December 9, 2009 – The Transportation Security Administration (TSA) is investigating after they say an outdated version of their standard operating procedures manual was posted on the Internet. Who gets more scrutiny in line? What countries’ passports are singled out? Who’s exempt from screening? The answers to those questions and more were posted online for everybody to see.
The document dated May 28, 2008, is considered sensitive security information. It details who gets special treatment, and what to do with people who balk at the checkpoint.
Documents note that passengers from Cuba, North Korea, Libya and a number of other countries must undergo additional screening.
“You don’t want discrimination against a certain country or against a certain population group or a certain group of people but if you don’t profile, then I think you’re missing the boat. You’re not being realistic,” Bob Boswellin, a passenger told WTTG in Washington, D.C.
It offers examples of identification documents that screeners accept, including congressional, federal air marshal and CIA ID cards; and it explains that diplomatic pouches and certain foreign dignitaries with law enforcement escorts are not subjected to any screening at all. It said certain methods of verifying identification documents aren’t used on all travelers during peak travel crushes.
The posting was improper because sensitive information was not properly protected, TSA spokeswoman Kristin Lee said.
As a result, some Web sites, using widely available software, were able to uncover the original text of sections that had been blacked out for security reasons. On Sunday, the Wandering Aramean blog pointed out the document in a posting titled “The TSA makes another stupid move.”
According to the blog, TSA posted a redacted version of the document but did not delete the sensitive information from the file. Instead of removing the text, the government covered it up with a black box. But the text was still embedded in the document and could be uncovered.
TSA asked that the document be removed from the Federal Business Opportunity site on Dec. 6 after the security lapse was reported in a blog. But copies of the document — with the redacted portions exposed — circulated on the Internet and remain posted on other Web sites not controlled by the government.
Noting that the transportation agency uses multiple layers of security, Lee said, “TSA is confident that screening procedures currently in place remain strong.”
The document, marked “sensitive security information,” includes instructions on how it should be stored to avoid compromising security: Electronic copies should be password-protected; hard copies should be in separate binders and stored in cabinets or desk drawers; and missing copies should be immediately reported.
The document also describes these screening protocols:
– Aircraft flight crew members in uniform with valid IDs are not subject to liquid, gel, aerosol and footwear restrictions.
– Wheelchair and scooter cushions, disabled people’s footwear that can’t be removed, prosthetic devices, casts, braces and orthopedic shoes at certain times may be exempt from screening for explosives.
Intelligence officials have warned of prosthetic devices and wheelchairs being used to conceal weapons and other contraband.
“Some of these devices may have been used to exploit a perception that security and law enforcement officers offer disabled or pregnant individuals a more relaxed inspection,” said an August 2007 TSA intelligence note marked “for official use only” and obtained by The Associated Press.
Former TSA Administrator Kip Hawley said the document is not something a security agency would want to inadvertently post online, but he said it’s not a roadmap for terrorists.
“Hyperventilating that this is a breach of security that’s going to endanger the public is flat wrong,” Hawley said.
House Homeland Security Committee Chairman Bennie G. Thompson, D-Miss., was more concerned.
“Undoubtedly, this raises potential security concerns across our transportation system,” Thompson wrote the agency Tuesday in a letter recommending that an independent federal agency be found to review the incident. The chairwoman of the panel’s transportation security subcommittee, Rep. Sheila Jackson-Lee, D-Texas, also signed the letter.
Thompson’s Senate counterpart, Sen. Joe Lieberman, I-Conn., said the episode was “an embarrassing mistake that calls into question the judgment of agency managers. … That it was incompetently redacted only compounds the error.”
An Obama administration official says some TSA employees have been placed on administrative leave after the discovery that the sensitive guidelines were posted on the Internet.
Assistant Homeland Security secretary David Heyman has told senators a full investigation into the security lapse is under way. Heyman says the Homeland Security Department is stopping the posting of documents with sensitive security information either in full or in part on the Internet until the TSA review is complete.