A top secret National Security Agency program allows analysts to search with no prior authorization through vast databases containing emails, online chats and the browsing histories of millions of individuals, according to documents provided by whistleblower Edward Snowden.
The latest revelations will add to the intense public and congressional debate around the extent ofÂ NSAÂ surveillanceÂ programs. They come as senior intelligence officials testify to the Senate judiciary committee on Wednesday, releasing classified documents in response toÂ the Guardian’s earlier storiesÂ on bulk collection of phone records andÂ Fisasurveillance court oversight.
The files shed light on one of Snowden’s most controversial statements, made in hisÂ first video interview published by the GuardianÂ on June 10.
“I, sitting at my desk,” said Snowden, could “wiretap anyone, from you or your accountant, to a federal judge or even the president, if I had a personal email”.
US officials vehemently denied this specific claim. Mike Rogers, the Republican chairman of the House intelligence committee, said of Snowden’s assertion: “He’s lying. It’s impossible for him to do what he was saying he could do.”
But training materials for XKeyscore detail how analysts can use it and other systems to mine enormous agency databases by filling in a simple on-screen form giving only a broad justification for the search. The request is not reviewed by a court or anyÂ NSAÂ personnel before it is processed.
XKeyscore, the documents boast, is theÂ NSA’s “widest reaching” system developing intelligence from computer networks â€“ what the agency calls Digital Network Intelligence (DNI). One presentation claims the program covers “nearly everything a typical user does on the internet”, including the content of emails, websites visited and searches, as well as theirmetadata.
Analysts can also use XKeyscore and otherÂ NSAÂ systems to obtain ongoing “real-time” interception of an individual’s internet activity.
Under US law, theÂ NSAÂ is required to obtain an individualizedÂ Fisawarrant only if the target of their surveillance is a ‘US person’, though no such warrant is required for intercepting the communications of Americans with foreign targets. But XKeyscore provides the technological capability, if not the legal authority, to target even US persons for extensive electronic surveillance without a warrant provided that some identifying information, such as their email or IP address, is known to the analyst.