Log of computer network security incidents and compromises

Phil Mocek filed this request with the Department of Information Technology of Seattle, WA.


From: Phil Mocek

To Whom It May Concern:

Pursuant to RCW Ch. 42.56 (Public Records Act), I hereby request City of Seattle's log of computer network security incidents and compromises, in its native electronic format, including metadata.

On September 16, 2013, [I asked via Twitter][1], "Does the CISO office maintain a log of security-related incidents pertaining to the city's computer network infrastructure? On October 13, 2013, Seattle Chief Information Security Officer [Michael Hamilton replied][2], "We do indeed track incidents and compromises."

[1]: <https://twitter.com/pmocek/status/379712098558681088>
[2]: <https://twitter.com/seattlemkh/status/389413263844184064>

I also request that, if appropriate, fees be waived as I believe this request is in the public interest. The requested documents will be made available to the general public free of charge as part of the public information service at MuckRock.com, processed by a representative of the news media/press and is made in the process of news gathering and not for commercial usage.

In the event that fees cannot be waived, I would be grateful if you would inform me of the total charges in advance of fulfilling my request. I would prefer the request filled electronically, by e-mail attachment if available or CD-ROM if not.

Thank you in advance for your anticipated cooperation in this matter. I look forward to receiving your response to this request within 5 business days, as the statute requires.


Phil Mocek

From: Coppersmith, Megan

Mr. Mocek,

We are researching the amount of work and time that will be required to compile the requested information. Please expect to hear from me by October 24, 2013 with an estimated timeframe of delivery.

In the future, please direct all public records requests directly to me at megan.coppersmith@seattle.gov, instead of my colleague Albert Seafeldt.

From: Phil Mocek

RE: my public records request of October 13, 2013

Dear Ms. Coppersmith:

I did not mean to request the compilation of anything, but rather the log of incidents that Seattle Chief Information Security Officer Michael Hamilton publicly confirmed to exist. I'm afraid you have proposed creating unnecessary work and delay. Could you please just e-mail to me the log in its native electronic format? I expected that his would be available as a spreadsheet or a relational database backup, either of which would be fine.

Phil Mocek

From: Coppersmith, Megan

Dear Mr. Mocek:

On October 13, 2013 you submitted a records request to the Department of Information Technology (DoIT) for potentially responsive records.

You requested the following:

City of Seattle’s log of computer network security incidents and compromises, in its native electronic format, including metadata.

Information that would provide access information to the City’s compromised computer’s IP address and computer name and the method used to detect these compromises has been redacted in the responsive record, however the redacted information and the information that identifies the record is evident from the face of the record. This information is exempt under RCW 42.56.420(4), which exempts “Information regarding the infrastructure and security of computer and telecommunications networks, consisting of security passwords, security access codes and programs, access codes for secure software applications, security and service recovery plans, security risk assessments, and security test results to the extent that they identify specific system vulnerabilities, and other such information the release of which may increase risk to the confidentiality, integrity, or availability of agency security, information technology, infrastructure, or assts.” Providing this information could compromise the security of those systems and networks and increase their vulnerability to future attacks.

This satisfies your request and it will now be considered closed. If you have any questions, please feel free to contact me.