Memo: Had Security Risks At Launch

WASHINGTON (CBS DC) – Four days before the website went live, a memo warned there were security risks with the coding.

The memo, dated September 27th,  is written to Center for Medicare and Medicaid Services (CMS) chief Marilyn Tavenner from her Consortium Administrator for Health Plan Operations James Kerr and the Deputy Chief Information Officer Henry Chao.

It reads that a legally mandated security assessment had not been completed.

“This constitutes a risk that must be accepted and mitigated to support the Marketplace Day 1 operations” the memo stated.

It warned that there had not been adequate testing before the October 1st launch and that there could be potential security weaknesses in the coding.

Rep. Mike Rogers, R-Mich., grilled Health and Human Services (HHS) Secretary Kathleen Sebelius about the potential security risks at a House Energy and Commerce Committee hearing Wednesday.

She replied that the site is operating with a temporary security certificate until the full testing can be completed.

Sebelius assured Americans that their personal information is not at risk from using the website.


More From CBS DC

D.C. Lottery Live
Follow and Like Us
Best Of CBS Washington

Listen Live