So spying on foreign countries is abhorent?

By far, the largest military on Earth belongs to the People's Republic of China.

Furthermore, if you believe that the Chinese military isn't hacking US corporations and individuals, you are kidding yourself.

Ed is interesting and brilliant; accomplished in martial arts and an active participant in related activities. I know he used to participate every year in Chinese New Year parades with his martial arts organization. He once gave me a one-on-one martial arts lesson, and I was surprised at his abilities — and very amused that he seemed unable to go very easy on a newbie.

Unfortunately, most Americans don't care. They're OK with it. -- Chuffy

The US spying on China is kind of expected and not a legal issue. -- mulligan

Determing the degree to which that is true isn't made any easier by the leak being filtered through Glenn Greenwald. -- Artw

What was illegal/criminal so far? I'm not talking about opinions about the PATRIOT Act or the NSA, but about the facts.

We knew Bush did this without FISA, without warrants. Why is this a story now? -- Chuffy

Manning revealed that war crimes were committed. I don't see the crime here - so it's more like exposing secrets. I'll check back later, but the whole thing smells pretty political - almost like a plant. … Cool Papa Bell - I'm not seeing the criminal activity that Snowden is *exposing*...I'm fairly certain he's broken the law. Whistleblowers need to expose crimes to be protected. I'm not seeing the criminal activity.

From his perspective, and frankly from mine, there's not been a lot that is damning that has been revealed about him thus far. His background isn't that far off from mine and I don't consider myself a traitor or a security risk.

Are Hong Kongers Losing Patience With Beijing? Edward Snowden's decision to flee to the territory puts a spotlight on its growing discomfort with mainland Chinese meddling.

This is the same crack group that couldn't figure out one of their own dudes stole a bunch of their stuff and went to China over a month ago until he showed up in the newspaper, right? Surveillance state, surveil thyself!

Extradition only requires that the offense be an offense in both countries. I'm amazed by the number of people in this thread that don't realize that.

In a cloud computing economy, the NSA is bad for business:

More generally, though, the third-party doctrine that Ozzie referred to is part of a larger legal theory that treats any information in the possession of someone else — your credit card transactions, call records, your journal, you name it — differently than if you alone were in possession of that information. It’s a hot topic of debate among legal scholars, and it seems the advent of the cloud has some members of the Supreme Court ready to weigh in on it should the right case arise.

In a 2012 case notable for its holding regarding the legality of warrantless GPS tracking [LINK: warrants required], Justice Sonia Sotomayor addressed the bigger picture in a concurring opinion. She called the third-party doctrine “ill suited to the digital age, in which people reveal a great deal of information about themselves to third parties in the course of carrying out mundane tasks.”

“I would not assume,” she added, “that all information voluntarily disclosed to some member of the public for a limited purpose is, for that reason alone, disentitled to Fourth Amendment protection.”

Earlier, in a thread titled, “I’m a screwup,” he writes, “Join the army. Worked for me.” Two days later, in a discussion about emerging industries, he suggests “Counterterrorism” is an area that will expand within the next five years.

good thing that's not what US lawyers would have to show, then.

@ delmoi: they would have to show that leaking confidential info is illegal under HK law. ie, if it would be illegal under HK law for an HK person to leak classified HK info, then it's an extraditable offense.

Jacques Semmelman, a New York lawyer who specializes in extradition cases, said prosecutors need to be wary of charging Mr. Snowden too aggressively, because they risk triggering an exception for "political" offenses in the Hong Kong-U.S. extradition treaty or in other nations' extradition treaties. That category can include espionage, treason and sedition.

"I think the political-offense issue will be a major issue in the case, and it's going to take ingenuity by the U.S. government to come up with charges that are bona fide but bypass the political-offense exception to extradition," said Mr. Semmelman.

Extradition treaties like the one the U.S. has with Hong Kong prohibit authorities from seeking the extradition of a fugitive on a lesser charge and then filing far more serious charges against that person once he or she has been handed over.

"What the government cannot do is find some relatively minor infraction and try to extradite him to the United States with the intention of then expanding the charges to include more serious leak charges," said Mr. Semmelman.[link]

This is yet another blanket statement which is untrue. Lots of those in this thread. (if this were actually being done on a wide scale, the cell networks using TDOA location would keel over and die for lack of space on the control channels)

Assuming Mr. Snowden is still in Hong Kong, that extradition treaty also has another exception allowing Hong Kong to deny extradition: cases involving the public interest, national defense or foreign affairs of China or Hong Kong.

today's reveal about foreign civilian targets could be some kind of long game (analysis pending) meant to weaken the US position and delay, delay, delay; whereas the prism leak carried the thrust of his idealism.

The ruling, signed by the court’s chief judge, Reggie Walton, rejected the Justice Department’s arguments that the secret national security court’s rules prevented disclosure of the opinion. Instead, the court found that because the document was in the possession of the Justice Department, it was subject to release under the Freedom of Information Act.

Privacy advocates who brought the case said Wednesday that the ruling could pave the way for at least the partial release of landmark -- but still classified -- court rulings that some government surveillance activities violated the Fourth Amendment of the Constitution barring "unreasonable searches and seizures."

The release of the opinion, they say, may prove central in the current controversy over the scope of National Security Agency surveillance programs.

You should really read the link.

The EFF’s lawsuit was inspired by a July 20, 2012 letter from an aide to Director of National Intelligence James Clapper to Sen. Ron Wyden, D-Ore., that stated that “on at least one occasion,” the FISC held that “some collection” carried out by the U.S. government under classified surveillance programs “was unreasonable under the Fourth Amendment.”

The letter, from Kathleen Turner, Clapper’s chief of legislative affairs, provided no further information about what the FISC found to be unconstitutional, but did state that the government “has remedied these concerns” and the FISC has continued to approve its collection activities.

Also on Thursday, Professor Simon Shen Xu-hui, co-director of Chinese University’s International Affairs Research Centre, said: “Snowden’s public statement, if true, is hard evidence to confirm Beijing’s long-held stance that there is foreign intervention in Hong Kong affairs.”

Telephone users, in sum, typically know that they must convey numerical information to the phone company; that the phone company has facilities for recording this information; and that the phone company does in fact record this information for a variety of legitimate business purposes. Although subjective expectations cannot be scientifically gauged, it is too much to believe that telephone subscribers, under these circumstances, harbor any general expectation that the numbers they dial will remain secret.

Rory Marinich: “Calling bullshit on this. I've never seen proof that anybody can successfully read all the comments in one thread before posting”

You've been lying for years about how you're better than totalitarian and facist countries - that you're a democratic nation, with rules, and respect liberty. And it turns out, you're doing it as much or more than anyone else. That foreign civilians don't matter one god damn to your government.

On preview - ArkhanJG - both the UK's GCHQ and SIS (MI6) have the UK's economic wellbeing as a major goal of their intelligence gathering and counterintelligence programs although counterintel is SS (MI5) territory.

What what what? The NSA don't do human intelligence; there aren't more than a negligible amount of NSA agents to risk in the field. I suspect you'd be wondering about CIA agents, but there's not much crossover there ...

I do. It goes to his motive. I'm not convinced he's doing this for patriotic or altruistic reasons.

His history coupled with what he's doing now makes me think that Snowden is an attention-seeking asshole with a hero fantasy that he's trying to fulfill. Either that or he's running from the mega-self-absorbed girlfriend. Gawd.

Who says it's a smear campaign?

However, "hero fantasy" and "attention-seeking asshole" are not mutually exclusive, I suppose.

No, because every nation state already knows. Do you think that people don't know what a listening post or indeed NSA itself is for? Doing this is a core part of the mission statement. -- jaduncan

Interesting take on that. The "pole dancing superhero" bit was something she said - that wasn't a media label slapped on her; she labeled herself that.

I'm relatively new to DC, but one thing I have learned is that regardless of your political stance you absolutely. shut. the fuck. up. about matters related to security clearances/SCI. It's like a secondary religion or cultural protocol here. I've had to learn some entirely new methods of social interaction as a result. I think some of the blowback is from this.

Media handling on a large number of items is childish, I agree. Just not sure it isn't warranted here.

Living in an Assange-like limbo wouldn't have been Snowden's objective, in this scenario, but it's a decent fallback plan for a double-agent.

Yes, but in this case, the disliked guy has already pretty egregiously opened his mouth on some matters which he was expressly forbidden to and earning the dislike. I really want to look further into this, but isn't there a protocol for whistleblowers to follow? Isn't there a way for them to go to an Inspector General and report something?

My pet theory [totally speculative] is that Snowden had been feeding info to the Chinese for some time. But something made him worried that he was about to be caught. So when he left Booz Allen claiming he needed treatment for epilepsy, he was in fact hoping the Chinese would help him defect and resettle in Hong Kong. The only problem was that there was a new Chinese president hoping to improve relations with the US, and an important summit coming up in California. So Snowden, in a kind of limbo and fearing that the NSA Q Group might "disappear" him, decided to go public and reinvent himself as a whistleblower.

Government agencies and private company security people are supposed to be suspicious, and to assume that capabilities may be utilised and should be assumed to be so. There's a reason esoteric security holes are often discussed with a phrase something along the lines of 'probably only practically exploitable by a nation state adversary'.

I'm just not sure why you'd think that network security people are such naifs.

...I worked in signals. In the UK. We would treat any foreign agency as suspicious and likely to want to see UK EYES ONLY stuff, including the NSA. I'm merely projecting a vague sense of professionalism on people in charge of IT and telecoms stuff.

I'm also not sure it's paranoia/cynicism when the sign above the door on the agency says 'we collect signals intelligence'.

Until Snowden divulged the secret program most in Hong Kong assumed that China was to blame for any hacking episodes, according to Simon Shen, co-director of the International Affairs Research Center at Chinese University of Hong Kong.
Snowden named Shen's university as one of hundreds of NSA targets in Hong Kong and mainland China in an interview published in Thursday's edition of the Post, but it was the only one he specifically identified.

and are centered around the lack of privacy/data protection in US law when compared to EU and Swedish requirements and the failure of the contract to ensure that Google will privately agree to maintain the higher standard.

I'm curious about this too. Presumably his bank accounts have been seized as well, which would make normal savings useless. Bitcoin maybe? This is purely speculation, but it seems like the kind of thing someone as crypto-savvy as Snowden would at least be aware of.
...

Why do you think this is presumable? I agree that he may not want to use his bank accounts, but since he's not been charged with a crime, what possible basis would there be for seizing his bank accounts?

Yeah, he hasn't been charged with a crime yet, so there'd be no authority to claim his bank accounts.

"Signals intelligence (often contracted to SIGINT) is intelligence-gathering by interception of signals, whether between people ("communications intelligence"—COMINT), involving electronic signals not directly used in communication ("electronic intelligence"—ELINT), or a combination of the two. As sensitive information is often encrypted, signals intelligence often involves the use of cryptanalysis. Also, traffic analysis—the study of who is signaling whom and in what quantity—can often produce valuable information, even when the messages themselves cannot be decrypted."

Snowden also said he believes the NSA has launched more than 61,000 hacking operations around the world, with hundreds focused on Hong Kong and mainland China.

"We hack network backbones -- like huge Internet routers, basically -- that give us access to the communications of hundreds of thousands of computers without having to hack every single one," Snowden told the Post. "Last week the American government happily operated in the shadows with no respect for the consent of the governed, but no longer. Every level of society is demanding accountability and oversight."

The contract Salem municipality would subscribe to use Google's cloud service is not enough, says Information Commissioner. Either the shortcomings of the agreement addressed or municipality must stop using the cloud service.

2011 criticized the Data Inspection Salem municipality for its use of a cloud service from Google. The criticism concerned the lack of agreement meant that it did not comply with the rules of the Data Protection Act. The agreement gave Google too much space to process personal data for their own purposes. Moreover, did not the subcontractors who are involved and what happens to personal data when the contract ends.

Salem Municipality was requested to draw up a new agreement. Data Inspection Board has reviewed the new agreement, noting that the previous shortcomings persist.

- Therefore, we must once again submit to the municipality to either remedy the shortcomings of the agreement or to stop using the cloud service, says Ingela Alverfors, lawyer at the Swedish Data Inspection Board.

Anything that is comms is sigint. Breaking into a system to obtain messages sent over the wire? That's absolutely that.
...
This is, in fact, classic sigint, in that it is the interception of signals and communications as they transfer over the network.

Government agencies and private company security people are supposed to be suspicious, and to assume that capabilities may be utilised and should be assumed to be so. There's a reason esoteric security holes are often discussed with a phrase something along the lines of 'probably only practically exploitable by a nation state adversary'.

U.S. intelligence officials on the trail of rogue contractor Edward Snowden are now treating the National Security Agency leak case as a possible foreign espionage matter, raising fears that the 29-year-old computer whiz may be attempting to defect to China with a trove of America's most sensitive secrets, according to U.S. officials.

Because they have valuable research data, and that would be of interest to third parties. They have a lot of students communicating, and the contents and metadata of that communication would be of interest to third parties.

The FBI has dramatically increased its use of a controversial provision of the Patriot Act to secretly obtain a vast store of business records of U.S. citizens under President Barack Obama, according to recent Justice Department reports to Congress. The bureau filed 212 requests for such data to a national security court last year – a 1,000-percent increase from the number of such requests four years earlier, the reports show.

The bureau filed 212 requests for such data

Microsoft Corp. (MSFT), the world’s largest software company, provides intelligence agencies with information about bugs in its popular software before it publicly releases a fix, according to two people familiar with the process. That information can be used to protect government computers and to access the computers of terrorists or military foes.

The first thing to bear in mind is that employees such as Snowden volunteer to be entrusted with classified information. When they disclose secrets, they are violating the trust that they have asked to be placed in themselves. And they are public employees (even if they happen to be contractors rather than permanent employees).

This means that when they disclose secrets, they are disobeying not only their supervisors, but also the public, whose representatives have enacted laws and regulations relating to the handling of classified information.

Finally, it is not personal secrets that these employees are revealing but state secrets. As such, their actions endanger their fellow citizens when they undermine security operations. In sum, when a government employee makes an unauthorized disclosure he is violating trust, disobeying the law and potentially endangering others. These are points worth absorbing before cheering on leakers and whistle-blowers as "patriots."

This does not mean that an employee can never be justified in making an unauthorized disclosure. An employee could uncover activity so heinous that he feels confident that citizens and overseers would want to know about it so that they could punish the wrongdoers. This could be activity that is obviously criminal or clearly immoral.

An example would be the inhumane practices employed at Abu Ghraib prison...

...to refuse now to submit to the law, to flee overseas, as Snowden has done, is to show contempt for democracy and the rule of law. If an employee believes that he has broken the law for reasons that his fellow citizens will understand, then he ought to be willing to take his chances before a jury (as in the Bradley Manning case).

The South China Morning Post, a local newspaper, reported on Friday that Edward J. Snowden, the contractor, had shared detailed data showing the dates and Internet Protocol addresses of specific computers in mainland China and Hong Kong that the National Security Agency penetrated over the last four years. The data also showed whether the agency was still breaking into these computers, the success rates for hacking and other operational information.
[...]
Kevin Egan, a former prosecutor here who has represented people fighting extradition to the United States, said that Mr. Snowden’s latest disclosures would make it harder for him to fight an expected request by the United States for him to be turned over to American law enforcement. “He’s digging his own grave with a very large spade,” he said.

The foreigner angle is aimed at pacifying the US media and their public. Unfortunately, as an Indian national, who uses Google, Facebook, Apple and Microsoft services and products all the time, this is a poor consolation to me – in fact, these revelations of the last week would unnerve and alarm every single individual who is not a citizen of the US.

Over the years, companies like Google have created an aura that they are true multinational firms. They deal in services that reside on WWW, a world without boundaries, and while they operate under the local laws of each country, they often take the lead in fighting for the privacy of their users, irrespective of where they were located. Or so it appeared.

These are the companies that gave the impression that they often put, or at least try to put, ethical and moral considerations above the absolute legal requirements they may have to follow. They have always maintained that they do the right thing.

[...]

In the wake of last week’s revelations, it is not difficult to get the impression that incidents like the Chinese pullout and the grandstanding over freedom of speech are more of a public relations exercise.

The image that technology companies created has been so strong that we have trusted them with our intimate secrets. Google and Facebook probably know more about us than even our parents or families. We have recorded every moment of our lives and shared them with technology companies through mails, social media updates, photos, videos, and smartphones. We did it because we trusted them. We didn’t believe that just because these companies are headquartered in Silicon Valley, they would share each and every piece of data with the US government (or some other government) —even if they were legally bound to do that through overarching, broad, secretive and unethical laws.

We trusted technology companies to do the “right thing” and not the “legal thing”. We even cheered when they did the right thing, like defying the government of Egypt by standing up for the activists in 2011, in countries that we believed had oppressive governments.

This trust has been the biggest casualty of the leaks over the last week. It reveals that despite “foreigners” making up for more than 80% of their user base, Google, Facebook, Microsoft, Apple and others remain US companies first. When asked to cough up inordinate amount of personal data of their unsuspecting clients, they do not stand up to the US government, the way they do in India or some other country. When facing mass surveillance, they do not pullout of the US.

They only do the “right thing” when they are operating outside the US.

It seems Silicon Valley companies do not respect the rights of the users who are foreigners. They only respect the privacy of the US citizens.

Sens. Mark Udall (D-Colo.) and Ron Wyden (D-Ore.), are pitching a bill that would require a demonstrated link to terrorists or international spies for the intelligence community to collect phone call data.

And Sen. Bernie Sanders (I-Vt.) dropped a bill late Thursday much in harmony with the Udall-Wyden legislation, although it goes further by squashing the assumption that people “known to” suspected spies or terrorists are relevant to data-mining investigations.

Naomi Wolf—the author, Thought Leader, and political consultant/non-consultant—has been following the story of Edward Snowden, and she has decided to share her thoughts on Facebook. Specifically, Wolf wishes to convey her "creeping concern" that Snowden "is not who he purports to be." Who is he, then? Signs point to his being one of them. You know: THEM.

"Such fears were further solidified in a detailed 2010 study by the US Joint Forces Command - designed to inform "joint concept development and experimentation throughout the Department of Defense" - setting out the US military's definitive vision for future trends and potential global threats. Climate change, the study said, would lead to increased risk of:

"... tsunamis, typhoons, hurricanes, tornadoes, earthquakes and other natural catastrophes... Furthermore, if such a catastrophe occurs within the United States itself - particularly when the nation's economy is in a fragile state or where US military bases or key civilian infrastructure are broadly affected - the damage to US security could be considerable." (empasis mine)

This means that when they disclose secrets, they are disobeying not only their supervisors, but also the public, whose representatives have enacted laws and regulations relating to the handling of classified information.

to refuse now to submit to the law, to flee overseas, as Snowden has done, is to show contempt for democracy and the rule of law.

I suspect there are higher ups in the PLA and Chinese government where the name "Chi-Stalinist" might be appropriate. We don't want them to win the struggle for China's future, and what Snowden is doing is not helpful, imo.

Yes, and by demanding they search that data for all the public and private phone numbers of WH and IRS personnel - from a data set that does not include personal information seems to be suggesting that Stockman demand that they break the law, go counter to the FISA order and do what is seemly expressly against the 4th amendment. A scholar he is not.

Microsoft is an American corporation. Expecting it to not help American defense institutions makes little sense.

This is spying. This is what spies do.

Taken to the extreme, that means no network use at all. Which, for the sufficiently paranoid, is the right way to go.

But frankly, of all the claims made (and so far not backed up by any evidence), Snowden's claim to his wide access to data should be what scares us the most.

This means you need to either lock down all computer ports or strictly monitor all devices that can attach to them. No WiFi. No Bluetooth. ... I would have everybody use an in-house version of Unix, compiled in-house on a compiler bootstrapped in-house. ... Surveillance takes place remotely, and surveillance data is not accessible to IT staff.

Everything needs to be hard-wired, locked and alarmed. If a computer need to be worked on then it needs to be taken to a separate facility without network access. [...] Training sessions for everybody so that they understand that screwdrivers are security hazards. Unrecognised wires are security hazards. The only people authorised to attach or detach hardware are IT staff working in pairs.

If what you're doing is something that grates against what they believe their moral fabric is, and they feel there is an obligation to let the public know you simply can't make extraction of data impossible.

You don't have single IT guys plugging things in, and you don't let them plug random things in. In fact you really shouldn't have plugs at all: everything should be wired to a terminal at one end and punched into a locked cabinet at the other.

(Although this specific reporting seems bizarre and perhaps a misunderstanding. No way someone is just going to come out and admit they are doing warrantless domestic taps again, right?)

Look, if you can't see the Bilderberg influence here I just don't know what to tell you. Like it's a coincidence this all broke in concert with their big meeting?

Snowden also said the US was "trying to bully" Hong Kong over his possible surrender, but last night a government source said: "Under no circumstances can the US bully Hong Kong in any way."

The source rejected as "total nonsense" US media reports that Hong Kong and US government lawyers were working together on the Snowden case.

Yes, there are a million stories of "this is worse than you think, but I can't tell you the details". Those are a dime a dozen. Supposedly we have documentary evidence that is now outside the NSA - but has not gotten outside the 4th estate.

1) The Verizon FISA order, clear evidence that the NSA is collecting all phone logs in the US.

2) The PRISM slides, which show that the NSA has direct access to servers of major internet providers. There's been a lot of pushback on this claiming the access isn't "direct" that it requires a warrant, that it's not used very often, etc.

3) Snowden's leak of some documents showing the US has plans to engage in offensive cyber attacks around the world. (This one didn't get much coverage)

4) Finally, the leak to the South China Morning post in Hong Kong, revealing that the NSA has been hacking thousands of targets in China and Hong Kong.

I always assumed the NSA was doing everything described here and much more, probably since WW2 in many agencies.

We have not seen evidence that the NSA is "able to spy on everyone all the time". ... [and also] ... Yes, there are a million stories of "this is worse than you think, but I can't tell you the details". Those are a dime a dozen. Supposedly we have documentary evidence that is now outside the NSA - but has not gotten outside the 4th estate."

I always assumed the NSA was doing everything described here and much more ... The people who stand to lose by all this? Shadow groups and conspiracies such as lobby organizations that corrupt the government process; secret cabals and bribers of all kinds; domestic organized crime; foreign organized crime; the KKK and racist parties; money launderers; tax evaders; foreign government influences; child pornographers; slave traders; and terrorists.

Any group I would belong to would use reason above influence and any communications intercepted with be self-persuasive and would have more to fear from deletion than the light of day

I worry more about losing physical freedom than my abstract privacy through secret mappings, and the next major event on US soil will result in random road blocks and strip searches. That's where we get the locals and their policies in firm control.

Not exactly. You kept misreading what people were saying until(I presume) we all got sick of repeating ourselves. I said that if the NSA were recording all voice calls it could not be kept a secret. ... At the time I didn't know that they were capturing metadata, of course, but I wouldn't have denied the possibility of them doing so secretly.

This is old news of course, but Snowden's assertion that we were spying on China, therefore hypocrisy, was appealing to two types of simpletons: those who think we don't spy, and those who think both sides are the same.

Q: What did you learn from the document — the Verizon warrant issued by the Foreign Intelligence Surveillance Court — that Snowden leaked?

Drake: It's an extraordinary order. I mean, it's the first time we've publicly seen an actual, secret, surveillance-court order. I don't really want to call it "foreign intelligence" (court) anymore, because I think it's just become a surveillance court, OK? And we are all foreigners now. By virtue of that order, every single phone record that Verizon has is turned over each and every day to NSA.

There is no probable cause. There is no indication of any kind of counterterrorism investigation or operation. It's simply: "Give us the data." ...

There's really two other factors here in the order that you could get at. One is that the FBI requesting the data. And two, the order directs Verizon to pass all that data to NSA, not the FBI.

Binney: What it is really saying is the NSA becomes a processing service for the FBI to use to interrogate information directly. ... The implications are that everybody's privacy is violated, and it can retroactively analyze the activity of anybody in the country back almost 12 years.

Now, the other point that is important about that is the serial number of the order: 13-dash-80. That means it's the 80th order of the court in 2013. ... Those orders are issued every quarter, and this is the second quarter, so you have to divide 80 by two and you get 40.

If you make the assumption that all those orders have to deal with companies and the turnover of material by those companies to the government, then there are at least 40 companies involved in that transfer of information. However, if Verizon, which is Order No. 80, and the first quarter got order No. 1 — then there can be as many as 79 companies involved.

So somewhere between 40 and 79 is the number of companies, Internet and telecom companies, that are participating in this data transfer in the NSA.

Lawyers for the agency came up with an interpretation that said the NSA did not “acquire” the communications, a term with formal meaning in surveillance law, until analysts ran searches against it. The NSA could “obtain” metadata in bulk, they argued, without meeting the required standards for acquisition.

Goldsmith and Comey did not buy that argument, and a high-ranking U.S. intelligence official said the NSA does not rely on it today.

As soon as surveillance data “touches us, we’ve got it, whatever verbs you choose to use,” the official said in an interview. “We’re not saying there’s a magic formula that lets us have it without having it.”

When Comey finally ordered a stop to the program, Bush signed an order renewing it anyway. Comey, Goldsmith, FBI Director Robert S. Mueller III and most of the senior Bush appointees in the Justice Department began drafting letters of resignation.

More fundamentally, the "US Persons" protection in general is a distraction from the power and danger of this system. Suspicionless surveillance does not become okay simply because it's only victimizing 95% of the world instead of 100%. Our founders did not write that "We hold these Truths to be self-evident, that all US Persons are created equal."

Do you believe that the treatment of Binney, Drake and others influenced your path? Do you feel the "system works" so to speak? #AskSnowden

Binney, Drake, Kiriakou, and Manning are all examples of how overly-harsh responses to public-interest whistle-blowing only escalate the scale, scope, and skill involved in future disclosures. Citizens with a conscience are not going to ignore wrong-doing simply because they'll be destroyed for it: the conscience forbids it. Instead, these draconian responses simply build better whistleblowers. If the Obama administration responds with an even harsher hand against me, they can be assured that they'll soon find themselves facing an equally harsh public response.

This disclosure provides Obama an opportunity to appeal for a return to sanity, constitutional policy, and the rule of law rather than men. He still has plenty of time to go down in history as the President who looked into the abyss and stepped back, rather than leaping forward into it. I would advise he personally call for a special committee to review these interception programs, repudiate the dangerous "State Secrets" privilege, and, upon preparing to leave office, begin a tradition for all Presidents forthwith to demonstrate their respect for the law by appointing a special investigator to review the policies of their years in office for any wrongdoing. There can be no faith in government if our highest offices are excused from scrutiny - they should be setting the example of transparency.

The Washington Post: "[Snowden] also asked that The Post publish online a cryptographic key that he could use to prove to a foreign embassy that he was the document’s source."

You mean this? The only simpletons would be those who didn't suspect that it might be staged by Chinese intelligence services, Hong Kong being under their actual control and all -- Brian B.

It's absolutely possible that Snowden is ideologically-motivated and plans to defect to China. China may not have had foreknowledge that this goldmine of intelligence would end up on its doorstep.

Further, it's important to bear in mind I'm being called a traitor by men like former Vice President Dick Cheney. This is a man who gave us the warrantless wiretapping scheme as a kind of atrocity warm-up on the way to deceitfully engineering a conflict that has killed over 4,400 and maimed nearly 32,000 Americans, as well as leaving over 100,000 Iraqis dead. Being called a traitor by Dick Cheney is the highest honor you can give an American, and the more panicked talk we hear from people like him, Feinstein, and King, the better off we all are. If they had taught a class on how to be the kind of citizen Dick Cheney worries about, I would have finished high school.

As Edward Snowden has had more opportunity to talk, it's clear that one thing that bothers him about U.S. intelligence conduct is that something perfectly legal is happening—large-scale snooping on foreigners. And many Americans are going to shrug at that. The constitution is here to protect our rights, and spying on foreigners is exactly what the NSA is supposed to be doing.

The stock market valuations of your Googles and your Facebooks are based on the proposition that the potential market for online services is global. ... The idea that American intelligence agencies have more-or-less unrestricted access to foreigners' communications cuts very sharply against that. You may not care about the privacy of German people's emails, German people care and Angela Merkel has to care.

... Democratically elected governments in Europe, Latin America, and Asia are going to be expected to take steps to safeguard their own citizens' privacy vis-a-vis the United States.

Q: There's a question being debated whether Snowden is a hero or a traitor.

Binney: Certainly he performed a really great public service to begin with by exposing these programs and making the government in a sense publicly accountable for what they're doing. At least now they are going to have some kind of open discussion like that.

But now he is starting to talk about things like the government hacking into China and all this kind of thing. He is going a little bit too far. I don't think he had access to that program. But somebody talked to him about it, and so he said, from what I have read, anyway, he said that somebody, a reliable source, told him that the U.S. government is hacking into all these countries. But that's not a public service, and now he is going a little beyond public service.

So he is transitioning from whistle-blower to a traitor.

If you leave your laptop alone in your room for a short time, they will come in and turn it on and empty the hard drive.

In many large corporations if you take your company provided laptop to any one of about a dozen countries IT will collect your laptop when you return and basically toss it in to a wood chipper. In some orgs it's actually a pretty handy way to get your PC refreshed.

To my mind, this is only a short step from 'This country is worth other people dying for', and then he's back where he started.

Citizens with a conscience are not going to ignore wrong-doing simply because they'll be destroyed for it: the conscience forbids it. Instead, these draconian responses simply build better whistleblowers.

Anyone who focuses on making and repeating this speculation is directly taking up space in a fact-based discussion that the public could instead be having about the NSA, its role in illegal surveillance, and lack of culpability for officials openly lying to Congress. All the way to the mainstream press regurgitating such a speculative talking point, for instance.

Snowden doesn't need to be a heroic whistleblower in order to establish that the NSA overreached or violated the 4th Amendment.

Orwell wept.

As for "truecrypt" and the like, I don't think it really matters when you are talking about the intelligence services of China. -- Ironmouth

They scarcely care if their intrusion of your laptop is noticed, especially if you're Edward Snowden and you don't have rights to the information on there ... they have access to the laptop when he's out of the room or asleep. They let themselves in with a key. So it would be a hardware exploit, yes. -- Ironmouth

Not to mention the thumbdrive. -- Ironmouth

Dwight Schrute, security expert, beet farmer, nemesis. -- iamabot

I have a question. If a laptop is made in China, could it have a backdoor for the Chinese government?

More likely intel put a secret keylogger in and sold secret access to both China and the US. It also sold the patch that disables it for secure computing.

"Encryption works. Properly implemented strong crypto systems are one of the few things that you can rely on. Unfortunately, endpoint security is so terrifically weak that NSA can frequently find ways around it." This isn't a response given by someone who is unaware of the precautions necessary to safely store data.

I think it's hard enough to hide something like that from the type of person who is as comfortable at a debugger prompt as they are in front of an oscilloscope that even if Intel tried to comply with a secret order to backdoor their hardware, they'd run a serious risk of getting caught by people who would love to tell the world every detail about it

Back doors don't need to be very obvious; it's enough if they are exploitable. Here's one I just came up with: keystrokes write to a circular buffer. ... Easy-peasy. But let's say that your buffer size is 64K instead of 16 bytes.

"All I can say right now is the US government is not going to be able to cover this up by jailing or ­murdering me. Truth is coming, and it cannot be stopped."

My guess from his comments today is that he already has a dead-man's switch set up somewhere

The FBI, according to Eli Lake, thinks someone besides Edward Snowden may be responsible for leaking the Section 215 order to Verizon ordering them to turn over the metadata on all their American customers’ calls. They claim to think so because digital copies of such orders exist in only two places: computers at the FISA Court and FBI’s National Security Division that are segregated from the Internet. (Note: where Lake says “warrant” in this passage, he means “order.”)

...The officials say phone companies like Verizon are not allowed to store a digital copy of the warrant, and that the documents are not accessible on most NSA internal classified computer networks or on the Joint Worldwide Intelligence Communications System, the top-secret internet used by the U.S. intelligence community.

The warrants reside on two computer systems affiliated with the Foreign Intelligence Surveillance Court and the National Security Division of the Department of Justice. Both systems are physically separated from other government-wide computer networks and employ sophisticated encryption technology, the officials said. Even lawmakers and staff lawyers on the House and Senate intelligence committees can only view the warrants in the presence of Justice Department attorneys, and are prohibited from taking notes on the documents.

www.schneier.com uses an invalid security certificate.

The certificate expired on 6/18/13 6:55 AM. The current time is 6/18/13 4:03 PM.

Alexander said during the hearing that while Snowden worked as a system administrator he had access to the portals used to acquire various kinds of surveillance data, but he had no authority or ability to actually initiate surveillance or collect such data.

"What you get access to is helping to run the network and the web service that are on that network that are publicly available," the NSA chief said—apparently using the term "public" to mean widely available to NSA employees and contractors. "To get to any data like the business records [call-tracking data] that we're talking about, that's in an exceptionally controlled area. You would have to have specific certificates to get into that. I am not aware that he had, he, Snowden, had any access to that."

Snowden is starting to talk funny.

UPDATE (Tuesday, 4:33 P.M.): This post has been updated to remove a reference to Snowden having access to the Verizon order during training at NSA Headquarters. Alexander said the training was at the Threat Operations Center, which is located in Hawaii.

UPDATE 2 (Tuesday, 4:44 P.M.): This post has been updated to note that NSA declined to clarify Alexander's remarks on Snowden's access.

The guy doesn't even know the Fourth Amendment doesn't apply to non-US persons overseas, so I'd be amazed if he really thought this one out that much. Taking the hardware to China seems like the dumbest possible move.

They went after--and I know this because I had my hands literally on the paperwork for these sort of things--they went after high-ranking military officers; they went after members of Congress, both Senate and the House, especially on the intelligence committees and on the armed services committees and some of the--and judicial. But they went after other ones, too. They went after lawyers and law firms. All kinds of--heaps of lawyers and law firms. They went after judges. One of the judges is now sitting on the Supreme Court that I had his wiretap information in my hand. Two are former FISA court judges. They went after State Department officials. They went after people in the executive service that were part of the White House--their own people. They went after antiwar groups. They went after U.S. international--U.S. companies that that do international business, you know, business around the world. They went after U.S. banking firms and financial firms that do international business. They went after NGOs that--like the Red Cross, people like that that go overseas and do humanitarian work. They went after a few antiwar civil rights groups.
...
ow here’s the big one. I haven’t given you any names. This was is summer of 2004. One of the papers that I held in my hand was to wiretap a bunch of numbers associated with, with a 40-something-year-old wannabe senator from Illinois. You wouldn’t happen to know where that guy lives right now, would you? It’s a big white house in Washington, DC. That’s who they went after. And that’s the president of the United States now.

Russ Tice is a former employee of DIA and NSA who reported in 2001 that a coworker might be a Chinese spy. After Tice pressed his concerns, NSA declared him mentally unbalanced, reassigned him to clean cars in the motor pool, and eventually revoked his security clearance. He was fired last year [in 2005].

They offer a glimpse of a rule-bound intelligence bureaucracy that is highly sensitive to the distinction between foreigners and “U.S. persons,” which technically include not only American citizens and legal residents but American companies and nonprofit organizations as well. The two sets of rules, each nine pages long, belie the image of a rogue intelligence agency recklessly violating Americans’ privacy.

However, alongside those provisions, the Fisa court-approved policies allow the NSA to:

• Keep data that could potentially contain details of US persons for up to five years;

• Retain and make use of "inadvertently acquired" domestic communications if they contain usable intelligence, information on criminal activity, threat of harm to people or property, are encrypted, or are believed to contain any information relevant to cybersecurity;

• Preserve "foreign intelligence information" contained within attorney-client communications;

• Access the content of communications gathered from "U.S. based machine[s]" or phone numbers in order to establish if targets are located in the US, for the purposes of ceasing further surveillance.