Analysis of the United States Computer Emergency Readiness Team's (U.S. CERT) Einstein III intrusion detection system, and its impact on privacy

Thumbnail Image
Authors
Oree, William L.
Subjects
EINSTEIN
Intrusion Detection System
Cybersecurity
Privacy
Advisors
Cook, Glenn R.
Date of Issue
2013-03
Date
Mar-13
Publisher
Monterey, California. Naval Postgraduate School
Language
Abstract
To secure information technology and telecommunications systems, the U.S Department of Homeland Security created the United States Computer Emergency Readiness Team (U.S. CERT) to provide 24-hour early warning and detection for the federal governments Internet infrastructure. A leading program in this effort, EINSTEIN, was developed by U.S. CERT in partnership with the National Security Agency (NSA) and private industry. EINSTEIN is an intrusion detection program that monitors network traffic and searches for signatures of known malicious code. Now in its third generation, EINSTEIN now generates alerts that have the possibility of including Personal Identifying Information, monitors live traffic on networks in real-time, and also has the ability to counter the intrusion as it takes place. By reviewing current privacy policy and past privacy case studies, in addition to careful analysis of federal court cases and statutes, this thesis establishes the fundamental and constitutional right to privacy. Through secondary research, this thesis identifies elements and exemptions of current communications legislation that can be used in the development of a comprehensive cyberspace monitoring policy. The result is a recommendation that a new Einstein III Privacy Impact Assessment, as well a new legal opinion document, be drafted to balance the trade-off between privacy rights and the objectives of securing cyberspace, and that establishes a proper legal foundation for the implementation of the controversial technology.
Type
Thesis
Description
URI
https://hdl.handle.net/10945/32877
Series/Report No
Department
Information Sciences (IS)
Organization
Identifiers
NPS Report Number
Sponsors
Funder
Format
Citation
Distribution Statement
Approved for public release; distribution is unlimited.
Rights
This publication is a work of the U.S. Government as defined
in Title 17, United States Code, Section 101. As such, it is in the
public domain, and under the provisions of Title 17, United States
Code, Section 105, is not copyrighted in the U.S.
Collections
Theses