[go: nahoru, domu]
Jump to content

National Security Agency

From Wikipedia, the free encyclopedia

This is an old revision of this page, as edited by ConcernedVancouverite (talk | contribs) at 15:45, 16 October 2013 (→‎Mass surveillance disclosures: remove copyvio from http://www.theverge.com/2013/9/30/4787592/apple-google-microsoft-and-others-back-nsa-and-fbi-transparency-bills). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

"NSA" redirects here. For other uses, see NSA (disambiguation).

National Security Agency
— NSA —
Seal of the National Security Agency
Flag of the National Security Agency
Agency overview
FormedNovember 4, 1952; 71 years ago (1952-11-04)
Preceding agency
HeadquartersFort Meade, Maryland, U.S.A.
39°6′32″N 76°46′17″W / 39.10889°N 76.77139°W / 39.10889; -76.77139
EmployeesClassified (30,000-40,000 estimate)[1][2][3][4]
Annual budgetClassified ($10.8 billion, as of 2013)[5][6]
Agency executives
Parent agencyUnited States Department of Defense
Websitewww.nsa.gov

The National Security Agency (NSA) is the main producer and manager of signals intelligence for the United States. Estimated to be one of the largest of U.S. intelligence organizations in terms of personnel and budget,[5][7] the NSA operates under the jurisdiction of the Department of Defense and reports to the Director of National Intelligence.

The NSA is tasked with the global monitoring, collection, decoding, translation and analysis of information and data for foreign intelligence and counterintelligence purposes, including surveillance of targeted individuals on U.S. soil. The agency is authorized to accomplish its mission through clandestine means,[8] among which is bugging electronic systems[9] and allegedly engaging in sabotage through subversive software.[10][11] The NSA is also responsible for the protection of U.S. government communications and information systems,[12] As part of the growing practice of mass surveillance in the United States, the NSA collects and stores all phone records of all American citizens.[13]

Unlike the Defense Intelligence Agency (DIA) and the Central Intelligence Agency (CIA), both of which specialize primarily in foreign human espionage, the NSA has no authority to conduct human-source intelligence gathering, although it is often portrayed so in popular culture. Instead, the NSA is entrusted with coordination and deconfliction of SIGINT components of otherwise non-SIGINT government organizations, which are prevented by law from engaging in such activities without the approval of the NSA via the Defense Secretary.[14]

As part of these streamlining responsibilities, the agency has a co-located organization called the Central Security Service (CSS), which was created to facilitate cooperation between NSA and other U.S. military cryptanalysis components. Additionally, the NSA Director simultaneously serves as the Commander of the United States Cyber Command and as Chief of the Central Security Service.

History

The predecessor of the National Security Agency was the Armed Forces Security Agency (AFSA), created on May 20, 1949.[15] This organization was originally established within the U.S. Department of Defense under the command of the Joint Chiefs of Staff.[15] The AFSA was to direct Department of Defense communications and electronic intelligence activities, except those of U.S. military intelligence units.[15] AFSA failed to achieve a centralized communications intelligence mechanism, and failed to coordinate with civilian agencies that shared its interests (the Department of State, CIA, and FBI).[15]

In December 1951, President Harry S. Truman ordered a study to correct AFSA's failures. Six months later, the four members finished and issued the Brownell Report, which criticized AFSA, strengthened it and resulted in its redesignation as the National Security Agency.[16] The agency was formally established by Truman in a memorandum of October 24, 1952, that revised National Security Council Intelligence Directive (NSCID) 9.[17] Truman's memo was later declassified.[17]

Insignia

The heraldic insignia of NSA consists of an eagle inside a circle, grasping a key in its talons.[18] The eagle represents the agency's national mission.[18] Its breast features a shield with bands of red and white, taken from the Great Seal of the United States and representing Congress.[18] The key is taken from the emblem of Saint Peter and represents security.[18]

When the NSA was created, the agency had no emblem and used that of the Department of Defense.[19] The agency adopted its first of two emblems in 1963.[19] The current NSA insignia has been in use since 1965, when then-Director, LTG Marshall S. Carter (USA) ordered the creation of a device to represent the agency.[20]

Memorials

National Cryptologic Memorial

Crews associated with NSA missions have been involved in a number of dangerous and deadly situations.[21] The USS Liberty incident in 1967 and USS Pueblo incident in 1968 are examples of the losses endured during the Cold War.[21]

The National Security Agency/Central Security Service Cryptologic Memorial honors and remembers the fallen personnel, both military and civilian, of these intelligence missions.[22] It is made of black granite, and has 171 names (as of 2013) carved into it.[22] It is located at NSA headquarters. A tradition of declassifying the stories of the fallen was begun in 2001.[22]

In 1999, NSA founded the NSA Hall of Honor, a memorial at the National Cryptologic Museum in Fort Meade, Maryland.[23] The memorial is a "tribute to the pioneers and heroes who have made significant and long-lasting contributions to American cryptology".[23] NSA employees must be retired for more than fifteen years to qualify for the memorial.[23]

Mass surveillance disclosures

Main article: 2013 mass surveillance disclosures

Beginning in June 2013 numerous disclosures were made to the media revealing the massive extent of the NSA's spying, both foreign and domestic. Most of these were leaked by an ex-contractor, Edward Snowden. It was revealed that the NSA intercepts telephone and internet communications of over a billion people worldwide, seeking information on terrorism as well as foreign politics, economics[24] and "commercial secrets".[25] The NSA has also spied extensively on numerous European, South American and Asian governments as well as the European Union and the United Nations.[26][27]

The NSA reportedly has access to all communications made via Google, Microsoft, Facebook, Yahoo, YouTube, AOL, Skype, Apple and Paltalk,[28] and collects hundreds of millions of contact lists from personal email and instant messaging accounts each year.[29] It has also managed to weaken much of the encryption used on the Internet (by collaborating with, coercing or otherwise infiltrating numerous technology companies), so that the majority of Internet privacy is now vulnerable to the NSA and other attackers.[30][31]

Domestically, The NSA collects metadata on the phone calls of over 120 million US Verizon subscribers[32] as well as internet communications,[28] relying on a secret interpretation of the Patriot Act whereby the entirety of US communications may be considered "relevant" to a terrorism investigation if it is expected that even a tiny minority may relate to terrorism.[33] The NSA supplies domestic intercepts to the DEA, IRS and other law enforcement agencies, who use these to intitiate criminal investigations against US citizens. Federal agents are then instructed to "recreate" the investigative trail in order to "cover up" where the information originated.[34]

Despite President Obama's claims that these programs have congressional oversight, Members of Congress were unaware of the existence of these NSA programs or the secret interpretation of the Patriot Act, and have consistently been denied access to basic information about them.[35] Obama has also claimed that there are legal checks in place to prevent inappropriate access of data and that there have been no examples of abuse;[36] however, the secret FISC court charged with regulating the NSA's activities is, according to its chief judge, incapable of investigating or verifying how often the NSA breaks even its own secret rules.[37] It has since been reported that the NSA violated its own rules on data access thousands of times a year, many of these violations involving large-scale data interceptions;[38] and that NSA officers have even used data intercepts to spy on love interests.[39] A March 2009 opinion of the FISC court, released by court order, states that protocols restricting data queries had been "so frequently and systemically violated that it can be fairly said that this critical element of the overall ... regime has never functioned effectively."[40][41] Email contact lists (including those of US citizens) are collected at numerous foreign locations to work around the illegality of doing so on US soil.[29]

Numerous conflicting stories have been put forward by the Obama administration in response to new revelations in the media.[36] On March 20, 2013 the Director of National Intelligence, Admiral James Clapper testified before Congress that the NSA doesn't wittingly collect any kind of data on millions or hundreds of millions of Americans, but he retracted this in June after details of the PRISM program were published, and stated instead that meta-data of phone and internet traffic are collected, but no actual message contents.[42] This was corroborated by NSA Director, General Keith Alexander, before it was revealed that the XKeyscore program collects the contents of millions of emails from US citizens without warrant, as well as "nearly everything a user does on the Internet". Alexander later admitted that "content" is collected, but stated that it is simply stored and never analyzed or searched unless there is "a nexus to al-Qaida or other terrorist groups".[36]

Regarding the necessity of these NSA programs, Gen. Alexander stated on June 27 that the NSA's bulk phone and Internet intercepts had been instrumental in preventing 54 terrorist "events", including 13 in the US, and in all but one of these cases had provided the initial tip to "unravel the threat stream".[43] On July 31 NSA Deputy Director John Inglis conceded to the Senate that these intercepts had not been vital in stopping any terrorist attacks, but were "close" to vital in identifying and convicting four San Diego men for sending US$8,930 to Al-Shabaab, a militia that conducts terrorism in Somalia.[44][45][46]

The US government has aggressively sought to dismiss and challenge Fourth Amendment cases raised against it, and has granted retroactive immunity to ISPs and telecoms participating in domestic surveillance.[47][48]

Facilities

Headquarters

Headquarters for the National Security Agency is located at 39°6′32″N 76°46′17″W / 39.10889°N 76.77139°W / 39.10889; -76.77139 in Fort George G. Meade, Maryland, although it is separate from other compounds and agencies that are based within this same military installation. Ft. Meade is about 20 mi (32 km) southwest of Baltimore,[49] and 25 mi (40 km) northeast of Washington, DC.[50] The NSA has its own exit off Maryland Route 295 South labeled "NSA Employees Only".[51][52] The exit may only be used by people with the proper clearances, and security vehicles parked along the road guard the entrance.[53] NSA is the largest employer in the U.S. state of Maryland, and two-thirds of its personnel work at Ft. Meade.[54] Built on 350 acres (140 ha; 0.55 sq mi)[55] of Ft. Meade's 5,000 acres (2,000 ha; 7.8 sq mi),[56] the site has 1,300 buildings and an estimated 18,000 parking spaces.[50][57]

The main NSA headquarters and operations building is what James Bamford, author of Body of Secrets: Anatomy of the Ultra-Secret National Security Agency, describes as "a modern boxy structure" that appears similar to "any stylish office building."[58] The building is covered with one-way dark glass, which is lined with copper shielding in order to prevent espionage by trapping in signals and sounds.[58] It contains 3,000,000 square feet (280,000 m2), or more than 68 acres (28 ha), of floor space; Bamford said that the U.S. Capitol "could easily fit inside it four times over."[58]

The facility has over 100 watchposts,[59] one of them being the visitor control center, a two-story area that serves as the entrance.[58] At the entrance, a white pentagonal structure,[60] visitor badges are issued to visitors and security clearances of employees are checked.[61] The visitor center includes a painting of the NSA seal.[60] The OPS2A building, the tallest building in the NSA complex and the location of much of the agency's operations directorate, is accessible from the visitor center. Bamford described it as a "dark glass Rubik's Cube".[62] The facility's "red corridor" houses non-security operations such as concessions and the drug store. The name refers to the "red badge" which is worn by someone without a security clearance. The NSA headquarters includes a cafeteria, a credit union, ticket counters for airlines and entertainment, a barbershop, and a bank.[60] NSA headquarters has its own post office, fire department, and police force.[63][64][65]

The employees at the NSA headquarters reside in various places in the Baltimore-Washington area, including Annapolis, Baltimore, and Columbia in Maryland and the District of Columbia, including the Georgetown community.[66]

Power consumption

Due to massive amounts of data processing, NSA is the largest electricity consumer in Maryland.[54]

Following a major power outage in 2000, in 2003 and in follow-ups through 2007, The Baltimore Sun reported that the NSA was at risk of electrical overload because of insufficient internal electrical infrastructure at Fort Meade to support the amount of equipment being installed. This problem was apparently recognized in the 1990s but not made a priority, and "now the agency's ability to keep its operations going is threatened."[67]

Baltimore Gas & Electric (BGE, now Constellation Energy) provided NSA with 65 to 75 megawatts at Ft. Meade in 2007, and expected that an increase of 10 to 15 megawatts would be needed later that year.[68] In 2011, NSA at Ft. Meade was Maryland's largest consumer of power.[54] In 2007, as BGE's largest customer, NSA bought as much electricity as Annapolis, the capital city of Maryland.[67]

One estimate put the potential for power consumption by the new Utah Data Center at $40 million per year.[69]

History of headquarters

Headquarters at Fort Meade circa 1950s

When the agency was established, its headquarters and cryptographic center were in the Naval Security Station in Washington, D.C.. The COMINT functions were located in Arlington Hall in Northern Virginia, which served as the headquarters of the U.S. Army's cryptographic operations.[70] Because the Soviet Union had detonated a nuclear bomb and because the facilities were crowded, the federal government wanted to move several agencies, including the AFSA/NSA. A planning committee considered Fort Knox, but Fort Meade, Maryland, was ultimately chosen as NSA headquarters because it was far enough away from Washington, D.C. in case of a nuclear strike and was close enough so its employees would not have to move their families.[71]

Construction of additional buildings began after the agency occupied buildings at Ft. Meade in the late 1950s, which they soon outgrew.[71] In 1963 the new headquarters building, nine stories tall, opened. NSA workers referred to the building as the "Headquarters Building" and since the NSA management occupied the top floor, workers used "Ninth Floor" to refer to their leaders.[72] COMSEC remained in Washington, D.C., until its new building was completed in 1968.[71] In September 1986, the Operations 2A and 2B buildings, both copper-shielded to prevent eavesdropping, opened with a dedication by President Ronald Reagan.[73] The four NSA buildings became known as the "Big Four."[73] The NSA director moved to 2B when it opened.[73]

Computing

In 1995, The Baltimore Sun reported that the NSA is the owner of the single largest group of supercomputers.[74]

NSA held a groundbreaking ceremony at Ft. Meade in May 2013 for its High Performance Computing Center 2, expected to open in 2016.[75] Called Site M, the center has a 150 megawatt power substation, 14 administrative buildings and 10 parking garages.[63] It cost $3.2 billion and covers 227 acres (92 ha; 0.355 sq mi).[63] The center is 1,800,000 square feet (17 ha; 0.065 sq mi)[63] and initially uses 60 megawatts of electricity.[76]

Increments II and III are expected to be completed by 2030, and would quadruple the space, covering 5,800,000 square feet (54 ha; 0.21 sq mi) with 60 buildings and 40 parking garages.[63] Defense contractors are also establishing or expanding cybersecurity facilities near the NSA and around the Washington metropolitan area.[63]

Other U.S. facilities

Buckley Air Force Base in Colorado

As of 2012, NSA collected intelligence from four geostationary satellites.[69] Satellite receivers were at Roaring Creek station in Catawissa, Pennsylvania and Salt Creek in Arbuckle, California.[69] It operated ten to twenty taps on U.S. telecom switches. NSA had installations in several U.S. states and from them observed intercepts from Europe, the Middle East, North Africa, Latin America, and Asia.[69]

NSA had facilities at Friendship Annex (FANX) in Linthicum, Maryland, which is a 20 to 25-minute drive from Ft. Meade;[77] the Aerospace Data Facility at Buckley Air Force Base in Aurora outside Denver, Colorado; NSA Texas in the Texas Cryptology Center at Lackland Air Force Base in San Antonio, Texas; NSA Georgia at Fort Gordon in Augusta, Georgia; NSA Hawaii in Honolulu; the Multiprogram Research Facility in Oak Ridge, Tennessee, and elsewhere.[66][69]

On January 6, 2011 a groundbreaking ceremony was held to begin construction on NSA's first Comprehensive National Cyber-security Initiative (CNCI) Data Center, known as the "Utah Data Center" for short. The $1.5B data center is being built at Camp Williams, Utah, located 25 miles (40 km) south of Salt Lake City, and will help support the agency's National Cyber-security Initiative.[78] It is expected to be operational by September 2013.[69]

In 2009, to protect its assets and to access more electricity, NSA sought to decentralize and expand its existing facilities in Ft. Meade and Menwith Hill,[79] the latter expansion expected to be completed by 2015.[80]

The Yakima Herald-Republic cited Bamford, saying that many of NSA's bases for its Echelon program were a legacy system, using outdated, 1990s technology.[81] In 2004, NSA closed its operations at Bad Aibling Station (Field Station 81) in Bad Aibling, Germany.[82] In 2012, NSA began to move some of its operations at Yakima Research Station, Yakima Training Center, in Washington state to Colorado, planning to leave Yakima closed.[83] As of 2013, NSA also intended to close operations at Sugar Grove, West Virginia.[81]

RAF Menwith Hill has the largest NSA presence in the United Kingdom.[80]

International stations

Following the signing in 1946–1956[84] of the UKUSA Agreement between the United States, United Kingdom, Canada, Australia and New Zealand, who then cooperated on signals intelligence and Echelon,[85] NSA stations were built at GCHQ Bude in Morwenstow, United Kingdom; Geraldton, Pine Gap and Shoal Bay, Australia; Leitrim and Ottawa, Canada; Misawa, Japan; and Waihopai and Tangimoana,[86] New Zealand.[87]

NSA operates RAF Menwith Hill in North Yorkshire, United Kingdom, which was, according to BBC News in 2007, the largest electronic monitoring station in the world.[88] Planned in 1954, and opened in 1960, the base covered 562 acres (227 ha; 0.878 sq mi) as of 1999.[89]

The agency's European Cryptologic Center (ECC), with 240 employees in 2011, is headquartered at a US military compound in Griesheim, near Frankfurt in Germany. A 2011 NSA report indicates that the ECC is responsible for the "largest analysis and productivity in Europe" and focusses on various priorities, including Africa, Europe, the Middle East and counterterrorism operations.[90]

In 2013, a new Consolidated Intelligence Center, also to be used by NSA, is being built at the headquarters of the United States Army Europe in Wiesbaden, Germany.[91] NSA's partnership with Bundesnachrichtendienst (BND), the German foreign intelligence service, was confirmed by BND president Gerhard Schindler.[91]

Organizational Structure

The NSA is led by the Director of the National Security Agency (DIRNSA), who also serves as Chief of the Central Security Service (CHCSS) and Commander of the United States Cyber Command (USCYBERCOM) and is the highest-ranking military official of these organizations. He is assisted by a Deputy Director, who is the highest-ranking civilian within the NSA/CSS.

NSA also has an Inspector General, head of the Office of the Inspector General (OIG), a General Counsel, head of the Office of the General Counsel (OGC) and a Director of Compliance, who is head of the Office of the Director of Compliance (ODOC).[92]

Unlike other intelligence organizations such as CIA or DIA, NSA has always been particularly reticent concerning its internal organizational structure.

As of the mid-1990s, the National Security Agency was organized into five Directorates:

  • The Operations Directorate, which was responsible for SIGINT collection and processing.
  • The Technology and Systems Directorate, which develops new technologies for SIGINT collection and processing.
  • The Information Systems Security Directorate, which was responsible for NSA's communications and information security missions.
  • The Plans, Policy and Programs Directorate, which provided staff support and general direction for the Agency.
  • The Support Services Directorate, which provided logistical and administrative support activities.[93]

Each of these directorates consisted of several groups or elements, designated by a letter. There were for example the A Group, which was responsible for all SIGINT operations against the Soviet Union and Eastern Europe, and G Group, which was responsible for SIGINT related to all non-communist countries. These groups were divided in units designated by an additional number, like unit A5 for breaking Soviet codes, and G6, being the office for the Middle East, North Africa, Cuba, Central and South America.[94]

Current Structure

Currently, NSA has about a dozen directorates, which are designated by a letter, allthough not all of them are known. The directorates are divided in divisions and units, which have a designation which starts with the letter of the parent directorate, followed by a number for the division, the sub-unit or a sub-sub-unit. New information about NSA units was revealed in top secret documents leaked by Edward Snowden since June 2013.

The main elements of the current organizational structure of the NSA are:[95]

  • F - Directorate only known from unit F6, the Special Collection Service (SCS), which is a joint program created by CIA and NSA in 1978 to facilitate clandestine activities such as bugging computers throughout the world, using the expertise of both agencies.[96]
  • G - Directorate only known from unit G112, the office that manages the Senior Span platform, attached to the U2 spy planes.[97]
  • I - Information Assurance Directorate (IAD), which ensures the availability, integrity, authentication, confidentiality, and non-repudiation of national security and telecommunications and information systems (national security systems).
  • J - Directorate only known from unit J2, the Cryptologic Intelligence Unit
  • L - Installation and Logistics
  • M - Human Resources
  • Q - Security and Counterintelligence
  • R - Research Directorate, which conducts research on signals intelligence and on information assurance for the U.S. Government.[98]
  • S - Signals Intelligence Directorate (SID), which is responsible for the collection, analysis, production and dissemination of signals intelligence. This directorate is led by a director and a deputy director. The SID consists of the following divisions:
    • S1 - Customer Relations
    • S2 - Analysis and Production Centers, with the following so-called Product Lines:
      • S2A: South Asia, S2B: China and Korea, S2C: International Security, S2E: Middle East/Asia, S2F: International Crime, S2G: Counter-proliferation, S2H: Russia, S2I: Counter-terrorism, S2J: Weapons and Space, S2T: Current Threats
    • S3 - Data Acquisition, with these divisions for the main collection programs:
      • S31 - Cryptanalysis and Exploitation Services (CES)
      • S32 - Tailored Access Operations (TAO), which hacks into foreign computers to conduct cyber-espionage and reportedly is "the largest and arguably the most important component of the NSA's huge Signal Intelligence (SIGINT) Directorate, consisting of over 1,000 military and civilian computer hackers, intelligence analysts, targeting specialists, computer hardware and software designers, and electrical engineers."[99]
      • S33 - Global Access Operations (GAO), which is responsible for intercepts from satellites and other international SIGINT platforms.[100] A tool which details and maps the information collected by this unit is code-named Boundless Informant.
      • S34 - Collections Strategies and Requirements Center
      • S35 - Special Source Operations (SSO), which is responsible for domestic and compartmented collection programs, like for example the PRISM program.[100] Special Source Operations is also mentioned in connection to the FAIRVIEW collection program.[101]
  • T - Technical Directorate (TD)
  • Directorate for Education and Training
  • Directorate for Corporate Leadership
  • Foreign Affairs Directorate, which acts as liaison with foreign intelligence services, counter-intelligence centers and the UKUSA-partners.
  • Acquisitions and Procurement Directorate

In the year 2000, a leadership team was formed, consisting of the Director, the Deputy Director and the Directors of the Signals Intelligence (SID), the Information Assurance (IAD) and the Technical Directorate (TD). The chiefs of other main NSA divisions became associate directors of the senior leadership team.[102]

After president George W. Bush initiated the President's Surveillance Program (PSP) in 2001, the NSA created a 24-hour Metadata Analysis Center (MAC), followed in 2004 by the Advanced Analysis Division (AAD), which had to analyze content, internet metadata and telephone metadata. Both units were part of the Signals Intelligence Directorate.[103]

There's also an office of Information Sharing Services (ISS), lead by a chief and a deputy chief.[104]

Watch centers

The NSA maintains at least two watch centers:

  • National Security Operations Center (NSOC), which is the NSA's current operations center and focal point for time-sensitive SIGINT reporting for the United States SIGINT System (USSS). This center was established in 1968 as the National SIGINT Watch Center (NSWC) and renamed into National SIGINT Operations Center (NSOC) in 1973. This "nerve center of the NSA" got its current name in 1996.[105]
  • NSA/CSS Threat Operations Center (NTOC), which is the primary NSA/CSS partner for Department of Homeland Security response to cyber incidents. The NTOC establishes real-time network awareness and threat characterization capabilities to forecast, alert, and attribute malicious activity and enable the coordination of Computer Network Operations. The NTOC was established in 2004 as a joint Information Assurance and Signals Intelligence project.[106]

Employees

The number of NSA employees is officially classified[3] but in 2012, the NSA said more than 30,000 employees work at Ft. Meade and other facilities.[1] In 2012 John C. Inglis, the deputy director, said that the total number of NSA employees is "somewhere between 37,000 and one billion" as a joke,[3] and stated that the agency is "probably the biggest employer of introverts."[3] In 2013 Der Spiegel stated that the NSA had 40,000 employees.[4] More widely, it has been described as the world's largest single employer of mathematicians.[107] Some NSA employees form part of the workforce of the National Reconnaissance Office (NRO), the agency that provides the NSA with satellite signals intelligence.

As of 2013 about 1,000 system administrators work for the NSA.[108] Edward Snowden's leaking of PRISM in 2013 caused the NSA to institute a "two-man rule" where two system administrators are required to be present when one accesses certain sensitive information.[108]

Polygraphing

NSA polygraph brochure

The NSA conducts polygraph tests of employees. For new employees, the tests are meant to discover enemy spies who are applying to the NSA and to uncover any information that could make an applicant pliant to coercion.[109] As part of the latter, historically EPQs or "embarrassing personal questions" about sexual behavior had been included in the NSA polygraph.[109] The NSA also conducts five-year periodic reinvestigation polygraphs of employees, focusing on counterintelligence programs. In addition the NSA conducts aperiodic polygraph investigations in order to find spies and leakers; those who refuse to take them may receive "termination of employment", according to a 1982 memorandum from the director of the NSA.[110]

NSA-produced video on the polygraph process

There are also "special access examination" polygraphs for employees who wish to work in highly sensitive areas, and those polygraphs cover counterintelligence questions and some questions about behavior.[110] NSA's brochure states that the average test length is between two and four hours.[111] A 1983 report of the Office of Technology Assessment stated that "It appears that the NSA [National Security Agency] (and possibly CIA) use the polygraph not to determine deception or truthfulness per se, but as a technique of interrogation to encourage admissions."[112] Sometimes applicants in the polygraph process confess to committing felonies such as murder, rape, and selling of illegal drugs. Between 1974 and 1979, of the 20,511 job applicants who took polygraph tests, 695 (3.4%) confessed to previous felony crimes; almost all of those crimes had been undetected.[109]

In 2010 the NSA produced a video explaining its polygraph process.[113] The video, ten minutes long, is titled "The Truth About the Polygraph" and was posted to the website of the Defense Security Service. Jeff Stein of the Washington Post said that the video portrays "various applicants, or actors playing them -- it’s not clear -- describing everything bad they had heard about the test, the implication being that none of it is true."[114] AntiPolygraph.org argues that the NSA-produced video omits some information about the polygraph process; it produced a video responding to the NSA video.[113] George Maschke, the founder of the website, accused the NSA polygraph video of being "Orwellian".[114]

Operations

Mission

NSA's eavesdropping mission includes radio broadcasting, both from various organizations and individuals, the Internet, telephone calls, and other intercepted forms of communication. Its secure communications mission includes military, diplomatic, and all other sensitive, confidential or secret government communications.[115]

According to the Washington Post, "[e]very day, collection systems at the National Security Agency intercept and store 1.7 billion e-mails, phone calls and other types of communications. The NSA sorts a fraction of those into 70 separate databases."[116]

Because of its listening task, NSA/CSS has been heavily involved in cryptanalytic research, continuing the work of predecessor agencies which had broken many World War II codes and ciphers (see, for instance, Purple, Venona project, and JN-25).

In 2004, NSA Central Security Service and the National Cyber Security Division of the Department of Homeland Security (DHS) agreed to expand NSA Centers of Academic Excellence in Information Assurance Education Program.[117]

As part of the National Security Presidential Directive 54/Homeland Security Presidential Directive 23 (NSPD 54), signed on January 8, 2008 by President Bush, the NSA became the lead agency to monitor and protect all of the federal government's computer networks from cyber-terrorism.[12]

Echelon

Main article: ECHELON

Echelon was created in the incubator of the Cold War.[118] Today it is a legacy system, and several NSA stations are closing.[81]

NSA/CSS, in combination with the equivalent agencies in the United Kingdom (Government Communications Headquarters), Canada (Communications Security Establishment), Australia (Defence Signals Directorate), and New Zealand (Government Communications Security Bureau), otherwise known as the UKUSA group,[119] was reported to be in command of the operation of the so-called Echelon system. Its capabilities were suspected to include the ability to monitor a large proportion of the world's transmitted civilian telephone, fax and data traffic.[120]

During the early 1970s, the first of what became more than eight large satellite communications dishes were installed at Menwith Hill.[121] Investigative journalist Duncan Campbell reported in 1988 on the Echelon surveillance program, an extension of the UKUSA Agreement on global signals intelligence SIGINT, and detailed how the eavesdropping operations worked.[122] In November 3, 1999 the BBC reported that they had confirmation from the Australian Government of the existence of a powerful "global spying network" code-named Echelon, that could "eavesdrop on every single phone call, fax or e-mail, anywhere on the planet" with Britain and the United States as the chief protagonists. They confirmed that Menwith Hill was "linked directly to the headquarters of the US National Security Agency (NSA) at Fort Meade in Maryland".[123]

NSA's United States Signals Intelligence Directive 18 (USSID 18) strictly prohibited the interception or collection of information about "... U.S. persons, entities, corporations or organizations...." without explicit written legal permission from the United States Attorney General when the subject is located abroad, or the Foreign Intelligence Surveillance Court when within U.S. borders. Alleged Echelon-related activities, including its use for motives other than national security, including political and industrial espionage, received criticism from countries outside the UKUSA alliance.[124][125]

Data mining

Protesters against NSA data mining in Berlin wearing Bradley Manning and Edward Snowden masks.
Main articles: PRISM (surveillance program), Data mining, analytics, information extraction, and data analysis

NSA is reported to use its computing capability to analyze "transactional" data that it regularly acquires from other government agencies, which gather it under their own jurisdictional authorities. As part of this effort, NSA now monitors huge volumes of records of domestic emails and Internet searches as well as bank transfers, credit-card transactions and travel and telephone records, according to current and former intelligence officials interviewed by The Wall Street Journal.[126] Reportedly, the majority of emails in or out of the USA are captured at "selected communications links" and automatically analyzed for keywords or other "selectors".[127]

The NSA began the PRISM electronic surveillance and data mining program in 2007.[128][129] PRISM gathers communications data on foreign targets from nine major U.S. internet-based communication service providers: Microsoft,[130] Yahoo, Google, Facebook, PalTalk, AOL, Skype, YouTube and Apple. Data gathered include email, video and voice chat, videos, photos, VoIP chats such as Skype, and file transfers. Another program, Boundless Informant, employs big data databases, cloud computing technology, and Free and Open Source Software (FOSS) to analyze data collected worldwide by the NSA, including that gathered by way of the PRISM program.[131][citation needed]

The Real Time Regional Gateway was a data collection program introduced in 2005 in Iraq by NSA during the Iraq War. It consisted of gathering all Iraqi electronic communication, storing it, then searching and otherwise analyzing it. It was effective in providing information about Iraqi insurgents who had eluded less comprehensive techniques.[132] Glenn Greenwald of The Guardian believes that the "collect it all" strategy introduced by NSA director Alexander shows that "the NSA's goal is to collect, monitor and store every telephone and internet communication" worldwide.[133]

Encryption

In 2013, reporters uncovered a secret memo that claims the NSA created and pushed for the adoption of encryption standards that contained built-in vulnerabilities in 2006 to the United States National Institute of Standards and Technology (NIST), and the International Organization for Standardization (aka ISO).[134] This memo appears to give credence to previous speculation by cryptographers at Microsoft Research.[135]

Edward Snowden claims that the NSA often bypasses encryption altogether by lifting information before it is encrypted or after it is decrypted.[134]

Domestic activity

Further information: Mass surveillance in the United States

National Security Agency surveillance
Map of global NSA data collection as of 2007, with countries subject to the most data collection shown in red
Programs
Pre-1978
Since 1978
Since 1990
Since 1998
Since 2001
Since 2007
Databases, tools etc.
GCHQ collaboration
Legislation
Institutions
Lawsuits
Whistleblowers
Publication
Related
Concepts
Collaboration
United States
Five Eyes
Other

NSA's mission, as set forth in Executive Order 12333, is to collect information that constitutes "foreign intelligence or counterintelligence" while not "acquiring information concerning the domestic activities of United States persons". NSA has declared that it relies on the FBI to collect information on foreign intelligence activities within the borders of the USA, while confining its own activities within the USA to the embassies and missions of foreign nations.[citation needed]

NSA's domestic surveillance activities are limited by the requirements imposed by the Fourth Amendment to the U.S. Constitution. The Foreign Intelligence Surveillance Court for example held in October 2011, citing multiple Supreme Court precedents, that the Fourth Amendment prohibitions against unreasonable searches and seizures applies to the contents of all communications, whatever the means, because "a person's private communications are akin to personal papers."[136] However, these protections do not apply to non-U.S. persons located outside of U.S. borders, so the NSA's foreign surveillance efforts are subject to far fewer limitations under U.S. law.[137] The specific requirements for domestic surveillance operations are contained in the Foreign Intelligence Surveillance Act of 1978 (FISA), which does not extend protection to non-U.S. citizens located outside of U.S. territory.[137]

These activities, especially the publicly acknowledged domestic telephone tapping and call database programs, have prompted questions about the extent of the NSA's activities and concerns about threats to privacy and the rule of law.[citation needed]

In August 2013 it was revealed that NSA intelligence intercepts and wiretaps, both foreign and domestic, were being supplied to the Drug Enforcement Administration (DEA) and Internal Revenue Service (IRS) and were illegally used to launch criminal investigations of US citizens. Law enforcement agents were directed to conceal how the investigations began and recreate an apparently legal investigative trail by re-obtaining the same evidence by other means.[138][139]

Criticism

The NSA received criticism early on in 1960 after two agents had defected to the Soviet Union. Investigations by the House Un-American Activities Committee and a special subcommittee of the House Armed Services Committee revealed severe cases of ignorance in personnel security regulations, prompting the former personnel director and the director of security to step down and leading to the adoption of stricter security practices.[140] Nonetheless, security breaches reoccurred only a year later when in an issue of Izvestia of July 23, 1963, a former NSA employee published several cryptologic secrets. The very same day, an NSA clerk-messenger committed suicide as ongoing investigations disclosed that he had sold secret information to the Soviets on a regular basis. The reluctance of Congressional houses to look into these affairs had prompted a journalist to write "If a similar series of tragic blunders occurred in any ordinary agency of Government an aroused public would insist that those responsible be officially censured, demoted, or fired." David Kahn criticized the NSA's tactics of concealing its doings as smug and the Congress' blind faith in the agency's right-doing as shortsighted, and pointed out the necessity of surveillance by the Congress to prevent abuse of power.[140]

The number of exemptions from legal requirements has also been criticized. When in 1964 the Congress was hearing a bill giving the director of the NSA the power to fire at will any employee, the Washington Post wrote: "This is the very definition of arbitrariness. It means that an employee could be discharged and disgraced on the basis of anonymous allegations without the slightest opportunity to defend himself." Yet, the bill was accepted by an overwhelming majority.[140]

Polls conducted in June 2013 found divided results among Americans regarding NSA's secret data collection.[141] Rasmussen Reports found that 59% of Americans disapprove,[142] Gallup found that 53% disapprove,[143] and Pew found that 56% are in favor of NSA data collection.[144]

NSA monitoring under President Johnson

Main article: Project MINARET

In a secret 1960s operation code-named "Minaret", the NSA monitored phone communications of Senators Frank Church and Howard Baker, major civil rights leaders, including Dr. Martin Luther King, and prominent U.S. journalists and athletes who criticized the U.S. war in Vietnam.[145] A review by NSA of the NSA's Minaret program concluded that Minaret was "disreputable if not outright illegal."[145]

Domestic wiretapping under Richard Nixon

Further information: Church Committee

In the years after President Richard Nixon resigned, there were several investigations of suspected misuse of Federal Bureau of Investigation (FBI), Central Intelligence Agency (CIA), and NSA facilities.[146] Senator Frank Church headed a Senate investigating committee (the Church Committee) which uncovered previously unknown activity,[146] such as a CIA plot (ordered by the administration of President John F. Kennedy) to assassinate Fidel Castro.[147] The investigation also uncovered NSA's wiretaps on targeted American citizens.[148] After the Church Committee hearings, the Foreign Intelligence Surveillance Act of 1978 became law, limiting circumstances under which domestic surveillance was allowed.[146]

IT projects: ThinThread, Trailblazer, Turbulence

NSA created new IT systems to deal with the flood of information from new technologies like the internet and cellphones.

ThinThread contained advanced data mining capabilities. It also had a 'privacy mechanism'; surveillance was stored encrypted; decryption required a warrant. The research done under this program may have contributed to the technology used in later systems. ThinThread was cancelled when Michael Hayden chose Trailblazer, which did not include ThinThread's privacy system.[149]

Trailblazer Project ramped up circa 2000. SAIC, Boeing, CSC, IBM, and Litton worked on it. Some NSA whistleblowers complained internally about major problems surrounding Trailblazer. This led to investigations by Congress and the NSA and DoD Inspectors General. The project was cancelled circa 2003-4; it was late, over budget, and didn't do what it was supposed to do. The Baltimore Sun ran articles about this in 2006–07. The government then raided the whistleblowers' houses. One of them, Thomas Drake, was charged with violating 18 U.S.C. § 793(e) in 2010 in an unusual use of espionage law. He and his defenders claim that he was actually being persecuted for challenging the Trailblazer Project. In 2011, all 10 original charges against Drake were dropped.[150][151]

Turbulence started circa 2005. It was developed in small, inexpensive 'test' pieces rather than one grand plan like Trailblazer. It also included offensive cyber-warfare capabilities, like injecting malware into remote computers. Congress criticized Turbulence in 2007 for having similar bureaucratic problems as Trailblazer.[151] It was to be a realization of information processing at higher speeds in cyberspace.[152]

Warrantless wiretaps under George W. Bush

Main article: NSA warrantless surveillance controversy

On December 16, 2005, the New York Times reported that, under White House pressure and with an executive order from President George W. Bush, the National Security Agency, in an attempt to thwart terrorism, had been tapping phone calls made to persons outside the country, without obtaining warrants from the United States Foreign Intelligence Surveillance Court, a secret court created for that purpose under the Foreign Intelligence Surveillance Act (FISA).[153]

One such surveillance program, authorized by the U.S. Signals Intelligence Directive 18 of President George Bush, was the Highlander Project undertaken for the National Security Agency by the U.S. Army 513th Military Intelligence Brigade. NSA relayed telephone (including cell phone) conversations obtained from ground, airborne, and satellite monitoring stations to various U.S. Army Signal Intelligence Officers, including the 201st Military Intelligence Battalion. Conversations of citizens of the U.S. were intercepted, along with those of other nations.[154]

Proponents of the surveillance program claim that the President has executive authority to order such action, arguing that laws such as FISA are overridden by the President's Constitutional powers. In addition, some argued that FISA was implicitly overridden by a subsequent statute, the Authorization for Use of Military Force, although the Supreme Court's ruling in Hamdan v. Rumsfeld deprecates this view. In the August 2006 case ACLU v. NSA, U.S. District Court Judge Anna Diggs Taylor concluded that NSA's warrantless surveillance program was both illegal and unconstitutional. On July 6, 2007 the 6th Circuit Court of Appeals vacated the decision on the grounds that the ACLU lacked standing to bring the suit.[155]

On January 17, 2006, the Center for Constitutional Rights filed a lawsuit, CCR v. Bush, against the George W. Bush Presidency. The lawsuit challenged the National Security Agency's (NSA's) surveillance of people within the U.S., including the interception of CCR emails without securing a warrant first.[156][157]

In September 2008, the Electronic Frontier Foundation (EFF) filed a class action lawsuit against the NSA and several high-ranking officials of the Bush administration,[158] charging an "illegal and unconstitutional program of dragnet communications surveillance,"[159] based on documentation provided by former AT&T technician Mark Klein.[160]

AT&T Internet monitoring

Further information: Hepting v. AT&T, Jewel v. NSA, Mark Klein, NSA warrantless surveillance controversy

In May 2006, Mark Klein, a former AT&T employee, alleged that his company had cooperated with NSA in installing Narus hardware to replace the FBI Carnivore program, to monitor network communications including traffic between American citizens.[161]

Wiretapping under Barack Obama

In 2009 the NSA intercepted the communications of American citizens, including a Congressman, although the Justice Department believed that the interception was unintentional. The Justice Department then took action to correct the issues and bring it into compliance with existing laws.[162] United States Attorney General Eric Holder resumed the wiretapping according to his understanding of the Foreign Intelligence Surveillance Act amendment of 2008, without explaining what had occurred.[163]

On April 25, 2013, the NSA obtained a court order requiring Verizon's Business Network Services to provide information on all calls in its system to the NSA "on an ongoing daily basis", as reported by The Guardian on June 6, 2013. This information includes "the numbers of both parties on a call ... location data, call duration, unique identifiers, and the time and duration of all calls" but not "[t]he contents of the conversation itself".[164][165]

Role in scientific research and development

NSA has been involved in debates about public policy, both indirectly as a behind-the-scenes adviser to other departments, and directly during and after Vice Admiral Bobby Ray Inman's directorship. NSA was a major player in the debates of the 1990s regarding the export of cryptography in the United States. Restrictions on export were reduced but not eliminated in 1996.

Its secure government communications work has involved the NSA in numerous technology areas, including the design of specialized communications hardware and software, production of dedicated semiconductors (at the Ft. Meade chip fabrication plant), and advanced cryptography research. For 50 years, NSA designed and built most of its computer equipment in-house, but from the 1990s until about 2003 (when the U.S. Congress curtailed the practice), the agency contracted with the private sector in the fields of research and equipment.[166]

Data Encryption Standard

Main article: Data Encryption Standard
FROSTBURG was the NSA's first supercomputer, used from 1991–97.

NSA was embroiled in some minor controversy concerning its involvement in the creation of the Data Encryption Standard (DES), a standard and public block cipher algorithm used by the U.S. government and banking community. During the development of DES by IBM in the 1970s, NSA recommended changes to some details of the design. There was suspicion that these changes had weakened the algorithm sufficiently to enable the agency to eavesdrop if required, including speculation that a critical component—the so-called S-boxes—had been altered to insert a "backdoor" and that the reduction in key length might have made it feasible for NSA to discover DES keys using massive computing power. It has since been observed that the S-boxes in DES are particularly resilient against differential cryptanalysis, a technique which was not publicly discovered until the late 1980s, but which was known to the IBM DES team. The United States Senate Select Committee on Intelligence reviewed NSA's involvement, and concluded that while the agency had provided some assistance, it had not tampered with the design.[167][168] In late 2009 NSA declassified information stating that "NSA worked closely with IBM to strengthen the algorithm against all except brute force attacks and to strengthen substitution tables, called S-boxes. Conversely, NSA tried to convince IBM to reduce the length of the key from 64 to 48 bits. Ultimately they compromised on a 56-bit key."[169]

Clipper chip

Main article: Clipper chip

Because of concerns that widespread use of strong cryptography would hamper government use of wiretaps, NSA proposed the concept of key escrow in 1993 and introduced the Clipper chip that would offer stronger protection than DES but would allow access to encrypted data by authorized law enforcement officials.[170] The proposal was strongly opposed and key escrow requirements ultimately went nowhere.[171] However, NSA's Fortezza hardware-based encryption cards, created for the Clipper project, are still used within government, and NSA ultimately declassified and published the design of the Skipjack cipher used on the cards.[172][173]

Advanced Encryption Standard

Main article: Advanced Encryption Standard

The involvement of NSA in the selection of a successor to DES, the Advanced Encryption Standard (AES), was limited to hardware performance testing (see AES competition).[174] NSA has subsequently certified AES for protection of classified information (for at most two levels, e.g. SECRET information in an unclassified environment) when used in NSA-approved systems.[175]

SHA

The widely used SHA-1 and SHA-2 hash functions were designed by NSA. SHA-1 is a slight modification of the weaker SHA-0 algorithm, also designed by NSA in 1993. This small modification was suggested by NSA two years later, with no justification other than the fact that it provides additional security. An attack for SHA-0 that does not apply to the revised algorithm was indeed found between 1998 and 2005 by academic cryptographers. Because of weaknesses and key length restrictions in SHA-1, NIST deprecates its use for digital signatures, and approves only the newer SHA-2 algorithms for such applications from 2013 on.[176]

A new hash standard, SHA-3, has recently been selected through the competition concluded October 2, 2012 with the selection of Keccak as the algorithm. The process to select SHA-3 was similar to the one held in choosing the AES, but some doubts have been cast over it,[177][178] since fundamental modifications have been made to Keccac in order to turn it into a standard.[179] These changes potentially undermine the cryptanalisis performed during the competition and reduce the security levels of the algorithm.[177]

Dual_EC_DRBG random number generator

Main article: Dual_EC_DRBG

NSA promoted the inclusion of a random number generator called Dual_EC_DRBG in the U.S. National Institute of Standards and Technology's 2007 guidelines. This led to speculation of a backdoor which would allow NSA access to data encrypted by systems using that pseudo random number generator.[180]

This is now deemed to be plausible based on the fact that knowing future values of the internal state is possible if the relation between two internal elliptic curve points are known.[181] This could be the case if the default points recommended by NIST are used,[181] since nowhere knows where the recommended parameters are derived from. Both NIST and RSA are now officially recommending against the use of this PRNG.[182][183]

Perfect Citizen

Main article: Perfect Citizen

Perfect Citizen is a program to perform vulnerability assessment by the NSA on U.S. critical infrastructure. It was originally reported to be a program to develop a system of sensors to detect cyber attacks on critical infrastructure computer networks in both the private and public sector through a network monitoring system named Einstein. It is funded by the Comprehensive National Cybersecurity Initiative and thus far Raytheon has received a contract for up to $100 million for the initial stage.

Academic research

NSA has invested many millions of dollars in academic research under grant code prefix MDA904, resulting in over 3,000 papers (as of 2007-10-11). NSA/CSS has, at times, attempted to restrict the publication of academic research into cryptography; for example, the Khufu and Khafre block ciphers were voluntarily withheld in response to an NSA request to do so. In response to a FOIA lawsuit, in 2013 the NSA released the 643-page research paper titled, "Untangling the Web: A Guide to Internet Research,[184] " written and compiled by NSA employees to assist other NSA workers in searching for information of interest to the agency on the public Internet.[185]

Patents

NSA has the ability to file for a patent from the U.S. Patent and Trademark Office under gag order. Unlike normal patents, these are not revealed to the public and do not expire. However, if the Patent Office receives an application for an identical patent from a third party, they will reveal NSA's patent and officially grant it to NSA for the full term on that date.[186]

One of NSA's published patents describes a method of geographically locating an individual computer site in an Internet-like network, based on the latency of multiple network connections.[187] Although no public patent exists, NSA is reported to have used a similar locating technology called trilateralization that allows real-time tracking of an individual’s location, including altitude from ground level, using data obtained from cellphone towers.[188]

Behind the Green Door secure communications center with SIPRNET, GWAN, NSANET, and JWICS access

NSANet

NSANet is the official National Security Agency intranet.[189] It is a classified internal network,[190] and TS/SCI.[191] In 2004 it was reported to have used over twenty commercial off-the-shelf operating systems.[192] Some universities that do highly sensitive research are allowed to connect to it.[193] In 1998 it, along with NIPRNET and SIPRNET, had "significant problems with poor search capabilities, unorganized data and old information".[194]

National Computer Security Center

The DoD Computer Security Center was founded in 1981 and renamed the National Computer Security Center (NCSC) in 1985. NCSC was responsible for computer security throughout the federal government.[195] NCSC was part of NSA,[196] and during the late 1980s and the 1990s, NSA and NCSC published Trusted Computer System Evaluation Criteria in a six-foot high Rainbow Series of books that detailed trusted computing and network platform specifications.[197] The Rainbow books were replaced by the Common Criteria, however, in the early 2000s.[197]

On July 18, 2013, Greenwald alleged that Snowden held the blueprints of the National Computer Security Center, thereby sparking fresh controversy.[198]

NSA encryption systems

Main article: NSA encryption systems

The NSA is responsible for the encryption-related components in these legacy systems:

  • FNBDT Future Narrow Band Digital Terminal[199]
  • KL-7 ADONIS off-line rotor encryption machine (post-WWII – 1980s)[200][201]
  • KW-26 ROMULUS electronic in-line teletypewriter encryptor (1960s–1980s)[202]
  • KW-37 JASON fleet broadcast encryptor (1960s–1990s)[201]
STU-III secure telephones on display at the National Cryptologic Museum

The NSA oversees encyption in following systems which are in use today:

The NSA has specified Suite A and Suite B cryptographic algorithm suites to be used in U.S. government systems; the Suite B algorithms are a subset of those previously specified by NIST and are expected to serve for most information protection purposes, while the Suite A algorithms are secret and are intended for especially high levels of protection.[175]

See also

Past NSA SIGINT activities

References

Notes

  1. ^ a b "60 Years of Defending Our Nation" (PDF). National Security Agency. 2012. p. 3. Retrieved July 6, 2013. "On November 4, 2012, the National Security Agency (NSA) celebrates its 60th anniversary of providing critical information to U.S. decision makers and Armed Forces personnel in defense of our Nation. NSA has evolved from a staff of approximately 7,600 military and civilian employees housed in 1952 in a vacated school in Arlington, VA, into a workforce of more than 30,000 demographically diverse men and women located at NSA headquarters in Ft. Meade, MD, in four national Cryptologic Centers, and at sites throughout the world."
  2. ^ Priest, Dana (July 21, 2013). "NSA growth fueled by need to target terrorists". The Washington Post. Retrieved July 22, 2013. "Since the attacks of Sept. 11, 2001, its civilian and military workforce has grown by one-third, to about 33,000, according to the NSA. Its budget has roughly doubled."
  3. ^ a b c d "Introverted? Then NSA wants you." FCW. April 2012. Retrieved on July 1, 2013.
  4. ^ a b "Prism Exposed: Data Surveillance with Global Implications". Spiegel Online International. June 10, 2013. p. 2. "How can an intelligence agency, even one as large and well-staffed as the NSA with its 40,000 employees, work meaningfully with such a flood of information?"
  5. ^ a b Gellman, Barton (August 29, 2013). "U.S. spy network's successes, failures and objectives detailed in 'black budget' summary". The Washington Post. p. 3. Retrieved August 29, 2013. {{cite web}}: Unknown parameter |coauthors= ignored (|author= suggested) (help)
  6. ^ Shane, Scott (August 29, 2013). "New Leaked Document Outlines U.S. Spending On Intelligence Agencies". The New York Times. Retrieved August 29, 2013.
  7. ^ Bamford, James. Body of Secrets: Anatomy of the Ultra-Secret National Security Agency, Random House Digital, Inc., December 18, 2007
  8. ^ Executive Order 13470[1] 2008 Amendments to Executive Order 12333], United States Intelligence Activities, July 30, 2008 (PDF)
  9. ^ Malkin, Bonnie. NSA surveillance: US bugged EU offices. The Daily Telegraph, June 30, 2013
  10. ^ Ngak, Chenda. NSA leaker Snowden claimed U.S. and Israel co-wrote Stuxnet virus, CBS, July 9, 2013
  11. ^ Bamford, James. The Secret War, Wired Magazine, June 12, 2013.
  12. ^ a b Ellen Nakashima (January 26, 2008). "Bush Order Expands Network Monitoring: Intelligence Agencies to Track Intrusions". The Washington Post. Retrieved February 9, 2008.
  13. ^ "Senators: Limit NSA snooping into US phone records". Associated Press. Retrieved October 15, 2013. "Is it the goal of the NSA to collect the phone records of all Americans?" Udall asked at Thursday's hearing. "Yes, I believe it is in the nation's best interest to put all the phone records into a lockbox that we could search when the nation needs to do it. Yes," Alexander replied.
  14. ^ Executive Order 134702008 Amendments to Executive Order 12333, United States Intelligence Activities, Section C.2, July 30, 2008
  15. ^ a b c d Burns, Thomas L. "The Origins of the National Security Agency 1940–1952 (U)" (PDF). National Security Agency. p. 60. Retrieved August 11, 2010.
  16. ^ "The Creation of NSA - Part 2 of 3: The Brownell Committee" (PDF). National Security Agency. Retrieved July 2, 2013.
  17. ^ a b Truman, Harry S. "Memorandum" (PDF). National Security Agency. Retrieved July 2, 2013.
  18. ^ a b c d "Frequently Asked Questions About NSA: 9. Can you explain the NSA and CSS seals?". National Security Agency. Retrieved July 18, 2013.
  19. ^ a b "History of The Insignia". National Security Agency. Retrieved July 18, 2013.
  20. ^ "The National Security Agency Insignia". National Security Agency via Internet Archive. Archived from the original on April 13, 2008. Retrieved July 18, 2013.
  21. ^ a b "A Dangerous Business: The U.S. Navy and National Reconnaissance During the Cold War" (PDF). National Security Agency. Retrieved June 13, 2013.
  22. ^ a b c "National Cryptologic Memorial (List of Names) – NSA/CSS". NSA.gov. Retrieved June 13, 2013.
  23. ^ a b c Staff (June 13, 2003). "NSA honors 4 in the science of codes". The Baltimore Sun. Tribune Company. Retrieved June 11, 2013.
  24. ^ Laura Poitras, Marcel Rosenbach and Holger Stark. "Ally and Target: US Intelligence Watches Germany Closely". Der Spiegel. Retrieved August 13, 2013.
  25. ^ "Colombia asks Kerry to explain NSA spying". The Washington Post. Retrieved August 13, 2013.
  26. ^ Laura Poitras, Marcel Rosenbach, Fidelius Schmid und Holger Stark. "Geheimdokumente: NSA horcht EU-Vertretungen mit Wanzen aus". Der Spiegel (in German). Retrieved 29 June 2013.
  27. ^ "US-Geheimdienst hörte Zentrale der Vereinten Nationen ab". Der Spiegel (in German). Retrieved 25 August 2013.
  28. ^ a b Greenwald, Glenn; MacAskill, Ewen (6 June 2013). "NSA Prism program taps in to user data of Apple, Google and others". The Guardian. Retrieved 15 June 2013.
  29. ^ a b Gellman and Soltani, Oct 15 2013 "NSA collects millions of e-mail address books globally", The Washington Post. Retrieved Oct 16 2013.
  30. ^ Perlroth, Larson and Shane, "N.S.A. Able to Foil Basic Safeguards of Privacy on Web", The New York Times Sept 5 2013. Retrieved Sept 23 2013.
  31. ^ Arthur, Charles "Academics criticise NSA and GCHQ for weakening online encryption", The Guardian Sept 16 2013. Retrieved Sept 23 2013.
  32. ^ Glenn Greenwald (6 June 2013). "NSA collecting phone records of millions of Verizon customers daily". The Guardian. Retrieved 16 September 2013.
  33. ^ Court Reveals 'Secret Interpretation' Of The Patriot Act, Allowing NSA To Collect All Phone Call Data, Sept 17 2013. Retrieved Sept 19 2013.
  34. ^ "Exclusive: U.S. directs agents to cover up program used to investigate Americans". Reuters. Retrieved August 14, 2013.
  35. ^ Greenwald, Glen, "Members of Congress denied access to basic information about NSA", The Guardian, August 4, 2013. Retrieved Sept 23 2013.
  36. ^ a b c Eddlem, T. The NSA Domestic Surveillance Lie, Sept 22 2013. Retrieved Sept 23 2013.
  37. ^ Loennig, C., "Court: Ability to police U.S. spying program limited", Washington Post Aug 16 2013. Retrieved Sept 23 2013.
  38. ^ Gellman, B. NSA broke privacy rules thousands of times per year, audit finds, Washington Post, August 15, 2013. Retrieved Sept 23, 2013.
  39. ^ Gorman, S. NSA Officers Spy on Love Interests, Wall St Journal, August 23, 2013. Retrieved Sept 23, 2013.
  40. ^ John D Bates (3 October 2011). "[redacted] ". p. 16.
  41. ^ Ellen Nakashima, Julie Tate and Carol Leonnig (10 September 2013). "Declassified court documents highlight NSA violations in data collection for surveillance". The Washington Post. Retrieved 14 September 2013.
  42. ^ Kessler, Glen, James Clapper's 'least untruthful' statement to the Senate, June 12, 2013. Retrieved Sept 23 2013.
  43. ^ Kube, C., June 27, 2013, "NSA chief says surveillance programs helped foil 54 plots", US News on nbcnews.com. Retrieved Sep 27 2013.
  44. ^ "NSA Confirms Dragnet Phone Records Collection, But Admits It Was Key in Stopping Just 1 Terror Plot", Democracy Now Aug 1 2013. Retrieved Sep 27 2013.
  45. ^ "Indictment: USA vs Basaaly Saeed Moalin, Mohamed Mohamed Mohamud and Issa Doreh". Southern District of California July 2010 Grand Jury. Retrieved Sept 30 2013.
  46. ^ The Permanent Select Committee on Intelligence, Press release Jul 23 2013: "54 Attacks in 20 Countries Thwarted By NSA Collection". Retrieved 30 Sept 2013.
  47. ^ "Senate caves, votes to give telecoms retroactive immunity". Ars Technica. February 13, 2008. Retrieved September 16, 2013. {{cite web}}: Unknown parameter |deadurl= ignored (|url-status= suggested) (help)
  48. ^ "Forget Retroactive Immunity, FISA Bill is also about Prospective Immunity". The Progressive. July 10, 2008. Retrieved September 16, 2013. {{cite web}}: Unknown parameter |deadurl= ignored (|url-status= suggested) (help)
  49. ^ "Marine Cryptologic Support Battalion: Intelligence Department: Fort Meade, MD: New Joins". United States Marine Corps. Retrieved June 11, 2013.
  50. ^ a b "Just off the Baltimore-Washington Parkway, about 25 miles northeast of Washington, is a secret city. Fort Meade, in suburban Maryland, is home to the National Security Agency – the NSA, sometimes wryly referred to as No Such Agency or Never Say Anything." and "It contains almost 70 miles of roads, 1,300 buildings, each identified by a number, and 18,000 parking spaces as well as a shopping centre, golf courses, chain restaurants and every other accoutrement of Anywhere, USA." in "Free introduction to: Who's reading your emails?". The Sunday Times. June 9, 2013. Retrieved June 11, 2013.(subscription required)
  51. ^ Sernovitz, Daniel J. "NSA opens doors for local businesses." Baltimore Business Journal. August 26, 2010. Updated August 27, 2010. Retrieved on June 11, 2013. "But for many more, the event was the first time attendees got the chance to take the "NSA Employees Only" exit off the Baltimore-Washington Parkway beyond the restricted gates of the agency's headquarters."
  52. ^ Weiland and Wilsey, p. 208. "[...]housing integration has invalidated Montpelier's Ivory Pass and the National Security Agency has posted an exit ramp off the Baltimore-Washington Parkway that reads NSA."
  53. ^ Grier, Peter and Harry Bruinius. "In the end, NSA might not need to snoop so secretly." Christian Science Monitor. June 18, 2013. Retrieved on July 1, 2013.
  54. ^ a b c Barnett, Mark L. (April 26, 2011). "Small Business Brief" (PDF). Office of Small Business Programs, NSA, via The Greater Baltimore Committee. p. 3. Retrieved June 11, 2013.
  55. ^ Gorman, Siobhan (August 6, 2006). "NSA risking electrical overload". The Baltimore Sun. Tribune Company. Retrieved June 10, 2013.
  56. ^ Dozier, Kimberly (June 9, 2013). "NSA claims know-how to ensure no illegal spying". Associated Press. Retrieved June 12, 2013.
  57. ^ "Geeks 'R' us". The Baltimore Sun. Tribune Company. January 13, 2010. Retrieved June 11, 2013.
  58. ^ a b c d Bamford, Body of Secrets: Anatomy of the Ultra-Secret National Security Agency, p. 488. "At the heart of the invisible city is NSA's massive Headquarters/Operations Building. With more than sixty-eight acres of floor space,[...]" and "Entrance is first made through the two-story Visitor Control Center, one[...]"
  59. ^ Bamford, Body of Secrets: Anatomy of the Ultra-Secret National Security Agency, p. 488-489. "[...]one of more than 100 fixed watch posts within the secret city manned by the armed NSA police. It is here that clearances are checked and visitor badges are issued."
  60. ^ a b c Bamford, Body of Secrets: Anatomy of the Ultra-Secret National Security Agency, p. 490. "And then there is the red badge—[...]and is normally worn by people working in the "Red Corridor"—the drugstore and other concession areas[...]Those with a red badge are forbidden to go anywhere near classified information and are restricted to a few corridors and administrative areas—the bank, the barbershop, the cafeteria, the credit union, the airline and entertainment ticket counters." and "Once inside the white, pentagonal Visitor Control Center, employees are greeted by a six-foot painting of the NSA seal[...]"
  61. ^ Bamford, Body of Secrets: Anatomy of the Ultra-Secret National Security Agency, p. 489. "It is here that clearances are checked and visitor badges are issued."
  62. ^ Bamford, Body of Secrets: Anatomy of the Ultra-Secret National Security Agency, p. 491. "From the Visitor Control Center one enters the eleven-story, million OPS2A, the tallest building in the City. Shaped like a dark glass Rubik's Cube, the building houses much of NSA's Operations Directorate, which is responsible for processing the ocean of intercepts and prying open the complex cipher systems."
  63. ^ a b c d e f Bamford, James (June 12, 2013). "The Secret War". Wired. Condé Nast. Retrieved June 12, 2013.
  64. ^ "Career Fields/Other Opportunities/NSA Police Officers section of the NSA website". Nsa.gov. Retrieved October 9, 2013.
  65. ^ T.C. Carrington, Debra L.Z. Potts, "Protective Services-More Than Meets the Eye. An Overview of NSA's Protective Services", National Security Agency Newsletter, volume XLVII, No. 9, September 1999, pages 8-10
  66. ^ a b "Explore NSA." (Archive) National Security Agency. Retrieved on June 12, 2013. "Other Locations" and "Our employees live along the Colonial-era streets of Annapolis and Georgetown; in the suburban surroundings of Columbia; near the excitement of Baltimore's Inner Harbor; along rolling hills adjacent to working farms; near the shores of the Chesapeake Bay; and amid the monumental history of Washington, DC."
  67. ^ a b Sabar, Ariel (January 2, 2003). "NSA still subject to electronic failure". and "Agency officials anticipated the problem nearly a decade ago as they looked ahead at the technology needs of the agency, sources said, but it was never made a priority, and now the agency's ability to keep its operations going is threatened." and "The NSA is Baltimore Gas & Electric's largest customer, using as much electricity as the city of Annapolis, according to James Bamford...." in Gorman, Siobhan (August 6, 2006). "NSA risking electrical overload". and Gorman, Siobhan (January 26, 2007). "NSA electricity crisis gets Senate scrutiny". and Gorman, Siobhan (June 24, 2007). "Power supply still a vexation for the NSA". The Baltimore Sun. Tribune Company. Retrieved June 11, 2013.
  68. ^ "The NSA uses about 65 to 75 megawatt-hours of electricity, The Sun reported last week. Its needs are projected to grow by 10 to 15 megawatt-hours by next fall." in Staff (January 26, 2007). "NSA electricity crisis gets Senate scrutiny". The Baltimore Sun. Tribune Company. Retrieved June 11, 2013.
  69. ^ a b c d e f Bamford, James (March 15, 2012). "The NSA Is Building the Country's Biggest Spy Center (Watch What You Say)". Wired. Condé Nast. Retrieved February 26, 2013.
  70. ^ "60 Years of Defending Our Nation" (PDF). National Security Agency. 2012. p. 15. Retrieved July 6, 2013.
  71. ^ a b c "60 Years of Defending Our Nation" (PDF). National Security Agency. 2012. p. 10. Retrieved July 6, 2013.
  72. ^ "60 Years of Defending Our Nation" (PDF). National Security Agency. 2012. p. 23. Retrieved July 6, 2013.
  73. ^ a b c "60 Years of Defending Our Nation" (PDF). National Security Agency. 2012. p. 39. Retrieved July 6, 2013.
  74. ^ Scott Shane and Tom Bowman (December 4, 1995). "No Such Agency Part Four – Rigging the Game". The Baltimore Sun. Retrieved February 24, 2013.
  75. ^ Brown, Matthew Hay (May 6, 2013). "NSA plans new computing center for cyber threats". The Baltimore Sun. Tribune Company. Retrieved June 11, 2013.
  76. ^ "National Security Agency: FY 2014 Military Construction, Defense-Wide" (PDF). Office of the Under Secretary of Defense (Comptroller), USA.gov. pp. 3–4. Retrieved June 13, 2013.
  77. ^ "Fort Meade". Expeditionary Combat Readiness Center, United States Navy. Retrieved June 11, 2013.[dead link]
  78. ^ Steve Fidel (January 6, 2011). "Utah's billion cyber-security center under way". Deseret News. Retrieved January 6, 2011.
  79. ^ LaPlante, Matthew D. (July 2, 2009). "New NSA center unveiled in budget documents". The Salt Lake Tribune. MediaNews Group. Retrieved June 9, 2013.
  80. ^ a b Norton-Taylor, Richard (March 1, 2012). "Menwith Hill eavesdropping base undergoes massive expansion". The Guardian. Guardian News and Media. Retrieved June 10, 2013.
  81. ^ a b c "It’s kind of a legacy system, this whole idea, the Echelon," Bamford said. "Communications have changed a great deal since they built it." in Muir, Pat (May 27, 2013). "Secret Yakima facility may be outdated, expert says". Yakima Herald-Republic. Seattle Times. Retrieved June 15, 2013.
  82. ^ Richelson, Jeffrey T. (August 2012). "Eavesdroppers in Disguise". Air Force Magazine. Air Force Association. Retrieved June 10, 2013.
  83. ^ Troianello, Craig (April 4, 2013). "NSA to close Yakima Training Center facility". Yakima Herald-Republic. Retrieved June 15, 2013.
  84. ^ "UKUSA Agreement Release: 1940-1956". National Security Agency. Retrieved July 11, 2013.
  85. ^ Bamford, James (September 13, 2002). "What big ears you have". The Guardian. Retrieved July 11, 2013.
  86. ^ Tangimoana listed in: "Government Communications Security Bureau [GCSB]". Federation of American Scientists. Retrieved July 11, 2013.
  87. ^ "ECHELON Main Stations". World-Information.org. Retrieved July 11, 2013.
  88. ^ "UK agrees missile defence request". BBC News. July 25, 2007. Retrieved June 10, 2013.
  89. ^ Campbell, Duncan (December 6, 1999). "1980 - America's big ear on Europe". New Statesman. Retrieved June 15, 2013.
  90. ^ Laura Poitras, Marcel Rosenbach and Holger Stark, Ally and Target: US Intelligence Watches Germany Closely, August 12, 2013.
  91. ^ a b "Snowden Interview: NSA and the Germans 'In Bed Together'". Spiegel International. July 7, 2013. and "Snowden: NSA is 'in bed with the Germans'". RT News. TV-Novosti. July 7, 2013. Retrieved July 8, 2013.
  92. ^ These offices are for example mentioned in a FISA court order from 2011.
  93. ^ "National Security Agency". fas.org. Retrieved October 9, 2013.
  94. ^ Matthew M. Aid, The Secret Sentry, New York, 2009, p. 130, 138, 156-158.
  95. ^ TheWeek.com: The NSA's secret org chart, September 15, 2013
  96. ^ D.B. Grady. "Inside the secret world of America's top eavesdropping spies".
  97. ^ Marc Ambinder, Solving the mystery of PRISM, June 7, 2013
  98. ^ National Intelligence - a consumer's guide (PDF) 2009, p. 34.
  99. ^ Aid, Matthew M. (10th). "Inside the NSA's Ultra-Secret China Hacking Group". Foreign Policy. Retrieved 11 June 2013. {{cite journal}}: Check date values in: |date= and |year= / |date= mismatch (help); Unknown parameter |month= ignored (help)
  100. ^ a b Marc Ambinder, How a single IT tech could spy on the world, June 10, 2013
  101. ^ The Special Source Operations logo can be seen on slides about the FAIRVIEW program.
  102. ^ National Security Agency - 60 Years of Defending Our Nation, Anniversary booklet, 2012, p. 96.
  103. ^ Marc Ambinder, 3008 Selectors, June 27, 2013.
  104. ^ This is mentioned in a FISA court order from 2011.
  105. ^ Top Level Telecommunications: Pictures at the NSA's 60th anniversary
  106. ^ National Security Agency - 60 Years of Defending Our Nation, Anniversary booklet, 2012, p. 102.
  107. ^ Davis, Harvey (March 12, 2002). Statement for the Record (Speech). 342 Dirksen Senate Office Building, Washington, D.C. Retrieved November 24, 2009. {{cite speech}}: More than one of |author= and |last= specified (help)CS1 maint: location (link)
  108. ^ a b Drew, Christopher and Somini Sengupta (June 24, 2013). "N.S.A. Leak Puts Focus on System Administrators". The New York Times. Retrieved June 25, 2013.
  109. ^ a b c Bauer, Craig P. (2013). Secret History: The Story of Cryptology. CRC Press. p. 359. ISBN 9781466561861.
  110. ^ a b Bamford. Body of Secrets. p. 538.
  111. ^ "Your Polygraph Examination: An Important Appointment to Keep" (PDF). National Security Agency. Retrieved June 17, 2013.
  112. ^ McCarthy, Susan. "The truth about the polygraph". Salon. Retrieved July 5, 2013. {{cite web}}: Italic or bold markup not allowed in: |publisher= (help)
  113. ^ a b Nagesh, Gautham (June 14, 2010). "NSA video tries to dispel fear about polygraph use during job interviews". The Hill. Retrieved June 15, 2013.
  114. ^ a b Stein, Jeff. "NSA lie detectors no sweat, video says." Washington Post. June 14, 2010. Retrieved on July 5, 2013.
  115. ^ Bamford, James (December 25, 2005). "The Agency That Could Be Big Brother". The New York Times. Retrieved September 11, 2005.
  116. ^ Priest, Dana and Arkin, William, A hidden world, growing beyond control, Washington Post
  117. ^ "National Security Agency and the U.S. Department of Homeland Security Form New Partnership to Increase National Focus on Cyber Security Education" (Press release). NSA Public and Media Affairs. April 22, 2004. Retrieved July 4, 2008.
  118. ^ Hager 1996, p. 55
  119. ^ Richelson, Jeffrey T.; Ball, Desmond (1985). The Ties That Bind: Intelligence Cooperation Between the UKUSA Countries. London: Allen & Unwin. ISBN 0-04-327092-1
  120. ^ Patrick S. Poole, Echelon: America's Secret Global Surveillance Network (Washington, D.C.: Free Congress Foundation, October 1998)
  121. ^ Echelon", 60 Minutes, February 27, 2000
  122. ^ Campbell, Duncan (August 12, 1988), "They've Got It Taped" (PDF), New Statesman via duncancampbell.org, retrieved June 19, 2007
  123. ^ Bomford, Andrew (November 3, 1999). "Echelon spy network revealed". BBC. Retrieved June 7, 2013.
  124. ^ "European Parliament Report on Echelon" (PDF). 2001. Retrieved July 4, 2008. {{cite web}}: Unknown parameter |month= ignored (help)
  125. ^ "Nicky Hager Appearance before the European Parliament Echelon Committee". Nicky Hager / Cryptome Archive. 2001. Retrieved July 4, 2008. {{cite web}}: Unknown parameter |month= ignored (help)
  126. ^ Gorman, Siobahn (March 10, 2008). "NSA's Domestic Spying Grows As Agency Sweeps Up Data". The Wall Street Journal Online. Archived from the original on 2009-01-24. Retrieved February 19, 2013 2008. {{cite news}}: Check date values in: |accessdate= (help)
  127. ^ Savage, Charlie (August 8, 2013). "N.S.A. Said to Search Content of Messages to and From U.S". Retrieved August 13, 2013.
  128. ^ "U.S. intelligence mining data from nine U.S. Internet companies in broad secret program". The Washington Post. Retrieved June 6, 2013.
  129. ^ Greenwald, Glenn (June 6, 2013). "NSA taps in to internet giants' systems to mine user data, secret files reveal". The Guardian. Retrieved June 6, 2013.
  130. ^ "Microsoft handed the NSA access to encrypted messages". The Guardian. July 12, 2013. Retrieved September 7, 2013.
  131. ^ The Guardian, June 8, 2013
  132. ^ Ellen Nakashima; Joby Warrick (July 14, 2013). "For NSA chief, terrorist threat drives passion to 'collect it all,' observers say". The Washington Post. Retrieved July 15, 2013. Collect it all, tag it, store it. . . . And whatever it is you want, you go searching for it.
  133. ^ Glenn Greenwald (July 15, 2013). "The crux of the NSA story in one phrase: 'collect it all': The actual story that matters is not hard to see: the NSA is attempting to collect, monitor and store all forms of human communication". The Guardian. Retrieved July 16, 2013.
  134. ^ a b Perlroth, Nicole, Larson, Jeff, and Shane, Scott (September 5, 2013). "The NSA's Secret Campaign to Crack, Undermine Internet Security". ProPublica. This story has been reported in partnership between The New York Times, the Guardian and ProPublica based on documents obtained by The Guardian. For the Guardian: James Ball, Julian Borger, Glenn Greenwald; For the New York Times: Nicole Perlroth, Scott Shane; For ProPublica: Jeff Larson{{cite news}}: CS1 maint: multiple names: authors list (link)
  135. ^ Posted on November 15, 2007 at 6:08 AM • 74 Comments (November 15, 2007). "Schneier on Security: The Strange Story of Dual_EC_DRBG". Schneier.com. Retrieved October 9, 2013.{{cite web}}: CS1 maint: multiple names: authors list (link) CS1 maint: numeric names: authors list (link)
  136. ^ John D Bates (October 3, 2011). "[redacted]" (PDF). pp. 73–74.
  137. ^ a b David Alan Jordan. Decrypting the Fourth Amendment: Warrantless NSA Surveillance and the Enhanced Expectation of Privacy Provided by Encrypted Voice over Internet Protocol. Boston College Law Review. May 2006. Last access date January 23, 2007
  138. ^ John Shiffman and Kristina Cooke (August 5, 2013) Exclusive: U.S. directs agents to cover up program used to investigate Americans. Reuters. Retrieved 12 Aug 2013.
  139. ^ John Shiffman and David Ingram (August 7, 2013) Exclusive: IRS manual detailed DEA's use of hidden intel evidence. Reuters. Retrieved 12 Aug 2013.
  140. ^ a b c David Kahn, The Codebreakers, Scribner Press, 1967, chapter 19, pp. 672–733.
  141. ^ "Statistics on whether the NSA's Secret Data Collection is Acceptable". Statista. Retrieved July 19, 2013.
  142. ^ "59% Oppose Government's Secret Collecting of Phone Records". Rasmussen Reports. June 9, 2013. Retrieved July 19, 2013.
  143. ^ Newport, Frank (June 12, 2013). "Americans Disapprove of Government Surveillance Programs". Gallup. Retrieved July 19, 2013.
  144. ^ "Majority Views NSA Phone Tracking as Acceptable Anti-terror Tactic". Pew Research Center. June 10, 2013. Retrieved July 19, 2013.
  145. ^ a b "Declassified NSA Files Show Agency Spied on Muhammad Ali and MLK Operation Minaret Set Up in 1960s to Monitor Anti-Vietnam Critics, Branded 'Disreputable If Not Outright Illegal' by NSA Itself" The Guardian, 26 Sept. 2013
  146. ^ a b c Bill Moyers Journal (October 26, 2007). "The Church Committee and FISA". Public Affairs Television. Retrieved June 28, 2013.
  147. ^ "Book IV, Supplementary Detailed Staff Reports on Foreign and Military Intelligence (94th Congress, Senate report 94-755)" (PDF). United States Senate Select Committee on Intelligence. April 23, 1976. p. 67 (72). Retrieved June 28, 2013.
  148. ^ "Book II, Intelligence Activities and the Rights of Americans (94th Congress, Senate report 94-755)" (PDF). United States Senate Select Committee on Intelligence. April 26, 1976. p. 124 (108). Retrieved June 28, 2013.
  149. ^ Gorman, Siobhan (May 17, 2006). "NSA killed system that sifted phone data legally". Baltimore Sun. Tribune Company (Chicago, IL). Archived from the original on September 27, 2007. Retrieved March 7, 2008. The privacy protections offered by ThinThread were also abandoned in the post–September 11 push by the president for a faster response to terrorism.
  150. ^ See refs of Thomas Andrews Drake article
  151. ^ a b Bamford, Shadow Factory, p 325–340
  152. ^ <http://www.baltimoresun.com/news/nation-world/bal-nsa050607,0,1517618.story>
  153. ^ James Risen & Eric Lichtblau (December 16, 2005), Bush Lets U.S. Spy on Callers Without Courts, New York Times
  154. ^ "Gwu.edu". Gwu.edu. Retrieved October 9, 2013.
  155. ^ "6th Circuit Court of Appeals Decision" (PDF). Retrieved October 9, 2013.
  156. ^ Mike Rosen-Molina (May 19, 2007). "Ex-Guantanamo lawyers sue for recordings of client meetings". The Jurist. Retrieved May 22, 2007.
  157. ^ "CCR v. Bush". Center for Constitutional Rights. Retrieved June 15, 2009.
  158. ^ KJ Mullins (September 20, 2008). "Jewel Vs. NSA Aims To Stop Illegal Surveillance". Digital Journal. Retrieved December 30, 2011.
  159. ^ Jewel v. NSA (complaint). 18 September 2008. Electronic Frontier Foundation. Retrieved 30 December 2011.
  160. ^ Kravets, David (July 15, 2009). "Obama Claims Immunity, As New Spy Case Takes Center Stage". Wired. Retrieved December 30, 2011. {{cite web}}: Italic or bold markup not allowed in: |publisher= (help)
  161. ^ "For Your Eyes Only?". NOW. 2007. {{cite journal}}: Unknown parameter |month= ignored (help) on PBS
  162. ^ Lichtblau, Eric and Risen, James (April 15, 2009). "N.S.A.'s Intercepts Exceed Limits Set by Congress". The New York Times. Retrieved April 15, 2009.{{cite news}}: CS1 maint: multiple names: authors list (link)
  163. ^ Ackerman, Spencer (April 16, 2009). "NSA Revelations Spark Push to Restore FISA". The Washington Independent. Center for Independent Media. Retrieved April 19, 2009.
  164. ^ Glenn Greenwald. "Revealed: NSA collecting phone records of millions of Americans daily". Retrieved June 6, 2013.
  165. ^ Charlie Savage and Edward Wyatt, "U.S. Is Secretly Collecting Records of Verizon Calls", New York Times, June 5, 2013. Accessed June 6, 2013.
  166. ^ Sabar, Ariel (July 20, 2013). "Congress curbs NSA's power to contract with suppliers". Baltimore Sun. Tribune Company. Retrieved June 17, 2013.
  167. ^ Davies, D.W. (1989). Security for computer networks, 2nd ed. John Wiley & Sons. {{cite book}}: Unknown parameter |coauthors= ignored (|author= suggested) (help)
  168. ^ Robert Sugarman (editor) (1979). "On foiling computer crime". IEEE Spectrum. IEEE. {{cite journal}}: |author= has generic name (help); Unknown parameter |month= ignored (help)
  169. ^ Thomas R. Johnson (December 18, 2009). "American Cryptology during the Cold War, 1945–1989.Book III: Retrenchment and Reform, 1972–1980, page 232". NSA, DOCID 3417193 (file released on 2009-12-18, hosted at cryptome.org). Retrieved January 3, 2010.
  170. ^ Baker, Stewart A. "Don't Worry Be Happy". Wired (2.06). Condé Nast. Retrieved June 28, 2013.
  171. ^ "Key Escrow, Key Recovery, Trusted Third Parties & Govt. Access to Keys". Electronic Frontier Foundation. Retrieved June 28, 2013.
  172. ^ Schneier, Bruce (July 15, 1998). "Declassifying Skipjack". Crypto-Gram (schneier.com). Retrieved June 28, 2013.
  173. ^ "SKIPJACK and KEA Algorithm Specifications" (PDF). National Institute of Standards and Technology. May 29, 1998. Retrieved June 28, 2013.
  174. ^ Weeks, Bryan; et al. "Hardware Performance Simulations of Round 2 Advanced Encryption Standard Algorithms" (PDF). National Institute of Standards and Technology. Retrieved June 29, 2013. {{cite web}}: Explicit use of et al. in: |author= (help)
  175. ^ a b "the NIST standards that define Suite B..." in "Suite B Cryptography / Cryptographic Interoperability". National Security Agency. Retrieved June 29, 2013.
  176. ^ Draft NIST SP 800-131, June 2010.
  177. ^ a b Lorenzo, Joseph (September 24, 2013). "What the heck is going on with NIST's cryptographic standard, SHA-3? | Center for Democracy & Technology". Cdt.org. Retrieved October 9, 2013.
  178. ^ "Twitter / marshray: Believe it or not, NIST is". Twitter.com. Retrieved October 9, 2013.
  179. ^ "kelsey-invited-ches-0820.pdf - Google Drive". Docs.google.com. Retrieved October 9, 2013.
  180. ^ Schneier, Bruce (November 15, 2007). "Did NSA Put a Secret Backdoor in New Encryption Standard?". Wired News. Retrieved July 4, 2008.
  181. ^ a b Matthew Green (September 18, 2013). "A Few Thoughts on Cryptographic Engineering: The Many Flaws of Dual_EC_DRBG". Blog.cryptographyengineering.com. Retrieved October 9, 2013.
  182. ^ "itlbul2013 09 Supplemental". ProPublica. Retrieved October 9, 2013.
  183. ^ Matthew Green (September 20, 2013). "A Few Thoughts on Cryptographic Engineering: RSA warns developers not to use RSA products". Blog.cryptographyengineering.com. Retrieved October 9, 2013.
  184. ^ Robyn Winder and Charlie Speight (April 19, 2013). "Untangling the Web: A Guide to Internet Research" (PDF). National Security Agency Public Information. Retrieved May 9, 2013.
  185. ^ Zetter, Kim (May 9, 2013). "Use These Secret NSA Google Search Tips to Become Your Own Spy Agency". Wired Magazine.
  186. ^ Schneier, Bruce (1996). Applied Cryptography, Second Edition. John Wiley & Sons. pp. 609–610. ISBN 0-471-11709-9.
  187. ^ "United States Patent 6,947,978 – Method for geolocating logical network addresses". United States Patent and Trademark Office. September 20, 2005. Retrieved July 4, 2008.
  188. ^ James Risen and Eric Lichtblau (June 10, 2013). "How the U.S. Uses Technology to Mine More Data More Quickly". New York Times. Retrieved June 13, 2013.
  189. ^ National Security Agency (2009). "ARC Registration" (PDF). NSA ARC. Retrieved April 13, 2011.
  190. ^ DNI (2009). "2009 National Intelligence Consumer's Guide" (PDF). Director of National Intelligence. Retrieved April 13, 2011.[dead link]
  191. ^ US Army. "Theater Army Operations, Field Manual No. 3-93 (100–7)" (PDF). Retrieved April 13, 2011.
  192. ^ Joe Jarzombek (2004). "Systems, Network, and Information Integration Context for Software Assurance" (PDF). Carnegie Mellon University. Retrieved April 13, 2011.
  193. ^ Dr. Christopher Griffin (2010). "Dealing with Sensitive Data at Penn State's Applied Research Laboratory: Approach and Examples" (PDF). msu.edu. Retrieved April 13, 2011.
  194. ^ Misiewicz (September 1998). "Thesis; Modeling and Simulation of a Global Reachback Architecture ..." (PDF). Retrieved April 13, 2011.
  195. ^ "The DoD Computer Security Center (DoDCSC) was established in January 1981..." and "In 1985, DoDCSC's name was changed to the National Computer Security Center..." and "its responsibility for computer security throughout the federal government..." in "A Guide to Understanding Audit in Trusted Systems". National Computer Security Center via National Institute of Standards and Technology CSRC. Retrieved June 30, 2013.
  196. ^ "NSA and its National Computer Security Center (NCSC) have responsibility for..." in "Computer Systems Laboratory Bulletin". National Institute of Standards and Technology CSRC. February 1991. Retrieved June 30, 2013.
  197. ^ a b "NSA/NCSC Rainbow Series". Federation of American Scientists. Retrieved June 30, 2013.
  198. ^ "എന്‍ എസ് എയുടെ ബ്ലുപ്രിന്റ് സ്‌നോഡന്റെ കൈയിലുണ്ട്". The Indian Reader. July 18, 2013. Retrieved July 18, 2013.
  199. ^ Committee on C4ISR for Future Naval Strike Groups, National Research Council (2006). C4ISR for Future Naval Strike Groups. National Academies Press. p. 167. ISBN 0309096006.{{cite book}}: CS1 maint: numeric names: authors list (link)
  200. ^ "Adkins Family asked for a pic of the KL-7. Here you go!..." in "NSA - National Cryptologic Museum". Facebook. March 20, 2013. Retrieved June 30, 2013.
  201. ^ a b "Cryptographic Damage Assessment: DOCID: 3997687" (PDF). National Security Agency. 1968. Retrieved June 30, 2013.
  202. ^ a b c d "Cryptologic Excellence: Yesterday, Today and Tomorrow" (PDF). National Security Agency. 2002. p. 17. Retrieved June 30, 2013.
  203. ^ a b Hickey, Kathleen (January 6, 2010). "NSA certifies Sectera Viper phone for classified communications". GCN. 1105 Media. Retrieved June 30, 2013.
  204. ^ "JITC Networks, Transmissions, and Integration Division Electronic Key Management System (EKMS)". U.S. Department of Defense: Defense Information Systems Agency: Joint Interoperability Certifier. February 1991. Retrieved June 30, 2013.
  205. ^ "6.2.6 What is Fortezza?". RSA Laboratories, EMC Corporation. Retrieved June 30, 2013.
  206. ^ "AN/ARC-231 Airborne Communication System". Raytheon. Retrieved June 30, 2013.
  207. ^ "NSA approves TACLANE-Router". United Press International. October 24, 2007. Retrieved June 30, 2013.

Further reading

Wikimedia Commons has media related to National Security Agency, United States.
Retrieved from "https://en.wikipedia.org/w/index.php?title=National_Security_Agency&oldid=577443025"