How bad is EINSTEIN Firewall in reality?
- Unable to monitor web traffic for malicious content.
- Unable to uncover malware in a system.
- Unable to monitor cloud services either.
- Only offers signature-based threat and intrusion detection, rather than monitoring for unusual activity.
Einstein Uses Outdated Signatures Database
"It is the responsibility of each agency to ensure their networks and information systems are secure while it is the responsibility of DHS to provide a baseline set of protections and government-wide situational awareness, as part of a defense-in-depth information security strategy."
Einstein is Effectively Blind
So, "until its intended capabilities are more fully developed, DHS will be hampered in its abilities to provide effective cybersecurity-related support to federal agencies," reads the report.