High Res Photo of Jennifer Granick
Photo credit: Michael Sugrue
Yesterday's report from the independent Privacy and Civil Liberties Oversight Board, or PCLOB, confirms what Christopher Sprigman and I said back in June of last year in our New York Times Op Ed “The Criminal NSA”. The NSA’s telephone record metadata program, in which it collects the calling records of almost everyone inside the United States, is illegal. Amend that: it’s screamingly illegal. Flat out.
When should courts follow legal precedent and when should the law change? This is a debate that underlies this month’s contrary decisions about the constitutionality of government collection of telephone call metadata under section 215 of the USA PATRIOT Act. And despite this week’s dual holdings in favor of the government—on this issue and on the issue of laptop border searches—a judicial consensus may be emerging that the Fourth Amendment must evolve along with technology and government surveillance capabilities.
Yesterday, I wrote that the report from the President’s Review Group on Intelligence and Communications Technologies--"Liberty And Security In A Changing World”—suggests reforms that would improve U.S. surveillance law’s protection of the rights of foreigners. My non US-person friends seem underwhelmed, so I thought I’d take a moment to elaborate on the changes I’m talking about. Read More.
Last week, we argued that the public discussion surrounding two of the government’s most controversial mass surveillance programs – PRISM and Upstream – has not sufficiently acknowledged the broad scope of collection under these programs, which take place under section 702 of the Foreign Intelligence Surveillance Act (FISA). In short, hiding behind the counterterrorism justifications for section 702 is a broad surveillance program that sucks up massive amounts of irrelevant private data.
The legal authority behind the controversial PRISM and Upstream surveillance programs used by the NSA to collect large swaths of private communications from leading Internet companies – Section 702 of the Foreign Intelligence Surveillance Act (FISA) – is scheduled to expire on December 31, 2017. In recent months, Congress began to review these programs to assess whether to renew, reform, or retire section 702. Unfortunately, it appears the debate has already been skewed by misconceptions about the true scope of surveillance conducted under the contentious provision.
Slides from the BlackHat 2016 presentation by Jennifer Granick and Riana Pfefferkorn titled "When the Cops Come A-Knocking: Handling Technical Assistance Demands from Law Enforcement."
To celebrate the one-year anniversary of the Stanford Cryptography Policy Project, we are holding an afternoon event highlighting our research and accomplishments over the past year. As our keynote speakers, it is our pleasure to welcome the Honorable Stephen W. Smith, Magistrate Judge of the Southern District of Texas, and Paul S. Grewal, former Magistrate Judge of the Northern District of California.
What kind of surveillance assistance can the U.S. government force companies to provide? This issue has entered the public consciousness due to the FBI's demand in February that Apple write software to help it access the San Bernardino shooter's encrypted iPhone. Technical assistance orders can go beyond the usual government requests for user data, requiring a company to actively participate in the government's monitoring of the targeted user(s).
On Wednesday, February 17, The Center on Democracy, Development and the Rule of Law at Stanford, The Center for International Governance Innovation, and the Research Advisory Network of the Global Commission on Internet Governance will present an all-day conference entitled "New Alliances in Cybersecurity, Human Rights and Internet Governance." The conference will discuss the challenges of creating a regime of internet governance that pays attention to security and human rights in the digital context.
Over the course of two days in February 2016, the Strauss Center at the University of Texas-Austin will host a unique and timely conference focused on the legal and policy dimensions of cybersecurity.