Feeds

Telcos wish to deny mass snooping

'Compassionate totalitarianism' proves tricky for the private sector

  • alert
  • submit to reddit

High performance access to file storage

BellSouth has demanded that USA Today must retract its story fingering the telco in the Bush Administration's mass domestic dragnet of phone records.

"BellSouth insists that your newspaper retract the false and unsubstantiated statements you have made regarding our company," the company demanded in a letter to USA Today president Craig Moon.

Previously, following last week's USA Today exposé, BellSouth had issued a statement claiming that it does not have a contract to supply the NSA with call records.

"Based on our review to date, we have confirmed no such contract exists, and we have not provided bulk customer calling records to the NSA," the statement said.

Notice that the statement did not say BellSouth had not supplied any call records to the NSA. If it had, perhaps the retraction would already be in print.

But the statement is crafted to be letter-of-the-law accurate, even if there should be an informal agreement rather than a contract, or if something other than "bulk customer calling records" have been handed over, such as "pretty big piles of customer calling records". It could also mean that a BellSouth billing contractor or other partner has supplied the information.

Meanwhile, Verizon has said that it "does not provide any government agency unfettered access to our customer records or provide information to the government under circumstances that would allow a fishing expedition".

Another nice bit of Legalese. This could mean that almost anything is going on. Not providing "unfettered access" might mean that Verizon simply delivers the records to NSA, rather than letting them set up camp on its premises, as AT&T has been accused of doing. Also, as with the BellSouth statement, the wording leaves open the possibility that a contractor is delivering the data.

And as for not allowing a "fishing expedition", one suspects this means absolutely nothing, but the lawyers thought it had a reassuring sound and decided to include it.

Since the NSA is supposedly using only bulk call data indicating patterns - that is, which nameless phone numbers are calling and receiving calls from each other - Verizon could give the agency everything it's seeking, and this would not constitute a "fishing expedition". It would be up to the NSA to plumb other databases to attach names and addresses to the numbers, and then conduct an actual fishing expedition. So don't blame Verizon if that should happen; they've got nothing to do with it.

Furthermore, both companies have said they "cannot confirm or deny" that they've got a relationship with the NSA. Now, trust a journo on this one: in the commercial world, and in the political world, whenever a flack can deny something that might be bad for trade, share values, or winning the election, they always deny it. "I cannot confirm or deny" always means, "I cannot deny". There are no exceptions to this rule outside the realm of legal constraints against commenting in any way (gag orders, etc).

Thus, if BellSouth and Verizon "cannot confirm or deny" NSA snooping in the literal sense of, "we're legally constrained from commenting", then bingo, they've got a relationship with the NSA. If they had no relationship, there would be no constraint, and they would deny the allegations as loudly as possible, as Qwest has done.

When they do that, they'll get their retractions.

SANS - Survey on application security programs

Next page: Related stories

More from The Register

next story
Dropbox defends fantastically badly timed Condoleezza Rice appointment
'Nothing is going to change with Dr. Rice's appointment,' file sharer promises
Audio fans, prepare yourself for the Second Coming ... of Blu-ray
High Fidelity Pure Audio – is this what your ears have been waiting for?
Record labels sue Pandora over vintage song royalties
Companies want payout on recordings made before 1972
MtGox chief Karpelès refuses to come to US for g-men's grilling
Bitcoin baron says he needs another lawyer for FinCEN chat
Number crunching suggests Yahoo! US is worth less than nothing
China and Japan holdings worth more than entire company
Zucker punched: Google gobbles Facebook-wooed Titan Aerospace
Up, up and away in my beautiful balloon flying broadband-bot
Apple DOMINATES the Valley, rakes in more profit than Google, HP, Intel, Cisco COMBINED
Cook & Co. also pay more taxes than those four worthies PLUS eBay and Oracle
prev story

Whitepapers

SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.