DOJ Criminal Chief Continues Push For More Access To Encrypted Data

King & Spalding
Contact
LinkedIn
Facebook
X
Send
Embed

On June 6, 2016, during a speech at a Cybercrime Symposium co-organized by the Centers for Strategic and International Studies and the Department of Justice’s (“DOJ”) Computer Crime and Intellectual Property Section, Assistant Attorney General Leslie Caldwell continued to push for access by law enforcement to encrypted data.  In her remarks, Caldwell highlighted that public policy makers – and not the private sector – should decide whether, and to what extent, law enforcement should have access to encrypted data that could be evidence in criminal investigations.  Caldwell also reiterated the DOJ’s position that law enforcement should be able to subpoena and collect data from U.S. companies for investigations, regardless of whether the data is stored in the U.S. or abroad. 

During extensive remarks on a variety of cyber issues, Caldwell commented that while technology and the internet have provided significant benefits to the global economy, they also have brought risks that “criminals have been able to turn the advantages of the internet against us.”  She noted the threat of the development of “warrant-proof encryption, ” where a service provider has developed encryption “in a way that prevents them from producing stable, unencrypted information even if they are served with a valid court order.”  According to Caldwell, such “warrant-proof encryption” has, in many circumstances, thwarted the prosecution of crimes, and “pose[s] an undeniable and growing threat to…law enforcement’s ability to protect the American public.”  Caldwell has previously called access by law enforcement to encrypted information “essential” to national security interests.  

Concerning gaining access to data physically stored outside the borders of the U.S., Caldwell emphasized that the DOJ opposes “legislation that conditions our ability to get data based on where the data is located.”  One of the proposed reforms to the Electronic Communications Privacy Act (the “ECPA”) is called the Law Enforcement Access to Data Stored Abroad Act of 2015 (the “LEADS Act”).  If passed, the LEADS Act would limit the ability of U.S. law enforcement personnel to compel electronic communications service providers to turn over user data if doing so could run afoul of foreign law or if the data was not related to a U.S. citizen.  After passing the U.S. House of Representatives last month, the updates to the ECPA (including the LEADS Act) have stalled in the Senate Judiciary Committee.

Reporter, Ehren K. Halse, San Francisco, +1 415 318 1216, ehalse@kslaw.com

Send Print Report

DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.

© King & Spalding | Attorney Advertising

Written by:

King & Spalding
King & Spalding
Contact
more
less

King & Spalding on:

Reporters on Deadline

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign Up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
Custom Email Digest
- hide
- hide