Information Assurance, Security, and Privacy: Navy Commercial Access Control System Did Not Effectively Mitigate Access Control Risks (PDF)
Source: U.S. Department of Defense, Office of Inspector General
We determined whether the Navy Commercial Access Control System (NCACS) was mitigating access control risks for Navy installations.
NCACS did not effectively mitigate access control risks associated with contractor installation access. This occurred because Commander, Navy Installations Command (CNIC) officials attempted to reduce access control costs. As a result, 52 convicted felons received routine, unauthorized installation access, placing military personnel, dependents, civilians, and installations at an increased security risk.