Papers, Please!

The Identity Project

Category Archives: Secret Law

Feb 04 2021

“Hypothetical” briefing ordered in TSA lawsuit

The most significant legal challenge since the creation of the Transportation Security Administration to the TSA’s attempt to operate outside the law, and to avoid judicial review of its actions, is coming to a head in the next month in the First Circuit Court of Appeals in Boston. It’s a David v. Goliath legal battle, and the plaintiff wants and needs help.

We’ve talked about Sai’s various challenges to TSA practices before. A little over five years ago, Sai (they go by only one name) filed a pro se challenge to the Constitutionality of 49 USC § 46110, the Federal law which establishes special (and especially limited) procedures and criteria for judicial review of “orders” issued by the TSA.

49 USC § 46110 exempts TSA orders from the usual jurisdiction of Federal District Courts. TSA orders can be reviewed only by the Circuit Courts of Appeal, where there are no trials. Circuit Courts must base their decisions on the “administrative record” as supplied by the  TSA, and must grant the truth of any TSA claims supported by “substantial” evidence, regardless of the existence of any (perhaps more persuasive) evidence to the contrary or impeaching the credibility of the TSA and its claims, and regardless of any evidence that the TSA doesn’t chose to include in its “administrative record”. Needless to say, no objections at all will be in the TSA-created “record” with respect to secretly-issued orders.

In a case of first impression, Sai challenged the Constitutionality of this law both on its face and as applied to them. This is the case that will determine, for all practical purposes, whether the TSA is subject to the rule of law, or can continue to make up and enforce its own secret “rules” as it goes along, changing or disregarding them at whim.

We won’t try to recount the history of the case. Suffice it to say that, although motion practice has been extensive, none of the fundamental issues have yet been addressed. The RECAP docket mirror of the docket doesn’t capture most of the filings in the Court of Appeals. There’s a link to a folder of court filings and other related  documents here on Sai’s website, but they haven’t been able to keep that index up to date.

A few days ago, after months of silence, the 1st Circuit went from “wait” to “hurry up” and  gave Sai just 30 days to brief all their remaining issues and claims, or have them deemed denied. Sai is indigent, proceeding pro se (on their own without a lawyer), and has substantial vision and other physical disabilities that limit the pace of their work.

But that’s not all, and maybe not the worst, of the unfairness in the Court’s latest order.

“Order” isn’t defined in 49 USC § 46110. But in other cases, the TSA has interpreted this definition as broadly as possible, to shield as many of its activities as possible from normal procedures for judicial review. And this is the exclusive procedure for review of such orders.

Sai still doesn’t know what orders the TSA has issued that might apply to them (and that the TSA might try to impose sanctions for unwittingly violating), or what if any basis the TSA claims for these orders. The TSA claims the right to keep all this secret from Sai, while submitting secret lists of secret orders, and secret arguments to justify them, to the Court of Appeals “ex parte and in camera”.

Here’s how the Court of Appeals has now told Sai to respond “hypothetically” to these secret arguments about secret laws:

The matter will proceed to briefing based on the administrative record as just designated. A portion of that administrative record has been accepted for filing ex parte and in camera, and petitioner’s request for clearance to access those materials is denied. Nonetheless, briefing shall proceed. The purpose of a proceeding of this sort is to allow for the challenge of specific agency orders, see 49 U.S.C. § 46110(a), not to facilitate broad discovery of agency policies and practices. With this purpose in mind, the court discerns no reason why petitioner cannot prepare a brief that fully conveys challenges to specific orders despite the unavailability of a portion of the administrative record. Petitioner need only clearly articulate the nature of any orders petitioner reasonably believes may have been disclosed in the sealed portion of the administrative record and then explain why such an order, if it exists, would be amenable to review under § 46110 and why the existence or enforcement of such an order would be illegal or unconstitutional. In other words, to the extent petitioner cannot discern from the publicly filed portion of the administrative record whether a particular order exists, petitioner may present arguments hypothetically assuming the existence of the order and explaining why such an order, if it existed, would be illegal or unconstitutional. Once briefing is complete, the ultimate merits panel will be in a position to review the full administrative record, including the portions of the administrative record filed ex parte and in camera. The ultimate merits panel can assess petitioner’s claims in light of that review.

All this to be completed, on Sai’s part, in the next 30 days.

If you thought arguing hypotheticals was for law school exercises and the bar exam, thnk again. Alice In Wonderland, here we come!

We think that any orders that have been issued in secret, can’t be disclosed to those who are supposed to obey them and against whom they are to be enforced, which are justified (if at all) only by secret arguments and/or secret evidence not subject to independent examination, and that can be challenged only “hypothetically” on the basis of guesses about what the orders are or what secret excuses have been made for them, are unconstitutional on their face, as is this “review” procedure itself.

Sai needs and wants legal help to make this argument to the Court of Appeals. One way or another, this case will set an important precedent. Sai is indigent and significantly disabled, and asked the court to appoint counsel for them. But that’s discretionary in civil cases, and the court declined. If you might be able to provide immediate pro bono legal assistance, please contact Sai ASAP.

 

Jan 19 2021

“Put them on the no-fly list!”

Flowchart of no-fly lists and the U.S. government's no-fly decision-making process.
[“How do you get on the no-fly list?” Larger image; PDF with legend.]

In the aftermath of the storming of the U.S. Capitol last week, there’s been a confused cacophony of calls to “put the rioters on the no-fly list.”

At the same time, there have been equally confusing claims and denials that some people found out that they had already been “put on the no-fly list” when they were denied boarding on flights home from Washington.

Are these people “on the no-fly list”? Could they be? Should they be? Is this legal?

More generally:

How do you get on the no-fly list? How do you know if you are on the list? How do you get off? What substantive and procedural legal standards apply?

The answers to all of these questions are much more complicated, and different, than many people seem to think — including the chairs of relevant Congressional committees, who ought to know better. The reality is that:

  1. There isn’t just one U.S. Federal government no-fly list — there are several, created by different agencies for different purposes.
  2. There are also non-list-based ways that real-time no-fly decisions can be made.
  3. No-fly decisions can be, and are, made independently, on the basis of different lists and other criteria, by multiple Federal agencies and by individual airlines.

So a better starting point for understanding what’s happening — before we can begin to assess whether it is legal or what should be happening — is to ask, “How can a would-be passenger be prevented from boarding a scheduled airline flight?”

The diagram above (larger version; PDF with legend of acronyms and color-coding) gives only a summary of the U.S. government’s no-fly decision-making process, not including individual airines’ no-fly decision-making practices. (We’ve published versions of the diagram before. The latest version above has been updated to include the Angel Watch Center, the CDC Do Not Board List and Lookout List, and the Watchlisting Advisory Council.)

As discussed in more detail below, no-fly decisions can be based on any of the following:

  • U.S. government no-fly orders:
  • Airline no-fly decisions, based on:
    • Airline conditions of carriage.
    • Airline no-fly lists (created and maintained separately by each airline).
    • Other non-list-based “rules” interpreted and enforced by airlines (most significantly the entry requirements described in the Timatic “travel information manual”).

How does all this work? Here are some FAQs about the no-fly list and no-fly orders:

Read More

Nov 06 2020

Canada copies US “Secure Flight” air travel controls

While we were watching US election returns, our neighbors to the north were adopting new travel regulations that incorporate some of the worst aspects of the US system of surveillance and control of air travel, and in some respects go even further in the wrong direction.

Canadian authorities don’t generally want to be seen as imitating the US or capitulating to US pressure. There was no mention in the official analysis of the latest amendments to the Canadian regulations of the US models on which they are based. But according to the press release this week from Public Safety Canada, the latest version of the Canadian Secure Air Travel Regulations  which came into force this week for domestic flights within Canada as well as international flights to or from Canada include the following elements, each of which appears to be based on the US Secure Flight system:

  1. All air travelers will be required to show government-issued photo ID. The Canadian ID requirement to fly is now explicit, unlike the de facto ID requirement that the US Department of Homeland Security is attempting to impose and already wrongly enforcing, in some cases, without statutory or regulatory authority. The Canadian rules appear to reflect the authority to deny passage to air travelers without ID that the DHS has sought, but has not yet been granted, in the US.
  2. Fly/no-fly decision-making will be transferred from airlines (making binary fly/no-fly decisions on the basis of a no-fly list provided by the government) to a government agency. After receiving information about each passenger from the airline, Public Safety Canada will transmit a permission messages to the airline with respect to each would-be passenger on each flight,  with a default of “not permitted to board” if no message is received by the airline from the government. Exactly this change was made in the US through the Secure Flight regulations promulgated in 2008. This change serves two purposes for the government: (A) it provides a basis for building positive real-time government control over boarding pass issuance into airline IT infrastructure, converting every airline check-in kiosk or boarding-pass app into a virtual government checkpoint that can be used to control movement on any basis and for any reason that the government later chooses, and (B) it enables the switch from blacklist-based no-fly decision-making to more complex and opaque real-time algorithmic pre-crime profiling  based on a  larger number of factors.
  3. Air travelers in Canada will be required to provide the airline  with their full name, gender, and date of birth, as listed on government-issued ID, and airlines will be required to enter this data in each reservation and transmit it to the government 72 hours before the flight or as soon as the reservation is made, whichever comes first. All of this is exactly as has bene required for flights within the US since the coming into force of the DHS Secure Flight regulations. This additional information about each passenger enables the government to match passengers’ identities, in advance, to other commercial and government databases, and thus to incorporate a much wider range of surveillance and data mining into its profiling algorithms.
  4. Travelers will be able to apply to the government for a “Canadian Travel Number” which, if issued, they can enter in their reservations to distinguish themselves as whitelisted people from blacklisted people with similar names and/or other similar personal data.  This Canadian Travel Number is obviously modeled on the “redress number” incorporated in the US Secure Flight system. The goal of this “whitelist number” is to reduce the complaints and political embarrassment of the recurring incidents of innocent people with similar names, including  children, being mistakenly identified as blacklisted people, and denied boarding on Canadian flights. The problem, of course, is that this does nothing to help the innocent people who are correctly identified as having been blacklisted by the government, but who were wrongly blacklisted in the first place.

As our Canadian friends at the  International Civil Liberities Monitoring Group put it in a statement this week:

These regulations do not address the central, foundational problems that plague Canada’s No Fly List system and will continue to result in the undermining of individuals’ rights as they travel….

The Canadian government had a solution from the beginning, and they still do: abolish the No Fly List. If someone is a threat to airline travel or to those in the region they are traveling to, charge them under the criminal code and take them to court where they can defend themselves, in public.

It’s time to be done with secret security lists once and for all.

Sep 01 2020

TSA tries out another (illegal) biometric “ID verification” system

Today the Transportation Security Administration (TSA) announced that it has launched a “pilot” at Washington National Airport (DCA) of yet another scheme for biometric identification and tracking of domestic air travelers.

[Screen capture from TSA video]

The new “touchless ID verification” stations at DCA include a webcam (at top center of photo above) a magnetic-stripe reader (lower left) for drivers licenses and other ID cards, and a photographic scanner for passports (lower right).

Travelers who volunteer to use the new system are directed to insert their drivers license, ID card, or passport into the appropriate reader, stand on a marked spot in front of the webcam, and remove their face mask, so that the image from the ID (or, more likely, from some back-end image database linked to the ID, although that hasn’t been disclosed) and the image from the webcam can be compared by some undisclosed algorithm.

[Traveler being directed by TSA staff to remove her face mask for digital mug shot.]

As we’ve noted previously, it appears to us that (1) the TSA has no general authority to require travelers to show their faces or remove face masks, and (2) in many jurisdictions, orders issued by state or local health authorities currently require all people in public places such as airports to wear masks.

The TSA describes this system as “touchless”. But while TSA staff don’t have to touch travelers’ IDs, each traveler has to touch the same ID card or passport scanner. Then, immediately after touching the scanner, they have to touch their face again to put their mask back on.

Read More

Jul 28 2020

Senate bill would exempt REAL-ID from due process and oversight

Rather than responding to our comments on the latest proposal by the Department of Homeland Security to require ID for airline travel, the DHS has quietly gone to Congress to try to get the law changed so that it doesn’t have to answer us, and to preclude potential litigation to challenge an ID requirement or defend people who try to fly without ID.

A bill introduced earlier this month in the Senate, and already approved in committee, would exempt the implementation and administration of the REAL-ID Act from normal administrative requirements for due process in rulemaking and oversight and transparency in demands by Federal agencies for information.

Included in S. 4133, both as introduced and as amended and reported by the committee, are provisions that would allow the Secretary of Homeland Security, at his or her “discretion”, to issue regulations and administer the REAL-ID Act without regard for the Paperwork Reduction Act (PRA) or the notice-and-comment requirements of the Administrative Procedure Act (APA).

As of now, no comparable bill has been introduced in the House. (Several bills to amend the REAL ID Act are pending in the House, but none of them contain PRA or APA exemptions.) It’s unclear what effect these provisions would have if enacted. All Federal agencies are, of course, still subject to Constitutional requirements for due process. But these provisions of S. 4133  appear to be a direct response to the objections we raised in May 2020 to the latest DHS proposal to impose an ID requirement for airline travel without complying with the PRA or the APA.

Read More

Jun 08 2020

TSA to take mug shots of domestic air travelers

The Transportation Security Administration (TSA) has officially although quietly announced that, as it has planned for years, its deployment of mug-shot machines at airport checkpoints will move from pilot projects to the new normal for domestic air travelers.

According to a Privacy Impact Assessment (PIA) released last week, the TSA plans to integrate facial recognition into the Secure Flight profiling, scoring, and control system used by the TSA and other linked agencies to decide who is, and who is not, “allowed” to pass through TSA checkpoints to exercise their right to travel by airline common carrier.

Cameras to photograph would-be travelers’ faces will be added to each of the stations at airport checkpoints where TSA employees and contractors currently scan would-be passengers’ travel documents (boarding passes and, if they present ID, ID documents).

Read More

May 11 2020

Will courts finally make the TSA comply with FOIA?

The tenor of questioning by the judge in a Federal court hearing last week raises hope that the Transportation Security Administration (TSA) might soon be ordered to correct some of its longest standing and most systemic violations of the Freedom Of Information Act (FOIA).

It’s no exaggeration to say that, from its creation in November 2001, the TSA has acted with complete contempt for the FOIA law and the requirements that law imposes on the TSA and all other Federal agencies. Time after time, TSA failure to comply with FOIA has delayed, complicated, or completely frustrated our research and reporting on TSA policies and procedures, and has deprived the public of the opportunity for informed scrutiny and comment on what the TSA is doing, why, and with what effects on our rights.

One chronic problem is the way the TSA responds to FOIA requests for digital records.

Provisions of the FOIA statute that went into effect as part of the Electronic FOIA Amendments Act of 1996 —  years before the TSA came into existence — require that:

5 USC § 552(a)(3)(B)  — In making any record available to a person under this paragraph, an agency shall provide the record in any form or format requested by the person if the record is readily reproducible by the agency in that form or format. Each agency shall make reasonable efforts to maintain its records in forms or formats that are reproducible for purposes of this section.

When it set up its FOIA office and procured software for responding to FOIA requests, the TSA completely ignored this provision of FOIA. In a display of either gross incompetence or gross bad faith, the TSA and its parent the Department of Homeland Security (DHS) appear to have entirely omitted this legal requirement for production of records in any form and format in which they are readily reproducible from their procurement specifications and criteria for evaluation of proposals. Instead, the DHS and TSA standardized on the use of cloud-based FOIAXpress software that is designed to munge all records by converting them to rasterized images embedded in PDF files, regardless of the original file format.

There’s lots of other software that was, and is, capable of redacting files in native formats. But it’s impossible for any Federal agency to fulfill its FOIA obligations with respect to the form and format of production of records by using FOIAXpress. FOIAXpress should have been summarily eliminated from consideration for any Federal agency contracts as not capable of satisfying the EFOIA requirements. No Federal agency should ever have used it.

Read More

Dec 05 2019

DHS postpones plan for mug shots of innocent US citizen travelers

Press releases issued today by US Customs and Border Protection (CBP) and Sen. Edward Markey suggest that CBP and its parent agency, the Department of Homeland Security (DHS), have cancelled or postponed, at least for now, their plans to require mug shots of all US citizens leaving, or returning to, the US.

But rather than admit that it has partially backed down or postponed some of its most offensive and intrusive plans in the face of public and Congressional outrage, CBP has sent reporters a statement alleging that our report breaking the story and others that followed contained “incorrect claims” about CBP plans:

We stand by our story.

Until this Monday, when we called attention to the official DHS/CBP notice, the officially-approved and officially-stated intent of the DHS and CBP was to propose rules requiring U.S. citizens on international flights to be photographed.

If “there are no current plans” for mandating mug shots of US citizens, that’s becuuse DHS and CBP plans changed this week in response to public and Congressional outrage and the likelihood that pursuing these plans now would derail DHS and CBP hopes for approval of its current facial recognition programs by airport authorities such as the Seattle Port Commission, which will consider the issue next Tuesday (and which had been misleadingly told by the CBP official responsible for the planned rulemaking that facial recognition would not be mandatory for US citizens).

The official DHS/CBP notice of planned rulemaking meant what it said. It was issued through a formal process of agency review. It wasn’t  a typo, a mistake, or issued by a “rogue” employee.

We vigorously contest the CBP assertion that our story contained any “incorrect claim”.

Such DHS and CBP allegations, in response to truthful reporting, only further discredit the DHS and CBP, and lower whatever little credibility they may have had.

Was this a trial balloon to find out whether the DHS had finally reached the limits of our willingness to be treated like criminals whenever we fly? And if so, has the DHS partially backed off, at least for now? Maybe.

Read More

Oct 22 2019

9th Circuit upholds “no-fly” procedures & criteria

A 3-judge panel of the 9th Circuit Court of Appeals has upheld the government’s procedures and criteria for issuing “no-fly” orders against a complaint that the criteria (which are essentially “pre-crime” criteria based on predictions of future bad actions) are too vague to provide fair notice of what actions might lead to a “no-fly” order, and that the procedures do not provide the degree of procedural due process (notice of the accusations, an opportunity to see the evidence and cross-examine witnesses, etc.) required by the Constitution.

While the 9th Circuit panel left open the possibility of a challenge to the substantive grounds for a specific no-fly order, it upheld the government’s effort, in mid-litigation, to change the procedures for no-fly orders to keep challenges to no-fly orders out of U.S. District Courts and preclude any trial or adversarial or judicial fact-finding in such cases.

The 9th Circuit panel found that no-fly orders issued by the TSA under the current revised procedures are excluded from the jurisdiction of U.S. District Courts. TSA no-fly orders can be “reviewed” by a Circuit Court of Appeals only on the basis of a self-serving “administrative record” created by the TSA, and on the basis of a deferential standard that presumes the validity of the TSA’s fact-finding. The 9th Circuit panel did not address the Constitutionality of the applicable jurisdiction-stripping law, 49 U.S.C. § 46110, which is currently being challenged in the 1st Circuit in Sai v. Pekoske (originally Sai v. Neffenger).

The decision announced yesterday in Kashem v. Barr may be the worst appellate court decision against freedom of travel since the 2006 decision by the 9th Circuit Court in Gilmore v. Gonzales.

Read More

Oct 02 2019

Do I need ID to ride a train?

We’ve been trying for years to find out what the real story is with respect to ID requirements for travel by train, especially on Amtrak.

Amtrak and Greyhound ID policies and practices are of paramount importance to the mobility of undocumented people and people who, whether or not they are eligible for or have chosen to obtain government-issued ID credentials, don’t want to show their papers to government agents as a condition of exercising their right to freedom of movement.

Amtrak and Greyhound policies and practices will become even more important if the government and/or airlines further restrict air travel by people who don’t have, or don’t show, ID credentials that comply with the REAL-ID Act.

The latest responses to our requests for Federal and state public records reveal more about passenger railroad policies and practices, but still don’t give a clear answer.

What we can say at this point, based on the records disclosed to us to date, is that:

  1. There are substantial discrepancies and contradictions between what the TSA has told Amtrak to do, what Amtrak tells its own staff about what is required, what Amtrak tells travelers about what is required and the basis for those requirements, and what Amtrak staff actually do. Those variations make it impossible to determine unambiguously what “the rules” are for Amtrak travel, or what is “required”.
  2. Some of Amtrak’s claims, including its claim that passengers are required by the TSA to have and to show ID to travel by Amtrak, are blatant lies.
  3. TSA Security Directive RAILPAX-04-02, cited by Amtrak in its employee manual as the basis for demanding that passengers show ID, requires Amtrak to “request” (not demand) that passengers show ID, but does not purport to require passengers to respond to such requests and does not prescribe any sanctions on passengers for failure, refusal, or inabiity to show ID.
  4. Amtrak has instructed its staff that “If the customer responds they are 18 or older and do not have valid identification, … the Amtrak police must be notified by the quickest available means away from the customer,” but also that, “Failure to possess the proper photo identification is not, by itself, sufficient reason to have the customer removed from the train.” Amtrak has not yet responded to our FOIA request for Amtrak Police policies and staff directives for what to do in such cases.
  5. Although Amtrak is unquestionably an instrumentality of the Federal government, and transportation by Amtrak is unquestionably a Federal government activity, the list of ID credentials deemed acceptable by Amtrak does not correspond to the list of forms of ID deemed by the DHS to be acceptable for “Federal purposes” pursuant to the REAL-ID Act of 2005.  Amtrak says it accepts several forms of ID that do not comply with the REAL-ID Act. None of Amtrak’s ID policies, procedures, or staff directives disclosed to date mention the REAL-ID Act or when or how it might be implemented by Amtrak, although records of such policies or of discussions related to them would be responsive to soem of our pending FOIA requests.

Where does this leave undocumented long-distance travelers, including those who turn to Amtrak as a government-operated common carrier of last resort?

Read More