recommended reading

Key NSA Defender Wants to End Bulk Data Collection

Under the proposal from Rep. Dutch Ruppersberger, the top Democrat on the House Intelligence Committee, the phone companies, not the NSA, would hold the phone data.

Under the proposal from Rep. Dutch Ruppersberger, the top Democrat on the House Intelligence Committee, the phone companies, not the NSA, would hold the phone data. // Brian Witte/AP file photo

One of the top supporters of the National Security Agency is now calling for an end to the agency's controversial practice of collecting data on millions of U.S. phone calls.

Under the proposal from Rep. Dutch Ruppersberger, the top Democrat on the House Intelligence Committee, the phone companies, not the NSA, would hold the phone data. NSA analysts could access the records only if they first obtain an order from the Foreign Intelligence Surveillance Court.

His proposal would not impose any mandate on the phone companies to maintain the data—an idea that would face fierce resistance from civil-liberties groups and the phone companies themselves.

In an interview with National Journal, Ruppersberger argued that a new data-retention mandate is unnecessary because the Federal Communications Commission already requires phone companies to maintain their records for 18 months in case there are disputes over billing.

Most NSA searches involve phone calls that are less than 18 months old, according to Ruppersberger.

The proposal is a shift for the Democratic lawmaker, who is one of the most vocal defenders of the NSA on Capitol Hill.

"I represent NSA," said Ruppersberger, whose district includes NSA's headquarters in Fort Meade, Md. "NSA and the people who work there do an excellent job."

But he acknowledged that in the wake of the leaks by Edward Snowden, there is now a widespread view that the agency is invading people's privacy.

"We've got to find a way to get the confidence of the American people back so they will respect NSA as much as they respect the military," he said.

He argued that his plan would bolster privacy protections while maintaining the NSA's ability to uncover terrorist plots.

Ruppersberger proposal is in line with President Obama's goal of giving up NSA control of the phone database while maintaining the program's capability. The administration is currently reviewing several options for overhauling the program, including having phone companies hold the data and giving the data to a third-party group.

The White House is expected to announce its plan for the program before March 28.

But Ruppersberger warned that no matter what plan the White House comes up with, the program could expire next year when the Foreign Intelligence Surveillance Act is up for renewal.

He said he is working with House Intelligence Committee Chairman Mike Rogers on legislation that would revamp and extend the law.

"I'm not sure whether we could get the votes to pass another FISA bill," Ruppersberger said. "Mike and I realize we have to make a change."

But he acknowledged that the House Intelligence chairman is not on board yet with his proposal to limit the NSA phone sweeps.

In an emailed statement, Rogers said he continues to work with Ruppersberger and other lawmakers "to craft a proposal that will address the concerns around bulk data storage, protect civil liberties, increase transparency and confidence in the government's intelligence-collection activities, and maintain a targeted capability for counterterrorism operations."

Caitlin Hayden, a White House spokesperson, said the president hasn't decided yet on his plan for the program. 

Ruppersberger's proposal would not strengthen the standard NSA analysts need to meet before reviewing phone records. Currently, the NSA collects millions of records, but only accesses the database if there is a "reasonable, articulable suspicion" that a phone number is connected to terrorism.

Under the USA Freedom Act, a tougher bill from GOP Rep. Jim Sensenbrenner and Democratic Sen. Patrick Leahy, the NSA would need to show that a record is relevant to a terrorism investigation and pertains to an agent of a "foreign power."

But Ruppersberger argued that the USA Freedom Act's standard is too restrictive.

"In my opinion that would put our country at risk," he said. The Maryland Democrat argued that intelligence agents are trying to thwart terrorist attacks and they shouldn't be held to the same standard as police or prosecutors trying to obtain evidence for a trial after the crime has already been committed.

In a statement, Sensenbrenner applauded Ruppersberger for agreeing that bulk data collection should end and urged him to sign on to the USA Freedom Act. 

"It strikes the proper balance between security and privacy, and I am confident it has the votes to pass," Sensenbrenner said.

Threatwatch Alert

Network intrusion / Spear-phishing

Researchers: Bank-Targeting Malware Sales Rise in Dark Web Markets

See threatwatch report


Close [ x ] More from Nextgov

Thank you for subscribing to newsletters from
We think these reports might interest you:

  • Data-Centric Security vs. Database-Level Security

    Database-level encryption had its origins in the 1990s and early 2000s in response to very basic risks which largely revolved around the theft of servers, backup tapes and other physical-layer assets. As noted in Verizon’s 2014, Data Breach Investigations Report (DBIR)1, threats today are far more advanced and dangerous.

  • Featured Content from RSA Conference: Dissed by NIST

    Learn more about the latest draft of the U.S. National Institute of Standards and Technology guidance document on authentication and lifecycle management.

  • PIV- I And Multifactor Authentication: The Best Defense for Federal Government Contractors

    This white paper explores NIST SP 800-171 and why compliance is critical to federal government contractors, especially those that work with the Department of Defense, as well as how leveraging PIV-I credentialing with multifactor authentication can be used as a defense against cyberattacks

  • Toward A More Innovative Government

    This research study aims to understand how state and local leaders regard their agency’s innovation efforts and what they are doing to overcome the challenges they face in successfully implementing these efforts.

  • From Volume to Value: UK’s NHS Digital Provides U.S. Healthcare Agencies A Roadmap For Value-Based Payment Models

    The U.S. healthcare industry is rapidly moving away from traditional fee-for-service models and towards value-based purchasing that reimburses physicians for quality of care in place of frequency of care.

  • GBC Flash Poll: Is Your Agency Safe?

    Federal leaders weigh in on the state of information security


When you download a report, your information may be shared with the underwriters of that document.