Government Communications Security Bureau

Overview

The Government Communications Security Bureau is New Zealand's national signals-intelligence, information-security, and cyber-defence agency. It is responsible for foreign signals-intelligence collection in support of New Zealand's national-security, foreign-policy, and economic interests; for the protection of New Zealand government information through cryptographic systems and accredited products; for cyber-security defence of New Zealand government and critical-infrastructure networks through the National Cyber Security Centre; and, since the Intelligence and Security Act 2017, for an explicit foreign-signals-intelligence mandate that distinguishes it from its domestic-security sister service NZSIS.¹

The agency operates under the authority of the Minister responsible for the Government Communications Security Bureau (a portfolio held at various points by the Prime Minister directly), is headquartered in Wellington, and is led by a Director-General appointed by the Governor-General on the recommendation of the Prime Minister. GCSB is a founding signatory of the 1946 UKUSA Agreement and a full Five Eyes signals partner alongside the United States National Security Agency, the United Kingdom Government Communications Headquarters, the Canadian Communications Security Establishment, and the Australian Signals Directorate.²

History & Origins

New Zealand signals-intelligence work began during the Second World War in the Combined Signal Organisation, a small naval-led unit cooperating with Australian and British signals services in the Pacific theatre. In 1955 the Combined Signal Organisation was reorganised under the New Zealand Defence Force as the basis for what would become GCSB. The Bureau was formally established in 1977 by Cabinet decision under the Prime Minister's Department, becoming a separate civilian agency. It was placed on a formal statutory footing for the first time by the Government Communications Security Bureau Act 2003.³

The 2003 Act was substantially amended in 2013 in response to a public-records discovery that GCSB had unlawfully surveilled a small number of New Zealand residents — including the German-born permanent resident Kim Dotcom in connection with United States extradition proceedings, and several other residents. The 2013 amendments expanded the legal basis for GCSB to assist domestic agencies in specific authorised circumstances, but also strengthened oversight by the Inspector-General of Intelligence and Security. The Intelligence and Security Act 2017 consolidated GCSB's authorising statute with that of NZSIS into a single framework, setting out the joint and several functions of the two services.⁴

Mandate & Jurisdiction

GCSB's authorities are specified in the Intelligence and Security Act 2017. Its statutory functions are:

• the collection and analysis of foreign signals intelligence in support of New Zealand's national security, international relations and well-being, and economic well-being;
• protective security activities for New Zealand government information and information systems, including cryptographic and information-assurance services;
• cyber-security functions in respect of New Zealand government, critical-infrastructure, and other authorised systems, conducted through the National Cyber Security Centre;
• assistance to other New Zealand agencies in the performance of their lawful functions, where authorised under the Act.⁵

Section 16 of the Act prohibits GCSB from undertaking activities for the purpose of obtaining information about a New Zealander unless under specific authorisation. Like its Five Eyes partners, GCSB's collection is governed by ministerial-level intelligence warrants reviewed by the Commissioners of Intelligence Warrants and subject to subsequent oversight by the Inspector-General of Intelligence and Security and the parliamentary Intelligence and Security Committee.

Notable Operations

Confirmed UKUSA / Five Eyes signals partnership (1946–present). New Zealand is a founding signatory of the 1946 UKUSA Agreement and has been a full Five Eyes partner throughout. The full text of UKUSA was declassified in 2010 by NSA and GCHQ. New Zealand's specific role within the partnership has historically centred on signals collection coverage of the South Pacific.⁶

Confirmed Waihopai station (1989–present). The Waihopai signals-intelligence facility, near Blenheim in the South Island, is GCSB's principal satellite-interception station. It operates two large satellite-tracking radomes and is integrated into the Five Eyes ECHELON-era signals collection architecture. The station's existence and basic function were avowed by the New Zealand government in 1984 (during the original siting decision); subsequent disclosures, including the 2013 Snowden documents, have detailed the station's role in collecting commercial and government communications across the South Pacific.⁷

Confirmed Snowden-disclosed programmes (2013). The 2013 disclosures included substantial documentation of GCSB operations and Five Eyes integration. The most consequential single disclosure was the proposed Project SPEARGUN, a planned cable-tap on the Southern Cross undersea cable that connects New Zealand to Australia and onward to the United States; the programme was described in NSA documents as in development. Subsequent New Zealand-government statements have not directly confirmed or denied the proposal at programme level. The disclosures also detailed GCSB collection against Pacific-island nations on behalf of Five Eyes partners.⁸

Confirmed Kim Dotcom unlawful surveillance (2012). In September 2012, a New Zealand High Court hearing in the United States extradition proceedings against Kim Dotcom revealed that GCSB had conducted surveillance on Dotcom and an associate before his January 2012 arrest. Because Dotcom was a New Zealand permanent resident, the surveillance was unlawful under the GCSB Act 2003 then in force. The Prime Minister of the day, John Key, subsequently apologised; the Inspector-General of Intelligence and Security investigated and reported; and the case became the proximate cause of the 2013 GCSB Act amendments.⁹

Confirmed National Cyber Security Centre operations (2011–present). The National Cyber Security Centre, established within GCSB in 2011, has progressively expanded its public-facing reporting on cyber threats to New Zealand government and critical-infrastructure networks. Annual NCSC reports describe state-actor and criminal-actor campaigns in unclassified terms; the 2018–2019 reporting cycle included public attribution of intrusions to the People's Republic of China.¹⁰

Public Channels

• www.gcsb.govt.nz — agency website
• Careers
• LinkedIn

1. Intelligence and Security Act 2017 (NZ), Part 2 (Functions of intelligence and security agencies); GCSB website, About GCSB; Inspector-General of Intelligence and Security, Annual Report (multiple years).
2. National Security Agency / GCHQ, UKUSA Agreement release (June 2010); David Filer, "New Zealand and the UKUSA Agreement," in The 5 Eyes: The History of the Five Eyes Intelligence Agreement (2018); Nicky Hager, Secret Power: New Zealand's Role in the International Spy Network (Craig Potton, 1996).
3. Hager, Secret Power, op. cit., chapters 1–3; New Zealand Cabinet decision establishing GCSB (1977; declassified excerpts published in subsequent State Services Commission reports); Government Communications Security Bureau Act 2003.
4. Government Communications Security Bureau Amendment Act 2013; Inspector-General of Intelligence and Security, Inquiry into GCSB activities in respect of named persons (2013); New Zealand Cullen-Reddy Independent Review of Intelligence and Security (2016); Intelligence and Security Act 2017.
5. Intelligence and Security Act 2017, sections 10, 16, 21–24; National Cyber Security Centre, Charter; GCSB, Annual Reports.
6. National Security Agency / GCHQ, UKUSA Agreement release (June 2010); Government Communications Headquarters, UKUSA Agreement Release.
7. Hager, Secret Power, op. cit., chapters 4–6; New Zealand government statements on Waihopai (multiple, from 1984 onward); subsequent media reporting and protest-movement records on the station's expansion.
8. The Intercept, "New Zealand Spied on WTO Director Candidates" (March 2015) and related Snowden-archive reporting on GCSB operations; New Zealand Herald and TVNZ coverage of the disclosures (2013–2015).
9. Inspector-General of Intelligence and Security, Inquiry into the activities of the GCSB (September 2012); Kim Dotcom v. The Crown (NZ High Court 2012, judicial decisions on the extradition proceedings); Office of the Prime Minister, statement on GCSB unlawful surveillance (September 2012).
10. National Cyber Security Centre, Cyber Threat Report (multiple years); Government of New Zealand, public attribution of malicious cyber activity to APT 10 / Ministry of State Security (December 2018).