An anonymous reader of Dave Farber's Interesting People list has discovered a glaring flaw in the TSA's protocol for secondary screening:
today at newark airport i used a paperless electronic boarding pass on my cell phone (as i usually do). i got through the id check, stripped down to my skivvies (almost), and as i was about to walk through the magnetometer (they still have those at united newark), they were yelling out that they were checking boarding passes, take them along through the mag.
i said, it's on my phone, you really want i should take my phone through the mag?
they said "no, only take your paper boarding passes".
huh? sure enough, if you said you used a mobile boarding pass, they believed you (anddidn't even look at it (of course, only another scanner could really verify its authenticity.)
so after a bit of conversation, i found out that they were checking the paper boardingpasses to check for the dreaded four esses, meaning "secondary screening". if you are randomly selected for secondary screening at checkin, they currently won't issue you an electronic boarding pass, you have to do a manual check-in.
so now they have created a situation where someone selected for secondary screening can get through the id check with their paper boarding pass showing the SSSS, and then, when they reach the mag where the screening would occur, simply lie, saying they are using an electronic boarding pass to avoid secondary screening.
the latest in TSA improved stupidity equips people to avoid a secondary search
(Image: ssss.JPG, a Creative Commons Attribution (2.0) image from jcortell's photostream)
Amazingly, this is an improvement on last year, when hackers took 300,000 taxpayers’ records from the IRS.
A basic best-practice for email servers is to use TLS (Transport Layer Security) when they connect to one another, which guards against “man in the middle” attacks that would allow attackers to read or change emails while they travel between mail-servers.
The White House released an announcement today on President Obama’s Cybersecurity National Action Plan. In thousands of not actually bad at all words about cybersecurity, they managed not to say the word “encryption” once.
You travel around a lot. It might be that jet set life from New York to LA to London to Tokyo, or it might be back and forth from the coffee shop to the office, or from the kitchen to the couch. Any which way, you’re mobile and that’s the way to live. When you […]
It’s 2016 and we like our technology really small. Our phones fit in our pockets, our remotes are lighter than ever, and even our cars seem to be shrinking. So your new drone shouldn’t be an exception. This Axis VIDIUS Drone is 21% off right now and it’s so little, your biggest problem won’t be […]
You’ve heard the news: cyber security is the new and very scary frontier. Hackers are out there just waiting for you to relax for a second and let them in. But that’s not going to happen to you. With a lifetime premium subscription to ZenMate VPN, you’re completely protected from anyone out there who wants […]