Warrant Canary

A warrant canary is a regularly published statement affirming that a service provider has not received a particular kind of secret legal process, such as a gag-ordered surveillance demand. The trick is in the silence: because providers can often be legally barred from disclosing that they received such an order, they instead publish an ongoing assurance that they have not. If that assurance is quietly removed or allowed to lapse, attentive users can infer that something has changed, without the provider ever explicitly breaking a gag order.

How and why it works

The name references the canaries once carried into coal mines, which would succumb to dangerous gas before the miners did, serving as an early warning. The legal theory rests on the difference between being compelled to stay silent about an event and being compelled to actively lie by repeating a false statement; removing a true statement is generally seen as more defensible than fabricating one. Warrant canaries are frequently paired with transparency reports that list the legal requests a provider is permitted to disclose.

Limits to keep in mind

Canaries are an imperfect, indirect signal. Their legal standing has never been fully tested in many jurisdictions, a lapse can be accidental rather than meaningful, and a sufficiently aggressive authority might in theory compel continued publication. For users, the practical takeaway is to watch for the canary's removal as one data point among many when assessing whether a service you rely on may be under compulsion.

Monitoring warrant canaries is a modest but useful input to your threat modeling and overall operational security when choosing privacy-respecting providers.