Cybersecurity & Tech Surveillance & Privacy

A Response to Susan's Post

Susan Landau

Friday, March 25, 2016, 11:46 AM

Ben Wittes and Susan Hennessey deserve many responses to their ongoing arguments about Apple and the court case. It's very much on my to-do list, but I have been busy. I will confine myself here to correcting a misimpression in Susan's latest discussions of the case.

Susan Landau

Meet The Authors

Published by The Lawfare Institute
in Cooperation With

Subscribe to Lawfare

I did not say that the FBI should have gone to the NSA for help with unlocking the iPhone. Indeed, during testimony at this month's House Judiciary Committee hearing on encryption, I explicitly acknowledged that NSA does not share tools with the FBI except during "exceptional circumstances." Susan and I are in complete agreement on this point (I'm not sure why she indicated otherwise).

The point I was making was that NSA probably had the capability to unlock the phone. That raises the issue that if NSA could develop that capability, why couldn't the FBI? During the hearing I strongly argued about the need for the FBI to develop its own technical investigative capabilities. That's in both the verbal testimony (e.g., "We're in this situation when I think law enforcement needs to really develop those skills by themselves") and the written. That's where the real solution rests—not just in this case but for the long term. Instead of pressing for weakened security protections in devices and communications, the FBI needs to develop better investigative capabilities.

Of course there are different legal authorities governing the NSA and the FBI; I've never said otherwise. And no surprise that there are also different technical capabilities between the two agencies. But contrary to Susan's third post, the FBI does not need new legal authorities in order to develop capabilities to break into devices. It is a technique that FBI has already used multiple times in various ways. There probably are new authorities and policies needed to help out state and local in such investigations. Again, this was something I said during testimony.

I'm glad to set the record straight. No straw men please; this discussion is complicated enough as it is. I'll try to post more on the encryption issue shortly.

Topics:

Cybersecurity & Tech Surveillance & Privacy

Susan Landau

Susan Landau is Professor of Cyber Security and Policy in Computer Science, Tufts University. Previously, as Bridge Professor of Cyber Security and Policy at The Fletcher School and School of Engineering, Department of Computer Science, Landau established an innovative MS degree in Cybersecurity and Public Policy joint between the schools. She has been a senior staff privacy analyst at Google, distinguished engineer at Sun Microsystems, and faculty at Worcester Polytechnic Institute, University of Massachusetts Amherst, and Wesleyan University. She has served at various boards at the National Academies of Science, Engineering and Medicine and for several government agencies. She is the author or co-author of four books and numerous research papers. She has received the USENIX Lifetime Achievement Award, shared with Steven Bellovin and Matt Blaze, and the American Mathematical Society's Bertrand Russell Prize.

A Response to Susan's Post

Susan Landau

Susan Landau

More Articles

How Geoblocking Limits Digital Access in Sanctioned States

Lawfare Daily: Social Media Data Practices, with the FTC’s Jacqueline Ford and Ronnie Solomon

CALEA Was a National Security Disaster Waiting to Happen

Other Topics

Subscribe to Lawfare

Lawfare

Resources

About