Header graphic for print
Steptoe Cyberblog

Tag Archives: National Security Agency

Steptoe Cyberlaw Podcast – Interview with Richard Ledgett

Posted in Cybersecurity and Cyberwar, International, Security Programs & Policies

Episode 173:  Interview with Richard Ledgett Today we deliver the second half of our bifurcated holiday podcast with an interview of Richard Ledgett, recently retired from his tour as NSA’s deputy director. We cover much recent history, from Putin’s election adventurism to questions about whether NSA can keep control of the cyberweapons it develops.  Along the… Continue Reading

Steptoe Cyberlaw Podcast – Interview with David Sanger

Posted in China, Cybersecurity and Cyberwar, International, Privacy Regulation, Uncategorized

168: Globalizing Censorship Episode 168 features the Tinkers-to-Evers-to-Chance of global censorship, as Filipino contractors earning minimum wage delete posts in order to satisfy US tech companies who are trying to satisfy European governments.  In addition to Maury Shenk, our panel of interlocutors includes David Sanger, Chief Washington Correspondent for the New York Times, and Karen… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Tim Maurer

Posted in Data Breach, International, Security Programs & Policies

Episode 164: Stewart on the Road to Tarsus Episode 164 features Stewart Baker’s startling change of heart on the question of cyberspace norms. Credit goes to our interview guest, Tim Maurer, Fellow and co-director of the Cyber Policy Initiative at the Carnegie Endowment for International Peace. And perhaps as well to Brian Egan, former Legal… Continue Reading

Steptoe Cyberlaw Podcast – Triple Entente Beer Summit III

Posted in International, Privacy Regulation, Security Programs & Policies

Episode 158 is a bonus episode – the Triple Entente Beer Summit, where members of the Steptoe Cyberlaw Podcast, the Lawfare Podcast, and the Rational Security Podcast assemble over beer to comment on the events of the week – or in this case, the day, since it was among the most news-filled days of President… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Dominic Rochon and Patricia Kosseim

Posted in Cybersecurity and Cyberwar, Data Breach, International

Our interview features a classic “please don’t read this” headline: “Worthwhile Canadian Initiatives.”  We explore multiple worthwhile Canadian initiatives with Dominic Rochon, deputy chief of policy and communications for CSE, Canada’s version of the NSA and with Patricia Kosseim, general counsel and director general for policy at the Office of Canada’s Privacy Commissioner.  Among other… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Jason Healey

Posted in Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies, Uncategorized

149:  Thigh-high boots and defense dominance Our guest for episode 149 of the podcast is Jason Healey, whose Atlantic Council paper, “A Nonstate Strategy for Saving Cyberspace,” advocates for an explicit bias toward cyber defense and the private sector.  He responds well to my skeptical questioning, and even my suggestion that his vision of “defense… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Fred Kaplan

Posted in Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies

Was Iran’s cyberattack that bricked vast numbers of Saudi Aramco computers justified by a similar attack on the National Iranian Oil Company a few months’ earlier?  Does NSA have the ability to “replay” and attribute North Korean attacks on companies like Sony? And how do the last six NSA directors stack up against each other? … Continue Reading

Steptoe Cyberlaw Podcast – Interview with Gen. Michael Hayden

Posted in Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies

Want to see cyber attribution and deterrence in action? In August, a hacker pulled the names of US military personnel and others out of a corporate network and passed them to ISIL. British jihadist Junaid Hussain exulted when ISIL released the names. “They have us on their ‘hit list,’ and we have them on ours… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Rebecca Richards

Posted in China, Cybersecurity and Cyberwar, Data Breach, International, PCLOB, Privacy Regulation, Security Programs & Policies

In this week’s episode, our guest is Rebecca Richards, NSA’s director of privacy and civil liberties.  We ask the tough questions:   Is her title an elaborate hoax or is she the busiest woman on the planet?  How long will it be before privacy groups blame the Seattle Seahawks’ loss on NSA’s policy of intercepting everything? … Continue Reading

Steptoe Cyberlaw Podcast – Interview with David Sanger

Posted in Cybersecurity and Cyberwar, Data Breach, International, Privacy Regulation, Security Programs & Policies

Our guest for Episode 50 of the Steptoe Cyberlaw Podcast is David Sanger, the New York Times reporter who broke the detailed story of Stuxnet in his book,  Confront and Conceal: Obama’s Secret Wars and Surprising Use of American Power.  David talks about his latest story, recounting how North Korea developed its cyberattack network, and… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Dmitri Alperovich

Posted in China, Cybersecurity and Cyberwar, Data Breach, International, Privacy Regulation, Security Programs & Policies

This week in NSA: We take a look at the other half of the Lofgren amendment, which prohibits NSA and CIA from asking a company to “alter its product or service to permit electronic surveillance.”  So if Mullah Omar orders a phone from Amazon, the government can’t ask Amazon to put a bug in it… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Ralph Langner

Posted in Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies

This week in NSA: The House passes an NDAA amendment to regulate “secondary” searches of 702 data, and the prize for Dumbest NSA Story of the Month Award goes to Andrea Peterson of the Washington Post for exposing NSA’s shocking use of “Skilz points” to encourage its analysts to use new tools to do their… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Paul Rosenzweig

Posted in China, Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies

Our guest for the week, Paul Rosenzweig, is as knowledgeable as anyone about cybersecurity and intelligence law.  He blogs on the topics for Lawfare, writes for the Homeland Security Institute, consults for Red Branch Consulting, and lectures for the Great Courses on Audible. So this week we let him comment on the stories of the… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Congressman Mike Pompeo

Posted in Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies

This week’s interview is with Rep. Mike Pompeo, a member of the House Intelligence Committee who joined the House in 2010 after three careers, any one of which would have been enough for an ordinary man.  First in his class in West Point, he left the Army to study law at Harvard, where he made… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Ron Deibert

Posted in Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies

We begin this week’s podcast with Edward Snowden’s NBC interview and the kerfuffle over his claim to have raised concerns about the agency’s intelligence programs before he launched his campaign of leaks.  That leads us (or me, at least) to a meditation on Snowden’s style of truth-telling, which turns out to be almost indistinguishable from,… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Peter Schaar

Posted in China, Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies

Our podcast this week unpacks the European Court of Justice ruling on the right to be forgotten.  We interview Peter Schaar, a proponent of the right to be forgotten and an eminent former data protection chief.  From 2003 to 2013 Peter was the Federal Commissioner for Data Protection and Freedom of Information.  He is currently… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Chris Painter

Posted in Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies

This episode of the Steptoe Cyberlaw Podcast features an interview with Chris Painter, the State Department’s Coordinator for Cyber Issues.  Chris had a long and distinguished career at the Justice Department and the White House before joining State.  Our interview ranges widely.  Are there really norms in cyberconflict, and should the US really encourage the… Continue Reading

Is Snowden a Spy?

Posted in Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies

That’s the possibility raised by Edward Jay Epstein in a (paywalled) Wall Street Journal op-ed.  Epstein offers some new evidence for his theory.  In particular he says that NSA investigators now know that Snowden’s tactics included breaking into two dozen compartments using forged or stolen passwords.  Once there, Snowden loosed an automated “spider” with instructions… Continue Reading

Steptoe Cyberlaw Podcast – An Interview with Brian Krebs

Posted in Cybersecurity and Cyberwar, International, Privacy Regulation, Security Programs & Policies

This week’s podcast features Brian Krebs, the noted security researcher behind Krebs on Security.  Brian comments on the week’s news before giving us an interview on the latest in Russian cybercrime.  We talk about why Microsoft is still patching XP – and why that probably gives its lawyers heartburn.  Brian unpacks Covert Redirection, the latest… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Elana Broitman and Shawn Cooley

Posted in Cybersecurity and Cyberwar, International, Security Programs & Policies

We begin the podcast with This week in NSA, but how long that feature will survive is in doubt.  Because what’s most newsworthy this week is that there was practically no news about NSA.  Or at least no new scandal stories.  The principal new release came from the US government and consisted of a FISA… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Daniel Sutherland

Posted in Cybersecurity and Cyberwar, Data Breach, Security Programs & Policies

In this week’s episode, we explore the latest FOIA tussle between the FBI and ACLU over NSA and the dog-bites-man story of Larry Klayman losing another long-shot appeal. This Week in NSA focuses on the Bloomberg story claiming that the agency is exploiting the Heartbleed flaw. Kudos to NSA for managing to persuasively deny the… Continue Reading

Steptoe Cyberlaw Podcast – Interview with Benjamin Wittes

Posted in Cybersecurity and Cyberwar, Data Breach, Privacy Regulation, Security Programs & Policies

This week’s podcast features a conversation with none other than Lawfare’s own Ben Wittes. But it begins as usual with This Week in NSA: A Reuters story claims that researchers showed something bad about the way NSA influenced the Dual EC encryption standard.  The story glided insouciantly over two of the more newsworthy aspects of… Continue Reading