Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
Privacy United States Your Rights Online

False Positives, Few Matches Plague 'No-Fly' List 325

lindner writes "According to a recent article in the San Francisco Chronicle, the United States No-Fly List uses a soundex algorithm to match names. Designed 'to quickly summon passenger names or to catch deal-hunting passengers making duplicate bookings.' The system has only managed to rack up a slew of false-positives, including everyone matching soundex ("J. Adams") at one point in time. The problem has gotten so bad that there is now a "Fly List" for chronically misidentified passengers."
This discussion has been archived. No new comments can be posted.

False Positives, Few Matches Plague 'No-Fly' List

Comments Filter:
  • Soundex??? (Score:5, Interesting)

    by Surak ( 18578 ) * <{moc.skcolbliam} {ta} {karus}> on Sunday June 08, 2003 @03:50PM (#6145134) Homepage Journal
    That algorithm is so fundamentally broken as to be practically useless for anything but as an aid in simple searches. Why anyone would use soundex in a mission critical application designed to positively identify individuals is beyond me. What, was the 'No Fly' database written by 1st year comp sci major or something? Sheesh.

    • Re:Soundex??? (Score:5, Informative)

      by BWJones ( 18351 ) on Sunday June 08, 2003 @04:00PM (#6145202) Homepage Journal
      That algorithm is so fundamentally broken as to be practically useless for anything but as an aid in simple searches. Why anyone would use soundex in a mission critical application designed to positively identify individuals is beyond me. What, was the 'No Fly' database written by 1st year comp sci major or something? Sheesh.

      Hey, wanna make a good living in these uncertain economic times? Come up with a better alternative and propose it to DARPA [darpa.mil]. There is actually some very cool research going on that is funded by DARPA in terms of biometrics and database centric comp sci.

      • Soundex is ok for suggesting alternatives such as Candy and Kennedy - but only for names of anglo-saxon origin (or names that were anglicized on Ellis Island). Take a Spanish name or a Russian name and the algotithm needs a complete reworking. Even with similar systems such as German, it just doesn't really work.

        The military is just a government excuse to fleece the tax payers and take bribes!!!!

    • Re:Soundex??? (Score:5, Insightful)

      by Randseed ( 132501 ) on Sunday June 08, 2003 @04:26PM (#6145351)
      One of the major clinical automation systems used in American hospitals uses soundex as a primary matching algorithm for patient lookups in the admitting department. Everyone is smart enough not to use it for names like "Juan Garza," but for names like "Steve Franklin" the chance of getting false-positives on your search algorithm is REALLY high. This is largely because of how the system itself implements things.

      Two notable occasions have occured where patients were admitted as the incorrect "Steve Franklin" (name make up for use here, of course). Needless to say, this might be a bit of a problem when the medical and nursing staff then takes that admission record and looks back at labs, radiographs, and such ON THE WRONG PATIENT.

      Of course, this same "highly advanced" system is really just a set of SQL tables that don't even use variable lengths for fields like comments (instead restricting the user to something obscene like 38 characters). The user interface is really just a Curses program that reads the columns on the table and displays them, allowing the user to edit them. Nearest I can tell, SQL functions handle all the data verification and such, and don't even do a good job at it.

      I've worked with this computer system for four years, suffering through it's stupidity.

      The point is that one should never assume that sucky, disgusting software is written by first year comp sci majors. There are enough professional programmers out there to cause a far bigger disaster.

      Never underestimate the power of stupid people in large groups, or in corporate culture.
    • Re:Soundex??? (Score:5, Insightful)

      by kaisa_sosey ( 639934 ) on Sunday June 08, 2003 @04:30PM (#6145368)

      Who cares what algorithm they use? Why someone would support a 'No Fly' database is beyond me.


      I think people are either criminal (means they should be kept in prison) or not.


      Guys like you make me really afraid. For you it's only a technical problem, is it?



      • As with a large percentage of individuals on Slashdot, I tend to immediately notice the technical issues FIRST and the other issues SECOND. ;)

        Of course I don't think a 'No Fly' database is a good idea. But if you're going to implement such a thing, you should probably *at least* do it the RIGHT way, don'tcha think?

      • Re:Soundex??? (Score:3, Interesting)

        by aaarrrgggh ( 9205 )
        Here, here!

        On a plane today, and two people were assigned the same seat. They actually both had the same ticket... she had gotten a duplicate boarding pass.

        Two identification checks and the gate scanner failed to figure out something was wrong. If she had just sat in a vacant seat, nobody would have been the wiser.
    • by Old Wolf ( 56093 ) on Sunday June 08, 2003 @04:39PM (#6145405)
      That's a bit insulting to first-years, don't you think?
      On my course, in the section on name recognition, we first learned Soundex, and then learned Obershelp, along with the fact that the latter is far more accurate, and Soundex is pretty crap.

      Perhaps it was written by people with no education..
      • That's a bit insulting to first-years, don't you think?

        Heh. Yeah, probably.

        Perhaps it was written by people with no education..

        Well, you have to have some education to be able to write code, even if its self-education. Legends about Linus Torvalds or James Gosling aside, nobody's born with the ability to code.

      • Re:Soundex??? (Score:4, Informative)

        by PurpleFloyd ( 149812 ) <zeno20@ a t t b i.com> on Sunday June 08, 2003 @07:53PM (#6146415) Homepage
        Soundex may or may not be crap, but half the calculation work (which is really easy) can be done when the name is written to the DB. Obershelp, on the other hand, requires a search for the largest common pattern, for which no work can be done in advance. Soundex is a matter of converting the name input into a Soundex code (first letter, 3 numbers) then searching the database for that code.

        Obershelp/Ratcliffe works well for finding the best match in small sets, but on a large DB, it breaks down completely unless you are willing to dedicate significant time to the search. While better alternatives to Soundex definetely exist, Obershelp/Radcliffe is not one that should be used in large databases.

    • Re:Soundex??? (Score:5, Insightful)

      by mindriot ( 96208 ) on Sunday June 08, 2003 @05:40PM (#6145701)
      Interestingly enough, the original Soundex was based on English language only. So when feeding it foreign names, it will obviously match names from different languages that in reality are far from sounding alike. Admittedly, their algorithms are merely based on Soundex and maybe a bit better.

      But to me, finding terrorists by checking their names against no-fly lists sounds just about as useful as checking IP packets for an Evil bit, doesn't it?
    • Re:Soundex??? (Score:3, Informative)

      If (and I say IF) the FAA were interested in doing good, rather than, as is often the case with government, merely appearing to be doing something good, they might do well to consider the technology being developed by this company [las-inc.com].

      From their Webpage:

      Language Analysis Systems is the world's recognized leader in providing multi-cultural name recognition software solutions for mission critical applications. We have worked with U.S. Intelligence and Border Protection agencies for nearly two decades, develop

  • by Anonymous Coward on Sunday June 08, 2003 @03:52PM (#6145148)
    This also happened when Cowboy Neal was mistakenly identified as Kh'alid bin Naoul.
  • by mosch ( 204 ) * on Sunday June 08, 2003 @03:52PM (#6145149) Homepage
    I'm a little confused... are the airlines now prohibiting people to fly on the basis that they went "deal-hunting"?

    I understand that the airline industry is a little tight right now, but that's just insane.

    • by BWJones ( 18351 ) on Sunday June 08, 2003 @03:56PM (#6145171) Homepage Journal
      I'm a little confused... are the airlines now prohibiting people to fly on the basis that they went "deal-hunting"?

      I understand that the airline industry is a little tight right now, but that's just insane.


      Yeah, the current administration wants everyone to be paying full fare here. We gotta start getting this economy back on track, so those that refuse to participate will be identified as terrorists and placed into the TIA archive. :-)

      • by Anonymous Coward
        So when did the RIAA start running the airlines?
      • Well, if you can't hide your base price, you cannot give your executives fat bonuses. The stock market, car dealerships, etc., should have taught us that. And I think rivalries, in particular in the semiconductor industry, are good examples of how prices really ought to fall when your market sector is (1) commoditized and (2) competitive.

        On the other hand, the airline ticket prices in principle reflect other variables, such as fuel costs, so even their bottom line fluctuates somewhat.
    • by Anonymous Coward
      I think this has to do with the process of:

      (1) Register for flight with Airline X.
      (2) While registered for flight, search for better deal on similar flight with Airline Y.
      (3) Cancel flight with Airline X.

      Or I could be way off.
    • by PeteJones ( 616765 ) on Sunday June 08, 2003 @04:31PM (#6145373)
      I think the deal hunting they are refering to is the practice of buying 2 return tickets and then using the first set to get to your destination and the second to get back. This way you can get the cheap tickets that span weekend stays but instead travel on a, say, Tuesday and come home on Wednesday of the same week.

      Even though you bought two complete return fares, it's still cheaper most of the time that buying one return ticket during a business week. They are trying to fleese the business traveller to subsidize the vacation traveller. I think you probably get both sets of airmiles from buying 2 sets as well
      • Comment removed based on user account deletion
  • The problem... (Score:5, Insightful)

    by maelstrom ( 638 ) on Sunday June 08, 2003 @03:53PM (#6145156) Homepage Journal
    Unfortunately, the officials implementing a system such as this are going to get crucified either way. If they let a known terrorist onto a plane and a terrorist act happens, their heads are going to roll. Every journalist will be screaming that, "this terrorist has been on the FBI watch list for 2 years, a simple misspelling of his name allowed him to foil the multi-million dolar no fly system".

    On the other hand, false positives are going to make the system useless as the boy who cried wolf one too many times found out. There doesn't seem to be an easy solution to this problem.

    • Re:The problem... (Score:5, Insightful)

      by Anonymous Coward on Sunday June 08, 2003 @04:04PM (#6145227)
      Solution is simple. The odds of you being killed in the U.S. by a terrorist is so small that only an ignortant and fearfull population would even worry about it. Just /dev/null wipe hands go to bed.
      • by cyberformer ( 257332 ) on Sunday June 08, 2003 @05:45PM (#6145729)
        The odds of you being killed in the U.S. by a terrorist is so small that only an ignortant and fearfull population would even worry about it.
        So you just have to replace the current population?
      • by Anonymous Coward

        Here's a list [infoplease.com] of the most common ways that people died in the US, 2000:

        1. Diseases of heart: 710,760
        2. Malignant neoplasms (cancer): 553,091
        3. Cerebrovascular diseases (stroke): 167,661
        4. Chronic lower respiratory diseases: 122,009
        5. Accidents (unintentional injuries): 97,900
        6. Diabetes mellitus: 69,301
        7. Influenza and pneumonia: 65,313
        8. Alzheimer's disease: 49,558
        9. Nephritis, nephrotic syndrome, and nephrosis: 37,251
        10. Septicemia: 31,224
        11. Suicide: 29,350
        12. Chronic liver disease and cirrhosis: 26,552
        13. Hypertension and hyperten
    • Re:The problem... (Score:5, Interesting)

      by MisterMook ( 634297 ) on Sunday June 08, 2003 @04:16PM (#6145297) Homepage
      Screening for terrorists by name is a nice idea, and maybe eventually it will pop up one or two dumb ass terrorists travelling around the country by plane in a nation that's so paranoid that they're willing to sign away their most basic freedoms they've enjoyed for 200+ years. I think it's pretty stupid to throw the baby out with the bathwater though. Before 9/11 we had Timothy McVeigh and no one was hollering that rednecks shouldn't be allowed to drive trucks. So a terrorist gets on a plane, hopefully he'll be going home. If just make sure that the planes have security in place like police, cockpit doors, and some common sense I'm sure we'll all breath easier than if we've got Big Brother and his faulty software deciding who is a threat to society.

      Heck, there's a guy on death row with the exact same name as me out there somewhere...I'd hate for this great idea of the government to lead to my law abiding ass getting thrown in jail even "just in case"
      • by eyegone ( 644831 ) on Sunday June 08, 2003 @04:49PM (#6145451)
        Before 9/11 we had Timothy McVeigh and no one was hollering that rednecks shouldn't be allowed to drive trucks.

        I've been hollering that rednecks shouldn't be allowed to drive trucks (or anything else) since I moved to Texas in '96.
        • Re:The problem... (Score:3, Insightful)

          by MisterMook ( 634297 )
          But would you believe that designing a national name recognition software based upon the theory that only rednecks are named Bubba or have hyphens in their names (Lula-Mae) would actually prevent rednecks from getting on the roads?
    • Re:The problem... (Score:5, Insightful)

      by MillionthMonkey ( 240664 ) on Sunday June 08, 2003 @04:22PM (#6145335)
      The system relies on a false premise. Terrorists don't have "careers" anymore. If you were planning a terrorist attack, you could easily find 20 guys with no records whose names appear on no lists in any form. Recruiting people for suicide terrorist activities has become very easy as of late. (I can't say why or I'll be attracting a bunch of AC replies from dittoheads.)

      This is a system designed to give you a false sense of security. It bothers and harasses people so much that they feel safe when they get on the plane (if the plane doesn't leave before they get through the bullshit). It will not stop the next hijacking at all- although it strongly discourages discretionary air travel, and is rapidly destroying the airline industry.

      We should go back to the system we had before 9/11, that served us well for many years. Terrorists may still be able to crash airplanes, but they will no longer succeed in crashing airplanes into buildings. Now that everyone knows how that type of attack works, it is unlikely to succeed again. Note how it didn't even succeed once they got wind of it via cellphone during that flight over Pennsylvania.

      But since the public has it in their head that terrorism can be magically prevented at the airport somehow, we should put up some sort of pretense for them at the security checkpoint and the gate. I'm thinking about some sort of prop that you would see Scotty using on Star Trek- a sort of stick with colored lights inside that you wave over a person. If they're a terrorist, the lights turn red and the stick makes a funny sort of buzzing noise. That way we could wave people through, and have them convinced that they've been inconvenienced enough to be safe.

      • This is a system designed to give you a false sense of security. It bothers and harasses people so much that they feel safe when they get on the plane (if the plane doesn't leave before they get through the bullshit). It will not stop the next hijacking at all- although it strongly discourages discretionary air travel, and is rapidly destroying the airline industry.

        From here [snpp.com]

        Homer: Not a bear in sight. The Bear Patrol must be working like a charm.

        Lisa: That's specious reasoning, Dad.
        Homer: Thank you,

      • Re:The problem... (Score:4, Insightful)

        by FreeMars ( 20478 ) on Sunday June 08, 2003 @06:33PM (#6145977) Homepage

        Terrorists don't have "careers" anymore.

        Particularly suicide terrorists.

        We should go back to the system we had before 9/11, that served us well for many years.

        We should go back to the system we had in 1965. You want to fly somewhere, you buy a ticket.

        Occasionally someone tries to steal/crash the plane. Occasionally that works, occasionally the pilot or the police or someone makes a few holes in the would-be bad guy. Nobody suggests a need to violate everyone's rights to try to stop the rare crazy person.

        • Re:The problem... (Score:4, Interesting)

          by MillionthMonkey ( 240664 ) on Sunday June 08, 2003 @07:04PM (#6146121)
          >>Terrorists don't have "careers" anymore.
          >Particularly suicide terrorists.


          That was my point. It used to be that these people would take over a plane, force the pilot to land somewhere, maybe off a passenger or two, demand transportation for their escape, and maybe even put hoods over their heads and give a little press conference before leaving- presumably to hijack again some day. Afterwards we would figure out who they were, put their names on lists, and maybe even look out for them.

          Now we have rookie terrorists committing suicide and mass murder with no explanation, and everyone is simply left to assume that it has something to do with Israel and Palestine. Our lists are useless. We seem to be looking for retired terrorists and punk rockers from the seventies, and if your name sounds like a name on the list you can't fly. The terrorists won!

          We should go back to the system we had in 1965. You want to fly somewhere, you buy a ticket.

          Personally I would prefer that this bizarre security not be applied to all air travelers- it should be considered an amenity. If you want to ride on a "terror-free flight" (and you're innumerate and stupid), you pay an extra $50-100, get there a few hours earlier, eat your in-flight meal with those plastic butter knives, and rest comfortably with the knowledge that punk rocker Johnny Rotten Lydon (rhymes with "Laden"?) is not on the plane with you. Also nobody from Priceline.

      • Re:The problem... (Score:4, Insightful)

        by lysium ( 644252 ) on Sunday June 08, 2003 @08:48PM (#6146694)
        In the technical world, I believe this is referred to as Waving a Dead Chicken. It fills a need that, as the name indicates, has been present in one form or another since the beginning of human society.

        from the Jargon file:
        wave a dead chicken: v. To perform a ritual in the direction of crashed software or hardware that one believes to be futile but is nevertheless necessary so that others are satisfied that an appropriate degree of effort has been expended. "I'll wave a dead chicken over the source code, but I really think we've run into an OS bug."

        -------------

      • Re:The problem... (Score:3, Informative)

        by mpe ( 36238 )
        The system relies on a false premise. Terrorists don't have "careers" anymore. If you were planning a terrorist attack, you could easily find 20 guys with no records whose names appear on no lists in any form.

        These need not actaully be their real identities. Remember that 7 of those accused of being involved in 911 were proven to have used stolen identities.
    • Re:The problem... (Score:4, Insightful)

      by Cipster ( 623378 ) on Sunday June 08, 2003 @04:27PM (#6145359)
      This list is designed to be like a screening test: False positives are acceptable (since you clear them up with a follow up) but false negatives are not since they can lead to disaster.
      It's a lot like the AIDS/HIV test. You want every potential positive test to show up so you can follow it up but you do not want to miss a potentially infected person.
      • Re:The problem... (Score:4, Interesting)

        by barc0001 ( 173002 ) on Sunday June 08, 2003 @05:29PM (#6145635)
        The problem is that these false positives AREN'T being cleaned up, and in a lot of cases, the people are not allowed to fly, and don't get a refund on their tickets. And they have no real recourse.
      • Re:The problem... (Score:5, Insightful)

        by Sique ( 173459 ) on Sunday June 08, 2003 @06:40PM (#6146005) Homepage
        It's a lot like the AIDS/HIV test. You want every potential positive test to show up so you can follow it up but you do not want to miss a potentially infected person.

        Normally every medical test in fact consists of two tests. The first one is called the efficient test, the second one the effective test.

        The first one is to throw out as much uninteresting people (the ones without any sign of sickness) as possible without missing any of the interesting people (the ones that are sick). In Computer Science you call a test like this "Trivial Reject". It should be fast and cheap to save on costs (of every type, like monetary, computational time...).

        The second test is supposed to catch as much of the interesting people (sick ones) as possible while throwing out pretty surely all of those who are in fact healthy and thus uninteresting for the matters of the test. This leaves you with a test population which consists of almost all sick people and some very few false positives. Because of the shrunken number of persons this test can be more elaborate and expensive.

        The problem with all those tests is, that with the low frequency of the usual dangerous plague you are testing for, the false positives (even though they may be very small compared to the whole of the population) still contains more people than the actual sick ones. I remember some exercises where we had to calculate the risk of actual being sick after a positive test for given frequencies of occurance of the plague in the population and the characteristics of the test. Often the result was that you have a 99% chance of being a false positive even though the test itself was pretty good.

        Same is valid for the frequency of the actual terrorists in the population of all U.S. domestic flyers. While there were 19 terrorists in the 9/11 attack, there have been billions of individual flights in the recent years. If your tests are being 99.999% sure in clearing a innocent flyer, it would still mean that this test applied to one billion flight passengers gives you 10 000 false positives.

        (This number is one of the reasons why the Romans once decided for "in dubio pro reo". Because the number of lawful citizens is quite high compared to the number of criminals, the average screening of larger populations results in more false positives than actually caught thieves. So you have always to prove individually that someone is guilty beyond any doubt before you can actually call them guilty.)

        In this special case the screening for names itself is a very inaccurate test. There are names in some countries being too prevalent to distinguish between people. For Corea it may be the name 'Kim', for India 'Singh', for Russia 'Gorbachev', for the U.S. 'Smith' or 'Adams'.

        The inapprobriate way to match spelling and pronouncing with the Soundex system (which only works with english names) just adds to the problem. In french names you often can't make a difference between 'en', 'an', 'on', 'ent', 'ant', and 'ont'. Famous are the words 'son' (his/her, but also tone), 'sont' ([they] are), 'sans' (without), 'sang' (blood), which are all pronounced the same.

        In german names there is no difference between 'tz' and 'z' or between 't', 'tt' and 'dt'. For my family name I know of the spellings 'Sigmund', 'Siegmund', 'Siegmundt', 'Sigemund', 'Siegemund', 'Siegemundt', 'Sigesmund', 'Siegesmund', 'Siegesmundt', 'Zygmunt', and 'Zygmont' (it appears that no one I ever met was able to spell my name right without me helping him, I have several documents with a falsely spelled name...).

        Add to this list the number of falsely entered records (people accused of things, later cleared, but not erased from lists compiled while they were under suspicion, typing errors, missunderstandings...). So I am quite amazed that the SFO airport had only about three hundred false positives. On the other hand there were no rightful positives (no one got convicted of terrorism yet who was caught with the CAPPS system), and we don't know about the false negatives (actual terrorists flying without being caught) because they slipped through the controls.
    • by onallama ( 515297 ) on Sunday June 08, 2003 @04:51PM (#6145458)
      ...as long as they're barred from entering the cockpit. The success of the 9/11 attacks can mainly be credited to 1970s-era hijacking guidelines directing pilots to comply with the terrorists' demands, on the assumption that they were going to fly the plane to Cuba or something similar, rather than use it as a weapon. Those guidelines made sense in their time, but clearly, they're no longer applicable.

      Here's an idea -- instead of inconveniencing millions of innocent passengers, how about securing the cockpits instead? So long as the pilots remain in control of the plane, it's a flying prison for anyone who commits any criminal act back in the passenger compartment. Let the cockpit crew notify the ground of a failed terrorist attack and land the plane at the nearest airport, with the police and FBI waiting. End of story.
    • ~ the officials implementing a system such as this are going to get crucified either way.
      Hardly. The people responsible for the intelligence breakdown that let to the events of 9/11 have not received so much as a slapped hand.
    • maelstrom wrote:

      > If they let a known terrorist onto a plane and a terrorist
      > act happens, their heads are going to roll. Every
      > journalist will be screaming that, "this terrorist has been
      > on the FBI watch list for 2 years, a simple misspelling of
      > his name allowed him to foil the multi-million dolar no
      > fly system".

      A) A terrorist is someone who uses people's fears to achieve their aims. Any kind of attack that would generate fear would work for the terrorist, it does not have to be o
  • now what? (Score:2, Funny)

    by Darth Fredd ( 663620 )
    Do they stop using the technology? Do they update it? Do they decide to keep using it, what the heck? Do the innocents rebel?

    Tune in next time to "Lets listen in!"
  • by Anonymous Coward on Sunday June 08, 2003 @03:55PM (#6145167)
    It should be obvious to anyone that any mechanism designed to target a small group out of a large group will would have to have an extremely small false positive rate to be of any use.

    And the false negative rate had better be small, too.

    Something 99% accurate is far from good enough; if only 0.01% of possible individuals are actual targets, you'll be getting 100 times as many false positives as correct positives.
    • Your point is very valid if there is a reasonable and rational discussion of the tradeoff's - You know kind of Type I and Type II errors. But the Bushies don't believe in that. Goebellian Ashcroft said that they are willing to use every legal tool available to them to achieve their goals - even if it means ignoring the spirit of the law, and reinterpreting the letters of the law to do whatever they want.

      The willingness, in fact eagerness, to overlook collatoral damage is the Hallmark of the Bush Administration. They have rammed policies that wouldn't pass muster support anywhere. It is almost as if they are willing to kill 9 innocent people to prevent the 10th guilty one from escaping.

      This mentality shows up in the No Fly list. It shows up in how the Arab immigrants were rounded up, and are now being deported by the thousands. It shows up in how to get to the Saddam "WMD's" they were willing to slaughter Iraqi's. Two or 3 Sept 11 bombers entered with Student visa's so everyone on that visa now gets grandly screwed.

      So, logic applies only when the hysteria subsides. If you want you can never let the hysteria subside. And Donald Rumsfeld is a genius - almost lunatic - in that. Like he said in almost poetic form, on Feb. 12, 2002, Department of Defense news briefing, (which means that he could use the concept described in his "poem" below prove anything that he wants - it is almost like dividing by Zero.)

      The Unknown

      As we know,

      There are known knowns.

      There are things we know we know.

      We also know

      There are known unknowns.

      That is to say

      We know there are some things

      We do not know.

      But there are also unknown unknowns,

      The ones we don't know

      We don't know.

  • by Alain Williams ( 2972 ) <addw@phcomp.co.uk> on Sunday June 08, 2003 @04:00PM (#6145196) Homepage
    Will I use my alias name which is Alain Williams, or will I use my real name which is Osama Bin Laden the next time that I book a flight to the USA ?

    The trouble with this sort of thing is that it inconveniences Joe Public while doing little to deter a real terrorist.
    • The trouble with this sort of thing is that it inconveniences Joe Public while doing little to deter a real terrorist.

      This could be said about practically every "anti-terrorist" mechanism so far implemented.

      K

      • by janda ( 572221 ) <janda@kali-tai.net> on Sunday June 08, 2003 @04:16PM (#6145301) Homepage

        I see you have an extranous "practically" in your response.

        Seriously, a friend of mine was driving from Denver to Kansas City at the start of the year, and a cop pulled him over for "crowding the center line". Now, I realize that some Kansas cops are just incredibly bored, but get real.

        Oh, and of course the cop asked if he could look in the trunk. If Keviee had said "not without a warrent", I'm sure he would have been taken in for acting "like he was hiding something".

        Face it, everything that has been done in the name of "the war on terror" has been nothing but a power grab to remove the rights of US citizens.

        • The county mounties in Western Kansas are well know for stopping people in I-70. They are looking for "drug money". In some counties as much as 30% of their budget comes from taking cash and cars from people running drugs. The funny thing is that if your friend had said no he could have left immediately. It is very hard to round up a circuit judge to get a warrant in the buffalo commons of Western Kansas. The cops are just doing catch and release until they strike it rich with someone who has too much
      • Um, no shit. That's why they're all so idiotic.

        We're not any safer, but we sure are a lot more inconvenienced! Way to go, progress!
    • Aren't you required to show a valid legal ID at several checkpoints before you able to board the plane? So it isn't as simple as just using an alias I would think.
      • If any 19 year old in the US can get a fake ID for a few hundred, what makes you think a terrorist couldn't do the same.
        • If any 19 year old in the US can get a fake ID for a few hundred, what makes you think a terrorist couldn't do the same.

          True. Though I pray/hope getting in with a fake ID at an major consumer airport would be much more difficult than, say, getting in at your local bar with a fake id.
          • I pray/hope getting in with a fake ID at an major consumer airport would be much more difficult than, say, getting in at your local bar with a fake id.

            We heard for a while about how over 50% of planted weapons to test the system made it through. Now we aren't hearing anything. But I just had a friend come back from a trip cross-country last week -- she had a pair of sharp scissors in her overnight bag and that made it through. She didn't even realize it until she got home. I'm sure the woman running
  • Only the beginning (Score:2, Insightful)

    by Anonymous Coward
    The same yahoos who came up with the no-fly program will be in charge of future lists, such as those for traffic stops, and lists that flag people for enhanced surveillence under tia-like programs.

    I wonder if there is a higher incidence of wiretapping done on homes that have residents named "J. Adams."

  • Man... (Score:5, Funny)

    by Faust7 ( 314817 ) on Sunday June 08, 2003 @04:01PM (#6145207) Homepage
    Many airlines rely on name-searching software derived from "Soundex," a 120- year-old indexing system first used in the 1880 U.S. census.

    ...and you thought mainframes were legacy technology.

  • by notestein ( 445412 ) on Sunday June 08, 2003 @04:04PM (#6145221) Homepage Journal
    Here's a good run down on soundex [las-inc.com] and ten problems with it.
    • I'm not sure how much I'd trust this whitepaper, which comes from a company that sells alternatives. That impartiality, along with at least one outright error (most Soundex algorithms use alphabetic transliteration to deal with Corbin/Korbin before generating a key) makes the whole thing suspect. Soundex isn't ideal, but there ain't much that's better.
      • True, one must take everything one reads (why yes, even on the net) with a grain of salt and judge based on cross verification and one's on experience.

        But even if some of the points are strained... there is some truth in most of them.

        As for nothing better... here's an article [lycos.com] from a genealogist, that is a few years old, pointing out that there were already better algorithms on the market.
  • "I'm sorry, Mister Adams, but airport security rules prohibit carrying all these pins onboard. Now if you'll just cooperate with these officers..."
  • Uhh... metaphone? (Score:4, Informative)

    by Pyromage ( 19360 ) on Sunday June 08, 2003 @04:05PM (#6145234) Homepage
    The metaphone algorithm addresses many of the shortcomings of soundex... why are they not using it?
  • by sssmashy ( 612587 ) on Sunday June 08, 2003 @04:05PM (#6145238)

    Soundex gives each name a key using its first letter and dropping the vowels and giving number codes to similar-sounding vowels (like "S" and "C"). The system gives the same code, L350, for "Laden" and all similar-sounding names: Lydon, Lawton, and Leedham.

    Boy, I'd hate to be a guy with a name like "Sam Lawton" or something. I wonder how many similarly-named middle-aged salesmen are getting red-flagged on flights... because you just never know, what if Osama Bin Laden disguised as a portly white guy from Milwaukee, and he never bothered to pick a false name that sounded sufficiently different from the original.

  • by CodeMaster ( 28069 ) on Sunday June 08, 2003 @04:16PM (#6145299)
    This is unbelievable. Why reinvent the wheel, while there are at least 3 countries that have implemented similar restrictions and tracking systems succesfully for more than 10 years now (England, Israel, and Germany - that I know of).

    This sounds like the work of some consultants with no idea of what they are faced with and fresh out of collage where they have analyzed a couple of algorithms... sorry - I have had way too much of these running around the office lately

    If for once someone would just poke his head out and instead of trying to find a solution to an age old problem, look and see how others are handling it, we (taxpayers) would all be much more content (and safe...).

    Just my 2c.
    • What? You are saying those fresh out of college kids are inexperienced?

      Darn, and mine almost had me convinced that we should move our presently working mail system to Microsoft Exchange. Oh, and that the web-based workorder system that's been running for 2 years is too "challenging" for the average user.

      Oh no, they are wise beyond their years. Or is the expression I am looking for is "wet behind the ears."

  • by FreeLinux ( 555387 ) on Sunday June 08, 2003 @04:16PM (#6145307)
    The situation is really bad if you are named David Nelson. Here [oregonlive.com] is a sad but true story about no fly lists and the very common name, David Nelson. There was also a followup story to this one but I am unable to find a link.

    But, you feel safe. Don't you?
    • Anyone else turned off by the third paragraph?

      Since the horrific attacks on Sept. 11, 2001, the federal Transportation Security Administration has, without any public announcement, created a two-tiered list of names...

      "without any public announcement"

      Where has this guy been? These name lists have been hotly debated for 1.5 years.

      Debate the effectiveness of a name list all you want, an author starts off with such a poor argument, it really makes me doubt the rest of the story.
  • by Anonymous Coward
    ...Hugginkiss is catching all kinds of grief.
  • by account_deleted ( 4530225 ) on Sunday June 08, 2003 @04:21PM (#6145328)
    Comment removed based on user account deletion
  • Why not use ID#? (Score:5, Informative)

    by jaclu ( 66513 ) on Sunday June 08, 2003 @04:22PM (#6145334)
    I guess all US people would screem for such a "threat to your privacy" ;)

    But at least in here in sweden basically anytime you book a flight you give your ID number (similar to a social security #)
    Two benefits:
    1. Name is just a courtesy, so doesnt really matter for security if somebody get my name wrong.
    2. On checkin, it must be _you_ not somebody with a similar name

    Of course IDs can be stolen or forged, but that is a problem regardles of how you ID your self.
    • Social Security Numbers are not designed for use as identification numbers, and their use as such is a perversion of the system. They're not even guaranteed to be unique.
  • credit checks - wtf? (Score:4, Informative)

    by ananke ( 8417 ) on Sunday June 08, 2003 @04:27PM (#6145357)
    quote from the article: Scheduled for deployment in Spring 2004, CAPPS II will require airline ticket buyers to give more identifying information -- full name, birth date, home phone number and address. This information will be run against private credit-rating and government watch list databases to "verify you are who you say you are," Rosenker said

    What in the hell? I was under the impression that having a credit check actually hurts your credit history [as in, you shouldn't have too many credit checks in .] Now they're going to be checking that every time I fly?

    I always hated flying, now I'm starting to hate air lines...
  • by Psiren ( 6145 ) on Sunday June 08, 2003 @04:33PM (#6145382)
    You US folks could really do with a constitution to stop this sort of crap happening. Oh wait, you do have one. Oh well, back to the drawing board. Land of the free indeed.
  • by Destree ( 679322 ) on Sunday June 08, 2003 @04:44PM (#6145424)
    I think the idea behind this scheme is not to catch terrorists, or even deter them. But to keep the public under a false sense of security, thinking "hell, if they are searching a lot of people, they must be getting the real ones too!" Although it never works out that way.

    I think I will be flying private planes if they start looking into your credit. A credit check could be like "Well, you evaded child support and paying the bank $5,000, we can't let you board, if you have the money for a flight, you can pay them!"

    They know they they won't be able to get this to work right, they are just pocketing money and putting out a crap system, but I think that it may have better use for private organizations, such as "Well, he evaded taxes and bills, but we see him having a one way ticket to (place), search for him there."
    • And...I wonder who gets to look at all my information? Who watches the watchers? (more accurately who catches the watcher) How long before we can expect for the data collected to be used for other unrelated things (such as child support etc mentioned in the prior posting)?

      On the other hand, they got my name, address, phone, date of birth - the only piece they need is my social security number and mother's maiden name and they can get a credit card in my name!

      yikes!

  • by The Creator ( 4611 ) on Sunday June 08, 2003 @04:52PM (#6145465) Homepage Journal
    The system was never intended to catch terrorists.

  • by legLess ( 127550 ) on Sunday June 08, 2003 @05:04PM (#6145524) Journal
    If you want to make sure your hijacking works fly around innocently as "Sam bin Laden" for a few months, get your name on all the "Fly lists," and then hijack a plane.
  • by mark-t ( 151149 ) <markt AT nerdflat DOT com> on Sunday June 08, 2003 @05:22PM (#6145612) Journal
    ... I had to take a break to catch my breath.

    From the article:

    Soundex gives each name a key using its first letter and dropping the vowels and giving number codes to similar-sounding vowels (like "S" and "C").
    Hate to break it to these guys but neither "S" nor "C" are vowels. Heck, they don't even make vowel sounds.

    Geeze, no wonder the system is broken.

  • One knee-jerk reaction people have, particularly leftists, is that the watch list is useless and easily evaded, and that it merely exists to make people feel secure.

    The reason I single out liberals is that it's a problem they have with evaluating many other issues. In and of itself, a watch list doesn't do much. And this is a standard failure of analysis: it's easy to pooh-pooh any technique on its own, especially in matters of security or warfare, but that fails to see how it fits into the big picture. Te
    • One knee-jerk reaction people have, particularly leftists, is that the watch list is useless and easily evaded, and that it merely exists to make people feel secure.

      What is this 'leftist' creature that you talk about? I have seen a dramatic increase in the use of the term in the last couple of years. No doubt its rise in popularity only coincidentally coincides with 2001/09/11. Unfortunately, it seems primarily to be used as a sort of epithet meant to discredit some or other class of opinions. The sno

    • Listen Dimwit... (Score:3, Insightful)

      It's bad enough when a single isolated program fails completely, as this one has. But if, as you suggest, this program is a part of a larger anti-terrorist system then the failure on the governments part is that much greater! As the saying goes "A chain is only as strong as its weakest link.". The failure of the "No-Fly" list to accurately idenify terrorists creates a critical weakness in our national security infrastructure. For you see, this system was designed to deny terrorists mobility and access to a
  • Do they really think that they'll stop terrorists by asking them their names and refusing service if they appear on a list?

    Like a terrorist is going to walk up to the counter and say, "Hello, my name is Ibrahim Salih Mohammed Al-Yacoub and I'd like to buy a one way ticket from New York to Los Angeles, preferably on whichever flight has the fewest american infidels. Oops, did I say infidels? I meant passengers, good american passengers."

    Terrorists just have to use fake names, or steal someone's identity.

    A
  • Spelled out (Score:3, Interesting)

    by Nynaeve ( 163450 ) on Sunday June 08, 2003 @06:07PM (#6145839)
    This is only the tip of the iceberg, I fear. There are times when you need to ask yourself, what if? I did not live during the McCarthy era, but I feel this is one of those times. I may seem paranoid, but here is my "what if?" for the Bush administation's plan:
    1) Use the term "terrorist" to refer to a small number of individuals that are a threat to peace and security in order to justify sweeping changes to policy and laws but more importantly as justification to begin developing a system to track every individual, everywhere (the system will, unfortunately, improve over time).
    2) Once the necessary tracking infrastructure is in place (perhaps not perfected yet), change the term from "terrorist" to "criminal" . The justification will be that criminals are bad too, and they threaten peace and security just like terrorists, right?
    3) Once the system has improved to the point that false positives are indeed negligable, gradually redefine the term "criminal" to discreetly include groups and individuals of the government's choosing.

    Does this sound like an unlikely scenario? If you have an opinion, what social forces do you believe would act to reinforce or inhibit this scenario?

    One might also discuss the similarities of the TIA (Total Information Awareness) and TCPA (Trusted Computing Platform Alliance). Both seek to create an environment that a person or an application, respectively, must be pre-authorized to enter. Without proper authorization, you or your application are not allowed to be a part of the system or interact with other authorized entities.

    Eventually, I expect the "fly-list" to become the dominate list, and the "no-fly-list" to become increasingly obscure. You will then no longer be able to fly without identifying yourself to the system.

    My greatest fear is that one will no longer be able to "buy or sell without the mark [of approval]", in the Biblical sense. What we see today certainly allows for that, especially if you take into consideration the infusement of funds by the government into bioinformatics R&D. The "mark in the forehead or right hand" easily translates into a retinal scan or fingerprint. When positive identification becomes cheap, efficient, and accurate, it will become ubiquitous, and we will all be rows in a (probably Oracle) database.

    Thoughts?
  • by morcheeba ( 260908 ) on Sunday June 08, 2003 @07:03PM (#6146113) Journal
    John gilmore is suing [freetotravel.org] for the right to travel anonymously(sp).

    From the website:
    He does so "because he believes persons have a right to travel by air without the government requiring that they relinquish their anonymity. No security threat is as important as the threat to American society caused by erosion of the right to travel, the right to be free from unreasonable searches, and the right to exercise First Amendment rights anonymously."

    Check out the FAQ's [freetotravel.org], which are well written and explain the other reasons - including being subject to secret laws - he is opposing this.
  • by Eric Smith ( 4379 ) * on Sunday June 08, 2003 @07:14PM (#6146204) Homepage Journal
    The SFgate article quotes Sen. Ron Wyden, D-Ore.:
    How does government come up with a strategy that allows us to fight terrorism ferociously without gutting our civil liberties?

    There's a simple, easy, inexpensive and effective solution. Unfortunately that's not what the government wants; they prefer expensive, complicated solutions that let them hire more people and expand the bureacracy, even if it happens that those solutions are ineffective. Anyhow, the simple, easy, inexpensive solution is:

    1. On domestic flights, don't use a don't fly list at all. It's completely unnecessary and serves no useful purpose.
    2. On international flights, if it's absolutely necessary (and I'm not convinced that it is), use such a list only for passengers that aren't carrying a valid US passport.
  • Working Just Fine (Score:5, Insightful)

    by Markus Registrada ( 642224 ) on Sunday June 08, 2003 @10:05PM (#6147141)
    If you think the "no-fly" list is not working well, you fundamentally misunderstand its purpose. In fact, for its intended purpose, it has been working fabulously. Like harrassing people about nail files in their bathroom kits, it leads people to think that something is being done about security, without the need actually to do something. How many people have you heard say that while having their shoes X-rayed was inconvenient, it made them feel safer about flying?

    X-raying shoes doesn't make for effective security, but it's intrusive enough to give the impression that at least something is being done.

    Articles and editorials that call attention to the violations that come with the bogus no-fly list are essential components of the system -- they make everybody else experience it, vicariously. Everybody who is a little bit stupid (i.e. most people) feels a little safer for it. Sure it inconveniences some people, but not enough to make much political difference.

    Even better than the impression of intrusive security, it leads to demands for what amounts to a system of internal passports, where you can't travel by air without registering, and getting -- and maintaining --- official permission. "What, no internal passport? Sorry, sir, I can't let you board." At first felons will have their passports pulled, then "suspected terrorists", then political undesirables of all sorts.

"The whole problem with the world is that fools and fanatics are always so certain of themselves, but wiser people so full of doubts." -- Bertrand Russell

Working...