[SecurityRatty] tag: tsa

The TSA Told You That Liquids Are Dangerous

Thu, 28 Aug 2008 08:25:25 +0000

A plane was forced to land when a passenger had an extreme allergic reaction to a leaking jar of mushroom soup, it was revealed today.
The soup fell on the man from an overhead locker on a Ryanair flight to Dublin from Budapest.

He reportedly suffered allergic swelling in his neck and struggled to breathe, forcing staff to seek emergency medical treatment.

Keeping MacBooks snug at security

Fri, 22 Aug 2008 20:00:00 +0000

Apple's laptops have had some interesting encounters at airport security checkpoints. The wafer-thin design of the MacBook Air befuddled one security officer earlier this year in the U.S., who asked to give some "special attention" to the "fine piece of machinery," according to Bob, who blogs for the U.S. Transportation Security Administration (TSA). After inspection, the laptop was returned to the owner.

TSA Follies

Thu, 21 Aug 2008 05:12:22 +0000

They break planes:

Citing sources within the aviation industry, ABC News reports an overzealous TSA employee attempted to gain access to the parked aircraft by climbing up the fuselage... reportedly using the Total Air Temperature (TAT) probes mounted to the planes' noses as handholds.
"The brilliant employees used an instrument located just below the cockpit window that is critical to the operation of the onboard computers," one pilot wrote on an American Eagle internet forum. "They decided this instrument, the TAT probe, would be adequate to use as a ladder."

They harass innocents:

James Robinson is a retired Air National Guard brigadier general and a commercial pilot for a major airline who flies passenger planes around the country.
He has even been certified by the Transportation Security Administration to carry a weapon into the cockpit as part of the government's defense program should a terrorist try to commandeer a plane.

But there's one problem: James Robinson, the pilot, has difficulty even getting to his plane because his name is on the government's terrorist "watch list."

It's easy to sneak by them:

The third-grader has been on the watch list since he was 5 years old. Asked whether he is a terrorist, he said, "I don't know."
Though he doesn't even know what a terrorist is, he is embarrassed that trips to the airport cause a ruckus, said his mother, Denise Robinson.

[...]

Denise Robinson says she tells the skycaps her son is on the list, tips heavily and is given boarding passes. And booking her son as "J. Pierce Robinson" also has let the family bypass the watch list hassle.

And here's how to sneak lockpicks past them.

Again, On Laptops and US Borders

Tue, 12 Aug 2008 07:00:00 +0000

"According to the U.S. Department of Homeland Security (DHS), Customs and Border Protection (CBP) officers can confiscate and detain travelers' laptops at the U.S. border without suspicion of wrongdoing. Laptops can be taken to an off-site location for an undisclosed period of time, during which officials may examine the computer's contents and share copies of files with other agencies. This policy applies to any other form of digital or analog storage device, including iPods, cell phones, flash drives, hard drives, and tapes." (source)

"The key to the above paragraph, of course, is "without suspicion of wrongdoing." Indeed, in the policy (PDF), DHS says (emphasis mine), "In the course of a border search, and absent individualized suspicion, officers can review and analyze the information transported by any individual attempting to enter, reenter, depart, pass through, or reside in the United States."" (source)

Fun question that was brought by someone on a security mailing list: if your employer-owned laptop is "captured" by DHS, TSA or Customs AND it has regulated information on it (CCs, SSNs, PHUI, etc), do you have to report it as "data loss"? The chances of that info being lost are definitely much, much higher now AND the control over such data is clearly not in your hands anymore... Niiiiice.

TSA relaxes laptop screening rules this month

Wed, 06 Aug 2008 09:00:00 +0000

Frequent flyers toting notebooks in 'checkpoint friendly' bags can leave them encased at TSA checkpoints starting this month; Targus, Skooba and other manufacturers are readying acceptable models, which must meet certain guidelines.

Missing Registered Traveler laptop found

Tue, 05 Aug 2008 20:00:00 +0000

A laptop reported missing by a vendor of the U.S. Transportation Security Administration's (TSA) Registered Traveler program has been found, the vendor said.

TSA relaxes laptop screening rules this month

Tue, 05 Aug 2008 20:00:00 +0000

Travelers irked when forced to unpack notebook computers at airport screening stations will get some relief later this month as the Transportation Security Administration (TSA) begins letting people with designated "checkpoint friendly" bags leave the hardware inside.

Heads up SFO travelers

Tue, 05 Aug 2008 14:06:16 +0000

Jeez, I dont even want to remark on this one.
Unencrypted? Why not?

clipped from yro.slashdot.org

“Clear” Air-Travel Pass Data Stolen From SFO

“A laptop containing the unencrypted security data for 33,000 travelers using the Clear system was stolen at San Francisco International Airport on July 26, according to CBS5 Television. The Clear system allows travelers who register and pay a $100.00 annual fee to speed through airport security by using a smart card at special kiosks in some airports. TSA has suspended new registrations in the system, which is run by a private contractor, Verified Identity Pass, Inc., a subsidiary of GE. The laptop was apparently stolen from a locked office at SFO. The company has now decided that it might be a good idea to encrypt the data in their systems. They are in the process of notifying customers that all of their personal data, including name, address, SSi number, passport number, date of birth, etc. has been compromised.”

Laptop with Trusted Traveler Identities Stolen

Tue, 05 Aug 2008 08:09:35 +0000

Oops. A laptop with the names of 33,000 people enrolled in the Clear program -- the most popular airport "trusted traveller" program -- has been stolen at SFO. The TSA is unhappy.

Stealing databases of personal information is never good, but this doesn't make a bit of difference to airport security. I've already written about the Clear program: it's a $100-a-year program that lets you cut the security line, and nothing more. Clear members are no more trusted than anyone else.

Anyway, it's easy to fly without an ID, as long as you claim to have lost it. And it's also easy to get through airport security without being an actual airplane passenger.

None of this is security. Absolutely none of it.

TSA Proud of Confiscating Non-Dangerous Item

Wed, 30 Jul 2008 02:11:57 +0000

This is just sad. The TSA confiscated a battery pack not because it's dangerous, but because other passengers might think its dangerous. And they're proud of the fact.

"We must treat every suspicious item the same and utilize the tools we have available to make a final determination," said Federal Security Director David Wynn. "Procedures are in place for a reason and this is a clear indication our workforce is doing a great job."

My guess is that if Kip Hawley were allowed to comment on my blog, he would say something like this: "It's not just bombs that are prohibited; it's things that look like bombs. This looks enough like a bomb to fool the other passengers, and that in itself is a threat."

Okay, that's fair. But the average person doesn't know what a bomb looks like; all he knows is what he sees on television and the movies. And this rule means that all homemade electronics are confiscated, because anything homemade with wires can look like a bomb to someone who doesn't know better. The rule just doesn't work.

And in today's passengers-fight-back world, do you think anyone is going to successfully do anything with a fake bomb?