Washington Post columnist, Matt Miller, is offended by Edward Snowden’s “grandiose” conscience:

An Internet-era J. Edgar Hoover is frightening to conjure. But what Snowden exposed was not some rogue government-inside-the-government conspiracy. It’s a program that’s legal, reviewed by Congress and subject to court oversight.

The conversation would be entirely different today if we’d had a series of attacks since Sept. 11, 2001. As the Wall Street Journal editorial page (with which I don’t usually nod in agreement) wrote, if the nation suffered another 9/11 or an attack with weapons of mass destruction, “the political responses could include biometric national ID cards, curfews, surveillance drones over the homeland, and even mass roundups of ethnic or religious groups.” Practices like data mining, the Journal added, “protect us against far greater intrusions on individual freedom.”

What Miller and the Wall Street Journal are appealing to is exactly the same line of reasoning employed by Bashir al-Assad and every other authoritarian leader: if I don’t limit your freedom, then you will lose it altogether.

Dissenters duly rebuked are then expected to shut their mouths in recognition of the greater good. (H/t Philip Weiss.)

The Los Angeles Times reports: Google is asking the Obama administration for permission to disclose more information about requests it gets from national intelligence agencies for its users’ emails and other online communications.

The technology giant made the request in a letter to Atty. Gen. Eric H. Holder Jr. and FBI Director Robert S. Mueller III on Tuesday.

Google is trying to counteract damaging media reports that the company allows the National Security Agency access to users’ online communications.

“Assertions in the press that our compliance with these requests gives the U.S. government unfettered access to our users’ data are simply untrue,” Google’s chief legal officer, David Drummond, said in a blog post. “However, government nondisclosure obligations regarding the number of FISA (Foreign Intelligence Surveillance Act) national security requests that Google receives, as well as the number of accounts covered by those requests, fuel that speculation.”

Google and other technology companies came under scrutiny last week after a government contractor leaked confidential documents revealing that the NSA has been receiving information from Google and other services, including data from U.S. phone call records and online communications to and from foreign targets.

Google and other companies insist that they only give up user communications when required by law, and they dispute certain details in reports in the Guardian and Washington Post newspapers that detailed their roles in an NSA data collection program called PRISM.

Presentations, by their very nature, just as often portray goals as they do actualities and PowerPoint is perhaps the tool par excellence in conjuring up the simplistic outlines of a make-believe world.

It’s possible that Google is now engaged in some PR theatrics — making a request that it knows will be turned down — but my hunch is that they would in fact be vindicated by full disclosure of the facts.

And if that’s the case, then the publication of all 41 slides from the NSA PRISM PowerPoint presentation might not result in the revelation of secrets that would be particularly damaging to national security per se. The damage might derive as much from American citizens becoming aware of what the NSA would like to do as it does from awareness of what it is actually doing. In other words, a need for the continued secrecy of the contents of these slides, might be more important for protecting the reputation of the NSA rather than protecting the operations of the agency.

#Snowden demanded all 41 pages of #PRISM document be published but neither WaPo nor Guardian had the courage washingtonpost.com/world/national…

— WikiLeaks (@wikileaks) June 10, 2013

Kevin Poulsen writes: What’s in Edward Snowden’s 41-slide PowerPoint deck that’s so hot that nobody dare publish it?

Now that Snowden has revealed himself to the world as the NSA whistleblower, details about his interaction with the press are surfacing. And at the center of the drama is a still mostly unpublished 41-slide presentation, classified top secret, that Snowden gave to the Washington Post and the Guardian to expose the NSA’s internet spying operation “PRISM.”

Only five slides from the presentation have been published. The other 36 remain a mystery. Both the Guardian’s Glenn Greenwald and the Post’s Barton Gellman have made it clear that the rest of the PowerPoint is dynamite stuff … which we’re not going to be seeing any time soon. “If you saw all the slides you wouldn’t publish them,” wrote Gellman on Twitter, adding in a second tweet: “I know a few absolutists, but most people would want to defer judgment if they didn’t know the full contents.”

But as Gellman himself has reported, Edward Snowden urgently wanted all the slides to be published while also saying: “I don’t desire to enable the Bradley Manning argument that these were released recklessly and unreviewed.”

So, we’re in the curious position where the two journalists the whistleblower is relying on to deliver his message seem to have taken it upon themselves to serve as both messengers and gatekeepers.

If you could see these secret slides you’d know why they must remain secret — that’s exactly the argument the government makes. The Guardian and the Washington Post seem to be casting their source as both responsible and irresponsible.

And let’s not forget: we’re talking about PowerPoint slides and information whose continued secrecy is vital to national security could surely be redacted.

On the other hand, as Edward Tufte duly notes, the NSA itself in its list of useful information sources didn’t bother including PowerPoint presentations.

So, maybe that’s the reason we haven’t seen the remaining 36 slides. When Gellman said, “If you saw all the slides you wouldn’t publish them,” perhaps what he actually meant was that the other 36 slides contain nothing of interest whatsoever.

List of spy-PRISM collected information includes nearly everything, except PPT decks. No useful information at all? twitter.com/EdwardTufte/st…

— Edward Tufte (@EdwardTufte) June 7, 2013

NSA 'Transition 2001', December 2000

An NSA memo written in December 2000 expressed ambivalence about the impact of the Fourth Amendment on the agency’s ability to gather electronic signals intelligence. While paying lip service to the protection of the Constitution, the agency underlined that it would need a “powerful, permanent presence on a global telecommunications network that will host the ‘protected’ communications of Americans” — the implication being that the NSA’s “presence” (read: surveillance) on the network would inevitably expose U.S. citizens’ communications to government scrutiny. In other words, the global nature of the network would mean that the NSA would no longer be able to draw any sharp differentiation between domestic and foreign communications.

The New York Times reports: The [National Security] agency’s ability to efficiently mine metadata, data about who is calling or e-mailing, has made wiretapping and eavesdropping on communications far less vital, according to data experts. That access to data from companies that Americans depend on daily raises troubling questions about privacy and civil liberties that officials in Washington, insistent on near-total secrecy, have yet to address.

“American laws and American policy view the content of communications as the most private and the most valuable, but that is backwards today,” said Marc Rotenberg, the executive director of the Electronic Privacy Information Center, a Washington group. “The information associated with communications today is often more significant than the communications itself, and the people who do the data mining know that.”

In the 1960s, when the N.S.A. successfully intercepted the primitive car phones used by Soviet leaders driving around Moscow in their Zil limousines, there was no chance the agency would accidentally pick up Americans. Today, if it is scanning for a foreign politician’s Gmail account or hunting for the cellphone number of someone suspected of being a terrorist, the possibilities for what N.S.A. calls “incidental” collection of Americans are far greater.

United States laws restrict wiretapping and eavesdropping on the actual content of the communications of American citizens but offer very little protection to the digital data thrown off by the telephone when a call is made. And they offer virtually no protection to other forms of non-telephone-related data like credit card transactions.

Because of smartphones, tablets, social media sites, e-mail and other forms of digital communications, the world creates 2.5 quintillion bytes of new data daily, according to I.B.M.

The company estimates that 90 percent of the data that now exists in the world has been created in just the last two years. From now until 2020, the digital universe is expected to double every two years, according to a study by the International Data Corporation.

Accompanying that explosive growth has been rapid progress in the ability to sift through the information.

When separate streams of data are integrated into large databases — matching, for example, time and location data from cellphones with credit card purchases or E-ZPass use — intelligence analysts are given a mosaic of a person’s life that would never be available from simply listening to their conversations. Just four data points about the location and time of a mobile phone call, a study published in Nature found, make it possible to identify the caller 95 percent of the time.

“We can find all sorts of correlations and patterns,” said one government computer scientist who spoke on condition of anonymity because he was not authorized to comment publicly. “There have been tremendous advances.”

Here’s a fantasy portrayal of how harvesting metadata can save lives. The storyteller is Palantir Technologies whose database integration system is reported to have become “an indispensable tool employed by the U.S. intelligence community in the war on terrorism.”

In October, a foreign national named Mike Fikri purchased a one-way plane ticket from Cairo to Miami, where he rented a condo. Over the previous few weeks, he’d made a number of large withdrawals from a Russian bank account and placed repeated calls to a few people in Syria. More recently, he rented a truck, drove to Orlando, and visited Walt Disney World by himself. As numerous security videos indicate, he did not frolic at the happiest place on earth. He spent his day taking pictures of crowded plazas and gate areas.

None of Fikri’s individual actions would raise suspicions. Lots of people rent trucks or have relations in Syria, and no doubt there are harmless eccentrics out there fascinated by amusement park infrastructure. Taken together, though, they suggested that Fikri was up to something. And yet, until about four years ago, his pre-attack prep work would have gone unnoticed. A CIA analyst might have flagged the plane ticket purchase; an FBI agent might have seen the bank transfers. But there was nothing to connect the two. Lucky for counterterror agents, not to mention tourists in Orlando, the government now has software made by Palantir Technologies, a Silicon Valley company that’s become the darling of the intelligence and law enforcement communities.

The day Fikri drives to Orlando, he gets a speeding ticket, which triggers an alert in the CIA’s Palantir system. An analyst types Fikri’s name into a search box and up pops a wealth of information pulled from every database at the government’s disposal. There’s fingerprint and DNA evidence for Fikri gathered by a CIA operative in Cairo; video of him going to an ATM in Miami; shots of his rental truck’s license plate at a tollbooth; phone records; and a map pinpointing his movements across the globe. All this information is then displayed on a clearly designed graphical interface that looks like something Tom Cruise would use in a Mission: Impossible movie.

As the CIA analyst starts poking around on Fikri’s file inside of Palantir, a story emerges. A mouse click shows that Fikri has wired money to the people he had been calling in Syria. Another click brings up CIA field reports on the Syrians and reveals they have been under investigation for suspicious behavior and meeting together every day over the past two weeks. Click: The Syrians bought plane tickets to Miami one day after receiving the money from Fikri. To aid even the dullest analyst, the software brings up a map that has a pulsing red light tracing the flow of money from Cairo and Syria to Fikri’s Miami condo. That provides local cops with the last piece of information they need to move in on their prey before he strikes.

Now let’s make a tiny tweak to this story: Fikri, mindful that it’s probably not wise to draw the attention of law enforcement, carefully observes all traffic regulations. He doesn’t get a speeding ticket and the CIA’s Palantir system is not triggered into action.

Shane Harris writes: To date, there have been practically no examples of a terrorist plot being pre-emptively thwarted by data mining these huge electronic caches. (Rep. Mike Rogers, chairman of the House Intelligence Committee, has said that the metadatabase has helped thwart a terrorist attack “in the last few years,” but the details have not been disclosed.)

When I was writing my book, The Watchers, about the rise of these big surveillance systems, I met analyst after analyst who said that data mining tends to produce big, unwieldy masses of potential bad actors and threats, but rarely does it produce a solid lead on a terrorist plot.

Those leads tend to come from more pedestrian investigative techniques, such as interviews and interrogations of detainees, or follow-ups on lists of phone numbers or e-mail addresses found in terrorists’ laptops. That shoe-leather detective work is how the United States has tracked down so many terrorists. In fact, it’s exactly how we found Osama bin Laden.

What the proponents of mass surveillance need to explain is how, given the existing scope of data gathering, the NSA did not intercept Tamerlan Tsarnaev and Dzhokhar Tsarnaev before they planted their bombs in Boston. Neither was Faisal Shahzad prevented from attempting to bomb Times Square.

What mass data collection is extremely effective in doing, is identifying trends — such as the emergence of a political movement. As a tool for suppressing political dissent, nothing could be more effective.

The Obama administration might not be in the business of large-scale political oppression, but what it is doing is putting in place and expanding the infrastructure of oppression.

Americans may never face a dramatic moment in which freedoms are suddenly stripped away, if instead we willingly abandon liberty, bit by bit, in favor of an illusory security.

“In the interests of aiding the debate over how Prism works, the Guardian is publishing an additional slide from the 41-slide presentation which details Prism and its operation. We have redacted some program names.”

And in the interests of boosting its U.S. operations, does The Guardian plan on dragging this story out for another 36 days, one slide a day perhaps being the maximum amount the paper has determined its readers can digest without being overwhelmed? Give me a break.

As “ImpartiallyApathetic” comments: “Perhaps some brave soul at the Guardian will leak the leak?” Or does The Guardian guard its secrets even more carefully than the NSA?

If a technology company creates a platform that allows data integration from disparate databases and a component in its software is called Prism, is that sufficient reason to speculate that it might have some connection with the much-reported NSA PRISM surveillance program?

It seems like it was good enough reason for Talking Points Memo and Gawker.

Gawker‘s Sam Biddle says: “No one knows what Palantir — named after a magical rock in Lord of The Rings that granted remote vision — exactly does.” But it turns out the “secretive data-mining company” provides a lot of information about what it does both through its website and its YouTube channel with 261 videos.

Josh Marshall’s post at TPM was initially based on an email from an anonymous reader who, for what it’s worth (not much), knows a guy who works for Palo Alto-based Palantir (which has over 800 employees). “I want to stress this is a reader email, not TPM reporting,” Marshall wrote before later adding multiple updates but neglecting to include a statement from the company, relayed on Twitter by the Financial Times tech correspondent, Tim Bradshaw: “Palantir’s Prism platform is completely unrelated to any US government program of the same name.”

Why should the company’s denial be taken at face value?

Here’s a good reason.

In the widely seen PowerPoint slide which depicts dates when PRISM collection began for providers beginning with Microsoft, the first date is September 11, 2007. Yahoo came on board in March 2008.

In a 2012 interview with TechCrunch, Palantir founder and CEO Alex Karp describing their platform said: “We didn’t know it would actually work, until 2008, and we didn’t know anyone would buy it until mid-2008, so third quarter 2008.”

Whatever the NSA was using for data collection from Microsoft and Yahoo in late 2007 and early 2008, it’s pretty clear it wasn’t Palantir software.

We know where you live.

We know everything else.

“The public doesn’t understand,” [former Sun Microsystems engineer Susan Landau told Jane Mayer] … speaking about so-called metadata. “It’s much more intrusive than content.” She explained that the government can learn immense amounts of proprietary information by studying “who you call, and who they call. If you can track that, you know exactly what is happening — you don’t need the content.”

For example, she said, in the world of business, a pattern of phone calls from key executives can reveal impending corporate takeovers. Personal phone calls can also reveal sensitive medical information: “You can see a call to a gynecologist, and then a call to an oncologist, and then a call to close family members.” And information from cell-phone towers can reveal the caller’s location. Metadata, she pointed out, can be so revelatory about whom reporters talk to in order to get sensitive stories that it can make more traditional tools in leak investigations, like search warrants and subpoenas, look quaint. “You can see the sources,” she said. When the F.B.I. obtains such records from news agencies, the Attorney General is required to sign off on each invasion of privacy. When the N.S.A. sweeps up millions of records a minute, it’s unclear if any such brakes are applied.

Metadata, Landau noted, can also reveal sensitive political information, showing, for instance, if opposition leaders are meeting, who is involved, where they gather, and for how long. Such data can reveal, too, who is romantically involved with whom, by tracking the locations of cell phones at night. [Continue reading…]

On March 12, at a hearing of the Senate Intelligence Committee, Sen. Ron Wyden asked Director of National Intelligence James Clapper: “Does the NSA collect any type of data at all on millions or hundreds of millions of Americans?” Clapper answered: “No, sir.” And Wyden reiterated the question, “It does not?” Clapper responded: “Not wittingly. There are cases where they could, inadvertently perhaps, collect — but not wittingly.”

As can be seen in the video clip above, Clapper’s body language seems to say much more than his words. He literally squirms and bows his head as he issues his denial. His discomfort in being pressed to answer this question is transparent.

In an interview with National Journal on Wednesday, Clapper squirmed and equivocated even more: “What I said [before the Senate committee] was, the NSA does not voyeuristically pore through U.S. citizens’ e-mails. I stand by that.”

What is implied in both of Clapper’s qualifications — that data is not collected ‘wittingly’ nor are e-mails viewed ‘voyeuristically’ — is that data gathered on millions of Americans is not systematically subject to human analysis.

But that’s irrelevant and almost certainly a willful deception since in the absence of any human analysis, vast databases can be created and massive amounts of machine analysis performed through which electronic data gathered on the bulk of the population can be used to construct and operate a social surveillance system of unparalleled scope and detail.

Part of a Foreign Intelligence Surveillance Court order granted to the FBI on April 25, 2013.

The National Security Agency at the request of the FBI is keeping a record of everywhere you go and everyone you talk to at all times.

Since, as The Guardian reports, the government is collecting this information from all Verizon customers, it’s reasonable to assume that it is also doing so with every other telecommunications carrier. In other words, there’s little doubt that every single individual in this country who uses any form of electronic communication is under 24-hour-a-day surveillance.

The White House is hiding behind the word “metadata” as it attempts to defend its actions — on the assumption that most people will overlook the loss of privacy if they believe that the content of their conversations is not being recorded.

In reality, metadata is the information that is of greatest interest to a security state. How so? Imagine the converse. Suppose the NSA was recording the content of all communications but not the metadata. Suppose it could only gain access to the metadata under a specific search warrant. The government would always know everything that was being said but have no idea who was talking to who. It couldn’t engage in data mining, constructing social networks and most of the other features of a mass surveillance enterprise. It couldn’t utterly abandon the principle that criminal investigation needs to be constrained by reasonable suspicion and probably cause.

People who think that screening procedures by TSA agents are unreasonably intrusive should be even more concerned about the handling of their metadata.

It’s not just metadata; it’s my data. And it’s turning into the equivalent of a citizens’ bar code used not only by governments but also corporations who understand that information is power and thus resist whatever constraints are imposed on their ability to gather personal information as extensively and in as great detail as they can.

The Guardian reports: The National Security Agency is currently collecting the telephone records of millions of US customers of Verizon, one of America’s largest telecoms providers, under a top secret court order issued in April.

The order, a copy of which has been obtained by the Guardian, requires Verizon on an “ongoing, daily basis” to give the NSA information on all telephone calls in its systems, both within the US and between the US and other countries.

The document shows for the first time that under the Obama administration the communication records of millions of US citizens are being collected indiscriminately and in bulk – regardless of whether they are suspected of any wrongdoing.

The secret Foreign Intelligence Surveillance Court (Fisa) granted the order to the FBI on April 25, giving the government unlimited authority to obtain the data for a specified three-month period ending on July 19.

Under the terms of the blanket order, the numbers of both parties on a call are handed over, as is location data, call duration, unique identifiers, and the time and duration of all calls. The contents of the conversation itself are not covered. [Continue reading…]