Google and NSA – An Unholy Alliance
The Washington Post is reporting today (February 4, 2010) that Google and the National Security Agency are teaming up to “share” information:
The world’s largest Internet search company and the world’s most powerful electronic surveillance organization are teaming up in the name of cybersecurity.
Under an agreement that is still being finalized, the National Security Agency would help Google analyze a major corporate espionage attack that the firm said originated in China and targeted its computer networks, according to cybersecurity experts familiar with the matter. The objective is to better defend Google — and its users — from future attack.
Google and the NSA declined to comment on the partnership. But sources with knowledge of the arrangement, speaking on the condition of anonymity, said the alliance is being designed to allow the two organizations to share critical information without violating Google’s policies or laws that protect the privacy of Americans’ online communications. The sources said the deal does not mean the NSA will be viewing users’ searches or e-mail accounts or that Google will be sharing proprietary data.
This may seem like an innocent way for the two to help each other out but the future uses of any information could be very troubling. Google has had high profile privacy mis steps in the past and this could just lead to more.
The article goes on to say that:
The pact would be aimed at allowing the NSA help Google understand whether it is putting in place the right defenses by evaluating vulnerabilities in hardware and software and to calibrate how sophisticated the adversary is. The agency’s expertise is based in part on its analysis of cyber-”signatures” that have been documented in previous attacks and can be used to block future intrusions.
The NSA would also be able to help the firm understand what methods are being used to penetrate its system, the sources said. Google, for its part, may share information on the types of malicious code seen in the attacks — without disclosing proprietary data about what was taken, which would concern shareholders, sources said.
Let’s be clear about one thing: one of the most secretive agencies in the world will not be “sharing” much with anybody, especially a private firm.
This deal could be the proverbial camel’s nose under the tent. It is hard to believe that an agency obsessed with information collection will just stop at monitoring illegal activity.
And, where does it stop? They say now that they won’t monitor e-mails or users searches. It is hard it imagine that if there is another terrorist attack the NSA won’t tap into Google’s “other” databases.