The Obama administration issued Presidential Policy Directive 28 on January 17, 2014, establishing new constraints and oversight mechanisms for signals intelligence activities conducted by the National Security Agency and other intelligence community components. The directive came amid widespread public scrutiny of surveillance programs following the Snowden disclosures.
Policy Framework and Restrictions
The directive mandated that signals intelligence activities must be conducted only for specific authorized purposes, including detecting and countering espionage and other threats to national security, cybersecurity threats, and threats to U.S. or allied armed forces. The policy explicitly prohibited the collection of foreign private commercial information or trade secrets to provide competitive advantages to U.S. companies.
Oversight and Safeguards
According to analysis by the Electronic Frontier Foundation, the directive established new privacy protections for non-U.S. persons whose communications might be incidentally collected. However, civil liberties advocates noted significant limitations, as the policy maintained broad authorities for national security collection while providing procedural rather than substantive constraints on surveillance activities.
Broader Intelligence Community Impact
The 2014 revelations exposed the scope of NSA surveillance capabilities and their integration with broader counterintelligence operations. FBI reporting from early 2014 documented how malicious cyber actors were simultaneously targeting U.S. universities and research institutions, highlighting the intersection between foreign intelligence collection and domestic security concerns.
The directive represented a significant policy response to public concerns about intelligence overreach while maintaining core surveillance capabilities deemed essential for national security operations.