The FBI investigation that toppled the CIA director and now threatens to tarnish the reputation of the top U.S. commander in Afghanistan underscores a danger that civil libertarians have long warned about: that in policing the Web for crime, espionage and sabotage, government investigators will unavoidably invade the private lives of Americans.
On the Internet, and especially in email, text messages, social network postings and online photos, the work lives and personal lives of Americans are inextricably mixed. Private, sensitive messages are stored for years on computer servers, available to be discovered by investigators who may be looking into unrelated matters.
In the FBI case, Jill Kelley of Tampa, Fla., a friend both of David Petraeus, the former CIA director, and Gen. John R. Allen, the top NATO commander in Afghanistan, was disturbed by a half-dozen anonymous emails she had received in June. She took them to an FBI agent whose acquaintance with Kelley (he had sent her shirtless photos of himself — electronically, of course) eventually prompted his bosses to order him to stay away from the investigation.
But a squad of investigators at the bureau’s Tampa office, in consultation with prosecutors, opened a cyberstalking inquiry.
Although that investigation is still open, law enforcement officials have said that criminal charges appear unlikely.
In the meantime, however, there has been an earthquake of unintended consequences. What began as a private, and far from momentous, conflict between two women, Kelley and Paula Broadwell, Petraeus’ biographer and the reported author of the harassing emails, has had incalculable public costs.
The CIA is suddenly without a permanent director at a time of urgent intelligence challenges in Syria, Iran, Libya and beyond. The leader of the U.S.-led effort to prevent a Taliban takeover in Afghanistan is distracted, at the least, by an inquiry into his email exchanges with Kelley by theDefense Department’s inspector general. For privacy advocates, the case sets off alarms.
“There should be an investigation not of the personal behavior of Gen. Petraeus and Gen. Allen but of what surveillance powers the FBI used to look into their private lives,” said Anthony Romero, executive director of the American Civil Liberties Union. “This is a textbook example of the blurring of lines between the private and the public.”
Law enforcement officials have said they used only ordinary methods in the case, which might have included grand jury subpoenas and search warrants. As the complainant, Kelley presumably granted FBI specialists access to her computer, which they would have needed in their hunt for clues to the identity of the sender of the anonymous emails. While they were looking, they discovered Allen’s emails, which FBI superiors found “potentially inappropriate” and decided should be shared with the Defense Department.
In a parallel process, the investigators gained access, probably using a search warrant, to Broadwell’s Gmail account. There they found messages that turned out to be from Petraeus.
Marc Rotenberg, executive director of the Electronic Privacy Information Center in Washington, said the chain of unexpected disclosures is not unusual in computer-centric cases.
“It’s a particular problem with cyberinvestigations — they rapidly become open-ended, because there’s such a huge quantity of information available and it’s so easily searchable,” he said, adding, “If the CIA director can get caught, it’s pretty much open season on everyone else.”
For years now, as national security officials and experts have warned of a Pearl Harbor cyberattack that could fray the electrical grid or collapse stock markets, policymakers have jostled over which agencies should be assigned the sensitive task of monitoring the Internet for dangerous intrusions.
Advocates for civil liberties have been especially wary of the National Security Agency, whose expertise is unrivaled but whose immense surveillance capabilities they see as frightening. They have successfully urged that the Homeland Security Department take the leading role in cybersecurity.
That is in part because Homeland Security, if far from entirely open to public scrutiny, is much less secretive than the NSA, the eavesdropping and code-breaking agency. To this day, NSA officials have revealed almost nothing about the warrantless wiretapping it conducted inside the United States in the hunt for terrorists in the years after 2001, even after the secret program was disclosed by The New York Times in 2005.