Slashdot Mirror
Congress Passes Bill Allowing Warrantless Forfeiture of Private Communications
Prune writes Congress has quietly passed an Intelligence Authorization Bill that includes warrantless forfeiture of private communications to local law enforcement. Representative Justin Amash unsuccessfully attempted a late bid to oppose the bill, which passed 325-100. According to Amash, the bill "grants the executive branch virtually unlimited access to the communications of every American."
According to the article, a provision in the bill allows “the acquisition, retention, and dissemination” of Americans’ communications without a court order or subpoena. That type of collection is currently allowed under an executive order that dates back to former President Reagan, but the new stamp of approval from Congress was troubling, Amash said. Limits on the government’s ability to retain information in the provision did not satisfy the Michigan Republican."
... mandatory. Seriously, what is the NSA going to do when the consequences of their arrogance propagate fully through our information culture? Eventually, everything of consequence is going to be held on private servers using private encryption keys that no one has access to but the users. The actual servers that push the information around are going to be shuffling around black boxes.
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
If you do not declare this unconstitutional, immediately and unambiguously, then you have failed The People.
Your credibility is already hanging by a hair.
Prove anything by multiplying Huge Number times Tiny Number
But cloud is great, right? They told me cloud is great!
I have actually met this guy in person, I have nothing against him, but holy shit. Before he actually cared and I would have backed him up 100% opposing this without question. But he seems to have gone for the republican kool aid and somehow wants to blame this on.... the executive branch.
Look man, the executive branch doesn't make laws and the law enforcement agencies that report to it already had this power. This is congress who isn't part of the executive branch passing the law. Don't go in there a decent guy and come out a soulless husk spewing what you hear on Fox News. Don't try to shift blame on that 'Obama' fictional character everyone seems to want to. You're better than that.
Dear Colleague:
The intelligence reauthorization bill, which the House will vote on today, contains a troubling new provision that for the first time statutorily authorizes spying on U.S. citizens without legal process.
Last night, the Senate passed an amended version of the intelligence reauthorization bill with a new Sec. 309—one the House never has considered. Sec. 309 authorizes “the acquisition, retention, and dissemination” of nonpublic communications, including those to and from U.S. persons. The section contemplates that those private communications of Americans, obtained without a court order, may be transferred to domestic law enforcement for criminal investigations.
To be clear, Sec. 309 provides the first statutory authority for the acquisition, retention, and dissemination of U.S. persons’ private communications obtained without legal process such as a court order or a subpoena. The administration currently may conduct such surveillance under a claim of executive authority, such as E.O. 12333. However, Congress never has approved of using executive authority in that way to capture and use Americans’ private telephone records, electronic communications, or cloud data.
Supporters of Sec. 309 claim that the provision actually reins in the executive branch’s power to retain Americans’ private communications. It is true that Sec. 309 includes exceedingly weak limits on the executive’s retention of Americans’ communications. With many exceptions, the provision requires the executive to dispose of Americans’ communications within five years of acquiring them—although, as HPSCI admits, the executive branch already follows procedures along these lines.
In exchange for the data retention requirements that the executive already follows, Sec. 309 provides a novel statutory basis for the executive branch’s capture and use of Americans’ private communications. The Senate inserted the provision into the intelligence reauthorization bill late last night. That is no way for Congress to address the sensitive, private information of our constituents—especially when we are asked to expand our government’s surveillance powers.
I urge you to join me in voting “no” on H.R. 4681, the intelligence reauthorization bill, when it comes before the House today. /s/
Justin Amash
Member of Congress
No pretense they have any respect for the Constitution, due process or the privacy of citizens. There's no doubt everyone will have to take matters into their own hands now. No doubt they'll make that illegal too, at which point only criminals will have any privacy.
The court can't just jump up and say "We don't like that, it goes out." They have to follow procedure which means a challenge has to appear in front of them. That challenge can also only be brought by someone with standing, meaning that this law had a negative impact on you somehow.
That's one of the reasons the government loves the secret gathering so much, makes it harder for it to get challenged. If you can't show this harmed you, then you can't fight it in court.
So someone has to be impacted by this, challenge it, and it has to be appealed up to the SC. Then and only then do they rule on it.
I get to break this out again:
As the Americans learned so painfully in Earth's final century, free flow of information is the only safeguard against tyranny. The once-chained people whose leaders at last lose their grip on information flow will soon burst with freedom and vitality, but the free nation gradually constricting its grip on public discourse has begun its rapid slide into despotism. Beware of he who would deny you access to information, for in his heart he dreams himself your master.
Commissioner Pravin Lal, "U.N. Declaration of Rights"
Accompanies the Secret Project "The Planetary Datalinks"
Obama is just as bad... that doesn't excuse Bush from his errors, and he had many...
But frankly, if Obama doesn't Veto this, then he is the same scum of the Earth and frankly both sides need to be tossed out on their bums...
Voting third party may not bring in "better", but it will at least do SOMETHING different than the Repubs and Dems who are different sides of the same coin...
Thank you for posting the bill number, since neither slashdot nor the hill thought we should be able to look it up and see who voted for this bullshit.
It appears in the Senate it was passed by voice vote by a bunch of cowards that did not want their name attached to the bill.
If I have been able to see further than others, it is because I bought a pair of binoculars.
In other words, the only issue he has with this bill is that it acknowledges an Executive Order is in place. It doesn't even particularly bless it. Nothing is changing other than a slightly-less tacet approval of an order that has been around for decades. It's not a terribly long bill, check it out yourself
Unfortunately, I suspect that anyone who is not a geek or privacy advocate still believes it.
Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
Anyone who is a geek and/or privacy advocate never believed it.
The NSA: "Made in China"... Full communist cultural adoption... Next: Human sterilization lotteries...
Good thing geeks are responsible for building the entire information backbone.
Look, decoding things client side isn't expensive. It isn't a big deal. All you have to do is retrain a copy of the decryption engine and key client side. Which means if you're running a large company network that hosts all company files on data centers in the "cloud" then all the IT guy has to do is maintain ONE tiny server client side that serves those two things to the clients. Which they download as part of their login script... etc etc etc.
It isn't hard. And when that is in place... assuming the NSA has total control over the data center that is the cloud... what exactly do they have? Jack and shit.
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
When everything you say or do is recorded by the authorities, do you really want to be part of that world?
- Zav - Imagine a Beowulf cluster of insensitive clods...
So they can't settle on a decent healthcare system for us, but when it comes to spying on us... push it right through!
Wrists killing you? Not in 2 weeks. Learn Dvorak.
I hope that most of the congress voted in favor of this out of ignorance. It appears to have passed through both the house and senate under the guise of a routine reauthorization of existing process.
My hope is that the statutory authorization of warrantless wiretapping was surreptitiously added in the hope that no one would notice. Much like the banking giveaway, the massive increase in individual campaign donations, and the de-legalization of marijuana in DC have been added to the big spending bill. I swear, it's like the election passed and these guys think it's time to celebrate the voters' exhaustion by sneaking in every possible trick while they can still blame it on "the other guys."
My hope is that there are a lot of incompetent congresspeople and only a few bad ones in there trolling, and it saddens me that this is the best I can hope of my government. I hope they're incompetent, because the alternative is sickening.
Thanks for providing this, AC. I don't know what Mr. Amash is talking about. Section 309 doesn't grant any blessing of Executive Order 12333, or any other mechanism of collection. It just states that if any collection takes place without a court order, then it must be disposed of within 5 years with a few very-specific exceptions. The sky is not falling people. Do your research before you freak out based on alarmist stuff like this.
Not if you're standing under it and it rains down in torrents.
Arg, link fail. I intended to link to the text of H.R. 4681 so you can read section 309 yourself.
https://www.govtrack.us/congre...
If your congressman voted YEA and you don't agree, write to him/her.
They are representing you.
A law giving the NSA authority to intercept all communications means that your corporate crypto server will be copied, giving them all your keys so they can decrypt everything. If you want security it must be done entirely at the client side, with only the client having the keys. Any central crypto means they get everything. Also you should assume Microsoft and Google are working for the NSA, so they can patch your OS to copy your client side keys to the NSA if required.
You missed everything I said about keeping the keys and decryption engine private... didn't you? Read that again and then comment please... you'll sound less stupid.
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
Ban the fucking voice vote, goddammit. It's only a rule of the Senate that allows it. The term does not occur in the Constitution.
Fuck the government
We really do have to throw them all out...
deleting the extra space after periods so i can stay relevant, yeah.
You missed everything I said about keeping the keys and decryption engine private
With NSA and all the spooks being given the blank check in snooping into every nook and cranny everywhere where do you think you gonna keep your files private ?
How long you think your files can be safely kept private?
The problem with the American government - no, not just the POTUS, not just the NSA, not just the Congress, not just the Court System, it's everything - is that it is turning into a totally uncontrollable monster, and it is getting uglier by the day
Muchas Gracias, Señor Edward Snowden !
What part of
The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated, and no warrants shall issue, but upon probable cause, supported by oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized.
does Congress not understand?
General Relativity: Space-time tells matter where to go; Matter tells space-time what shape to be.
But cloud is great, right? They told me cloud is great!
Yes, cloud is great as a convenience for you.
It is also great as a convenience for NSA and other agencies. The text of the bill allows that anything that was encrypted can be kept indefinitely. If your web site says HTTPS then it is fair game for permanent governmental storage.
Also, they can retain it forever for a number of reasons:
From the bill now on its way to the President's desk: "(3)(B) A covered communication shall not be retained in excess of 5 years unless ... (ii) the communication is reasonably believed to constitute evidence of a crime ... (iii) the communication is enciphered or reasonably believed to have a secret meaning; (iv) all parties to the communication are reasonably believed to be non-United States persons;"
#2 should be troubling. Does your communication (which is not limited to just email, but also includes web pages and any other data) have any evidence of a crime? Evidence that you downloaded a movie or software from a warez site, or looked at porn as a minor, or violated any of the policy-made-crimes that even the federal government has declared they are not countable? With an estimate of over 300,000 'regulations-turned-crime', plus laws that incorporate foreign laws (the Lacey Act's criminalization of anything done "in violation of State or foreign law"), pretty much anything you do probably violates some law somewhere in the world. Better preserve it just in case somebody eventually wants to prosecute you for that crime someday.
#3 refers back to a vague definition of "enciphered" that does not just mean encryption. The "secret meaning" could be as simple as data inside a protocol, Who is to say that the seemingly random bytes "d6 0d 9a 5f 26 71 dd a7 04 31..." used as part of a data stream are really not an encrypted message? Better record it just in case.
And of course #4, the law has a careful wording about communications between "non-United States persons". Considering the "internet of things", all those devices talking to other devices are not communications between United States persons. It was your camera (a non-United States person) communicating with a data warehouse (a non-United States person), so better exempt that from the 5-year retention policy as well.
//TODO: Think of witty sig statement
How are they going to copy information that isn't flowing over the lines?
Simple. They patch your OS with a rootkit. They can make information flow over the lines, so long as it isn't airgapped. And an airgap is only so useful, as stuxnet shows.
My read of #3:
"Hi Mom, I baked a couple of really good pans of cornbread with the cornmeal you sent me" just might be code for "Hi Muhammad, received the PCX and both bombs are now ready". You can never be sure, right?
Il n'y a pas de Planet B.
But fuck these assholes. Fuck all of them; every one of them who voted for this shit. Fuck them regardless of their party or their stances on other issues, or their charity work, or their stupid kids, or their veteran status. Fuck 'em. Burn in Hell you pieces of shit.
-- "Government is the great fiction through which everybody endeavors to live at the expense of everybody else."
Just shows what a POS Obama is as well, coming out and speaking as though he was concerned by surveillance, only to have this try to slip by.
Panderer in Chief.
"If any question why we died, Tell them because our fathers lied."
So you too have reading comprehension issues? Listen, idiots... I have no problem with people disagreeing with me. Disagree all day and I'll be just fine with it. But fail to read my post and then respond to your illiterate interpretation of my posts and I'm going to call you on your illiteracy.
Take you for example. You are apparently under the impression that I "flew off the handle" because someone disagreed with me. Which is clearly idiotic since it is quite clear that I flew off the handle because the moron commenting on me didn't actually read my post at even a grade school level.
If you are literally at the level of "run spot run" then please do the internet a favor and do not comment.
Welcome to the internet.
http://heeereswilly.ytmnd.com/
Good day, sir.
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.
Which means you're assuming they're going to passively hack every computer in the US and keep it a secret from all the people fiendishly looking for it. Good luck with that plan. The discrepancy between what the computer should be doing and what it is doing will be noticed. When it contacts IP addresses that it shouldn't, it will be noticed... etc. There is no way they'd get away with that for any extended period of time. Which means it would be all over the media and the only people that would allow the hack to stay in place would be people so clueless they don't even read newspapers.
Utterly impossible to sustain... just no.
I've decided to stop wasting my time responding to AC trolls/sockpuppets... so if you want a response from me... login.