U.S. flag

An official website of the United States government

Government Website

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Safely connect using HTTPS

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Archived Content

In an effort to keep DHS.gov current, the archive contains outdated information that may not reflect current policy or programs.

WEA - Cybersecurity Risk Management Strategy for Alert Originators


The Wireless Emergency Alerts (WEA) Research, Development, Testing, and Evaluation (RDT&E) program, formerly known as the Commercial Mobile Alert Service (CMAS) RDT&E program, is a collaborative partnership that includes the cellular industry, Federal Communications Commission, Federal Emergency Management Agency, and U.S. Department of Homeland Security (DHS) Science and Technology Directorate (S&T). The Carnegie Mellon Software Engineering Institute supported DHS S&T by developing a cybersecurity risk management (CSRM) strategy to ensure accurate, timely dissemination of alerts despite attempted or successful attacks on the cyber infrastructure that supports the WEA service.

The goal of the CSRM strategy documented in this report is to enable alert originators to identify and manage cyber threats and vulnerabilities that may affect their ability to send WEA messages. The primary audience for this report includes alert originators who plan to adopt the WEA capability. In addition, for DHS S&T, the report provides a framework for cybersecurity risk management that can be tailored and applied across the WEA alerting pipeline.

Attachment Ext. Size Date
Wireless Emergency Alerts Cybersecurity Risk Management Strategy for Alerts Originators PDF 4.63 MB
Last Updated: 01/19/2022
Was this page helpful?
This page was not helpful because the content