DOCSLIB.ORG

A Lot More Than a Pen Register, and Less Than a Wiretap

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text

Load more

Pell and Soghoian: A Lot More than a Pen Register, and Less than a Wiretap 1 A LOT MORE THAN A PEN REGISTER, AND LESS THAN A WIRETAP: WHAT THE STINGRAY TEACHES US ABOUT HOW CONGRESS SHOULD APPROACH THE REFORM OF LAW ENFORCEMENT SURVEILLANCE 2 AUTHORITIES Stephanie K. Pell* & Christopher Soghoian** 16 YALE J.L. & TECH. 134 (2013) ABSTRACT In June 2013, through an unauthorized disclosure to the media by ex-NSA contractor Edward Snowden, the public learned that the NSA, since 2006, had been collecting nearly all domestic phone call detail records and other telephony metadata pursuant to a controversial, classified interpretation of Section 215 of the USA PATRIOT Act. Prior to the Snowden disclosure, the existence of this intelligence program had been kept secret from the general public, though some members of Congress knew both of its existence and of the statutory interpretation the government was using to justify the bulk collection. Unfortunately, the classified nature of the Section 215 metadata program prevented them from alerting the public directly, so they were left to convey their criticisms of the program directly to certain federal agencies as part of a non-public oversight process. The efficacy of an oversight regime burdened by such strict secrecy is now the subject of justifiably intense debate. In the context of that debate, this Article examines a very different surveillance technology—one that has been used by federal, state and local law enforcement agencies for more than two decades without invoking even the muted scrutiny Congress applied to the Section 215 metadata program. During that time, this technology has steadily and significantly expanded the government’s surveillance capabilities in a manner and to a degree to date largely unnoticed and unregulated. Indeed, it has never been explicitly authorized 1 “A little more than kin, and less than kind.” WILLIAM SHAKESPEARE, HAMLET act 1, sc. 2. 2 The authors would like to thank Susan Freiwald and Jim Green for their feedback and assistance. * Principal, SKP Strategies, LLC; Non-resident Fellow at Stanford Law School’s Center for Internet and Society; former Counsel to the House Judiciary Committee; former Senior Counsel to the Deputy Attorney General, U.S. Department of Justice; former Counsel to the Assistant Attorney General, National Security Division, U.S. Department of Justice; and former Assistant U.S. Attorney, Southern District of Florida. ** Principal Technologist, Speech, Privacy & Technology Project, American Civil Liberties Union; Visiting Fellow, Information Society Project, Yale Law School. The opinions expressed in this article are this author’s alone, and do not reflect the official position of his employer. 134 Published by Yale Law School Legal Scholarship Repository, 2014 1 Yale Journal of Law and Technology, Vol. 16 [2014], Iss. 1, Art. 4 16 YALE J.L. & TECH. 134 (2013) 2013-2014 by Congress for law enforcement use. This technology, commonly called the StingRay, the most well-known brand name of a family of surveillance devices, enables the government, directly and in real-time, to intercept communications data and detailed location information of cellular phones—data that it would otherwise be unable to obtain without the assistance of a wireless carrier. Drawing from the lessons of the StingRay, this Article argues that if statutory authorities regulating law enforcement surveillance technologies and methods are to have any hope of keeping pace with technology, some formalized mechanism must be established through which complete, reliable and timely information about new government surveillance methods and technologies can be brought to the attention of Congress. 135 https://digitalcommons.law.yale.edu/yjolt/vol16/iss1/4 2 Pell and Soghoian: A Lot More than a Pen Register, and Less than a Wiretap A LOT MORE THAN A PEN REGISTER, AND LESS THAN A WIRETAP I. INTRODUCTION ..................................................................................... 136 II. A BRIEF DESCRIPTION OF A STINGRAY AND ITS CAPABILITIES ............ 144 III. IN BETWEEN OR BEYOND THE REACH OF STATUTORY LANGUAGE....... 148 A. Real-time Cell Phone Tracking and Secrecy ................................. 149 B. The StingRay and Secrecy.............................................................. 154 1. The 1995 Digital Analyzer Magistrate Opinion ...................... 157 2. 2012 StingRay Magistrate Opinion.......................................... 160 IV. WARNINGS FOR LEGISLATORS .............................................................. 163 V. SUGGESTIONS FOR REFORM ................................................................. 165 VI. CONCLUSION ........................................................................................ 169 I. INTRODUCTION Beginning in June 2013, the details of several National Security Agency (NSA) classified surveillance programs were revealed in a series of articles by journalists who had received documents from ex-NSA contractor Edward Snowden.3 Among the many disclosures and subsequent releases of information by the Administration and Members of Congress was the revelation that, since 2006, the NSA has been collecting domestic call detail records and other domestic telephony metadata4 in bulk, pursuant to a controversial interpretation of Section 215 of the USA PATRIOT Act 3 See Glenn Greenwald, NSA Collecting Phone Records of Millions of Verizon Customers Daily, THE GUARDIAN, June 5, 2013, http://www.theguardian.com/world/2013/jun/06/nsa- phone-records-verizon-court-order (“The National Security Agency is currently collecting the telephone records of millions of US customers of Verizon, one of America’s largest telecoms providers, under a top secret court order issued in April.”); see also Danny Yadron and Evan Perez, T-Mobile, Verizon Wireless Shielded from NSA Sweep, WALL ST. J., June 14, 2013, http://online.wsj.com/article/SB10001424127887324049504578543800240266368.html (explaining that the NSA “doesn't collect information directly from T-Mobile USA and Verizon Wireless . [but the NSA] still capture[s] information, or metadata, on 99% of U.S. phone traffic because nearly all calls eventually travel over networks owned by U.S. companies that work with the NSA”). 4 The Administration defines this telephony metadata as including “information about what telephone numbers were used to make and receive the calls, when the calls took place, and how long the calls lasted. [T]his information does not include any information about the content of those calls—the Government cannot, through this program, listen to or record any telephone conversations.” Administration White Paper: Bulk Collection of Telephony Metadata Under Section 215 of the USA Patriot Act on Section 215, at 2 (Aug. 9, 2013) [hereinafter Administration White Paper on Section 215], http://info.publicintelligence.net/DoJ-NSABulkCollection.pdf. 136 Published by Yale Law School Legal Scholarship Repository, 2014 3 Yale Journal of Law and Technology, Vol. 16 [2014], Iss. 1, Art. 4 16 YALE J.L. & TECH. 134 (2013) 2013-2014 (PATRIOT Act).5 Section 215 is an intelligence collection authority permitting the government to compel “tangible things” from third parties that are “relevant” to an “authorized investigation” in order: (1) “to obtain foreign intelligence information not concerning a United States person”; or (2) to “protect against international terrorism or clandestine intelligence activities.”6 The public has also learned that this massive quantity of data is collected and stored in a centralized database in order to enable future searches by the NSA—that is, if and when there is a reasonable articulable suspicion that an identifier (e.g. a phone number) is associated with a particular foreign terrorist organization7 or with terrorism.8 The goal of the program is “to enable the government to identify communications among known and unknown terrorism suspects, particularly those located inside 9 the United States.” 5 For the most complete factual and legal explanation of the 215 metadata program from the Administration to date, see Administration White Paper on Section 215, supra note 4. Since the time the Administration chose to declassify and disclose the Section 215 White Paper to the public, two different federal district courts have issued dueling opinions on the legality of this intelligence program. See ACLU v. Clapper, No. 13-3994 (WHP) (S.D.N.Y. Dec. 27, 2013) (holding that the 215 bulk collection metadata program is lawful as both a statutory and constitutional matter); Klayman v. Obama, No. 13-0851 (RJL) (D.D.C. Dec. 16, 2013) (finding that the plaintiffs have demonstrated a substantial likelihood of success on a claim that the Section 215 metadata program violates the Fourth Amendment). 6 50 U.S.C. § 1861(a)(1). 7 See Transcript: Newseum Special Program—NSA Surveillance Leaks: Facts and Fiction 8 (June 26, 2013) (statement of Robert Litt, General Counsel of the Office of Director of National Intelligence), http://www.dni.gov/index.php/newsroom/speeches-and- interviews/195-speeches-interviews-2013/887-transcript-newseum-special-program-nsa- surveillance-leaks-facts-and-fiction (“The metadata that is acquired and kept under this program can only be queried when there is reasonable suspicion, based on specific, articulable facts, that a particular telephone number is associated with specified foreign terrorist organizations. And the only purpose for which we can make that query is to identify contacts.”); see also Laura K. Donohue, Bulk Metadata
Recommended publications
  • USA V. Pen Register

    USA V. Pen Register

    Case 4:06-mj-00356 Document 13-1 Filed in TXSD on 07/19/06 Page 1 of 35 UNITED STATES DISTRICT COURT SOUTHERN DISTRICT OF TEXAS HOUSTON DIVISION IN THE MATTER OF THE APPLICATION OF THE § UNITED STATES OF AMERICA FOR AN ORDER § AUTHORIZING (1) INSTALLATION AND USE OF A § PEN REGISTER AND TRAP AND TRACE DEVICE §MAGISTRATE NO. H-06-356M OR PROCESS, (2) ACCESS TO CUSTOMER § RECORDS, AND (3) CELL PHONE TRACKING § OPINION This opinion addresses two significant issues concerning law enforcement access to certain dialing and signaling information in the hands of telephone companies under the Electronic Communications Privacy Act (“ECPA”). The first is whether the Government may obtain “post- cut-through dialed digits” containing communication contents under the authority of the Pen/Trap Statute.1 The second is whether limited cell site information may be obtained prospectively under the dual or hybrid authority of the Pen/Trap Statute and the Stored Communications Act (“SCA”).2 These questions arise from a recent governmental application for a court order authorizing installation and use of a pen register and trap/trace device, access to customer records, and cell phone tracking. The court initially granted this order in part, denying access to the dialed digits as well as the limited cell site authority. In response to the Government’s informal request, the court agreed to reconsider the dialed digits ruling and invited full briefing by the Government as well as interested parties. The Electronic Frontier Foundation and Center for Democracy and Technology have filed 1 18 U.S.C.
  • Electronic Communications Privacy Act

    Electronic Communications Privacy Act

    Electronic Communications Privacy Act Law/Act: Electronic Communications Privacy Act U.S. Code Citation: 18 U.S.C. §§ 2510–2522, 2701–2712, 3121–3127 Responsible Regulator: Federal Communications Commission BYU Responsible Officer: Information Security & Privacy Committee Updated: Feb. 2019 Updated By: CJH Version 1.0 Effective Date: 1986 I. PURPOSE The purpose of the Electronic Communications Privacy Act (ECPA) is to protect the privacy of wire, oral, and electronic communications while in transmission and when stored on computers.1 II. HISTORY The ECPA was passed in 1986, and included both amendments to the previous Wiretap Act and the creation of the Stored Communications Act and the Pen Register Act.2 The ECPA was created to expand federal restrictions on wiretapping and electronic eavesdropping.3 The ECPA was heavily modified by the Communications Assistance to Law Enforcement Act (CALEA) in 1994 to allow law enforcement agencies the ability to conduct electronic surveillance.4 The ECPA was also significantly amended in 2001 and again in 2006 by the USA PATRIOT Act, which was created to increase protection against domestic terrorism in response to the 9/11 attacks.5 Significant changes were also made by the enactment of the Foreign Intelligence Surveillance Act of 1978 and Amendments (FISA) in 2008 to allow electronic surveillance for the collection of foreign intelligence information.6 III. APPLICABILITY TO BYU Because BYU provides electronic and wire communications services and stores records of such communications, it would be deemed a “communications provider,”7 and as such is subject to the provisions of the EPCA and responsible for protecting the privacy of covered communications.
  • Legal Constraints Upon the Use of the Pen Register As a Law Enforcement Tool Victor S

    Legal Constraints Upon the Use of the Pen Register As a Law Enforcement Tool Victor S

    Cornell Law Review Volume 60 Article 6 Issue 6 August 1975 Legal Constraints Upon the Use of the Pen Register as a Law Enforcement Tool Victor S. Elgort Follow this and additional works at: http://scholarship.law.cornell.edu/clr Part of the Law Commons Recommended Citation Victor S. Elgort, Legal Constraints Upon the Use of the Pen Register as a Law Enforcement Tool, 60 Cornell L. Rev. 1028 (1975) Available at: http://scholarship.law.cornell.edu/clr/vol60/iss6/6 This Note is brought to you for free and open access by the Journals at Scholarship@Cornell Law: A Digital Repository. It has been accepted for inclusion in Cornell Law Review by an authorized administrator of Scholarship@Cornell Law: A Digital Repository. For more information, please contact [email protected]. NOTES THE LEGAL CONSTRAINTS UPON THE USE OF THE PEN REGISTER AS A LAW ENFORCEMENT TOOL Imagine a suspect of a crime under investigation. The police are observing his home through binoculars, a mail cover 1 has been placed upon his incoming mail, a search warrant has been obtained for the contents of several of his letters, a pen register and a wiretap have been placed upon his telephone, and the records of his long-distance calls are periodically examined. The search war- rant for the letters is similar to the wiretap with respect to the interests and procedures involved.2 Both result in the detection of the substantive contents of a communication and need not be considered here. The pen register, which logs numbers dialed from a particular telephone without monitoring any conversations, 3 may be analogized to the nonelectronic surveillance techniques represented in this hypothetical situation by the mail cover and binocular watch.
  • An Overview of the Electronic Communications Privacy Act

    An Overview of the Electronic Communications Privacy Act

    Privacy: An Overview of the Electronic Communications Privacy Act Updated October 9, 2012 Congressional Research Service https://crsreports.congress.gov R41733 Privacy: An Overview of the Electronic Communications Privacy Act Summary This report provides an overview of federal law governing wiretapping and electronic eavesdropping under the Electronic Communications Privacy Act (ECPA). It also appends citations to state law in the area and the text of ECPA. It is a federal crime to wiretap or to use a machine to capture the communications of others without court approval, unless one of the parties has given his prior consent. It is likewise a federal crime to use or disclose any information acquired by illegal wiretapping or electronic eavesdropping. Violations can result in imprisonment for not more than five years; fines up to $250,000 (up to $500,000 for organizations); civil liability for damages, attorneys’ fees and possibly punitive damages; disciplinary action against any attorneys involved; and suppression of any derivative evidence. Congress has created separate, but comparable, protective schemes for electronic communications (e.g., email) and against the surreptitious use of telephone call monitoring practices such as pen registers and trap and trace devices. Each of these protective schemes comes with a procedural mechanism to afford limited law enforcement access to private communications and communications records under conditions consistent with the dictates of the Fourth Amendment. The government has been given narrowly confined authority to engage in electronic surveillance, conduct physical searches, and install and use pen registers and trap and trace devices for law enforcement purposes under ECPA and for purposes of foreign intelligence gathering under the Foreign Intelligence Surveillance Act.
  • Verizon Subpoena Manual 2006

    Verizon Subpoena Manual 2006

    Law Enforcement Legal Compliance Guide 8/03/06 1 Table of Contents VERIZON COMPLIANCE CONTACTS ....................................................................................................................................... 3 VERIZON COMMUNICATIONS (LAND LINES / IP) ................................................................................................................ 4 LANDLINE EMERGENCY REQUESTS - SCC 800-483-0722 ............................................................................................................... 4 IP / INTERNET SERVICES 800-483-0722 ........................................................................................................................................... 4 ELECTRONIC SURVEILLANCE ASSISTANCE TEAM (ESAT) 800-483-0722........................................................................................ 5 LEGAL COMPLIANCE 888-483-2600 ................................................................................................................................................ 6 UNLAWFUL CALL CENTER (UCC) 800-257-2969-WEST, 800-518-5507-EAST, 800-333-0309-VERIZON BUSINESS (FMCI) ......................... 6 TELECOMMUNICATIONS FRAUD 866-768-4338................................................................................................................................7 VERIZON AIRFONE 630-586-1184 ............................................................................................................................................... 7 VERIZON WIRELESS 800-451-5242............................................................................................................................................
  • Problems with Extending EINSTEIN 3 to Critical Infrastructure1

    Problems with Extending EINSTEIN 3 to Critical Infrastructure1

    Can It Really Work? Problems with Extending EINSTEIN 3 to Critical Infrastructure1 Steven M. Bellovin2, Scott O. Bradner3, Whitfield Diffie4, Susan Landau5, Jennifer Rexford6 1 Introduction Effectiveness should be the measure of any deployed technology. Does the solution actually solve the problem? Does it do so in a cost-efficient manner? If the solution creates new problems, are these easier and less problematic to handle than the original issue? In short, is the solution effective? In the rush to protect the U.S. after the 9/11 attacks, effectiveness was not always the primary driver in determining the value of the systems being proposed. In this context we consider the potential extension to the private sector of EINSTEIN 3, a federal program to detect and prevent cyber intrusions. Providing services to the public is a fundamental role for U.S. federal civilian agencies, and beginning in the mid 1990s, many agencies turned to the Internet. This shift was not without problems. While confidentiality, integrity, and authentication dominated early federal thinking about computer and Internet security, the threats agencies faced included phishing, IP spoofing, botnets, denials of service (DoS), distributed denials of service, and man-in-the-middle attacks. Some exploits were done purely for the publicity, but others had serious purpose behind them. By the early 2000s, the growing number of attacks on U.S. civilian agency systems could not be ignored, and in 2004 the U.S. began an active effort to protect federal civilian agencies against cyber intrusions7. This 1 The authors would like to thank Matt Blaze and John Treichler for various insights and suggestions in the writing of this paper, and we would also like to acknowledge multiple useful conversations with Sandy Bacik, Tahir El Gamal, and Vern Paxson.
  • United States Foreign Intelligence Surveillance

    United States Foreign Intelligence Surveillance

    All redacted information exempt under b(1) and/or b(3) except where TOP SECRETIIHCSIfCOMIPITIINOFORN otherwise noted. !'ILEO KAREN E. SUTTON, CLERK UNITED STATES FOREIGN INTELLIGENCE SURVEILLANCE COURT U.S. Foreign lntelllgsnce Surveillance Court WASHINGTON, D.C. Docket Number: PRITT MEMORANDUM OF LAW AND FACT IN SUPPORT OF APPLICATION FOR PEN REGISTERS AND TRAP AND TRACE DEVICES FOR FOREIGN INTELLIGENCE PURPOSES TOP !lECRETlIHCSJICOl\:UNTHNOFORN Derived from Application of the United States to the Foreign Intelligence Surveillance Court in the above-captioned matt~ filed Dealassify ealy tl1'6ft the detetnhnatioll of the Pxesident. 1871 (c) (2) PRODUCT I ON JULY 2009 2405 'fell SECR£THHCS/fCOP,H~ITmIOFORN : . ! INTRODUCTION (U) One of the greatest challenges the United States faces in the ongoing conflict with_ "is finding operatives of the enemy. As the Court is aware' ,that task is complicated by terrorists' exploitation of Interne! e-mail as a favored means of communication. -- , .' TOP 8ECRET/fHC8NCOMIl'ffi'A'IOFORN 1871 (c) (2) PRODUCT I ON JULY 2009 2406 TOP SECR:ETffHCSHCOMINT/fNOFORN LI. Gen. Michael V. Hayden, USAF, Director, NSA 'If 6 I(Attaclunent A to the Application) (hereinafter "DIRNSA Dec!. "). Unless the United States finds a way to sort through that data to identify terrorists' cornmuniical:iotls, . be losing vital intelligence that could prevent another deadly terrorist attack. (TSNSlitNF) The attached Application for pen registers and trap and trace devices works within the traditional authorities provided by the Foreign Intelligence Surveillance Act to capitalize upon the unique opportunities the United States has for identifying communications 0_' The collection sought here will make possible one of the most powerful tools that the Government can bring to bear to discover enemy ,communications: meta data analYSIS.
  • The Spies We Trust: Third Party Service Providers and Law Enforcement Surveillance

    The Spies We Trust: Third Party Service Providers and Law Enforcement Surveillance

    THE SPIES WE TRUST: THIRD PARTY SERVICE PROVIDERS AND LAW ENFORCEMENT SURVEILLANCE Christopher Soghoian Submitted to the faculty of the Graduate School in partial fulfillment of the requirements for the degree Doctor of Philosophy in the School of Informatics, Department of Computer Science Indiana University August 2012 Accepted by the Graduate Faculty, Indiana University, in partial fulfillment of the requirements of the degree of Doctor of Philosophy. Doctoral Geoffrey Fox, Ph.D. Committee (Principal Advisor) Markus Jakobsson, Ph.D. Fred Cate, J.D. May 1, 2012 Marc Rotenberg, J.D. ii Copyright c 2012 Christopher Soghoian This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 3.0 United States License. iii “The creatures outside looked from pig to man, and from man to pig, and from pig to man again; but already it was impossible to say which was which.” —GEORGE ORWELL,ANIMAL FARM iv Acknowledgements First, I would like to thank L. Jean Camp, who selflessly put herself at risk in order to save me from two extremely unpleasant encounters with the FBI. I will be indebted to her forever. I would also like to thank Stephen Braga and Jennifer Granick, two stellar attorneys who came to my defense in 2006 after the FBI took an interest in my work, raiding my home at 2AM and seizing my personal documents and computers. Their expert assistance led to the return of my possessions in just three weeks and the closing of the FBI’s criminal and TSA’s civil investigations without any charges filed. Jennifer Granick came to my assistance a second time (and was joined by Steve Leckar) in 2010 after the Federal Trade Commission’s Inspector General investigated me for using my government badge to attend a closed-door surveillance industry conference.
  • Exploring the Fourth Amendment Ramifications of Stingray Devices

    Exploring the Fourth Amendment Ramifications of Stingray Devices

    SEVENTH CIRCUIT REVIEW Volume 12, Issue 2 Spring 2017 WHO’S PINGING YOUR PHONE? EXPLORING THE FOURTH AMENDMENT RAMIFICATIONS OF STINGRAY DEVICES Cite as: Karen Vaysman, Who’s Pinging Your Phone? Exploring the Fourth Amendment Ramifications of Stingray Devices, 12 SEVENTH CIRCUIT REV. 365 (2017), at www.kentlaw.iit.edu/Documents/Academic Programs/7CR/12-1/ vaysman.pdf. KAREN VAYSMAN INTRODUCTION In 2001, the Supreme Court in Kyllo v. United States profoundly declared that “[i]t would be foolish to contend that the degree of privacy secured to citizens by the Fourth Amendment has been entirely unaffected by the advance of technology.”1 No less true is this statement today than when it was made, sixteen years ago, at a time when smartphones of the kind that exist today were unheard of to the Court. The modern smartphone device possesses unprecedented capabilities. With its massive storage capacity and ability to collect, all in one place distinct types of information, the phone can reconstruct an individual’s private life, all in the palm of a hand.2 Technological progress has a dual capability to decrease privacy, yet simultaneously augment the expectation of privacy. As cellphones become more sophisticated, so too does police surveillance. With J.D. candidate, May 2017, Chicago-Kent College of Law, Illinois Institute of Technology; B.S., Communications, University of Miami, 2014. 1 Kyllo v. United States, 533 U.S. 27, 33–34 (2001). 2 Riley v. California, 134 S. Ct. 2473, 2489 (2014). 365 SEVENTH CIRCUIT REVIEW Volume 12, Issue 2 Spring
  • Government Access to Phone Calling Activity and Related Records: Legal Authorities

    Government Access to Phone Calling Activity and Related Records: Legal Authorities

    Government Access to Phone Calling Activity and Related Records: Legal Authorities (name redacted) Legislative Attorney (name redacted) Legislative Attorney November 9, 2011 Congressional Research Service 7-.... www.crs.gov RL33424 CRS Report for Congress Prepared for Members and Committees of Congress Government Access to Phone Calling Activity and Related Records: Legal Authorities Summary Public interest in the means by which the government may collect telephone call records has been raised by revelations in recent years regarding alleged intelligence activity by the National Security Agency (NSA) and the Federal Bureau of Investigation (FBI). According to a USA Today article from May 11, 2006, the NSA allegedly sought and obtained records of telephone numbers called and received from millions of telephones within the United States from three telephone service providers; a fourth reportedly refused to provide such records. Additionally, a series of reports issued by the Department of Justice’s Office of the Inspector General (DOJ OIG), most recently in January of 2010, indicate that, between 2002 and 2006, consumer records held by telephone companies had been provided to the FBI through the use of “exigent letters” and other informal methods that fell outside of the national security letter (NSL) process embodied in statute and internal FBI policies. The Supreme Court has held that there is no Fourth Amendment protection of telephone calling records held in the hands of third party providers, where the content of any call is not intercepted. However, this report summarizes existing statutory authorities regarding access by the government, for either foreign intelligence or law enforcement purposes, to information related to telephone calling patterns or practices.
  • Electronic Surveillance in a Digital Age (Part 7 of 7)

    Electronic Surveillance in a Digital Age (Part 7 of 7)

    lossary Access munication, includes any information concerning The technical capability to interface with a com- the substance, purport, or meaning of that commu- munications facility, such as a communications nication. line or switch, so that law enforcement can moni- Call Content Channel (CCC) tor and receive call setup information and call The link between the surveillance switch and the content. law enforcement agency that carries the call con- Actual Capacity tent. The CCC may be a switched connection or a That portion of the Maximum Capacity simulta- dedicated path through the Public Switched Tele- neously required to conduct electronic surveil- phone Network (PSTN), e.g., on a private line. lances at or before a specified date in a given switch as indicated by the Attorney General for all Call Data Channel (CDC) government agencies authorized to do surveil- The interface between the surveillance switch and lance. the law enforcement agency that carries the call set-up data. The CDC may be a switched connec- Advanced Intelligent Network (AIN) tion or dedicated path through the Public A system of interrelated computer-based compo- Switched Telephone Network (PSTN) or may be nents linked to a switched or wireless telecommu- separate from the PSTN, e.g., via a private line or a nications network that provides a framework for packet switched network. services, e.g., call forwarding, credit card authen- tication, personal identification numbers, speed Call Setup Data dialing, voice dialing, etc. Includes all of the setup and call release informa- tion received and interpreted by the surveillance Base Station switch as a regular part of processing the call as The common name for all of the radio equipment defined in applicable standards and specifications located at a single site for serving one or several for the services being provided.
  • Security Versus Security: Balancing Encryption, Privacy, and National Secuirty

    Security Versus Security: Balancing Encryption, Privacy, and National Secuirty

    SECURITY VERSUS SECURITY: BALANCING ENCRYPTION, PRIVACY, AND NATIONAL SECUIRTY Jackson Stein (TC 660H or TC 359T) Plan II Honors Program The University of Texas at Austin 05/04/2017 __________________________________________ Robert Chesney Director of Robert Strauss Center Supervising Professor __________________________________________ Mark Sainsbury Department of Philosophy Second Reader ABSTRACT Author: Jackson Stein Title: Security vs. Security: Balancing Encryption, Data Privacy, and Security Supervising Professors: Robert Chesney, Mark Sainsbury This paper analyzes the current debate over encryption policy. Through careful evaluation of possible solutions to ‘going dark’ as well has weighting the costs and benefits of each solution, we found exceptional access to information more harmful than helpful. Today, there seems to be no singular leading answer to the going dark problem. Exceptional access to data and communications is a simple solution for a simple problem, however going dark is very complex, and requires a multifaceted and refined solutions. Widespread encryption forces those listening—whether it is the NSA, FBI, foreign governments, criminals or terrorist—to be much more targeted. As for the going dark metaphor, it seems as though we are not entirely “going dark”, and yet we are not completely bright either. There are dark and bright spots coming and going across the technological landscape battling in a perpetual technological arms race. The findings of this paper, ultimately determine there to be no policy that doesn’t come without some cost. That said, there are a number of ways in which law enforcement can track criminals and terrorist without weakening encryption, which we determine to be the best direction in any win lose situation.