Feeds

Senate approves FISA makeover and telco wiretap immunity

Oink, oink my black ops sweetheart

SANS - Survey on application security programs

The Senate today passed the revised Foreign Intelligence Surveillance Act (FISA), offering blanket immunity to the telecoms giants for whatever spying activities they conspired in, smothering ongoing litigation against the companies and for all intents and purposes burying forever whatever unconstitutional surveillance activities the Cheney administration embraced.

The bill, in fact, expands authority for unsupervised domestic surveillance while offering somewhat expanded protection for Americans living abroad. The oversight role of the FISA court itself is diminished, inasmuch as the bill requires markedly less specificity for obtaining a FISA surveillance warrant than is currently required.

Although the new bill does not quite permit blanket wiretaps, it does give authority to the Director of National Intelligence or the Attorney General to authorize surveillance on individuals or those connected to them without designating exactly what they're hunting. The court merely signs off on this type of surveillance in a kind of procedural flourish – as long as sufficient "minimization" procedures are in place to avoid accidental surveillance of Americans. You can expect the National Security Agency (NSA) or the Department of Justice (DOJ) to push the envelope.

In essence, the new bill appears to authorize the kind of algorithmic data filtering systems in place at the notorious NSA "clean" room in San Francisco, provided the system in question is "reasonably designed" to avoid hoovering up too much unnecessary information about those not targeted by a warrant.

The vote is a nearly complete capitulation on the part of congressional Democrats on the warrantless surveillance controversy – an act of political expediency made all the more feeble by a related District Court ruling last week in the closely related and historically significant case of Al-Haramain v. Bush, which had in fact strengthened the existing statute. Although the case should have provided cover for the vote, clearly it did not.

State secrets and the case of Al-Haramain v. Bush

The unusual case has a tangled and politically charged history. Al-Haramain was an Islamic charity accused by the Department of Justice (DOJ) of financing terrorism. The DOJ, operating in conjunction with the Office of Foreign Assets Control (OFAC), seized the charity's assets. In subsequent litigation, however, OFAC mistakenly sent to the charity's attorneys copies of a document pertaining to warrantless surveillance of conversations between the charity and its attorneys – the so-called "Sealed Document".

The attorneys returned the classified document, but then asserted that their personal recollections as to the nature of the document were themselves sufficient to assert that they had been victims of warrantless surveillance (under American law, a plaintiff must assert an actual injury - courts don't address hypothetical wrongs) and proceeded with the lawsuit under a subsection of FISA that provides for civil penalties for victims of violations of the statute.

The government quickly moved to dismiss the case by claiming that the plaintiffs could not proceed under the statute without revealing the state secrets contained in the document. The Ninth Circuit Court of Appeals agreed that the "state secrets" doctrine covered the sealed document, and that if so, the doctrine also covered the attorneys' personal recollections of it. The plaintiffs were thus rather oddly – absent the kind of laws that cover spies and the like - prevented from testifying in court on their own behalf, based on their own memory.

However, the Ninth circuit did not rule on whether or not the state secrets doctrine completely preempted the suit under FISA or whether the president had inherent authority to conduct warrantless surveillance as commander-in-chief or under war authority granted by Congress, and sent the case back to the District Court, which ruled that FISA was the exclusive source of presidential authority for warrantless surveillance.

In one respect, the District Court ruling vindicated the plaintiff's case by clearly stating that the FISA preempts the state secrets privilege to the extent that the statute and the doctrine overlap. The order also severely limited the president's surveillance authority by strongly delineating electronic surveillance authority as exclusively derived from the statute itself, rather than from the authorization for military force that underlies the so-called war on terror or the President's constitutional powers as commander-in-chief.

High performance access to file storage

More from The Register

next story
Android engineer: We DIDN'T copy Apple OR follow Samsung's orders
Veep testifies for Samsung during Apple patent trial
MtGox chief Karpelès refuses to come to US for g-men's grilling
Bitcoin baron says he needs another lawyer for FinCEN chat
Did a date calculation bug just cost hard-up Co-op Bank £110m?
And just when Brit banking org needs £400m to stay afloat
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Don't let no-hire pact suit witnesses call Steve Jobs a bullyboy, plead Apple and Google
'Irrelevant' character evidence should be excluded – lawyers
EFF: Feds plan to put 52 MILLION FACES into recognition database
System would identify faces as part of biometrics collection
Ex-Tony Blair adviser is new top boss at UK spy-hive GCHQ
Robert Hannigan to replace Sir Iain Lobban in the autumn
Alphadex fires back at British Gas with overcharging allegation
Brit colo outfit says it paid for 347KVA, has been charged for 1940KVA
Jack the RIPA: Blighty cops ignore law, retain innocents' comms data
Prime minister: Nothing to see here, go about your business
Banks slap Olympus with £160 MEEELLION lawsuit
Scandal hit camera maker just can't shake off its past
prev story

Whitepapers

Designing a defence for mobile apps
In this whitepaper learn the various considerations for defending mobile applications; from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.