Slashdot Mirror
Judge: US Search Warrants Apply To Overseas Computers
jfruh (300774) writes Investigators in a criminal case want to see some emails stored on Microsoft's servers in Ireland. Microsoft has resisted, on the grounds that U.S. law enforcement doesn't have jurisdiction there, but a New York judge ruled against them, responding to prosecutors' worries that web service providers could just move information around the world to avoid investigation. The case will be appealed.
Going to take a position I know will be unpopular in this thread, but:
The leverage they have is that you're accused of committing a crime within the borders of the US, and evidence you have access to can be demanded under a warrant that covers details related to that crime. Their physical inability to seize it by force(because it's in another jurisdiction) is about as relevant as their inability to unlock your bank safe. Either way they can punish you for not turning over evidence that is covered by the warrant.
If the local branch of Microsoft has access to and control over the servers, they only need to demand the local branch to do so, that doesn't mean they are extended juristiction. If the data could only be accessed from outside the US it would be more interesting.
Unfortunately, no. Jurisdiction for the crime isn't the same as jurisdiction for evidence.
"...responding to prosecutors' worries that web service providers could just move information around the world to avoid *dictatorships suppressing said information*".
Fixed it for ya.
If country X bans something, I happily move somewhere else where it's allowed assuming it was important to me.
Now what if this worked the other way. Some muslim country gets to search people's US computers even if they know they can't store their Porn on their Muslim country computer. Now they can say that storing that data in the USA isn't enough reason to avoid getting thrown in jail.
It's going to be interesting when the Chinese government issues Google a warrant to get data from the US.
Opus: the Swiss army knife of audio codec
Microsoft always sold their cloudservices in the EU with the argument that the data is physically located outside the US so the Patriot Act doesn't apply. Now that this has been proven false, EU-based cloudfirms will use this argument to choose a non-US based firm even more in their commercials than they do already. Good for the non-US based firms.
So would you be in favor of China being able to subpoena any / all of Microsofts records, regardless of where they are stored?
Is there something equivalent to "extradition" laws, but that apply to overseas evidence instead of oversees defendants?
I never fail to find the bravado and hubris underlying American exceptionalism... exceptional.
Land of the free... as long as you're not in one of our many many prisons ( http://nomadcapitalist.com/201... ), which has a higher per capita incarceration rate than Cuba, which is second on the list. Oh, and speaking of Cuba, there's always http://en.wikipedia.org/wiki/G....
Home of the brave... because you'd be pretty brave too if your military budget was larger than the nearest eight other countries combined ( http://pgpf.org/Chart-Archive/... )
Where all men are created equal... except, of course, when they're not ( http://www.pbs.org/newshour/ru... ) and a man can make something from himself even if he starts out life with nothing (but probably not): http://money.cnn.com/2013/12/0... )
And where the rule of law is universal and sacrosanct... except in those cases where it's not convenient ( https://www.globalpolicy.org/u... ) and ( https://www.eff.org/nsa-spying... )
Oh well, enjoy your "freedoms".
yeah, i would. it would be a nice reminder about why not to do business with totalitarian states.
and, yes, i also think that this case is a nice reminder for other countries not to do business with the US for exactly the same reason.
"They were pure niggers." – Noam Chomsky
In other news, judges in North Korea, Iran, Indonesia, Saudi Arabia, the UK and China all declare their rulings (regarding international jurisdiction of their respective nations' laws) to have jurisdiction internationally...
Don't forget that NSA probably has almost everything. They are just trying to make it legal to use them in court by putting up legitimate means of extracting the info.
This is one more reason to make extra sure that companies that you deal with have zero US presence. In fact in many jurisdictions it would be illegal to follow these US laws due local privacy laws. By doing business in the US, any data on individuals that you have, even stored in other jurisdictions is subject to their laws, meaning you'll often have the choice of breaking US law, or breaking the laws of the country you're in.
Much safer to just avoid all dealings with the USA.
As a reader of Slashdot, I know that Microsoft only exists for the sole purpose of spying on behalf of the US government. So I know that this story is pure fiction. I mean whoever made it up didn't even put much effort into good names; Brad Smith? Come on, that's so generic.
is full of crap, which is of course illegal in china. so the CCP can get MS to give them all my incriminating 'speech' because it's saved in the US?
Yeah this is going to be a 'good thing'.
what other foreign laws do you think the US has the right to trample on just because it feels like it?
When you cant win, ad hominem.
Of course, the government should be able to get a warrant for that information. The difference is that the government should go to the foreign government's court system to get said warrant. Issuing a warrant in the US for data stored on a server in Ireland makes as much sense as police from the US demanding to cross the border and search the house of a Canadian because he was suspected of a crime in the US.
My sci-fi novel, Ghost Thief, is now available from Amazon.com.
And how would they enforce their subpoena in this imaginary world where governments you don't ever interact with in any way can somehow affect you personally?
[/american]
Restating the obvious since nineteen aught five.
The current justice system has no respect for boundaries and is willing to strip away what ever rights to privacy they feel they need to bring about their form of justice. While I might not be a fan of Microsoft or Apple or any other company which uses loopholes to evade taxes, I don't want to see privacy violated either. This includes corporate entities like Microsoft.
Place something witty here
A warrant is not something that requires cooperation. It is legal permission for investigators to break-in to a certain place, search for and take listed things. So if this is justified, let them do it!
The warrant should allow particular investigators to break-into whichever servers listed, grep around and download listed items. Done. If they cannot, find 1337r agents. If you need keys, get warrants for physical access to machines.
These "compell" warrants are quite a stretch -- they compell MS to violate EU law, to certify what they turn over, and to never be sure they've fully complied (how could they know they got it all)?
If Microsoft comply, they will be sued by their EU customers and maybe even the EU governments themselves.
There's a reason that jurisdiction applies. You can't be legally required to do something in one country, and then legally required by another country to not do it.
Sorry, US, but if Microsoft comply without getting it right, the EU are likely to fine them into oblivion, and the EU is JUST AS BIG, if not larger, a market as their US market.
Seriously, America, you do not own the world.
A certain paper company used a green energy law that said if you use alternative fuels you can get a tax credit. The paper industry has been burning black liquor since the 1930s and in 2008 figured out they could get the tax credit if they /added/ diesel fuel to their alternative fuel. Congress fixed it within a year. The company did nothing except follow the rules (which are like walking thru a minefield.)
Why can't the U.S. authorities just ask the Irish police for assistance? I mean Ireland isn't exactly a lawless country. Thus, I agree with Microsoft in that U.S. warrants are only binding in U.S. territories.
@junktext
If they aren't in China then it doesn't matter. This is only about business in the USA.
The NSA isn't about prosecution. The FBI, Customs... would care far more.
So I take it if you travel to any other country you have no issue if they get a warrant for your material back here to see if you are violating any of their laws while you are a t home...
When you cant win, ad hominem.
Ah, the American answer-to-everything.... :-)
The parent post was clearly not written by a Canadian, as any good Canadian knows that Tim Horton's does NOT serve poutine. Otherwise though, your post is spot on.
If I can be modded down for being a troll, can I be modded up for being an orc, or a balrog?
What if someone stored child pr0n on overseas servers? You want them to get out of jail because the data is in a different country? Of course not. Where the data is stored should not matter, not in that case or in any other case.
Let me know how that works out when your GF gets beaten/stoned to death for not wearing her burka in public, because it's against the law in some Islamic countries and by your rationale those laws should apply here too, right?
Masterfully crafted after being purchased by lobbyists for the companies. The financial return of lobbying is massive -- more than making cool products people love.
http://papers.ssrn.com/sol3/pa...
That said, I think the nature of the parties in this instance is clouding /.'s judgment. Let's say it was a secure email provider who stored all data offshore, but was a US company. Would /. in general really be so willing to side with the Feds? I doubt it, and I see a lot of potential problems that could hurt real people as a result of this decision surviving appeals.
What changed under Obama? Nothing Good
The Irish police will say "why are you bothering us? Ask an (Irish) judge like you usually do (via MLAT)". It is the judiciary that need to be involved first. Funnily enough that is also what former Irish attorney general and various senior EU officials have said - the correct approach is to use the MLAT, which is there for exactly this purpose. With a warrant from an Irish court the Irish police will be happy to help, should the Irish operators of the Irish data centre need a hand pushing the button in Ireland.
But the US doesn't want to use MLAT, it wants to end-run around it because they run into annoying problems like having to justify their request properly and whether or not their search is a search or a fishing expedition and stuff like whether the Irish user, in Ireland, has actually done anything illegal in Ireland.
Coincidentally,the UK police don't like MLAT process either and have said so in submissions regarding judicial limits of UK RIPA act. They run into annoying things like the US first amendment stopping them getting details of US users posting stuff on US servers that can be read in the UK and is not legal in the UK. If the DOJ succeeds in bypassing the MLAT process with this trick then some UK police forces will be right behind them ( and probably others elsewhere too). At least one of the amicus briefs points that out.
This will open up a big can of worms if it stands, extradition and MLAT treaties are a necessary process to protect both corporations and individuals from conflicting legal jurisdictions. Microsoft is not (just) saying "we can't, it's in Ireland", they are saying "we are not allowed to under the law of the country where the evidence is". Enabling the international rendition of data at the whim of any country's law enforcement doesn't physically extradite anyone, but it could easily end up making international travel a whole lot more interesting and risky. Be careful about exercising your first amendment rights to hate speech if you ever want a European vacation or business trip. Be aware that some EU jurisdictions are actively trying to outlaw anonymity and pseudonymity online...