How long before corporations realize that competitors have access to their sensitive call contents? All it would take is to plant or pay off an analyst with an NSA contractor and–voila–your competitors’ legal and patent strategies can all be overheard.
Want to know what your competitor knows in a lawsuit? Just ask your analyst to provide contents of calls between the competitor’s management and its lawyers.
Only when the deep pocketed begin to realize that this snooping affects them will there be enough pressure to make Obama and his handlers in the NSA take stock.

Posted by: JohnH | Jul 28 2013 18:39 utc | 3

I would not at all be surprised if the lack of internal capabilities (eg searching internal emails) is intentional, or more accurately, there is more incentive to make access to the records of their process laborious or impossible. It certainly slows down/impedes public information requests. Or perhaps the system they do have to search it is subpar.

Posted by: Jessica S | Jul 28 2013 18:47 utc | 5

Reminds me of a snippet posted by b this week where NSA officials claimed they “didn’t believe” Snowden tapped into the most sensitive NSA info. If they didn’t believe, they either were lying or didn’t know.
All of this is exactly why no such secrecy/massive info should exist. Trust nobody, nowhere near this much.

Posted by: Eureka Springs | Jul 28 2013 19:20 utc | 7

An essential part of understanding any government program is to understand the psychological grounding of the people involved, particularly when they are long-term, West Point-educated professional military officers like Lieutenant General Keith Alexander. These people have been regularly promoted through the system to high positions because they “get it.” They never question the system and always do what they’re told, while being experts at kissing up to their superiors. That last element is crucial.
Generally speaking, these are people who:
–believe that they have the training, the motivation and the opportunity to do what they believe is best for the country.
–having no experience in the private sector, their beliefs about what’s best for the country are narrow and parochial, and oriented toward a strong government protecting helpless citizens whether they like it or not.
–doing what’s best for the country might produce casualties of one form or another — it’s okay
–doing the right thing can only be done in secret, so nobody can mess with it. So classify everything, even if it’s “for official use only.”
–these people mutually support each other — they all think alike.
So it helps to understand where these people are coming from. (I’ve been there, done that.)

Posted by: Don Bacon | Jul 28 2013 20:37 utc | 9

If the implicated phones are mobiles additional information about the phone type and serial as well as location changes during the call may be included.
Yup – ” In fact, in a dataset where the location of an individual is specified hourly, and with a spatial resolution equal to that given by the carrier’s antennas, four spatio-temporal points are enough to uniquely identify 95% of the individuals. ”
More here – http://radamisto.blogspot.com/2013/06/i-dont-see-how-we-can-prevent-this.html

Posted by: Steve J. | Jul 29 2013 0:01 utc | 11

b
To avoid misinterpretation: I’m by no means “picking” on you, quite the contrary, it’s a compliment (and one that should be told openly).
Actually I perceive you as a man with lots of experience, not at last in reconnaisance. No matter how foggy the grounds and with red herrings around, you usually don’t miss to reach a good understanding of the situation.
Sure enough, this is one of the reasons why many come and stay here.
That said, I sometimes see points where I feel I’d like some more details or point where I feel something escaped your view or plain and simple where my personal and professional experience puts me in a good position to carve out some issue somewhat more.
Do not take that as “picking on you”, please, but rather as a compliment, as a situation where you’ve prepared fertile grounds and someone else takes on 😉
—

It uses optical splitters that leave the original line working as before but copy the raw datastream onto an NSA line and feed it to some NSA datacenter where all will be recorded.

Actually I think this “revelation” is politically motivated bullsh*t.
The line (the transmission line, cable) is the unknown, the one part outside the controlled environment of a data center. Accordingly (and for other reasons) the line is the one part that actually is the paranoically observed. Sure, it’s feasible to install optical splitters somewhere but it’s also an operation that is guaranteed to be discovered and to trigger alerts.
Let’s look at the issue with a spies eyes: You can do it openly that is, with the carriers knowledge, you can do it half covertly or you can do it fully covertly.
The line splitter approach basically comes down to an open or, at most, half covert approach. Inserting that line splitter can’t be done really covertly; those stories are, Pardon me, fairy tales.
And why go to that length? All one needs to do (being a government) is to demand certain equipment that, be it overtly or covertly, already has everything needed built in. Being at that, one wouldn’t take the burden of grabbing data at the optical end, one would simply grab them at the electronic end which btw. typically has (for technical reasons) “mirror” capability built in anyway.
But there is another problem: If one really mirrored all data one would need the same capacity as the original cable. The problem is that, for instance, the combined capacity uk-zusa cross atlantic capacity is in the terrabits range – and lots and lots within that is more or less useless content (like video streams).
So, for both technical and tactical reasons one would – and almost certainly does – use another approach which is to preprocess data on location and to send “home” (to nsa) only those preprocessed data with maybe 1%-3% of the original bandwith (which is way better feasible).
But the problems go on. With each and every major international fiber ever layed they chose the – then – max available bandwith. For a simple reason. It’s not the cable that is expensive but the laying.
Now one should remember what the limiting factor actually was, at least with fiber cables: it wasn’t the cable, it was the electronics of the endpoint equipment. How much limiting was it? Well, it was difficult and demanding enough that even the best special processors (like network processors) were not good enough; they had to build special circuits (“ASIC”).
And all that just to – “stupidly” – transfer the packets. Those packets were preprocessed and only had to be “packed” and put into the optical stream. *Any* further processing, no matter how minimal, would effectively cut down the bandwith severely.
So how does the nsa do it, what’s the only sensible, feasible and manageable was to do it?
It’s to have “preprocessors” that are specifically built (using ASICS again) and that do the job highly parallel (what a surprise! That happens to also be the was encrypted content is cracked). Those boxes first evaluate and then strip diverse protocoll layers (SONET/SDH, ATM, etc.), then they analyse the TCP/IP or phone headers, grab the metadata and decide whether the content is also grabbed … then they repackage the whole stuff and finally send it over their own virtual channel/fiber.
What does this come down to?
– The carriers and governments in Europe and elsewhere *do* know. With rare exceptions where nsa really has to do it clandestinely, quite probably in less than 1% of all traffic, this all happens with the full knowledge of both carriers/providers and governments.
– Contents can be grabbed but usually are not. Grabbing the meta data only is not a political choice, it’s a technical precondition; grabbing all data simply isn’t feasible but in exceptional cases.
– The whole thing (almost certainly) works like 1 system and it has 3 layers.
The lowest layer is on location and does data mirroring (“grabbing”) and very basic preprocessing and then sends the data to layer 2.
Layer 2 is regional centers with at least 1 per geo region and probably more. Here the preprocessed data is processed, probably mainly for triggers on a rather general and “generous” level, sorting out irrelevant data, and quite probably transposing headers into an internal format. An example for this might be a zusa base near, say, Manila (DeCIX). Also level 2 stations are probably manned 24/7 but only on a small scale.
The highest layer is layer 3. Those are the like of ne new nsa data center or menwith hill in uk. Here on layer 3 they have mid and long term storage, full analysis and more generally what one might call the “spplication” layer. At the same time those centers are the contact points for other agencies and it is here where requess, triggers and the like are fed into the system, and being propagated into layer 2 stations who again control layer 3 points.
Sorry for this lengthy post but I felt that it’s about time someone looked at that question and tried to at least lay it out and roughly sketch the mechanism at work.
While I, of course, do not know any details, I have high confidence in my assessment of the sceleton because I happen to know the relevant technology quite well and, more importantly, its limits.

Posted by: Mr. Pragma | Jul 29 2013 0:58 utc | 13

The NSA claims that it can not search its own emails. I actually believe that to be somewhat true. The NSA task is to spy on others not on itself.
This is the most deliciously unsurprising NSA snooping revelation of all, so far. Anyone who hasn’t realised what utterly incompetent self-deceivers the Yankees are hasn’t been comparing the wishful thinking to the long-term outcomes.

Posted by: Hoarsewhisperer | Jul 29 2013 3:10 utc | 15

@JohnH re: drugs – I couldn’t agree more. It is hard to see how – in this day and age of surveillance and high technology and government largess – anyone could move that amount of goods and money completely undetected were the government serious about stopping it.
Of course the CIA has long been involved, and now we see the big banks paying “fines” for their laundering activities (of which I’ve read they net full HALF of the proceeds of such transactions). Clearly the government, by taking fines of less than what the profits amounted to, are just recouping part of their share.
And now we learn they’ve been tracking the most violent Mexican king pin – certainly responsible for many thousands of deaths and god knows how many hundreds of tons of product he moved over that time – for years without making an arrest. Absurd.

Posted by: guest77 | Jul 29 2013 3:33 utc | 17

Guest77 @17: tracking Mexico’s most violent drug kingpin for years…guess he was with us before he was against us…like Saddam, Torrijos and countless others. It would be interested to know who Omar Torrijos and Miguel Angel Treviño crossed.

Posted by: JohnH | Jul 29 2013 4:01 utc | 19

Tom Burghardt as usual following all the popular tech mags very closely:
http://antifascist-calling.blogspot.co.uk/2013/07/big-data-dynamo-how-giant-tech-firms.html

Posted by: Rowan Berkeley | Jul 29 2013 7:30 utc | 21

@22
I’m not entirely sure he’s been taken out of circulation. To see him strolling with no handcuffs and without a real presentation like every other thug gets from the Mexican Navy… perhaps he’s still running the show for the time being.

Posted by: guest77 | Jul 29 2013 10:40 utc | 23

Trouble for Merkel?
news report:

German public opinion is scandalized over recent revelations in National Security Agency documents leaked to the media by Edward Snowden, the former NSA analyst who fled to Russia. According to the allegedly top secret NSA documents, German intelligence services under Chancellor Angela Merkel collaborated with the NSA to perform massive data mining on ordinary German citizens. Amid charges of gross negligence or willful betrayal of Germany, Merkel, who has been a reliable ally of the United States, faces worsening prospects to remain head of the ruling center-right Christian Democrats and chancellor in the general elections on Sept. 22.

Posted by: Don Bacon | Jul 29 2013 14:26 utc | 25

how come ,ok,how come there are no street protests,no marches to the statue of whatchamacallit.where is the outrage mr American citizen,take your ear phones off,unplug your little worm from the machine and do something to protest -how about this week,first sunday of august we all take a shoe and throw it at the guy in charge of the nsa machine.

Posted by: jub | Jul 29 2013 22:00 utc | 27

@ #28
How can anyone prove that information could or could not be beneficial to an adversary? So I can understand the judge’s ruling.
Which is another way of saying that information doesn’t take sides, and so all information should be free and accessible.

Posted by: Don Bacon | Jul 30 2013 1:13 utc | 29

No-one is talking about the other whistle-blower… Manning Verdict May Topple Journalistic Paradigm. Posted by: Uncle $cam | Jul 29, 2013 9:03:41 PM | 28

That’s not true. People who think Snowden is phony have created a meme whereby Snowden is an attempt to distract attention from Manning, and is succeeding in this. You can do story counts in the MSM if you want, but we aren’t the MSM, and we’re perfectly capable of keeping track of Snowden and Manning simultaneously. An interesting story about how the Manning indictment has actually been altered retrospectively by Military Judge Denise Lind, here

Posted by: Rowan Berkeley | Jul 30 2013 6:53 utc | 31

Yeah, I saw that too. I have two Lenovo machines, and the last of my worries is that the PRC will hack into them.

Posted by: Rowan Berkeley | Jul 30 2013 13:23 utc | 33

Posted by: Hoarsewhisperer | Jul 28, 2013 11:52:26 PM | 18
yes unlike the americans
life of brian
http://www.youtube.com/watch?v=ExWfh6sGyso

Posted by: brian | Jul 30 2013 16:44 utc | 35

The ongoing E NSA spying scandal is truly fascinating. The situation obviously shows the unbelievable issues the US has regarding privacy.But it’s not only our president. Even private Americans are now snooping on each other. Without knowing any thing about you; non-techies,Marsha,your nextdoor neighbor,Sammy can use web based resources like IntelliGator and learn your criminal records, address, employment history…etc. And exactly like the NSA – it’s 100% legal.Shady but nonetheless legal.
This must change. In the digital era, there’s too much info out there. And govt cyber-terrorist are getting more innovative every day. When will it end?
The US Government domestic spying story is really troubling. But seriously — what did you expect. First off The movie industry has already prepared Americans for this type of spying. We all applaud as the movie police breaks into telephone records to catch the “bad” guys. And despite not having a warrant, we have no trouble with it. But we act surprised when we learn the same technology exists and is being used on us.
What’s more – You don’t have to be a big government to spy. Businesses monitor us all the time. Anyone with a internet connection can look into your history from Google background searches. On-line spying tools are making traditional private detectives redundant.
It’s all too legal – and all very frightful.

Posted by: Tanmoy Misra | Jul 30 2013 17:12 utc | 37

Ron Wyden: Intel violations ‘troubling’

Sen. Ron Wyden said Tuesday that U.S. intelligence agencies’ violations of court orders on surveillance of Americans is worse than the government is letting on.
…
“We had a big development last Friday when Gen. [James] Clapper, the head of the intelligence agencies, admitted that the community had violated these court orders on phone record collection, and I’ll tell your viewers that those violations are significantly more troubling than the government has stated,” Wyden said.

Posted by: b | Jul 30 2013 20:07 utc | 39

b (38) & Philippe (40)
Let’s play a bit (haha) with numbers:
While it’s not reasonably feasible to know the real with any reasonable level of precision, one can make an educated guess with a strong tendency toward the low end and say that the combined capacity currently used is well above 20Tb.
In other words, the amount of data transferred is >= 2TB (that is 2.000 GigaByte) every second. This just nicely matches currently higher end disks.
That’s 86.400 of those disk per day or, using high density disk storage systems or around 200 data center racks full of disks or, in terms of densely packed data center space 180 m² net.
According to the information available the new nsa datacenter in utah will provide ca. 100.000 ft² ~ 9.300 m² space (for the datacenter. There is lots mre for administration et al.) or ca. 51 days worth of global data.
However, sure enough this data center will not hold data storage only, so it gets closer to 1 month worth of global data. This calculation happens to roughly match the available information of “some exabytes of data”.
But this data must also be evaluated, analysed and processed to have any intelligence value. Doing that with ca. 170 PB (Petabytes ~ 1.000.000 Gigabytes) that currently no known system is capable of doing even on a rather low level.
At the same time this approach would transport data of which in between 70% and 90% are completely worthless (movies, music, google content (not requests!) etc.)
Sure, assuming nsa has an unlimited budget (which I doubt) they could just lay new cables (yes cable*s*, plural, because one would, of course, lay 2 cables with a solid geographical distance) across the globe for quite some billions of dollars. But why would they do that? Just to stubbornly transmit every bit available although by far most of that would be worthless junk? That wouldn’t solve any problem for them but it would cost huge money and, possibly more importantly, time without gaining anything relevant.
So I don’t see that happen.
Any not completely nonsensical approach would filter the data at least somewhat on location and then send the part that is not definitely irrelevant data to nsa. This not only would very considerably decrease the vital bandwidth needed for nsa but it would also allow to store way more relevant data and to process them.
Looking at the numbers involved, at sound technical proceedings and at the reality on ground I’m quite confident that my understanding is not too far from what is actually happening and how.
And yes, I know about the Jimmy Carter (USS 23 if I’m not mistaken) but I also know physics, optical transmission and that pretty everyone takes the optical splice as rumour. What is *known* is that zusa actually did eavesdrop on Sowjet military cables, copper cables, that is.
But no matter, whether they could so it, the question is “why would they”? From what we know, most carriers happily co-operate since years and have no qualms about it. So, why we assume that nsa takes extremely costly and complex maneuvers upon them to get what they could get cheaply and comfortably within a well established framework of willing and cooperating carriers at the landing points? And, just btw, in order to be useful that optical splitter also needed to be connected to a new fiber cable laid by the Jimmy Carter submarine which again would need to be landed anyway.
Philipe is right, there are many, probably well founded, rumours about backdoors in core routers and other backbone equipment. This, however, is on a rather different level (technically) and therefore somewhat less useful (for the purpose of what nsa wants).
I think btw. that the “Huawei – they have mined our infrastructure with backdoors!” cajole is based not only on – almost certainly well founded – zusa fear but also imo pro-actively blown up as precaution because, you bet on it that nsa has done exactly that themselves. Let me put it this way: If I had sensible data to transmit I wouldn’t use cisco equipment (or nortel or …). This is no fun; I actually did use different algorithms on different architectures for really sensible data.
But this opens another can of worms, namely the question how one might protect onself or a client on a professional level from cia, nsa and the like. So I’ll rest my case for the moment.

Posted by: Mr. Pragma | Jul 31 2013 1:15 utc | 41

Anecdotes.
CH > Since about 5 years exists a National Data Base that collects all prescription meds. orders, the pharmacy employee told me. When asked who could consult it, she answered, well, the .. your doctor, and anyone in the pharmacy, as we are here to serve you!
Nothing was ever said about it in the press or afaik on TV and ppl aren’t aware it. I asked about 20 ppl, they only appreciated that their pharmacy knew what they needed and ordered the meds in time and communicated with their health insurance and so on, easier billing, paperwork, etc. Basically, these records are semi – public as anyone who is curious and determined can access them easily ..and that is your med history laid out right there.
From a public health pov (or a corporate drug co. pov) this information is prime. You can track over-subscribers, count the cost of X antibiotic and think about replacing it with generic ABC, calculate how much the insurance is paying for junk meds (which ones to ban), and so on. Potentially, it may lower the cost of health insurance, improve prescription practices, even patient compliance, etc. Good stuff ? Implemented without any public discussion whatsoever.
It is information creep.
US > A huge number of divorces are based on or due to evidence of infidelity (incl. what is called ‘emotional cheating’, just intimacy…) garnered from Facebook, emails, phone records, sms, either accessed by accident or found by ‘snooping‘ which is often considered legit if one has ‘doubts, suspicions..’ What used to be face-to-face flirting (or more), easily hidden, washed over, or denied, evanescent as to precise details, and immaterial, or successfully held secret, is now stark in black and some pastel color. Men track their women (phone records, GPS data, etc.), women look to see passwords typed in and access phone, chat logs, other, to discover He said — Hun I love Your Xx — to some cheap chick… Ka-Boom! Family destroyed, toddlers wailing.
CH > Was member of the board of a large U library when the point was reached that all books borrowed in public U libraries in the country could be tracked. Now, libraries are very concerned with privacy but in CH nobody would dream of using book-reading as ‘evidence’ for ‘terrorism/other’ so that was never a concern, not even an unspoken one. These libraries are desperate about book theft and book defacement. One can easily imagine what could have been done….but it wasn’t. Chinese walls were set up, the info was hyper protected, the higher level agreed – yet the info would potentially have served to catch criminals, reduce losses to libraries which equals more text books for students etc. So from the outside it was a hard call. and probably a rare ex. of self-denying privacy protection…. This is an example of, where to draw the line?
(I am totally against NSA spying and am not justifying or excusing it in any way, nor making light, just describing…)

Posted by: Noirette | Jul 31 2013 13:11 utc | 43

I’ve made a pdf of the 32-page Guardian presentation of X-Keyscore:
http://niqnaq.files.wordpress.com/2013/07/x-keyscore.pdf

Posted by: Rowan Berkeley | Jul 31 2013 14:45 utc | 45

It looks as if I was pretty close to the reality. According to now published material, there are around 150 “points” around the world where nsa gathers and – at least to a degree – processes grabbed data.
What they (in the general press) called “points” is what I called “level 2” that is, (not large) intermediate stations where regionally grabbed data are concentrated, processed (on a low level) and raw-filtered before being sent to the main nsa centers (e.g. europe -> uk spycenter).

Posted by: Mr. Pragma | Jul 31 2013 21:47 utc | 47