Home » Budget Industry » NSA Director Rogers Talks About the Future of Encryption


NSA Director Rogers Talks About the Future of Encryption

Adm. Michael S. Rogers, commander of U.S. Cyber Command, director, National Security Agency, chief, Central Security Service in 2015. US Navy Photo

Adm. Michael S. Rogers, commander of U.S. Cyber Command, director, National Security Agency, chief, Central Security Service in 2015. US Navy Photo

The director of the National Security Agency told the Atlantic Council last week arguing over encryption seems like “a waste of time to me” and doesn’t resolve the ongoing divide between privacy and security.

Encryption is “foundational to our future… Given that foundation, what is the best way for us to deal with it? And how do me meet those very legitimate concerns,” Adm. Michael Rogers — who also heads U.S. Cyber Command — said at the Washington, D.C. think tank.
“There are people out there who exploit that vulnerability… some with good reason, some without.”

The FBI is one agency, among other, advocating severe limits on encryption that would block law enforcement from investigation potential terrorist threats. Several states are considering legislation to limit encryption on smart-phones.

“Big data analytics are now available at such a level that suddenly now data becomes attractive to a whole larger group of actors out there. So what you saw at OPM [likely Chinese accessing records of millions of current and former federal employees in April], my comment would be you’re going to see a whole lot more,” he said.

Rogers said that this debate is taking place when the government is less trusted, particularly over protecting citizens’ privacy. “We’ve got to meet these two concerns. …That is not an insignificant challenge for us.”

Addressing NSA’s altered role in data collection, he said, “The law changed; we comply with the law” over what data can be collected and stored. Rogers said that standard applies from the lowest ranking agency employee to the top. “We’re accountable to the citizens we serve” and that includes admitting mistakes.

Twice, Rogers said in answer to a question, “We obey the rule of law.”

In addition to working more closely with other governmental agencies and private industry in the United States, he said the command is building partnerships with allies in a number of areas. The revelation that NSA had records of telephone conversations of foreign heads of government has complicated building these new relationships.

Rogers said the government and the tech sector even today do not often talk about partnerships because of the different cultures they bring to their missions and businesses. In answer to a question, he added, government has “got to make it easier for private sector to deal” with the various federal agencies dealing with cyber as a means of building partnerships.

But one area where there appears to be agreement and the willingness to partner is over combating recruiting young people into terrorist organizations, such as the Islamic State in Iraq and Syria (ISIS or ISIL), by sophisticated uses of social media.

“We have decided … as a society that the exploitation of youths [in the cyber domain] is unacceptable.’ The question becomes: “Is there a social pact that we can come up with that says, ‘hey, look this is unacceptable to us.”‘

Rogers said that “troublesome development” has to be addressed beyond “a U.S. only approach.”

“This is a challenge that will require us to work together in collaborative ways.”

As he said often in his presentation, practicing “cyber hygiene,” such as not opening an attachment from an unknown sender, can take “away 80 percent of the challenges” in defending networks, systems and platforms — not just in the Defense Department, the federal government but private sector. As with a rifle, “you make sure it is used responsibly” and you “do exactly the same thing in cyber.”

Rogers said he did not look at the challenges NSA and the command face as solely preventing “a digital Pearl Harbor,” but one that also keeps a focus on the danger. “We are becoming increasingly vulnerable” to attacks like the one on Sony Entertainment and the Office of Personnel Management.

While these attacks have been “an inconvenience to date,” he added, “It’s going to get worse before it gets better” because they can be attacked by nation states sometimes working together with outside hackers that mask who launched the strike or individual actors.

“Actors change; we have to change” with them.

Rogers said other governmental agencies and businesses need to consider authorizing an individual “to take that system down” if the intent of the hack rises to the level of a serious attack. He has that authority in the Defense Department.

Rogers point to the sophisticated systems and software in today’s automobiles as example of how vulnerabilities are increasing. “Many of these software programs are communicating with the outside world.”

On the personnel side, he said the retention rates is 96.3 percent in the overall workforce and about 90 percent in science, technology, engineering and mathematics field. He also said in NSA and the five-year-old command the idea is build teams mixing veteran employees with newcomers.

That high retention rate is something of a mixed blessing. It would take 30 years to recapitalize the work force, Rogers said. He called for agreements with the private sector sending some of their employees to the government for a specified time and the government likewise sending employees to the private sector to broaden their horizons.

  • patirot

    “We obey the rule of law” … I believe that to be true.

    And if I could get a choke hold on that misogynist traitor Snowden, I would not let go.

    • koconor100

      You obey the rule of law but you’d like to commit murder.
      Interesting perspective.
      Ps: Snowden wasn’t a woman hater.

  • AKO

    NSA -Bankers puppet

  • Michael D. Woods

    “Amendment IV

    “The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated, and no warrants shall issue, but upon probable cause, supported by oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized.”

    What was formerly “papers” now includes electronic means; that seems to be a distinction without a difference. In other words, they have no right of access to my emails and my encryption is also none of their busiiness, unless a warrant is first issued “upon probable cause”. Is trading, in Frankliin’s words. “essential liberty for a little temporary safety”?

    • Secundius

      @ Michael D. Woods.

      “Proclamation 104”

      The Suspending the Writ of Habeas Corpus Suspension Act of 1863. Or, aka “To Suppress Insurrection, to Punish Treason and Rebellion, to Seize and Confiscate the Property of Rebels and For Other Purposes Act”. Or, aka “The Confiscation Act” of 13 November 1862. Signed by the XVIth President of the United States of America, Abraham Lincoln

      STILL LAW OF THE LAND…

      • Michael D. Woods

        Yes. and a bad idea even then. Remember Franklin (actually writing about taxation of the Penns during the French and Indian War, but good for this) as best I remember, “Whoever would trade essential freedom for a little temporary security deserves neither liberty nor safety.”

        • Secundius

          @ Michael D. Woods.

          If your Referring to the “Townshend” Tax, they were QUITE Common Throughout the Colonial America up to 1770. In some Colonial States even Longer to the 1820’s…

          • Michael D. Woods

            I wasn’t, but never mind. Remember that those acts were among the causes of the American Revolution. By the way, I think you meant “you’re” but spell-check will do that sometimes. Also, the Constitution provided in Article 1, Section 9, Clause 2: “The privilege of the writ of Habeas Corpus shall not be suspended; unless where in cases of rebellion or invasion the public safety may require it.” and that’s what Lincoln acted on.

          • Secundius

            @ Michael D. Woods.

            You Forgot the LAST PART of the Act, SIR! “FOR OTHER PURPOSES”. That Covers A Lot of Unseen Territories…

  • koconor100

    I totally support the NSA in making an encryption standard with a back door only they can use.

    And I totally predict that china and other nations will steal a copy and change the part about exactly who the back door works for and who it doesn’t.

    And I totally predict all non-americans will drop kick all such “NSA approved” encryption utilities into the nearest garbage can.

    And I totally predict that a consortium of non-american corperations will pick some version of Linux or another to push instead of nsa pwned Windows 10 . At least ,for use in their own government offices where they’d prefer their president found out what was going on before the american president did.

    🙂