Hubbry Logo
Computer-Assisted Passenger Prescreening SystemComputer-Assisted Passenger Prescreening SystemMain
Open search
Computer-Assisted Passenger Prescreening System
Community hub
Computer-Assisted Passenger Prescreening System
logo
7 pages, 0 posts
0 subscribers
Be the first to start a discussion here.
Be the first to start a discussion here.
Computer-Assisted Passenger Prescreening System
Computer-Assisted Passenger Prescreening System
Computer-Assisted Passenger Prescreening System
View on Wikipedia
from Wikipedia

The Computer-Assisted Passenger Prescreening System (CAPPS) was a counter-terrorism system in place in the United States air travel industry that matches passenger information with other data sources. The United States Transportation Security Administration (TSA) maintains a watchlist, pursuant to 49 USC § 114 (h)(2),[1] of "individuals known to pose, or suspected of posing, a risk of air piracy or terrorism or a threat to airline or passenger safety." The list is used to pre-emptively identify terrorists attempting to buy airline tickets or board aircraft traveling in the United States, and to mitigate perceived threats. These functions are now conducted through the Secure Flight program.

Overview

[edit]

CAPPS systems rely on what is known as a passenger name record (PNR). When a person books a plane ticket, certain identifying information is collected by the airline: full name, date of birth, address, etc. This information is used to check against another data source (including the TSA No-Fly List, the FBI Ten Most Wanted Fugitive List, and other databases) and assign a terrorism "risk score" to that person. High risk scores require the airline to subject the person to extended baggage and/or personal screening, and to contact law enforcement, if necessary.

CAPPS I

[edit]

The Computer Assisted Passenger Prescreening System I (CAPPS I) was first implemented in the late 1990s, in response to the perceived threat of U.S. domestic and international terrorism. The U.S. government started to implement counter-terrorism measures after several bomb attacks occurred, including the 1995 Oklahoma City bombing, the 1996 Olympics bombing, and the 1998 bombings of two U.S. embassies in East Africa. CAPPS I was administered by the Federal Bureau of Investigation (FBI) and the Federal Aviation Administration (FAA). CAPPS screening selected passengers for additional screening of their checked baggage for explosives. CAPPS selectees did not undergo any additional screening at passenger security checkpoints.[2]

September 11, 2001 attacks

[edit]

On the morning of the September 11 attacks (9/11), several of the hijackers were selected by CAPPS. Wail al-Shehri and Satam al-Suqami were selected for extra screening of their checked bags before they boarded American Airlines Flight 11 at Logan International Airport in Boston, Massachusetts. Waleed al-Shehri was also selected, but since he had checked no bags, the CAPPS selection had no effect on him.[2] Mohamed Atta was selected by CAPPS when he checked in at Portland International Jetport.[3]

All five of the hijackers on American Airlines Flight 77 were CAPPS selectees, with Hani Hanjour, Khalid al-Mihdhar, and Majed Moqed chosen by the CAPPS criteria. Nawaf al-Hazmi and Salem al-Hazmi were selected because they did not provide adequate identification, and had their checked bags held until they boarded the aircraft.[2]

Ahmed al-Haznawi was the only hijacker selected of those on United Airlines Flight 93, and none of the hijackers of United Airlines Flight 175 were selected by CAPPS.[2]

After 9/11

[edit]

In response to the 9/11 attacks, the U.S. government authorized the creation of the Transportation Security Administration (TSA) to oversee airport security, which was previously handled by private contractors. It was signed into law by President George W. Bush on November 19, 2001. The agency was initially placed under the United States Department of Transportation but was moved to the Department of Homeland Security when that department was formed on March 9, 2003. In November 2001, control of CAPPS was transferred to the TSA, where it has "... expanded almost daily as Intelligence Community (IC) agencies and the Office of Homeland Security continue to request the addition of individuals ..."[4]

CAPPS II

[edit]

The Computer Assisted Passenger Prescreening System II (CAPPS II) was a proposal for a new CAPPS system, designed by the Office of National Risk Assessment (ONRA), a subsidiary office of the TSA, with the contracted assistance of Lockheed Martin. CAPPS II searched through information stored in government and commercial databases and assigned a color-coded level of risk to each passenger. U.S. Congress presented the TSA with a list of requirements for a successor to CAPPS I. Some of those requirements were:

  • The government, not the airlines, would control and administer the system
  • Every ticketed passenger would be screened, not just those who check bags
  • Every airline and every airport would be covered by the system

Like its predecessor, the CAPPS II proposal would rely on the PNR to uniquely identify people attempting to board aircraft. It would expand the PNR field to include a few extra fields, like a full street address, date of birth, and a home telephone number. It would then cross-reference these fields with government records and private sector databases to ascertain the identity of the person, and then determine a number of details about that person. Law enforcement would be contacted in the event that the person was either present on a terrorist or most-wanted list or had outstanding federal or state arrest warrants for a violent crime.[5]

Otherwise, the software would calculate a "risk score" and then print a code on the boarding pass indicating the appropriate "screening level" for that person: green (no threat) indicates no additional screening, yellow (unknown or possible threat) indicates additional screening, and red (high-risk) indicates prevention from boarding and deferral to law enforcement. Exactly how this risk score would be calculated was never disclosed nor subject to public oversight of any kind outside of the TSA.

CAPPS II grounded innocent Americans due to false positives. One notable example is the grounding of Senator Ted Kennedy in 2004.[6]

The CAPPS II system was criticized in a report by the United States General Accounting Office in early 2004, and faced increased opposition from watchdog groups like the American Civil Liberties Union (ACLU),[7] ReclaimDemocracy.org, Electronic Frontier Foundation, and the Electronic Privacy Information Center (EPIC). These advocacy groups expressed concern that the system violated people's privacy rights and that it was possibly unconstitutional. They also believed it could actually undermine safety, as terrorists could use it to their advantage.

Cancellation

[edit]

CAPPS II was cancelled by the TSA in the summer of 2004 due to privacy concerns with the intent of creating a new system.[5][8] Shortly thereafter, the TSA announced a successor program, called Secure Flight, that would work in a way similar to CAPPS II. TSA hoped to test Secure Flight in August 2005 using two airlines, but it was blocked by Congress until the government could prove that the system can pass 10 tests for accuracy and privacy protection as follows:

  1. Redress process - A system of due process exists whereby aviation passengers determined to pose a threat are either delayed or prohibited from boarding their scheduled flights by TSA may appeal such decisions and correct erroneous information contained in CAPPS II or Secure Flight or other follow-on/successor programs.
  2. Accuracy of databases and effectiveness of Secure Flight - The underlying error rate of the government and private databases that will be used to both establish identity and assign a risk level to a passenger will not produce a large number of false positives that will result in a significant number of passengers being treated mistakenly or security resources being diverted.
  3. Stress testing - TSA has stress-tested and demonstrated the efficacy and accuracy of all search technologies in CAPPS II or Secure Flight or other follow-on/successor programs and has demonstrated that CAPPS II or Secure Flight or other follow-on/successor programs can make an accurate predictive assessment of those passengers who may constitute a threat to aviation.
  4. Internal oversight - The Secretary of Homeland Security has established an internal oversight board to monitor the manner in which CAPPS II or Secure Flight or other follow-on/successor programs are being developed and prepared.
  5. Operational safeguards - TSA has built in sufficient operational safeguards to reduce the opportunities for abuse.
  6. Security measures - Substantial security measures are in place to protect CAPPS II or Secure Flight or other follow-on/successor programs from unauthorized access by hackers or other intruders.
  7. Oversight of system use and operation - TSA has adopted policies establishing effective oversight of the use and operation of the system.
  8. Privacy concerns - There are no specific privacy concerns with the technological architecture of the system.
  9. Modifications with respect to intrastate travel to accommodate states with unique air transportation needs - TSA has, in accordance with the requirements of section 44903 (j)(2)(B) of title 49, United States Code, modified CAPPS II or Secure Flight or other follow-on/successor programs with respect to intrastate transportation to accommodate states with unique air transportation needs and passengers who might otherwise regularly trigger primary selectee status.
  10. Life-cycle cost estimates and expenditure plans - Appropriate life-cycle cost estimates, and expenditure and program plans exist.

The Intelligence Reform and Terrorism Prevention Act (IRTPA) of 2004 required the Department of Homeland Security (DHS) to assume from aircraft operators the function of conducting pre-flight comparisons of airline passenger information to federal government watch lists for international and domestic flights. TSA published the Secure Flight Final Rule on October 28, 2008, which went into effect on December 29, 2008, creating the Secure Flight program.[9][10]

See also

[edit]

References

[edit]
[edit]
Revisions and contributorsEdit on WikipediaRead on Wikipedia

Computer-Assisted Passenger Prescreening System

View on Grokipedia
from Grokipedia
The Computer-Assisted Passenger Prescreening System (CAPPS) was a computerized risk-assessment deployed by U.S. airlines under oversight to evaluate passenger itineraries and profiles, selecting a subset—typically 5 to 10 percent—for enhanced baggage screening based on indicators like cash payments for one-way tickets bought near departure or irregular travel patterns. Introduced in as a joint FAA-airline initiative to bolster security without overt behavioral profiling, CAPPS processed Passenger Name Records (PNR) data to flag potential anomalies, aiming to allocate limited screening resources more efficiently amid rising concerns over threats like the 1995 . During the September 11, 2001, attacks, CAPPS identified four of the hijackers (including and on ) as selectees due to matching risk criteria, triggering hand-searches of their checked luggage for explosives; however, the absence of checked bags for most hijackers, coupled with CAPPS's design limitation to baggage rather than passenger screening, allowed box cutters and knives to pass undetected, underscoring systemic gaps in threat escalation and procedural enforcement. This failure prompted post-9/11 scrutiny, revealing CAPPS's reliance on outdated, airline-specific rules that yielded inconsistent results across carriers and lacked integration with intelligence watchlists, contributing to its limited deterrent effect against coordinated, low-tech assaults. The (TSA), established in November 2001, proposed CAPPS II as an upgrade to prescreen all passengers using expanded PNR data, commercial databases, and federal terrorist watchlists to generate color-coded risk scores (green for low-risk, yellow for moderate requiring secondary checks, red for no-fly prohibitions), with the goal of preempting threats through data-driven triage. Yet CAPPS II's development stalled due to technical delays, incomplete privacy impact assessments, unproven accuracy in pilot tests (with false positive rates potentially exceeding 30 percent absent robust validation), and international data-sharing hurdles, as foreign governments resisted sharing PNR amid concerns. Controversies intensified over risks of —such as repurposing data for non-security uses—and inadequate redress for misidentified individuals, including U.S. citizens, leading to withhold funding unless TSA certified compliance with safeguards; these unresolved issues culminated in DHS's official cancellation of CAPPS II in July 2004, shifting focus to the narrower Secure Flight program limited to identity verification against no-fly lists. Empirical evaluations of CAPPS's original efficacy remain sparse, with reports highlighting implementation flaws over quantifiable threat detections, though its algorithmic approach influenced subsequent risk-based models despite persistent debates on balancing security gains against error-prone automation.

Overview

Core Purpose and Objectives

The Computer-Assisted Passenger Prescreening System (CAPPS), initially developed by the (FAA) in the late 1990s, served as an algorithmic tool integrated into to evaluate passenger risk profiles prior to . Its primary purpose was to identify individuals potentially posing security threats, directing them toward secondary screening measures such as enhanced baggage examination, while exempting low-risk passengers from such procedures to maintain efficient airport operations. This approach aimed to concentrate limited security resources on higher-risk subsets, estimated at 5 to 12 percent of travelers depending on airline implementation, rather than applying uniform scrutiny to all. Key objectives included mitigating vulnerabilities in exposed by prior incidents, such as the 1988 Pan Am Flight 103 bombing, by automating threat detection through neutral criteria like travel history, payment methods, and itinerary anomalies, without relying on human judgment alone. CAPPS sought to foster a layered model, where prescreening complemented physical checks and , ultimately reducing the likelihood of explosives or weapons evading detection on aircraft. Deployment began in 1998 on select U.S. carriers, with full rollout mandated by FAA directives in 1999, reflecting a post-Cold War shift toward data-driven in .

Historical Context and Evolution

The origins of the Computer-Assisted Passenger Prescreening System (CAPPS) trace to the mid-1990s, amid rising concerns over aviation terrorism and the limitations of manual screening amid growing passenger volumes exceeding 500 million annually by 1996. In 1994, the (FAA) provided funding to to develop an automated prescreening tool, initially termed the Computer Assisted Passenger Screening (CAPS) system, which analyzed booking data such as itineraries and payment methods to flag potential risks. This initiative built on post-1988 bombing efforts to enhance in , but shifted toward passenger profiling to prioritize resources efficiently. By 1996, Northwest completed the core CAPS prototype, prompting the FAA to adapt it into the standardized CAPPS framework for broader adoption, emphasizing rules-based algorithms over subjective agent judgment to select passengers for secondary checks. In 1998, the FAA mandated that all U.S. air carriers implement an approved CAPPS variant, with most achieving deployment by that year, covering approximately 99% of domestic passengers through voluntary carrier-developed criteria vetted by the agency. The system primarily targeted non-suicide threats by routing "selectees'" checked bags through systems, reflecting the era's focus on planted bombs rather than onboard hijackings. CAPPS evolved incrementally in the late 1990s as carriers refined their proprietary algorithms under FAA oversight, incorporating watchlist cross-checks while maintaining airline control over operations to balance security and operational flow. Despite these advances, the system's scope remained narrow—lacking integration with carry-on screening or real-time threat intelligence—due to technological constraints and concerns, prescreening only 1-2% of passengers as selectees without broader risk mitigation for emerging tactics like box cutters. This pre-9/11 iteration represented a transition from ad-hoc profiling to data-driven selection, though its effectiveness hinged on inconsistent carrier implementation and unaddressed gaps in .

Development of CAPPS I

Origins in the 1990s

The origins of the Computer-Assisted Passenger Prescreening System (CAPPS) trace to enhancements pursued in the , building on responses to the December 21, 1988, bombing of over , , which exposed vulnerabilities in passenger and baggage screening. In the late 1980s, the (FAA) required airlines to profile passengers through basic security questions to target for elevated-risk screening, but rising passenger volumes and persistent terrorist threats necessitated a more efficient, computerized approach to identify individuals warranting additional scrutiny without resorting to universal baggage . In 1994, the FAA provided funding to , a major U.S. carrier, to prototype a computerized prescreening system using passenger itinerary data to classify travelers as higher-risk "selectees." The Federal Aviation Reauthorization Act of 1996 (P.L. 104-264, Section 307) explicitly authorized the development of such a system, prompting the FAA to collaborate with on CAPPS from 1996 to 1997, focusing on algorithms that evaluated (PNR) elements like one-way ticket purchases, cash payments, or irregular travel patterns, while excluding factors such as race, , or following reviews by the Department of Justice and . Field testing of CAPPS continued through 1998, after which the FAA required its integration into most U.S. air carriers' reservation systems for domestic flights, with full mandatory deployment targeted by April 1999 via a proposed rule in the (64 FR 19219). This marked CAPPS I's operational debut in the late , residing entirely within systems to select passengers for enhanced checks, thereby concentrating limited resources on potential threats identified through commercial data rather than comprehensive government watchlists. The system's design prioritized feasibility over exhaustive screening, reflecting constraints on and considerations in protocols.

Operational Deployment

The Computer-Assisted Passenger Prescreening System I (CAPPS I) entered operational deployment in 1998, when major U.S. airlines began voluntarily implementing the system for passenger screening on domestic flights. Initially developed through a Federal Aviation Administration (FAA)-funded project with Northwest Airlines, CAPPS I was designed to algorithmically evaluate passenger data at check-in to identify individuals warranting additional security measures, such as enhanced physical screening of persons and carry-on baggage. By the late 1990s, most major U.S. carriers, including Delta, American, and United Airlines, had adopted the system, though participation remained non-mandatory under FAA guidelines, relying instead on airline discretion and shared criteria. In practice, CAPPS I processed passenger reservation data—including , ticketing method, and behavioral indicators—against predefined thresholds to select a subset of travelers, typically 5 to 10 percent of passengers, for secondary screening at airport checkpoints. Selected passengers were flagged with indicators like a special marking, prompting and personnel to conduct manual inspections, but checked baggage for CAPPS selectees was not routinely screened for explosives unless additional trace detection was applied selectively. The FAA provided airlines with periodic updates to a no-fly watchlist for manual cross-checks, but the core prescreening excluded name-based matching against broader intelligence databases, limiting its scope to rule-based heuristics rather than comprehensive threat intelligence integration. This decentralized, airline-operated model persisted until the , 2001, attacks exposed limitations in its execution and coverage.

Functionality of CAPPS I

Screening Criteria and Process

The Computer-Assisted Passenger Prescreening System (CAPPS I) operated as a rule-based integrated into airline reservation and systems, prescreening nearly all domestic passengers by analyzing (PNR) data and itinerary details at the time of ticketing or . , under (FAA) guidelines, applied the system selectively to domestic flights and certain international departures, with implementation beginning in 1997-1998 across major U.S. carriers. Upon processing, the system assigned passengers to "selectee" status if their profile matched predefined risk indicators, marking their boarding pass accordingly (e.g., with "SSSS" notation) for additional measures, primarily focused on preventing sabotage via rather than suicide hijackings or threats. Selectees underwent enhanced baggage screening, such as explosive detection system (EDS) checks or bag-matching (holding bags until boarding confirmation), but standard passenger checkpoint procedures applied unless airline staff or security personnel exercised discretion for further scrutiny like hand-searches of s. The process did not authorize denial of boarding and selected approximately 10-15% of passengers for secondary measures, balancing security with operational throughput concerns. Screening criteria derived from behavioral patterns and limited passenger data, emphasizing anomalies suggestive of potential threats like bombings, as CAPPS I was developed in the mid-1990s amid concerns over explosive devices rather than coordinated hijackings. Key factors included purchasing a one-way ticket, paying in , making last-minute reservations (e.g., within 24 hours), short domestic trip durations, lack of , absence of frequent flyer affiliation or linkage, and travel itineraries involving high-risk origins or connections. The algorithm also cross-referenced names against a government-supplied watch list of known or suspected terrorists, though this was rudimentary and not comprehensive. Exact weights and full rule sets remained proprietary to airlines and FAA, with variations in application across carriers, but the system prioritized itinerary-based indicators over personal identifiers to minimize risks. On September 11, 2001, these criteria flagged multiple hijackers—such as for a one-way ticket and payment—but limitations in screening allowed prohibited items like box cutters to pass undetected.

Integration with Airline Procedures

The Computer-Assisted Passenger Prescreening (CAPPS I) was embedded directly into airlines' computer reservation systems, enabling automated using passenger data such as travel history, ticket purchase method (e.g., payments), and itinerary details like one-way flights. This integration occurred during the process for domestic and select international flights, where staff or the queried the reservation records to classify passengers as either cleared (nonselectees) or flagged for additional scrutiny (selectees), typically comprising 3-10% of passengers depending on flight type and criteria matches. Upon flagging, selectees' checked baggage underwent mandatory explosives screening using specialized equipment such as CTX machines, which could process up to 150 bags per hour, while their items received standard physical searches at security checkpoints. Airlines bore primary responsibility for executing this prescreening, including ensuring compliance with (FAA) quotas—often requiring random selection if criteria-based selectees fell short—and marking boarding passes to denote selectee status for downstream security personnel. At smaller airports lacking explosives detection systems, alternatives like bag matching (verifying baggage remained onboard if the owner did) were permitted, though this exposed gaps in uniform application. Operational deployment began in the early 1990s following the 1988 bombing, with full adoption by 1996 and widespread use across U.S. carriers by 1998. The FAA mandated non-discriminatory implementation to avoid profiling based on protected characteristics, though criteria focused empirically on behavioral indicators like last-minute bookings rather than demographics. This -led process aimed to balance efficiency with by targeting higher-risk bags for trace detection without broadly disrupting flow, but reliance on systems introduced variability in execution across carriers.

Role in the September 11 Attacks

Identification of Hijackers

The Computer-Assisted Passenger Prescreening System (CAPPS I) flagged at least nine of the 19 hijackers involved in the , 2001, attacks for secondary screening prior to boarding their respective flights. These selections occurred based on CAPPS criteria, which included factors such as purchasing one-way tickets with cash, paying for tickets at the last minute, or exhibiting travel patterns deemed suspicious, though the system incorporated random elements to prevent circumvention and explicitly excluded demographic profiling like race or national origin. For instance, on , and were selected by CAPPS at Boston's Logan Airport due to their one-way ticket purchase with cash; similarly, on , and were flagged at Washington Dulles International Airport for analogous reasons, with al-Hazmi's checked baggage held pending boarding confirmation. CAPPS selections on and Flight 93 also identified hijackers like and , triggering baggage screening protocols but no enhanced passenger or inspections. Under FAA directives in effect on , 2001, such as Security Directive 97-01, selectees' checked luggage was subjected to or held until the aircraft departed with the passenger confirmed aboard, aiming to mitigate risks rather than hijacking threats. However, no routine pat-downs, hand searches of s, or wanding were mandated for CAPPS selectees, as post-1997 FAA policies had relaxed such measures to avoid delays and potential discrimination claims. This limited screening failed to detect the hijackers' weapons, including box cutters and small knives under four inches, which were permitted in carry-ons per pre-9/11 regulations. None of the flagged hijackers were denied boarding, and their baggage cleared checks without incident, allowing all to proceed to and ultimately hijack the . The attributed this outcome to CAPPS's design focus on explosive threats rather than coordinated hijackings, compounded by inconsistent implementation and the absence of integration with no-fly lists or watchlists at the time. In total, while CAPPS identified suspicious profiles among the hijackers, the system's procedural constraints and aviation security gaps enabled the attacks to proceed unimpeded.

Failures in Response and Execution

Despite identifying multiple hijackers as requiring additional scrutiny on September 11, 2001, CAPPS I's execution failed to interdict threats due to its design limitations, which prioritized checked baggage screening over passenger or carry-on inspections. The system flagged approximately nine of the 19 hijackers across all four hijacked flights, including Mohamed Atta and Abdul Aziz al Omari on American Airlines Flight 11, Marwan al Shehhi on United Airlines Flight 175, Hani Hanjour and Majed Moqed on American Airlines Flight 77, and Ziad Jarrah on United Airlines Flight 93, based on criteria such as one-way tickets purchased with cash and lack of checked luggage. However, CAPPS protocols mandated only that flagged passengers' checked bags be held for explosive trace detection or canine screening until boarding was confirmed, allowing the individuals themselves to proceed unchecked through security checkpoints without pat-downs, wanding, or carry-on bag examinations. This baggage-centric approach stemmed from CAPPS I's origins in countering sabotage threats rather than suicide hijackings, rendering it ineffective against small, permitted weapons like box cutters and knives carried onboard by the hijackers. Post-1997 FAA policy shifts had eliminated requirements for secondary screening of selectees' persons or carry-ons, focusing resources on efficiency amid airline resistance to delays, which permitted the flagged hijackers to board unimpeded after their bags cleared. No mechanisms existed to escalate CAPPS selectees to no-fly status or referral, as the system lacked integration with intelligence watchlists or real-time threat data, such as the CIA's prior knowledge of operatives like and . Airline and airport execution compounded these flaws, with screeners undertrained and understaffed—averaging 75% annual turnover—and checkpoints ill-equipped to detect non-explosive threats, as magnetometers missed metal blades under clothing limits. For instance, on Flight 11, Atta's selection in Portland triggered bag screening there, but upon connecting in , no further passenger-level response occurred, enabling the group to pass through with weapons. The absence of unified protocols for handling selectees, coupled with airlines' operational control over screening contractors, prevented any proactive denial of boarding, highlighting systemic prioritization of passenger flow over security validation.

Proposal and Design of CAPPS II

Post-9/11 Rationale

Following the terrorist attacks of September 11, 2001, which involved hijackers exploiting weaknesses in the existing aviation security system—including the limited effectiveness of CAPPS I in identifying and responding to risks—the U.S. Congress enacted the Aviation and Transportation Security Act (ATSA) on November 19, 2001. This legislation established the (TSA) and mandated the development of an advanced computer-assisted passenger prescreening system to enhance threat detection prior to boarding. The rationale centered on shifting from reactive, post-checkpoint measures to proactive risk assessment, recognizing that the 9/11 hijackers had been partially flagged by CAPPS I for baggage screening but not subjected to sufficient passenger scrutiny or intelligence cross-referencing, allowing them to board with prohibited items like box cutters. CAPPS II was designed as a second-generation system to prescreen all passengers systematically, using (PNR) data, government watchlists, and commercial databases to assign risk scores and authenticate identities. The core objective was to protect by identifying individuals posing terrorist threats, thereby allocating security resources more efficiently to high-risk passengers while clearing low-risk ones for expedited processing. This approach aimed to mitigate the vulnerabilities exposed on 9/11, where fragmented and airline-managed screening failed to prevent the coordinated hijackings that killed 2,977 people. The , released in July 2004, reinforced the need for such a system by recommending universal prescreening against terrorist watchlists and better integration of intelligence into aviation security protocols. CAPPS II's proponents, including TSA officials, argued it would enable layered defenses, reducing the probability of undetected threats reaching aircraft by combining automated analysis with human oversight, in contrast to CAPPS I's reliance on basic criteria like one-way tickets purchased with cash. This rationale emphasized empirical lessons from 9/11, prioritizing causal prevention of insider threats over blanket measures like prohibiting all potential weapons.

Technical Features and Data Requirements

CAPPS II was designed as an automated, computer-based system to prescreen all passengers on domestic and international flights originating in the United States, employing a sequential process of followed by . Passenger data collected during ticket reservation—specifically full name, date of birth, home address, and home phone number—was transmitted from to the (TSA). This data underwent authentication against commercial databases to verify identity, generating a numerical authentication score to confirm the passenger's provided matched known records. The core risk assessment phase integrated authenticated passenger data with queries against government-maintained databases, including classified intelligence sources, terrorist watch lists, and records of known threats or associates. Algorithms, the precise methodologies of which were not publicly disclosed, processed this information to assign a score, categorizing passengers into three tiers: low (cleared for standard boarding), unknown (subject to enhanced physical screening at checkpoints), or high (flagged for immediate intervention). The system aimed to limit unknown- and high- designations to 1-3% of passengers, a targeted reduction from the approximately 15% flagged under prior manual methods, with results encoded on boarding passes or transmitted directly to checkpoints for real-time application. Data requirements extended beyond passenger inputs to encompass Passenger Name Records (PNR) from airlines and global distribution systems, including travel itineraries, payment details, and frequent flyer numbers if provided. Commercial data aggregators supplied supplementary verification records, while sources provided access to and databases without collecting Social Security numbers. Full operational efficacy necessitated comprehensive coverage of U.S. citizen data for domestic flights, with most non-essential data slated for deletion post-travel to mitigate retention concerns, though risk scores and flags could persist for auditing or appeals. Development proceeded in phased increments, incorporating scalability testing for up to 3.5 million daily transactions, but faced delays due to incomplete access to representative passenger datasets for validation.

Development and Testing of CAPPS II

Implementation Challenges

The (TSA) encountered significant delays in testing and developing initial increments of CAPPS II, primarily due to difficulties in obtaining required passenger data from airlines and other sources. By early 2004, these issues had pushed the program behind its planned schedule, hindering the validation of the system's algorithms against real-world booking records. A core challenge involved securing international cooperation to access passenger name records (PNRs) from foreign carriers, which were essential for comprehensive testing but complicated by varying data privacy laws and bilateral agreements. TSA faced resistance from international partners, as many countries restricted the sharing of detailed , limiting the program's ability to simulate global threats effectively. Managing the program's expanding mission scope posed additional risks, as initial plans for basic prescreening evolved to include broader functions, straining resources and complicating integration with existing airline systems. This , coupled with incomplete system architecture documentation, increased the potential for technical failures during deployment. Data accuracy and quality issues further impeded progress, with concerns that incomplete or erroneous records from commercial databases could lead to unreliable assessments, necessitating extensive validation efforts that were not fully resolved prior to testing phases. Preventing unauthorized access and potential of the system required robust safeguards, yet early designs lacked sufficient oversight mechanisms, raising implementation hurdles related to security protocols. These unresolved elements contributed to GAO assessments that, without mitigation, they threatened the program's viability.

Evaluations by GAO and Others

The Government Accountability Office (GAO) evaluated the development of CAPPS II in a February 2004 report, identifying significant delays and deficiencies in planning, testing, and . Key activities, including and certification, were postponed, with the system's initial operating capability—originally targeted for November 2003—delayed indefinitely due to unresolved data access issues related to concerns. The GAO noted that the (TSA) lacked a comprehensive plan, including a formal , and had not established policies for system certification as of January 2004. Testing efforts were incomplete, relying on only 32 simulated passenger records instead of the required 1.5 million real Passenger Name Records, which hindered verification of the system's ability to handle peak loads of 3.5 million transactions per day. accuracy remained unverified, with potential for substantial false positives stemming from errors in commercial and databases, and no full strategies in place. International cooperation posed additional risks, as the [European Union](/page/European Union) resisted sharing passenger data, limiting the system's effectiveness for non-U.S. citizens. The assessed that CAPPS II failed to meet seven of eight congressional criteria for deployment, including demonstrations of accuracy and redress mechanisms for erroneous screenings. In March 2004 testimony, the GAO reiterated these challenges, emphasizing operational risks such as vulnerabilities and potential privacy violations from expansive , while noting insufficient to ensure efficiency and public acceptance. The report recommended that TSA develop detailed functionality plans, performance metrics, and a robust redress process before proceeding, alongside enhanced oversight to prevent , such as expanding beyond threats to include warrant checks. Congressional evaluations, informed by GAO findings and oversight hearings, prompted further scrutiny, leading the Department of Homeland Security to initiate an internal review of CAPPS II in 2004. Lawmakers, including , expressed concerns over privacy rights and mandated certifications of system accuracy and threat prediction capabilities before funding, contributing to delays and eventual program reevaluation. Independent analyses, such as those from privacy advocates, echoed GAO critiques on unproven effectiveness but focused more on ; however, these did not alter core developmental assessments centered on technical and managerial shortfalls.

Controversies Surrounding CAPPS

Privacy and Surveillance Concerns

The proposed Computer-Assisted Passenger Prescreening System II (CAPPS II) drew widespread criticism for its potential to infringe on individual privacy through expansive data collection and algorithmic risk scoring applied to all domestic air travelers. Critics highlighted that the system would require airlines to transmit Passenger Name Record (PNR) data, including financial histories, credit card purchases, and commercial database information on approximately 100 million annual U.S. flights, enabling government access to sensitive personal details without individualized suspicion. The Transportation Security Administration (TSA) planned to integrate this data into a proprietary scoring algorithm to classify passengers as low, medium, or high risk, raising fears of indiscriminate surveillance on ordinary citizens rather than targeted threat identification. A core privacy issue was the system's opacity, often termed a "" by opponents, as the risk assessment criteria and scoring methodology remained classified, preventing public or congressional scrutiny of potential biases or errors. The (ACLU) contended that this secrecy could result in arbitrary judgments, with no disclosure of how data points like book purchases or political affiliations might influence scores, thereby undermining . GAO evaluations confirmed that TSA had not finalized transparent redress mechanisms by early 2004, leaving passengers without effective means to appeal erroneous risk designations or correct inaccurate data, which could lead to repeated secondary screenings or travel restrictions. Furthermore, the lack of robust oversight for data handling exacerbated concerns, as TSA's privacy impact assessments were incomplete, failing to fully address security against unauthorized access or breaches in a system processing vast personal records. Surveillance apprehensions centered on mission creep and the creation of enduring government databases. Advocacy groups warned that CAPPS II's infrastructure, once built, could expand beyond aviation security to monitor non-terrorism activities, such as routine or , given precedents in data-sharing expansions post-9/11. The ACLU specifically criticized the potential for "watch lists" derived from risk scores to be shared across federal agencies, enabling persistent tracking of flagged individuals' movements and behaviors without judicial warrants. GAO reports noted delays in CAPPS II testing partly attributable to barriers in securing commercial partnerships, underscoring empirical challenges in balancing security with data minimization principles, as airlines and vendors resisted broad disclosures due to liability risks. Congressional mandates required TSA to resolve eight key areas, including protections, before deployment; however, by 2004, seven remained unaddressed, contributing to heightened scrutiny and eventual program termination. These unresolved issues reflected broader tensions between enhanced screening efficacy and the causal risks of normalized mass fostering a apparatus prone to abuse.

Civil Liberties and Data Accuracy Debates

Critics of CAPPS II, including the (ACLU), contended that the system's requirement to collect sensitive personal data—such as full names, dates of birth, home addresses, and payment card numbers—from all 100 million annual U.S. air passengers constituted a form of without or judicial oversight, potentially violating Fourth Amendment protections against unreasonable searches. The ACLU highlighted that this , cross-referenced against government and commercial databases, risked creating a comprehensive government dossier on innocent travelers' movements and associations, enabling indefinite retention and secondary uses unrelated to aviation security. Proponents within the (TSA) countered that safeguards, including a dedicated privacy officer and data minimization policies, would limit retention to 50 months for low-risk passengers and restrict access, though the Government Accountability Office (GAO) assessed these plans as incomplete, noting unresolved gaps in oversight and audit mechanisms as of February 2004. Debates over centered on the opaque risk-scoring , which assigned passengers a secret numerical threat level based on undisclosed factors, denying individuals notice, an opportunity to contest results, or knowledge of the criteria used—effectively treating all travelers as presumptive suspects. The ACLU and Electronic Privacy Information Center (EPIC) argued this secrecy precluded meaningful redress, with initial TSA proposals for a challenge process deemed inadequate by GAO evaluators, who identified significant hurdles in verifying identities and correcting records across disparate databases. Civil liberties groups further warned of , where CAPPS II's infrastructure could expand to non-aviation contexts, such as routine domestic travel monitoring, echoing broader post-9/11 fears of eroding constitutional limits on executive power. Data accuracy emerged as a core contention, with opponents citing the inherent flaws in feeder databases like the FBI's (NCIC), whose error rates prompted the Justice Department to prohibit its use for aviation screening in April 2003 due to unverified and outdated entries. Commercial data aggregators, relied upon for identity verification, were criticized for incomplete coverage—potentially accurate for only a of the —and vulnerability to or alias proliferation, leading to erroneous high-risk designations. GAO analyses underscored these risks, reporting that TSA's testing revealed challenges in achieving 99.9% accuracy thresholds mandated by , with false positives projected to affect up to 6% of passengers initially, burdening low-risk individuals with invasive secondary screenings and fostering public distrust. Defenders maintained that iterative testing and could mitigate errors, but empirical limitations in matching algorithms, particularly for common names or immigrants, fueled about the system's reliability without transparent validation metrics. These accuracy debates intertwined with , as flawed data could perpetuate unjust deprivations of without recourse, amplifying concerns over equity and potential disparate impacts on minority groups despite TSA's stated aversion to behavioral profiling.

Assessments of Effectiveness

Evidence of Potential Benefits

The (TSA) projected that CAPPS II would reduce the percentage of passengers selected for additional checkpoint screening from approximately 15 percent under the existing CAPPS system to 1 to 3 percent, thereby enabling more targeted application of security resources to higher-risk individuals. This efficiency gain stemmed from the system's intended use of Passenger Name Records (PNR) data combined with commercial databases and government watchlists to generate risk scores categorizing passengers as low, unknown, or high risk, with only selectees facing enhanced scrutiny. Preliminary design features also included automated adjustments to risk scores based on Department of Homeland Security threat levels, potentially allowing dynamic reallocation of screening personnel to flights, airports, or regions exhibiting elevated risks. CAPPS II's architecture incorporated identity authentication mechanisms drawing from multiple commercial data providers to verify passenger details against publicly available information, which TSA anticipated would mitigate identity fraud and improve overall prescreening accuracy beyond CAPPS I's limitations. By prescreening all passengers on flights originating from or destined to the United States, the system aimed to integrate no-fly list checks with broader risk assessments, theoretically enhancing threat detection without universal secondary screening. Proponents, including security analysts, argued that real-time analysis of diverse data sources—such as travel history and financial records—could yield probabilistic identifications of anomalies indicative of terrorist intent, outperforming random or solely behavior-based methods in resource-constrained environments. Early incremental testing of data-matching components demonstrated feasibility in reducing false positives during trials, supporting TSA's expectation of streamlined and shorter checkpoint wait times through fewer selectees. However, full-scale evaluations, including system-wide risk prediction accuracy, remained uncompleted at the program's termination, limiting empirical validation to these projected outcomes derived from partial pilots and modeling.

Empirical Limitations and Criticisms

The (TSA) failed to conduct comprehensive empirical testing of CAPPS II's predictive capabilities prior to its proposed deployment, leaving its effectiveness unproven. A 2004 Government Accountability Office (GAO) evaluation found that TSA had not demonstrated the accuracy of CAPPS II's search tools in making reliable assessments, as testing was limited to simulated scenarios without real-world validation against historical . This shortfall contributed to CAPPS II meeting only one of eight congressional criteria for deployment, including requirements for system performance metrics and redress mechanisms, as noted in subsequent GAO analyses. Critics highlighted the system's vulnerability to high false positive rates, driven by the low base rate of terrorist incidents relative to total passenger volume. Even with a modest 1% false positive rate, CAPPS II could generate over 6 million unwarranted inquiries annually among the approximately 600 million U.S. air passengers, overwhelming screening resources and eroding operational efficiency without proportionally enhancing security. GAO reports emphasized data quality challenges, such as incomplete or inaccurate commercial databases and interoperability issues across federal systems, which would exacerbate error rates and undermine predictive reliability. Further empirical concerns centered on identity verification flaws, where could allow high-risk individuals to evade detection by assuming low-risk personas, as evidenced by known vulnerabilities in matching. A 2006 Department of Homeland Security assessment acknowledged the inherent trade-off between in prescreening algorithms, noting that minimizing one error type increases the other, with no quantified that CAPPS II's thresholds would optimize detection amid sparse empirical on aviation-specific risks. These limitations, compounded by the absence of peer-reviewed studies validating CAPPS II's algorithms against actual , fueled arguments that the system represented speculative rather than evidence-based security enhancement.

Cancellation and Immediate Aftermath

Official Reasons for Termination

The (TSA) terminated the Computer-Assisted Passenger Prescreening System II (CAPPS II) in August 2004, primarily due to the program's failure to meet congressional requirements for demonstrating adequate protections, system security, and operational performance before full deployment. Under the terms of the 2003 Department of Homeland Security Appropriations Act, TSA was mandated to conduct privacy impact assessments, establish redress procedures for false positives, and verify the system's accuracy and effectiveness through independent testing, but these benchmarks remained unachieved amid ongoing delays and internal reviews. A Government Accountability Office (GAO) evaluation in February 2004 had identified critical deficiencies, including insufficient oversight of data handling, vulnerabilities in , and inadequate mechanisms to prevent misuse of passenger data, contributing directly to the decision. TSA's internal assessment echoed these concerns, concluding that CAPPS II's reliance on extensive commercial databases for risk scoring posed unresolved risks to and data accuracy, without sufficient evidence of enhanced aviation security benefits outweighing the liabilities. Officials emphasized that the program's broad scope, which would have required airlines to submit detailed passenger manifests including credit card numbers and travel itineraries, could not be reconciled with statutory safeguards while maintaining feasibility. In announcing the cancellation, Department of Homeland Security (DHS) leadership, including Secretary , indicated a pivot to a successor system with narrower parameters to address these compliance shortfalls. The termination also reflected technical and logistical challenges, such as difficulties in verifying the proprietary algorithm's performance against simulated threats and integrating it with existing airline systems without disrupting operations. GAO reports attributed part of the rationale to these hurdles, noting that despite over $20 million invested since 2002, CAPPS II had not progressed beyond limited testing phases by mid-2004. This shift allowed TSA to redirect resources toward Secure Flight, a program confined to matching passenger names against government-maintained terrorist watchlists, thereby avoiding the issues that undermined CAPPS II.

Political and Public Backlash

The proposed expansion of the Computer-Assisted Passenger Prescreening System into CAPPS II provoked intense opposition from civil liberties advocates, who decried its potential for mass surveillance and opaque risk-scoring mechanisms applied to all air travelers. The American Civil Liberties Union (ACLU) outlined core objections in August 2003, including the system's "black box" secrecy—wherein risk assessments relied on undisclosed data sources and algorithms—its questionable effectiveness against adaptive threats, risks of mission creep into non-aviation uses, inadequate data security against breaches, and absence of robust redress for false positives. These critiques were echoed by a coalition of privacy organizations such as the Electronic Privacy Information Center (EPIC), which in March 2003 urged Congress to scrutinize CAPPS II's implications for traveler data aggregation from commercial, government, and intelligence databases. Politically, the backlash manifested in congressional interventions that stalled the program's momentum. In September 2003, lawmakers from both parties blocked further development of CAPPS II pending privacy safeguards, driven by an ideologically diverse of critics who labeled it an overreach akin to dystopian monitoring. Conservative voices, including those wary of federal overreach, joined traditional groups in highlighting risks to innocent travelers, such as denial of boarding based on flawed or biased inputs without . The Government Accountability Office (GAO) amplified these concerns in February 2004 testimony, noting potential for inappropriate targeting and insufficient protections against errors in a system designed to prescreen up to 100 million annual passengers. Public scrutiny intensified through media coverage and advocacy campaigns, focusing on the system's vulnerability to data inaccuracies and its expansion beyond original post-9/11 rationales. Critics argued that CAPPS II's framework, which would verify identities against and holdings before assigning risk scores, invited and eroded Fourth protections without proven gains in thwarting . This outcry, combined with technical hurdles like integration challenges, culminated in the Transportation Security Administration's (TSA) decision to shelve CAPPS II in July 2004, with Homeland Security Secretary acknowledging privacy objections as a primary factor while hinting at future iterations. The episode underscored broader tensions between enhanced measures and public demands for transparency and accountability in federal data practices.

Legacy and Modern Successors

Transition to Secure Flight

Following the termination of CAPPS II in August 2004, primarily due to concerns over , , and insufficient testing as highlighted by and privacy advocates, the (TSA) promptly announced Secure Flight as a narrower successor program. Secure Flight aimed to match passenger names and birth dates against government-maintained terrorist watchlists, such as the and Selectee List, rather than incorporating extensive commercial data sources envisioned for CAPPS II. This shift addressed criticisms of CAPPS II's potential for into non-security uses and over-reliance on unverified private-sector databases, though skeptics argued it still risked false positives without robust accuracy validation. Secure Flight's development incorporated some privacy safeguards absent in CAPPS II, including a commitment to data minimization—retaining only matching records for 7 years and non-matches for 7 days—and the establishment of a redress process via the Department of Homeland Security Traveler Redress Inquiry Program (DHS TRIP) for individuals erroneously flagged. Initial testing began in late 2004 with volunteer airlines providing passenger name records (PNR), but full deployment faced delays due to legal challenges and technical refinements; a final rule enabling operational implementation was issued on October 28, 2008. By 2009, TSA transitioned domestic flights to Secure Flight, requiring airlines to transmit PNR data at least 72 hours prior to departure for prescreening, marking a consolidation of federal control over pre-9/11 airline-led systems like the original CAPPS. Empirical assessments post-transition indicated Secure Flight improved watchlist matching efficiency compared to CAPPS II prototypes, with TSA reporting over 99% of passengers cleared automatically and reduced reliance on secondary screening, though independent analyses questioned the opacity of error rates and the program's effectiveness against adaptive threats not captured in static watchlists. The program's rollout extended to international flights by 2010, integrating with broader risk-based screening under the recommendations, but it retained core vulnerabilities from CAPPS II, such as dependence on biographical data prone to mismatches from name similarities or aliases.

Influence on Contemporary TSA Systems

The foundational prescreening methodology of CAPPS, which used (PNR) data and behavioral rules to select individuals for secondary screening, directly informed the development of Secure Flight, TSA's operational system implemented in phases starting in 2009. Secure Flight expanded CAPPS's risk-based approach by mandating universal matching of all domestic and certain international passenger data against terrorist watchlists, including the and Selectee List, to identify threats before boarding, a shift from CAPPS's airline-administered, partial-coverage model. This transition addressed CAPPS's pre-9/11 limitations, such as reliance on selectees for baggage checks only (which failed to prevent the 9/11 hijackers from boarding despite CAPPS selection), by incorporating federal oversight and real-time government database cross-checks. Contemporary TSA operations retain CAPPS-derived elements in layered security protocols, where prescreening results trigger enhanced measures like advanced imaging technology or pat-downs for selectees, processing over 2 million passengers daily as of 2023. The system's evolution incorporated lessons from CAPPS II's 2004 cancellation—driven by advocates' concerns over expansive and lack of redress—by limiting Secure Flight to name-matching without the broader commercial scoring proposed in CAPPS II, though it still collects full PNRs (e.g., names, birth dates, travel itineraries) from airlines 72 hours pre-flight. Empirical from TSA audits indicate Secure Flight's match rate yields about 0.03% no-fly denials and 1-2% selectee referrals annually, reflecting refined algorithms to reduce false positives that plagued earlier iterations, yet GAO reports highlight persistent challenges in data accuracy and redress efficacy for misidentified individuals. Beyond core prescreening, CAPPS's legacy manifests in TSA's integration with broader Department of Homeland Security (DHS) tools, such as the Traveler Redress Inquiry Program (TRIP), established in to handle CAPPS-influenced watchlist errors, and behavioral detection programs that complement algorithmic screening with human observation, echoing CAPPS's original rule-based triggers. These adaptations have influenced international standards, with ICAO recommending similar pre-departure risk assessments, but U.S. implementations prioritize causal threat disruption over CAPPS's pre-9/11 focus on alone, supported by post-implementation metrics showing no successful domestic hijackings since 2001. Critics, including privacy groups, argue that the expansive (up to 75 years for matches) perpetuates CAPPS-era risks without proportional security gains, as evidenced by independent analyses questioning the marginal threat reduction from universal prescreening versus targeted intelligence.

References

  1. https://www.gao.gov/assets/gao-04-385.pdf
  2. https://www.congress.gov/event/109th-congress/senate-event/LC11304/text
  3. https://www.govinfo.gov/content/pkg/GAOREPORTS-GAO-05-356/html/GAOREPORTS-GAO-05-356.htm
  4. https://www.reginfo.gov/public/do/DownloadDocument?objectID=61433302
  5. https://www.govinfo.gov/content/pkg/GAOREPORTS-GAO-04-504T/html/GAOREPORTS-GAO-04-504T.htm
  6. https://www.nyulawglobal.org/globalex/passenger_data_us_eu1.html
  7. https://www.globalsecurity.org/security/library/congress/9-11_commission/040127-staff_statement_3.pdf
  8. https://apps.dtic.mil/sti/tr/pdf/ADA453620.pdf
  9. https://sgp.fas.org/crs/homesec/RL33645.pdf
  10. https://www.oig.dhs.gov/sites/default/files/assets/Mgmt/OIGr-05-12_Mar05.pdf
  11. https://www.bu.edu/law/journals-archive/scitech/volume101/degrave.pdf
  12. https://www.govinfo.gov/content/pkg/GPO-911REPORT/pdf/GPO-911REPORT.pdf
  13. https://www2.oig.dot.gov/sites/default/files/cc2002007.pdf
  14. https://www.smithsonianmag.com/air-space-magazine/special-report-aftermath-2817440/
  15. https://acdis.illinois.edu/system/files/2020-10/Passenger%20Presecreening%20Issues%20in%20Aviation%20Security.pdf
  16. https://www.hsdl.org/c/view?docid=478533
  17. https://www.everycrsreport.com/reports/RL32541.html
  18. https://epic.org/wp-content/uploads/privacy/airtravel/capps-notice.pdf
  19. https://www.gao.gov/products/gao-04-385
  20. https://epic.org/wp-content/uploads/privacy/airtravel/gao-capps-rpt.pdf
  21. https://www.gao.gov/assets/gao-04-385-highlights.pdf
  22. https://www.ojp.gov/ncjrs/virtual-library/abstracts/aviation-security-challenges-delay-implementation-computer-assisted
  23. https://digital.library.unt.edu/ark:/67531/metadc293224/
  24. https://www.gao.gov/products/gao-04-504t
  25. https://www.aclu.org/press-releases/passenger-threat-ranking-system-rated-red-stop-congressional-investigators
  26. https://www.gao.gov/assets/gao-04-504t.pdf
  27. https://www.wired.com/2003/09/congress-puts-brakes-on-capps-ii/
  28. https://www.aclu.org/documents/five-problems-capps-ii
  29. https://www.aclu.org/documents/seven-problems-capps-ii
  30. https://archive.epic.org/privacy/airtravel/capps_testimony_3_04.pdf
  31. https://www.heritage.org/homeland-security/report/capps-ii-should-be-tested-and-deployed
  32. https://www.[globalsecurity.org](/page/GlobalSecurity.org)/security/systems/cappsii.htm
  33. https://www.gao.gov/assets/gao-05-356.pdf
  34. https://scispace.com/pdf/capps-ii-and-the-fourth-amendment-does-it-fly-3gpfp826rb.pdf
  35. https://www.sciencedirect.com/science/article/abs/pii/S0740624X04000590
  36. https://supreme.findlaw.com/legal-commentary/a-death-knell-for-airline-passenger-profiling.html
  37. https://www.dhs.gov/xlibrary/assets/privacy/privacy_rpt_nofly.pdf
  38. https://www.nextgov.com/people/2004/07/capps-ii-is-not-dead-yet-but-changes-are-likely/235077/
  39. https://archive.epic.org/privacy/airtravel/capps_letter_032503.html
  40. https://www.aclu.org/press-releases/aclu-conservatives-civil-rights-groups-agree-capps-ii-raises-serious-privacy-and
  41. https://www.informationweek.com/it-leadership/capps-ii-is-dead-says-ridge-but-door-is-open-for-capps-iii
  42. https://www.nbcnews.com/id/wbna5440542
  43. https://www.travelweekly.com/Travel-News/Government/TSA-replaces-CAPPS-II-with-Secure-Flight-program
  44. https://www.congress.gov/committee-report/110th-congress/senate-report/31/1
  45. https://www.federalregister.gov/documents/2008/10/28/E8-25432/secure-flight-program
  46. https://www.aclu.org/documents/secure-flight-compared-capps-ii
  47. https://www.asisonline.org/security-management-magazine/articles/2009/10/passenger-screening-progress/
  48. https://www.heritage.org/homeland-security/report/secure-flight-program-creates-safer-skies
  49. https://www.congress.gov/crs-product/R43456
  50. https://www.gao.gov/assets/gao-06-864t.pdf
  51. https://www.gao.gov/assets/a260854.html
Add your contribution
Related Hubs
User Avatar
No comments yet.