Risk
6/12/2013
03:03 PM
Connect Directly
LinkedIn
Twitter
Google+
RSS
E-Mail
50%
50%

NSA Prism: Google, Facebook Want More Transparency

Fearing loss of customer trust, Google, Facebook, Microsoft and Twitter ask for permission to share more information about government data demands.

The Syrian Electronic Army: 9 Things We Know
(click image for larger view)
The Syrian Electronic Army: 9 Things We Know
Although there might be national security benefits to the NSA's collection of phone and Internet data, there also might be national economic costs.

U.S. Internet companies are now being viewed in a different light, one that could dim the prospects of business from abroad.

Already, according to Russian media company RT, Russian MP Ilya Kostunov has sent letters to the heads of the country's defense and communications ministries seeking support for punishing civil servants' use of U.S. social networks and Internet services under a recently broadened treason law.

Viviane Reding, Commissioner of Justice for the European Union, meanwhile announced on Wednesday that she intends to raise the issue of U.S. data collection at a meeting with U.S. Attorney General Eric Holder on Friday. In a statement, she expressed concern about the business implications of mass surveillance. In other words, loss of individual privacy is not the only thing at stake.

[ Would knowing more about how the NSA combs data ease your privacy concerns? Read Defending NSA Prism's Big Data Tools. ]

"Trust that the rule of law will be respected also is essential to the stability and growth of the digital economy, including transatlantic business," she said. "This is of paramount importance for individuals and companies alike."

Time will tell whether this is political posturing or a sea change that limits the commercial opportunities of U.S. technology companies abroad in the same way that national security concerns last year limited the ability of Chinese telecom equipment maker Huawei to compete for U.S. government contracts. But the U.S. companies implicated in the NSA surveillance scandal are not waiting to find out whether they need to address a loss of customer confidence.

Google on Tuesday asked Attorney General Eric Holder and FBI Director Robert Mueller to allow the company to publish information about the full range of government demands for user data that it receives.

Google already publishes partial information in its semi-annual transparency report, but it does not include data demands related to national security, apart from a count of National Security letters received.

Previous
1 of 2
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
xBaja
50%
50%
xBaja,
User Rank: Apprentice
6/12/2013 | 11:34:04 PM
re: NSA Prism: Google, Facebook Want More Transparency
Google and Facebook are truly amazed the NSA has less information on you than they do.
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2015-0543
Published: 2015-07-05
EMC Secure Remote Services Virtual Edition (ESRS VE) 3.x before 3.06 does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVE-2015-0544
Published: 2015-07-05
EMC Secure Remote Services Virtual Edition (ESRS VE) 3.x before 3.06 does not properly generate random values for session cookies, which makes it easier for remote attackers to hijack sessions by predicting a value.

CVE-2015-2721
Published: 2015-07-05
Mozilla Network Security Services (NSS) before 3.19, as used in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, Thunderbird before 38.1, and other products, does not properly determine state transitions for the TLS state machine, which allows man-in-the-middle attacke...

CVE-2015-2722
Published: 2015-07-05
Use-after-free vulnerability in the CanonicalizeXPCOMParticipant function in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 allows remote attackers to execute arbitrary code via vectors involving attachment of an XMLHttpRequest object to a shared worker.

CVE-2015-2724
Published: 2015-07-05
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code v...

Dark Reading Radio
Archived Dark Reading Radio
Marc Spitler, co-author of the Verizon DBIR will share some of the lesser-known but most intriguing tidbits from the massive report