Espionage Act & Classified Information

The Espionage Act of 1917 — codified primarily at 18 U.S.C. §§ 793–798 — is the century-old federal statute used to prosecute leaks of classified and sensitive national defense information. The law predates the modern classification system and notably contains no definition of "classified information" — classification itself is governed by executive orders (currently Executive Order 13526, 2009), not by statute, making the President's classification authority almost entirely extra-statutory. The Espionage Act's most frequently invoked provisions: Section 793(d) and (e) criminalize unauthorized transmission of "national defense information" to unauthorized persons; Section 793(f) criminalizes gross negligence in handling national defense information — the provision cited in the Hillary Clinton email investigation and the Trump classified documents case; and Section 798 criminalizes disclosure of signals intelligence (SIGINT) information, even without intent to harm national security. The Trump classified documents case (2023–2024) brought 40 counts under Section 793, primarily for retention of documents at Mar-a-Lago after leaving office — the case was dismissed by Judge Aileen Cannon in July 2024 on Appointments Clause grounds (ruling that Special Counsel Jack Smith was unlawfully appointed); after Trump's November 2024 election victory, DOJ dropped its appeal under longstanding policy against prosecuting a sitting president. The Classified Information Procedures Act (CIPA) governs how classified information is handled in criminal trials, preventing defendants from using "graymail" (threatening to reveal secrets to force dismissal). A critical limitation: the Espionage Act provides no whistleblower protection — government employees who believe they are disclosing wrongdoing must use authorized channels (inspectors general, congressional intelligence committees) rather than the press.

Current Law (2026)

Legal Authority

• 18 U.S.C. § 793 — Gathering, transmitting, or losing defense information (criminalizes gathering or transmitting information relating to national defense with intent or reason to believe it will harm the United States or benefit a foreign nation; also criminalizes willful retention of defense documents and failure to report loss or unauthorized possession)
• 18 U.S.C. § 794 — Gathering or delivering defense information to aid foreign government (death penalty eligible; criminalizes communicating defense information to a foreign government or agent with intent to harm the United States; in wartime, also covers communicating information about military movements, plans, or operations)
• 18 U.S.C. § 798 — Disclosure of classified information (specifically protects classified information concerning communications intelligence — codes, cryptographic systems, signal intelligence; up to 10 years imprisonment; narrower than § 793 but applies to any knowing disclosure, not just to foreign powers)
• 18 U.S.C. § 1924 — Unauthorized removal and retention of classified documents (misdemeanor: up to 1 year and $100,000 fine for knowingly removing classified material and retaining it at unauthorized locations; requires proof of knowing removal)
• Executive Order 13526 (2009) — Prescribes the classification system (not a statute; establishes classification levels, criteria, authorities, declassification timelines, and oversight; may be modified or revoked by any President)

How It Works

The Espionage Act and the classification system form the legal framework protecting America's most sensitive national security information — but they are also among the most criticized and controversial areas of federal law, particularly when used against leakers, whistleblowers, and journalists.

The classification system is not a statutory creation — it is established entirely by executive order, and any President can change it unilaterally. Executive Order 13526 (2009) establishes three levels: Confidential (unauthorized disclosure could cause "damage" to national security), Secret ("serious damage"), and Top Secret ("exceptionally grave damage"). Beyond these tiers, Sensitive Compartmented Information (SCI) and Special Access Programs (SAPs) restrict access to specific intelligence even among Top Secret clearance holders. Approximately 4.2 million people hold active clearances, granted after DCSA investigation of loyalty, criminal history, financial stability, and foreign contacts; clearance revocation is administrative rather than criminal and has historically not been subject to judicial review.

The Espionage Act's most-used provision — 18 U.S.C. § 793 — reaches far beyond foreign spies. It criminalizes unauthorized gathering, transmission, or retention of "information relating to the national defense," a phrase courts have interpreted broadly to cover classified and even unclassified defense information. Critically, § 793 does not require intent to harm the United States or aid a foreign power — willful retention of defense documents or communication to "any person not entitled to receive" them is sufficient. § 793(e) specifically targets unauthorized retention; 18 U.S.C. § 1924 targets knowing removal and retention of classified material at unauthorized locations. These provisions have been applied to former officials who took classified documents when leaving office and to employees who leaked information to the press — Chelsea Manning (2010, leaked military and diplomatic documents to WikiLeaks), Edward Snowden (2013, NSA surveillance programs), Reality Winner (2017, Russian election interference document), Jack Teixeira (2023, classified intelligence online). Critics argue the Espionage Act is a blunt instrument with no "public interest" defense and no meaningful distinction between selling secrets to an adversary and exposing government wrongdoing — a gap that whistleblower protection statutes only partly fill for employees who disclose through authorized channels.

How It Affects You

If you hold a security clearance (any level): Your obligations extend well beyond keeping secrets. You must: (1) report to your security officer any contact with foreign nationals that could be an attempt to elicit classified information; (2) report unauthorized disclosures you witness — failure to report can itself be a security violation; (3) return ALL classified materials when your access is terminated; (4) follow "derivative classification" rules — when you create new documents that incorporate classified information, you must properly mark them at the appropriate level. Section 1924 criminalizes knowingly removing classified documents to unauthorized locations — the provision used in cases ranging from Sandy Berger (Clinton's national security adviser, who removed classified documents in his socks) to David Petraeus (shared classified notebooks with his biographer) to the Trump classified documents case. Losing a clearance doesn't just affect your current job — it effectively disqualifies you from most defense contractor, intelligence, and many federal positions. If your clearance is suspended, immediately consult an attorney experienced in security clearance law; the administrative appeal process has very tight deadlines (typically 30 days).

If you're a government employee who knows about government wrongdoing: The Espionage Act provides NO protection for disclosing classified information even if you believe you're exposing illegal activity. The path matters: authorized channels for intelligence community employees include the Intelligence Community Whistleblower Protection Act (ICWPA), which protects disclosures to the Inspector General of the Intelligence Community (IGIC) or to the congressional intelligence committees (through the DNI), and the Inspector General Act. Filing with the IGIC gives you statutory reprisal protections; going to the press does not, regardless of your motive. If you're a non-IC federal employee, the Whistleblower Protection Act (WPA) protects certain disclosures to Congress, the OSC, or IGs — but the WPA explicitly does NOT protect unauthorized disclosure of classified information. Chelsea Manning, Edward Snowden, and Reality Winner were all prosecuted despite their claimed public interest motivations. If you're considering disclosure, consult with an attorney who specializes in national security and whistleblower law before doing anything — the legal landscape is heavily stacked against unauthorized disclosures of classified material.

If you're a journalist, researcher, or publisher working with classified documents: No journalist has been prosecuted under the Espionage Act for receiving or publishing classified information — but the legal risk is not theoretical. The Act's text does not exempt the press or distinguish between receiving and transmitting national defense information. DOJ guidelines generally require high-level approval before subpoenaing or prosecuting journalists, and these guidelines were strengthened in 2022 to generally prohibit using Espionage Act prosecutions against journalists who publish national security information. But these are DOJ policy guidelines, not law — they can be changed or disregarded. The CIPA (Classified Information Procedures Act) creates additional complications in any trial involving classified material. Practically: media organizations that receive classified documents typically consult with DOJ before publishing, document the public interest value, and in some cases agree to redactions. Courts have generally refused to recognize a "reporter's privilege" strong enough to override government demands for sources in national security leak investigations.

State Variations

• The classification system and Espionage Act are exclusively federal — no state variations apply
• Some states have their own laws regarding unauthorized disclosure of state-level sensitive information
• State law enforcement may encounter classified information during investigations and must coordinate with federal agencies

Implementing Regulations

• 32 CFR Part 2001 — Classified National Security Information (46 sections — the Information Security Oversight Office's implementing regulations for Executive Order 13526, covering the full lifecycle of classified information):

  • § 2001.10 — Classification standards: information may be classified only if its unauthorized disclosure can reasonably be expected to cause identifiable or describable damage to national security; classifiers must be able to identify the damage — a generalized belief that disclosure might be harmful is insufficient; classification must fall within one of 8 authorized categories (military plans, intelligence sources, foreign government information, nuclear materials, weapons of mass destruction, etc.) specified in EO 13526 § 1.4
  • § 2001.11 — Original Classification Authority (OCA): the President delegates OCA to agency heads and designated subordinates; only OCAs may make original classification decisions; unauthorized persons who create classified-appearing documents have not created legally classified documents — classification authority cannot be assumed
  • § 2001.12 — Duration: default classification duration is 10 years or the date when the information no longer requires protection, whichever is earlier; information whose damage would reasonably continue beyond 10 years may be classified up to 25 years; information classified beyond 25 years requires agency determination and ISOO concurrence; no information may be classified indefinitely solely because of age
  • § 2001.13 — Classification prohibitions: information may NOT be classified to conceal violations of law, inefficiency, or administrative error; to prevent embarrassment to any person or agency; to restrain competition; or to prevent or delay release of information that does not require protection in the interest of national security — this prohibition exists on paper but has been widely criticized as unenforced
  • § 2001.14 — Classification challenges: authorized holders who believe information is improperly classified have the right to formally challenge the classification; the classifying agency must respond within 60 days; unresolved challenges may be appealed to the Interagency Security Classification Appeals Panel (ISCAP)
  • § 2001.20–2001.22 — Marking requirements: every classified document must show (1) the classification level (TOP SECRET/SECRET/CONFIDENTIAL) prominently; (2) the classification authority block (name or position of the OCA or classifier); (3) the reason for classification (EO 13526 § 1.4 category); (4) the declassification date or event; derivative classifiers must identify the source document or classification guide from which classification was derived
  • § 2001.24 — Prohibited markings: only the three standard levels (TOP SECRET, SECRET, CONFIDENTIAL) may be used; unofficial designators like "For Official Use Only" (FOUO) or "Sensitive But Unclassified" (SBU) are not authorized under EO 13526 and do not constitute classified information (they're controlled unclassified information categories governed by EO 13556)
  • § 2001.30 — Automatic declassification: all classified records with permanent historical value are automatically declassified at 25 years unless an agency head has requested and received an exception; NARA implements automatic declassification for records transferred to its custody; the declassification machine is real — hundreds of millions of pages have been declassified automatically
  • § 2001.33 — Mandatory review for declassification: any person may request declassification review of classified information; agencies must respond within 1 year for initial reviews; reviewers may appeal denials to ISCAP; this is separate from FOIA but functions similarly for classified records
  • § 2001.40–2001.47 — Safeguarding requirements: classified information must be stored in GSA-approved containers (file cabinets, vaults, or secure rooms) when not in use; TS must be stored in GSA-approved containers with combination locks; SECRET may use combination or key locks; transmission must be in sealed, opaque containers or via approved classified transmission channels (no personal email, no commercial fax, no unencrypted internet); destruction must be complete — NSA-approved shredders (cross-cut), pulping, burning, or other methods that preclude reconstruction
  • § 2001.50 — Cybersecurity for classified systems: classified information electronically processed, stored, or transmitted must comply with Committee on National Security Systems (CNSS) policy directives; classified networks (SIPRNet for SECRET, JWICS for TS/SCI) are physically and logically separated from unclassified networks; "air-gapping" classified systems from the internet is the standard approach
  • § 2001.70 — Security training: every person who creates, processes, or handles classified information must receive security education and training, including when they first receive access, when access is terminated, and annually thereafter; training must cover the classification standards, proper marking, safeguarding obligations, and how to report security violations

• 28 CFR Part 17 — DOJ classified information procedures (access, storage, transmission of classified materials within DOJ)

• 32 CFR Part 158 — [Stub correction: this Part covers Operational Contract Support (OCS) Outside the United States — DoD policy for managing defense contractors deployed with U.S. forces in contingency operations, humanitarian assistance, and peace operations; it does not cover Special Access Programs. SAP rules are in DoD Instruction 5205.11 and related directives.]

• 10 CFR Part 1045 — Nuclear Classification and Declassification (the DOE framework for the separate, parallel nuclear classification regime under the Atomic Energy Act — distinct from and more restrictive than the EO 13526 system governing conventional National Security Information): Nuclear information is classified through two legal paths. The first is Executive Order 13526 (National Security Information / NSI) — the system covered by 32 CFR Part 2001. The second is the Atomic Energy Act of 1954 (42 U.S.C. §§ 2011 et seq.) — which independently classifies nuclear weapons information regardless of any presidential order. Part 1045 governs the AEA regime. Key provisions and distinctions:

  • § 1045.5 / § 1045.30 — Three AEA categories: Restricted Data (RD) — information concerning the design, production, or material of nuclear weapons, including fission/fusion weapon principles, critical assembly parameters, and nuclear material production methods; classified by statute under AEA § 141, not by any classification decision — it is born classified when generated; Formerly Restricted Data (FRD) — information that was RD but has been jointly determined by DOE and DOD to be useful primarily for military application (e.g., nuclear weapons effects for battlefield planning) and reclassified to allow broader DOD handling; and Transclassified Foreign Nuclear Information (TFNI) — intelligence-derived information about foreign nuclear weapons programs that was originally classified as RD but has been removed from RD status while remaining protected under the Intelligence Community's foreign government information rules
  • § 1045.60 — Unauthorized disclosure does NOT declassify: unlike EO 13526 NSI (where the President has discretion over classification status), an unauthorized public release of RD, FRD, or TFNI does not automatically declassify it — the information remains legally classified and subject to all handling restrictions even after it appears in the public domain; this is a critical statutory distinction that reflects Congress's decision in the AEA to make nuclear weapons information automatically classified by law, beyond presidential modification
  • § 1045.70 — How information becomes RD: information is RD if it falls within the AEA's definition — i.e., it concerns design/production/materials of nuclear weapons or nuclear material production for weapons purposes; no classification decision is required — information that independently derives or describes nuclear weapons-sensitive physics is RD by operation of statute even if never marked as such; DOE's Office of Classification makes formal determinations, but the classification is self-executing
  • § 1045.90 — Private entities: DOE may classify information generated by private entities (universities, contractors, researchers) if it independently describes RD concepts, even if the private entity had no government relationship and was unaware of the AEA's reach — a significant departure from EO 13526, which applies only to information generated by or for the government
  • § 1045.100 / § 1045.155 — Declassification requires active DOE decision: RD, FRD, and TFNI are never automatically declassified — unlike EO 13526 NSI (which declassifies automatically at 25 years under 32 CFR § 2001.30); someone at DOE must specifically determine that the information no longer describes RD concepts before it can be released; the nuclear weapons design information generated in the 1940s–1950s Manhattan Project remains legally RD today unless DOE has affirmatively declassified specific items
  • §§ 1045.170–1045.175 — FOIA and MDR handling: when any federal agency (not just DOE) receives a FOIA request for documents that may contain RD, FRD, or TFNI, it must refer the documents to DOE for review before responding; DOE reviews and redacts RD/FRD/TFNI before the agency responds; a requester who disagrees may seek a Mandatory Declassification Review (MDR) through DOE — but §1045.195 exempts nuclear weapons technical engineering blueprints and designs from MDR entirely

  The AEA nuclear classification regime is legally independent of EO 13526 in a critical respect: the President can unilaterally declassify NSI under EO 13526 (subject to law), but cannot declassify RD by executive order alone — any declassification of nuclear weapons design information requires the Secretary of Energy, under statutory authority, to formally act. This statutory floor is why nuclear weapons information remains among the most rigorously protected secrets in the U.S. government. Holders of security clearances who work with nuclear weapons programs will encounter both NSI (governed by 32 CFR Part 2001 and EO 13526) and RD/FRD (governed by 10 CFR Part 1045 and the AEA) — the two systems interact but neither subsumes the other.

Pending Legislation

• HR 7930 — Increase mens rea requirements for Espionage Act offenses. Status: Introduced.
• S 4230 — Require government to identify and address stolen classified information. Status: Introduced.
• S 2227 (Sen. Cornyn, R-TX) — Remove statute of limitations for certain espionage offenses. Status: Introduced.
• HR 4081 (Rep. Harrigan, R-NC) — Boost penalties for espionage benefiting "covered nations." Status: Introduced.
• S 1809 (Sen. Moody, R-FL) — Add "video" to 18 USC 793, making video of defense info a crime. Status: In committee.
• HR 2611 (Rep. Torres, D-NY) — Criminalize sharing classified info on messaging apps, up to 10 years. Status: Introduced.

Recent Developments

• High-profile prosecutions involving classified documents have put the Espionage Act and classification system in the national spotlight
• Debates about reforming the Espionage Act to include a public interest defense have intensified
• The classification system itself is widely criticized as over-classifying information — estimates suggest 50-90% of classified documents could be safely declassified
• Declassification reform efforts continue, with proposals for automatic declassification after specified time periods
• The relationship between presidential declassification authority and criminal liability remains legally unsettled