18 June 2001. Thanks to National Security Archive.
Source: http://www.gwu.edu/~nsarchiv/NSAEBB/NSAEBB23/26-01.htm et seq.

See related USSID 18, dated 27 July 1993:


Poor quality text is partly illegible, best guess used or marked illegible. xxxx indicates redaction.

[8 pages.]



Guide (FOUO)

Derived from: NSA/CSS Manual 123-2
Dated: 24 February 1998
Declassify On: X1, X3, X5, X6, X7, X8


[Same classification markings on every page.]

Overview (U)

Introduction (U)

(FOUO) This is an informal guide to USSID 18 for areas concerning U.S. identities. It briefly addresses the regulations and directives which guide NSA's authorities, collection and reporting issues for threat and non-threat situations, and lists procedures for U.S. identity release. This informal guide directs the reader to the specific USSID 18 sections and is not a substitute for USSID 18, but should be used in conjunction with it. Use of this guide does not relieve the reader of his or her obligation to review E.O. 12333, DoD Reg 5140.1-R, NSA/CSS Directive 10-30 and USSID 18 at least annually.

(FOUO) U.S. identities may be released to customers under specific conditions. Procedures for release of U.S. identities appearing in SIGINT are outlined in the memorandum on pages 7 and 8.

(FOUO) Comments and questions may be addressed to the following POCs:

Guidance Regulations (U)

(FOUO) Executive Order 12333 sets forth NSA's basic authorities -- to collect, process, and disseminate SIGINT information for NATIONAL FOREIGN INTELLIGENCE PURPOSES and to support military operations.

(FOUO) NSA/CSS implements EO 12333 and DoD Reg 5240.1-R through NSA/CSS Directive 10-30 and USSID 18, which addresses the way in which we conduct our SIGINT mission while protecting U.S. persons.

(FOUO) USSID 18 provides specifics on whom we may target, how we collect, select, and store such information and how we disseminate information on U.S. persons.

USSID Issues for Threat Situations (FOUO)

Consensual Collection Procedures (FOUO)

(FOUO) Individuals may fill out a consent agreement allowing the Agency to collect either their communications or information about them (USSID 18, Section 4.1.a.(1)).

(FOUO) After the consent agreement is completed it is forwarded to P0212.

(FOUO) P0212 prepares a SPF for Deputy Director approval and obtains proper coordination through the system.

(FOUO) After Deputy Director approval, P0212 prepares a memorandum for the workforce to implement collection and processing.

Implied Consent Procedure (FOUO)

(S-CCO) Used in cases where a U.S. person is held captive by a foreign power or a group engaged in international terrorism and consent for NSA collection could be implied (USSID 18, Section 4. illegible).

(S-CCO) P0212 prepares an SPF for DIRNSA's approval and obtains proper coordination through the system.

(FOUO) After approval, P0212 notifies all appropriate elements and orders termination when the situation warrants.

Reporting Threat Information (FOUO)

(S-CCO) When specific, actionable threat information involving U.S. persons is obtained:

Collateral Information (U)

(FOUO) Collateral information may be included in SIGINT reporting when it contributes to the report by amplifying, clarifying, explaining, or supplementing the SIGINT information.

(FOUO)  In threat situations, when collateral is found after the SIGINT report has been released, the originator of the collateral may be illegible with a request that the originator readdress the collateral as appropriate.

(FOUO) If time does not permit assigning the originator of the collateral, the Office of the illegible has indicated that SIGINT personnel not include illegible sites and illegible operations as RSOCs may disseminate the collateral in these cases, the originator should be notified as soon as possible.

xxxxxxxxxx xxxxxxxxxxx (FOUO)

(S-CCO) [Three lines redacted.]

USSID 18 and Non-Threat Situations (FOUO)

(S-CCO) Communications from, to, or about a U.S. person [1 line redacted] may not be intentionally collected without further authorities (USSID 18, Section 4 applies.)

(S-CCO) Incidental collection of a U.S. persons' communications in a foreign communication may be processed and reported if there is valid foreign intelligence, the report is focused on the foreign side of the communication, and USSID 18 guidelines are followed for reporting.

(S-CCO) Communications solely between U.S. persons inadvertently intercepted during foreign communications collection are to be destroyed upon recognition; there are exceptions whereby the Director may waive destruction and allow reporting. Example of this are such communications from certain SIGNIFICANT foreign intelligence or possible evidence of a crime. (USSID 18, Section 5.4 applies.)

(S-CCO) Communications to or from any officer or employee of the U.S. government, or any state or local government, will not be intentionally intercepted. Inadvertent INTERCEPTIONS of such communications (including those between foreign TARGETS and U.S. officials) should be destroyed. (USSID 18 5.4.c)

(S-CCO) [5 lines redacted.]

[2 lines redacted.]  (Exceptions - see USSID 18, Section 6.1.)

[4 lines redacted.] (Exceptions - see USSID 18, Section 6.1.)

(S-CCO) [4 lines redacted.]

(S-CCO)  Access to raw traffic storage systems which contain identities of U.S. PERSONS must be limited to SIGINT production personnel.

Normal Handling of U.S. Identities in Reports (FOUO)

(S-CCO) Any U.S. identity, even if allowed, is only used when necessary to understand or assess the foreign intelligence.

+ (FOUO) Only senior executive branch officials may be identified by title (all others are generic).

+ (FOUO) The United States Government Manual determines which officials are senior.

+ (FOUO) Members of the judicial and legislative branches must be rendered generically.

+ (FOUO) Properly protect state/local officials/organizations by using generic terms.

+ (FOUO) Only senior U.S. officials in international organizations may be identified by title (use generic terms for all others). [Senior officials are those who make decisions on behalf of the organization].

+ (FOUO) Identities of U.S. private entities must be rendered generically.

+ (FOUO) Avoid contextual identification of U.S. entities.

(S-CCO) Focus on foreign intelligence/counterintelligence and on the foreign perspective.

(S-CCO) Minimize incidental U.S. communications.


Transcription and HTML by Cryptome.