Constitution Day Lecture You Have No Right to Privacy Anyway. Get Over It!!! Dr. Wayne Summers TSYS School of Computer Science Columbus State University wsummers@columbusstate.edu http://csc.columbusstate.edu/summers
2 9/19/2013 Columbus State University
HEADLINE NEWS “Edward Snowden NSA files: secret surveillance and our revelations so far” “ FISC judge orders review of secret court rulings on NSA phone surveillance ” “ NSA repeatedly ignored court surveillance rules, documents show ” Congress Begins Investigation of NSA Domestic Surveillance Program “EPIC urged the FCC to determine whether Verizon violated the Communications Act when it released consumer call detail information to the National Security Agency “
(more) HEADLINE NEWS “Apple’s Fingerprint ID May Mean You Can’t ‘Take the Fifth’” “IP Cloaking Violates Computer Fraud and Abuse Act, Judge Rules” “Protecting Your Privacy Could Make You the Bad Guy”
OUTLINE Questions Background (U.S. Constitution & Privacy) Intelligence Community and our Privacy Personal Privacy Issues Protecting Personal Privacy Q&A
Questions “Should the gov't be able to monitor everyone's phone calls to prevent possible terrorism?” – “Listen to” everyone’s conversations – “Track” everyone’s phone conversations (pen registers) “Should the gov't be able to monitor everyone's email to prevent possible terrorism?” – “Read” everyone’s email – “Track” everyone’s email
Survey “ Should the gov't be able to monitor everyone's email to prevent possible terrorism?” 52% NO [PEW Research Center - June 6-9, 2013]
After seven weeks of steady media coverage, the percentage of Internet users worried about their online privacy jumped 19 percent , from 48 percent in June (when the story first appeared in The Guardian and Washington Post) to 57 percent in July, according to Annalect, Omnicom Media Group's data and analytics company.
Privacy (Confidentiality) freedom from unauthorized intrusion <one's right to privacy> [Merriam-Webster Dictionary] Limiting who can access your information.
U.S. Constitution & Privacy “The U. S. Constitution contains no express right to privacy. ” Exploring Constitutional Conflicts: http://law2.umkc.edu/faculty/projects/ftrials/c onlaw/rightofprivacy.html
U.S. Constitution & Privacy Amendment I – (Privacy of Beliefs) Amendment III – (Privacy of the Home) Amendment IV – (Privacy of the Person and Possessions) Amendment IX – (General Protection for Privacy)
U.S. Constitution & Privacy Amendment IV The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures , shall not be violated, and no warrants shall issue, but upon probable cause, supported by oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized. Read more: http://content.time.com/time/specials/packages/article/0,28804,2080345_2080344_2 080374,00.html #ixzz2egVR9Bw1 Listen to: http://content.time.com/time/specials/packages/article/0,28804,2080345_2080344_2 080374,00.html
U.S. Constitution & Privacy Amendment IV The right of the people to be secure in their persons , houses, papers, and effects, against unreasonable searches and seizures, shall not be violated, and no warrants shall issue, but upon probable cause , supported by oath or affirmation, and particularly describing the place to be searched , and the persons or things to be seized. Read more: http://content.time.com/time/specials/packages/article/0,28804,2080345_2080344_2 080374,00.html #ixzz2egVR9Bw1 Listen to: http://content.time.com/time/specials/packages/article/0,28804,2080345_2080344_2 080374,00.html
Privacy Regulations Privacy Act of 1974 – “No agency shall disclose any record which is contained in a system of records by any means of communication to any person, or to another agency, except pursuant to a written request by, or with the prior written consent of, the individual to whom the record pertains... “ Foreign Intelligence Surveillance Act of 1978 (or "FISA") - created a warrant procedure for foreign intelligence investigations
Privacy Regulations Computer Fraud and Abuse Act (CFAA) 1986 [ amended 1989, 1994, 1996, in 2001 by the USA PATRIOT Act, 2002, and in 2008 ] – “Whoever… intentionally accesses a computer without authorization or exceeds authorized access, and thereby obtains — …information from any protected computer “ http://www.gsa.gov/portal/content/104250
Privacy Regulations Health Insurance Portability and Accountability Act of 1996 (HIPAA) Family Educational Rights and Privacy Act (FERPA) [Buckley Amendment] of 1974 Financial Modernization Act of 1999["Gramm-Leach- Bliley Act" or GLB Act]: protect consumers’ personal financial information held by financial institutions. Public Company Accounting Reform and Investor Protection Act of 2002 [“Sarbanes - Oxley Act “]: establishes new or enhanced standards for all U.S. public company boards, management, and public accounting firms.
Privacy Regulations Exemptions UNITING and STRENGTHENING AMERICA by PROVIDING APPROPRIATE TOOLS REQUIRED to INTERCEPT and OBSTRUCT TERRORISM (USA PATRIOT ACT) of 2001, Title II ("Enhanced Surveillance Procedures") PATRIOT Sunsets Extension Act of 2011 (4-year extension) – roving wiretaps, – searches of business records ( "library records provision"), – surveillance of “lone wolves” “Department [of Homeland Security] proposes to exempt portions of the system of records from one or more provisions of the Privacy Act because of criminal, civil, and administrative enforcement requirements.” (A Proposed Rule by the Homeland Security Department on 05/16/2013)
What NSA, FBI… can do FISA, and amendments permit warrant for foreign intelligence investigations Supreme Court has held that there is no constitutionally recognized privacy interest in the telephone numbers intercepted by a pen register or trap and trace device USA PATRIOT ACT expanded pen register capacities to the Internet, covering electronic mail, Web surfing, and all other forms of electronic communications.
What NSA, FBI… can do Stored Communications Access Act - stored voice-mail communications, like e-mail, may be obtained by the government through a search warrant rather than through more stringent wiretap orders. Section 218 expands FISA to those situations where foreign intelligence gathering is merely "a significant" purpose of the investigation, rather than, the “sole” or “primary” purpose. Section 206 expands FISA to permit "roving wiretap" authority (allows the interception of any communications made to or by an intelligence target without specifying the particular telephone line, computer or other facility to be monitored.)
What NSA “ can do ” programs PRISM – data collection programs MAINWAY - telephone data-mining program XKeyscore, allows NSA analysts to intercept the contents of e-mail and other online communications. ["has the capacity to reach roughly 75% of all U.S. Internet traffic."] Narus ’ Semantic Traffic Analyzer – 1. Scans metadata – 2. Analyzes selected data
BIG DATA Internet carries 1.826 exabytes of data/day – 1 exabyte = 1 000 000 000 000 000 000 bytes NSA “touches” 1.6% of the data (29.21 petabytes) – 2.77 terabits/sec – 0.025% [7.47 TB] of “touched” data is reviewed daily – 150 XKeyscore worldwide collection points, each keep 3-day buffer (600 terabytes)
Recommend
More recommend
