The department of telecommunications will send a letter to all telecom operators, asking them to connect their Lawful Interception System (LIS) to the Indian government’s Centralised Monitoring System (CMS), Mint reports, citing documents they have access to. Telecom minister Kapil Sibal has apparently approved changes in existing rules, and had clauses inserted in mobile licenses for enabling this surveillance. Telco’s will have to connect at a regional monitoring centre through “an interception, store and forward (ISF) server placed in the licensee’s premises”, according to the documents.” This will allow the government to monitor all traffic within the country, including snoop on website access, phone calls, text messages, GPRS usage, emails, and get information on an individual’s location, among several other things. This is a key component of a series of initiatives by the Indian government over the last few years, for identification (Aadhaar and NPR), monitoring (CMS and more) and blocking (IT Rules).

Interestingly, in a response to Mint, the DoT is points towards the CMS as a safeguard against illegal provisioning by a telecom operator, something with Milind Deora, Minister of State for Telecom had also said during his interaction with me last month. The Department of Telecom has told Mint that there will be a different interception provisioning agency, a different for for requisitioning and monitoring, and a non-erasable command log will be maintained by the system, which can be examined for misuse.

In our opinion, these internal checks and balances do not work because they are going to be implemented by a system that is going to be protected from disclosures: there will be no transparency or public scrutiny of orders, and as we know, there are times when processes even set by the government are not followed, because of the protection that is given to agencies under “national security”.

The Mint story quotes internal ministry notes on how the minister should respond to “the privacy lobby”, and is worth a read. It has been clear for a while that this government has no intent to change the IT Rules, bring about transparency in its monitoring operations, and apply the guidelines for monitoring of phones calls set by the PUCL judgment to Internet access. This is, of course, apart from the fact that there is no legal protection because India doesn’t have a privacy law.

The CMS is similar to the PRISM initaitive from the United States of America, and those in the US appear to be getting their act together: The Electronic Frontier Foundation is suing the country’s National Security Agency on behalf of a broad coalition of political advocacy organizations for violating the country’s First Amendment right of association by illegally collecting their call records. (see the EFF statement below)

In India, the government is being sued in the Supreme Court over Section 66A of the IT Act, the IT Rules, and there are cases that have also been filed against the Aadhaar project. So, who’ll sue the Indian government over the CMS system?

p.s.: We’ve asked Mint if they can upload the documents they’ve based their story on.

*

The EFF Statement:

Unitarian Church, Gun Groups Join EFF to Sue NSA Over Illegal Surveillance

Broad Coalition of Organizations Team Up for Freedom of Association Lawsuit
San Francisco – Nineteen organizations including Unitarian church groups, gun ownership advocates, and a broad coalition of membership and political advocacy organizations filed suit against the National Security Agency (NSA) today for violating their First Amendment right of association by illegally collecting their call records. The coalition is represented by the Electronic Frontier Foundation (EFF), a group with years of experience fighting illegal government surveillance in the courts.

“The First Amendment protects the freedom to associate and express political views as a group, but the NSA’s mass, untargeted collection of Americans’ phone records violates that right by giving the government a dramatically detailed picture into our associational ties,” said EFF Legal Director Cindy Cohn. “Who we call, how often we call them, and how long we speak shows the government what groups we belong to or associate with, which political issues concern us, and our religious affiliation. Exposing this information – especially in a massive, untargeted way over a long period of time – violates the Constitution and the basic First Amendment tests that have been in place for over 50 years.”

At the heart of First Unitarian Church of Los Angeles v. NSA is the bulk telephone records collection program that was confirmed by last month’s publication of an order from the Foreign Intelligence Surveillance Court (FISC). The Director of National Intelligence (DNI) further confirmed that this formerly secret document was legitimate, and part of a broader program to collect all major telecommunications customers’ call histories. The order demands wholesale collection of every call made, the location of the phone, the time of the call, the duration of the call, and other “identifying information” for every phone and call for all customers of Verizon for a period of three months. Government officials further confirmed that this was just one of series of orders issued on a rolling basis since at least 2006.

“People who hold controversial views – whether it’s about gun ownership policies, drug legalization, or immigration – often must express views as a group in order to act and advocate effectively,” said Cohn. “But fear of individual exposure when participating in political debates over high-stakes issues can dissuade people from taking part. That’s why the Supreme Court ruled in 1958 that membership lists of groups have strong First Amendment protection. Telephone records, especially complete records collected over many years, are even more invasive than membership lists, since they show casual or repeated inquiries as well as full membership.”

“The First Unitarian Church of Los Angeles has a proud history of working for justice and protecting people in jeopardy for expressing their political views,” said Rev. Rick Hoyt. “In the 1950s, we resisted the McCarthy hysteria and supported blacklisted Hollywood writers and actors, and we fought California’s ‘loyalty oaths’ all the way to the Supreme Court. And in the 1980s, we gave sanctuary to refugees from civil wars in Central America. The principles of our faith often require our church to take bold stands on controversial issues. We joined this lawsuit to stop the illegal surveillance of our members and the people we serve. Our church members and our neighbors who come to us for help should not fear that their participation in the church might have consequences for themselves or their families. This spying makes people afraid to belong to our church community.”

In addition to the First Unitarian Church of Los Angeles, the full list of plaintiffs in this case includes the Bill of Rights Defense Committee, Calguns Foundation, Greenpeace, Human Rights Watch, People for the American Way, and TechFreedom.

EFF also represents the plaintiffs in Jewel v. NSA, a class action case filed on behalf of individuals in 2008 aimed at ending the NSA’s dragnet surveillance of millions of ordinary Americans. Last week, a federal court judge rejected the U.S. government’s latest attempt to dismiss the case, allowing the allegations at the heart of the suit to move forward under the supervision of a public federal court.