May 12 2023

IDP input to UN report on human rights of migrants

At the invitation  of the U.N. Office of the High Commissioner for Human Rights (OHCHR), the Identity Project has submitted our input for a forthcoming report by the U.N. Secretary-General to the General Assembly on “The Human Rights of Migrants”.

Our previous submissions on this issue (2014, 2015) have been cited favorably in reports and recommendations of the OHCHR. But as we note in our latest submission to the OHCHR, the rights of migrants, especially asylum seekers, continue to be violated:

The pattern of violations of the rights of migrants, particularly asylum seekers, by states and common carriers (the latter often both encouraged and given de facto impunity by states) discussed in our our previous submissions to the OHCHR has continued and has become more pervasive and globally normalized.

As we discussed in our previous submissions to the OHCHR, the right to leave any country is routinely and systematically violated through (1) requirements for identity credentials or other documents or information as a condition of travel by common carrier, without respect for the right to leave any country and to return to the country of one’s citizenship regardless of what, if any, credentials or documents one possesses, (2) requirements for “pre-screening” and approval by destination states of common carrier passengers, prior to departure from origin states, that amount to de facto foreign-imposed exit visa requirements, (3) sanctions imposed by states on common carriers to induce carriers not to transport certain passengers on vessels departing from origin states, on the basis of necessarily unreliable predictions of admissibility to, or asylum in, destination states, and (4) failure by states to enforce the duties of common carriers (pursuant to common carrier laws and aviation treaties) to transport all would-be passengers, including asylum seekers, regardless of their legal status or possession of documents.

All of these actions involve the assertion of extraterritorial authority by a State X over individuals seeking to depart from the territory of a State Y, on the basis of potential inadmissibility of those individuals to State X, if and when they were to arrive in State X.

These are all, essentially, attempts to conflate exit, entry, and movement, and to convert the requirements established by State X for entry to State X into extraterritorial requirements for exit from State Y and for travel between State Y and State X, including travel by common carrier through international airspace or international waters.

There are (at least) three reasons why any such assertion of extraterritorial authority is fundamentally contrary to international law, including human rights law:

First, the right of State X to control entry to its territory does not imply any right to control exit from State Y or movement between State Y and State X. With respect to international air travel, Article 13 of the Chicago Convention on Civil Aviation provides that entry requirements of a state party apply only “upon entrance into or departure from, or while within the territory of that State”. Extraterritorial authority by a destination state over departure from other states or movement through international airspace or waters would be fundamentally contrary to the freedom of navigation by air and sea.

Second, the right to leave any country, as recognized by Article 12, Paragraph 2 of the International Covenant on Civil and Political Rights, is not contingent on admissibility to any other country. If a claim for asylum is denied, an asylum seeker may be deported, subject to the prohibition on refoulement. But the possibility that they might be denied admission or have their claim for asylum rejected on arrival is not a lawful basis for denial of their right to leave any other country, including by common carrier.

Third, because eligibility for asylum can only be determined after an asylum seeker arrives in a destination country, it is per se impossible for anyone – even government authorities, much less common carrier staff – to determine prior to departure from a country of origin whether an asylum seeker will be found eligible for asylum if and when they reach a particular destination country and apply for asylum. Any attempt to determine eligibility for asylum prior to departure from a country where an individual is in fear of persecution is necessarily premature and unreliable, and must be rejected as categorically impermissible and a violation of the right to seek asylum on arrival.

The right to leave any country and the right to travel by common carrier must be recognized as essential to the human rights of asylum seekers, including their right to life.

Today there is no practical, affordable, or safe alternative to air travel as a way to leave many countries. Denial of access to travel by common carrier amounts to denial of the right to leave the country and of the possibility to seek asylum anywhere else.

Restrictions on the right to leave any country, including restrictions on departure by common carrier, can endanger the lives of persecuted individuals by trapping them in situations of persecution or by forcing them to resort to irregular and dangerous means of transport as the only way to flee a country where they are suffering persecution.

Restrictions on travel by common carrier force asylum seekers – desperate to escape persecution – to risk their lives to travel by irregular means. Many of them die.

Many eligible asylum seekers could afford to purchase airline tickets or tickets on other common carriers (ferries, trains, buses, etc.) to travel to countries where, on arrival, they would be eligible for asylum. They risk their lives as “boat people” or walking across mountains and deserts, and some of them die, solely because airlines or other common carriers improperly refuse to sell them tickets or deny them boarding.

Many, perhaps most, deaths of asylum seekers in transit are directly attributable to “carrier sanctions” that incentivize common carriers to deny passage to asylum seekers.

Carrier sanctions kill, and they must be strongly and unequivocally condemned.

[Full submission of the Identity Project to the OHCHR, May 12, 2023]

We look forward to the forthcoming report and to the discussion in the General Assembly.

Apr 18 2023

4th Circuit agrees that TSA checkpoint staff are liable for assault

In a decision published today, the 4th Circuit Court of Appeals has joined the 3rd Circuit and the 8th Circuit in finding that staff of the Transportation Security Administration (TSA) who search travelers at airport checkpoints are liable for damages if they commit assault or battery in the course of performing their official “screening” duties.

This shouldn’t be a difficult or surprising decision, as a matter of either fairness or law. But despite the TSA’s complete lack of success in any published appellate decision on this question to date, the agency continues to argue — as it did in another case on the same issue pending in the 9th Circuit — that checkpoint staff should have absolute impunity, even if they rape travelers at checkpoints or in back rooms during “secondary” searches.

Jonathan Corbett, who has argued all of these cases on behalf of abused air travelers, says that, “I am ecstatic to open the courthouse doors for all injured by abusive feds [and] I am thrilled to bring my client closer to getting some justice for this brazen misconduct.”

We’re thrilled too at this common-sense ruling, and we hope the 9th Circuit will follow the lead of its sister circuits in its pending case.

The most common situation in which Federal agents lay their hands on innocent citizens is the TSA checkpoint at the airport. Checkpoint staff have far too much power, with far too much temptation and opportunity for abuse, to be allowed to grope travelers with impunity.

The 4th Circuit panel summarized the facts of the case it decided today as follows:

As all commercial air travelers must, plaintiff Erin Osmon passed through security at Asheville Regional Airport before a scheduled flight. A TSA screener told Osmon “the body scanner alarmed on her and that she would need to submit to a ‘groin search.’ ” JA 9. During the resulting interaction, Osmon alleges the screener forced her to spread her legs wider than necessary and fondled her genitals twice.

Osmon sued the federal government under the FTCA [Federal Tort Claims Act], alleging one count of battery.

A magistrate judge recommended dismissing Osmon’s suit for lack of subject matter jurisdiction in a detailed memorandum devoted solely to whether the FTCA waives sovereign immunity for the type of claim Osmon brought. The district court adopted the magistrate judge’s recommendation.

That District Court decision has now been reversed by the Court of Appeals, and the case will be remanded for Ms. Osmon to get a chance to prove her claims and obtain damages.

Apr 03 2023

CBP wants more information to surveil and control air travelers

Today the Identity Project and allied civil liberties and human rights organizations submitted comments objecting to a proposal by US Customs and Border Protection (CBP) to require all travelers on international flights to or from the US to provide an address in the US, two phone numbers, and an email address, and prohibit or recommend that airlines not permit anyone who is unable or unwilling to provide this information to board any flight to or from the US. (See our report when this proposal was announced.)

In return for collecting this information and passing it on to CBP, airlines would be allowed to retain and use it for their own purposes, without permission from travelers. Airlines would also be allowed (and in some cases required) to pass it on to foreign governments.

The proposed CBP rule would apply to all travelers, including US citizens (regardless of whether they reside in the US), visitors, and asylum seekers.

The proposed rule is far more significant and far worse than it appears at first glance.

Although the proposal is represented by CBP as a minor change to an existing program that would cost airlines nothing and impose no costs on travelers, it would cost the airline industry hundreds of millions of dollars and impose costs on would-be travelers, especially asylum seekers, that would be measured not only in dollars but  also in lives. The proposed rule would also violate multiple provisions of the Privacy Act, including in ways that would force travelers to make personal information available to hostile foreign governments.

Below are excerpts from our objections to the CBP proposal. You can read the complete comments of the Identity Project and our allies here. You can submit your own comments until midnight EDT tonight, Monday, April 3, 2023, by filling out this form.

The undersigned civil liberties and human rights organizations – the Identity Project (IDP), Government Information Watch, Restore The Fourth (RT4), Privacy Times, and the Electronic Privacy Information Center (EPIC) – submit these comments in response to the Notice of Proposed Rulemaking, “Advance Passenger Information System: Electronic Validation of Travel Documents”, Docket Number USCBP-2023-0002, FR Doc. 2023–02139, RIN 1651-AB43, 88 Federal Register 7016-7033 (February 2, 2023).

By this Notice of Proposed Rulemaking (NPRM), U.S. Customs and Border Protection (CBP) proposes to (1) expand the fields of information that all international travelers flying to or from the U.S. by common carrier are required to provide to airlines and that airlines are required to pass on to CBP (while being free to retain copies for their own profitable use); and (2) prohibit airlines from allowing certain individuals including those who don’t have, or are unable or unwilling to provide, two phone numbers, an email address, and an address in the U.S. (even if they are U.S. citizens who reside abroad), to board flights, or recommend that airlines not board them (in violation of airlines’ duties as common carriers to transport all passengers paying the fares in their tariffs, and in violation of travelers’ rights under Federal statutes, the Bill of Rights, Executive Orders, and international human rights treaties to which the U.S. is a party).

The proposed rule is purportedly intended to “enable CBP to determine whether each passenger is traveling with valid authentic travel documents prior to the passenger boarding the aircraft.” Aside from the fact that CBP has no jurisdiction over foreign citizens boarding foreign-flagged aircraft at foreign airports, the proposed rule would have little or no effect on CBP’s ability to detect travelers using documents issued to other people. The proposed rule would not serve its stated purpose, but would only serve to expand CBP’s systematic warrantless, suspicionless, surveillance of air travelers and CBP’s attempt to control airline travel.

As discussed below, the proposed rule exceeds CBP’s authority and jurisdiction and is contrary to law. It is also bad policy. It amounts to an attempt to impose a travel document requirement in the guise of document “validation”, to outsource to airlines surveillance and control of travelers that CBP would have no authority to conduct itself, and to frustrate the human right to asylum by preventing asylum-seekers from reaching the U.S.

Read More

Mar 21 2023

Airlines want even more people put on the no-fly list

Undeterred by the manifest unfairness of the US government’s current no-fly list, some airlines and their allies are apparently renewing a campaign they began last year to get Congress to create yet another extrajudicial procedure by which the Transportation Security Administration (TSA) could put even more people on the US no-fly list.

Seriously? Can anyone really think that the way to make the current bloated and bigoted no-fly list more fair is to add even more names to it? That what the TSA needs is more authority to impose arbitrary and judicially unreviewable sanctions on disfavored members of the traveling public? That the branch of the government best qualified to exercise the power to make decisions that restrict people’s rights and in some cases would cost them their livelihood, perhaps for life, is the TSA?

Once a no-fly list exists, it’s almost inevitable that some people will see it as a one-stop solution to every problem, and will push to expand it by adding new rules to the no-fly blacklisting algorithm. But this is exactly the wrong way to go. If a bill to protect air travelers is going to be reintroduced and considered in Congress, it should be the Freedom to Travel Act.

Read More

Mar 19 2023

9th Circuit upholds secret US monitoring of foreign airline reservations

In a case we’ve been following closely, the 9th Circuit Court of Appeals has ruled that orders requiring the Sabre computerized reservation system to provide real-time reports to the FBI on any reservations made in or through Sabre associated with specific individuals can continue to be kept secret, at least as long as warrants for these individuals’ arrest remain outstanding, which could be indefinitely.

The wanted individuals aren’t US citizens and aren’t believed to be in the US. US Customs and Border Protection (CBP) already receives complete mirror copies 72 hours in advance of all international airline reservations (Passenger Name  Records) for flights to, from, or via the US. CBP has a well-established system of TECS alerts — which don’t even require a warrant — that it can use to generate a message to the FBI or other law enforcement agencies whenever planned travel to or from the US by a person of interest is detected.

This is a much simpler process than going to court to get an order directing Sabre to maintain a lookout and report to the FBI on planned travel by a suspect.

Why, then, has the FBI repeatedly gone to court to get orders requiring Sabre and in some cases other CRSs to watch for, and report, planned travel by persons of interest? The only reason would be for the US to obtain advance notice of a suspect’s planned travel within or between countries other than the US, so that the US could try to persuade some allied government to arrest and deport or render the wanted person to the US for trial.

Everyone should be concerned that reservation hosting companies are secretly monitoring and reporting their travel plans to the US government.

Other countries should be concerned that the US government is forcing CRSs that are based or have a presence in the US to carry out ongoing real-time monitoring and reporting to the US government of planned flights by non-US persons between non-US points — in effect, serving as remote agents of US surveillance within other countries.

The case in the 9th Circuit was brought by a journalist. But the court noted that Sabre or other CRSs would have a stronger basis than journalist or other third parties to contest the government’s attempt to force them to spy on travelers and rat them out to the government:

[T]he notion that technical assistance proceedings will forever go unchallenged or unnoticed absent a constitutional right of access is overstated. Petitioners themselves assert that there today exists a robust public debate over these investigatory devices. The government acknowledges that AWA [All Write Act] technical assistance orders may still be subject to challenge through different legal pathways, such as by the suspects themselves or by entities like Sabre, who receive the AWA orders.

So far as we can tell, however, neither Sabre nor any other CRS, nor any airline, has contested any of the US government’s requests or demands for information from airline reservations. No CRS or airline has issued a “transparency report” on its responses to government requests or demand for information about travelers.

CRSs and airlines should stand up for the traveling public against government spying.

Travelers, and airlines that care about travelers, should demand that the “Big Three” CRSs — Sabre, Travelport, and Amadeus — promise to challenge any government demands for information about travelers, and issue regular transparency reports on what requests or demands for travel records they have received from the government (including both case-by-case information requests and ongoing bulk feeds of PNR and API data) and what they have done to resist compliance.

Read More

Mar 15 2023

TSA confirms plans to mandate mug shots for domestic air travel

In an on-stage interview yesterday at South By Southwest by a reporter for the Dallas Morning News, the head of the US Transportation Security Administration made explicit that the TSA plans to make collection of biometric data  mandatory for airline travel:

According to a report in today’s edition of the newspaper by Alexandra Skores on the statements by TSA Administrator David Pekoske:

Biometric technology, such as facial recognition, is increasingly being used in TSA’s identity verification process….

He said passengers can also choose to opt out of certain screening processes if they are uncomfortable, for now. Eventually, biometrics won’t be optional, he said.

Mandatory mugshots for all airline passengers have been part of the TSA’s road map since at least 2018, despite objections such as those raised by the ACLU and the Identity Project.

TSA Privacy Impact Assessments have claimed that air travelers could, for now, opt out, of mug shots, but the TSA has never complied with the notice requirements in the federal Privacy Act and Paperwork Reduction Act (PRA).

So far as we can tell, there’s never been any PRA approval for collection of biometrics from domestic air travelers, or any PRA notice at a TSA checkpoint.

Since the TSA has never applied to the Office of Management and Budget (OMB) for approval of this information collection, as required by the PRA, we don’t know what legal basis it would claim for this collection of biometric information.

As at US Customs and Border Protection inspection stations and kiosks for international travelers, domestic travelers asked to submit to mug shots at TSA checkpoints  are protected not only by the US Constitution and international treaties but also by federal laws including the PRA. As with declining to show ID or provide other information, you have the right not to provide biometric information unless and until the TSA gets approval from OMB to collect this information, and provides notices that comply with the PRA.

In 2021, the TSA tried to get Congress to exempt some of its activities from the PRA. But Congress turned it down, making clear that Congress intends the PRA to apply to the TSA.

For now, it remains the law (44 U.S.C. § 3512) that:

(a) Notwithstanding any other provision of law, no person shall be subject to any penalty for failing to comply with a collection of information that is subject to this subchapter if—

(1) the collection of information does not display a valid control number assigned by the Director [of the Office of Management and Budget] in accordance with this subchapter; or

(2) the agency fails to inform the person who is to respond to the collection of information that such person is not required to respond to the collection of information unless it displays a valid control number.

(b) The protection provided by this section may be raised in the form of a complete defense, bar, or otherwise at any time during the agency administrative process or judicial action applicable thereto.

Unless and until this changes, no matter what the TSA says, you do have the right to opt of facial imaging at TSA checkpoints.

Mar 07 2023

Germany follows US lead in misuse of airline reservation data

[Florian Gutsche of the VVN-BdA: An embarrassment to Germany’s reputation? Or a credit to it? And does his black shirt prove that he’s dangerous?]

On Friday, February 24th, Florian Gutsche, a German citizen and the national chair of the German Association of People Persecuted by the Nazi Regime – Association of Anti-Fascists (VVN-BdA), was intercepted by German federal police at Berlin Brandenburg Airport, prevented from boarding a flight he had planned to take to Sofia, Bulgaria, and served with an order prohibiting him from leaving Germany for the duration of the weekend.

Formal parliamentary questions have already been submitted to the German government by a member of the Bundestag, asking by whom and on what basis the order prohibiting Herr Gutsche from leaving Germany was issued. These are important questions.

But we are also concerned about how this order was effectuated and what this says about the German government’s use of airline reservations to surveil, control, and restrict “resiefreiheit” — the right to freedom of movement. Read More

Feb 06 2023

CBP proposes to require even more information from international air travelers

US Customs and Border and Border Protection (CBP) has proposed new rules to expand its Advance Passenger Information System (APIS) to require all international airlines serving the US to provide additional information about all passengers, prior to flight departures.

CBP’s Notice of Proposed Rulemaking (NPRM), published last Thursday in the Federal Register, falsely claims that the proposed rules would not affect individuals, only airlines. But the mandate for airlines to provide additional information about each would-be passenger makes it a de facto requirement, as a condition of air travel, for travelers to provide this information to airlines and the government.

This would constitute a significant expansion of an ongoing unconstitutional surveillance and profiling program in which all international air travelers are required to respond to suspicionless, warrantless, interrogatories administered through airlines as intermediaries and outsourced government surveillance agents and interrogators.

APIS is not a passive surveillance scheme, however. It is part of a real-time system of  granular, per-passenger, per-flight government control of air travel:

After performing the security vetting, the CBP system transmits to the carrier an electronic message. This message is generally referred to as CBP’s response message. If the carrier is using an interactive transmission system, the response message provides certain instructions to the carrier. Specifically, it states whether each passenger is authorized to board, requires additional security screening, or is prohibited by TSA from boarding… Depending on the instructions received in the response message, the carrier may be required to take additional steps, including coordinating secondary security screening with TSA, before loading the baggage of or boarding the passenger at issue.

The Identity Project has objected to every step in the expansion of APIS since 2006, and we will be filing comments objecting to the latest NPRM. If you’d like to file your own objections, the deadline is April 3, 2023. We’ll post ours for others to use as a model.

Current mandatory APIS data fields include name, date of birth, gender, nationality, passport or travel document number, and flight details (airline, flight number, and departure and arrival airports, dates, and times). In addition to the information that CBP has been requiring since 2006, the new NPRM proposes that airlines operating flights to or from the US be required to collect and transmit to CBP additional information including:

  • Street address in the US (currently required of aliens but not of US citizens)
  • Telephone number and “alternate” telephone number (presumably the second phone number is required in order to help the government build social network maps and  guilt-by-association links of First Amendment protected associations between individuals)
  • Email address

What if a US citizen has no fixed address, or no address in the US — or doesn’t want to tell the US government? What if they don’t yet know at which hotel or with which friend or relative  they will be staying — or don’t want their host permanently linked with them in the government’s surveillance and suspicion-generating files?

Are two telephone numbers and an email address required as a condition of air travel?

The proposed rules are silent, but they imply that any airline that transports such a passenger would be subject to sanctions:

CBP cannot require that a passenger be denied boarding. However, if an air carrier boards a passenger who is then denied entry to the United States, the air carrier may have to pay a penalty and bear the costs of transporting that passenger out of the United States.

On arrival in the US, the US government has the duty to allow a US citizen to enter the country unless there is genuine doubt as to their US citizenship. They are not required to provide any information not related to, and needed to determine, their US citizenship.

If a CBP inspector at a border crossing or airport asks a US citizen their address in the US, phone number(s), or email address, they have the right to stand mute or to refuse to answer. CBP can search them, but cannot make them answer questions or deny them entry for standing mute.

If CBP would have no Constitutional authority to require a traveler to answer these questions after they arrive in the US, on what possible grounds would it claim authority to require answers to those same questions before a traveler even boards a flight to the US?

The NPRM does not mention the Bill of Rights or any limits on the authority of the government or a common carrier to demand personal information or answers to interrogatories as a condition of carriage.  We believe that there is no such authority. The proposed rules would violate the First, Fourth, and Fifth Amendments, the Privacy Act, and US obligations as a party to the International Covenant on Civil and Political Rights.

Since the creation  of the Department of Homeland Security (DHS) after September 11, 2001, the DHS has imposed more than a billion dollars in unfunded mandates to the airline industry  to collect additional information about all airline passengers, transmit that information to DHS components (CBP for international flights and the TSA for domestic flights), and receive and process instructions from the DHS before issuing any boarding pass.

The proposed new rules would send the airline IT industry back to the drawing board to modify all of its software, user interfaces, APIs, and business-process layers to collect and transmit additional data fields  about each passenger to CBP prior to departure of each international flight to or from the US.

CBP says that some airlines are already “voluntarily” providing personal information about passengers to CBP beyond what has been required by the current APIS regulations.

Why would airlines be willing to collaborate with the DHS in these schemes?

The proposed rules would leave airlines free to retain, use, share, sell, or otherwise monetize the additional personal information which travelers would be required to provide. This would amount to a huge informational windfall for airlines, and this is the quid pro quo to airlines for collecting this additional data for the government. To put it another way, the proposed rules would constitute a government-compelled taking and transfer to airlines of the value of travelers’ personal information.

Airlines don’t collect this data systemically now, and have not yet developed any standards for normalizing, storing, or exchanging it. This would be a massive unfunded mandate for modifications to airline industry IT systems, at every level from interline messaging protocols to user interfaces, and in training staff. But most of these costs would be one-time costs, and in the long term would be offset by the informational windfall to airlines.

Airlines are already experts in monetizing passenger data, making billions of dollars a year by selling advertising targeted to members of their frequent flyer programs. Compelled provision of additional contact information would enable airlines to expand these customer data monetization and ad targeting programs to all air travelers, including infrequent flyers who aren’t members of these programs.

Many foreign airlines are parastatal entities, so this rule would effectively require many asylum seekers to divulge info to the foreign governments from which they are trying to flee, prior to departure from those countries, placing themselves and their associates (linked to them by e.g. shared contact info)  at even greater peril.

Travelers and airlines should just say no. Travelers should decline to answer questions unrelated to their admissibility to the US, and airlines should transport them anyway and challenge any attempt to impose sanctions on them for refusing to spy on their passengers by interrogating them and collecting surveillance data for the government.

Feb 04 2023

A blacklist is not a basis for search or seizure

A lawsuit filed last week in Federal court in Oklahoma City by the Council on American-Islamic Relations on behalf of Oklahoma native Saadiq Long challenges unconstitutional searches and seizures (sometimes at gunpoint) and interference with freedom of movement on city streets and highways on the unlawful basis of a combination of warrantless dragnet surveillance and arbitrary extrajudicial blacklists.

According to Mr. Long’s application for a temporary restraining order and preliminary injunction to protect his rights and his life while the case proceeds:

In the span of only two months, Saadiq Long has been repeatedly pulled over, arrested twice, held at gunpoint, and had his car searched by Oklahoma City Police Department officers. It is not because Saadiq is a criminal or suspected of being one. Mr. Long is an American citizen and Air Force veteran who has never been indicted, tried, or convicted of any kind of violent crime.

There is a different reason behind these obvious Fourth Amendment violations. That reason involves the intersection of two different dystopian webs: the vast network of cameras and computers maintained by the Oklahoma City Police Department and a secret, racist list of Muslims that the FBI makes available to Chief Wade Gourley and his officers.

That secret FBI list—variously called the federal terror watchlist, the Terrorism Screening Database (TSDB), and most recently the Terrorist Screening Dataset (TSDS)—is a list of more than a million names, almost all of them Muslim and Arab. The FBI adds whatever names it likes, without meaningful review and in accordance with secret processes and standards, for a stunning array of flimsy reasons. Government suspicion of ongoing criminal activity is not a prerequisite to being listed.

The FBI distributes its list, via the National Crime Information Center (NCIC) Database, to the Oklahoma City Police Department. That is all that the FBI distributes: a list of names. The FBI keeps its reasons and evidence about the placement to itself. Because of this, the Department knows that the FBI put Saadiq Long on a watchlist but the Department has no idea why.

Mr. Long’s mistreatment by the US government — the government of the country where he was born and of which he was and still is a citizen — began when, while serving in the US Air Force from 1987-1998 and living in Turkey, he converted to Islam and applied for discharge from the Air Force as a conscientious objector on the basis of his new beliefs.

The Air Force denied his application for conscientious objector status, gave him an “other than honorable” discharge — and, unbeknownst to Mr. Long at the time, had him put on the US government’s No-Fly List as a “known or suspected terrorist”.

After leaving the Air Force, Mr. Long moved with his family first to Egypt and later to Qatar, where he found work as a teacher of English. He discovered that he was blacklisted by the US government almost a decade later when he tried to come back to the US to visit his terminally ill mother in Oklahoma City.

Read More

Jan 20 2023

The #NoFly list is a #MuslimBan list

[CommuteAir routes operated as “United Express”]

In news first reported by Mikael Thalen and David Covucci of of the Daily Dot, Swiss hacker maia arson crimew has found versions of the Transportation Security Administration’s “No-Fly” and “Selectee” lists dating from 2019 on insecure Amazon Web Services cloud servers used by the airline CommuteAir for software development and staging.

CommuteAir is little known in its own name, but operates as a subcontractor to United Airlines for flights by regional jets between United hubs and secondary airports marketed under the “United Express” brand with United Airlines flight numbers.

In a statement to the Daily Dot, CommuteAir confirmed that, “The server contained data from a 2019 version of the federal no-fly list that included first and last names and dates of birth.”

This isn’t the first time that information about the TSA’s “watchlists” (blacklists) and related procedures has been leaked or left exposed on the Internet. In 2009, the TSA posted an unredacted copy of its Standard Operating Procedures for “screening” of airline passengers on a Federal government website for contractors. In 2014, the Terrorist Screening Center’s Watchlisting Guidance, which describes the methodology and purported basis for entering names on the No-Fly, Selectee, and other blacklists, was obtained and published by The Intercept.

The lists found by maia and shared with journalists and researchers confirm the TSA’s (1) Islamophobia, (2) overconfidence in the certainty of its pre-crime predictions, and (3) mission creep.

The data in the files found by maia is limited to first and last name and date of birth and a sequence number for each listing, but there are headers for several other fields that are blank in most of the records: place of birth, citizenship, passport or ID number, “MISC”, and a blank field labeled “CLEARED” which may have been used to indicate those entries that were intended to be to be whitelisted rather than blacklisted.

The most obvious pattern in the data is the overwhelming preponderance of Arabic or Muslim-seeming  names. More than 10% of the entries on the No-Fly list (174,202 of 1,566,062)  contain “MUHAMMAD” in either the first or last name fields. “It’s just crazy to me how big that Terrorism Screening Database is and yet there is still very clear trends towards almost exclusively Arabic and Russian sounding names throughout the million entries,” maia told the Daily Dot.

[Some of the listings for Osama Bin Laden — already long dead — on the 2019 No-Fly List]

The “NOFLY.csv” file found by maia contains 1,556,062 entries. The “SELECTEE.csv” file contains 251,169. The youngest of those on this version of the No-Fly List, as of 2019, were three four-year-olds. The oldest were twenty-five centenarians.

Read More