EINSTEIN is Probably the Wrong Name for the Government’s Very Flawed Cybersecurity System

The Government Accountability Office rips the $6-billion-dollar system.

<a href="http://www.istockphoto.com/photo/tired-in-the-office-gm175211748-21872440?st=ba54c3f">ByeByeTokyo</a>/iStockPhoto

For indispensable reporting on the coronavirus crisis, the election, and more, subscribe to the Mother Jones Daily newsletter.


The government relies on a system called EINSTEIN, or the National Cybersecurity Protection System, to detect and stop the rising numbers of cyberattacks on its computers. But a new report from the Government Accountability Office says EINSTEIN is falling far short of expectations.

The latest version of the $6-billion-dollar system, which rolled out in 2013, was designed to both detect suspicious cyber activity and prevent anything harmful from entering or leaving government computer networks. But the GAO says the system gives its users only “a limited ability to detect potentially malicious activity entering and exiting computer networks at federal agencies.” And when the GAO tested EINSTEIN, the system could only identify six percent of the common vulnerabilities in programs typically used on federal computers, including Microsoft Office and Internet Explorer.

The system is also falling short on helping agencies share information about cyber threats. The GAO found that only 5 of 23 federal agencies are actually using the “intrusion prevention” parts of the EINSTEIN system, which actively try to block malicious content. The information gained from those agencies helps recognize patterns that the system can use to improve and identify other similar attacks. The smaller the pool of data, the less effective the system can be. The information-sharing process itself also appears to be a mess. “DHS has yet to develop most of the planned functionality for NCPS’s information-sharing capability,” the report said. “Moreover, agencies and DHS did not always agree about whether notifications of potentially malicious activity had been sent or received, and agencies had mixed views about the usefulness of these notifications.”

A classified version of the report was released in November, but a declassified version was released on Thursday by the GAO. It came just days after the government announced the formation of a new agency to handle background checks after two massive hacks struck the Office of Personnel Management. The hacks, believed to be the work of the Chinese government, stole the highly sensitive background investigation forms of more than 20 million federal employees. After the attacks became public knowledge last year, the government’s cybersecurity defenses came under withering scrutiny from congressional overnight committees. This week’s report isn’t likely to help.

FACT:

Mother Jones was founded as a nonprofit in 1976 because we knew corporations and the wealthy wouldn't fund the type of hard-hitting journalism we set out to do.

Today, reader support makes up about two-thirds of our budget, allows us to dig deep on stories that matter, and lets us keep our reporting free for everyone. If you value what you get from Mother Jones, please join us with a tax-deductible donation today so we can keep on doing the type of journalism 2020 demands.

FACT:

Mother Jones was founded as a nonprofit in 1976 because we knew corporations and the wealthy wouldn't fund the type of hard-hitting journalism we set out to do.

Today, reader support makes up about two-thirds of our budget, allows us to dig deep on stories that matter, and lets us keep our reporting free for everyone. If you value what you get from Mother Jones, please join us with a tax-deductible donation today so we can keep on doing the type of journalism 2020 demands.

We Recommend

Latest

Sign up for our free newsletter

Subscribe to the Mother Jones Daily to have our top stories delivered directly to your inbox.

Get our award-winning magazine

Save big on a full year of investigations, ideas, and insights.

Subscribe

Support our journalism

Help Mother Jones' reporters dig deep with a tax-deductible donation.

Donate