Close

Does a DOD ban on social media makes sense?

FCW readers are evenly split — and passionately so — about the prospects of a Defense Department ban on social media.

To some readers, it’s a “no duh” decision. DOD, an anonymous reader writes, “is not a social experiment.”

Other readers acknowledge the security risks associated with social media, but say such risks can and should be addressed. Further, a ban comes with risks of its own.

“If [the social-media applications] are blocked, we potentially face losing good employees and soldiers/marines/airmen/sailors, but will be completely unprepared for future technology,” writes Phil.

For more background, check out the following stories:

DOD may ban Twitter, Facebook, other social media
Marines: Facebook is not for the few good men

Meanwhile, here are some of the comments we received against the ban ...:

  • What is really missing is a set of tools and services that can be deployed behind firewalls. They may still end up with some security problems, but at least if they are controlled from within, it's much easier to shut down until the problems are resolved.
    -- Aaron Helton
  • Banning the sites with no access (via a kisok, separate network, etc.) suggests that there is no one in all of DOD who has a working solution that provides access and maintains security. This is simply not true and is embarrassing for someone who served his country. Let's address the issue and move away from silly blanket policies.
    -- benbree
  • [Banning social media] immediately creates a community of users who are trying to circumvent the denial, crippling security attempts even more! The computers and networks exist to provide functions. Shutting down those functions because "something bad might happen" is cowardly, stupid and lazy.
    -- Arty Wright
  • One concern I see is that when you ban this option for the Defense Department, which I can understand to some extent, you also close the door for the use in areas were they are greatly needed or will be in the future. [That includes] communications with veterans for the VA and Veterans Resource Centers as this is the mode of communication now being used to share news, information and concerns with our veterans and those on active duty.
    -- James
  • We restrict our knowledge considerably with restrictions for safety and security reasons. Why not provide guidance and training to the troops as opposed to treating them as individuals who cannot make a decision for the good of their country. They are willing to die for it, can't they censor themselves in terms of the types of information they will discuss or put out on a social-network site? The cost of policing our own is not only financial but creating sheeps instead of eagles.
    -- MRG
  • I can understand some of the hard and soft security vulnerabilities that come up, but not the problem of information exposure. That is an issue of social engineering and can happen off-site just as readily as on the NIPRnet. Just because I'm not at work doesn't mean I can't log on and put compromising information on Facebook or another site. Proper education on IA and INFOSEC would be a better route to go.
    -- Paul

... And here are some of the comments we received in favor of the ban:

  • Genuinely personal use of Facebook is one thing. However, official government use of Facebook, et. al, is not technically a Constitutional function, by any stretch of the imagination, and therefore is unconstitutional.
    -- Jane Smith
  • There's no need for Twitter or Facebook within the DOD. Unless someone can cite specific reasons why either of these two [social-networking sites] improve national security, then they have no place on DOD networks.
    -- DOD-Detroit
  • I am a veteran now and used to communicate through MySpace. I have gotten hacked twice, once from a link I got on Facebook (got the Koobface worm) and another from MySpace (a fake XP Antivirus). I am [in] agreement with the ban, I am now very reluctant of using these "new way of communication" tools. The old fashioned way (e-mail and instant messaging) are sufficient. We always want everything right there in then and this is the same way hackers want this too.
    -- Ramon
  • This comes not too long after us Information Assurance people were told to grant access to these sites. Of course we thought it was a huge mistake to begin with. Additionally user attitudes really need to be changed in that many don’t seem to understand the damage that can be caused by negligent behavior when it comes to data security.
    -- Anonymous
  • Why has it taken so long for someone, finally, in DOD to understand that the social-media sites and tools are a huge security issue! A site like MySpace for recruiting may have potential, as long as the information coming in is filtered before it reaches a government network. But if the DOD wants to bring social-networking tools into the agency, do so with foresight and exacting requirements. Try putting a kiosk in an agency's public affairs office and establish criteria on who and how it would be utilized.
    -- DLA Columbus
  • Bravo Zulo to the Marines for taking a very necessary stand and have set the standard for responsibility. The DOD is not a social experiment.
    -- Anonymous
  • Bravo!!! Finally, somebody in the Government has the intestinal fortitude to slow down this fast moving, out-of-control train wreck that Vivek Kundra and gang has floored the accelerator on. I loudly applaud the Marine Corps for trying to bring some sanity into the discussion, instead of continuing to blindly charge forward with our eyes closed.
    -- FedSecurityGuy

About the Author

John S. Monroe is the editor-at-large of Federal Computer Week.

Reader Comments

Mon, Aug 10, 2009

I'm not a Facebook, or twitter user. However, what I find most interesting/comical about this situation is that the DOD will ban emerging technology at the drop of a hat and opt for using 10+ year old technology on a regular basis. In the name of security we continue to use one of the worst browsers ever built (IE6). This philosophy (not the facebook/twitter ban) is a primary issue that is driving me out of the DOD as quickly as I can get there.

Mon, Aug 10, 2009 Bill Smith Arlington, VA

From what I read here and the requests I recieve in my office not one person has made an effective business case. If it's about recruiting, fine I can block the bad stuff and only allow the 1% of DOD that actually recruits. It's not an approved practice for hiring civilians so there's no sense in allowing it. The DOD doesn't have all the bandwidth, and by the by, just when do people plan on working? When there's truly a proven business case requirement I'm sure DOD will reverse it's decision.

Thu, Aug 6, 2009 Desert Sailor Kuwait

We MUST have the ban ! I see it first hand. You try to do your real job, and cant send an important piece of communication because someone is downloading the latest facebook video. Its nuts. There are some MWR locations that service members can and should be using for this type of traffic. Why even take a chance that a hack could be at a social site. I am one of the few who still think that the military should be allowed to have a few secrets, and NOT be required to tell the media one damn thing.

Wed, Aug 5, 2009 Washington, DC

I believe readers should use an evidence-based approach. Many industry and academics studies have shown that there is no higher rate of threat from these sites, only more highly publicized instances of problems. In fact, up to 40 percent of the sites that contain malware are reputable "good sites." Example, "Microsoft acknowledges that hackers booby-trapped its MSN Web site in South korea to steal passwords from visitors. The company says it was unclear how many Internet users might have been victimized." See http://www.ukfast.co.uk/internet-news/microsoft_admits_msn_hack_in_s_korea.html Regarding the following readers comments, "The old fashioned way (e-mail and instant messaging) are sufficient," If you recall, OSD SBU's email, a traditional client/server behind the firewall system, was also hacked into. See http://fcw.com/articles/2008/03/06/osd-cio-network-configuration-scanning-softened-cyberattack-blow.aspx Excerpt: "The hackers took advantage of a known Microsoft software vulnerability and sent spoof e-mail messages with the names of staff in Clem’s division. When the messages were opened, the code sent back the user names and passwords, which allowed access to the network. In follow-up forensics, Clem discovered that the hackers accessed sensitive information, which they encrypted as they transmitted it back to their sites." In fact, many of the top defense system integrators, who also use traditional systems, apparently have also been hacked at various times, see http://www.nextgov.com/nextgov/ng_20090430_6202.php?oref=rss?zone=ngtoday

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Your Name:(optional)
Your Email:(optional)
Your Location:(optional)
Comment:
Please type the letters/numbers you see above

Highlights from the current issue

eSeminar

  • Where Cyberwarfare and Cybersecurity Meet

    We invite you to attend the third event in this three-part series on Cybersecurity. 1105 Government Information Group will present a panel of government and cybersecurity experts, including Jeffrey Carr, cyber strategies consultant and author of Inside Cyber Warfare; Dean Lindstrom, strategic cybersecurity architect and CEO of Cyberström LLC; and Dr. George Stein, director of the Cyberspace and Information Operations Study Center, Air War College, U.S. Air Force, in this editorial webcast on Tuesday, April 13 at 11 a.m., where they will discuss the cyberwarfare threat to both industry and government, as well as strategies to consolidate the wider cybersecurity mission. Read more