It turns out that Mark Kirk — not Bernie Sanders — was the first member of Congress to raise concerns about the NSA spying on Senators after Edward Snowden’s leaks started being published. Kirk did so less than a day after the Guardian published the Verizon order from the phone dragnet, in an Appropriations Committee hearing on the Department of Justice’s budget (see at 2:00). After Susan Collins raised the report in the context of drone killing, Kirk asked for assurances that members of Congress weren’t included in the dragnet.
Kirk: I want to just ask, could you assure to us that no phones inside the Capitol were monitored, of members of Congress, that would give a future Executive Branch if they started pulling this kind of thing up, would give them unique leverage over the legislature?
Holder: With all due respect, Senator, I don’t think this is an appropriate setting for me to discuss that issue–I’d be more than glad to come back in an appropriate setting to discuss the issues that you’ve raised but in this open forum–
Kirk: I’m going to interrupt you and say, the correct answer would say, no, we stayed within our lane and I’m assuring you we did not spy on members of Congress.
The first substantive question Congress asked about the dragnet was whether they were included in it.
After that, a few moments of chaos broke out, as other Senators — including NSA’s representative on the Senate Intelligence Committee, Barb Mikulski — joined in Kirk’s concerns, while suggesting the need for a full classified Senate briefing with the AG and NSA. Richard Shelby jumped in to say Mikulski should create the appropriate hearing, but repeated that what Senator Kirk asked was a very important question. Mikulski agreed that it’s the kind of question she’d like to ask herself. Kirk jumped in to raise further separation of powers concerns, given the possibility that SCOTUS had their data collected.
The very first concern members of Congress raised about the dragnet was how it would affect their power.
And then there was a classified briefing and …
… All that noble concern about separation of power melted away. And some of the same people who professed to have real concern became quite comfortable with the dragnet after all.
It’s in light of that sequence of events (along with Snowden’s claim that Members of Congress are exempt, and details about how data integrity analysts strip certain numbers out of the phone dragnet before anyone contact-chains on it) that led me to believe that NSA gave some assurances to Congress they need not worry that their power was threatened by the phone dragnet.
The best explanation from external appearances was that Congress got told their numbers got protection the average citizen’s did not, perhaps stripped out with all the pizza joints and telemarketers (that shouldn’t have alleviated their concerns, as some of that data has been found sitting on wayward servers with no explanation, but members of Congress can be dumb when they want to be).
And they were happy with the dragnet.
Then, 7 months later, Bernie Sanders started asking similar — but not the same –questions. In a letter to Keith Alexander, he raised several issues:
- Phone calls made
- Emails sent
- Websites visited
- Foreign leaders wiretapped
He even defined what he meant by spying.
“Spying” would include gathering metadata on calls made from official or personal phones, content from websites visited or emails sent, or collecting any other data from a third party not made available to the general public in the regular course of business.
In response, Alexander rejected Sanders’ definition of spying (implicitly suggesting it wasn’t fair), while using a dodge he repeatedly has: the Americans in question are not being targeted, even while they might be collected “incidentally.”
Nothing NSA does can fairly be characterized as “spying on Members of Congress or other American elected officials.”
NSA may not target any American for foreign intelligence collection without a finding of probable cause that the proposed target of collection is a foreign power or an agent of a foreign power. Moreover, as you are aware, whenever an NSA activity results in the incidental collection of information about Americans, that information is handled pursuant to the very robust procedures designed to protect privacy interests — procedures that must be approved by the Attorney general or the Foreign Intelligence Surveillance Court, as appropriate. All those protections apply to members of Congress, as they do to all Americans.
Alexander then addressed just one of the three kinds of spying Sanders raised: phone data (which, if I’m right that NSA strips Congressional numbers at the data integrity stage, is the one place Alexander can be fairly sure Sanders’ contacts won’t be found).
Your letter focuses on NSA’s acquisition of telephone metadata…
And used the controls imposed on the raw data of the phone dragnet as an excuse for not answering Sanders’ question.
Among those protections is the condition that NSA can query the metadata only based on phone numbers reasonably suspected to be associated with specific foreign terrorist groups. For that reason, NSA cannot lawfully search to determine if any records NSA has received under the program have included metadata of the phone calls of any member of Congress, other American elected officials, or any other American without that predicate.
Alexander totally ignored Sanders’ two other specified concerns: emails sent and websites visited.
Which is mighty convenient, because for a very large segment of that collection (the internet metadata collected under EO 12333 and via PRISM, though not the data collected domestically before 2011 or domestic upstream collection), NSA believes it doesn’t even need Reasonable Articulable Suspicion to search on US person identifiers. The same is true for any phone dragnet data that has been returned on a query and dumped into the “corporate store,” or any phone data collected overseas. NSA could easily search in those databases for Sanders’ name and identifiers — it insists it can! — to provide him a specific answer to his question about Internet metadata.
The one Alexander rather pointedly didn’t answer.
Of course, former FISC Judge John Bates has told NSA — on two different occasions — that collecting US person data domestically only becomes illegal once NSA knows it is doing it, strongly implying that the NSA would do well to retain plausible deniability about doing so if it doesn’t want any trouble from the FISC.
Frankly, I think all members of Congress, especially those like John McCain and Mark Kirk who spend a lot of time talking to leaders we probably do wiretap as much as we can, should be worried about having their conversations surveilled (and I think that explains why Congress in general and McCain in particular got newly concerned about the spying when the extent of foreign leader wiretapping became clear). Because they chat up foreign leaders so frequently, they are likely to be caught up as “incidental” collections.
The could find out, of course! Just ask NSA to do a back door search, of most things but raw US collected metadata, and the NSA has the ability to tell them whether they’ve been searched.