Internet is full of news and discussions about the recent expansion of the Rule 41 of the Federal Rules of Criminal Procedure by US Supreme Court. While the Department of Justice of US is trying to pass the amendment as a simple modification yet its ramifications are global in nature. To put it straight, the proposed Rule would allow the FBI to access, search and hack any computer, device or equipment remotely while sitting at the home.
Even worst, FBI can hire the services of hackers who can get the job done on behalf of FBI or any other law enforcement agency. State sponsored hacking is not a new concept and almost all the countries are engaging in such activities. Not only this the hackers who work on behalf of a country are also granted legal immunity against cyber deterrent acts by these countries. Even the intelligence agencies of India have demanded such legal immunity in the past and the result of such demand is still not clear.
In these circumstances, it would be naive to suggest that the proposed amended Rule would not violate privacy and cyber laws of different jurisdictions where FBI would use its newly acquired hacking power under the proposed Rule.
All individuals have a right to privacy and this right includes their digital properties, computers and information stored in these computers. Just like you cannot enter into my home without a justified reason and court warrant similarly there is no reason why FBI should intrude into my privacy by some self assumed powers under a US Rule. Further, it is very difficult to understand how can a search warrant issued by a US court empowers the FBI or US law enforcement agencies to access my computer in an unauthorised, illegal and unconstitutional manner? When even Indian government cannot do so how can a foreign government commit such an act?
Clearly, privacy is at grave danger with such attitude and Rules and this would also affect the cloud computing industry as well. Who would like to store their sensitive documents on clouds managed by US companies in such disturbing circumstances? Similarly, the proposed Rule would also flare up the cyber espionage and cyber warfare race among the nations. All this because a vague and unconstitutional US rule empowers FBI and other law enforcement agencies of US to violate civil liberties and digital rights of netizens around the world.
This is a situation where even the self defence would not sufficient and nations and individuals would try their hands upon aggressive defence. There would be a sudden change from the defensive cyber security strategy to an offensive cyber security strategy around the world. The limits to legitimate exercise of self defence would ceases to exist. In the absence of international cyber law treaty and international cyber security treaty (PDF), this limit has to be judged and guided by the principle of private international law.
The proposed Rule would further increase the conflict of laws in cyberspace and negate civil liberties protection in cyberspace. Use of malware would further increase that would make the Internet and cyberspace a more insecure place. Malware are already defeating the cyber security safeguards and this global cyber espionage, cyber warfare and hacking power of FBI is only going to make the scenario more complicated.
Civil liberty activists need to come up with innovative ideas and products to safeguard privacy of netizens. When the Tor system is already been compromised, even the Tor community need to have a relook at their product. Similarly, smart phones encryption is widely targeted these days and the same can be cracked by the law enforcement agencies. Smart phone companies are also required to make their encryption protection stronger otherwise consumer would loose faith in their products and services. Telecom companies are also required to fight against illegal e-surveillance activities of governments around the world.
It is imperative on the part of Indian government to clarify its stand on the proposed Rule and ask its US counterpart for an explanation in this regard. Similarly, other countries should also ask US by what authority they can access the computers and devices located in foreign jurisdictions? As on date, the trans border hacking and search activities of FBI would violate civil liberties and cyber laws of different nations.