Don’t want your laptop strip-searched?

Encryption might keep Homeland Security away from your files. Or you could just not take your data across a border in the first place.

By Denise Caruso

Topics:Privacy

Late last month, I opened an e-mail from my friend in Paris, and the first thing I saw was

—–BEGIN PGP SIGNED MESSAGE—–Hash: SHA1

PGP is encryption software that’s been around since 1991. When I asked him why he was using it, he told me his company had been talking to the CIA for a while about its technology and he’d just gotten used to encrypting all his e-mail.

I started writing about all things encryption before 1991, when the development of PGP first made public the conflict between my right to privacy and government’s right to intercept criminal communication. It’s been hammer and tongs between the encryption/privacy community and the government ever since.

Still, I can count on zero hands the times I’ve actually encrypted an e-mail or a file. I don’t know exactly why. It seems like it’s never been easy enough to do to make it practical. Plus it’s not as if I’m carrying around state secrets on my MacBook.

But I’m beginning to think there’s another good reason not to encrypt. On Friday, I saw a post on Dave Farber’s Interesting People list that gave me that sick, déj&agrave vu feeling. It was a post from Ohio State University law professor Peter Swire — a copy of his testimony to the Senate Judiciary Subcommittee on the Constitution, called “No, You Can’t Search My Laptop.” Swire was responding to recently disclosed policies from the Department of Homeland Security that allow agents to confiscate, copy and examine the contents of anyone’s laptop as they cross a border, whether or not they are suspected of breaking a law.

The Washington Post ran a story the same day. Here’s the lead:

Federal agents may take a traveler’s laptop computer or other electronic device to an off-site location for an unspecified period of time without any suspicion of wrongdoing, as part of border search policies the Department of Homeland Security recently disclosed.
Also, officials may share copies of the laptop’s contents with other agencies and private entities for language translation, data decryption or other reasons, according to the policies, dated July 16 and issued by two DHS agencies, U.S. Customs and Border Protection and U.S. Immigration and Customs Enforcement.
Holy crap.
Swire notes that agents at the border are going further than just taking image copies of people’s hard drives. They’re actually demanding passwords and encryption keys so they can examine the contents.
Of course, they promise to destroy the copies and the keys as soon as they’re done — as long as they don’t find anything illegal, like a downloaded song you didn’t pay for — so no security worries there, right? There’s no such thing as a crooked customs or Border Patrol agent.
This gives government agents access to information they would never get by opening up your suitcase. In addition to e-mail, spreadsheets, documents and personal financial information like credit card receipts and photos, nowadays they can also listen to your stored Skype calls and voice mails.
Not to mention that just having encrypted data on your hard drive causes suspicion, or at least throws down the gauntlet. If you were looking for illegal stuff and you ran into a file that looked like this,
qANQR1DBwU4D/TlT68XXuiUQCADfj2o4b4aFYBcWumA7hR1Wvz9rbv2BR6WbEUsy ZBIEFtjyqCd96qF38sp9IQiJIKlNaZfx2GLRWikPZwchUXxB+AA5+lqsG/ELBvRa c9XefaYpbbAZ6z6LkOQ+eE0XASe7aEEPfdxvZZT37dVyiyxuBBRYNLN8Bphdr2zv z/9Ak4/OLnLiJRk05/2UNE5Z0a+3lcvITMmfGajvRhkXqocavPOKiin3hv7+Vx88
wouldn’t you immediately need to know what it said? It could be a conspiracy! It could be a list of child pornographers! It could be a copyrighted magazine article! It could be a bootleg Led Zepplin video!
Urgh.
So I figure the best solution is to encode your files rather than encrypt them, so that you could hide your stuff in plain sight. If agents don’t know something is encrypted and it looks innocuous, they won’t compel you to give them the key. “Here’s your laptop, ma’am. Sorry for the inconvenience.”
This idea made me think of steganography, an alternative to PGP-style encryption. While the message — “PERSHING SAILS FROM NY JUNE 1″ — might look like the gibberish above when encrypted, the same message, coded with a form of steganography that uses the first letter of each word, would read,
PRESIDENT’S EMBARGO RULING SHOULD HAVE IMMEDIATE NOTICE. GRAVE SITUATION AFFECTING INTERNATIONAL LAW. STATEMENT FORESHADOWS RUIN OF MANY NEUTRALS. YELLOW JOURNALS UNIFYING NATIONAL EXCITEMENT IMMENSELY.
(Thanks to Gary Kessler’s steganography site for quick access to examples.)
But traditional steganography won’t work for laptop travelers who aren’t trying to move one or two short secret messages. Most of us just don’t want some random government agent to be able to make a copy of our entire electronic brain every time we cross a border.
What I want is something that automatically takes all my files and recodes them, so that they look and read like something else entirely — like Proust, maybe, or better yet, Kafka.
I want “Hey, Amy, when are you coming to pick up Season 7 of Buffy?” to read,

“Someone must have been telling lies about Josef K., he knew he had done nothing wrong but, one morning, he was arrested.”
That would be sweet. And there are oceans of public domain text ripe for the codin’, thanks to Project Gutenberg …
But, alas, no such program exists. And even if it did, that does not solve our problems today. Unfortunately, the solution to the present insanity may be not to move our data across borders at all.
The very sensible Mark Seiden, a legendary computer security expert who is now at Yahoo, told me that stego is “not a good thesis” for protecting laptops.
His suggestion? “Leave everything on a server, encrypted.” That way you don’t have to carry it across the border, and as long as you know you’ll have a network connection, you can get to it once you get where you’re going. This protects travelers not only from overzealous customs agents, but makes losing a laptop or having it stolen a mere inconvenience, rather than a security nightmare.
Because apparently we are living in Josef K.’s world now, where criminals and customs agents are just different versions of the same thing.

: More Denise Caruso

- 30Comments
- Permalink
- Print
- Short URL
Share:
- Email
- Twitter
- Facebook
- LinkedIn
- Digg
- Reddit
- StumbleUpon
- ShareThis

The rise of Facebook Nation

The social network has become as big and powerful as a country -- and it's time its citizens got a constitution

By Lori B. Andrews

(Credit: ponsulak kunsub via Shutterstock/Salon)

Topics:Facebook, Privacy

This article was adapted from the upcoming book "I Know Who You Are and I Saw What You Did," available Jan. 10 from the Free Press.

When David Cameron became Britain’s prime minister, he made an appointment to talk to another head of state — Mark Zuckerberg. Yes, that Mark Zuckerberg: the billionaire wunderkind, the founder of Facebook. At the meeting at 10 Downing Street, Prime Minister Cameron and Facebook president Zuckerberg discussed ways in which social networks could take over certain governmental duties and inform public policymaking.

A month later, Zuckerberg and Cameron had a follow-up conversation, later posted on YouTube. Cameron, dressed in suit and tie, chatted with Zuckerberg, who wore a blue cotton T-shirt. “Basically, we’ve got a big problem here,” Cameron pointed out to Zuckerberg, describing the U.K.’s financial woes.

Zuckerberg outlined how Facebook could be used as a platform to decrease spending and increase public participation in the political process: “I mean all these people have great ideas and a lot of energy that they want to bring, and I think for a lot of people it’s just about having an easy and a cheap way for them too to communicate their ideas.”

“Brilliant,” Cameron said.

Within a year, Zuckerberg had a seat at the table with government leaders. In May 2011, he attended the G-8 Summit, the annual meeting of key heads of state (named after the eight advanced economies—France, the United States, the United Kingdom, Germany, Japan, Italy, Canada, and Russia). The media reported that world leaders from German Chancellor Angela Merkel to French President Nicolas Sarkozy were more in awe of Zuckerberg than he was of them.

Zuckerberg summarized how Facebook had played a role in worldwide democratic movements and pressed his own policy agenda — urging European officials to back off of proposed regulation of the Internet. “People tell me, ‘On the one hand, it’s great you played such a big role in the Arab Spring, but it’s also kind of scary because you enable all this sharing and collect information on people,’” Zuckerberg said.

Is it odd to think of Mark Zuckerberg as a head of state? Perhaps. But Facebook has the power and reach of a nation. With more than 750 million members, Facebook’s population would make it the third-largest nation in the world. It has citizens, an economy, its own currency, systems for resolving disputes, and relations with other nations and institutions. After watching the video chat between Cameron and Zuckerberg, I became intrigued by the concept of a social network as a nation. I began to wonder: What kind of government rules Facebook? What are its politics? And, if it is like a nation, should it have a constitution?

People are understandably drawn to social networks. For individuals, social networks allow people to stay in touch, performing some of the same functions performed by telephones and letters in previous eras. But laws protect us against outsiders tapping our phones and reading our private mail. Even prisoners can send mail to their lawyers without having those letters read by prison officials. But everything we post on social networks is fair game for the engineers behind Facebook and any other data miner.

Facebook and other social networks are transforming huge swaths of our lives— how we mate, shop, work and stay in touch with the people we love. They are also changing the political process itself. When John F. Kennedy and Richard Nixon debated on television, concerns were raised that politics would deteriorate into a contest where the most telegenic candidate won. But TV debates took place out in the open — anyone could tune in. And the Federal Communications Commission adopted regulations so that opposing candidates were granted equal time to present their views.

With social networks, it’s not the most telegenic candidate who wins, but the one with the best data crunchers. Barack Obama was swept into office largely because of his presence on the Web. His social network campaign was managed by one of the founders of Facebook, 24-year-old Chris Hughes, who took a leave from the company to help propel Obama into office.

The Republicans did Obama one better and stormed Washington in the 2010 elections through the targeted use of social network data. Data aggregators used data from social networks, such as people’s interest in the Bible, past political contributions, voter registration status, shopping history, and real estate records to identify conservative voters by name and provide that information to Republican political hopefuls. The candidates could then email the people directly, making promises and taking stances that were never revealed to the public — and were shielded from the scrutiny of their opponents.

With not only the rights of individuals at stake, but also the future of the political process itself, it’s time to analyze how we as social network citizens can be protected. What responsibilities should individuals bear? What rules should govern what can be done with our digital selves and our data by the social networks themselves and the third parties who gain access to that information? What rights should social network citizens have?

The complex issues raised by social networks came to the fore after the 2011 British riots. Prime Minister Cameron, who’d previously felt that social network communities were “brilliant,” felt differently once rioters began to communicate with each other via Facebook, Twitter and BlackBerry Messenger to share information about what shops to loot.

“Everyone watching these horrific actions will be struck by how they were organised by social media,” the prime minister told the House of Commons. “So we are working with the police, the intelligence services and industry to look at whether it would be right to stop people communicating via these websites and services when we know they are plotting violence, disorder and criminality. I have also asked the police if they need any other new powers.”

Member of Parliament David Lammy pointed out that rioters had used BlackBerry Messenger to send encrypted and almost untraceable messages to each other. He urged Research in Motion, the maker of BlackBerry, to shut off that service entirely until order was restored in the streets. The prime minister similarly asked Twitter and Facebook to remove messages, images and videos that could incite riots.

Civil rights advocates reacted immediately. “How do people ‘know’ when someone is planning to riot?” asked Jim Killock, the executive director of the online advocacy organization Open Rights Group. “Who makes that judgment?” Legitimate advocacy and well-grounded protests will be stifled if social networks and websites are pressured to censor their members.

Social networks have stunning benefits. But the citizens of Facebook Nation who see those benefits may not realize the downside. The young nation was founded only recently, less than a decade ago. Its original citizens were college students who are probably still too young to have experienced rampant discrimination in jobs, romance or credit lines based on what they’ve posted. They may not yet realize the extent to which their offline self is being overshadowed by their digital doppelgänger.

People came to Facebook Nation for freedom of association, free expression and the chance to present an evolving self. But unless people’s rights are protected, social networks will serve to narrow people’s behavior and limit their opportunities, rather than expand them. Already people are being fired for engaging in perfectly legal activities, such as the wine-drinking employee who is tagged on Facebook. And new norms of behavior are emerging that do not reflect off-the-grid life, such as rules forbidding judges to “friend” lawyers.

Unlike a democracy, Facebook is unilaterally redefining the social contract — making the private now public and making the public now private. Private information about people is readily available to third parties. At the same time, public institutions, such as the police, use social networks to privately undertake activities that previously would have been subject to public oversight. Even though cops can’t enter a home without a warrant, they scrutinize Facebook photos of parties held at high school students’ homes. If they see the infamous red plastic cups suggesting that kids are drinking, they prosecute the parents for furnishing alcohol to minors.

Social networks are taking over many of the traditional functions of government without any legal protections for their citizens. The underlying economic goal of social networks — monetizing personal data — is invisible to their citizens and may in fact be herding them into a land that they wouldn’t want to inhabit.

The U.S. Constitution was penned by philosopher-politicians gravely concerned with the metaphysical question of what was necessary for the flourishing of individuals and society. They understood that living socially and with aspirations meant adopting principles to deal with everything from resolving disputes to encouraging innovation, from structuring relationships with other nations to protecting individual rights.

They recognized the value of protecting people’s privacy and assuring the oversight of governmental actions. They required that the governing rules about the relationship between citizens and the government be clearly stated in advance and not changed without adequate notice and citizens’ input. They favored openness about what the government was doing, believing, as U.S. Supreme Court Justice Louis Brandeis said a century later, that “sunshine is the best disinfectant.” They also saw the value of being able to remake oneself, to start afresh.

Instead of philosophy, computer engineering and data collection are the driving forces behind the policies of Facebook Nation. The quest for more and more information about more and more people is what stimulates the Facebook economy because the service makes its money on data. The executives behind social networks often disregard the values that are central to the U.S. Constitution. The Facebook founders, for example, view the desire for privacy as something to be outgrown. In a 2010 interview, Mark Zuckerberg commented on Facebook’s decision to make certain previously private information public: “People have really gotten comfortable not only sharing more information and different kinds, but more openly and with more people.” Former Facebook programmer Charlie Cheever said, “I feel Mark doesn’t believe in privacy that much, or at least believes in privacy as a stepping-stone.”

And the very structure of social networks prevents you from reinventing yourself. Once information about you and photos of you are on the Web, they can be used against you in perpetuity.

As we each begin to live a parallel life on Facebook, it’s time to figure out, as with any new country, what principles should govern this new nation. Do the principles on which the United States and other democracies were founded still resound with people today? Could they provide guidance for the governance of social networks?

The project of proposing a Social Network Constitution may seem foolish. Facebook, Myspace, Google, Twitter, and YouTube are private entities, and the U.S. Constitution governs only the actions of the government, not private actors. But that is not the case in other countries, such as Germany, Ireland, South Africa and the European Union, where the fundamental values expressed in the national constitution can apply to companies in addition to governments. After all, companies may be more powerful than some governments — that’s certainly the case with Facebook.

And even in the United States, the fundamental values expressed in the U.S. Constitution provide guidance for the private realm. The 14th Amendment’s idea of equal protection under the law provided the foundation for Congress to enact civil rights laws that govern the conduct of corporations and private citizens. The Fourth Amendment’s protections for privacy provided judges with the inspiration to allow lawsuits against individuals and corporations that disseminated a person’s private information without consent.

We needn’t think of a Social Network Constitution as a set of rules, like the Internal Revenue Code, that would govern in minute detail what a social network should or shouldn’t do. Instead, think of it as a touchstone, an expression of fundamental values, that we should use to judge the activities of social networks and their citizens. These principles could be used to frame the societal debates about social networks — guiding not only the decisions of citizens about what technologies they should reject but also the decisions of courts and legislatures about what principles should govern.

In many instances, the principles would help courts make a determination in a case, analyze existing laws, and decide whether or not to let evidence in at trial. These values could also guide legislators who are considering adopting new laws to regulate social networks.

The very nature of social networks is constantly changing. New technologies are introduced and individual users face new issues. A set of strict, rigid rules governing the use of social networks might be effective now but will quickly become outdated, just as other laws that are intended to protect people, such as wiretapping laws and consent laws, fail to protect and serve the needs of the current online community. Unlike the rigid, formula-driven Internal Revenue Code, a Social Network Constitution should be flexible and recognize basic principles that we should never outgrow. Its provisions would address the actions of government agencies, social institutions and society at large.

Every democratic nation has governing principles about what rights its citizens have over property, privacy, life and liberty. The citizens of Facebook Nation deserve no less.

: Lori B. Andrews is a professor at Chicago-Kent College of Law and the director of the Institute for Science, Law and Technology. She is the author of 14 books, including "The Clone Age: Adventures in the New World of Reproductive Technology." More Lori B. Andrews

- 26Comments
- Permalink
- Print
- Short URL
Share:
- Email
- Twitter
- Facebook
- LinkedIn
- Digg
- Reddit
- StumbleUpon
- ShareThis

NYPD eyed U.S. citizens in intel effort

Police reportedly monitored Americans under no suspicion of wrongdoing, simply because of their ethnicity

By Matt Apuzzo, Eileen Sullivan and Adam Goldman, Associated Press

New Zealand WCUP Rugby World Cup Sept 11 Anniversary

A uniform from the NYPD is displayed during a special service to commemorate the 10th anniversary of the Sept. 11 terrorist attacks, at a church in New Plymouth, New Zealand, Sunday, Sept. 11, 2011. The US team will play Ireland in their opening Rugby World Cup game later today. (AP Photo/Dita Alangkara) (Credit: AP)

Topics:New York City, New York, Privacy

The New York Police Department put American citizens under surveillance and scrutinized where they ate, prayed and worked, not because of charges of wrongdoing but because of their ethnicity, according to interviews and documents obtained by The Associated Press.

The documents describe in extraordinary detail a secret program intended to catalog life inside Muslim neighborhoods as people immigrated, got jobs, became citizens and started businesses. The documents undercut the NYPD’s claim that its officers only follow leads when investigating terrorism.

It started with one group, Moroccans, but the documents show police intended to build intelligence files on other ethnicities.

Undercover officers snapped photographs of restaurants frequented by Moroccans, including one that was noted for serving “religious Muslims.” Police documented where Moroccans bought groceries, which hotels they visited and where they prayed. While visiting an apartment used by new Moroccan immigrants, an officer noted in his reports that he saw two Qurans and a calendar from a nearby mosque.

It was called the Moroccan Initiative.

The information was recorded in NYPD computers, officials said, so that if police ever received a specific tip about a Moroccan terrorist, officers looking for him would have details about the entire community at their fingertips.

The documents show how New York’s rich heritage as a place where immigrants traditionally have blended in and built their lives now clashes with today’s New York, where police see blending in as one of the first priorities for would-be terrorists.

To prevent attacks, police monitored the path that generations of immigrants followed: getting an apartment, learning English, finding work, assimilating into the culture. Activities such as haircuts and gym workouts were transformed from mundane daily routines into police data points.

A U.S. citizen in Queens, for example, starts work each day at what police labeled “a known Moroccan barbershop.”

The AP previously revealed the secret operations of the NYPD intelligence division as it mapped the Muslim community in and around New York, monitored life in ethnic neighborhoods and scrutinized mosques. The Moroccan Initiative was one of the division’s projects.

Such programs began with help from the CIA under President George W. Bush and have continued with at least the tacit support of President Barack Obama, whose administration repeatedly has sidestepped questions about them. It is unclear whether Mayor Michael Bloomberg oversaw the programs. He has refused to comment directly about them.

In response to the AP’s earlier stories, the CIA’s inspector general is investigating whether its unusually close relationship with the NYPD was unlawful.

NYPD spokesman Paul Browne did not return messages seeking comment about the Moroccan Initiative. In an earlier email, he said the department was not involved in wholesale spying, but rather was trying to document the likely whereabouts of terrorists.

“The unit’s personnel would try to establish, for example, what border crossing a terrorist entering New York would use, what flop house he’d use, what Internet cafe he’d frequent to communicate, etc.,” he wrote.

It’s unclear exactly when the initiative began and whether it continues in any form. Current and former officials told the AP that it started in response to the 2003 suicide bombings that killed 45 people in the Moroccan city of Casablanca and the 2004 train bombing in Madrid that was linked to Moroccan terrorists.

In early meetings, police were told there was no specific threat to New York from Moroccans, officials said, but they were instructed to gather intelligence on the Moroccan community because of concerns Moroccan terrorists might strike here too.

NYPD intelligence chief David Cohen, a former senior CIA officer, oversaw the program, current and former officials said. Many of the documents obtained by the AP were prepared for Police Commissioner Ray Kelly but because of the volume of such documents his office receives, it’s unclear whether he read them.

New York City law prohibits police from using race, religion or ethnicity as “the determinative factor” for any law enforcement action. Civil liberties advocates have said that is so ambiguous it makes the law unenforceable. The NYPD has said intelligence officers do not use racial profiling or troll ethnic neighborhoods for information.

The documents obtained by the AP, many of which were marked “secret,” include a list of “Moroccan Locations,” a virtual tour of the city’s Moroccan neighborhoods. Photos of local businesses were accompanied by notes from plainclothes officers, known as rakers, who quietly kept tabs on ethnic neighborhoods and eavesdropped on conversations.

“A lot of these locations were innocent,” said an official involved in the effort, who like many others interviewed by the AP spoke only on condition of anonymity to discuss sensitive police operations. “They just happened to be in the community.”

Sometimes the notes recorded in police files were detailed, such as the officer who reported that a local sandwich shop was close to a mosque and said the store was closed during Friday prayers.

“The restaurant serves only Halal meat,” the document said. “The majority of the customers are religious Muslims.”

Halal meat is prepared under religious rules similar to kosher food.

Other businesses were described with fewer details. But in every case, the officers noted the ethnicity of the owners.

“In America, you don’t put people under suspicion without good reason,” said Rep. Rush Holt, D-N.J., who reviewed some of the documents obtained by the AP and has urged the Justice Department to investigate. “The idea that people in a group are suspect because of being members of a group is profiling, plain and simple.”

Business owners in the Astoria neighborhood of Queens, where many of the pictures were taken, at first expressed amusement at seeing themselves alongside their friends and neighbors in documents compiled by officers hunting for terrorists.

“Police come here for what? We cut hair all day,” said Amine Darhbach, a U.S. citizen barber who charges $12 for a haircut and sends a portion of his earnings to his family in Morocco each month.

As they flipped through the documents, they said they grudgingly accepted the police attention. It is hardly news to them that, since the 2001 terrorist attacks, Muslims are under greater scrutiny by the public and law enforcement.

“We’ve been harassed for so long, it doesn’t make any sense to complain,” said Leo Santini, a cafe owner and U.S. citizen who changed his name from Mohamed Hussein because he thought he would be treated better without such an Arab name. His three American kids, he said, “don’t look Arab, so they won’t have any problems.”

Finally, there was frustration and anger about being included in police documents.

“All I want is the best for my daughter and my community and to be treated like a new American citizen,” said Sanaa Bergha, whose travel agency was among the businesses photographed in the intelligence files.

Like others, Bergha said that, if asked, she would talk to police about how she could help keep the city safe. But she’s only spoken to the police twice, she said. Once was after she was burglarized. The second was when she reported customers she suspected of making fraudulent documents.

The documents on the Moroccan businesses were compiled by a secretive team called the Demographics Unit, which police originally denied existed. After the AP obtained police documents describing the unit as a team of 16 officers with a mission to map and monitor ethnic neighborhoods, the department said the Demographics Unit used to exist but actually never had more than eight officers.

Browne, the department’s spokesman, has said the unit only followed leads. There is no indication in the documents, however, that police were only investigating criminal leads. Information about crimes was included in the Moroccan Initiative files, but these do not appear to be the program’s focus.

“The Demographics Team was instructed by me to re-canvas the city for any new locations and they came across a newly identified hotel that is referred to Moroccan tourists,” an unidentified supervisor wrote in an undated update on the initiative.

One police document, for example, lists taxi companies and Dunkin Donuts and Subway franchises known to hire Moroccans and other Arabs. A local gym and barber shop also are mentioned. The end of the document includes a section about criminal activity and identifies four businesses believed to be involved in marriage and document fraud and drug dealing.

Another document describes 14 restaurants, two travel agencies and a meat market catering to the Moroccan community. Another said the NYPD produced a list of every Moroccan cab driver in the city. Officers tried to interview them, but many were unavailable to be questioned because they were out working 12- to 14-hour shifts, the document said.

Current and former officials said the information collected by the Demographics Unit was kept on a computer inside the squad’s offices at the Brooklyn Army Terminal. It was not connected to the department’s central intelligence database, they said.

When a Moroccan was arrested, according to the documents, a unit called the Citywide Debriefing Team would visit him in jail or at his home. Each was asked how someone coming to the United States from Morocco might keep a low profile. Officers had a list of 13 questions, including where such a person might live, obtain identification cards, eat, worship and learn English.

The questions helped police identify small apartments in Brooklyn where Moroccan immigrants shared rooms soon after arriving in New York. Police visited one apartment in 2007 to meet with someone who had been arrested the prior year, according to the files. The officer noted the number of bedrooms, the layout, the furnishings and a wall calendar from a nearby mosque.

“There was a small table as well as an entertainment center,” the document said. “There were two Korans. One on top of each speaker.”

Police officials said such detailed note-taking was the result of enormous pressure inside the department. Officers assigned to conduct interviews and visit homes were told by supervisors that, if the subject of their interviews one day turned violent, their reports would be scrutinized with an eye for what warning signs were missed, officials said.

It was intended to keep officers sharp and remind them of the seriousness of the job, but officials said it encouraged well-meaning officers to record even innocent details.

Unlike the information from the Demographics Unit, the information from debriefings and personal visits was reported back to headquarters and entered into the police department’s central intelligence database, the Intelligence Data System, officials said.

Because of lawsuits by civil liberties groups, police lawyers have set stricter limits in recent years about information the NYPD compiles about people not accused of any crime, current and former officials said. Lawyers review police reports and sometimes require officers to remove information or rewrite their reports. Some information on innocent behavior is removed. Other information is labeled “sealed,” which means it can be seen only by very senior officials, the officials said.

Meanwhile, police received from the U.S. government regular updates on foreign visitors entering New York, according to documents and interviews. Police departments often receive information on visitors on a case-by-case basis. U.S. Customs and Border Protection, which maintains the federal documents, declined to tell the AP whether such broad access to its immigration files by a city police department was unusual.

Using the documents, known as I-94s, New York police located and interviewed Moroccans and, when possible, the families they were visiting. Often, that would take them to the homes of U.S. citizens.

Police couldn’t force people to talk to them or let them inside their homes, so officers often used a cover story about a crime in the neighborhood or a report of a missing child nearby, officials told the AP.

During such interviews, the officer would make note of the surroundings: What was on television? How many people lived there? What kind of furniture? If possible, police would collect from residents their names, phone numbers and occupations.

All this underscores the NYPD’s transformation from a police department solving murders and muggings to a domestic intelligence agency. It’s a transformation that Kelly, the police commissioner, makes no apologies for. He has credited intelligence efforts with thwarting terrorist attacks, and White House counterterrorism adviser John Brennan has called those efforts heroic.

No police department in the United States is known to employ programs like New York’s. Police in Los Angeles, the nation’s second-largest city, once considered a program that would have mapped the area’s Muslim communities, but it was shut down after news coverage sparked wide criticism.

Other police departments, including those in cities with Moroccan populations, operate differently — whether for philosophical reasons, because they lack the NYPD’s manpower or because their communities haven’t been targeted repeatedly by terrorists like New York.

In Revere, Mass., police did not dispatch officers into its Moroccan community after the overseas attacks. Revere, a city north of Boston, has a small Moroccan enclave of about 800 people, but it ranks among the top 10 largest Moroccan communities in the country, according to the Census Bureau.

“We wouldn’t just go and start interviewing people because of something that happened in another country,” police Capt. James Guido said. “The guys here wouldn’t even get involved in something like that.”

New York sees things differently, not just because its Moroccan community is a population of about 9,000 and by far the nation’s largest, but because Kelly has made it clear that the department will no longer wait for something to happen.

At the barber shop in Queens, Darhbach said he agrees police should keep the city safe but said that as an American citizen, his business shouldn’t be listed in police files just for serving Moroccan customers. But like many of his neighbors, who grew up under the oppressive police forces of the Middle East and North Africa, Darhbach said things could be worse.

“In Morocco,” he said, “police just come and take you away.”

——

Read a selection of NYPD documents on the Moroccan Initiative http://bit.ly/o7VxoR

Contact the AP’s Washington investigative team at dcinvestigations(at)ap.org

Follow Apuzzo, Sullivan and Goldman at http://twitter.com/mattapuzzo, http://twitter.com/esullivanap and http://twitter.com/goldmandc

: More Matt Apuzzo
: More Eileen Sullivan
: More Adam Goldman

- 7Comments
- Permalink
- Print
- Short URL
Share:
- Email
- Twitter
- Facebook
- LinkedIn
- Digg
- Reddit
- StumbleUpon
- ShareThis

The shadow of suspicion falls in the Mall of America

Visitors who have done nothing wrong are winding up identified in counterterrorism reports

By G.W. Schulz, Daniel Zwerdling and Andrew Becker

The shadow of suspicion falls in the Mall of America

Topics:Homeland Security, National security, Privacy, Terrorism

On May 1, 2008, at 4:59 p.m., Brad Kleinerman entered the spooky world of homeland security.

As he shopped for a children’s watch inside the sprawling Mall of America, two security guards approached and began questioning him. Although he was not accused of wrongdoing, the guards filed a confidential report about Kleinerman that was forwarded to local police.

The reason: Guards thought he might pose a threat because he had been looking at them in a suspicious way.

Najam Qureshi, owner of a kiosk that sold items from his native Pakistan, also had his own experience with authorities after his father left a cellphone on a table in the food court.

The consequence: An FBI agent showed up at the family’s home, asking if they knew anyone who might want to hurt the United States.

Mall of America officials say their security unit stops and questions on average up to 1,200 people each year. With 4.2 million square feet under one roof, the two-decade-old mall is a monument to suburban shopping and entertainment. Nearly 100,000 people from around the world pass through on a given day.

The interviews at the mall are part of a counterterrorism initiative that acts as the private eyes and ears of law enforcement authorities but has often ensnared innocent people, according to an investigation by the Center for Investigative Reporting and NPR.

In many cases, the written reports were filed without the knowledge of those interviewed by security. Several people named in the reports learned from journalists that their birth dates, race, names of employers and other personal information were compiled along with surveillance images.

In some cases, the questioning appears to have the hallmarks of profiling — something that officials at the mall deny. In nearly two-thirds of the cases reviewed, subjects are described as African-American, people of Asian and Arabic descent, and other minorities, according to an analysis of the documents.

Mall spokesman Dan Jasper said the private security guards would not conduct interviews based on racial or ethnic characteristics because “we may miss someone who truly does have harmful intent.”

Much of the questioning at the mall has been done in public while shoppers mill around, records show. Two people, a shopper and a mall employee, also described being taken to a basement area for questioning. Officials at the mall would not address individual cases.

“The government is not going to protect us free of charge, so we have to do that ourselves,” said Maureen Bausch, executive vice president of business development at the mall. “We’re lucky enough to be in the city of Bloomington where they actually have a police substation here [in the mall] … They’re great. But we are responsible for this building.”

Reporters at the Center for Investigative Reporting and NPR obtained 125 suspicious activity reports totaling over 1,000 pages dating back to Christmas Eve, 2005. The documents, provided by law enforcement officials in Minnesota, give a glimpse inside the national campaign by authorities to collect and share intelligence about possible threats.

The initiative exemplifies one of the enduring legacies of the terrorist attacks 10 years ago: Organizations and individuals are now encouraged by U.S. leaders to watch one another and report any signs of threats to homeland security authorities.

There is no way for the public to know exactly how many suspicious activity reports from the Mall of America have ended up with local, state and federal authorities. CIR and NPR asked 29 law enforcement agencies under open government laws for reports on suspicious activities. Only the Bloomington Police Department and Minnesota’s state fusion center have turned over at least a portion of the paperwork.

In 2008, the mall’s security director, Douglas Reynolds, told Congress that the mall was the “number-one source of actionable intelligence” provided to the state’s fusion center, an intelligence hub created after 9/11 to pull together reports from an array of law enforcement sources.

Information from the suspicious activity reports generated at the mall has been shared with Bloomington police, the FBI and, in at least four cases, the federal Immigration and Customs Enforcement agency.

The push to encourage Americans to report suspicious activity began in the aftermath of Sept. 11, 2001, when government officials and citizens found out there had been hints about the attackers that intelligence analysts had missed.

In the decade since, the Justice Department and Department of Homeland Security have launched programs urging citizens to report suspicious activity. The private sector, including the utility industry and other businesses concerned with protecting “critical infrastructure,” have their own surveillance and reporting systems. Homeland Security Secretary Janet Napolitano has made such reporting a priority.

Last year the Department of Homeland Security launched a promotional campaign, “If you see something, say something,” encouraging Americans to report anything perceived as threatening.

Among those formally enlisted were parking attendants, Jewish groups, stadium operators, landlords, security guards, fans of professional golf and auto racing and retailers such as the Mall of America. Visitors “may be subject to a security interview,” the mall’s website says.

The suspicious activity reports from the mall are rich with detail. They contain personal information, sometimes including Social Security numbers and the names of family members and friends. Some of the reports include shoppers’ travel plans.

Commander Jim Ryan of the Bloomington Police Department said shoppers are not under arrest when stopped for questioning by private security. He said even he would walk away if the questioning seemed excessive.

“I don’t think that I would subject myself to that, personally,” he said. Ryan, however, defends security procedures at the mall.

Ryan said such reports are crucial to the nation’s safety in the post-9/11 era. He said the suspicious activity reports could be held by his agency for two decades or longer. He acknowledged that the mall’s methods, and reports the security guards file, may “infringe on some freedoms, unfortunately.”

“We’re charged with trying to keep people safe. We’re trying to do it the best way we can,” he said. “You may be questioned at the Mall of America about suspicious activity. It’s something that may happen. It’s part of today’s society.”

Some national security and constitutional law specialists question the propriety and effectiveness of such reports.

Dale Watson, a former top counterterrorism official with the FBI, said the mall’s reports suggest that anyone could be targeted for intrusive questioning and surveillance.

“If that had been one of my brothers that was stopped in a mall, I’d be furious about it — if I thought the police department had a file on him, an information file about his activities in the mall without any reasonable suspicion to investigate,” said Watson, who played key roles in the investigations of the 1995 Oklahoma City bombing and a 1998 attack on U.S. embassies in East Africa.

Shoppers, who for the most part had no idea that a visit to the mall led to their personal information being shared with law enforcement, reacted with anger and dismay when shown their reports.

“For all the 30 years that I have lived in the United States, I’ve never been a suspect,” said Emil Khalil. The California man was confronted at the mall in June 2009 for taking pictures, and he said an FBI agent later questioned him at the airport. “And I’ve never done anything wrong.”

Monica Lam, Center for Investigative Reporting

Brad Kleinerman, at home with his youngest son, was stopped after Mall of America security guards said he looked at them in a suspicious manner.

Mike Rozin, chief of a special security unit at the mall since 2005, acknowledged that the vast majority of people who come into contact with his unit “have done nothing wrong, have no malicious intent.”

“They just act in a suspicious manner that obligated me to investigate further,” Rozin said. “We talked to them for an average of five minutes, and they’re able to continue their shopping.”

Francis Van Asten’s experience with mall security lasted much longer.

On Nov. 9, 2008, the Bloomington resident videotaped a short road trip from his home to the Mall of America. Van Asten, now 66, planned to send it to his fiancée’s family in Vietnam so they could see life in the United States.

As he headed down an escalator, camera in hand, mall guards caught sight of him.

“Right away, I noticed he had a video camera and was recording the rotunda area,” a security guard wrote in a suspicious activity report.

Van Asten, a one-time missile system repairman for the Army, was questioned for approximately two hours, records show. He was asked about traveling to Vietnam and how he came to know people there. The FBI Joint Terrorism Task Force was alerted. He was given a pat-down search, and the FBI demanded that his memory card be confiscated “for further analysis.”

Authorities were concerned about his footage of an airplane landing at Minnesota’s nearby international airport. They also worried Van Asten was conducting surveillance of mall property.

Exhausted and rattled, Van Asten had trouble finding his car after the ordeal was over.

“I sat down in my car and I cried, and I was shaking like a leaf,” Van Asten said in an interview at his home. “That kind of sensation doesn’t leave you real quickly when you’ve had an experience like that.”

Bobbie Allen, a musician who lives in downtown Minneapolis, was stopped for writing in a notebook. As he waited for a lunch date on June 25, 2007, Allen jotted down some words, which caught the attention of security guard.

One guard wrote in Allen’s suspicious activity report: “Before the male would write in his notebook, it appeared as though he would look at his watch. Periodically, the male would briefly look up from his notebook, look around, and then continue writing.”

Guards asked for his name and for whom he was waiting. Allen, who is black, felt singled out for his race, according to the report. The guard responded that he was “randomly selected” for an interview.

The guards called Bloomington police, after deciding Allen was uncooperative and his note-taking “suspicious.” Allen was cleared, but a suspicious activity report was compiled, complete with surveillance photo, age, height, address and more. Much of that information ended up in a Bloomington police report.

Jeffrey Rosen, a law professor at George Washington University, said such actions trample on traditional civil liberties protections and shift unaccountable power into private hands.

Rosen said the risk of abuses is high, particularly if there turns out to be a lack of proven results. “If all they’re getting for amassing suspicious activity reports on innocent people in government databases is the arrest of a few low-level turnstile jumpers and shoplifters, that doesn’t seem very sensible,” Rosen said.

In Allen’s case, he responded in a way few others have: He complained to the Minnesota Department of Human Rights and filed a lawsuit. Department investigators concluded that there was probable cause to support Allen’s claim of racial discrimination.

Allen declined an interview, citing a settlement agreement reached with the mall.

Not everyone had a negative reaction to being written up. After a report naming him was forwarded to the FBI, Sameer Khalil of Orange County, Calif., said he believed that police and private security have an important job they must do.

“I think [the mall's program] makes America safer,” he said.

Businessman Najam Qureshi discovered how the suspicions at the mall can linger.

The FBI arrived on his doorstep shortly after a run-in with mall security. His family moved from Pakistan to the United States when Qureshi was 8. Police once pulled over their car for a minor traffic violation, and Qureshi remembers his father saying, “You don’t have to fear the police here. They are here to help.”

Qureshi opened a small kiosk at the mall so his aging father, a former aeronautical engineer named Saleem, could keep busy. One day in early 2007, Saleem Qureshi left his cellphone in a mall food court. When he returned for it, security personnel had established a “perimeter” around the phone, along with other unattended items nearby that did not belong to Saleem — a stroller and two coolers.

The “suspicious” objects eventually were cleared by security, documents show. But mall guards pursued Saleem Qureshi with questions.

“Qureshi moved around a lot when answering questions,” security guard Ashly Foster wrote in a report. “At one point, he moved to his kiosk and proceeded to take items off of two shelves just to switch them around. … He seemed to get agitated at points when I would ask more detailed questions.”

Four years after his father ended up in a suspicious activity report, his son was shown the report for the first time.

“Everybody that lives in this country,” said Najam Qureshi, “is a person of interest as far as these reports are concerned.”

– - – - – - – - – -

The Center for Investigative Reporting, the nation’s oldest independent, nonprofit investigative news center, reported this story along with National Public Radio. You can contact the reporters at gwschulz-at-cironline.org, zwerdling-at-npr.org and abecke-at-cironline.org.

Read the extended version on the Center for Investigative Reporting’s project site, americaswarwithin.org.

Margot Williams of NPR contributed to this report.

: More G.W. Schulz
: More Daniel Zwerdling
: More Andrew Becker

- 70Comments
- Permalink
- Print
- Short URL
Share:
- Email
- Twitter
- Facebook
- LinkedIn
- Digg
- Reddit
- StumbleUpon
- ShareThis

TSA introduces new technology to protect privacy

Images of passengers' naked bodies will no longer be used in security screenings

By Eileen Sullivan, Associated Press

TSA introduces new technology to protect privacy

Topics:Privacy, War Room

The Transportation Security Administration says it’s installing new technology in some U.S. airports so when a traveler goes through checkpoint security, a generic outline of a person’s body will be shown instead of the image of a naked body.

The agency says the change is intended to protect travelers’ privacy rights while securing commercial air travel. It will be used in 40 airports, including in Chicago, Dallas, Detroit, Miami and Newark.

The new software is designed to recognize items on the passenger that could pose a security threat.

The agency plans to eventually use this technology for more machines at more airports.

The whole body imaging machines have sparked outrage among passengers and privacy advocates because they reveal images of naked bodies.

——

On the Web:

http://www.tsa.gov/approach/tech/ait/faqs.shtm

: More Eileen Sullivan

- 25Comments
- Permalink
- Print
- Short URL
Share:
- Email
- Twitter
- Facebook
- LinkedIn
- Digg
- Reddit
- StumbleUpon
- ShareThis

British PM demands News Corp. phone hacking inquiry

Scandal involving Rupert Murdoch's News of the World publication widens

By Robert Barr, Associated Press

This is an undated Surrey Police handout photo of Milly Dowler made available Monday July 4, 2011 . Britain 's Prime Minister David Cameron said Tuesday Juily 5, 2011 that he is shocked by allegations that a British tabloid hacked into the cellphone of a murdered schoolgirl Milly Dowler after she went missing. "If they are true, this is a truly dreadful act and a truly dreadful situation," Cameron said about the latest hacking allegations against the News of the World. (AP Photo/Surrey Police. Ho) UNITED KINGDOM OUT NO SALES NO ARCHIVE EDITORIAL USE ONLY (Credit: AP)

Topics:Rupert Murdoch, Privacy

British lawmakers staged an emergency debate Wednesday to vent their outrage over a widening phone hacking scandal in which a tabloid allegedly targeted missing schoolgirls and the families of London terror victims in addition to celebrities and royals.

Prime Minister David Cameron called for inquiries into the News of the World’s behavior as well as into the failure of the original police inquiry to uncover the latest allegations now emerging.

London’s Metropolitan Police, meanwhile, confirmed they were investigating evidence from News International, parent of the tabloid, that some officers illegally accepted payments from the newspaper in return for information.

“It is absolutely disgusting what has taken place,” Cameron said, speaking in the House of Commons shortly before the debate opened. However, he said any inquiry into the News of the World would have to wait until the police investigation is concluded.

News International, the British linchpin of Rupert Murdoch’s global media empire, was under intense pressure following reports that its tabloid had hacked into the cell phone of missing 13-year-old Milly Dowler in 2002, deleting messages and giving her parents and police false hope that the girl was still alive.

Milly had been abducted and murdered, and the search for her transfixed Britain at the time.

Members of Parliament seized on the case to demand a full debate as pressure rose for the chief executive of News International, Rebekah Brooks, to resign, since she was a former editor of News of the World. Major advertisers — including Ford UK and leading mortgage lender Halifax — pulled their ads from the paper.

U.K. tabloids have a history of harassing royals, sports stars and celebrities, eavesdropping and paying even the most tangential sources for information about stars’ sex lives and drug problems. But the Dowler allegations amounted to interfering in a police investigation to seek tabloid headlines.

The scandal widened further Wednesday with new allegations that Glenn Mulcaire, a private detective employed by News of the World, had obtained telephone numbers of relatives of some of the 52 people killed in the 2005 terrorist attack on London’s transit system. It was unclear whether any of those phone had been hacked.

British media also reported that the parents of Holly Wells and Jessica Chapman, schoolgirls murdered in a sensational 2002 case, had been informed by police that they were investigating whether the News of the World also hacked their telephones.

Mulcaire and former News of the World reporter Clive Goodman have already served prison sentences for hacking into the phones of royal officials. Mulcaire issued an apology Tuesday to anyone who had been hurt by his actions, but said there was no intention of interfering with a police investigation.

“Working for the News of the World was never easy. There was relentless pressure. There was a constant demand for results,” Mulcaire said.

Graham Foulkes, the father of one of the 2005 terror victims, said police told him he was on a list of names of potential hacking victims.

“I just felt really upset and sad and sickened that some people would go to those extremes given the distress of 52 families at that time,” Foulkes said, but added that police said they had also warned only a few other families.

Foulkes said he wants to meet Murdoch in person about the scandal. Simon Greenberg, News International’s director of corporate affairs, told the BBC that a meeting was “something we would consider.”

The intense attention on the News of the World comes at a sensitive moment for Murdoch, who is seeking British government clearance to launch a full, multibillion-pound takeover of British Sky Broadcasting.

Britain’s Culture Secretary, Jeremy Hunt, has insisted he will decide the issue purely on competition grounds, without regard to the behavior of the News of the World. But some members of Parliament are linking the two issues and demanding that Hunt block a takeover.

Cameron on Wednesday again rejected calls to refer — and thus delay — any BSkyB takeover by referring the issue to the Competition Commission. Cameron and his wife are friends with Brooks, the News International chief.

The rapidly expanding phone hacking case is also an embarrassment for London’s Metropolitan Police, who essentially accepted the paper’s claim that Mulcaire and Goodman were simply a couple of rogue employees who did not reflect company policy.