FBI Director Argues Private Companies Shouldn’t Decide Encryption Debate 

FBI Director Christopher Wray

FBI Director Christopher Wray Alex Brandon/AP

Featured eBooks
The IT Modernization Mission
Read Now

Ransomware Threat

Read Now

What's Next For Government Cloud

Read Now

Federal Agencies Exploring Computing at the Edge

Read Now
Mariam Baksh By Mariam Baksh,
Senior Correspondent

By Mariam Baksh

|

A key lawmaker questioned whether the Justice Department’s position is at odds with the Defense Department’s.

FBI Director Christopher Wray presented the House Judiciary Committee with a nuanced stance on encryption when pressed to square the bureau’s position on the issue with that of the Defense Department.

In 2016, the FBI faced off against Apple in court over getting access to the locked phone of a shooter who killed 14 people in San Bernardino, California, so investigators could look for additional digital evidence. Apple, however, argued there was no way to allow law enforcement access without compromising the security of all users’ communications. 

Since then, the FBI and law enforcement agencies have pushed tech companies to create access—some have referred to this as a “backdoor”—to communications sent using end-to-end encryption. This use of encryption shields messages from anyone other than the sender and intended recipients. 

“It seems from the various statements we’ve seen that the FBI is taking one position and the Department of Defense is taking the opposite position,” Committee Chairman Jerry Nadler, D-N.Y., said to Wray, citing an October letter Defense Chief Information Officer Dana Deasy sent to Rep. Ro Khanna, D-Calif.  

The letter, which Khanna forwarded to Senate Judiciary Chairman Lindsey Graham, R-S.C., in December, stressed the importance of “strong encryption” for protecting Defense’s information and resources. 

The FBI’s agenda has generally been supported by law and order Republicans such as Graham. But the House hearing saw the agency’s pleas for the ability to thwart sex traffickers, perpetrators of hate crimes, and other criminals also garnering sympathy from at least one Democrat. 

“When it comes to domestic terrorism and hate crimes and right-wing extremist nationalist groups, antisemetic groups out here using encryption to organize, to plan and then to conduct operations that actually result in people being killed and injured and you’re doing it in a way that you cannot be surveilled, you cannot be held to account in any way after the fact for what you did,” Rep. Henry Johnson, D-Ga., said, “I think that is a danger to our society.” 

Democracy and civil liberties organizations argue end-to-end encryption is necessary to protect individuals’ privacy. The organizations appealed to Facebook to resist pressure from law enforcement to discontinue its plans to institute such encryption across its messaging services in an October letter.    

“Speaking on Facebook’s plans to encrypt its messaging services, you said this would be a ‘dream come through for predators and child pornographers,’ that is, if they were able to encrypt without a backdoor,” Nadler said starting his questions for Wray.

But while Wray generally confirmed his comment, he denied using the term “backdoor.” 

“We don’t think we’re asking for a backdoor, but the first part of what you said is correct,” Wray told Nadler, adding, “I don’t think the Department of Defense is taking a position on what Facebook should be doing about its messaging platform, and I would tell this committee the FBI believes strongly in encryption. We, after all, have a cybersecurity mission.”

Wray’s written testimony shows he was prepared to respond to questions regarding a fine line the FBI is walking in its push for lawmakers to do something about individual companies making decisions about whether law enforcement should be allowed to have information necessary to thwart criminals, including hackers.

“We continue to embrace the use of strong encryption within our most critical sectors and infrastructure,” reads Wray’s testimony, echoing the language in Defense’s letter. 

Deasy also distinguished between personal devices and those issued by the government, noting the department’s mandatory security practices described in the letter apply only to the latter.

Wray’s written testimony urged lawmakers to “seek a solution that allows us to protect our nations’ most vulnerable while at the same time addressing the equities of the larger national security community.”

In an October essay, Jim Baker, former counsel for the FBI who argued the agency’s case in court against Apple, wrote: “I am unaware of a technical solution that will effectively and simultaneously reconcile all of the societal interests at stake in the encryption debate, such as public safety, cybersecurity and privacy as well as simultaneously fostering innovation and the economic competitiveness of American companies in a global marketplace.”

The FBI appears to be referring to a policy solution—rather than a technical one—that could potentially ban certain companies from using end-to-end encryption. However, as policymakers debate whether the social media platforms that house so many communications should be considered critical infrastructure, that is no less controversial. 

In this second round of the old debate pitting privacy against security, the FBI is appealing to lawmakers on behalf of society’s most vulnerable.

“We have to have mechanisms to allow lawful access to protect flesh and blood Americans,” Wray said during the hearing. “Right now, even as we speak, … the National Center for Missing and Exploited Children gets about 18 million tips a year related to child exploitation, and some vast swath of those comes from Facebook.”

“If Facebook moves forward with the plans they have at the moment, we will be blinded,” he said. “They will blind themselves and law enforcement no matter what process this committee comes up with to allow us access to that content. I don’t think that’s a decision Facebook or any one company should be making on behalf of the American people.”  

NEXT STORY: Iowa’s Lesson: Political Parties Are Not as Good as Government Officials at Counting Votes

X
This website uses cookies to enhance user experience and to analyze performance and traffic on our website. We also share information about your use of our site with our social media, advertising and analytics partners. Learn More / Do Not Sell My Personal Information
Accept Cookies
X
Cookie Preferences Cookie List

Do Not Sell My Personal Information

When you visit our website, we store cookies on your browser to collect information. The information collected might relate to you, your preferences or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. However, you can choose not to allow certain types of cookies, which may impact your experience of the site and the services we are able to offer. Click on the different category headings to find out more and change our default settings according to your preference. You cannot opt-out of our First Party Strictly Necessary Cookies as they are deployed in order to ensure the proper functioning of our website (such as prompting the cookie banner and remembering your settings, to log into your account, to redirect you when you log out, etc.). For more information about the First and Third Party Cookies used please follow this link.

Allow All Cookies

Manage Consent Preferences

Strictly Necessary Cookies - Always Active

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data, Targeting & Social Media Cookies

Under the California Consumer Privacy Act, you have the right to opt-out of the sale of your personal information to third parties. These cookies collect information for analytics and to personalize your experience with targeted ads. You may exercise your right to opt out of the sale of personal information by using this toggle switch. If you opt out we will not be able to offer you personalised ads and will not hand over your personal information to any third parties. Additionally, you may contact our legal department for further clarification about your rights as a California consumer by using this Exercise My Rights link

If you have enabled privacy controls on your browser (such as a plugin), we have to take that as a valid request to opt-out. Therefore we would not be able to track your activity through the web. This may affect our ability to personalize ads according to your preferences.

Targeting cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.

Social media cookies are set by a range of social media services that we have added to the site to enable you to share our content with your friends and networks. They are capable of tracking your browser across other sites and building up a profile of your interests. This may impact the content and messages you see on other websites you visit. If you do not allow these cookies you may not be able to use or see these sharing tools.

If you want to opt out of all of our lead reports and lists, please submit a privacy request at our Do Not Sell page.

Save Settings
Cookie Preferences Cookie List

Cookie List

A cookie is a small piece of data (text file) that a website – when visited by a user – asks your browser to store on your device in order to remember information about you, such as your language preference or login information. Those cookies are set by us and called first-party cookies. We also use third-party cookies – which are cookies from a domain different than the domain of the website you are visiting – for our advertising and marketing efforts. More specifically, we use cookies and other tracking technologies for the following purposes:

Strictly Necessary Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Functional Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Performance Cookies

We do not allow you to opt-out of our certain cookies, as they are necessary to ensure the proper functioning of our website (such as prompting our cookie banner and remembering your privacy choices) and/or to monitor site performance. These cookies are not used in a way that constitutes a “sale” of your data under the CCPA. You can set your browser to block or alert you about these cookies, but some parts of the site will not work as intended if you do so. You can usually find these settings in the Options or Preferences menu of your browser. Visit www.allaboutcookies.org to learn more.

Sale of Personal Data

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Social Media Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.

Targeting Cookies

We also use cookies to personalize your experience on our websites, including by determining the most relevant content and advertisements to show you, and to monitor site traffic and performance, so that we may improve our websites and your experience. You may opt out of our use of such cookies (and the associated “sale” of your Personal Information) by using this toggle switch. You will still see some advertising, regardless of your selection. Because we do not track you across different devices, browsers and GEMG properties, your selection will take effect only on this browser, this device and this website.