TRENDING:

Secure Flight Program Lauded

GAO: TSA Program Complies with Law Eric Chabrow (GovInfoSecurity) • May 15, 2009    
Secure Flight Program Lauded
The Government Accountability Office gave a clean bill of health to the Transportation Security Administration's Secure Flight program, a system that matches passenger information against terrorist watch-list records.

According to the GAO audit, TSA - part of the Department of Homeland Security - achieved nine of 10 statutory conditions related to the development of the Secure Flight program. GAO deemed the 10th provision - appropriateness of life-cycle cost estimates and program plans - as conditionally achieved, saying TSA had defined plans but had yet to execute all activities associated with them.

The statutory conditions achieved included:

  • Due process,
  • Misidentifications,
  • Performance of stress testing and efficacy and accuracy of search tools,
  • Establishment of an internal oversight board,
  • Operational safeguards to reduce abuse opportunities,
  • Substantial security measures to prevent unauthorized access by hackers,
  • Effective oversight of system use and operation,
  • No specific privacy concerns with the system's technological architecture and
  • Accommodation of states with unique transportation needs.

GAO, the investigative arm of Congress, recommends that TSA should developed plans to periodically assess the performance of the Secure Flight system's name-matching capabilities, which would help ensure that the system is working as intended.

DHS concurs with GAO's recommendation.

Previous
Too Close for Comfort
Next
AF Cybersecurity Command Chosen

About the Author

Eric Chabrow

Eric Chabrow

Retired Executive Editor, GovInfoSecurity

Chabrow, who retired at the end of 2017, hosted and produced the semi-weekly podcast ISMG Security Report and oversaw ISMG's GovInfoSecurity and InfoRiskToday. He's a veteran multimedia journalist who has covered information technology, government and business.



Around the Network

Medical Device Cyberthreat Modeling: Top Considerations
Medical Device Cyberthreat Modeling: Top Considerations
Identity Security and How to Reduce Risk During M&A
Identity Security and How to Reduce Risk During M&A
How 'Security by Default' Boosts Health Sector Cybersecurity
How 'Security by Default' Boosts Health Sector Cybersecurity
Transforming a Cyber Program in the Aftermath of an Attack
Transforming a Cyber Program in the Aftermath of an Attack
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
Why Health Firms Struggle with Cybersecurity Frameworks
Why Health Firms Struggle with Cybersecurity Frameworks
Evolving Threats Facing Robotic and Other Medical Gear
Evolving Threats Facing Robotic and Other Medical Gear
Is It Generative AI's Fault, or Do We Blame Human Beings?
Is It Generative AI's Fault, or Do We Blame Human Beings?
Safeguarding Critical OT and IoT Gear Used in Healthcare
Safeguarding Critical OT and IoT Gear Used in Healthcare
Protecting Medical Devices Against Future Cyberthreats
Protecting Medical Devices Against Future Cyberthreats

Continue »

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.