Both Rep. John Conyers [4], D-Mich., and Sen. Bernie Sanders, I-Vt. [5], have introduced bills requiring the government to show “specific and articulable facts” demonstrating how records are relevant.  Similarly, legislation introduced by Sen. Mark Udall, D-Colo., would require any applications to include an explanation [6] of how any records sought are relevant to an authorized investigation.

2) Require NSA analysts to obtain court approval before searching metadata

Once the NSA has phone records in its possession, Sen. Dianne Feinstein has explained that NSA analysts may query the data without individualized court approvals [7], as long as they have a “reasonable suspicion, based on specific facts [8]” that the data is related to a foreign terrorist organization.

A bill from Rep. Stephen Lynch, D-Mass., would require the government to petition the Foreign Intelligence Surveillance Court every time an analyst wants to search telephone metadata [9]. From there, a surveillance court judge would need to find “reasonable, articulable suspicion” that the search is “specifically relevant to an authorized investigation” before approving the application. The legislation would also require the FBI to report monthly to congressional intelligence committees all the searches the analysts made.

3) Declassify Foreign Intelligence Surveillance Court opinions

Right now, court opinions authorizing the NSA surveillance programs remain secret. Advocacy groups have brought several Freedom of Information Act suits [10] seeking the release of Foreign Intelligence Surveillance Court documents, but the Justice Department continues to fight them.

Several bills would compel the secret court to release some opinions. The Ending Secret Law Act — both the House [11] and Senate [12] versions — would require the court to declassify all its opinions that include “significant construction or interpretation” of the Foreign Intelligence Surveillance Act. Under current law, the court already submits these “significant” opinions to congressional intelligence committees, so the bill would just require the court to share those documents with the public.

The bills do include an exception if the attorney general decides that declassifying an opinion would threaten national security. In that case, the court would release an unclassified summary of the opinion, or — if even offering a summary of the opinion would pose a national security threat — at least give a report on the declassification process with an “estimate” of how many opinions must remain classified.

Keep in mind, before Edward Snowden’s disclosures, the Justice Department argued that all “significant legal interpretations” needed to remain classified [13] for national security reasons. Since the leaks, the government has said it’s now reviewing what, if any, documents can be declassified, but they said they need more time [14].

4) Change the way Foreign Intelligence Surveillance Court judges are appointed

Current law does not give Congress any power to confirm Foreign Intelligence Surveillance Court judges. Instead, the chief justice of the United States appoints the judges, who all already serve on the federal bench. The judges serve seven-year terms. Chief Justice John Roberts appointed all 11 judges [15] currently serving on the court – ten of whom were nominated [16] to federal courts by Republican presidents.

A bill introduced by Rep. Adam Schiff, D-Calif., would give the president the power to appoint surveillance court judges [17] and give the Senate power to confirm. The president would also choose the presiding judge of the surveillance court, with Senate approval.

Alternatively, Rep. Steve Cohen, D-Tenn., has offered a bill [18] that would let the chief justice appoint three judges and let the House Speaker, the House minority leader, the Senate majority leader, and the Senate minority leader each appoint two judges.

5) Appoint a public advocate to argue before the Foreign Intelligence Surveillance Court

Currently, the government officials petitioning the Foreign Intelligence Surveillance Court do not face an adversarial process. Surveillance targets do not have representation before the court, and they are not notified if a court order is issued for their data.

In 33 years, the surveillance court only rejected 11 of an estimated 33,900 government requests [19], though it the government has also modified 40 of the 1,856 applications in 2012.

Two former Foreign Intelligence Surveillance Court judges – Judge James Robertson [20] and Judge James Carr [21] – have argued that Congress should appoint a public advocate to counter the government’s arguments. Carr wrote in the New York Times, “During my six years on the court, there were several occasions when I and other judges faced issues none of us had encountered before. […]Having lawyers challenge novel legal assertions in these secret proceedings would result in better judicial outcomes.”

Sen. Richard Blumenthal, D-Conn., has promised to introduce a bill [22] that would provide a “special advocate” to argue on behalf of privacy rights and give “civil society organizations” a chance to respond before the surveillance court issues significant rulings.

The surveillance court can actually invite advocates to argue before the court, as the Supreme Court did when the Obama administration refused to defend the Defense of Marriage Act.

“There’s nothing in law that would prevent the FISA court from hiring an advocate as an additional advisor to the court, except the need to obtain security clearances for that advocate, which would have to be granted by the executive branch,” explained Steven Bradbury, who served as the head of the Office of Legal Counsel in the Department of Justice from 2005 to 2009.

Bradbury has argued that the surveillance court may not need a permanent public advocate because its legal advisers [23] already fulfill that role.

6) End phone metadata collection on constitutional grounds

The Justice Department has maintained that mass phone metadata collection is “fully consistent with the Fourth Amendment [24].” That reasoning is based on the 1979 Supreme Court decision Smith v. Maryland [25], where the Court found that the government does not need a warrant based on probable cause to collect phone records. The Court reasoned that whenever you dial a phone number, you voluntarily share that phone number with a telecom, and you can’t reasonably expect a right to privacy for information shared with third parties. As a result, the Court ruled that the collection of phone records is not a “search” and does not merit protection under the Fourth Amendment.

Sen. Rand Paul, R-Ky., has introduced a bill [26] declaring that the Fourth Amendment “shall not be construed to allow any agency of the United States Government to search the phone records of Americans without a warrant based on probable cause” — effectively shutting down the NSA’s phone metadata collection program.

http://www.propublica.org/article/six-ways-congress-may-reform-nsa-snooping

The NSA’s New Spy Facilities are 7 Times Bigger Than the Pentagon

He works at one of the three-letter intelligence agencies and oversees construction of a $1.2 billion surveillance data center in Utah that is 15 times the size of MetLife Stadium, home to the New York Giants and Jets. Long Island native Harvey Davis, a top National Security Agency official, needs that commanding presence. His role is to supervise infrastructure construction worldwide for NSA, which is part of the Defense Department. That involves tending to logistics, military installations, as well as power, space and cooling for all NSA data centers.

In May, crews broke ground on a $792 million computing center at the agency’s headquarters near Baltimore that will complement the Utah site. Together the Utah center and Maryland’s 28-acre computer farm span 228 acres—more than seven times the size of the Pentagon.

During an interview with Government Executive in June, amid the uproar over leaked details of NSA’s domestic espionage activities, Davis describes the 200-acre Utah facility as very transparent: “Only brick and mortar.” A data center just provides energy and chills machines, he says.

About 6,500 contractors, along with more than 150 Army Corps of Engineers and NSA workers, including some with special needs, are assigned to the project. Davis perks up when he talks about the hundreds of individuals with disabilities he has steered into NSA.

But ask him why the facility is so big and what’s inside, and he is less forthcoming. “I think we’re crossing into content. It’s big because it’s required to be big,” says Davis, a 30-year veteran of the spy agency.

At NSA, secrecy is not exclusive to intelligence analysts. Every civil servant in the Installations and Logistics Directorate Davis leads has a security clearance. He earned his in the early 1980s, entering the agency with a master’s degree in business administration, experience managing inventory for a women’s apparel chain, and a yearning for a higher calling than retail.

For security reasons, some of the contractors erecting the data center don’t even know its purpose, other than the equipment needed—nothing about snooping. The 2010 public work solicitation called for a 65-megawatt center with a chiller plant, fire suppression systems, electrical generators and an uninterruptible power supply backup capacity.

Davis lets out that inside there will be supercomputers, or what NSA labels “high performance computers.” These need “different cooling and different power distributions as opposed to something you bought from Best Buy,” he says. The machines, along with whatever other technology is tucked in the facility, are slated to power on by Oct. 1.

Four years ago, the stated purpose of the megaplex near Salt Lake City was to amass foreign intelligence and warnings about hackers.  Officials described it as an extension of President George W. Bush’s 2008 Comprehensive National Cybersecurity Initiative, a largely classified, cross-agency program to protect U.S. computer networks against adversaries. Today, it is evident the data plantation will not be linked to any one program. Instead, the systems inside will warehouse counterterrorism information collected in aggregate, including millions of Americans’ phone logs for five years and certain foreigners’ online messages, NSA officials confirm. Spies at other locations will decipher what’s accumulated to thwart terrorist attacks, cyber assaults, and weapons of mass destruction.

The Utah effort is the largest ongoing Defense construction project in the United States. Still, it is only three-quarters the size of the department’s largest in the world—the Medical Center Replacement Project at Rhine Ordnance Barracks, Germany.

Harvey Davis, Director of Logistics, NSA, at the agency’s Fort Meade construction site. Photo by Melissa Golden

His Posse

Davis is reluctant to discuss the ratio of contractors to civil service employees in Utah—a week after The Guardian and The Washington Post have reported an NSA contractor leaked Top Secret documents. Prosecutors are pursuing former Booz Allen Hamilton employee Edward Snowden for exposing files about PRISM, the agency’s foreign Internet surveillance program, and domestic call data-monitoring while he was administering NSA data systems in Hawaii.

Compared with the 6,500 contract employees, “there is a smaller number of people on my core project management team,” Davis says. An agency official in the room adds: “We can talk in total numbers here . . . We can’t get into how many are ours, how many are theirs.”

A few days after the interview, when asked why NSA’s reliance on contractors is hush-hush, agency officials released some figures.  Ten people are on Davis’ core team. About 150 employees from the Army Corps of Engineers, along with an undisclosed number of employees from the 1,000-member Installations and Logistics Directorate, are involved with the Utah project. NSA considers the total sum of agency personnel staffed to certain construction projects operational details and would not provide that statistic.  A small workforce of up to 200 government and contract employees—building engineers, systems administrators and maintenance workers—will stay permanently to keep the facility running.

Davis is more eager to discuss the quality than quantity of his employees. Roughly 10 years ago, while working as an NSA human resources director, he encountered an untapped talent pool that he now draws from regularly. “The disabled population is just so thankful to have a job. They would just come in here and you’d have to actually force them to go home,” Davis says. “I have engineers that are hard of hearing, and our workforce all took sign language so they could actually communicate with one another.”

Nobody waters down security clearance exercises to facilitate special needs applicants, he adds. “Somebody who was deaf, we would do polygraph in sign language,” Davis says. “What we look for is qualifications first. We have someone developing software—working on the computers—that is blind. There is really no limitation that we have found as long we can find the skill match.” At least a dozen engineers who have disabilities work in his directorate. Grounds maintenance and snow removal contractors in Utah will be hired through SourceAmerica (formerly NISH), a nonprofit organization that fits agency needs with the skills of job seekers with disabilities.

“He has integrated this into the fabric of the company,” says Joyce A. Bender, past chair of the board of the American Association of People with Disabilities, who met Davis when he decided NSA needed more diversity. “What makes this work at any company is a passionate leader, someone in leadership, whether it’s in the private sector or a federal agency,” says Bender, a Pittsburgh-based consultant who recruits people with disabilities for work in government and industry.

Her firm refers to NSA about 200 individuals annually for positions in finance, linguistics, math and other specialties. Since 2010, about 550 candidates have been hired. “If he says, ‘I’m going to do something,’ you can count on it that he is going to do it,” Bender says of Davis. “He doesn’t sugarcoat anything. He’s very direct and to the point.”

A Leak During Construction

No matter their background or how they came to NSA, civil servants and contract employees alike all serve in silence. “That’s really the culture of this agency, and we’re really not looking for big accolades,” Davis says. “What really makes the people satisfied here is that they did the job and they did it right and they’re doing things within the appropriate manner.” The mentality is that NSA operates in the dark for the safety of Americans. Some citizens, however, argue it should operate in the sunshine a little more for the safety of democracy.

The secrecy dispute is “a distraction and a weakness that has been presented by this guy,” Snowden, who should not have seen such sensitive information in the first place, says one former NSA official. “They’ve got to do some internal homework about how to keep that data separate,” the ex-official says, adding that technical controls are not very difficult to configure. “How the heck did this guy in Hawaii gain access to all that?”

Some human rights advocates are grateful for the exposure of the agency’s surveillance methods. “Communications about millions of innocent Americans are being stored for five years in a government database—whether or not there is any reason to search our call records, and I don’t think our Constitution allows that,” says Alex Abdo, staff attorney for the American Civil Liberties Union’s National Security Project.

Even some former Pentagon officials say citizens should know NSA’s intentions for the Utah data center. “When you have this much centralization of capabilities, which in government terms can translate into real power—that and resources—it’s important that the public be able to look at these things and figure out what they are doing,” says a cyber official who recently left Defense and now works as a private contractor. The official is not involved in the project and was not authorized to speak on behalf of the department.

A 2012 article in Wired reported that NSA needs the megaplex partially because the Pentagon wants to expand the military global communications network to manage yottabytes of data. “A yottabyte is a septillion bytes—so large that no one has yet coined a term for the next higher magnitude,” the article said. “Should the agency ever fill the Utah center with a yottabyte of information, it would be equal to about 500 quintillion (500,000,000,000,000,000,000) pages of text.” NSA officials told Government Executive, however, they do not discuss such operational details.

An Open House

The contents of the NSA computer fortress might be a mystery to the public, but Davis says his project has been open to congressional and industry scrutiny.

“The military construction process by design is a very, very transparent process. We work through the Corps of Engineers,” he says. “It’s a public discourse. When we give out our request for proposal, that’s through FedBizOpps.gov.” But on the website, many of the work descriptions for that project are locked behind a firewall. NSA spokeswoman Vanee Vines says the documents are restricted because “they must be accounted for and are only for cleared defense contractors.”

Davis acknowledges the controversy over his project has taken an emotional toll. “We’ve been pressured to disclose what’s been going in the Utah Data Center for quite a while independent of the current events,” he says. “My workforce and the workforce that I work with here [in Utah] take our jobs and our responsibility very, very seriously, and for somebody to say that we’re doing something untoward is a pretty big hit on the morale here.”

No matter the outcome of the debate, the Utah computers are expected to go online within two months. This is where the MBA comes in. From choosing a site, to convincing Congress to agree with blueprints to surmounting a late-in-the-game budget chop, balancing the books is key. “Utah is a wonderful place with abundant and inexpensive power,” Davis says. “Plenty of sources of water for cooling.” NSA applied a mathematical model to select the location. The surrounding environment simplified construction. “Utah, because of the facility and the utilities, just came out far and ahead of everywhere else,” he says. “Lots of good roads. We could get the steel in. We could get the concrete in. We have lots of sand pits nearby,” he says. “We built our own cement slabs in that area. It’s pretty well offset from the road for the security that we need for the data center.”

The price tag for the project is in line with industry standards, according to NSA. “It’s actually relatively cheap and I came in under cost,” Davis says, referring to $100 million in savings gained partly by refusing to let contractors adjust the plan. Penny-pinching became mandatory when governmentwide spending cuts, known as sequestration, kicked in this year.

“One of the biggest cost drivers on a project this size is something called an engineering change proposal. They really number in the tens to hundreds in a project of this size,” but one could “count on a couple of hands the numbers of change orders that we allowed to happen,” he says. “We spent a lot of time honing the requirements tightly up front, making sure we knew what we were building, building it, and not going back and changing it later.” That’s the New York strong arm talking.

http://www.defenseone.com/technology/2013/07/nsas-big-dig/67406/