"The OSWAS failed to achieve its objective even after six years of implementation. All applications of OSWAS have not been implemented so far," the CAG report tabled in the Assembly by Finance Minister Pradip Kumar Amat said.
Stating that the state government had engaged Tata Consultancy Service (TCS) Limited to implement the system, the report said, "OSWAS had weak management controls and Business Process Re-engineering was not conducted, which created inefficiencies and inconsistencies in file management. Business Continuity and Disaster Recovery Plan was not framed."
"The digital signature was partially implemented which failed to protect the integrity of notes created through OSWAS. The OSWAS has design deficiencies like incomplete administrator interface, non-provision for transfer/posting, ineffective session management, inconsistencies in reports and time stamping," the report said.
What shocked the CAG was the access controls were inadequate in OSWAS as files have been accessible to any user irrespective of department, post and confidentiality.
As the OSWAS was found with "improper" design and non-implementation of secured sockets layer authentication system, the report said, "Security of the system was weak."
Though the OSWAS system was implemented to smoothen works in the state secretariat, CAG found usage of OSWAS was as low as 81 per cent and departments had created more than 50 per cent files, bypassing the OSWAS.
Disclaimer: No Business Standard Journalist was involved in creation of this content