FRAMINGHAM 17 FEBRUARY 2011 - Web-based e-mail, social-networking and peer-to-peer services are frustrating law enforcement wiretapping efforts, a lawyer for the U.S. Federal Bureau of Investigation told lawmakers Thursday, but she did not offer concrete ideas on how to fix the problem.
President Barack Obama's administration is debating ways to deal with Web-based services not covered by traditional wiretap laws, including incentives for companies to build in surveillance capabilities, said Valerie Caproni, general counsel at the FBI.
Many Internet services are not covered by the Communications Assistance for Law Enforcement Act (CALEA), which requires traditional telecom carriers to allow law enforcement agencies real-time access to communications after a court has issued a wiretap order, she told members of a subcommittee of the U.S. House of Representatives Judiciary Committee
But Caproni told lawmakers she was not asking for expanded CALEA powers. And she stopped short of calling for rules requiring Web-based communication providers to build in so-called back doors allowing law enforcement access to their software, although she said she's optimistic the U.S. government can find incentives for companies to "have intercept solutions engineered into their systems."
The FBI is concerned that law enforcement investigations are being compromised by the lack of wiretap capability on some Web-based services and encrypted mobile telephone traffic, Caproni said.
"We are not looking for any new authority," she added. "We are concerned we are losing ground in actually being able to gather the information we are authorized to have."
The American Civil Liberties Union raised concerns that expanding wiretapping capabilities would harm the Internet. Adding wiretapping capabilities to Web-based services "will actually change the structure of the Internet, providing the government with a master key to our online communications," Laura Murphy, director of the ACLU Washington Legislative Office, said in a statement.
Witness Susan Landau, a fellow at the Radcliffe Institute for Advanced Study at Harvard University, raised security concerns at the hearing. Extending CALEA rules to Internet services could leave them vulnerable to attack, said Landau, an author on privacy issues and formerly an engineer at Sun Microsystems.
"The intent of proposals to extend CALEA to IP-based communications is to secure the nation," she said. "Rather than doing so, surveillance mechanisms built into communications infrastructure threaten to create serious vulnerabilities for national security and present threats to innovation."
Representative John Conyers, a Michigan Democrat, asked Landau if the ACLU's privacy concerns were justified.
"When you make it easy to wiretap, when all you have to do is flip a switch, it becomes much easier for privacy to be violated," Landau said. "When you make it technologically simple to wiretap, it can be abused."
Sign up for Computerworld eNewsletters.