What’s a Little (or a Lot) Cooperation Among Spies?

Screen Shot 2015-08-15 at 8.33.46 PMA key point in the ProPublica/NYT piece on AT&T’s close cooperation with the NSA (and, though not stated explicitly, other agencies) on spying is that AT&T was the telecom that helped NSA spy on the UN.

It provided technical assistance in carrying out a secret court order permitting the wiretapping of all Internet communications at the United Nations headquarters, a customer of AT&T.

If you read the underlying document, it actually shows that NSA had a traditional FISA order requiring the cooperation (remember, “agents of foreign powers,” as diplomats are, are among the legal wiretap targets under FISA, no matter what we might think about NSA spying on UN in our own country) — meaning whatever telecom serviced the UN legally had to turn over the data. And a big part of AT&T’s cooperation, in addition to technically improving data quality, involved filtering the data to help NSA avoid overload.

BLARNEY began intermittent enablement  of DNI traffic for TOPI assessment and feedback. This feedback is being used by the BLARNEY target development team to support an ongoing filtering and throttling of data volumes. While BLARNEY is authorized full-take access under the NSA FISA, collected data volumes would flood PINWALE allocations within hours without a robust filtering mechanism.

In other words, AT&T helped NSA, ironically, by helping it limit what data it took in. Arguably, that’s an analytical role (who builds the algorithms in the filter?), but it’s one that limits how much actually gets turned over to the government.

That doesn’t mean the cooperation was any less valued, nor does it mean it didn’t go beyond what AT&T was legally obliged to do under the FISA order. But it’s not evidence AT&T would wiretap a non-legal (private corporation) target as a favor for NSA. That evidence may exist, somewhere, but it’s not in this story, except insofar as it mentions Stellar Wind, where AT&T was doing such things.

To be fair, AT&T’s UN cooperation is actually emphasized in this story because it was a key data point in the worthwhile ProPublica piece explaining how they proved Fairview was AT&T.

In April 2012, an internal NSA newsletter boasted about a successful operation in which NSA spied on the United Nations headquarters in New York City with the help of its Fairview and Blarney programs. Blarney is a program that undertakes surveillance that is authorized by the Foreign Intelligence Surveillance Court.

FAIRVIEW and BLARNEY engineers collaborated to enable the delivery of 700Mbps of paired packet switched traffic (DNI) traffic from access to an OC192 ring serving the United Nations mission in New York … FAIRVIEW engineers and the partner worked to provide the correct mapping, and BLARNEY worked with the partner to correct data quality issues so the data could be handed off to BLARNEY engineers to enable processing of the DNI traffic.

We found historical records showing that AT&T was paid $1 million a year to operate the U.N.’s fiber optic provider in 2011 and 2012. A spokesman for the U.N. secretary general confirmed that the organization “has a current contract with AT&T” to operate the fiber optic network at the U.N. headquarters in New York.

That is, the UN story is important largely because there are public records proving that AT&T was the provider in question, not because it’s the most egregious example of AT&T’s solicitous relationship with the nation’s spies.

Also in that story proving how they determined Fairview was AT&T and Stormbrew included Verizon was the slide above, bragging that the Comprehensive National Cybersecurity Initiative 100% subsidized Verizon’s Breckenridge site at a new cable landing carrying traffic from China.

It’s not entirely clear what that means — it might just refer to the SCIF, power supply, and servers needed to run the TURMOIL (that is, passive filtering) deployments the NSA wanted to track international traffic with China. But as ProPublica lays out, the NSA was involved the entire time Verizon was planning this cable landing. Another document on CNCI shows that in FY2010 — while significantly less than AT&T’s Fairview — NSA was dumping over $100M into Stormbrew and five times as much money into “cyber” than on FISA (in spite of the fact that they admit they’re really doing all this cybering to catch attacks on the US, meaning it has to ostensibly be conducted under FISA, even if FISC had not yet and may never have approved a cyber certificate for upstream 702). And those numbers date to the year after the Breckenridge project was put on line, and at a time when Verizon was backing off an earlier closer relationship with the Feds.

How much did Verizon really get for that cable landing, what did they provide in exchange, and given that this was purpose-built to focus on Chinese hacking 6 years ago, why is China still eating our lunch via hacking? And if taxpayers are already subsidizing Verizon 100% for capital investments, why are we still paying our cell phone bills?

Particularly given the clear focus on cyber at this cable landing, I recall the emphasis on Department of Commerce when discussing the government’s partnership with industry in PPD-20, covering authorizations for various cyber activities, including offensive cyberwar (note the warning I gave for how Americans would start to care about this Snowden disclosure once our rivals, like China, retaliate). That is, the government has Commerce use carrots and sticks to get cooperation from corporations, especially on cybersecurity.

None of this changes the fact that AT&T has long been all too happy to spy on its customers for the government. It just points to how little we know about these relationships, and how much quid pro quo there really is. We know from PRISM discussions that the providers could negotiate how they accomplished an order (as AT&T likely could with the order to wiretap the UN), and that’s one measure of “cooperation.” But there’s a whole lot else to this kind of cooperation.

Update: Credo released a statement in response to the story.

As a telecom that can be compelled to participate in unconstitutional surveillance, we know how important it is to fight for our customers’ privacy and only hand over information related to private communications when required by law,” said CREDO Mobile Vice President Becky Bond. “It’s beyond disturbing though sadly not surprising what’s being reported about a secret government relationship with AT&T that NSA documents describe as ‘highly collaborative’ and a ‘partnership, not a contractual relationship,’

CREDO Mobile supports full repeal of the illegal surveillance state as the only way to protect Americans from illegal government spying,” Bond continued, “and we challenge AT&T to demonstrate concern for its customers’ constitutional rights by joining us in public support of repealing both the Patriot Act and FISA Amendments Act.

12 replies
  1. What Constitution? says:

    Well. So. That’s buttoned down. Seems there’s really only one thing left to scream: “Do it to Julia!”

    And it wasn’t so long ago that that the idea of somebody placing a bug on a phone was the height of clandestine surveillance. Bet those funny furrin countries are feeling pretty silly about locating their headquarters for global diplomacy here in the US, huh?

  2. galljdaj says:

    These revelations make clear just how wise our South American Neighbors are for banning the US and Canada from there Membership of Community!

  3. orionATL says:

    is the united states teaming with a huge american corporation whom it pays to cooperate an instance of national security or of blossoming american fascism ?

    i realize i’m being indescribeably naieve, but i think it is and was contemptible to spy on the u.n. the u.n. is not a powerful organization. it does not threaten the u.s. in any way EXCEPT in terms of speech and ideas. in terms of speech the u.n. can support an international position contrary to one supported by the u.s., say, one on the issue of civilians killed by drones, on american torture, on the use of physicians and psychologists in torture, or on the invasion of iraq. this spying is undoubtedly intended to subvert “anti-american-position” speech.

    • orionATL says:

      and the co-operation between govt in the form of the nsa and major american corporations is not limited to telecoms letting nsa put routers in their utility closets for favors and dollars.

      there are corporate contractors for the nsa that put billions of govt (public) dollars in their pockets (and in turn into the pockets of congressgoobers).

      this domestic and international spying by the nsa involves incredibly intertwined bureacratic and corporate well-being. to say a situation such as this is insidious of constitutional rights and sensible governing is to state the obvious.

      • galljdaj says:

        I worked for a few major corporations, and was required to sign papers that banned such behaviors, ans saw numerous folks fired for breech of said paper.

        No such thing in Our Government? !

    • orionATL says:

      oh, and of course to afford the rare opportunity to spy on our enemies: the germans, the chinese, the french, the russians, the brazilians, the british, the spanish, the argentines, the north koreans (you don’t really believe that all those koreans running around nyc are all south koreans do you?), the itaians, the japanese, the maldivians, the iranians, and 100+ other countries i lack space or time to honor here.

  4. bloopie2 says:

    What’s the problem? All our spying on the UN has had been in the name of world peace, and it’s made the world a better place. Just look around: You’ll see plenteous amounts of peace, prosperity, democracy, life, liberty, and the pursuit of happiness. And the US is responsible all. How could anyone possibly complain? Ingrates.

  5. wallace says:

    “It’s beyond disturbing though sadly not surprising what’s being reported about a secret government relationship with AT&T that NSA documents describe as ‘highly collaborative’ and a ‘partnership, not a contractual relationship,’…”unquote
    Here’s a different take…
    quote”More concerning still is the apparent eagerness with which the telecom company helped the U.S. government in its endeavors. In one previously classified document, NSA agents are reminded to be cordial at AT&T — “This is a partnership, not a contractual relationship,” the report reads.”
    Reminded to be “cordial”. Indeed..to their criminal corporate conspirators. Vs those moments when NSA agents would hang you by the balls, or kill you with impunity should you even attempt to breach some boundary within their jurisdiction or authority, even by accident. Moreover, I’m of the opinion, to be an NSA employee, you must possess certain aggressive characteristics towards any outsider, having been “brainwashed” by NSA propagandists within NSA who weekly pound psychological messages into their brains, reinforcing the message that NSA’s “mission”, is noble, no matter if it’s illegal, fascist, and fucking Orwellian. And THAT is a fact…

    For those who don’t visit “The Intercept”, witness the sick motherfucker NSA employee, ..
    http://baltimorereview.org/index.php/fall_2014/contributor/jacob-weber …., aka “Socrates”.. the NSA’s insidious “philosopher” in residence, who’s job it is to convince the rest of his fellow 4th amendment hating employees, their job is “morally and legally” A-OK. Well I’ve got news for them, notwithstanding AT&T employees. They are just as delusional as this fucker is…


    Delusional is a massive fucking understatement..

  6. wallace says:

    btw, if your IP provider is AT&T, or even if not, I urge you to send a message to them regarding their bullshit “privacy policy” wherein AT&T claims:

    “We will protect your privacy and keep your personal information safe. We use encryption and other security safeguards to protect customer data.”

    To make it even easier..you can copy and paste MY reply to AT&T’s blatant lies…

    To [email protected]
    Aug 16 at 10:00 AM

    notwithstanding an accomplice to NSA crimes…

    re:”We want to hear from you. You can send us questions or feedback on our privacy policy.”

    Ok. To whom at AT&T gives a crap:

    “We will protect your privacy and keep your personal information safe. We use encryption and other security safeguards to protect customer data.”

    un hun. right….






    AT&T is a lying sack of corporate shit. The only question left is..what are you going to do about it?

Comments are closed.