Feeds

Snowden: You can't trust SPOOKS with your DATA

Well you should know, Edward

Seven Steps to Software Security

Video: The US has the most to lose from mass snooping

When the bulk of the population is using proper encryption, the mass surveillance of law-abiding folk by intelligence agencies around the world will be severely curtailed, Snowden said. The US had to take a lead in this because it sets the standard for the rest of the world and because it has the most to lose, politically and commercially.

Snowden accused two former heads of the NSA, in power during the days after the September 11, 2001, of dropping the ball and focusing the agency too strongly on attacking intelligence sources rather than sticking to the original role of defending US networks.

"When you are the one country in the world that's sort of a vault, that's more full than anyone else's, it doesn’t make any sense for you to be attacking all day and never defending your home vault," Snowden said. "It makes even less sense that the standards for securing vaults worldwide should have a big back door that anybody can walk in through."

The knock-on effects of the NSA's activities also mean US companies are getting hurt, Snowden said. Almost all of Earth's data runs through US networks or software at some point, and if people around the world don't have confidence in the privacy of communications enabled by US firms then they will vote with their feet.

Snowden said he had no problem with commercial companies collecting personal data, since they had to publish legally enforceable terms and conditions on its use. But the US government is not controlled by any such sanction, and for that reason it has to be reined in.

Today's mass surveillance programs don’t even work: Snowden claimed two government reports have shown that the NSA's data collection system has only found one dodgy transaction – a $8,500 donation to Somalia from a US taxi driver.

All the data slurping in the world didn’t single out and flag up the alleged leader of the Boston bombers, despite Russian intelligence warning the US about him, and it also failed to pick up Umar Farouk Abdulmutallab (a man now forever doomed to bear the sobriquet "the failed underpants bomber") despite a warning to the CIA by the chap's own father.

Channel community shares the blame

Another big part of the problem is that the NSA isn't doing much of this stuff itself, Snowden said. The agency maintains a core staff but outsources to contractors who tout huge, costly surveillance systems to the agency.

This gives the contractors enormous influence within the NSA, Snowden said. Back when he was in such a role, Snowden was writing position papers and recommendations that were treated on the same level as those from NSA staffers, but there was no oversight on his actions.

"They are saying, 'we can do this and that,' but it doesn't serve the public interest. The government has changed its talking points on this away from the public interest to the national interest," he said.

"We should be concerned about that. When the national interest of the state becomes distinct form the public interest and what benefits the people then we really are at a point where we have to marry those up or it gets harder and harder to control within a representative democracy."

Youtube video of Snowden's appearance at SXSW

Snowden said that while at the CIA he had sworn an oath to defend the constitution of the US and had seen it "violated on a massive scale." He denied putting lives in danger or passing any intelligence information to foreign governments, and said no matter what happened to him he had no regrets.

"The interpretation of the constitution had been changed in secret from no unreasonable search and seizure to 'Hey, any seizure is fine, just don’t search it,' and that's something the public ought to know," he concluded, referring to the NSA's practice of storing a record of everyone's private lives on disk – just in case, like. ®

Mobile application security vulnerability report

More from The Register

next story
Yorkshire cops fail to grasp principle behind BT Fon Wi-Fi network
'Prevent people that are passing by to hook up to your network', pleads plod
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
NEW, SINISTER web tracking tech fingerprints your computer by making it draw
Have you been on YouPorn lately, perhaps? White House website?
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Attackers raid SWISS BANKS with DNS and malware bombs
'Retefe' trojan uses clever spin on old attacks to grant total control of bank accounts
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
Mozilla fixes CRITICAL security holes in Firefox, urges v31 upgrade
Misc memory hazards 'could be exploited' - and guess what, one's a Javascript vuln
Don't look, Snowden: Security biz chases Tails with zero-day flaws alert
Exodus vows not to sell secrets of whistleblower's favorite OS
prev story

Whitepapers

Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Reducing security risks from open source software
Follow a few strategies and your organization can gain the full benefits of open source and the cloud without compromising the security of your applications.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.