NSA Still Has No Idea How Many Documents Snowden Took… But Insists We Can Trust Them Because They Audit Everything

from the there's-a-disconnect-there dept

In the ongoing saga over the NSA’s snooping on just about everyone, the one message the NSA and its defenders keep going back to is this idea that we need to “trust” them. And they insist that the trust is fine because everything they do is carefully monitored and audited. In John Oliver’s recent interview with former NSA boss, General Keith Alexander, Alexander insisted that this kind of tracking and auditing was fool-proof, claiming that it had caught the twelve people who had abused their authority to spy on specific individuals. Except that Alexander was flat out lying there. First of all, internal investigations have shown thousands of abuses, not just twelve. As for the twelve that Alexander is talking about, when we looked through the details, it became clear that only three of the twelve were caught because of audits. And many were only caught because the guilty party later confessed — sometimes many years later.

In other words, all this talk of how we should “trust” the NSA because its audits are so good… don’t pass the basic laugh test. Yes, twelve people were caught, but nine of them were caught because they confessed themselves or others turned them in. Your guess is as good as mine about how many others abused the system without getting caught at all. Alexander insists that number is zero, but he has no way to know that.

Meanwhile, every time the NSA talks about how wonderful its auditing system is, it seems worthwhile to remind them that Edward Snowden walked out the door with a bunch of documents and no one noticed. At all. As we’ve been pointing out for months, that should call into question just how good those “audits” are.

And, to make this point even clearer: nearly a year after Snowden walked out the door with all of those documents, the NSA still has no idea what he took. As Glenn Greenwald points out, Alexander is still saying the NSA has no idea how much Snowden took:

AFR: Can you now quantify the number of documents [Snowden] stole?

Gen. Alexander: Well, I don’t think anybody really knows what he actually took with him, because the way he did it, we don’t have an accurate way of counting. What we do have an accurate way of counting is what he touched, what he may have downloaded, and that was more than a million documents.

In fact, the NSA keeps changing its story on how many documents. Early on, Greenwald had suggested it was in the 60,000 to 70,000 range. Just a few days ago, Ewan MacAskill, the often-overlooked Guardian reporter who was with Greenwald and Laura Poitras when they first met Snowden, told a conference that Snowden had 60,000 documents. Yet, by November, the NSA was claiming it was over 200,000 documents. And in December it suddenly jumped to 1.5 million, and then days later, 1.7 million — based on the assumption, as Alexander admits above, that Snowden took everything he “touched.”

But just that very admission highlights that the auditing system the NSA keeps insisting we should trust is completely broken. As we’ve noted, if the NSA can’t tell how its own systems are being used, then it has no idea how they’re being abused. Even worse, the NSA has no idea if other people with powers similar to Snowden may have taken other documents and given them to those who actually mean to do us harm, rather than reporters looking to serve the public interest.

In admitting that the NSA has no way of knowing what Snowden did, Alexander is admitting that all this talk of the infallible audit system is all smoke and mirrors. And, because of that, the claims that we can trust the NSA not to abuse its systems are equally untrustworthy.

Filed Under: , , , ,

Rate this comment as insightful
Rate this comment as funny
You have rated this comment as insightful
You have rated this comment as funny
Flag this comment as abusive/trolling/spam
You have flagged this comment
The first word has already been claimed
The last word has already been claimed
Insightful Lightbulb icon Funny Laughing icon Abusive/trolling/spam Flag icon Insightful badge Lightbulb icon Funny badge Laughing icon Comments icon

Comments on “NSA Still Has No Idea How Many Documents Snowden Took… But Insists We Can Trust Them Because They Audit Everything”

Subscribe: RSS Leave a comment
That One Guy (profile) says:

Re: Beyond trust

Actually it’s still rather important to pay attention to what they’re claiming, as, given they all seem to be pathological liars, if you read it correctly you can get a decent idea as to what they’re actually doing, based upon what they say and how they say it.

For example:

Q: “Are you scooping up data from the american public?’
A: “We are not. Not under this program.”

Or alternatively…

A: “We are not. Not that I’m aware of, no.”
(If a low ranking grunt from the agency said something like this, it would be plausible. If a higher up in the agency says something like this though, the only ‘plausible’ is ‘plausible deniability’)

Read between the lines and you get…

Q: “Are you scooping up data from the american public?”
A: “Absolutely.”

Anonymous Coward says:

So far the only one we know for sure is lying, is the government and the NSA. I am yet to hear one thing that the Snowden releases have said to be proven not to be the facts.

The record speaks for itself and if it weren’t so troubling no one would be hearing anything from the NSA. The fact they are lying at all while making public announcements says they know they screwed up and cover up is called for.

This is why the public and the world doesn’t trust the NSA and why they have what they would like to call a perception problem with the public.

Anonymous Coward says:

It’s hard to trust someone who spies on those who have nothing to do with terrorism. Just ask Angela Merkel.

The counter argument to what I just said, is that she’s the leader of a foreign country. Therefore spying on her relates to national security.

Except, I thought Germany is a close friend and ally to the United States. Spying on friends isn’t proper behavior, and suggests distrust by the NSA’s behalf.

If the NSA can’t even trust their own allies and friends, then isn’t it hypocritical for the NSA to be asking for trust in return?

The simple fact is anything can be spun into a national security issue. Which means the NSA can spy on anyone. That’s why I’ll never trust them.

John Fenderson (profile) says:

Re: Re: Where's the logs?

Not all the logs. Logs that may be used for investigating security breaches should be replicated on a different server that is not accessible to anyone but a specially designated investigator. If the NSA failed to do this, then that just makes their failure even worse.

Also, being a system administrator should not give you access to unencrypted sensitive data in any company, and especially not a spy agency. The security failure on that count is absolutely mind boggling.

Chronno S. Trigger (profile) says:

Re: Where's the logs?

Those exact logs are what Alexander is referencing. The logs kept track of every single transaction Snowden made. Each and every file that Snowden opened was logged. However, the system is missing any information on the difference between opened and copied. If you’re just looking at transactions, copied and opened look exactly the same; the file’s bits are being transferred to another computer.

That’s why Alexander is saying he could have taking over a million. Snowden touched lots of files, but they have no way to tell which ones were copied and which ones were only opened. Granted, them changing the numbers suggests that they don’t even have those logs. They probably don’t have much of anything.

These people cannot be trusted to do the job their suppose to do, let alone spy on each and every person they can.

Add Your Comment

Your email address will not be published.

Have a Techdirt Account? Sign in now. Want one? Register here

Comment Options:

Make this the or (get credits or sign in to see balance) what's this?

What's this?

Techdirt community members with Techdirt Credits can spotlight a comment as either the "First Word" or "Last Word" on a particular comment thread. Credits can be purchased at the Techdirt Insider Shop »

Follow Techdirt

Techdirt Daily Newsletter

Techdirt Deals
Techdirt Insider Discord
The latest chatter on the Techdirt Insider Discord channel...