Risk
10/14/2010
04:10 PM
John Foley
John Foley
Commentary
Connect Directly
LinkedIn
Twitter
Google+
RSS
E-Mail
50%
50%

The Case For Wiretapping The Internet

The directors of National Intelligence and the FBI say tech-savvy extremists pose a growing threat, setting the stage for a national debate over the need for Internet eavesdropping.

Despite that growing threat, Mueller noted the challenge of meeting court-ordered communications "intercepts" during FBI investigations. In some cases, communications providers are unable to provide the electronic communications sought in a court order, in part because they're not required to build or maintain the capabilities to do so.

"Critical laws covering this area have not been updated since 1994, when we moved from a copper-wire phone system to digital networks and cell phones, but of course, technology has expanded exponentially in the past 16 years," Mueller said. "We want to ensure that our ability to intercept communications is not eroded by advances in technology—technology we all rely on to communicate." You can read Mueller's speech here.

We're fast approaching a point that will determine how, and how effectively, U.S. intelligence agencies will be able to tap into the din of terrorist chatter that travels over 21st century networks. According to the New York Times, new wiretapping legislation, described as "sweeping" in scope, will be submitted to lawmakers for action next year.

The challenge is to enable the mission of the U.S. Intelligence Community without compromising the privacy and civil liberties of Americans. Clapper and Mueller both voice a strong commitment to meeting that requirement. Says Mueller, "If we safeguard our civil liberties, but leave our country vulnerable to a terrorist attack, we have lost. If we protect America from terrorism, but sacrifice civil liberties, we have also lost. We must work to strike that balance, every day, in every case."

Seeking balance in the form of legislation will get contentious. Security expert Bruce Schneier, the chief security technology officer for BT, has already denounced the White House plan, and many of his readers are similarly critical and skeptical.

The status quo carries its own risks. Clapper says the number and pace of terrorist attempts in the U.S. by al-Qaida and its affiliates were at an all-time high during the past year. Among all the tough choices, inaction may be the worst.

Previous
2 of 2
Next
Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading, September 16, 2014
Malicious software is morphing to be more targeted, stealthy, and destructive. Are you prepared to stop it?
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0993
Published: 2014-09-15
Buffer overflow in the Vcl.Graphics.TPicture.Bitmap implementation in the Visual Component Library (VCL) in Embarcadero Delphi XE6 20.0.15596.9843 and C++ Builder XE6 20.0.15596.9843 allows remote attackers to execute arbitrary code via a crafted BMP file.

CVE-2014-2375
Published: 2014-09-15
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to read or write to arbitrary files, and obtain sensitive information or cause a denial of service (disk consumption), via the CSV export feature.

CVE-2014-2376
Published: 2014-09-15
SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

CVE-2014-2377
Published: 2014-09-15
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to discover full pathnames via an application tag.

CVE-2014-3077
Published: 2014-09-15
IBM SONAS and System Storage Storwize V7000 Unified (aka V7000U) 1.3.x and 1.4.x before 1.4.3.4 store the chkauth password in the audit log, which allows local users to obtain sensitive information by reading this log file.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
CISO Insider: An Interview with James Christiansen, Vice President, Information Risk Management, Office of the CISO, Accuvant