Prism Equally Work Of The Blarney Program

(Updated: Dec 18, 2013)

Last June, the even so on-going Snowden-leaks started amongst the unveiling of PRISM, an NSA computer programme which collects information close unusual targets from American meshing companies similar Facebook, Google, Yahoo, Microsoft in addition to Apple.

Since then, no novel information close PRISM was published, but latterly or so novel details could survive found. These exhibit that PRISM is purpose of or so other NSA program, codenamed BLARNEY, and that US-984XN is non a unmarried designator for PRISM, but stands for multiple designators, 1 for each of the meshing companies.


New slides

On September 8, the Brazilian idiot box intelligence periodical Fantástico aired a report close the NSA trying to access the network of the Brazilian fossil oil companionship Petrobras. In the background of this report, a issue of hitherto unseen NSA slides were shown.

One of the slides shows details close the BLARNEY program, which has the SIGAD, or SIGINT Activity Designator US-984 in addition to the PDDG, or Producer Designator Digraph AX. The slide says that BLARNEY collects DNR (telephony) in addition to DNI (internet) communications nether potency of the FISA court. Main targets of the computer programme are diplomatic establishments, terrorists, unusual governments in addition to economical targets:

Top left the slide shows the NSA seal in addition to elevation right nosotros encounter a light-green leprechaun chapeau amongst a clover leaf, symbolizing Blarney, equally this is besides the holler of a pocket-size town inwards Ireland.

However, the most intesting fact is that the BLARNEY SIGAD US-984 is almost the same equally US-984XN, which is prominently shown on the commencement slide of the PRISM presentation that was published inwards June:

This similarity indicates that PRISM is purpose of BLARNEY, which is besides suggested inwards the Wikipedia article close the latter program.


SIGADs

Wikipedia besides has a skillful article close the SIGAD or SIGINT Activity Designator itself, which teaches us that a SIGAD amongst ii letters followed past times 3 or iv numbers, similar US-984, is for identifying signals intelligence collection programs in addition to activities.

An additional alphabetic graphic symbol is added to announce a sub-designator for a subset of the primary collection unit, similar a detachment. Lastly, a numeric graphic symbol tin survive added afterwards the aforementioned alphabetic to render for a sub-sub-designator. This already confirms that amongst the designation US-984XN, PRISM is a sub-program of BLARNEY.

But there's more. In the Wikipedia-article the SIGADs are represented similar XX-NNNxn, where an X represents an alphabetic graphic symbol in addition to an due north represents a numeric character. Here nosotros encounter the same XN-suffix equally inwards the alleged PRISM designator US-984XN, so it seems that XN is alone meant equally a placeholder for the actual designations of PRISM subsets.

This is confirmed past times or so other slide from Brazilian television, which says that the SIGAD US-984X stands for multiple programs in addition to partners collecting nether FAA authority:

PRISM SIGADs

In 1 of the PRISM slides published inwards June, there's an explanation of the PRISM instance notations. These start amongst a designation for each PRISM provider, similar P1 for Microsoft, P2 for Yahoo, etc. (the commencement seat inwards the slide below). These designators tally the XN-scheme of 1 alphabetic graphic symbol followed past times 1 numeric character.

If nosotros combine this, it seems probable that instead of US-984XN equally a unmarried PRISM SIGAD, in that location powerfulness survive genuinely the next multiple SIGADs, 1 for each of the meshing companies:

- Microsoft: US-984P1
- Yahoo: US-984P2
- Google: US-984P3
- Facebook: US-984P4
- PalTalk: US-984P5
- YouTube: US-984P6
- Skype: US-984P7
- AOL: US-984P8
- Apple: US-984PA

After P8 for AOL, the finally issue becomes the missive of the alphabet Influenza A virus subtype H5N1 for Apple. Maybe this is because to a greater extent than than nine companies became involved, in addition to so NSA chose to proceed amongst hexadecimal numbers, so PA tin survive followed past times PB, PC, etc.

Having split SIGADs for each meshing companionship makes sense, because a SIGAD identifies a specific facility where collection takes place, similar a ship or a listening post. PRISM equally a computer programme is non such a facility, but comprises a issue of them.

The musical note of the multiple PRISM SIGADs is besides to a greater extent than similar that of other collection facilities, for instance US-987LA in addition to US-987LB for the Bavarian in addition to Transitional Islamic State of Afghanistan listening posts of NSA's High German partner-agency BND.


UPDATE in addition to CORRECTION:

Meanwhile, high-resolution video footage of the Brazilian idiot box periodical Fantástico became available, from which I could brand a readable screenshot of a slide that was ineligible until now:

This slide is from an NSA presentation close the FAIRVIEW computer programme in addition to shows that both FAIRVIEW in addition to STORMBREW direct keep a issue of subsets that were non known before. It besides shows that my previous interpretation of the US-984X SIGAD wasn't correct.

The slide learns us that BLARNEY collection nether the FISA Amendment Act (FAA) is designated US-984X* in addition to it's this asterisk which plainly acts equally a placeholder for other facilities collecting nether FAA authority:

- US-984XA-H for viii STORMBREW collection facilities nether FAA
- US-984XR for a FAIRVIEW collection facility nether FAA
- US-984X2 for or so other FAIRVIEW collection facility nether FAA

Here nosotros encounter US-984X followed past times different letters in addition to besides a number, which agency it's straightaway unlikely that "XN" inwards the PRISM SIGAD US-984XN is a placeholder for a missive of the alphabet in addition to a number, equally I assumed before. With US-984XN, PRISM genuinely fits the format of BLARNEY facilities which collect information nether FAA authority. This besides agency that there's alone 1 SIGAD for the PRISM program, in addition to non 1 for each of the meshing companies, although that would direct keep made or so sense.

My thought that the commencement ii characters of the PRISM instance musical note (P1, P2, etc) could survive the suffix afterwards US-984 is besides refuted past times the fact that the high resolution slide shows that US-984P is genuinely the SIGAD for a STORMBREW facility nether FISA authority. FAIRVIEW has besides collection nether FISA, which is designated US-984T.

The master copy raise programs of FAIRVIEW (US-990) in addition to STORMBREW (US-983) are nether Transit (T) authority, which agency that they collect communications which originate in addition to terminate inwards unusual countries when they transit the United States.



BLARNEY

Under BLARNEY, information is collected from both telephone in addition to meshing communications at facilities inwards the United States. The computer programme was started inwards 1978 nether the potency of the Foreign Intelligence Surveillance Act (FISA), which was enacted inwards the same twelvemonth for regulating unusual intelligence collection inwards which communications of Americans could survive involved. The SIGAD for BLARNEY collection nether this initial FISA potency is US-984.

According to a report of the Wall Street Journal, BLARNEY was established amongst AT&T, for capturing unusual communications at or close cardinal international fiber-optic cable landing points, similar the AT&T facility Room 641A inwards San Francisco that was revealed inwards 2006. Influenza A virus subtype H5N1 similar facility was reportedly built at an AT&T site inwards New Jersey.

One of the doors of room 641A inwards the edifice of AT&T inwards San Francisco,
where the NSA had a cloak-and-dagger meshing tapping device installed,
which was revealed past times an AT&T technician inwards 2006.

After the 2001 attacks these intercept capabilities were expanded to top-level telecommunication facilities inside the United States, similar primary switching stations for telephone in addition to meshing traffic. These are accessed through arrangements amongst American meshing backbone providers. Finally companies providing meshing services similar Microsoft, Google in addition to Facebook were added.

Since 2008 this collection takes house nether potency of the FISA Amendments Act (FAA) in addition to the specific BLARNEY sub-programs in addition to corporate partners are identified past times SIGADs inwards the format US-984X*.

According to the latterly disclosed US Intelligence Budget, NSA pays 65.96 1 grand 1000 USD for costs made past times corporate partners nether the BLARNEY program. As PRISM is purpose of BLARNEY, it's possible that purpose of that coin (maybe the xx 1 grand 1000 mentioned inwards this slide?) is besides for expenses made past times the meshing companies similar Facebook, Google in addition to Yahoo.

When PRISM was unveiled inwards June, the Guardian said this computer programme was 1 of the primary contributors to the President's Daily Brief, the top-secret document which briefs the US president every forenoon on intelligence matters. Being the PRISM raise program, BLARNEY is besides 1 of the elevation sources to this document. According to a report past times Der Spiegel, or so 11,000 pieces of information reportedly come upward from BLARNEY every year.

This is shown inwards the slide below amongst a nautical chart of the Top Ten Collection SIGADs from 2010-2011:

(screenshot courtesy @koenr)

In light-green nosotros encounter the signals intelligence sources where NSA's Special Source Operations (SSO) sectionalization uses arrangements amongst corporate partners, inwards bluish the sources where in that location are no such arrangements needed, which agency SSO tin collect the information on its own.

By far the most productive sources are the facilties nether US-984X*, which include PRISM. Second comes information from what is called "transit only" traffic nether the FAIRVIEW computer programme (US-990). The initial BLARNEY collection nether US-984, which is plainly from the AT&T network, is the nineth most productive source.

Some to a greater extent than information close BLARNEY is inwards or so other slide that was shown on Brazilian television:

Click for a readable version

Among other things, the slide says that BLARNEY is used for gathering information related to counter proliferation, counter terrorism, unusual diplomats in addition to governments, equally good equally economical in addition to armed services targets. PRISM seems to survive used against to a greater extent than or less the same targets, equally tin survive seen inwards a lesser known slide of the famous PRISM powerpoint presentation:

(it seems the bottom purpose of this slide was blacked out past times Brazilian media, equally the Indian
newspaper The Hindu disclosed that this slide besides mentions "politics, space, nuclear" as
topics nether the header "India", in addition to besides information from Asian in addition to African
countries is contributing to a full of "589 End production Reports")

Once in 1 lawsuit to a greater extent than this makes clear that programs similar BLARNEY in addition to PRISM are used to get together information close the commons strategic in addition to tactical topics in addition to hence non for spying on Americans or other ordinary people.

(Updated on September 23 amongst the slide describing US-984X, the slide amongst the PRISM topics, or so additional information from the WSJ written report in addition to a novel slide close the elevation x FAA sources)