Lawmakers seek to stop reposting of TSA security document
House Homeland Security Committee members want DHS head to examine legal options
Computerworld - Several lawmakers are asking Department of Homeland Security (DHS) Secretary Janet Napolitano to examine if any legal remedies are available to stop Web sites from reposting a recently leaked Transportation Security Administration (TSA) security manual.
In a letter addressed to Secretary Napolitano on Wednesday, members from the House Committee on Homeland Security expressed concerns over the "repeated reposting" of the security manual on multiple Web sites and asked her to clarify if the sites could be compelled to take it down.
The lawmakers also demanded to know if the DHS was considering new rules to prohibit such posting in future and if criminal penalties are "necessary or desirable to ensure such information is not reposted in the future."
The letter seeks a response from Napolitano's office by Dec. 22 and is signed by Reps. Peter T. King (R-New York), Charles Dent (R-Pennsylvania) and Gus Bilirakis (R-Florida). A copy of the letter was originally posted on the Secrecy News Web site.
The letter is the latest indication of the growing concerns stemming from the inadvertent exposure recently of an improperly redacted document containing highly detailed information on the passenger screening procedures used by TSA officials at U.S. airports.
The Standard Operations Procedures manual was posted as part of a TSA contract solicitation process on the Federal Business Opportunities Web by a contract employee.
The manual provided detailed information on a range of TSA screening procedures at over 450 airports and included data on calibrating magnetometers, explosives trace detection and identifying law enforcement credentials.
It was discovered last Sunday by a blogger who posted links to it on his Web site and sent a copy of it to anti-secrecy site Cryptome.org.
The original document has since been removed by the TSA. But numerous copies of it have become available on the Web, including on whistleblower site Wikileaks.org, and news media sites such asABC News.
Even if such sites could somehow be compelled to take the documents down it is unlikely to make any difference or stop the document from being disseminated anyway. Wikileaks alone for instance, has already made the document available from various mirror sites located in Sweden, Finland, Tonga and elsewhere. Cryptome.org meanwhile has been offering a direct download of the 1.8MB document since Dec. 8.
The DHS has launched an investigation into the breach as has the TSA. Several employees have been placed on administrative leave for their role in the incident and it is very likely that more heads will roll as the investigation unfolds.
Read more about Privacy in Computerworld's Privacy Topic Center.


- Excel 2010 Cheat Sheet
- Register for this Computerworld Insider Cheat Sheet and gain access to hundreds of premium content articles, guides, product reviews and more.
- Practice Management: Double Billing Rate and Improve Patient Services
- Would you like to double your billing rate and achieve faster payment for services?
Download this customer success story to see how One Health... - Mission Critical Data Explosion and Customer Case Study
- Would you like to double your tier 1 storage capacity while simultaneously reducing your storage footprint?
Download this customer success story to see how... - Protecting Against Database Attacks and Insider Threats: Top 5 Scenarios
- Read this new eBook to learn the top five scenarios and essential best practices for preventing database attacks and insider threats.
- Database Activity Monitoring Is Evolving
- Read the analyst report and learn how you can leverage the core capabilities of a DAP solution for better database security.
- Establishing a Strategy for Database Security is No Longer Optional
- The options for securing increasingly valuable databases are very broad and deep, and can be confusing. This research provides an overview of three... All Privacy White Papers
- Close a Dangerous Vulnerability: Automated Methods for Managing Admin Rights
- In this exclusive webcast from Viewfinity, you'll hear how to leverage Group Policy Object settings to close this vulnerability by elevating privileges for...
- Data Protection and Disaster Recovery with iSCSI and VMware
- Get this on demand webcast now
- Distributed Database Security with Real-time Monitoring
- View this demo and learn how IBM InfoSphere Guardium database activity monitoring can help protect your sensitive data in distributed DBMS environments with...
- InfoSphere Warehouse Packs Demo
- These flash modules make warehousing more tangible and relevant to business users through detailed explanations of the InfoSphere Warehouse Packs.
- Delivery Management -- Extending Lifecycle Management
- Date: Wednesday, June 20, 2012, 1:00 PM EDT
Siloed organizations continue doing the wrong things and doing things wrong, leading to increased costs,...
All Privacy Webcasts