Skip to main content
https://www.highperformancecpmgate.com/rgeesizw1?key=a9d7b2ab045c91688419e8e18a006621

Global Entry is ‘vulnerable to exploitation,’ says government watchdog

Global Entry, used by millions of busy passengers traveling to the U.S., is “vulnerable” to criminals taking advantage of weaknesses in the system, according to a new report by a government watchdog.

The immigration and border check system, designed to allow vetted low-risk travelers expedited entry to the U.S., has more than six million people signed up to date. U.S. citizens and other foreign nationals from a list of cleared countries can apply, allowing passengers to skip the lines and check in with their passport and immigration documents at a kiosk instead.

Once the kiosk verifies the passenger, a border officer must verify the authenticity of the receipt, where the passenger is granted entry to the country or told they are subject to additional screening.

The system is relatively simple. “If low-risk status cannot be determined, the application must be denied.” High-risk passengers could include anyone with a conviction or linked to an investigation.

But a report by Homeland Security’s inspector general said a Customs and Border Protection (CBP) officer were not properly checking receipts to ensure they hadn’t been altered or falsified — potentially allowing non-cleared passengers into the U.S. without the proper inspection checks.

The redacted report, out Friday, said human error was largely to blame for the flaws in the system.

“During the airport arrival process CBP officers granted some Global Entry members expedited entry without verifying the authenticity of their kiosk receipts,” said the report.

“Unless CBP officers authenticate kiosk receipts, someone could use a fake receipt to enter the U.S.,” it read.

These receipts have two basic security features — a security check digit and a daily-rotating security code — which CBP officers use to visually check in order to process a passenger. Exactly how these codes work were largely redacted, but CBP supervisors complained that properly validating the codes were “cumbersome” and may extend passenger waiting times.

The watchdog found that CBP staff were often not even told the daily security code, preventing officers from properly checking if a passenger’s receipt was authentic. Worse, when the inspectors found the daily security code had been breached — such as when a receipt is discarded or posted on the internet — CBP staff “failed to take corrective action” when notified.

“A traveler with malicious intent could use a compromised daily security code to gain expedited entry into the U.S.,” wrote the report.

The report did not say how many ineligible “potentially high-risk” passengers are currently signed up to Global Entry, but said based on its tests at nine airports that as many as 5,700 Global Entry members may not have had their receipts properly authenticated at the border.

The watchdog said unless CBP redesigns the receipt authentication process, “travelers with malicious intent may gain expedited entry using a fraudulent receipt.”

In its response, CBP said it has “begun implementation” on fixing the six issues raised by the watchdog, with which the agency concurs.

Watchdog says face scanning at US airports is plagued with technical problems

Comments

Post a Comment

Popular posts from this blog

Uber co-founder Garrett Camp steps back from board director role

Uber co-founder Garrett Camp is relinquishing his role as a board director and switching to board observer — where he says he’ll focus on product strategy for the ride hailing giant. Camp made the announcement in a short Medium post in which he writes of his decade at Uber: “I’ve learned a lot, and realized that I’m most helpful when focused on product strategy & design, and this is where I’d like to focus going forward.” “I will continue to work with Dara [Khosrowshahi, Uber CEO] and the product and technology leadership teams to brainstorm new ideas, iterate on plans and designs, and continue to innovate at scale,” he adds. “We have a strong and diverse team in place, and I’m confident everyone will navigate well during these turbulent times.” The Canadian billionaire entrepreneur signs off by saying he’s looking forward to helping Uber “brainstorm the next big idea”. Camp hasn’t been short of ideas over his career in tech. He’s the co-founder of the web 2.0 recommendatio
Post a Comment
Read more

Drone crash near kids leads Swiss Post and Matternet to suspend autonomous deliveries

A serious crash by a delivery drone in Switzerland have grounded the fleet and put a partnership on ice. Within a stone’s throw of a school, the incident raised grim possibilities for the possibilities of catastrophic failure of payload-bearing autonomous aerial vehicles. The drones were operated by Matternet as part of a partnership with the Swiss Post (i.e. the postal service), which was using the craft to dispatch lab samples from one medical center for priority cases. As far as potential applications of drone delivery, it’s a home run — but twice now the craft have crashed, first with a soft landing and the second time a very hard one. The first incident, in January, was the result of a GPS hardware error; the drone entered a planned failback state and deployed its emergency parachute, falling slowly to the ground. Measures were taken to improve the GPS systems. The second failure in May, however, led to the drone attempting to deploy its parachute again, only to sever the line
Post a Comment
Read more

ProtonMail logged IP address of French activist after order by Swiss authorities

ProtonMail , a hosted email service with a focus on end-to-end encrypted communications, has been facing criticism after a police report showed that French authorities managed to obtain the IP address of a French activist who was using the online service. The company has communicated widely about the incident, stating that it doesn’t log IP addresses by default and it only complies with local regulation — in that case Swiss law. While ProtonMail didn’t cooperate with French authorities, French police sent a request to Swiss police via Europol to force the company to obtain the IP address of one of its users. For the past year, a group of people have taken over a handful of commercial premises and apartments near Place Sainte Marthe in Paris. They want to fight against gentrification, real estate speculation, Airbnb and high-end restaurants. While it started as a local conflict, it quickly became a symbolic campaign. They attracted newspaper headlines when they started occupying prem
Post a Comment
Read more