Stories
Slash Boxes
Comments

SoylentNews is people

Offshoring Data Won’t Protect It From The NSA.

posted by janrinok on Monday January 05 2015, @09:45PM   Printer-friendly
from the make-'em-work-for-it dept.

AnonTechie writes regarding TechCrunch story:

The natural reaction of many citizens, companies and governments is to try to get their data out of the United States and out of the hands of American companies. The idea is a seductive one, even for Americans. Offshoring money has been a popular strategy for tax avoidance. Why not offshore data to a foreign company?

This offshoring of data to avoid surveillance is not just an idle notion. As a privacy lawyer with experience in the intelligence community and the Obama White House, technology companies have asked me how they might pursue such a strategy. It turns out that shifting user data abroad or into the hands of foreign companies is a very poor way to combat American surveillance.

The Justice Department may put a lot of pressure on Swiss banks, but it doesn’t hack into offshore accounts to recover ill-gotten gains. By contrast, intelligence agencies are not known for scrupulously observing the laws of foreign countries in which they operate, even when (as in the United States) they are subject to a system of domestic legal oversight.

NSA directors have stated quite openly their desire to collect everything American law permits. However, what the law allows the NSA to do varies starkly depending on where data is collected. Under the Foreign Intelligence Surveillance Act, the rules that apply to data collected from a switch, wire, or server in the United States are stricter than the safeguards that apply to data collected overseas.

 
This discussion has been archived. No new comments can be posted.
Offshoring Data Won’t Protect It From The NSA. | Log In/Create an Account | Top | 17 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 3, Insightful) by frojack on Monday January 05 2015, @11:43PM

    by frojack (1554) on Monday January 05 2015, @11:43PM (#132030) Journal

    One isn't much good without the other.

    After all, if they can put a gun to your head, the cryptography isn't worth much.

    --
    No, you are mistaken. I've always had this sig.
    Starting Score:    1  point
    Moderation   +1  
       Insightful=1, Total=1
    Extra 'Insightful' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   3  

  • (Score: 3, Interesting) by c0lo on Tuesday January 06 2015, @12:26AM

    by c0lo (156) on Tuesday January 06 2015, @12:26AM (#132041) Journal

    Security is always a tradeoff between the value of the "secured" item and the cost of the attacker to obtain it (therefore, no security is perfect)
    Personally, I'd rather prefer NSA to go after 1000 people** outside US with that gun you mention than having my info within US (where they only need a NSL): it will cost them more. Without too much effort for me, even assessing if me or which others are persons of interest will come with quite a high cost for them.

    ** e.g. I believe mega.co.nz have more than 1000 users

    --
    https://www.youtube.com/watch?v=aoFiw2jMy-0