Donald Trump has tweeted that he will nominate Christopher Wray, who worked in Bush’s DOJ, to head the FBI.

While most people are noting that Wray is Chris Christie’s personal lawyer in Bridgegate, I’m at least as interested in some of the things he did while at DOJ, as Assistant Attorney General for the Criminal Division.

Wray was on the border of a lot of torture decisions in 2004 — the ACLU database of torture documents is full of entirely redacted documents involving him.

Wray was involved in one of the noted field trips to Gitmo to watch torture.

And he also charged David Passaro, the only CIA person (Passaro was a contractor training Afghans to be paramilitaries) ever charged for torture. DOJ seized a bunch of documents Passaro had which would have shown that CIA’s chain of command had approved torture. Whatever you think of Passaro, I strongly believe he was denied due process in a number of ways.

To Wray’s credit, he was the first to review Stellar Wind data for information that might need to be disclosed as discovery to defendants.

While Assistant Attorney General for the Criminal Division, Wray was involved in negotiations with lawyers for Chiquita (including Eric Holder) that resulted in Chiquita’s executives avoiding all penalties for materially supporting Colombian terrorists.

Finally and probably most importantly, also while AAG DOJ in the early days of the Plame investigation, Wray provided inappropriate briefings to John Ashcroft about what Ashcroft’s buddies had said during FBI interviews.

Among other things, the sources said, Ashcroft was provided extensive details of an FBI interview of Karl Rove, President George W. Bush’s chief political advisor. The two men have enjoyed a close relationship ever since Rove advised the Attorney General during the course of three of Ashcroft’s political campaigns.

The briefings for Ashcroft were conducted by Christopher Wray, a political appointee in charge of the Justice Department’s criminal division, and John Dion, a 30-year career prosecutor who was in charge of the investigation at the time. Neither Wray nor Dion returned phone calls seeking comment for this story.

The briefings raise questions about the appropriateness of Ashcroft’s involvement in the investigation, especially given his longstanding ties to Rove. Senior federal law-enforcement officials have expressed serious concerns among themselves that Ashcroft spent months overseeing the probe and receiving regular briefings regarding a criminal investigation in which the stakes were so high for the Attorney General’s personal friends, political allies, and political party. One told me, “Attorneys General and U.S. Attorneys in the past traditionally recused for far less than this.”

This is what led to Ashcroft’s recusal and the appointment, by Deputy Attorney General Jim Comey, of Patrick Fitzgerald as special counsel.

In short, it seems Wray is likely to ensure that highers up never see any consequences for their actions. And he sure seems likely to keep Trump in the loop on the investigation of Trump.

Update: Jack Goldsmith, who of course worked closely with Wray while at DOJ, thinks he is a “a good choice, a much better choice than any name I previously saw floated, and a much better choice than I expected Trump to make,” though notes there will be a “probing confirmation process” ahead.

Update: Here’s a hearing in which Wray got questioned about inappropriate briefings. h/t NW

Update: LOLOL. DOJ released a list of endorsements for Wray, about which I’ll have more to say. But they included an endorsement from the guy who made Wray give him inappropriate briefings.

“Chris Wray is a man of integrity with a deep commitment to the rule of law. His substantial experience, particularly in serving on our Justice Department team fighting terrorism after 9/11, uniquely qualifies him to protect America as FBI Director.”
–Former Attorney General John Ashcroft

In very close succession today, the Intercept published a story on Russia’s efforts to hack election-related officials and the government arrested the apparent source for that story, a woman named Reality Winner.

The story — which reports GRU attempted to phish some officials — is most interesting for the dates included in the leaked document accompanying the story. The document — dated May 5 but covering events from last fall — describes phishing attempts starting as early as a month before the election up to October 31 or November 1.

That latest date (on a report published six months later) is interesting because we know President Obama used the cyber “red phone” to contact Vladimir Putin on October 31, for the first time in his presidency, to complain about election-related hacking. The dates here at least suggest that there were no more phishing attempts initiated after that call.

Of course, now Russia knows more details about how granularly, and on what schedule, NSA might learn such details.

The other big part of this incident, however, is the revelation that contractors well outside the known entities (like Booz Allen Hamilton) have access to FISA information — as indicated by the classification stamp — and that even people without a need to know that information can access it.

This leak was discovered because another of Intercept’s sources alerted the NSA. But had that not happened (or had the Intercept not showed the NSA a folded document), then it’s not clear this would have been discovered.

I get why we need to disseminate such information widely. But even if this information merely reports on stuff that had already been reported (to the WaPo, long ago), it nevertheless is testament to the degree to which adding contractors adds the likelihood of leaks.

Or let’s put it this way: we’re sharing FISA information with contractors who don’t have a need to know. But we’re not sharing it with defendants whose freedom depends on contesting it. Maybe those priorities are screwy?

 

I was swamped this week when Hoover Institute had this conference on Section 702 of FISA. But I heard so much about this panel, with Jim Baker, Susan Hennessey, Alex Abdo, and Julian Sanchez, I had to watch.

The panel generally and Hennessey especially gave far too much credence to the claim that NSA self-reported the upstream search violations revealed in the April 26 Rosemary Collyer opinion. You cannot claim NSA self-reported a problem they sat on for nine months before initially explaining, and pointedly didn’t mention in the initial reauthorization application, and that’s just one example of egregiously belated reporting described in the opinion. I’ll have far more to say about that — and NSA oversight generally — in the upcoming days.

I’m also frankly shocked that no one on the panel mentioned the approval to share EO 12333 data that was authorized between the time NSA belatedly declared these problems and the time it said it would discontinue an abusive problem. Here’s what the timing looked like:

• January 2016: Several formal discoveries of the problems in upstream searches
• September 26, 2016: Initial application (that didn’t disclose the problems) first submitted
• October 24, 2016: The government first discloses the upstream search problems
• January 3, 2017: Loretta Lynch signs procedures authorizing the sharing of raw EO 12333 data
• March 30, 2017: The government submits their fix to upstream problems
• April 26, 2017: Rosemary Collyer opinion authorizing the reframed upstream collection

The timing is critical because in between the time the government very belatedly revealed the problems with upstream and the time it decided to halt a narrowly defined “about” collection, it got approval to share raw EO 12333 data between agencies. The searches that NSA won’t be able to do under Section 702 are all, by definition, possible (though probably not as easy) to do under EO 12333. So the government can still obtain the very things they’ve told the FISC they won’t collect [under 702], and they can share them more easily with the FBI and CIA (which can do back door searches on them). In other words, even as the FISC was saying that the backdoor searches of upstream collection violated the Fourth Amendment, the government was self-authorizing a way to do the very same searches via means that don’t have any FISC oversight (and for which the existing oversight regime is flimsy).

But one thing that was most striking for me came when Hennessey stated “there are two forms of collection, upstream and downstream. Within downstream there’s only to and from collection.”

This is the kind of claim that seems to be correct. Indeed, much of Rosemary Collyer’s shitty opinion is premised on such an assumption. In all unclassified FISC discussions, back door searches of PRISM content are considered acceptable because (the assumption is) the searches would return only the side of the US person conversing with a foreign intelligence target. The idea is that the US person would be interesting and potentially valid foreign intelligence because they had knowingly communicated with a target.

But it is actually incorrect.

That’s because PRISM (which has been renamed “downstream” for some reason, which distracts from what kind of providers these actually are) is significantly about the collection of stored data. And the data it collects is not just electronic surveillance (that is, data in motion). As the WaPo described years ago, the NSA will collect other things that are in someone’s users account.

No government oversight body, including the Justice Department, the Foreign Intelligence Surveillance Court, intelligence committees in Congress or the president’s Privacy and Civil Liberties Oversight Board, has delved into a comparably large sample of what the NSA actually collects — not only from its targets but also from people who may cross a target’s path.

Among the latter are medical records sent from one family member to another, résumés from job hunters and academic transcripts of schoolchildren. In one photo, a young girl in religious dress beams at a camera outside a mosque.

Scores of pictures show infants and toddlers in bathtubs, on swings, sprawled on their backs and kissed by their mothers. In some photos, men show off their physiques. In others, women model lingerie, leaning suggestively into a webcam or striking risque poses in shorts and bikini tops.

I raise this not to gotcha Hennessey for making a mistake at all; as I said, on its face the statement seems to be, but is not, correct. Rather, I wanted to point to an assumption virtually everyone has been making about PRISM collection and its suitability for back door searches that may not be valid. If you think about the hack-and-leak dumps in recent years, for example, often the most damaging, as well as the most ridiculous infringements on privacy, involve email attachments, such as the list of most Democratic members of Congress’ email many passwords for which were easily obtainable online, or phone conversations about routine housekeeping or illness. And that’s just attachments; most of the PRISM providers are actually cloud storage providers, in addition to being electronic communication providers, and from the very first requests to Yahoo there was mission creep of all the types of things the government might demand.

And while NSA and FBI aren’t supposed to keep stuff that doesn’t count as foreign intelligence or criminal information, it’s clear (from the WaPo report) that NSA, at least, does.

So as we talk about how inappropriate the upstream back door searches were and are because they can search on stuff that’s not foreign intelligence information, we should remember that the very same thing is likely true of back door searches of  the fruits of searches on a person’s cloud storage account.

 

Yesterday, Vladimir Putin shifted from the public denials he has made about Russia’s role in the hack of the DNC. Whereas even just days ago, he had denied any involvement, yesterday he suggested Russian hackers might on their own decide to hack Russia’s adversaries out of patriotism.

Asked about suspicions that Russia might try to interfere in the coming elections in Germany, Mr. Putin raised the possibility of attacks on foreign votes by what he portrayed as free-spirited Russian patriots. Hackers, he said, “are like artists” who choose their targets depending how they feel “when they wake up in the morning.” Any such attacks, he added, could not alter the result of elections in Europe, America or elsewhere.

Artists, he said, paint if they wake up feeling in good spirits while hackers respond if “they wake up and read that something is going on in interstate relations” that prompts them to take action. “If they are patriotically minded, they start making their contributions — which are right, from their point of view — to the fight against those who say bad things about Russia,” Mr. Putin added, apparently referring to Hillary Clinton.

Putin’s change, to the extent it is one, may reflect recent events in Prague, where Russian hacker Yevgeniy Nikulin had a hearing on America’s extradition request. As the Guardian describes, the Czechs seem fairly close to approving Nikulin’s extradition to the US.

A 17-page affidavit by [FBI Agent Jeffrey] Miller, seen by the Guardian, outlines the evidence against Nikulin to the Czech court. The affidavit lists some of the aliases Nikulin is alleged to have used, including Chinabig01, Eugene, Uarebeenhacked, John Pattison and itBlackHat.

According to Miller’s affidavit, the FBI evidence is based on “witness interviews including confidential sources, ISP records, court-authorised electronic interceptions, and other sources”. Some of the electronic intercepts were emails from the Gmail account of Alexei Belan, a hacker on the FBI wanted list for allegedly conspiring with Russian FSB agents to perpetrate a huge hack on Yahoo in 2014. Belan is on the FBI’s cyber top 10 most wanted list. None of the raw evidence was provided to the court.

The affidavit relates solely to the hacking of LinkedIn, Dropbox and Formspring in 2012, and does not mention any election hacking.

However, Nikulin wrote in a letter from prison that Miller had interrogated him in Prague on 7 February and raised the election hacking. Excerpts of the letter were provided to the Guardian by Nikulin’s lawyers, but there is no way of substantiating the claims he made.

Nikulin claimed Miller demanded he admit to hacking the DNC servers as part of what the FBI is said to have claimed was a nefarious plot ultimately ordered by Trump, and promised him good treatment in the US if he cooperated. Nikulin wrote that he rejected the offer.

While the focus on the Russian hack has always centered on an alleged phish, in fact the mailboxes sent to Wikileaks better match up with credentials made available via the theft Nikulin is alleged to have carried out; the passwords of most of the people would have been available in barely encrypted format. And the mention of Alexey Belen might tie the Yahoo hack to the DNC hack as well.

Nikulin has been telegraphing his claim the US offered him a cooperation agreement for some time. It doesn’t sound legit — after all, the FBI would be as interested in implicating Russia as Trump. But it may be the best way for him to communicate with the Russian government, including Putin, about what kind of story he might proffer to the FBI.

If so, Putin appears to have gotten the message.

The other day, Shadow Brokers announced its new Warez of the month club: Send 100 Zcash, over the next 30 days, and they’ll send back … goodies that have yet to be described.

Zcash is, like Bitcoin, a cryptocurrency, but with a whole lot of smart thinking about how to make it secret.

Now, if the idea were to make money, the switch to Zcash would make sense. Days before Shadow Brokers announced this new gig, someone started cashing out the measly $20K in BTC it had made thus far, and people around the world watched as the money was dispersed through a bunch of other accounts. If the theory is to make money and cash it out, Zcash is a better option. As Matthew Green, who had a hand in setting up Zcash described it, to me.

[U]nlike Bitcoin, it supports untraceable transactions. In these transactions I can send you money such that only you and I (and nobody else) can see the amount or nature of a payment. These are called “shielded transactions”, and they use zero knowledge proofs. Presumably it is this feature that ShadowBrokers are interested in — assuming they are actually interested in any part of making money, and the whole thing isn’t a sham.

It’s the last bit, though, that raises questions for me.

Shadow Brokers set up an auction that was virtually designed to fail. That provided SB the opportunity to keep bitching about it publicly, then ultimately to release more files. It then set up a crowdfunding scheme, which again failed. Which led it to release files that ultimately led to a global ransomware being let loose.

So why switch currencies? SB can fail to make money just as easily with BTC as it can with ZEC.

One possibility is that SB wants to taint the currency. In its post, SB claims ZEC has ties to the federal government.

Zcash is having connections to USG (DARPA, DOD, John Hopkins) and Israel. Why USG is “sponsoring” privacy version of bitcoin? Who the fuck is knowing? In defense, TOR is originally being by similar parties. TheShadowBrokers not fully trusting TOR either. Maybe USG is needing to be sending money outside from banking systems? If USG is hacking and watching banking systems (SWIFT) then adversaries is also hacking and watching banking systems. Maybe is for sending money to deep cover foreign assets? Maybe is being trojan horse with cryptographic flaw or weakness only NSA can exploit? Maybe is not being for money? Maybe is being for Zk-SNARKs research? Maybe fuck it, lets be finding out.

I asked Green about the DARPA, DOD, John Hopkins [sic] slam, and he pointed to the research paper that forms the basis for the currency. In the acknowledgments, the authors thank their underlying sources of funding.

This work was supported by: Amazon.com through an AWS in Education research grant; the Broadcom Foundation and Tel Aviv University Authentication Initiative; the Center for Science of Information (CSoI), an NSF Science and Technology Center, under grant agreement CCF-0939370; the Check Point Institute for Information Security; the U.S. Defense Advanced Research Projects Agency (DARPA) and the Air Force Research Laboratory (AFRL) under contract FA8750-11-2-0211; the European Community’s Seventh Framework Programme (FP7/2007-2013) under grant agreement number 240258; the Israeli Centers of Research Excellence I-CORE program (center 4/11); the Israeli Ministry of Science and Technology; the Office of Naval Research under contract N00014-11-1-0470; the Simons Foundation, with a Simons Award for Graduate Students in Theoretical Computer Science; and the Skolkovo Foundation with agreement dated 10/26/2011. The views expressed are those of the authors and do not reflect the official policy or position of the Department of Defense or the U.S. Government.

Green describes (rightly, says a girl who probably took Soros funding in several ways while an academic) this as just good academic form.

These aren’t organizations that specifically funded *this project*, they’re just organizations that had provided funding to support the various scientists involved. It’s good form to list them all. And obviously Johns Hopkins is my institution, although I don’t do spook stuff.

He also suggested that the dig at ZEC’s funding is just part of the entertainment value that SB uses to get attention.

SB seems to be very astute in the way they cultivate interest among Information Security folks on Twitter. This could be because they’re legitimately also hackers (probably true at least in part). But it also serves their larger information needs because they have a complex message to get out there — and reporters are good at ignoring the message if there are no good interpreters to process it. Entertaining and relating to the infosec community on Twitter means they have a ready-made pool of infosec experts willing to talk to reporters about whatever new thing they’ve done. More tech companies should learn from this strategy, which is sort of clever (in an evil way)!

Along the above lines, adopting a new (and technically very advanced) private cryptocurrency keeps infosec people entertained. It gets RTs and makes people ask questions. Throwing in all the nonsense about backdoors and the DoD is probably entertainment value. Just like their “Russlish” grammar is, and the whole drama about auctions and subscription services.

I’m not so sure.

I can think of at least two other possibilities.

First, currencies have been bouncing around in response to some of this stuff. So it’s possible this is an attempt to flood the market.

Certainly, too, the invocation of DARPA seems about increasing distrust, just as SB did in its efforts to increase the distrust between Microsoft and the government.

More interestingly, though, perhaps this is SB’s way of adding to the risk to NSA of any releases. While some people believe NSA has already disclosed all the vulnerabilities it believes SB to have (indeed, SB’s last post suggested as much as well), if there’s any doubt about that, by using a more secretive currency, it will add the risk to NSA of not knowing who has anything SB sells.

I wanted to pull out two data points in this profile of Jared Kushner, completed in the wake of the WaPo story that Kushner attempted to set up a back channel with Russia.

First, as other stories have, this one blames Kushner for encouraging Trump to fire Jim Comey.

But in recent weeks, the Trump-Kushner relationship, the most stable partnership in an often unstable West Wing, is showing unmistakable signs of strain.

That relationship had already begun to fray a bit after Mr. Trump’s dismissal of the F.B.I. director, James B. Comey, which Mr. Kushner had strongly advocated, and because of his repeated attempts to oust Stephen K. Bannon, Mr. Trump’s chief strategist, as well as the president’s overburdened communications team, especially Sean Spicer, the press secretary.

[snip]

Other times, he serves as a goad, as he did in urging Mr. Comey’s ouster and assuring Mr. Trump that it would be a political “win” that would neutralize protesting Democrats because they had called for Mr. Comey’s ouster over his handling of Hillary Clinton’s use of a private email server, according to six West Wing aides.

I’ve pointed out before how the investigation into Mike Flynn might, with his cooperation, put Kushner at risk. But I’m interested in the new detail that Kushner assured his father that Democrats would love the firing of Comey because of Comey’s handling of the Hillary investigation.

I can see how a dummie might believe that. But I’m at least as interested in how pitching that theory for Comey’s firing implicated Rod Rosenstein, insofar as he wrote a letter providing the fig leaf Hillary-based justification for the firing, and thereby led to the naming of Robert Mueller. Rosenstein is still the Acting Attorney General for the Russia investigation now looking more closely at Kushner, and Kushner has effectively already compromised him.

Amid its larger narrative that Kushner and Trump actually haven’t been that close all that long, the NYT also reminds that Kushner got a lot of credit from his father-in-law for reviving the digital aspect of the campaign.

Mr. Kushner’s reported feeler to the Russians even as President Barack Obama remained in charge of American foreign policy was a trademark move by someone with a deep confidence in his abilities that critics say borders on conceit, people close to him said. And it echoes his history of sailing forth into unknown territory, including buying a newspaper at age 25 and developing a data-analytics program that he has said helped deliver the presidency to his father-in-law.

[snip]

Despite the perception that he is the one untouchable adviser in the president’s inner circle, Mr. Kushner was not especially close to his father-in-law before the 2016 campaign. The two bonded when Mr. Kushner helped to take over the campaign’s faltering digital operation and to sell a reluctant Rupert Murdoch, the chairman of Fox News’s parent company, on the viability of his father-in-law’s candidacy by showing him videos of Mr. Trump’s rally during a lunch at Fox headquarters in mid-2015.

There lots of reasons to look askance at Trump’s data program, even before you consider that it was so central in a year where Trump’s opponent got hacked. So I find it notable (which is where I’ll leave it, for now) that Kushner’s role in the digital side of the campaign was so central to his perceived closeness to Trump.

Ultimately, I keep noting that Kushner hasn’t really been part of the Trump family for that long — just eight years. While I certainly believe Trump looks on the father of his grandchildren as part of the family, I’m not sure how much real vetting they’ve done of him (and with this crowed, everyone is corrupt in any case).

It will be interesting to see, going forward, what bases for mutual loyalty — such as it exists between these two men — there are.

This post took a great deal of time, both in this go-around, and over the years to read all of these opinions carefully. Please consider donating to support this work. 

It often surprises people when I tell them this, but in general, I’ve got a much better opinion of the FISA Court than most other civil libertarians. I do so because I’ve actually read the opinions. And while there are some real stinkers in the bunch, I recognize that the court has long been a source of some control over the executive branch, at times even applying more stringent standards than criminal courts.

But Rosemary Collyer’s April 26, 2017 opinion approving new Section 702 certificates undermines all the trust and regard I have for the FISA Court. It embodies everything that can go wrong with the court — which is all the more inexcusable given efforts to improve the court’s transparency and process since the Snowden leaks. I don’t think she understood what she was ruling on. And when faced with evidence of years of abuse (and the government’s attempt to hide it), she did little to rein in or even ensure accountability for those abuses.

This post is divided into three sections:

• My analysis of the aspects of the opinion that deal with the upstream surveillance
  • Describing upstream searches
  • Refusing to count the impact
  • Treating the problem as exclusively about MCTs, not SCTs
  • Defining key terms
  • Failing to appoint (much less consider) appointing an amicus
  • Approving back door upstream searches
  • Imposing no consequences
• A description of all the documents I Con the Record released — and more importantly, the more important ones it did not release (if you’re in the mood for weeds, start there)
• A timeline showing how NSA tried to hide these violations from FISC

Opinion

The Collyer opinion deals with a range of issues: an expansion of data sharing with the National Counterterrorism Center, the resolution of past abuses, and the rote approval of 702 certificates for form and content.

But the big news from the opinion is that the NSA discovered it had been violating the terms of upstream FISA collection set in 2011 (after violating the terms of upstream FISA set in 2007-2008, terms which were set after Stellar Wind violated FISA since 2002). After five months of trying and failing to find an adequate solution to fix the problem, NSA proposed and Collyer approved new rules for upstream collection. The collection conducted under FISA Section 702 is narrower than it had been because NSA can no longer do “about” searches (which are basically searching for some signature in the “content” of a communication). But it is broader — and still potentially problematic — because NSA now has permission to do the back door searches of upstream collected data that they had, in reality, been doing all along.

My analysis here will focus on the issue of upstream collection, because that is what matters going forward, though I will note problems with the opinion addressing other topics to the extent they support my larger point.

Describing upstream searches

Upstream collection under Section 702 is the collection of communications identified by packet sniffing for a selector at telecommunication switches. As an example, if the NSA wants to collect the communications of someone who doesn’t use Google or Yahoo, they will search for the email address as it passes across circuits the government has access to (overseas, under EO 12333) or that a US telecommunications company runs (domestically, under 702; note many of the data centers at which this occurs have recently changed hands). Stellar Wind — the illegal warrantless wiretap program done under Bush — was upstream surveillance. The period in 2007 when the government tried to replace Stellar Wind under traditional FISA was upstream surveillance. And the Protect America Act and FISA Amendments Act have always included upstream surveillance as part of the mix, even as they moved more (roughly 90% according to a 2011 estimate) of the collection to US-based providers.

The thing is, there’s no reason to believe NSA has ever fully explained how upstream surveillance works to the FISC, not even in this most recent go-around (and it’s now clear that they always lied about how they were using and processing a form of upstream collection to get Internet metadata from 2004 to 2011). Perhaps ironically, the most detailed discussions of the technology behind it likely occurred in 2004 and 2010 in advance of opinions authorizing collection of metadata, not content, but NSA was definitely not fully forthcoming in those discussions about how it processed upstream data.

In 2011, the NSA explained (for the first time), that it was not just collecting communications by searching for a selector in metadata, but it was also collecting communications that included a selector as content. One reason they might do this is to obtain forwarded emails involving a target, but there are clearly other reasons. As a result of looking for selectors as content, NSA got a lot of entirely domestic communications, both in what NSA called multiple communication transactions (“MCTs,” basically emails and other things sent in bundles) and in single communication transactions (SCTs) that NSA didn’t identify as domestic, perhaps because they used Tor or a VPN or were routed overseas for some other reason. The presiding judge in 2011, John Bates, ruled that the bundled stuff violated the Fourth Amendment and imposed new protections — including the requirement NSA segregate that data — for some of the MCTs. Bizarrely, he did not rule the domestic SCTs problematic, on the logic that those entirely domestic communications might have foreign intelligence value.

In the same order, John Bates for the first time let CIA and NSA do something FBI had already been doing: taking US person selectors (like an email address) and searching through already collected content to see what communications they were involved in (this was partly a response to the 2009 Nidal Hasan attack, which FBI didn’t prevent in part because they were never able to pull up all of Hasan’s communications with Anwar al-Awlaki at once). Following Ron Wyden’s lead, these searches on US person content are often called “back door searches” for the way they let the government read Americans’ communications without a warrant. Because of the newly disclosed risk that upstream collection could pick up domestic communications, however, when Bates approved back door searches in 2011, he explicitly prohibited the back door searching of data collected via upstream searches. He prohibited this for all of it — MCTs (many of which were segregated from general repositories) and SCTs (none of which were segregated).

As I’ve noted, as early as 2013, NSA knew it was conducting “many” back door searches of upstream data. The reasons why it was doing so were stupid: in part, because to avoid upstream searches analysts had to exclude upstream repositories from the search query (basically by writing “NOT upstream” in a Boolean query), which also required them realizing they were searching on a US person selector. For whatever reason, though, no one got alarmed by reports this was going on — not NSA’s overseers, not FISC (which reportedly got notices of these searches), and not Congress (which got notices of them in Semiannual reports, which is how I knew they were going on). So the problem continued; I noted that this was a persistent problem back in August, when NSA and DOJ were still hiding the extent of the problems from FISC.

It became clear the problem was far worse than known, however, when NSA started looking into how it dealt with 704 surveillance. Section 704 is the authority the NSA uses to spy on Americans who are overseas. It basically amounts to getting a FISC order to use EO 12333 spying on an American. An IG Report completed in January 2016 generally found 704 surveillance to be a clusterfuck; as part of that, though, the NSA discovered that there were a whole bunch of 704 backdoor searches that weren’t following the rules, in part because they were collecting US person communications for periods outside of the period when the FISC had authorized surveillance (for 705(b) communication, which is the spying on Americans who are simply traveling overseas, this might mean NSA used EO 12333 to collect on an American when they were in the US). Then NSA’s Compliance people (OCO) did some more checking and found still worse problems.

And then the government — the same government that boasted about properly disclosing this to FISC — tried to bury it, basically not even telling FISC about how bad the problem was until days before Collyer was set to approve new certificates in October 2016. Once they did disclose it, Judge Collyer gave NSA first one and then another extension for them to figure out what went wrong. After 5 months of figuring, they were still having problems nailing it down or even finding where the data and searches had occurred. So, finally, facing a choice of ending “about” collection (only under 702 — they can still accomplish the very same thing under EO 12333) or ending searches of upstream data, they chose the former option, which Collyer approved with almost no accountability for all the problems she saw in the process.

Refusing to count the impact

I believe that (at least given what has been made public) Collyer didn’t really understand the issue placed before her. One thing she does is just operate on assumptions about the impact of certain practices. For example, she uses the 2011 number for the volume of total 702 collection accomplished using upstream collection to claim that it is “a small percentage of NSA’s overall collection of Internet communications under Section 702.” That’s likely still true, but she provides no basis for the claim, and it’s possible changes in communication — such as the increased popularity of Twitter — would change the mix significantly.

Similarly, she assumes that MCTs that involve “a non-U.S. person outside the United States” will be “for that reason [] less likely to contain a large volume of information about U.S. person or domestic communications.” She makes a similar assumption (this time in her treatment of the new NCTC raw take) about 702 data being less intrusive than individual orders targeted at someone in the US, “which often involve targets who are United States persons and typically are directed at persons in the United States.” In both of these, she repeats an assumption John Bates made in 2011 when he first approved back door searches using the same logic — that it was okay to provide raw access to this data, collected without a warrant, because it wouldn’t be as impactful as the data collected with an individual order. And the assumption may be true in both cases. But in an age of increasingly global data flows, that remains unproven. Certainly, with ISIS recruiters located in Syria attempting to recruit Americans, that would not be true at all.

Collyer makes the same move when she makes a critical move in the opinion, when she asserts that “NSA’s elimination of ‘abouts’ collection should reduce the number of communications acquired under Section 702 to which a U.S. person or a person in the United States is a party.” Again, that’s probably true, but it is not clear she has investigated all the possible ways Americans will still be sucked up (which she acknowledges will happen).

And she does this even as NSA was providing her unreliable numbers.

The government later reported that it had inadvertently misstated the percentage of NSA’s overall upstream Internet collection during the relevant period that could have been affected by this [misidentification of MCTs] error (the government first reported the percentage as roughly 1.3% when it was roughly 3.7%.

Collyer’s reliance on assumptions rather than real numbers is all the more unforgivable given one of the changes she approved with this order: basically, permitting the the agencies to conduct otherwise impermissible searches to be able to count how many Americans get sucked up under 702.  In other words, she was told, at length, that Congress wants this number (the government’s application even cites the April 22, 2106 letter from members of the House Judiciary Committee asking for such a number). Moreover, she was told that NSA had already started trying to do such counts.

The government has since [that is, sometime between September 26 and April 26] orally notified the Court that, in order to respond to these requests and in reliance on this provision of its minimization procedures, NSA has made some otherwise-noncompliant queries of data acquired under Section 702 by means other than upstream Internet collection.

And yet she doesn’t then demand real numbers herself (again, in 2011, Bates got NSA to do at least a limited count of the impact of the upstream problems).

Treating the problem as exclusively about MCTs, not SCTs

But the bigger problem with Collyer’s discussion is that she treats all of the problem of upstream collection as being about MCTs, not SCTs. This is true in general — the term single communication transaction or SCT doesn’t appear at all in the opinion. But she also, at times, makes claims about MCTs that are more generally true for SCTs. For example, she cites one aspect of NSA’s minimization procedures that applies generally to all upstream collection, but describes it as only applying to MCTs.

A shorter retention period was also put into place, whereby an MCT of any type could not be retained longer than two years after the expiration of the certificate pursuant to which it was acquired, unless applicable criteria were met. And, of greatest relevance to the present discussion, those procedures categorically prohibited NSA analysts from using known U.S.-person identifiers to query the results of upstream Internet collection. (17-18)

Here’s the section of the minimization procedures that imposed the two year retention deadline, which is an entirely different section than that describing the special handling for MCTs.

Similarly, Collyer cites a passage from the 2015 Hogan opinion stating that upstream “is more likely than other forms of section 702 collection to contain information of or concerning United States person with no foreign intelligence value” (see page 17). But that passage cites to a passage of the 2011 Bates opinion that includes SCTs in its discussion, as in this sentence.

In addition to these MCTs, NSA likely acquires tens of thousands more wholly domestic communications every year, given that NSA’s upstream collection devices will acquire a wholly domestic “about” SCT if it is routed internationally. (33)

Collyer’s failure to address SCTs is problematic because — as I explain here — the bulk of the searches implicating US persons almost certainly searched SCTs, not MCTs. That’s true for two reasons. First, because (at least according to Bates’ 2011 guesstimate) NSA collects (or collected) far more entirely domestic communications via SCTs than via MCTs. Here’s how Bates made that calculation in 2011 (see footnote 32).

NSA ultimately did not provide the Court with an estimate of the number of wholly domestic “about” SCTs that may be acquired through its upstream collection. Instead, NSA has concluded that “the probability of encountering wholly domestic communications in transactions that feature only a single, discrete communication should be smaller — and certainly no greater — than potentially encountering wholly domestic communications within MCTs.” Sept. 13 Submission at 2.

The Court understands this to mean that the percentage of wholly domestic communications within the universe of SCTs acquired through NSA’s upstream collection should not exceed the percentage of MCTs within its statistical sample. Since NSA found 10 MCTs with wholly domestic communications within the 5,081 MCTs reviewed, the relevant percentage is .197% (10/5,081). Aug. 16 Submission at 5.

NSA’s manual review found that approximately 90% of the 50,440 transactions in the same were SCTs. Id. at 3. Ninety percent of the approximately 13.25 million total Internet transactions acquired by NSA through its upstream collection during the six-month period, works out to be approximately 11,925,000 transactions. Those 11,925,000 transactions would constitute the universe of SCTs acquired during the six-month period, and .197% of that universe would be approximately 23,000 wholly domestic SCTs. Thus, NSA may be acquiring as many as 46,000 wholly domestic “about” SCTs each year, in addition to the 2,000-10,000 MCTs referenced above.

Assuming some of this happens because people use VPNs or Tor, then the amount of entirely domestic communications collected via upstream would presumably have increased significantly in the interim period. Indeed, the redaction in this passage likely hides a reference to technologies that obscure location.

If so, it would seem to acknowledge NSA collects entirely domestic communications using upstream that obscure their location.

The other reason the problem is likely worse with SCTs is because — as I noted above — no SCTs were segregated from NSA’s general repositories, whereas some MCTs were supposed to be (and in any case, in 2011 the SCTs constituted by far the bulk of upstream collection).

Now, Collyer’s failure to deal with SCTs may or may not matter for her ultimate analysis that upstream collection without “about” collection solves the problem. Collyer limits the collection of abouts by limiting upstream collection to communications where “the active user is the target of acquisition.” She describes “active user” as “the user of a communication service to or from whom the MCT is in transit when it is acquired (e.g., the user of an e-mail account [half line redacted].” If upstream signatures are limited to emails and texts, that would seem to fix the problem. But upstream wouldn’t necessarily be limited to emails and texts — upstream collection would be particularly valuable for searching on other kinds of selectors, such as an encryption key, and there may be more than one person who would use those other kinds of selectors. And when Collyer says, “NSA may target for acquisition a particular ‘selector,’ which is typically a facility such as a telephone number or e-mail address,” I worry she’s unaware or simply not ensuring that NSA won’t use upstream to search for non-typical signatures that might function as abouts even if they’re not “content.” The problem is treating this as a content/metadata distinction, when “metadata” (however far down in the packet you go) could include stuff that functions like an about selector.

Defining key terms terms

Collyer did define “active user,” however inadequately. But there are a number of other terms that go undefined in this opinion. By far the funniest is when Collyer notes that the government’s March 30 submission promises to sequester upstream data that is stored in “institutionally managed repositories.” In a footnote, she notes they don’t define the term. Then she pretty much drops the issue. This comes in an opinion that shows FBI data has been wandering around in repositories it didn’t belong and indicating that NSA can’t identify where all its 704 data is. Yet she’s told there is some other kind of repository and she doesn’t make a point to figure out what the hell that means.

Later, in a discussion of other violations, Collyer introduces the term “data object,” which she always uses in quotation marks, without explaining what that is.

Failing to appoint (or even consider) amicus

In any case, this opinion makes clear that what should have happened, years ago, is a careful discussion of how packet sniffing works, and where a packet collected by a backbone provider stops being metadata and starts being content, and all the kinds of data NSA might want to and does collect via domestic packet sniffing. (They collect far more under EO 12333.) As mentioned, some of that discussion may have taken place in advance of the 2004 and 2010 opinions approving upstream collection of Internet metadata (though, again, I’m now convinced NSA was always lying about what it would take to process that data). But there’s no evidence the discussion has ever happened when discussing the collection of upstream content. As a result, judges are still using made up terms like MCTs, rather than adopting terms that have real technical meaning.

For that reason, it’s particularly troubling Collyer didn’t use — didn’t even consider using, according to the available documentation — an amicus. As Collyer herself notes, upstream surveillance “has represented more than its share of the challenges in implementing Section 702” (and, I’d add, Internet metadata collection).

At a minimum, when NSA was pitching fixes to this, she should have stopped and said, “this sounds like a significant decision” and brought in amicus Amy Jeffress or Marc Zwillinger to help her think through whether this solution really fixes the problem. Even better, she should have brought in a technical expert who, at a minimum, could have explained to her that SCTs pose as big a problem as MCTs; Steve Bellovin — one of the authors of this paper that explores the content versus metadata issue in depth — was already cleared to serve as the Privacy and Civil Liberties Oversight Board’s technical expert, so presumably could easily have been brought into consult here.

That didn’t happen. And while the decision whether or not to appoint an amicus is at the court’s discretion, Collyer is obligated to explain why she didn’t choose to appoint one for anything that presents a significant interpretation of the law.

A court established under subsection (a) or (b), consistent with the requirement of subsection (c) and any other statutory requirement that the court act expeditiously or within a stated time–

(A) shall appoint an individual who has been designated under paragraph (1) to serve as amicus curiae to assist such court in the consideration of any application for an order or review that, in the opinion of the court, presents a novel or significant interpretation of the law, unless the court issues a finding that such appointment is not appropriate;

For what it’s worth, my guess is that Collyer didn’t want to extend the 2015 certificates (as it was, she didn’t extend them as long as NSA had asked in January), so figured there wasn’t time. There are other aspects of this opinion that make it seem like she just gave up at the end. But that still doesn’t excuse her from explaining why she didn’t appoint one.

Instead, she wrote a shitty opinion that doesn’t appear to fully understand the issue and that defers, once again, the issue of what counts as content in a packet.

Approving back door upstream searches

Collyer’s failure to appoint an amicus is most problematic when it comes to her decision to reverse John Bates’ restriction on doing back door searches on upstream data.

To restate what I suggested above, by all appearances, NSA largely blew off the Bates’ restriction. Indeed, Collyer notes in passing that, “In practice, however, no analysts received the requisite training to work with the segregated MCTs.” Given the persistent problems with back door searches on upstream data, it’s hard to believe NSA took that restriction seriously at all (particularly since it refused to consider a technical fix to the requirement to exclude upstream from searches). So Collyer’s approval of back door searches of upstream data is, for all intents and purposes, the sanctioning of behavior that NSA refused to stop, even when told to.

And the way in which she sanctions it is very problematic.

First, in spite of her judgment that ending about searches would fix the problems in (as she described it) MCT collection, she nevertheless laid out a scenario (see page 27) where an MCT would acquire an entirely domestic communication.

Having laid out that there will still be some entirely domestic comms in the collection, Collyer then goes on to say this:

The Court agrees that the removal of “abouts” communications eliminates the types of communications presenting the Court the greatest level of constitutional and statutory concern. As discussed above, the October 3, 2011 Memorandum Opinion (finding the then-proposed NSA Minimization Procedures deficient in their handling of some types of MCTs) noted that MCTs in which the target was the active user, and therefore a party to all of the discrete communications within the MCT, did not present the same statutory and constitutional concerns as other MCTs. The Court is therefore satisfied that queries using U.S.-person identifiers may now be permitted to run against information obtained by the above-described, more limited form of upstream Internet collection, subject to the same restrictions as apply to querying other forms of Section

This is absurd! She has just laid out that there will be some exclusively domestic comms in the collection. Not as much as there was before NSA stopped collecting abouts, but it’ll still be there. So she’s basically permitting domestic communications to be back door searched, which, if they’re found (as she notes), might be kept based on some claim of foreign intelligence value.

And this is where her misunderstanding of the MCT/SCT distinction is her undoing. Bates prohibited back door searching of all upstream data, both that supposedly segregated because it was most likely to have unrelated domestic communications in it, and that not segregated because even the domestic communications would have intelligence value. Bates’ specific concerns about MCTs are irrelevant to his analysis about back door searches, but that’s precisely what Collyer cites to justify her own decision.

She then applies the 2015 opinion, with its input from amicus Amy Jeffress stating that NSA back door searches that excluded upstream collection were constitutional, to claim that back door searches that include upstream collection would meet Fourth Amendment standards.

The revised procedures subject NSA’s use of U.S. person identifiers to query the results of its newly-limited upstream Internet collection to the same limitations and requirements that apply to its use of such identifiers to query information acquired by other forms of Section 702 collection. See NSA Minimization Procedures § 3(b)(5). For that reason, the analysis in the November 6, 2015 Opinion remains valid regarding why NSA’s procedures comport with Fourth Amendment standards of reasonableness with regard to such U.S. person queries, even as applied to queries of upstream Internet collection. (63)

As with her invocation of Bates’ 2011 opinion, she applies analysis that may not fully apply to the question — because it’s not actually clear that the active user restriction really equates newly limited upstream collection to PRISM collection — before her as if it does.

Imposing no consequences

The other area where Collyer’s opinion fails to meet the standards of prior ones is in resolution of the problem. In 2009, when Reggie Walton was dealing with first phone and then Internet dragnet problems, he required the NSA to do complete end-to-end reviews of the programs. In the case of the Internet dragnet, the report was ridiculous (because it failed to identify that the entire program had always been violating category restrictions). He demanded IG reports, which seems to be what led the NSA to finally admit the Internet dragnet program was broken. He shut down production twice, first of foreign call records, from July to September 2009, then of the entire Internet dragnet sometime in fall 2009. Significantly, he required the NSA to track down and withdraw all the reports based on violative production.

In 2010 and 2011, dealing with the Internet dragnet and upstream problems, John Bates similarly required written details (and, as noted, actual volume of the upstream problem). Then, when the NSA wanted to retain the fruits of its violative collection, Bates threatened to find NSA in violation of 50 USC 1809(a) — basically, threatened to declare them to be conducting illegal wiretapping — to make them actually fix their prior violations. Ultimately, NSA destroyed (or said they destroyed) their violative collection and the fruits of it.

Even Thomas Hogan threatened NSA with 50 USC 1809(a) to make them clean up willful flouting of FISC orders.

Not Collyer. She went from issuing stern complaints (John Bates was admittedly also good at this) back in October…

At the October 26, 2016 hearing, the Court ascribed the government’s failure to disclose those IG and OCO reviews at the October 4, 2016 hearing to an institutional “lack of candor” on NSA’s part and emphasized that “this is a very serious Fourth Amendment issue.”

… to basically reauthorizing 702 before using the reauthorization process as leverage over NSA.

Of course, NSA still needs to take all reasonable and necessary steps to investigate and close out the compliance incidents described in the October 26, 2016 Notice and subsequent submissions relating to the improper use of U.S.-person identifiers to query terms in NSA upstream data. The Court is approving on a going-foward basis, subject to the above-mentioned requirements, use of U.S.-person identifiers to query the results of a narrower form of Internet upstream collection. That approval, and the reasoning that supports it, by no means suggest that the Court approves or excuses violations that occurred under the prior procedures.

That is particularly troubling given that there is no indication, even six months after NSA first (belatedly) disclosed the back door search problems to FISC, that it had finally gotten ahold of the problem.

As Collyer noted, weeks before it submitted its new application, NSA still didn’t know where all the upstream data lived. “On March 17, 2017, the government reported that NSA was still attempting to identify all systems that store upstream data and all tools used to query such data.” She revealed that  some of the queries of US persons do not interact with “NSA’s query audit system,” meaning they may have escaped notice forever (I’ve had former NSA people tell me even they don’t believe this claim, as seemingly nothing should be this far beyond auditability). Which is presumably why, “The government still had not ascertained the full range of systems that might have been used to conduct improper U.S.-person queries.” There’s the data that might be in repositories that weren’t run by NSA, alluded to above. There’s the fact that on April 7, even after NSA submitted its new plan, it was discovering that someone had mislabeled upstream data as PRISM, allowing it to be queried.

Here’s the thing. There seems to be no way to have that bad an idea of where the data is and what functions access the data and to be able to claim — as Mike Rogers, Dan Coats, and Jeff Sessions apparently did in the certificates submitted in March that didn’t get publicly released — to be able to fulfill the promises they made FISC. How can the NSA promise to destroy upstream data at an accelerated pace if it admits it doesn’t know where it is? How can NSA promise to implement new limits on upstream collection if that data doesn’t get audited?

And Collyer excuses John Bates’ past decision (and, by association, her continued reliance on his logic to approve back door searches) by saying the decision wasn’t so much the problem, but the implementation of it was.

When the Court approved the prior, broader form of upstream collection in 2011, it did so partly in reliance on the government’s assertion that, due to some communications of foreign intelligence interest could only be acquired by such means. $ee October 3, 2011 Memorandum Opinion at 31 & n. 27, 43, 57-58. This Opinion and Order does not question the propriety of acquiring “abouts” communications and MCTs as approved by the Court since 2011, subject to the rigorous safeguards imposed on such acquisitions. The concerns raised in the current matters stem from NSA’s failure to adhere fully to those safeguards.

If problems arise because NSA has failed, over 6 years, to adhere to safeguards imposed because NSA hadn’t adhered to the rules for the 3 years before that, which came after NSA had just blown off the law itself for the 6 years before that, what basis is there to believe they’ll adhere to the safeguards she herself imposed, particularly given that unlike her predecessors in similar moments, she gave up any leverage she had over the agency?

The other thing Collyer does differently from her predecessors is that she lets NSA keep data that arose from violations.

Certain records derived from upstream Internet communications (many of which have been evaluated and found to meet retention standards) will be retained by NSA, even though the underlying raw Internet transactions from which they are derived might be subject to destruction. These records include serialized intelligence reports and evaluated and minimized traffic disseminations, completed transcripts and transcriptions of Internet transactions, [redacted] information used to support Section 702 taskings and FISA applications to this Court, and [redacted].

If “many” of these communications have been found to meet retention standards, it suggests that “some” have not. Meaning they should never have been retained in the first place. Yet Collyer lets an entire stream of reporting — and the Section 702 taskings that arise from that stream of reporting — remain unrecalled. Effectively, even while issuing stern warning after stern warning, by letting NSA keep this stuff, she is letting the agency commit violations for years without any disincentive.

Now, perhaps Collyer is availing herself of the exception offered in Section 301 of the USA Freedom Act, which permits the government to retain illegally obtained material if it is corrected by subsequent minimization procedures.

Exception.–If the Government corrects any deficiency identified by the order of the Court under subparagraph (B), the Court may permit the use or disclosure of information obtained before the date of the correction under such minimization procedures as the Court may approve for purposes of this clause.

Except that she doesn’t cite that provision, nor is there any evidence deficiencies have been corrected.

Which should mean, especially given the way Collyer depends on the prior opinions of Bates and Hogan, she should likewise rely on their practice of treating this as a potential violation of 50 USC 1809(a) to ensure the harm to Americans doesn’t persist. She did no such thing, basically sanctioning the illegal use of back door searches to spy on Americans.

Up until this opinion, I was generally willing to argue for the efficacy of the FISC (even while arguing the job could and should be devolved to district courts for more rigorous testing of the law). But not now. This opinion discredits the entire court.

Last April when Collyer became presiding FISC judge, I pointed to what I considered Rosemary Collyer’s worst FISC decision, which was actually a District Court opinion that permitted the NSA to keep aspects of its upstream problems secret from EFF, which is suing over those same issues. I predicted then that, “I fear she will be a crummy presiding judge, making the FISC worse than it already is.”

In my opinion — as a civil libertarian who has been willing to defend the FISC in the past — with this opinion she has done real damage to any credibility or legitimacy the FISC has.

Update: Latter for former fixed in which choice the Administration picked, h/t CS.

The Documents

Here’s what I Con the Record released.

January 7, 2016 IG Report

This heavily redacted report describes a review of NSA’s compliance with 704/705b of Title VII of FISA, the authority NSA uses to spy on Americans who are located overseas (see my report on the 704 problems here). It was conducted from March through August 2015 and reviewed data from January through March 2015. It basically showed there were no compliance mechanisms in place for 704/705b, and NSA couldn’t even reliably identify the queries that had been conducted under the authority. This report is relevant to the reauthorization, because Americans targeted in individual FISA orders are approved (and almost certainly tasked) by default for 702 back door searches. Though the report was obviously done well before the 702 certifications were submitted on September 26, was not noticed to FISC until days before the court would otherwise have approved the certifications in conjunction with the upstream problems.

September 26, 2016 702 Certification Package 

ICTR released much if not all of the materials submitted for 702 reauthorization on September 2016. The package includes:

Certification cover filing: This is basically the application, which the metadata reveals is actually two parts merged. It describes the changes to the certificates from the past year, most notably a request to share raw 702 data directly from NSA or FBI to NCTC, some tweaks to the FBI targeting and minimization procedures, and permission for NSA, FBI, and CIA to deviate from minimization procedures to develop a count of how many US persons get collected under 702.

The report also describes how the government has fulfilled reporting requirements imposed in 2015. Several of the reports pertain to destroying data it should not have had. The most interesting one is the report on how many criminal queries of 702 data FBI does that result in the retrieval and review of US person data; as I note in this post, the FBI really didn’t (and couldn’t, and can’t, given the oversight regime currently in place) comply with the intent of the reporting requirement.

Very importantly: this application did not include any changes to upstream collection, in large part because NSA did not tell FISC (more specifically, Chief Judge Rosemary Collyer) about the problems they had always had preventing queries of upstream data in its initial application. In NSA’s April statement on ending upstream about collection, it boasts, “Although the incidents were not willful, NSA was required to, and did, report them to both Congress and the FISC.” But that’s a load of horse manure: in fact, NSA and DOJ sat on this information for months. And even with this disclosure, because the government didn’t release the later application that did describe those changes, we don’t actually get to see the government’s description of the problems; we only get to see Collyer’s (I believe mis-) understanding of them.

Procedures and certifications accepted: The September 26 materials also include the targeting and minimization procedures that were accepted in the form in which they were submitted on that date. These include:

• FBI Minimization Procedures
• FBI Targeting Procedures
• FBI Director’s Affidavit
• CIA Minimization Procedures
• CIA Director’s Affidavit
• NCTC Minimization Procedures
• NCTC Director’s Affidavit

Procedures and certificates not accepted: The materials include the documents that the government would have to change before approval on April 26. These include,

• NSA Minimization Procedures
• NSA Targeting Procedures
• DIRNSA Affidavit*
• AG/DNI Certification*

Note, I include the latter two items because I believe they would have had to be resubmitted on March 30, 2017 with the updated NSA documents and the opinion makes clear a new DIRNSA affidavit was submitted (see footnote 10), but the release doesn’t give us those. I have mild interest in that, not least because the AG/DNI one would be the first big certification to FISC signed by Jeff Sessions and Dan Coats.

October 26, 2016 Extension

The October 26 extension of 2015’s 702 certificates is interesting primarily for its revelation that the government waited until October 24, 2016 to disclose problems that had been simmering since 2013.

March 30, 2017 Submissions

The release includes two of what I suspect are at least four items submitted on March 30, which are:

• NSA Minimization Procedures
• NSA Targeting Procedures

April 26, 2017 Opinion

This is the opinion that reauthorized 702, with the now-restricted upstream search component. My comments below largely lay out the problems with it.

April 11, 2017 ACLU Release

I Con the Record also released the FOIAed documents released earlier in April to ACLU, which are on their website in searchable form here. I still have to finish my analysis of that (which includes new details about how the NSA was breaking the law in 2011), but these posts cover some of those files and are relevant to these 702 changes:

• Processing versus handling in 702
• At the Moment NSA Shut Down the PRTT Metadata Dragnet, FISC Permitted It to Query Upstream Metadata
• What Queries of Metadata Derived from Upstream Data Might Include

Importantly, the ACLU documents as a whole reveal what kinds of US persons are approved for back door searches at NSA (largely, but not exclusively, Americans for whom an individual FISA order has already been approved, importantly including 704 targets, as well as more urgent terrorist targets), and reveal that one reason NSA was able to shut down the PRTT metadata dragnet in 2011 was because John Bates had permitted them to query the metadata from upstream collection.

Not included

Given the point I noted above — that the application submitted on September 26 did not address the problem with upstream surveillance and that we only get to see Collyer’s understanding of it — I wanted to capture the documents that should or do exist that we haven’t seen.

• October 26, 2016 Preliminary and Supplemental Notice of Compliance Incidents Regarding the Querying of Section 702-Acquired Data
• January 3, 2017: Supplemental Notice of Compliance Incidents Regarding the Querying of Section 702-Acquired Data
• NSA Compliance Officer (OCO) review covering April through December 2015
• OCO review covering April though July of 2016
• IG Review covering first quarter of 2016 (22)
• January 27, 2017: Letter In re: DNI/AG 702(g) Certifications asking for another extension
• January 27, 2017: Order extending 2015 certifications (and noting concern with “important safeguards for interests protected by the Fourth Amendment”)
• March 30, 2017: Amendment to [Certificates]; includes (or is) second explanatory memo, referred to as “March 30, 2017 Memorandum” in Collyer’s opinion; this would include a description of the decision to shut down about searches
• March 30, 2017 AG/DNI Certification (?)
• March 30, 2017 DIRNSA Certification
• April 7, 2017 preliminary notice

Other Relevant Documents

Because they’re important to this analysis and get cited extensively in Collyer’s opinion, I’m including:

• October 3, 2011 John Bates 702 Opinion
• November 6, 2015 Thomas Hogan 702 Opinion

Timeline

November 30, 2013: Latest possible date at which upstream search problems identified

October 2014: Semiannual Report shows problems with upstream searches during period from June 1, 2013 – November 30, 2013

October 2014: SIGINT Compliance (SV) begins helping NSD review 704/705b compliance

June 2015: Semiannual Report shows problems with upstream searches during period from December 1, 2013 – May 31, 2014

December 18, 2015: Quarterly Report to the FISC Concerning Compliance Matters Under Section 702 of FISA

January 7, 2016: IG Report on controls over §§704/705b released

January 26, 2016: Discovery of error in upstream collection

March 9, 2016: FBI releases raw data

March 18, 2016: Quarterly Report to the FISC Concerning Compliance Matters Under Section 702 of FISA

May and June, 2016: Discovery of querying problem dating back to 2012

May 17, 2016: Opinion relating to improper retention

June 17, 2016: Quarterly Report to the FISC Concerning Compliance Matters Under Section 702 of FISA

August 24, 2016: Pre-tasking review update

September 16, 2016: Quarterly Report to the FISC Concerning Compliance Matters Under Section 702 of FISA

September 26, 2016: Submission of certifications

October 4, 2016: Hearing on compliance issues

October 24, 2016: Notice of compliance errors

October 26, 2016: Formal notice, with hearing; FISC extends the 2015 certifications to January 31, 2017

November 5, 2016: Date on which 2015 certificates would have expired without extension

December 15, 2016: James Clapper approves EO 12333 Sharing Procedures

December 16, 2016: Quarterly Report to the FISC Concerning Compliance Matters Under Section 702 of FISA

December 29, 2016: Government plans to deal with indefinite retention of data on FBI systems

January 3, 2017: DOJ provides supplemental report on compliance programs; Loretta Lynch approves new EO 12333 Sharing Procedures

January 27, 2017: DOJ informs FISC they won’t be able to fully clarify before January 31 expiration, ask for extension to May 26; FISC extends to April 28

January 31, 2007: First extension date for 2015 certificates

March 17, 2017:Quarterly Report to the FISC Concerning Compliance Matters Under Section 702 of FISA; Probable halt of upstream “about” collection

March 30, 2016: Submission of amended NSA certifications

April 7, 2017: Preliminary notice of more query violations

April 28, 2017: Second extension date for 2015 certificates

May 26, 2017: Requested second extension date for 2015 certificates

June 2, 2017: Deadline for report on outstanding issues

NYT has gotten a lot of heat for letting associates speaking for Jared Kushner who nevertheless refused to be IDed as such provide this explanation for why he asked Sergey Kislyak for a channel of communications that bypassed any US intelligence scrutiny.

Jared Kushner, President Trump’s son-in-law and senior adviser, spoke in December with Russia’s ambassador to the United States about establishing a secret communications channel between the Trump transition team and Moscow to discuss strategy in Syria and other policy issues, according to three people with knowledge of the discussion.

I would defend NYT on two grounds. First, while I’m totally supportive of WaPo (and others) providing anonymity for their sources who are providing highly sensitive details about what went on, they, too, could provide a bit more detail so readers could understand the motives, not least by indicating whether these were Congressional (and therefore partisan) or intelligence sources.

But I also think it highly likely the relationship between the Syria claim and what is really going on is similar to the original NYT explanation of this meeting — that it served to “establish a line of communication” between the Trump Administration and Russia and what has now been disclosed as an effort to establish a line of communication that bypassed all IC scrutiny. That is, I suspect those who shared this excuse believe it and believe it is rational within a larger context, and I believe it describes part of what they know to be going on. (Don’t go nuts just yet — I’m not defending that belief.)

Before I explain what I mean, consider a few more data points.

First, in this appearance, Juliette Kayyem and Steven Hall distinguish what this appears to be — a channel that bypasses the IC — from one that uses a third country (the Pope, in Kayyem’s example of President Obama’s back channel to Cuba) to establish a dialogue with an estranged country, a traditional back channel.

But remember, this is not the only country Kushner was establishing weird communications with. The WaPo story on this reminds of Trump’s secrecy surrounding a meeting between the Sheikh Mohamed bin Zayed al-Nahyan and Kushner, Flynn, and Bannon.

Trump’s advisers were similarly secretive about meetings with leaders from the United Arab Emirates. The Obama White House only learned that the crown prince of Abu Dhabi was flying to New York in December to see Kushner, Flynn and Stephen K. Bannon, another top Trump adviser, because U.S. border agents in the UAE spotted the Emirate leader’s name on a flight manifest.

And WaPo ties that meeting to a meeting, brokered by UAE, between Erik Prince and a Putin confidante on January 11.

Now consider National Security Adviser H.R. McMaster’s take on all this. First, he’s not all that concerned that his boss’ son-in-law tried to set up a channel of communication using an adversary’s facilities. According to him, they do this all the time!

“We have back-channel communications with any number of individual (countries). So generally speaking, about back-channel communications, what that allows you to do is communicate in a discreet manner,” McMaster said.

“So it doesn’t pre-expose you to any sort of content or any kind of conversation or anything. So we’re not concerned about it.”

Actually, he does have a point there. There’s the Emirates meeting, but there’s also Mike Flynn’s discussions of kidnapping Fethullah Gulen at the behest of Recep Erdogan. You might even include Rudy Giuliani’s intervention in the Reza Zarrab case.

As if McMaster’s lackadaisical attitude about Kushner’s attempt to use Russia’s facilities isn’t weird enough, though, there’s something else. Even before he made this weird defense of Kushner’s back channels, McMaster was excluded from at least one meeting on Trump’s overseas trip: that between Trump and Bibi Netanyahu.

National security advisor H.R. McMaster was left out of a meeting between President Donald Trump and Israeli Prime Minister BenjaminNetanyahu on Monday, a move that raised eyebrows among officials.

According to Kafe Knesset, Trump met with Netanyahu Monday evening, starting with a one-on-one meeting. The forum was soon expanded by several advisors on each side, including Jared Kushner, Jason Greenblatt and Ambassador David Friedman on the U.S. side, according to Israeli officials.

Secretary of State Rex Tillerson was also later invited to the expanded meeting, per an official, but “McMaster sat outside the King David room during the course of the entire meeting.”

So perhaps we can add Israel to the list of countries that Kushner has been establishing back channel communications with.

For better or worse, a back channel with Israel by itself would never get you accused of treason in the US. But I do find it interesting given the underlying precedent to Devin Nunes’ complaints about “unmasking:” the earlier collection of conversations in which Bibi told Members of Congress what the Obama Administration’s plans were with respect to Iran. The conversations of Trump associates that Nunes was outraged were unmasked didn’t involve Russia, he said, but did they involve Israel? Or Turkey or the Emirates?

With all that in mind, consider what the purported Middle East peace that Kushner has reportedly been crafting would actually look like. It’d include unlimited support for Israeli occupation of Palestine. Bashar al-Assad would be ousted, but in a way that would permit Russia a strategic footprint, perhaps with sanction of its occupation of Crimea and Donetsk as well. It’d sanction the increasing authoritarianism in Turkey. It’s sanction Saudi Arabia’s ruthless starvation of Yemen. It’d fuck over the Kurds.

And it’d mean war with Iran.

Trump took steps towards doing most of those things on his trip, not least with his insane weapons deal with Saudi Arabia, itself premised on a formal detachment of weapons sales from any demands for respect for human rights. Of particular note, Trump claimed to be establishing a great peace initiative with Islamic countries, even when discussing meetings that treated Iran (and by association most Shia Muslims) as an enemy.

Several days ago in Saudi Arabia, I met with the leaders of the Muslim world and Arab nations from all across the region. It was an epic gathering. It was an historic event. Kind Salman of Saudi Arabia could not have been kinder, and I will tell you, he’s a very wise, wise man. I called on these leaders and asked them to join in a partnership to drive terrorism from their midst, once and for all. It was a deeply productive meeting. People have said there had really never been anything even close in history. I believe that. Being there and seeing who was there and hearing the spirit and a lot of love, there has never been anything like that in history. And it was an honor to be involved.

Kushner’s “peace plan” is not so much a plan for peace. It’s a plan for a complete remapping of the Middle East according to a vision the Israelis and Saudis have long been espousing (and note the multiple nods on Trump’s trip to the growing alliance between the two, including Trump’s flight directly from Riyadh to Tel Aviv and Bibi’s comment on “common dangers are turning former enemies into partners”). It’s a vision for still more oppression (a view that Trump supports globally, in any case).

Yes, it’d probably all be accomplished with corrupt self-enrichment on the part of all players.

And it’d likely be a complete clusterfuck.

Which is why you’d want to keep all of that — not just the conversations in which you persuade Russia to ditch Iran as an ally, but also the conversations where you reverse long-standing policy with Israel and America’s embrace of human rights — from the intelligence community.

Because the actual experts, the people who’ve long played a game with our frenemies Israel, Saudi Arabia, and Turkey (and a battle with our adversaries like Russia), would explain all the problems with the plan.

I get why the focus on Russia is important, here.

But what if that focus is preventing us from seeing the vast forest of a horribly realigned American foreign policy for one Russian birch tree?

This post has been updated.

Update: A longtime (but anonymous) friend of the blog sent this humorous interpretation.

Zbigniew Brezezinski passed away today of cancer at the age of 89. My condolences to his family.

I share(d) a birthday with him, and once slept in a room he used during the first cabinet meetings of the Carter Administration. So I’ve always had some curiosity about, if not quite affinity to, him.

Perhaps as a result I’ve always been acutely aware that he is the man who set off the chain of events, 38 years ago, that has led to the war on terror (without even — as he optimistically claimed in 1998 — ending the Cold War). Here’s the 1998 interview where he boasted of the decision.

Q: The former director of the CIA, Robert Gates, stated in his memoirs [“From the Shadows”], that American intelligence services began to aid the Mujahadeen in Afghanistan 6 months before the Soviet intervention. In this period you were the national security adviser to President Carter. You therefore played a role in this affair. Is that correct?

Brzezinski: Yes. According to the official version of history, CIA aid to the Mujahadeen began during 1980, that is to say, after the Soviet army invaded Afghanistan, 24 Dec 1979. But the reality, secretly guarded until now, is completely otherwise: Indeed, it was July 3, 1979 that President Carter signed the first directive for secret aid to the opponents of the pro-Soviet regime in Kabul. And that very day, I wrote a note to the president in which I explained to him that in my opinion this aid was going to induce a Soviet military intervention.

Q: Despite this risk, you were an advocate of this covert action. But perhaps you yourself desired this Soviet entry into war and looked to provoke it?

Brzezinski: It isn’t quite that. We didn’t push the Russians to intervene, but we knowingly increased the probability that they would.

Q: When the Soviets justified their intervention by asserting that they intended to fight against a secret involvement of the United States in Afghanistan, people didn’t believe them. However, there was a basis of truth. You don’t regret anything today?

Brzezinski: Regret what? That secret operation was an excellent idea. It had the effect of drawing the Russians into the Afghan trap and you want me to regret it? The day that the Soviets officially crossed the border, I wrote to President Carter: We now have the opportunity of giving to the USSR its Vietnam war. Indeed, for almost 10 years, Moscow had to carry on a war unsupportable by the government, a conflict that brought about the demoralization and finally the breakup of the Soviet empire.

Q: And neither do you regret having supported the Islamic [integrisme], having given arms and advice to future terrorists?

Brzezinski: What is most important to the history of the world? The Taliban or the collapse of the Soviet empire? Some stirred-up Moslems or the liberation of Central Europe and the end of the cold war?

Of course, while the Cold War may have paused, it’s back in full swing now, and Sunni extremists continue to wreak havoc on targets within and outside of the Middle East.

Zbig’s blowback has officially outlived the man. May we remember the soldiers, of every country, who have died as a result this Memorial Day weekend. Rest in Peace.

Just when I thought we’d have a long weekend without a big news dump, the WaPo published its story revealing Jared Kushner asked Sergey Kislyak to set up a channel of communication with Russia at Russian facilities at a meeting in early December.

Jared Kushner and Russia’s ambassador to Washington discussed the possibility of setting up a secret and secure communications channel between Trump’s transition team and the Kremlin, using Russian diplomatic facilities in an apparent move to shield their pre-inauguration discussions from monitoring, according to U.S. officials briefed on intelligence reports.

Ambassador Sergei Kislyak reported to his superiors in Moscow that Kushner, then President-elect Trump’s son-in-law and confidant, made the proposal during a meeting on Dec. 1 or 2 at Trump Tower, according to intercepts of Russian communications that were reviewed by U.S. officials. Kislyak said Kushner suggested using Russian diplomatic facilities in the United States for the communications.

The meeting also was attended by Michael Flynn, Trump’s first national security adviser.

That story — and additional details on Kushner’s discussions with UAE — is the big headliner.

But the fascinating detail is that WaPo received an anonymous letter with details of this meeting — and other things that the WaPo suggests it may not yet have confirmed — in mid-December.

The Post was first alerted in mid-December to the meeting by an anonymous letter, which said, among other things, that Kushner had talked to Kislyak about setting up the communications channel. This week, officials, who reviewed the letter and spoke on condition of anonymity to discuss sensitive intelligence, said the portion about the secret channel was consistent with their understanding of events.

For instance, according to those officials and the letter, Kushner conveyed to the Russians that he was aware it would be politically sensitive to meet publicly, but it was necessary for the Trump team to be able to continue their communication with Russian government officials.

In addition to their discussion about setting up the communications channel, Kushner, Flynn and Kislyak also talked about arranging a meeting between a representative of Trump and a “Russian contact” in a third country whose name was not identified, according to the anonymous letter.

So who could have sent the letter?

First, consider the timing. The letter was sent within a few weeks of the meeting itself. In between the meeting and sending of the letter, these very same reporters got the scoop that the CIA believed Russia affirmatively wanted Trump elected, a scoop that pre-empted the President’s call for a report on Russian tampering in the election. A week later, two of these reporters got another confirmation that John Brennan said the other agencies agreed with him on the view that Putin wanted Trump elected.

The letter also got received a few days after John McCain got a copy of Christopher Steele’s dossier (reportedly on December 9), followed just four days later by the last known and by far most incendiary installment of the dossier, which for the first time accused Trump’s campaign of paying the DNC hackers.

In other words, WaPo received the letter at a time when the IC was dumping a ton of information implicating Trump. So perhaps it was a spook who heard Kislyak’s description of the meeting on an intercept.

The dominant narrative on those intercepts, however, has said that the IC wasn’t listening closely to Kislyak intercepts until after Russia did not retaliate in response to the hacking sanctions imposed on December 28, and didn’t find the incriminating Mike Flynn conversations until around January 3. If that’s right, then the IC wouldn’t have heard about this meeting until weeks after the letter was sent. [Update: the NYT version of this–which appears to be damage control from the White House–cites a senior American official stating that they learned about this conversation “several months ago,” which would put it after the letter was sent.]

Of course, with the FBI and CIA getting their own raw feeds of data, it’s possible one agency listened to the intercepts (and had the language skills to understand them) before another did. It’s possible, for example, CIA learned about the meeting before FBI did so in the aftermath of the sanctions concerns.

It’s also possible that the Russians sent the letter — or even that Kislyak made up the Kushner claim as disinformation (remember, by this point there were leaks about FISA orders, with reports that Russian interlocutors were changing their communication habits). But it’s unclear what Russia would have to gain by sending a letter in December, rather than waiting until Kushner had compromised himself. Doing so would eliminate all the control they had gained with the information.

Which (barring a spook sending the letter) would seem to leave a Trump associate. Reportedly, WaPo’s Miller said that the letter appears to come from someone inside the Trump transition. Anyone else at the meeting would seem to be an immediate target for Trump retaliation. Though it is possible that Mike Flynn sent the letter, realizing he was getting set up by Trump, which would make the delay in reporting this detail rather interesting. That said, he would have little reason to do so in December, as opposed to now, given that he faces criminal investigation.

Outside of Flynn, though, it’s not clear many people knew this meeting ever happened, much less what happened in it. The meeting was first disclosed by the New Yorker, following which the White House quickly added (in a story to the NYT) Flynn to the story — suggesting he, and not the President’s son-in-law suggested the communication channel.

Michael T. Flynn, then Donald J. Trump’s incoming national security adviser, had a previously undisclosed meeting with the Russian ambassador in December to “establish a line of communication” between the new administration and the Russian government, the White House said on Thursday.

Jared Kushner, Mr. Trump’s son-in-law and now a senior adviser, also participated in the meeting at Trump Tower with Mr. Flynn and Sergey I. Kislyak, the Russian ambassador. But among Mr. Trump’s inner circle, it is Mr. Flynn who appears to have been the main interlocutor with the Russian envoy — the two were in contact during the campaign and the transition, Mr. Kislyak and current and former American officials have said.

[snip]

“They generally discussed the relationship and it made sense to establish a line of communication,” Ms. Hicks said. “Jared has had meetings with many other foreign countries and representatives — as many as two dozen other foreign countries’ leaders and representatives.”

The Trump Tower meeting lasted 20 minutes, and Mr. Kushner has not met since with Mr. Kislyak, Ms. Hicks said.

It later became clear that Kushner hadn’t even shared that meeting with White House staffers (presumably including Don McGahn) when responding the Mike Flynn firing, much less included them on his security clearance form.

The extent of Mr. Kushner’s interactions with Mr. Kislyak caught some senior members of Mr. Trump’s White House team off guard, in part because he did not mention them last month during a debate then consuming the White House: how to handle the disclosures about Mr. Flynn’s interactions with the Russian ambassador.

Ms. Hicks said that Mr. Trump had authorized Mr. Kushner to have meetings with foreign officials that he felt made sense, and to report back to him if those meetings produced anything of note. She said that because in Mr. Kushner’s view the meetings were inconsequential, it did not occur to him to mention them to senior staff members earlier.

“There was nothing to get out in front of on this,” she said.

So there wouldn’t be that many transition staffers who would know of the meeting by mid-December.

That said, one person who knew about the meeting ahead of time was Marshall Billingslea, who tried to warn Flynn about Kislyak. And his request for the Kislyak profile would have alerted the CIA to his concerns about the meeting.

In any case, there are now reports of still more Kushner communications with Kislyak coming out, going back to April 2016. So the FBI sure has a lot to review.

Update: As others have pointed out, at 8:30 there’s a more detailed description of the typed letter, received December 12.