US looks to prevent spying on its spies

US looks to prevent spying on its spies

Summary: The US government is looking into encryption techniques that could prevent eavesdroppers from spying on its own surveillance of Americans' phone records.

SHARE:
1

As the Obama administration considers shifting the collection of phone records from the National Security Agency (NSA) to requiring that they be stored at phone companies or elsewhere, it's quietly funding research to prevent phone company employees or eavesdroppers from seeing who the US is spying on, the Associated Press has learned.

The Office of the Director of National Intelligence has paid at least five research teams across the country to develop a system for high-volume, encrypted searches of electronic records kept outside the government's possession.

The project is among several ideas that would allow the government to discontinue storing Americans' phone records, but still search them as needed.

Under the research, US data mining would be shielded by secret coding that could conceal identifying details from outsiders and even the owners of the targeted databases, according to public documents obtained by AP and its interviews with researchers, corporate executives, and government officials.

The administration has provided only vague descriptions about the changes it is considering to the NSA's daily collection and storage of Americans' phone records, which are presently kept in NSA databanks.

To resolve legal, privacy, and civil liberties concerns, President Barack Obama this month ordered the attorney general and senior intelligence officials to recommend changes by March 28 that would allow the US to identify suspected terrorists' phone calls without the government holding the phone records itself.

One federal review panel urged Obama to order phone companies or an unspecified third party to store the records; another panel said collecting the phone records is illegal and ineffective, and urged Obama to abandon the program entirely.

Internal documents describing the Security and Privacy Assurance Research project do not cite the NSA or its phone surveillance program.

But if the project were to prove successful, its encrypted search technology could pave the way for the government to shift storage of the records from NSA computers to either phone companies or a third-party organisation.

A DNI spokesman, Michael Birmingham, confirmed that the research is relevant to the NSA's phone records program.

He cited "interest throughout the intelligence community", but cautioned that it may be some time before the technology is used.

The NSA's surveillance program collects millions of Americans' daily calling records into a central agency database.

When the agency wants to review telephone traffic associated with a suspected terrorist — the agency made 300 such queries in 2012 — it then searches that data bank and retrieves matching calling records and stores them separately for further analysis.

Using a "three-hop" method that allows the NSA to pull in records from three widening tiers of phone contacts, the agency could collect the phone records of up to 2.5 million Americans during each single query.

Topics: Security, Government US

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

1 comment
Log in or register to join the discussion
  • Doubletalk and subterfuge

    In the end, no independent review of NSA activity is available, so they can do whatever they want and no Congress, court, or even the President can actually say no. Not that any of them seem inclined to say no, even in the face of blatant twisting of the Constitution.

    And with the lack of any real public outrage, the authorities have been given the green light to proceed with whatever they desire. The window-dressing reviews and agreements with private industry are meekly accepted by the news media and the public even if nothing really changes.
    terry flores