2016 Postmortem
Related: About this forumWAPO: OP-ED : Was An Asian Gov't Reading Hillary's Emails in 2009?
The simplest answer to the first question is that the lack of a certificate was just a mistake. But what about the second? What inspired the Secretary to get an encryption certificate in March when her team hadnt bothered to get one in January or February?
The likely answer to that question is pretty troubling. There now seems to be a very real probability that Hillary Clinton rushed to install an encryption certificate in March 2009 because the U.S. intelligence community caught another country reading Clintons unencrypted messages during her February 16-21, 2009, trip to China, Indonesia, Japan, and S. Korea.
Thanks to FOIA lawsuits, the State Department has released a few documents from this early period. They show that Clinton began using the clintonemail.com server as early as January 28, 2009, just after her inauguration. Other messages from Cheryl Mills used the server in early February.
Even as she kept her homebrew server, Clinton and her staff were fighting to hang on to their Blackberries, just like President Obama. That provoked resistance from the State Departments top security official, Assistant Secretary Eric Boswell. On March 2, he sent the Secretary a memo Use of Blackberries on Mahogany Row declaring that the vulnerabilities and risks associated with the use of Blackberries in Mahogany Row [the State Departments seventh floor executive offices] considerably outweigh their convenience.
On March 11, at a staff meeting, Clinton seemed to throw in the towel on her Blackberry, telling Boswell that she had read the memo and gets it. We know this from correspondence among Boswells staff.
But whats fascinating and troubling is something else in the correspondence. One staff message says that during Clintons conversation with Boswell, her attention was drawn to a sentence that indicates we [the diplomatic security office] have intelligence concerning this vulnerability during her recent trip to Asia.
snip
Eighteen days later, Clintons server acquires a digital certificate supporting TLS encryption, closing the biggest security hole in her server.
I suppose this could all be coincidence, but the most likely scenario is that the Secretarys Asia trip produced an intelligence report that was directly relevant to the security of Clintons communications. And that the report was sufficiently dramatic that it spurred Clinton to make immediate security changes on her homebrew server.
Did our agencies see Clintons unencrypted messages transiting foreign networks? Did they spot foreign agencies intercepting those messages? Its hard to say, but either answer is bad, and the quick addition of encryption to the server suggests that Clinton saw it that way too.
If thats what happened, it would raise more questions. Getting a digital certificate to support encryption is hardly a comprehensive response to the servers security vulnerabilities. So who decided that that was all the security it needed? How pointed was the warning about her Asia trip? Does it expand the circle of officials who should have known about and addressed the servers insecurity? And why, despite evidence that Clinton was using the server in connection with work in January and February, did Clinton turn over no emails before March 18?
snip
https://www.washingtonpost.com/news/volokh-conspiracy/wp/2016/04/04/was-an-asian-government-reading-hillary-clintons-emails-in-february-2009/
Blue_Adept
(6,399 posts)We're slacking in getting our hit pieces out there these days.
grasswire
(50,130 posts)She did what she did. It's time to face the music.
grasswire
(50,130 posts)Why did Obama not appoint an IG for the duration of her tenure at state? Why did he not fill that vacancy? He had to know, or knew, that shenanigans were going on at state. The NSA knew.
I do not want Obama to be implicated.
unc70
(6,115 posts)There are various reports that Clinton did not have/use normal email provide by State, preferring to use her own server for all her email. There are photos from that period of her and her Blackberry. Since even just having her Blackberry with her was deemed a security risk by security experts at State, how do we reconcile all this and understand what happened?
There are a lot of related issues about having her emails locally on her BB, about the separation of her email systems from each other, about the risks of spear phishing, etc.
I don't see a scenario that would be favorable to Clinton, particularly since some of her emails to others regarding classified topics were published to the Internet by hackers.
(One of those hackers was extradited to the US a couple of weeks ago.)