Microsoft asks to disclose FISA requests to set the record straight
The company wants to correct the 'misimpression' it gives the government direct access to its servers
IDG News Service - Microsoft is seeking permission to disclose "aggregate statistics" about the number of requests for data it receives under the U.S. Foreign Intelligence Surveillance Act, following a similar move by Google earlier this month.
FISA has been thrust into the national spotlight after leaks about the U.S. government's Prism surveillance program, which reportedly provides the National Security Agency with direct access to customer data stored by Microsoft, Facebook, Google and other big technology companies.
Currently, online companies can reveal how many FISA requests they receive only if they lump them together with all other requests from U.S. law enforcement agencies. That obscures the number of FISA requests those companies receive, so Microsoft, like Google before it, has asked for permission to break the numbers out. The FISA Amendments Act (FAA) is the law under which Prism's data collection is carried out.
"To promote additional transparency concerning the government's lawful access to Microsoft's customer data, Microsoft seeks to report aggregate information about FISA orders and FAA directives separately from all other local, state and federal law enforcement demands," Microsoft's lawyers wrote in a motion filed with the Foreign Intelligence Surveillance Court.
Its goal is partly to correct the impression that it provides the government direct access to customer data in its servers, something that has led to criticism of Microsoft and other online firms.
"Microsoft has sought -- and continues to seek -- to correct the misimpression, furthered by such inaccurate media reporting, that it provides the U.S. government with direct access to its servers and network infrastructure and, thereby, indiscriminately discloses Microsoft users' information to the government," Microsoft's attorneys wrote.
Microsoft has not received permission from the FBI or the Department of Justice to disclose additional figures related to FISA requests in the aggregate, but "there is no statutory basis under FISA or the FAA for precluding Microsoft from disclosing the aggregate data," the company said.
Prohibiting such a disclosure, Microsoft argues, violates its First Amendment right to free speech.
Companies like Facebook, Google and Twitter have also called for greater transparency in disclosure of user data tied to government requests in the wake of Prism's revelations.
Yahoo, for instance, has disclosed the total number of law enforcement requests it receives for customer data, but it too is unable to provide greater transparency around FISA requests specifically.
Facebook has made some requests public in recent weeks, but was still criticized by others for not distinguishing between criminal and security information requests.
Microsoft disclosed its figures for the total number of requests it receives for customer information on June 14. For the last six months of 2012, the company received between 6,000 and 7,000 criminal and national security warrants, subpoenas and orders affecting between 31,000 and 32,000 consumer accounts from U.S. governmental entities, Microsoft reported in a recent blog post.
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Streamline Data Protection with IBM Tivoli Storage Manager Operations Center IBM Tivoli Storage Manager (TSM) has been an industry-standard data protection solution for two decades. But, where most competitors focus exclusively on Backup...
- Top tips for securing big data environments - Why big data doesn't have to mean big security challenges Organizations don't have to feel overwhelmed when it comes to securing big data environments. The same security fundamentals for securing databases, data warehouses...
- Top 3 Myths about Big Data Security : Debunking common misconceptions about big data security Big data represents massive business possibilities and competitive advantage for organizations that are able to harness and use that information. But how are...
- Three guiding principles for data security and compliance Data security is a moving target-as data grows, more sophisticated threats emerge; the number of regulations increase; and changing economic times make it...
- Druva inSync: Endpoint Data Protection & Governance CLICK HERE to watch this video about protecting corporate data on laptops and mobile devices, sponsored by Druva.
- How SIEM Addresses the Challenges of Big Security Data This webcast will help you understand today's big data security challenges and how intelligent and scalable SIEM solutions give IT the tools and... All Data Security White Papers | Webcasts