About | HeinOnline Law Journal Library | HeinOnline Law Journal Library | HeinOnline
LOG IN
LOG IN

1 1 (July 10, 2019)

handle is hein.crs/govbakk0001 and id is 1 raw text is: Congressional * Research Service Exposed Data Highlights Law Enforcement Use of Selected Technologies July 10, 2019 Official use of image capturing and facial recognition technology-particularly by law enforcement-has been the subject of recent congressional attention. Specifically, there is interest in facial recognition's accuracy, the databases against which faces are compared, which individual data are subject to collection and retention, how agencies ensure data security, and public notification regarding the use of facial recognition and other image capturing technology. Many of these issues were highlighted following a recently acknowledged breach of certain data held by a U.S. Customs and Border Protection (CBP) subcontractor. The breach was not of a CBP network. Notably, available information on developments related to the breach remains incomplete. Early speculation about the nature, origins, extent, and implications of the data breach may change, and some media reporting may conflict with official statements. On June 10, 2019, CBP revealed that images of faces and license plates were compromised in a malicious cyberattack on one of its subcontractors that provides automated license plate recognition (LPR) technology to the agency. CBP, in its December 2017 privacy impact assessment (PIA) of LPR technology, noted that data generated from the fixed and mobile LPRs can include the license plate number; digital images of the vehicle's make, model, and license plate; vehicle registration location; and time, date, and location information about the images captured. It notes that images may also capture the environment surrounding the license plates, including vehicle drivers and passengers, and that LPR technology is designed to collect information from all vehicles that pass the camera. Data Exposure CBP suggested, but did not confirm, that Perceptics-a firm providing LPR systems-was the subcontractor involved in the breach. In late May, Perceptics verified that its network had been compromised, and its breached data were reportedly offered-for free-on the dark web. It is not clear whether the breach confirmed by Perceptics is the same one reported by CBP. A hacker using the name Boris Bullet-Dodger first alerted the media to the Perceptics hack and reportedly provided certain news sites with direct links to the breached data that had been posted on the dark web. Later, a transparency collective, Distributed Denial of Secrets, posted some of the documents to the surface web as well. Reporters who scoured through the data posted online indicated that in addition to Congressional Research Service https://crsreports.congress.gov IN11143 CRS INSIGHT Prepared for Members and Committees of Congress

What Is HeinOnline?

HeinOnline is a subscription-based resource containing thousands of academic and legal journals from inception; complete coverage of government documents such as U.S. Statutes at Large, U.S. Code, Federal Register, Code of Federal Regulations, U.S. Reports, and much more. Documents are image-based, fully searchable PDFs with the authority of print combined with the accessibility of a user-friendly and powerful database. For more information, request a quote or trial for your organization below.



Short-term subscription options include 24 hours, 48 hours, or 1 week to HeinOnline.

Purchase Access

Already a HeinOnline Subscriber?

Log In

profiles profiles most