Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

IAPP Certification > Module #12: National Security and Privacy Professional > Flashcards

Module #12: National Security and Privacy Professional Flashcards

1
Q

how do the rules differ when the gov’t seeks personal info for national security purposes compared with law enforcement

A
  • Entities can be faced with requests for information under mandates afforded by in the name of national security by:
  • FISA,
  • the former USA Patriot Act,
  • the USA Freedom Act
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

FISA stands for

A

Foreign Intelligence Survellience Act

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What did FISA approved?

A

FISA approved order to gather intelligence by

  • wiretap
  • pen register
  • trap and trace
  • communication reocrds
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

FISA Foreign intelligence gathering

A

– Established during the Cold War to track the activities of Soviet Union agents and its
allied foreign nation-states
– Collected by the president and attorney general
-electronic collect “foreign intelligence”

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

FISA orders

A

– Entities that received such an order under FISA could not disclose before, during or
after that they were targets of an investigation

  • wiretaps
  • pen register/trap and trace
  • video survelliance
  • national security letters
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

NSL (national security letters)

A

Subpoenas were used narrowly and only for:

  • certain financial and communication records of an agent of a foreign power and on
  • the approval of FBI headquarters
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

USA Patriot Act stands for

A 
U niting and 
S trengthening
A merica by
P roviding
A ppropriate
T ools
R equired to
I ntercept and
O bstruct
T errorism Act
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

USA Patriot act when established when?

A

After Sept 11 2001 terrorist attack.

led to several changes to FISA to address growing threats by terrorist groups.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

USA Patriot Act changed:

Wiretaps

A

used more often and with more flexibility

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

USA Patriot Act changed:

Pen registers/trap and trace

A

expanded to include:

  • dialing
  • routing
  • addressing or signaling

info to or from a device

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

USA Patriot Act

National Security Letters

A

any organization can be subject to a request for records without judicial involvement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Section 215 of USA Patriot act

A
  • federal court order can require production of any tangible thing* for defined foreign intelligence and antiterrorism investigations
  • entities of orders were forbidden to disclose that an order had been recieved except to necessary personnel or an attorney
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

tangible things include

A
  • books
  • records
  • papers
  • documents, etc
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

FISA flexible legal limits led to

A
  • major legal
  • public relations
  • civil liberties issues

Major media outlets published stories of large amounts of wiretaps and stored communications records without judicial authorization. Telephone companies disclosed that they had provided a substantial number of records to the government, and orders for National Security letters were significantly higher than had been reported.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

FISA 2008 Amendment disclosures

A

-Provided legal authorization to new surveillance practices
-required more reporting to
Congress
-granted immunity to telephone companies for records provided to the government in the wake of 9/11.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

FISA Section 702

A

–amendment applies to electronic communications between two non-U.S.
persons.
–The content is often stored within the United States due to the growing use of U.S.-
based providers for webmail, social networks and other services.
- states that when targeting the communication of any person, the government must have foreign intelligence purpose to conduct the collection of information
-reasonable belief that the person is a non-U.S. citizen located outside of the United States.

17
Q

–In June 2013, Edward Snowden released thousands of classified documents to the media.
–documents detailed government programs that were collecting large amounts of informationon citizens and non-citizens.
-While his actions were met with widespread controversy, they
reopened the discussion about national security and information privacy.

The US government makes request for personal info in the name of national security but providing info can lead to legal, public relations and civil liberties issues. From a privacy professional standpoint, how was the collection and storage of PI impacted by the Snowden revelations?

A

Snowden’s revelations led to reforms enacted via the USA FREEDOM Act

18
Q

What does USA Freedom Act stand for?

A 
U niting and
S trengthening
A merica by
F ulfilling
R ights and
E nsuring
E ffective
D iscipline
O ver
M onitoring Act
19
Q

USA Freedom Act Details

A
  • 2015
  • set new rules for national security investigations.

-Because U.S. privacy laws have varying scope and differing definitions for
-national security exceptions,
-privacy and IT professionals and attorneys who provide access to
records must do research to determine what national security disclosures are permitted
-for what sorts of records,
-to which agencies.

20
Q

3 Pieces of the USA Freedom Act

A
  • Prohibitions
  • Transparency
  • Revisions
21
Q

USA Freedom Act

Prohibitions

A

Prohibits use of pen register/trap and trace order for bulk collection under the
Section 215 program. Requests must be based on specific selectors.

22
Q

USA Freedom Act

Transparency

A

Government issues yearly transparency reports of FISA orders and National Security Letters.

23
Q

USA Freedom Act

Revisions

A

Targeted warrants from the FISA Court are needed in order to collect phone metadata from telecommunications companies.

24
Q

CISA Stands for?

What does it do?

2 entities work together?

A

-Cybersecurity Information Sharing Act of 2015
-It encourages the sharing of information between the
government and participating companies.
–Cyberattacks
–threats
-successful defenses.

25
Q

CISA US Government

A

Can share technical data with companies about cyberattacks and successful defenses

– Encourages organizations to share info with each other about cybersecurity threats
– Must publish guidelines on the use and disclosure of shared information to address
privacy concerns

26
Q

CISA Companies

A

Participation is voluntary

– Sharing information with any level of government does not waive privileges

– Information may only be used to develop or implement new cybersecurity regulations

27
Q

CISA Provisions

A
  • -companies must remove PI before sharing
  • -Cyber threat indicators can be used for prosecution purposes
  • -company is protected from liability for monitoring activities
  • -sharing info with federal government does not waive priviledges
  • -Sharing info is exempt from Federal and State FOIA laws
  • -Prohibits the government from using shared info to regulate or take enforcement actions against lawful activites
28
Q

Government or Company?

Company must remove personal information before sharing

A

Company

29
Q

Government or Company?

Cyber threat indicators can be used for prosecution purposes

A

Government

30
Q

Government or Company?

Company is protected from liability for monitoring activities

A

Company

31
Q

Government or Company?

Sharing information with federal government does not waive privileges

A

company

32
Q

Government or Company?

Shared information is exempt from federal and state FOIA laws

A

Company

33
Q

Government or Company?

Prohibits the government from using shared information to regulate or take
enforcement actions against lawful activities

A

government

34
Q

Which act was passed during the Cold War to enable national security to track the
activities of agents of the Soviet Union and its foreign allies?

A) USA PATRIOT Act
B) Foreign Intelligence Surveillance Act (FISA)
C) Cybersecurity Information Sharing Act (CISA)
D) USA FREEDOM Act

A

B

Foreign Intelligence Surveillance Act (FISA).

35
Q 
What does NSL stand for?
A) National security landscape
B) National security letter
C) National security law
D) National security liability
A

B

National security letter

36
Q

True or false? The USA PATRIOT Act was passed in response to the Edward Snowden
revelations.

A

True

37
Q

Which is a provision of the Cybersecurity Information Sharing Act (CISA)? Select all that apply.

A) Companies must remove personal information before sharing
B) Companies are protected from liability for monitoring activities
C) Companies that process the personal information of 100,000 individuals or more are required to participate
D) Sharing information with the federal government does not waive privileges
E) Shared information is exempt from federal and state Freedom of Information laws

A

A
B
D
E

IAPP Certification (14 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions