When the U.S. Census Bureau prepared to outfit as many as 600,000 census takers with iPhones to go door to door to collect data, the agency focused on security every step of the way, from preparation and use of the devices to their decommissioning.
“Security is our No. 1 concern, other than data accuracy. We want to keep our data secure,” says Michael Thieme, assistant director for decennial census programs, systems and contracts.
For the 2020 census, enumerators used multifactor authentication to log in to their mobile phones and access their census-provided apps. When they visited homes to count residents who had not yet responded online or by mail, the enumerators filled out the census forms on the iPhones, where the data was encrypted. When they finished each questionnaire, the information was automatically transferred to secure cloud servers and deleted off the devices.
The only stumbling block was lack of internet access in remote areas. When the census employees were in dead spots, the data had to remain on the iPhones, but was immediately uploaded once internet connectivity resumed.
“We tried to keep data on the devices for as little time as possible,” Thieme says. “The data is encrypted on the phones, encrypted in transit and encrypted on our systems.”
Census Paired with Third-Party Partner to Protect Data
The Census Bureau, which counts the U.S. population every 10 years, takes data security and privacy seriously. The 2020 census was the most state-of-the-art population count in history; the bureau launched a website where residents could fill out census forms, and also eliminated some paper processes by digitizing its door-to-door field operation with iPhones.
Besides securing data from the iPhones, the bureau deployed comprehensive security measures and tools to secure the self-response website and to proactively monitor and protect its IT systems in the cloud and internal data centers.
In addition, the bureau is required by law to keep personally identifiable information private for 72 years after it’s collected, so it’s not only protecting the data from the current census, but also the previous seven as well. “Our defenses never go down,” Thieme says.
The Census Bureau relied on multiple contractors for its mobile device strategy for door-to-door field operations. One contractor built the apps. Another ran penetration tests to ensure devices and applications were secure. Meanwhile, CDW•G was in charge of acquiring, configuring and delivering more than 600,000 iPhones, iPad devices and Dell laptops to 248 census field offices throughout the U.S. And once the count was done, CDW•G was also in charge of erasing and disposing of the devices.
Ron Harris, CDW’s director of configuration services, says security was baked into every process from beginning to end. The company used dedicated wired and wireless networks to bolster security as employees set up and installed software on the mobile devices, he said. “When we downloaded the apps, firmware and security policies, it was only on a network specifically for census. We did not share that network with any of our other customers, so there was no risk of mixing,” says Eric Thorson, CDW’s senior project manager for configuration services.
How to Protect Data on Lost or Stolen Devices
As part of the effort, CDW provided asset management services and enrolled the devices in the Apple Device Enrollment Program (DEP), which essentially tied every iPhone and iPad to the Census Bureau, so only census workers could use the devices, Thorson says. Apple DEP allowed the Census Bureau to manage device settings, including the required installation of VMware’s Workspace One mobile device management software.
“Only intended users could log in with their census credentials,” says Jack Nichols, CDW•G’s CTO for federal and senior manager of technical resources. “As soon as individuals logged in, that was recorded. We had unique IDs that each individual carried, so once they logged in, we knew an individual had that specific device, and that’s how we tracked them through the MDM platform.” The MDM software provided extra security during field operations. Besides requiring multifactor authentication, the MDM software allowed the Census Bureau to remotely update the devices with software updates, including important security fixes, Thieme says.
The News Highlights
- Extra Security into Field Devices installed by Census Bureau
- Check the latest update on Security news
For Latest News Follow us on Google News
- Show all
- Trending News
- Popular By week