A [in]Segurança dos Sistemas Governamentais Brasileiros: Um Estudo de Caso em Sistemas Web e Redes Abertas
This addresses a gap in systematic security assessments for government systems, which is crucial for public service reliability, though it is incremental as it applies existing methods to new data.
The study assessed the security of publicly available Brazilian government web systems and open networks, identifying multiple vulnerabilities and concluding that these unprotected services have inadequate security levels.
Whereas the world relies on computer systems for providing public services, there is a lack of academic work that systematically assess the security of government systems. To partially fill this gap, we conducted a security evaluation of publicly available systems from public institutions. We revisited OWASP top-10 and identified multiple vulnerabilities in deployed services by scanning public government networks. Overall, the unprotected services found have inadequate security level, which must be properly discussed and addressed.