Skip to Content

Government Surveillance

Debunking Myths on the National Security Impact of Warrants for U.S. Person Queries

/ Jake Laperruque, Guest Post

Co-authored with Gene Schaerr, General Counsel at the Project on Privacy and Surveillance Accountability

[ PDF version ]

Warrantless queries of Americans’ communications obtained via Section 702 of the Foreign Intelligence Surveillance Act (“FISA 702”) are antagonistic to the basic principle of the Fourth Amendment. Deliberately seeking to read Americans’ private communications – but without ever showing evidence of wrongdoing or obtaining independent approval from a judge – violates the Constitution, disrespects American values, and opens the door to abuse.

Opponents of FISA reform nonetheless oppose requiring a warrant for U.S. person queries by claiming these queries provide huge value that would be disrupted by a warrant requirement. These claims are false – in reality a warrant rule has been carefully designed to account for the limited value that such queries provide.

MYTH #1: U.S. person queries are immensely important in a broad array of situations, making it dangerous to place restrictions on this important tool.

REALITY: Queries only provide value in a limited set of situations, and the warrant rule proposed in 2024 during the 118th Congress provides exceptions to account for all of them.

Opponents of reform frame U.S. person queries as frequently valuable across a wide set of national security goals and investigations, but the 2023-2024 debate over FISA 702 proved this was false: The Intelligence Community testimony, the President’s Intelligence Advisory Board, and the Privacy and Civil Liberties Oversight Board (PCLOB) uncovered only a few distinct scenarios in which U.S. person queries provided value. And the proposed warrant rule includes exceptions that account for all of them. 

Under the 2024 proposal, a warrant would not be required 1) when there is consent, 2) to track malware, or 3) for metadata queries:

  • Cyber Attacks: Queries were most useful in the cybersecurity context, helping the government detect warning signs of future attacks and trace attacks back to their sources. But queries focused on cyberthreat signatures are explicitly exempt. Much of the cybersecurity value of queries focused on network traffic patterns; this involves metadata rather than content, and metadata queries are also exempt from the warrant rule. Most importantly, any U.S. company or critical infrastructure entity targeted for a cyberattack can simply consent to a query.
  • Foreign Plots: Queries were also described as useful in detecting and responding to foreign assassination and kidnapping plots. But once again, the consent exception directly accounts for this need. A targeted American will obviously gratefully accept such a query to enable government protection.  
  • Foreign Recruitment: Defenders of the status quo cited limited cases in which queries helped the government discover suspicious foreign contacts, assisting the government in investigating whether the U.S. person was a foreign target or foreign agent. But because metadata queries are exempt, a warrant rule would not inhibit the government’s ability to identify these contacts. The government has never shown one instance in which content queries were critical to advancing an investigation against a foreign agent. Besides, reading the private emails of an American being criminally investigated is exactly what warrants are required for. 

MYTH #2: U.S. person queries need to be done quickly and efficiently, and a warrant rule would slow the process down in a manner that endangers Americans’ lives.

REALITY: The government has never shown queries provide time-sensitive responses, and the warrant rule’s exceptions account for such a scenario if it ever did emerge. 

A common argument against surveillance reform is the “ticking time bomb” hypothetical in which there simply isn’t time to abide by due process and obtain court approval. But the government has never shown a situation in which query results were needed so quickly that obtaining a warrant would be infeasible. 

  • If a time-sensitive emergency ever did occur, the warrant rule explicitly accounts for it by including an exception for exigent circumstances. Contrary to this complaint’s framing, the government has indicated that query results are used primarily during the early stages of investigations, or with queries run on targeted victims–in which cases the consent exception makes a warrant unnecessary.

In short, the exigent circumstances, consent and metadata exceptions to the proposed warrant requirement almost certainly address and legitimate concerns about the government’s ability to respond to threats quickly.  

MYTH #3: Warrants are not feasible given the scale of U.S. person queries conducted; adding this rule would overwhelm intelligence agencies and the courts.

REALITY: By permitting warrantless metadata queries, the warrant rule ensures the government will not need to go to court frequently.

In 2023, the most recent year for which data is available, the FBI conducted queries for over 57,000 unique U.S. person terms, reflecting unacceptable government overreach and fishing efforts. However, most of these queries do not produce responsive results. Because the proposed warrant requirement would apply only when the government sought to access a communication’s content, it would weed out impropriety without straining intelligence agencies or the courts. 

  • Only 1.58 percent of the FBI’s U.S. person queries resulted in personnel accessing content, according to the FBI. Thus, even if queries continued to be conducted at the prior rate of 57,000 annually – an unlikely prospect, given that many of these queries were improper or broad fishing efforts – a warrant would be potentially applicable to less than 1,000 queries a year, less than 3 per day on average. And because the proposed warrant rule would permit warrantless metadata queries (and only require court approval to access content), agencies would be able to confirm when a query will yield a “hit” before devoting any time and effort to seeking a warrant.

And even as to these 2-3 queries per day, most would fall under one of the exceptions to the warrant requirement described above. The FBI usually wouldn’t need 2-3 warrants each day; more likely it would need to obtain consent of 2-3 entities to help prevent a future cyberattack or foreign plot. And if adding a warrant requirement on this limited level would be too onerous for intelligence agencies or the courts, the solution would be to add personnel to cover that need, not to reject an important constitutional safeguard against abuse.

Americans’ basic rights should not be secondary to bureaucratic hurdles and staffing limits. The exceptions and exemptions built into the 2024 warrant proposal would allow the government to remain within the boundaries of the Constitution while also having the means to protect national security.

Read the full issue brief.

Related Reading

White document on black background.

CDT Stands Up for Taxpayer Privacy
CDT Submits Statement Urging House Judiciary to Close Loopholes on Warrantless Government Surveillance. White document on a grey background.

CDT Submits Statement Urging House Judiciary to Close Loopholes on Warrantless Government Surveillance
The CDT logo. A light and dark grey "cdt" alongside "Center for Democracy & Technology" on a white background.

Automated Tools for Social Media Monitoring Irrevocably Chill Millions of Noncitizens’ Expression