Incident: Thousands of Crime Records Wrongly Deleted from Outdated Police National Computer

Published Date: 2021-05-25

Postmortem Analysis
Timeline 1. The software failure incident of the deleted police records on the outdated IT system happened in January of the same year as the article was published [114621].
System 1. Police National Computer (PNC) system [114621]
Responsible Organization 1. The PNC engineer who accidentally deleted the records due to a single error in a piece of code [114621]. 2. Failures in the management of the PNC team, as pointed out by the independent inquiry chaired by former Metropolitan Police chief Lord Hogan-Howe [114621].
Impacted Organization 1. Personal data of about 13.2 million UK citizens, including arrests, convictions, property, and vehicle ownership, was impacted by the software failure incident [114621].
Software Causes 1. Human error in a piece of code made by a PNC engineer while trying to make improvements to the system [114621] 2. Management failures in overseeing the PNC team's operations and decision-making processes [114621]
Non-software Causes 1. Management failures and human error were identified as causes of the failure incident, as per the independent report on the "critical incident" [114621]. 2. The reliance on an outdated IT system developed in the 1970s, specifically the mainframe computer used for background checks on suspects' characters, was a contributing factor to the incident [114621]. 3. The diminishing skills base of software engineers who knew how the system worked was highlighted as a risk factor [114621]. 4. Slow response and communication by managers when the deletions were discovered also played a role in the incident [114621].
Impacts 1. 209,550 offence records were accidentally deleted, associated with 112,697 individuals, along with 195 full fingerprint records and 26,329 DNA records [114621]. 2. It took nearly a month for police forces to be informed about the deletions [114621]. 3. The incident highlighted the need for urgent reforms in the outdated IT system and management failures [114621].
Preventions 1. Regularly updating and modernizing the outdated IT system developed in the 1970s could have prevented the software failure incident [114621]. 2. Implementing proper code review processes and quality assurance measures to catch errors before they cause significant issues could have helped prevent the accidental deletion of records [114621]. 3. Ensuring a diverse and skilled workforce of software engineers to maintain and operate the system could have reduced the risk of errors due to a diminishing skills base [114621]. 4. Establishing a culture of accountability and oversight within the management of the PNC team to ensure decisions are thoroughly checked and challenged could have prevented the incident [114621].
Fixes 1. Updating or replacing the mainframe computer used for background checks on suspects' characters, which was first built in 1974 [114621] 2. Implementing urgent reforms to address the outdated IT system developed in the 1970s [114621] 3. Investing in making the Police National Computer (PNC) more resilient or considering options for taking it out of Home Office control [114621]
References 1. Independent report on the "critical incident" chaired by former Metropolitan Police chief Lord Hogan-Howe 2. Crime and Policing Minister Kit Malthouse 3. Home Secretary Priti Patel 4. Home Affairs Committee

Software Taxonomy of Faults

Category Option Rationale
Recurring one_organization (a) The software failure incident related to the deletion of thousands of crime records from an outdated IT system developed in the 1970s has happened before within the same organization. The incident was caused by human error and management failures within the Police National Computer (PNC) team [114621].
Phase (Design/Operation) design, operation (a) The software failure incident related to the design phase was primarily attributed to the outdated IT system developed in the 1970s. The incident involved the accidental deletion of thousands of crime records from the Police National Computer (PNC) due to a single error in a piece of code made during system improvements required by law [114621]. (b) The software failure incident related to the operation phase was linked to management failures within the PNC team. The independent report highlighted that managers were slow to act when the deletions were discovered, and it took nearly a month for police forces to be informed about the incident. Additionally, the report pointed out that the expertise and closeness of the teams involved in running the PNC increased the risk that their work would be accepted rather than checked by leadership [114621].
Boundary (Internal/External) within_system (a) The software failure incident related to the deletion of police records from the outdated IT system was primarily within the system. The incident was attributed to "human error" and management failures within the PNC team [114621]. The report highlighted that the deletions were caused by a single error in a piece of code made by engineers while trying to make improvements to the system. Additionally, the report pointed out that the team operating the system had a close-knit expertise base, which increased the risk of their work being accepted without proper leadership challenge. This indicates that the failure was mainly due to factors originating from within the system itself.
Nature (Human/Non-human) human_actions (a) The software failure incident in the article was primarily attributed to "human error" and management failures rather than non-human actions [114621]. The incident occurred when a PNC engineer accidentally deleted a significant number of offence records, fingerprint records, and DNA records due to a single error in a piece of code while trying to make improvements to the system. The report highlighted failures in the management of the PNC team, emphasizing the need for urgent reforms and an update or replacement of the outdated IT system developed in the 1970s.
Dimension (Hardware/Software) software (a) The software failure incident in the article was not directly attributed to hardware issues. The incident was primarily caused by "human error" and management failures, with the deletion of thousands of crime records being attributed to a single error in a piece of code made by a PNC engineer [114621]. (b) The software failure incident in the article was primarily attributed to software-related factors. The incident involved the accidental deletion of crime records due to an error in a piece of code while engineers were trying to make improvements to the system. The report highlighted the inflexibility of the old IT system when changes were required and the reliance on a diminishing skills base of software engineers who knew how it worked [114621].
Objective (Malicious/Non-malicious) non-malicious (a) The software failure incident related to the deletion of thousands of crime records from an outdated IT system was classified as non-malicious. The incident was attributed to "human error" and management failures rather than any malicious intent [114621]. The report highlighted that the deletions were a result of a single error in a piece of code made by a PNC engineer while trying to make improvements to the system as required by law. The independent inquiry did not blame an individual but pointed to failures in the management of the PNC team. Additionally, there was a mention of the expertise and closeness of the teams involved in running the PNC, which increased the risk that their work would be accepted rather than checked by leadership, indicating a non-malicious nature of the incident.
Intent (Poor/Accidental Decisions) poor_decisions, accidental_decisions (a) The software failure incident related to the accidental deletion of thousands of crime records from the Police National Computer (PNC) was primarily attributed to "human error" and management failures. An independent report on the incident highlighted that the deletions were a result of a single error in a piece of code made by a PNC engineer while trying to make improvements to the system as required by law. The report also pointed out failures in the management of the PNC team, indicating poor decisions or oversight in the handling of the incident [114621].
Capability (Incompetence/Accidental) development_incompetence, accidental (a) The software failure incident was attributed to "human error" and management failures, indicating a failure due to contributing factors introduced due to lack of professional competence by humans or the development organization [114621]. (b) The incident involved an accidental deletion of 209,550 offence records, associated with 112,697 individuals, along with other crucial data, by a PNC engineer while trying to make improvements to the system required by law [114621].
Duration temporary The software failure incident discussed in the article was temporary. It was caused by a single error in a piece of code made by a PNC engineer while trying to make improvements to the system. The incident resulted in the accidental deletion of thousands of crime records, but the files were eventually recovered [114621].
Behaviour crash (a) crash: The software failure incident in the article can be categorized as a crash. The incident involved the accidental deletion of a significant number of offence records, fingerprint records, and DNA records due to a single error in a piece of code while engineers were trying to make improvements to the system. This resulted in the system losing critical data and not performing its intended function of storing and managing crime records [114621].

IoT System Layer

Layer Option Rationale
Perception None None
Communication None None
Application None None

Other Details

Category Option Rationale
Consequence property The consequence of the software failure incident described in the articles is as follows: (d) property: The software failure incident resulted in the deletion of 209,550 offence records, associated with 112,697 individuals, along with 195 full fingerprint records and 26,329 DNA records [Article 114621]. This loss of data can be considered as an impact on people's material goods or data due to the software failure.
Domain government The failed system in the reported software failure incident was related to the government industry. The Police National Computer (PNC) system, which experienced the deletion of thousands of crime records due to human error and management failures, is a critical IT system used by the police for background checks on suspects and holds personal data on millions of UK citizens [Article 114621].

Sources

Back to List