HUD Web Application Security Evaluation Report

Date Issued: 
Thursday, July 6, 2017
Publication/Report Type: 
Inspections & Evaluations
Report Number: 
Program Area(s): 
Chief Information Officer
District of Columbia

We reviewed the controls put into place by the U.S. Department of Housing and Urban Development (HUD) to secure its publicly accessible business applications and services.  The objectives were to evaluate HUD’s ability to identify, assess, and resolve security vulnerabilities in its publicly accessible web applications and review the effectiveness of key HUD processes to manage and secure its web applications. 

The OIG has determined that the contents of this report would not be appropriate for public disclosure and has therefore limited its distribution to selected officials.  Please contact the Office of Evaluation at to request a copy of this report.