While finding the Asheville Police Department in compliance with most of the criteria for participating in a national criminal-information network, the Federal Bureau of Investigation, in a newly published review, documented shortcomings in the APD’s online data security involving key elements of the program.

The FBI’s audit of APD’s information technology systems was conducted in May 2013 and published last week by Cryptome, an online library of once-secret materials that is run by anti-secrecy activists.

The document doesn’t say why the audit was initiated. Coincidentally or not, the FBI was involved in the recent federal prosecution of the APD’s former evidence manager, who pled guilty to stealing drugs from an evidence room rife with record-keeping problems.

It does reveal the few but significant areas where the APD was found lacking in standards for participation in Criminal Justice Information Services, an FBI-run online network that is “the world’s largest repository of criminal fingerprints and history records,” which is used “to catch crooks and terrorists,” as the bureau puts it.

The audit is below, with annotations noting problems identified by the FBI, including the APD’s breaches of protocols instituted to keep certain law enforcement information secure. Click the “Notes” tab to go directly to those excerpts.

Learn more

WLOS-TV reports on the audit. This story may be found here and is published by Carolina Public Press through a content-sharing partnership with WLOS-TV.

Close window X

Republish this article

This work is licensed under a Creative Commons Attribution-NoDerivatives 4.0 International License.

This work is licensed under a Creative Commons Attribution-NoDerivatives 4.0 International License. You may republish our stories for free, online or in print. Simply copy and paste the article contents from the box below. Note, some images and interactive features may not be included here. Read our Republishing Guidelines for more information.

DOCUMENT: FBI audit of Asheville Police Department’s IT security released

by Jon Elliston, Carolina Public Press
July 15, 2014

<h1>DOCUMENT: FBI audit of Asheville Police Department’s IT security released</h1> <p class="byline">by Jon Elliston, Carolina Public Press <br />July 15, 2014</p> <div class="wp-block-image wp-caption"> <figure class="alignright is-resized"><a href="http://carolinapublicpress.org/wp-content/uploads/2014/07/FBI-IT-report-on-APD-graphic.png"><img src="http://carolinapublicpress.org/wp-content/uploads/2014/07/FBI-IT-report-on-APD-graphic-210x300.png" alt="FBI IT report on APD graphic" class="wp-image-19801" height="300" width="210" /></a><figcaption>Read the full document below, with annotations noting the problems turned up by the FBI.</figcaption></figure> </div> <p>While finding the Asheville Police Department in compliance with most of the criteria for participating in a national criminal-information network, the Federal Bureau of Investigation, in a newly published review, documented shortcomings in the APD’s online data security involving key elements of the program.</p> <p>The FBI’s audit of APD’s information technology systems was conducted in May 2013 and published last week by <a href="http://cryptome.org/" target="_blank" rel="noopener noreferrer">Cryptome</a>, an online library of once-secret materials that is run by anti-secrecy activists.</p> <p>The document doesn’t say why the audit was initiated. Coincidentally or not, the FBI was involved in the recent <a href="http://carolinapublicpress.org/19552/former-apd-evidence-room-manager-sentenced-audit-will-finally-be-released-thursday" target="_blank" rel="noopener noreferrer">federal prosecution of the APD’s former evidence manager</a>, who pled guilty to stealing drugs from an evidence room <a href="http://carolinapublicpress.org/19565/asheville-police-department-evidence-room-audit-released" target="_blank" rel="noopener noreferrer">rife with record-keeping problems</a>.</p> <p>It does reveal the few but significant areas where the APD was found lacking in standards for participation in <a href="https://www.cjis.gov/CJISEAI/TAMOperationHandler?TAM_OP=token_login&amp;ERROR_CODE=0x00000000&amp;URL=%2F&amp;AUTHNLEVEL=" target="_blank" rel="noopener noreferrer">Criminal Justice Information Services</a>, an&nbsp;<span style="font-size: 14px;line-height: 1.5em">FBI-run&nbsp;</span><span style="font-size: 14px;line-height: 1.5em">online network that is “the world’s largest repository of criminal fingerprints and history records,” which is used “to catch crooks and terrorists,” </span><a style="font-size: 14px;line-height: 1.5em" href="http://www.fbi.gov/about-us/cjis" target="_blank" rel="noopener noreferrer">as the bureau puts it</a><span style="font-size: 14px;line-height: 1.5em">.</span></p> <p>The audit is below, with annotations noting problems identified by the FBI, including the APD’s&nbsp;breaches of protocols instituted to keep certain law enforcement information secure. Click the “Notes” tab to go directly to those excerpts.</p> <div class="DV-container" id="DV-viewer-1216463-fbi-it-audit-of-apd"></div> <p>// </p> <p> <a href="http://s3.documentcloud.org/documents/1216463/fbi-it-audit-of-apd.pdf">FBI IT Audit of APD (PDF)</a><br /> <a href="http://s3.documentcloud.org/documents/1216463/fbi-it-audit-of-apd.txt">FBI IT Audit of APD (Text)</a></p> <hr class="wp-block-separator" /> <h2></h2> <h2>Learn more</h2> <p>WLOS-TV reports on the audit. This story may be found <a href="http://wlos.com/shared/news/features/top-stories/stories/wlos_apd-internet-security-audit-16972.shtml" target="_blank" rel="noopener noreferrer">here</a> and is published by Carolina Public Press through a content-sharing partnership with WLOS-TV.</p></p> <p>This <a target="_blank" href="https://carolinapublicpress.org/19798/document-fbi-audit-of-asheville-police-departments-it-security/">article</a> first appeared on <a target="_blank" href="https://carolinapublicpress.org">Carolina Public Press</a> and is republished here under a Creative Commons license.<img src="https://i0.wp.com/carolinapublicpress.org/wp-content/uploads/2020/07/cropped-cropped-CPPlogo_icon_RGB.png?fit=150%2C150&amp;ssl=1" style="width:1em;height:1em;margin-left:10px;"><img id="republication-tracker-tool-source" src="https://carolinapublicpress.org/?republication-pixel=true&post=19798&amp;ga3=G-45T85MYXXN" style="width:1px;height:1px;"></p> Copy to Clipboard

1