The extent of the data collection activities at the National Security Agency have been "terribly" misconstrued, according to Army General Keith Alexander, the director of the NSA and the leader of the U.S. Cyber Command, who sought to "set the record straight" with several thousand security professionals at the Black Hat conference on Tuesday.
"The assumption is that people are just wheeling and dealing and nothing can be further from the truth," Alexander said. "We can audit the actions of our people 100 percent in this case and we do that."
Speaking to throngs of white hat hackers, penetration testers and other IT security professionals, Alexander said employees at his agency use many of the same security tools to mine intelligence data with the intent of thwarting terrorist attacks. These programs helped disrupt a plot to bomb the New York City subway system, which would have been the biggest attack since 9/11, Alexander said. NSA data collection programs helped understand and disrupt 54 terror-related activities.
"No one at NSA had ever gone outside the boundaries of what we have been given," Alexander said. "They take their role very seriously. Their intent is not to go after our communications. Their intent is to find the terrorist that walks among us."
The tenor of the General's audience in a packed auditorium at Caesars Palace was contentious at times. He was interrupted during his speech by a few people shouting that they didn't trust him or his agency's activities. Prior to the keynote, security guards confiscated a dozen eggs located under a chair near the General's podium after being alerted by an attendee.
"I've never sensed this level of tension or apprehension in the security community since the crypto wars in the 1990s," said Jeff Moss, the founder of Black Hat, which is owned and operated by UBM, CRN's parent organization, speaking to attendees prior to the General's keynote. He added that offensive tactics appear to be winning over defensive technologies. "Right now a lot of people are thinking what does this mean for my business."
Alexander has been publicly defending the NSA's foreign surveillance operations and the Patriot Act, which have come under fire following the leak of thousands of documents that outline the agency's data collection activities that were leaked to the media by NSA whistleblower Edward Snowden, a former government contractor for the NSA based in Hawaii. Snowden, who is currently in Moscow, is now a fugitive wanted by the United States.
Snowden's documents outline two NSA surveillance programs: Section 702 of the Foreign Intelligence Surveillance Act, which has a secret court that authorizes access to records and other items of foreigners located outside the U.S.; and Section 215 of the Patriot Act, which grants NSA authority to collect data on phone calls that occur inside the U.S. and between the U.S. and other countries. Alexander said the NSA collects the date and time of calls, the address from which calls were made and the length of calls. Content of the communications are not collected, he said.
NEXT: Strict Program Controls And Oversight In Place, Says Alexander