• On TechRepublic: 10 cool USB flash drive tricks
July 5, 2009 6:13 AM PDT

Report: Problems stymie U.S. cyberspy protection

by Natalie Weinstein
  • Font size
  • Print
  • 4 comments

Twin obstacles of technical problems and privacy issues are holding back the overarching system created to protect the federal government's computers from cyberspies, according to The Wall Street Journal.

"The latest complete version of the system, known as Einstein, won't be fully installed for 18 months, according to current and former officials, seven years after it was first rolled out," the newspaper reports. "This system doesn't protect networks from attack. It only raises the alarm after one has happened."

The privacy concerns stem from the National Security Agency's acknowledgment of its warrantless wiretapping of phone calls and e-mail that started after the terrorist attacks of September 11, 2001. AT&T is supposed to test new Einstein technology, but the Journal reported that the company sought Justice Department's approval first. The Obama administration has OK'd the testing, an official told the newspaper.

According to the Journal, these are the three phases of the Einstein program:

• Einstein 1: Monitors Internet traffic flowing in and out of federal civilian networks. Detects abnormalities that might be cyberattacks. Is unable to block attacks.

• Einstein 2: In addition to looking for abnormalities, detects viruses and other indicators of attacks based on signatures of known incidents, and alerts analysts immediately. Also can't block attacks.

• Einstein 3: Under development. Based on technology developed for a National Security Agency program called Tutelage, it detects and deflects security breaches. Its filtering technology can read the content of e-mail and other communications.

The Department of Homeland Security began work on the project in 2003, adapting it from a Pentagon program that watched military networks, former national security officials told the Journal.

A Homeland Security representative told the Journal the phases are "incremental improvements" that also safeguard privacy and civil liberties. "We don't want to let the perfect be the enemy of the good," the representative told the newspaper.

Homeland Security is the only department using Einstein 2 at this point, the newspaper said, but it is expected to cover most of the government in another 18 months.

Natalie Weinstein is an associate editor who works out of Austin, Texas. She spent a decade as a reporter and editor in the newspaper industry before joining the CNET News staff in 2000. E-mail Natalie.
Topics:

Privacy & data protection,

Vulnerabilities & attacks

Tags:

Einstein system,

cyberspies,

Department of Homeland Secrity,

privacy

Share:
Digg
Del.icio.us
Reddit
advertisement
Click here!
Recent posts from Security
Microsoft patching zero-day Windows 7 SMB hole
RSA reveals details behind re-shipping scam
Expert says Adobe Flash policy is risky
Apple updates Safari for security
Microsoft probing Windows 7 zero-day hole
Security considerations for virtual environments
Eastern Europeans charged in payment processor hack
A child porn-planting virus: Threat or bad defense?
Related
Q&A: Defcon's Jeff Moss on cybersecurity, government's role
Part 2: Q&A with Jeff Moss on computer hacking
Q&A: Schneier warns of marketers and dancing pigs
Google Dashboard lifts curtain on stored data
Intel hires antitrust expert as new top lawyer
Facebook spells out updated privacy policy
Report: Cisco, EMC, VMware to announce venture
Amazon, Wal-Mart battling over book pricing
Add a Comment (Log in or register) (4 Comments)
  • prev
  • 1
  • next
by rmva July 5, 2009 7:45 AM PDT
Don't worry. Be happy. No one is interested in attacking the US government's computers. After all, the Cold War is over.
Reply to this comment
by gertruded July 5, 2009 8:28 AM PDT
Since they already have our jobs, what secrets could they be after? They won.
Reply to this comment
by n3td3v July 6, 2009 6:23 AM PDT
Rogue employees working in the government for espionage, possibly terrorism. The inside job is still the number one threat to security. Never trust your employees...
by Lerianis3 July 5, 2009 5:31 PM PDT
The fact is that NO ONE will be able to totally prevent intrusions into computer systems. The best thing that can be done is to have VERY LIMITED PERMISSIONS on some things (if not putting them on totally non-net connected computers) in order to do some proactive security.
Reply to this comment
(4 Comments)
  • prev
  • 1
  • next
advertisement

A CNET Conversation with Eric Schmidt

CNET's Tom Krazit and Molly Wood sit down with Google CEO Eric Schmidt to discuss the future of Android, the Chrome OS, the problem of real-time search indexing, and more.

Verizon tests sending RIAA copyright notices

The No. 2 phone company, known for its reluctance to intervene in antipiracy cases, strikes an agreement to forward copyright notices on behalf of the music industry.

About Security

Online security is threatened by more than hacking and phishing attempts. Check here for the latest updates on software vulnerabilities, data leaks, and rapidly spreading viruses--and learn how to protect your systems.

Add this feed to your online news reader

Security topics

advertisement
advertisement

Inside CNET News

Scroll Left Scroll Right
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
Dell
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET