the lawyers… »
« not in the ranks of the informed…
spooks spooking spooks…

Posted on Thursday 15 April 2010

Government could read alleged NSA leaker’s encrypted e-mails
Washington Post
by Jeff Stein
April 15, 2010

One has to wonder whether Thomas A. Drake, the former National Security Agency executive charged with leaking classified information to a reporter, reads Wired, the bible of the internet age. If he does, he might have learned in November 2007 that the encrypted Hushmail accounts he allegedly set up to communicate secretly with the reporter wouldn’t protect him from the long arm of the feds. It was in November 2007 that, according to a Post report on the government’s indictment, Drake ended his e-mail correspondence with the reporter, identified in other accounts as Siobhan Gorman, then with the Baltimore Sun.

Gorman, now with the Wall Street Journal, wrote a series of articles starting in 2005 about a $300 million NSA program that didn’t work. “Relying on interviews with current and former senior intelligence officials as well as internal documents, Gorman was able to show that the NSA’s ‘state-of-the art tool for sifting through an ocean of modern-day digital communications’ was a boondoggle of sorts — and that the agency had removed several of the privacy safeguards that were put in place to protect domestic conversations and e-mails from being stored and monitored,” as Marc Ambinder nicely summed it up at The Atlantic Online Thursday.

Wired’s Ryan Singel reported in November 2007 that Canadian authorities had given the Drug Enforcement Agency access to supposedly break-proof e-mails in a steroids smuggling case, via a court order “obtained through a mutual assistance treaty between the U.S. and Canada.” “Hushmail, a longtime provider of encrypted web-based email, markets itself by saying that ‘not even a Hushmail employee with access to our servers can read your encrypted e-mail, since each message is uniquely encoded before it leaves your computer,’” Singel reported on Wired’s Threat Level blog. He added:
    But it turns out that statement seems not to apply to individuals targeted by government agencies that are able to convince a Canadian court to serve a court order on the company.
According to news reports, Drake allegedly established a Hushmail account to facilitate the exchange of e-mails with the reporter without disclosing his identity…
At the rate this story is moving, we’ll be reading Drake and Gorman’s email by breakfast tomorrow. An NSA "spook" hooks up with a reporter via an encrypted email provider called Hushmail. It seems that Hushmail comes with two options, a client-side encryption and a server-side encryption. The latter gives the company a window into retrieving your mail, and this article has examples of where the government has been able to do that [through agreements between the US and Canadian governments]. It’s unclear if this is how they got onto Thomas Drake.

Sorry, the comment form is closed at this time.