Browse Definitions :
Definition

XKeyscore

Contributor(s): Matthew Haughn

XKeyscore (XKS) is the search engine interface that interacts with all NSA  federated databases for the collected Internet traffic, communicated data and phone metadata of private citizens.

XKS is used to search the big data collection. The application is distributed to over 150 sites worldwide. Access is provided at high security levels within the countries known as the 5 Eyes (United States, Australia, Great Britain, Canada and New Zealand).

XKS was one of the focuses in whistleblower Edward Snowden’s revelations of NSA activities. The NSA downplays the abilities that systems like XKS have and stresses that justification is required for targeted searches. However, leaked 2008 employee training slides for XKS demonstrate that all that’s required to obtain legal and targeting justification is a couple of broad descriptors, which can be selected from drop-down options. Subsequently, the user can wiretap anyone by searching with their email address, yielding access to live Internet data, such as current browsing and Facebook chat, as well as traffic on many other services -- including encrypted ones -- and a backlog of collected data.

The system that ran the XKS as of the 2008 training document was a linearly scalable distributed Linux cluster made up of over 700 servers in 150 sites worldwide.

  • In 2012, XKS collected, processed and stored 41 billion total records in a single 30-day period.
  • XKS can track encrypted communication usage and can decrypt VPNs.
  • XKS also catalogues exploitable machines that can be compromised in order to increase focus on a subject of interest.
  • XKS captures over 20 terabytes of data a day.

Making a statement to The Guardian website, which broke the Snowden leaks, the NSA said:

"NSA's activities are focused and specifically deployed against – and only against – legitimate foreign intelligence targets in response to requirements that our leaders need for information necessary to protect our nation and its interests… XKeyscore is used as a part of NSA's lawful foreign signals intelligence collection system.”

XKS represents a large part of Edward Snowden’s leaks. As an NSA employee, Snowden said he could, while “sitting at my desk, wiretap anyone, from you or your accountant, to a federal judge or even the president, if I had a personal email.”

Edward Snowden explains NSA data collection:

This was last updated in November 2014

Continue Reading About XKeyscore

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

File Extensions and File Formats

Powered by:

SearchCompliance

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

  • compliance as a service (CaaS)

    Compliance as a Service (CaaS) is a cloud service service level agreement (SLA) that specified how a managed service provider (...

  • data protection impact assessment (DPIA)

    A data protection impact assessment (DPIA) is a process designed to help organizations determine how data processing systems, ...

SearchSecurity

  • Web application firewall (WAF)

    A web application firewall (WAF) is a firewall that monitors, filters and blocks data packets as they travel to and from a ...

  • spyware

    Spyware is a type of malicious software -- or malware -- that is installed on a computing device without the end user's knowledge.

  • application whitelisting

    Application whitelisting is the practice of specifying an index of approved software applications or executable files that are ...

SearchHealthIT

SearchDisasterRecovery

  • business continuity plan (BCP)

    A business continuity plan (BCP) is a document that consists of the critical information an organization needs to continue ...

  • disaster recovery team

    A disaster recovery team is a group of individuals focused on planning, implementing, maintaining, auditing and testing an ...

  • cloud insurance

    Cloud insurance is any type of financial or data protection obtained by a cloud service provider. 

SearchStorage

  • DRAM (dynamic random access memory)

    Dynamic random access memory (DRAM) is a type of semiconductor memory that is typically used for the data or program code needed ...

  • RAID 10 (RAID 1+0)

    RAID 10, also known as RAID 1+0, is a RAID configuration that combines disk mirroring and disk striping to protect data.

  • PCIe SSD (PCIe solid-state drive)

    A PCIe SSD (PCIe solid-state drive) is a high-speed expansion card that attaches a computer to its peripherals.

Close