true, but well designed systems account for this in ways that deliver continuous services for users. This system is important enough to have that design criteria met.
Other design criteria for the new system should be enhanced security to include absolutely extreme instrumentation and automation.
A system of this importance could use external help, and I don’t mean help by the same contractors that have been tasked with building it. I mean help by external, independent technologists who can provide insights from across industry and government.
Reaching out to other government agencies for design assistance is also a best practice. There are lessons at NSA, CIA, DIA, DHS, DoJ and FBI that can inform the design of the CCD.

What are your thoughts?

About Bob Gourley

Bob Gourley is the CTO and Co-Founder of the due diligence and cybersecurity consultancy OODA LLC , which publishes CTOvision.com and OODAloop.com. Bob's background is as an all source intelligence analyst and an enterprise CTO.

Gain Powerful Insights Into The Future With OODA Loop’s Technology Tracking

In a continuation of our journey to bring the best, most actionable technology content to enterprise decision-makers we have merged our research and reporting activities into the OODAloop.com site (both CTOvision.com and OODAloop.com are owned and operated by OODA LLC). CTOvision will focus only on one small niche, a vision for a technology enabled future. […]

CTOvision and OODA: Big Changes Coming Soon

In a continuation of our journey to bring the best, most actionable technology content to enterprise decision-makers we are merging our research and reporting activities into the OODAloop.com site (both CTOvision.com and OODAloop.com are owned and operated by OODA LLC). This will give our community access to the same technology summaries we currently produce as […]

Give Your Career A Boost By Learning From Experienced Decision Makers

Our video and audio podcast, the OODAcast, provides content that can help accelerate your career and improve your decision making. The series is based on interviews of some of the greatest most accomplished enterprise technologists we can find. We ask questions designed to pull out lessons applicable to accelerating the career of any professional. We […]

Think Twice Before Deciding To Use A Personal VPN: You could be getting some really bad advice

From the 1930s to 1950s (far too long) the medical community just would not wake up to the fact that cigarettes could cause harm (see More Doctors Smoke Camels). Why did they stick with this misperception for so long? When so many good people come to the wrong conclusion it probably means some deeply human […]

Please help spread the word: USNI and NIP Essay Contest: This year’s challenge area a key one for the nation

Please help share the content at this link to any thinker/writer you know: 2020 Information Warfare Essay Contest This contest is open to all contributors, active-duty, military, reservists, veterans, and civilians. Generally the winners have had a solid understanding of the nature of modern conflict, but really any thinkers/writers should look over the contest and […]

Centripetal wins historic $2.6-$3.2 Bil vs. Cisco Systems; largest US patent infringement award to date

Editor’s note: I am proud to say I have a history with Centripetal Networks serving on their board and then later as an advisor. It was horrible to learn that a Tech Titan like Cisco was infringing on their patents. It is good now to see when the facts were reviewed justice was done. -bg […]

Super Bowl Ads Indicate Big Businesses Think You Are Afraid of AI

Tom Loftus provided an insightful review of some of Super Bowl ads in the 4 Feb 2019 Wall Street Journal. Like AI parody in SNL, these ads really poked fun at computers: Seriously, did anyone catch the commercials? If the Super Bowl is the zeitgeist, then it is safe to say that America is not […]

HBO’s Westworld: The Man In Black is a special kind of Twitter user

HBO’s Westworld is a modern take on the Michael Crichton SciFi tale of a robotic amusement park. The HBO version has a new twist. The creators/writers were all exposed to years of Twitter, which has influenced every episode and the entire arch of two seasons of the show. Now that season two is wrapping up, […]

All Enterprise Techies Should Watch HBO’s SciFi Epic Westworld: It will help us dialog over shared experiences on what we will not be creating

Westworld season one was a great mix of science fiction and drama and action and it was done in a way that should help people think through many tech ethics questions, like how do we want to treat our robots? Does treating robots with violence change our nature? Can robots become sentient? HBO has a […]

Related