(Kent Harrington, a former senior CIA analyst, served as National Intelligence Officer for East Asia, chief of station in Asia, and CIA’s director of public affairs. The opinions expressed here are his own.)
By Kent Harrington
March 20 (Reuters) - With the end of constitutional limits on his presidential term, Xi Jinping’s decision to opt for unlimited tenure should eliminate any doubt that Beijing will ease up on its use of high-tech tools to maintain political control. That means it’s time for the U.S. technology industry to make some difficult decisions.
China is building a 21st-century surveillance state and, wittingly or not, Silicon Valley’s leaders are playing a part. Their business rationale for pursuing opportunities in China has long been clear. The ethical issue facing them today – whether they should continue according to plan – is now anything but.
Tech industry leaders, of course, aren’t alone in being caught out by China’s intensifying shift towards authoritarianism. For Washington, China’s increasingly protectionist trade policies and sweeping territorial claims – backed up by militarized manufactured islands in the South China Sea – have dispelled the notion that Xi intends to settle into an assigned role in the Western world order, or even play by its rules.
Silicon Valley’s CEOs have invested heavily in China as a manufacturing site and a market. They bet on an expectation that political risks would decline as reform reduced the state sector’s role, loosened regulations, and made China’s market more like the United States. Admitting that isn’t likely to happen will call for new strategies and bottom-line forecasts that no CEO is ever eager to make.
Tech leaders also have an even more fundamental dilemma: reconciling their companies’ role in China with its emerging high-tech surveillance state. At well over $190 billion, China’s published annual budget for internal security masks its actual outlays. Like the defense budget, the real number includes hidden spending. The tech sector figures prominently, including whatever can be bought or stolen from Silicon Valley.
A prototype is already up and running in Xinjiang. Bordering Pakistan and Afghanistan, the frontier province is home to 10 million Uighurs, a predominantly Muslim ethnic minority whose sometimes violent push for autonomy has led Chinese authorities to govern with a repressive hand. In Xinjiang, the security services are linking cameras, software, and databases to watch thousands of citizens in real time. Using facial recognition technology and artificial intelligence (AI), the network tracks residents who venture beyond their homes and workplaces; it may soon pull in behavioral data from smartphones, online bank accounts and other sources with the goal of predicting “terrorist acts.”
Chinese defense contractors aren’t the technology industry’s only players. Alibaba Holdings, China’s e-commerce giant, is investing in AI, sensors and other technologies for the country’s “smart cities” project. With some 800 cities building or planning high-tech infrastructure to manage traffic, emergency services, mobile payments and other chores, it’s a safe bet Alibaba is preparing an architecture to support whatever is developed in Xinjiang. The company has even anticipated the security services’ wish list. As part of its mobile payment system, Alibaba’s own online credit scoring app for its Chinese consumers is a relevant work-in-progress. It goes beyond consumers’ personal financial data to vacuum up online activity in preparing its “objective assessment.”
Alibaba’s isn’t guessing about the potential market for the technology underlying its credit scoring app. Four years ago, the ruling Communist Party called for a big data-driven “social credit” rating system to score the political reliability of citizens. That effort presumably is underway. With AI and cloud-computing power to gather and massage smartphone, credit card, email, text, and social media data as well as real-time video in the security services’ hands, the potential to monitor dissent is enormous.
Consider cloud computing. Chinese companies provide some 80 percent of cloud services in China, but American firms are world leaders in developing and fielding the latest software. Amazon and Microsoft, recognized for their cloud infrastructure, are partnering with companies in China, as are others. In December, Amazon announced a second data center; Oracle and Apple are opening new centers as well.
The companies have acknowledged that a tough new cybersecurity law is presenting them with uncomfortable choices. Adopted in 2017, it requires all Chinese user data to be held in-country. The law gives officials broad access to the cloud’s proprietary systems as well as the stored data itself if they see a danger to China’s “national security, honor and interests.” Recognizing the threat to their reputations as well as intellectual property, Oracle, Apple, Amazon and others are trying to finesse the problem by giving the centers’ management to their Chinese partners. Wiping off American fingerprints, however, hardly solves the ethical problem.
In Oracle’s case, Tencent Holdings, its partner, will use its own facilities to run operations. A Web giant, Tencent works closely with the government. Censors and the security services oversee its billion-user WeChat messaging app 24/7. Apple’s partner, a state-owned company run by the Guizhou provincial government, will manage its new center. Apple also has announced it will store the encryption codes that protect its customers’ data in China “to comply with local laws.” The company emphasizes it will keep control, only fulfill lawful requests for information, and reject demands for bulk data, but this promise may be hard to keep in a country where the security services rarely fail to get their way.
Other companies appear eager to help Beijing extend its reach. Last November, United Technologies, Qualcomm, and Seagate Technology displayed their wares at the China Public Security Expo. The business potential goes without saying. With sales that could hit $8 billion this year, China accounts for almost half of the global video surveillance market.
Corporate spokesmen, of course, are quick to point to their companies’ values and adherence to U.S. laws, such as the ban on sale of crime-control and detection gear to China put in place after the 1989 Tiananmen massacre. But technology that can link camera images to police files to identify victims in an accident can do the same for faces in a protesting crowd.
To be sure, weighing the risks versus the opportunities in the Chinese market these days is more complicated as debate over China’s challenge grows. For technology companies who have invested there, the question isn’t only how to respond to growing repression, or technology theft, or tighter censorship. It’s whether their bet a decade ago on a growing market in a then-seemingly reforming China can be sustained under an increasingly authoritarian and competitive regime.
Washington needs to help find answers. While the Trump administration and Congress are examining issues like intellectual property theft and seeking to expand national security reviews of investments in China, the effort is piecemeal, not strategic. As Xi’s regime intrudes more deeply into foreign businesses in China, a national review of the vulnerabilities created by Silicon Valley’s presence there – not only in terms of the potential for technology loss and diminished competitiveness but also in intelligence and cyber-war terms – is already overdue. (Reporting by Kent Harrington)