Failed Security of ObamaCare Website
The House Science Committee will call computer hackers to testify on Capitol Hill at committee hearings on the lax privacy safeguards when an individual logs on to the ObamaCare website, and divulging sensitive personal information
The website requires users to input such personal information as birth dates, Social Security numbers and household incomes in order to obtain information about potential health coverage, says House Science Committee Chairman Lamar Smith (R-TX), but security experts have pointed out flaws in the site that put the personal data at risk and subject users to the threat of identity theft.
A second flaw will be exposed by testimony from Morgan Wright, an expert in cybersecurity, who will expose operations dysfunction that could lead to fraud when consumers attempt to sign up on the insurance exchange. Wright has said that the Obama administration could not have completely complied with privacy provisions in the Federal Information Security Management Act when it was making changes to the website just before its ill-fated launch. "It is inconceivable that there could have been a comprehensive security review if they were still making major changes and substantial changes to it one or two days before" it went live, he says (The Hill, November 13, 2013).
In a letter to White House Chief Technology Officer Todd Park, inviting Park to appear and defend the website's possible security flaws, Chairman Smith explained that the committee "will examine concerns about the lack of privacy standards for personal information passing through the HealthCare.gov website and the threat posed to Americans if hackers on the Internet gained access to such information."
According to a source, The Hill reports that the White House declined to make Park available to testify. Park has been subpoenaed to appear before the House Oversight and Government Reform Committee as part of a hearing on the roll out of the entire website.