Internet search firm Google is finalising a deal that would let the National Security Agency help it investigate a corporate espionage attack that may have originated in China, the Washington Post reports this morning.
The aim of the investigation is to better defend Google, the world’s largest Internet search company, and its users from future attacks, the Post said, citing anonymous sources with knowledge of the arrangement, Reuters adds.
The sources said Google’s alliance with the NSA, the world’s most powerful electronic surveillance organization, would be aimed at letting the two sides share critical information without violating Google’s policies or laws that protect the privacy of online communications.
Under the arrangement, the NSA would not be viewing user searches or e-mail accounts, the sources said. Google also would not be sharing proprietary data with the NSA, they said. Google took the unusual step January 12 of announcing that it had been hit by sophisticated cyberattacks in mid-December and that it was reviewing its business operations in China.
The Silicon Valley-based firm said the cyberattacks targeted Gmail accounts of Chinese human rights activists and an investigation found at least 20 other large companies had been targeted by cyberattacks. China responded several days later with a defence of state control of the Internet. A top official said online pornography, fraud and rumours were a menace and that Internet media must help “guide public opinion” in China.
U.S. Director of National Intelligence Dennis Blair said on Tuesday the cyberattacks against Google were a wake-up call. A partnership between the Internet search giant and the NSA touches on the sensitive issue of how to balance individual privacy and national security online.
Google approached the NSA in the aftermath of the attacks but reaching an agreement has taken weeks because of the sensitive nature of information-sharing between the two sides. The focus of the cooperative venture would not be to determine who was behind the attacks, the Post quoted its sources as saying. That would be nearly impossible.
Instead the aim is to build a better defense of Google’s networks, or what technicians call “information assurances,” the Post quoted sources as saying.