{"description":"Documents matching 'sensitive security information threat assessment'","count":4027,"total_pages":50,"next_page_url":"https://www.federalregister.gov/api/v1/documents?conditions%5Bterm%5D=sensitive+security+information+threat+assessment&format=json&page=2","results":[{"title":"Extension of Agency Information Collection Activity Under OMB Review: Sensitive Security Information Threat Assessment Application","type":"Notice","abstract":"This notice announces that the Transportation Security Administration (TSA) has forwarded the Information Collection Request (ICR), Office of Management and Budget (OMB) control number 1652-0042, abstracted below to OMB for review and approval of an extension of the currently approved collection under the Paperwork Reduction Act (PRA). The ICR describes the nature of the information collection and its expected burden. The collection involves TSA determining whether individuals seeking access to sensitive security information (SSI) may be granted access to the SSI.","document_number":"2024-29661","html_url":"https://www.federalregister.gov/documents/2024/12/17/2024-29661/extension-of-agency-information-collection-activity-under-omb-review-sensitive-security-information","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-12-17/pdf/2024-29661.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-29661.pdf?1734356730","publication_date":"2024-12-17","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"},{"raw_name":"Transportation Security Administration","name":"Transportation Security Administration","id":494,"url":"https://www.federalregister.gov/agencies/transportation-security-administration","json_url":"https://www.federalregister.gov/api/v1/agencies/494","parent_id":227,"slug":"transportation-security-administration"}],"excerpts":"techniques or other forms of <span class=\"match\">information</span> technology. \n <span class=\"match\">Information</span> Collection Requirement \n \n Title: \n <span class=\"match\">Sensitive</span> <span class=\"match\">Security</span> <span class=\"match\">Information</span> <span class=\"match\">Threat</span> <span class=\"match\">Assessment</span> Application.\n \n \n Type of Request: \n Extension of a currently approved collection.\n \n \n OMB Control Number: \n 1652-0042.\n \n \n Forms(s): \n TSA Forms 2817A and 2817B.\n \n \n Affected Public: \n Individuals seeking access to SSI <span class=\"match\">Information</span>.\n \n \n Abstract: \n TSA is required to prohibit the disclosure of <span class=\"match\">information</span> that would be detrimental to transportation safety or <span class=\"match\">security</span>. \n See \n 49 U.S.C. 114(r) and"},{"title":"Intent To Request Extension From OMB of One Current Public Collection of Information: Sensitive Security Information Threat Assessment Application","type":"Notice","abstract":"The Transportation Security Administration (TSA) invites public comment on one currently approved Information Collection Request (ICR), Office of Management and Budget (OMB) control number 1652-0042, abstracted below that we will submit to OMB for an extension in compliance with the Paperwork Reduction Act (PRA). The ICR describes the nature of the information collection and its expected burden. The collection involves TSA determining whether certain individuals seeking access to sensitive security information (SSI) may be granted access to the SSI.","document_number":"2024-21791","html_url":"https://www.federalregister.gov/documents/2024/09/24/2024-21791/intent-to-request-extension-from-omb-of-one-current-public-collection-of-information-sensitive","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-09-24/pdf/2024-21791.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-21791.pdf?1727095527","publication_date":"2024-09-24","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"},{"raw_name":"Transportation Security Administration","name":"Transportation Security Administration","id":494,"url":"https://www.federalregister.gov/agencies/transportation-security-administration","json_url":"https://www.federalregister.gov/api/v1/agencies/494","parent_id":227,"slug":"transportation-security-administration"}],"excerpts":"litigation must complete TSA Form 2817A, \n SSI Access <span class=\"match\">Threat</span> <span class=\"match\">Assessment</span> Questionnaire—Litigation. \n Bidders and certain other applicants will be required to complete TSA Form 2817B, \n SSI Access <span class=\"match\">Threat</span> <span class=\"match\">Assessment</span> Questionnaire—Standard \n in order to have a <span class=\"match\">security</span> <span class=\"match\">threat</span> <span class=\"match\">assessment</span> completed before they can receive the requested SSI. TSA will use the <span class=\"match\">information</span> collected to conduct the <span class=\"match\">security</span> <span class=\"match\">threat</span> <span class=\"match\">assessment</span> for the purpose of determining whether the provision of such access to the <span class=\"match\">information</span> for the proceeding or other reason presents a risk"},{"title":"Request for Information Regarding Security Considerations for Artificial Intelligence Agents","type":"Notice","abstract":"The Center for AI Standards and Innovation (CAISI), housed within the National Institute of Standards and Technology (NIST) at the Department of Commerce, is seeking information and insights from stakeholders on practices and methodologies for measuring and improving the secure development and deployment of artificial intelligence (AI) agent systems. AI agent systems are capable of taking autonomous actions that impact real-world systems or environments, and may be susceptible to hijacking, backdoor attacks, and other exploits. If left unchecked, these security risks may impact public safety, undermine consumer confidence, and curb adoption of the latest AI innovations. We encourage respondents to provide concrete examples, best practices, case studies, and actionable recommendations based on their experience developing and deploying AI agent systems and managing and anticipating their attendant risks. Responses may inform CAISI's work evaluating the security risks associated with various AI capabilities, assessing security vulnerabilities of AI systems, developing evaluation and assessment measurements and methods, generating technical guidelines and best practices to measure and improve the security of AI systems, and other activities related to the security of AI agent systems.","document_number":"2026-00206","html_url":"https://www.federalregister.gov/documents/2026/01/08/2026-00206/request-for-information-regarding-security-considerations-for-artificial-intelligence-agents","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-01-08/pdf/2026-00206.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-00206.pdf?1767793519","publication_date":"2026-01-08","agencies":[{"raw_name":"DEPARTMENT OF COMMERCE","name":"Commerce Department","id":54,"url":"https://www.federalregister.gov/agencies/commerce-department","json_url":"https://www.federalregister.gov/api/v1/agencies/54","parent_id":null,"slug":"commerce-department"},{"raw_name":"National Institute of Standards and Technology","name":"National Institute of Standards and Technology","id":352,"url":"https://www.federalregister.gov/agencies/national-institute-of-standards-and-technology","json_url":"https://www.federalregister.gov/api/v1/agencies/352","parent_id":54,"slug":"national-institute-of-standards-and-technology"}],"excerpts":"cybersecurity best practices may not be appropriate for the <span class=\"match\">security</span> of AI agent systems? \n 3. Assessing the <span class=\"match\">Security</span> of AI Agent Systems \n (a) What methods could be used during AI agent systems development to anticipate, identify, and assess <span class=\"match\">security</span> <span class=\"match\">threats</span>, risks, or vulnerabilities? \n i. What methods could be used to detect <span class=\"match\">security</span> incidents after an AI agent system has been deployed? \n ii. How do these align (or differ) from traditional <span class=\"match\">information</span> <span class=\"match\">security</span> practices, including supply chain <span class=\"match\">security</span>? \n iii. What is the maturity of these methods in research"},{"title":"Request for Comment on Security Requirements for Restricted Transactions Under Executive Order 14117","type":"Notice","abstract":"CISA seeks public input on the development of security requirements for restricted transactions as directed by Executive Order (E.O.) 14117, \"Preventing Access to Americans' Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern.\" E.O. 14117 addresses national-security and foreign-policy threats that arise when countries of concern and covered persons can access bulk U.S. sensitive personal data or government-related data. The proposed CISA security requirements for restricted transactions would apply to classes of restricted transactions identified in regulations issued by the Department of Justice (DOJ).","document_number":"2024-24709","html_url":"https://www.federalregister.gov/documents/2024/10/29/2024-24709/request-for-comment-on-security-requirements-for-restricted-transactions-under-executive-order-14117","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-10-29/pdf/2024-24709.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-24709.pdf?1729628118","publication_date":"2024-10-29","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"}],"excerpts":"comment. Through this notice, CISA announces the proposed <span class=\"match\">security</span> requirements applicable to the classes of restricted transactions defined in DOJ's \n \n NPRM and requests public comment on the content of the <span class=\"match\">security</span> requirements.\n \n B. Purpose and Structure of Proposed <span class=\"match\">Security</span> Requirements \n \n The primary goal of the proposed <span class=\"match\">security</span> requirements is to address national-<span class=\"match\">security</span> and foreign-policy <span class=\"match\">threats</span> that arise when countries of concern \n 3 \n \n and covered persons access bulk U.S. <span class=\"match\">sensitive</span> personal data or U.S. government-related data that may"},{"title":"Promoting the Integrity and Security of Telecommunications Certification Bodies, Measurement Facilities, and the Equipment Authorization Program","type":"Rule","abstract":"In this document, the Federal Communications Commission (Commission or FCC) adopts measures to strengthen national security and encourage reciprocity in testing and certification. The FCC creates a fast-track priority review process for devices subject to Pre-Approval Guidance (PAG) for applications tested in Trusted Test Labs. Also, updates post-market surveillance and enforcement procedures, and establishes confidential reporting channels for industry participants to raise concerns about violations or national security threats. Lastly, directs development of a consolidated list of prohibited entities to streamline applicant screening and aligns ownership reporting timelines for publicly traded companies with U.S. Securities and Exchange Commission requirements.","document_number":"2026-09822","html_url":"https://www.federalregister.gov/documents/2026/05/15/2026-09822/promoting-the-integrity-and-security-of-telecommunications-certification-bodies-measurement","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-05-15/pdf/2026-09822.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-09822.pdf?1778762728","publication_date":"2026-05-15","agencies":[{"raw_name":"FEDERAL COMMUNICATIONS COMMISSION","name":"Federal Communications Commission","id":161,"url":"https://www.federalregister.gov/agencies/federal-communications-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/161","parent_id":null,"slug":"federal-communications-commission"}],"excerpts":"market. The Commission also believes Trusted Test Labs do not carry the same national <span class=\"match\">security</span> and trustworthiness risk that certain foreign test labs do, and the Commission therefore places enhanced trust in their ability to receive and handle <span class=\"match\">sensitive</span> and proprietary equipment authorization <span class=\"match\">information</span> as reflected in a shorter period for Commission staff to review their test results. to receive and handle <span class=\"match\">sensitive</span> and proprietary equipment authorization <span class=\"match\">information</span> as reflected in a shorter period for Commission staff to review their test results"},{"title":"Revision of Agency Information Collection Activity Under OMB Review: Pipeline Corporate Security Reviews and TSA Security Directive Pipeline-2021-02 Series","type":"Notice","abstract":"This notice announces that the Transportation Security Administration (TSA) has forwarded the Information Collection Request (ICR), Office of Management and Budget (OMB) control number 1652-0056, abstracted below, to OMB for review and approval of a revision of the currently approved collection under the Paperwork Reduction Act (PRA). The ICR describes the nature of the information collection and its expected burden. The collection allows TSA to assess the current security practices in the pipeline industry through TSA's Pipeline Corporate Security Review (CSR) program and allows for the continuation of mandatory cybersecurity requirements under the TSA Security Directive (SD) Pipeline-2021-02 series.","document_number":"2025-24198","html_url":"https://www.federalregister.gov/documents/2026/01/02/2025-24198/revision-of-agency-information-collection-activity-under-omb-review-pipeline-corporate-security","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-01-02/pdf/2025-24198.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-24198.pdf?1767188716","publication_date":"2026-01-02","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"},{"raw_name":"Transportation Security Administration","name":"Transportation Security Administration","id":494,"url":"https://www.federalregister.gov/agencies/transportation-security-administration","json_url":"https://www.federalregister.gov/api/v1/agencies/494","parent_id":227,"slug":"transportation-security-administration"}],"excerpts":"agency's estimate of the burden; \n (3) Enhance the quality, utility, and clarity of the <span class=\"match\">information</span> to be collected; and \n (4) Minimize the burden of the collection of <span class=\"match\">information</span> on those who are to respond, including using appropriate automated, electronic, mechanical, or other technological collection techniques or other forms of <span class=\"match\">information</span> technology. \n <span class=\"match\">Information</span> Collection Requirement \n \n Title: \n Pipeline Corporate <span class=\"match\">Security</span> Reviews and TSA <span class=\"match\">Security</span> Directive Pipeline-2021-02 series.\n \n \n Type of Request: \n Revision of a currently approved"},{"title":"Intent To Request a Revision From OMB of One Current Public Collection of Information: Pipeline Corporate Security Reviews and TSA Security Directive Pipeline-2021-02 series","type":"Notice","abstract":"The Transportation Security Administration (TSA) invites public comment on one currently-approved Information Collection Request (ICR), Office of Management and Budget (OMB) control number 1652-0056, abstracted below, that we will submit to OMB for an extension in compliance with the Paperwork Reduction Act (PRA). The ICR describes the nature of the information collection and its expected burden. The collection allows TSA to assess the current security practices in the pipeline industry through TSA's Pipeline Corporate Security Review (CSR) program and allows for the continuation of mandatory cybersecurity requirements under the TSA Security Directive (SD) Pipeline--2021-02 series.","document_number":"2025-14538","html_url":"https://www.federalregister.gov/documents/2025/08/01/2025-14538/intent-to-request-a-revision-from-omb-of-one-current-public-collection-of-information-pipeline","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-08-01/pdf/2025-14538.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-14538.pdf?1753965909","publication_date":"2025-08-01","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"},{"raw_name":"Transportation Security Administration","name":"Transportation Security Administration","id":494,"url":"https://www.federalregister.gov/agencies/transportation-security-administration","json_url":"https://www.federalregister.gov/api/v1/agencies/494","parent_id":227,"slug":"transportation-security-administration"}],"excerpts":"are deemed <span class=\"match\">Sensitive</span> <span class=\"match\">Security</span> <span class=\"match\">Information</span> and are protected in accordance with procedures meeting the transmission, handling, and storage \n \n requirements of <span class=\"match\">Sensitive</span> <span class=\"match\">Security</span> <span class=\"match\">Information</span> set forth in part 1520 of title 49, Code of Federal Regulations.\n \n Annual Burden Discussion \n For the voluntary Pipeline CSR program, TSA estimates that they will conduct 21 <span class=\"match\">security</span> reviews per year, each involving a pipeline <span class=\"match\">security</span> manager. TSA estimates that each CSR will last a total of 8 hours, and then include a follow-up regarding <span class=\"match\">security</span> recommendations"},{"title":"Provisions Pertaining to U.S. Investments in Certain National Security Technologies and Products in Countries of Concern","type":"Rule","abstract":"This final rule sets forth the regulations that implement Executive Order 14105 of August 9, 2023, \"Addressing United States Investments in Certain National Security Technologies and Products in Countries of Concern,\" which declares a national emergency to address the threat to the United States posed by countries of concern that seek to develop and exploit sensitive technologies or products critical for military, intelligence, surveillance, or cyber-enabled capabilities. The final rule requires United States persons to provide notification to the U.S. Department of the Treasury regarding certain transactions involving persons of a country of concern that are engaged in activities involving certain national security technologies and products that may contribute to the threat to the national security of the United States; and prohibits United States persons from engaging in certain other transactions involving persons of a country of concern that are engaged in activities involving certain other national security technologies and products that pose a particularly acute national security threat to the United States.","document_number":"2024-25422","html_url":"https://www.federalregister.gov/documents/2024/11/15/2024-25422/provisions-pertaining-to-us-investments-in-certain-national-security-technologies-and-products-in","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-11-15/pdf/2024-25422.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-25422.pdf?1730996188","publication_date":"2024-11-15","agencies":[{"raw_name":"DEPARTMENT OF THE TREASURY","name":"Treasury Department","id":497,"url":"https://www.federalregister.gov/agencies/treasury-department","json_url":"https://www.federalregister.gov/api/v1/agencies/497","parent_id":null,"slug":"treasury-department"},{"raw_name":"Office of Investment Security","name":"Investment Security Office","id":603,"url":"https://www.federalregister.gov/agencies/investment-security-office","json_url":"https://www.federalregister.gov/api/v1/agencies/603","parent_id":497,"slug":"investment-security-office"}],"excerpts":"involving certain national <span class=\"match\">security</span> technologies and products that may contribute to the <span class=\"match\">threat</span> to the national <span class=\"match\">security</span> of the United States; and prohibits United States persons from engaging in certain other transactions involving persons of a country of concern that are engaged in activities involving certain other national <span class=\"match\">security</span> technologies and products that pose a particularly acute national <span class=\"match\">security</span> <span class=\"match\">threat</span> to the United States. \n \n \n DATES: \n This final rule is effective on January 2, 2025. \n \n \n FOR FURTHER <span class=\"match\">INFORMATION</span> CONTACT: \n \n Meena R"},{"title":"Intent To Request a Revision From OMB of One Current Public Collection of Information: Cybersecurity Measures for Surface Modes","type":"Notice","abstract":"The Transportation Security Administration (TSA) invites public comment on one currently-approved Information Collection Request (ICR), Office of Management and Budget (OMB) control number 1652-0074, abstracted below, that we will submit to OMB for a revision in compliance with the Paperwork Reduction Act (PRA). The ICR describes the nature of the information collection and its expected burden. The collection concerns data concerning the designation of a Cybersecurity Coordinator; the reporting of cybersecurity incidents to the Cybersecurity and Infrastructure Security Agency; the development of a cybersecurity contingency/recovery plan to address cybersecurity gaps; and the completion of a cybersecurity assessment.","document_number":"2026-07364","html_url":"https://www.federalregister.gov/documents/2026/04/16/2026-07364/intent-to-request-a-revision-from-omb-of-one-current-public-collection-of-information-cybersecurity","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-04-16/pdf/2026-07364.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-07364.pdf?1776257113","publication_date":"2026-04-16","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"},{"raw_name":"Transportation Security Administration","name":"Transportation Security Administration","id":494,"url":"https://www.federalregister.gov/agencies/transportation-security-administration","json_url":"https://www.federalregister.gov/api/v1/agencies/494","parent_id":227,"slug":"transportation-security-administration"}],"excerpts":"TSA to include a comparable <span class=\"match\">security</span> <span class=\"match\">threat</span> <span class=\"match\">assessment</span> (STA). TSA is revising the collection to include this new requirement. \n The <span class=\"match\">information</span> collected pursuant to the requirements in the SDs and the recommendations in the IC allow TSA to execute its <span class=\"match\">security</span> responsibilities within the surface transportation industry, through awareness of potential <span class=\"match\">security</span> incidents and suspicious activities. TSA collects the following <span class=\"match\">information</span>: \n A. SD 1580/82-2022-01 Series \n This SD series includes the following <span class=\"match\">information</span> collection: \n 1. Submission"},{"title":"Privacy Act of 1974; System of Records","type":"Notice","abstract":"In accordance with the Privacy Act of 1974, the DoD is establishing a new Department-wide system of records titled, \"Counterintelligence Investigations and Collection Activities (CICA),\" DoD-0025. This system of records covers DoD's maintenance of records about counterintelligence (CI) investigations and collection activities. The purpose of CICA is to determine whether an individual is acting for or on behalf of foreign powers organizations, or persons, or their agents, or international terrorist organizations or activities. This differs from the purpose of Counterintelligence Functional Services (CIFS), DoD-0010, which protects Department resources and personnel from foreign adversaries who seek to exploit sensitive information, operations, and agency programs to the detriment of the U.S. Government. It is also separate from the purpose of the DoD Insider Threat Management and Analysis Center (DITMAC) and DoD Component Insider Threat Records System, DUSDI 01-DoD, which addresses security functions. Additionally, DoD is issuing a Notice of Proposed Rulemaking, which proposes to exempt this system of records from certain provisions of the Privacy Act, elsewhere in today's issue of the Federal Register.","document_number":"2025-13582","html_url":"https://www.federalregister.gov/documents/2025/07/21/2025-13582/privacy-act-of-1974-system-of-records","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-07-21/pdf/2025-13582.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-13582.pdf?1752842708","publication_date":"2025-07-21","agencies":[{"raw_name":"DEPARTMENT OF DEFENSE","name":"Defense Department","id":103,"url":"https://www.federalregister.gov/agencies/defense-department","json_url":"https://www.federalregister.gov/api/v1/agencies/103","parent_id":null,"slug":"defense-department"},{"raw_name":"Office of the Secretary"}],"excerpts":"identification <span class=\"match\">information</span> (passport, visa, resident alien), driver's license <span class=\"match\">information</span> (state, number, and expiration date, etc.), biographic <span class=\"match\">information</span>, family and dependent <span class=\"match\">information</span>, sex, race/ethnicity, and property <span class=\"match\">information</span>. \n B. Employment <span class=\"match\">information</span> such as: position/title, rank/grade, duty station; work address, email address, supervisor's name and contact <span class=\"match\">information</span>, military records, personnel <span class=\"match\">security</span> <span class=\"match\">information</span>, employment personnel files, financial <span class=\"match\">information</span> (to include tax identification <span class=\"match\">information</span>), financial reports and"},{"title":"Enhanced Air Cargo Advance Screening (ACAS)","type":"Rule","abstract":"To address ongoing aviation security threats, U.S. Customs and Border Protection (CBP) is amending its regulations pertaining to the Air Cargo Advance Screening (ACAS) program to require the transmission of additional data elements. The ACAS program enhances the security of flights carrying cargo into the United States by requiring the transmission of certain air cargo data and performing targeted risk assessments based on the transmitted data prior to an aircraft's departure for the United States. These risk assessments identify and prevent high-risk air cargo from being loaded onto an aircraft that could pose a risk to an aircraft during flight.","document_number":"2025-20606","html_url":"https://www.federalregister.gov/documents/2025/11/21/2025-20606/enhanced-air-cargo-advance-screening-acas","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-11-21/pdf/2025-20606.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-20606.pdf?1763646322","publication_date":"2025-11-21","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"},{"raw_name":"U.S. Customs and Border Protection","name":"U.S. Customs and Border Protection","id":501,"url":"https://www.federalregister.gov/agencies/u-s-customs-and-border-protection","json_url":"https://www.federalregister.gov/api/v1/agencies/501","parent_id":227,"slug":"u-s-customs-and-border-protection"}],"excerpts":"to the <span class=\"match\">security</span> programs are considered <span class=\"match\">Sensitive</span> <span class=\"match\">Security</span> <span class=\"match\">Information</span> (SSI),\n 9 \n \n and are made available to carriers as necessary. Alternatively, carriers may request TSA approval to follow National Cargo <span class=\"match\">Security</span> Program (NCSP) recognition procedures in lieu of TSA <span class=\"match\">security</span> program requirements.\n 10 \n \n When the <span class=\"match\">security</span> environment or operational factors necessitate the modification of a <span class=\"match\">security</span> program, TSA or an air carrier may initiate a <span class=\"match\">security</span> program amendment.\n 11 \n \n TSA also has the regulatory authority to issue <span class=\"match\">Security</span> Directives"},{"title":"Personal Financial Data Rights Reconsideration","type":"Proposed Rule","abstract":"The Consumer Financial Protection Bureau (CFPB or Bureau) is seeking comments and data to inform its consideration of four issues related to implementation of section 1033 of the Dodd-Frank Wall Street Reform and Consumer Protection Act (Dodd-Frank Act). These issues are: the proper understanding of who can serve as a \"representative\" making a request on behalf of the consumer; the optimal approach to the assessment of fees to defray the costs incurred by a \"covered person\" in responding to a customer driven request; the threat and cost-benefit pictures for data security associated with section 1033 compliance; and the threat picture for data privacy associated with section 1033 compliance.","document_number":"2025-16139","html_url":"https://www.federalregister.gov/documents/2025/08/22/2025-16139/personal-financial-data-rights-reconsideration","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-08-22/pdf/2025-16139.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-16139.pdf?1755780335","publication_date":"2025-08-22","agencies":[{"raw_name":"Consumer Financial Protection Bureau","name":"Consumer Financial Protection Bureau","id":573,"url":"https://www.federalregister.gov/agencies/consumer-financial-protection-bureau","json_url":"https://www.federalregister.gov/api/v1/agencies/573","parent_id":null,"slug":"consumer-financial-protection-bureau"}],"excerpts":"submissions, including attachments and other supporting materials, will become part of the public record and subject to public disclosure. Proprietary <span class=\"match\">information</span> or <span class=\"match\">sensitive</span> personal <span class=\"match\">information</span>, such as account numbers or Social <span class=\"match\">Security</span> numbers, or names of other individuals, should not be included. Submissions will not be edited to remove any identifying or contact <span class=\"match\">information</span>. \n \n \n FOR FURTHER <span class=\"match\">INFORMATION</span> CONTACT: \n \n Dave Gettler, Paralegal Specialist, Office of Regulations, at 202-435-7700 or at: \n https://reginquiries.consumerfinance.gov/. \n If"},{"title":"Preventing Access to U.S. Sensitive Personal Data and Government-Related Data by Countries of Concern or Covered Persons","type":"Rule","abstract":"The Department of Justice is issuing a final rule to implement Executive Order 14117 of February 28, 2024 (Preventing Access to Americans' Bulk Sensitive Personal Data and United States Government- Related Data by Countries of Concern), by prohibiting and restricting certain data transactions with certain countries or persons.","document_number":"2024-31486","html_url":"https://www.federalregister.gov/documents/2025/01/08/2024-31486/preventing-access-to-us-sensitive-personal-data-and-government-related-data-by-countries-of-concern","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-01-08/pdf/2024-31486.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-31486.pdf?1735911918","publication_date":"2025-01-08","agencies":[{"raw_name":"DEPARTMENT OF JUSTICE","name":"Justice Department","id":268,"url":"https://www.federalregister.gov/agencies/justice-department","json_url":"https://www.federalregister.gov/api/v1/agencies/268","parent_id":null,"slug":"justice-department"}],"excerpts":"respect to the <span class=\"match\">threat</span> posed to U.S. national <span class=\"match\">security</span> and foreign policy by the continuing effort of countries of concern to access and exploit government-related data or Americans' bulk U.S. <span class=\"match\">sensitive</span> personal data. As described in the Order, this <span class=\"match\">threat</span> to the national <span class=\"match\">security</span> and foreign policy of the United States has its source in whole or substantial part outside the United States. Accordingly, the rule has a direct impact on foreign affairs concerns, which include the protection of national <span class=\"match\">security</span> against external <span class=\"match\">threats</span> (for example,"},{"title":"Notice of Availability of Security Requirements for Restricted Transactions Under Executive Order 14117","type":"Notice","abstract":"CISA is announcing publication of finalized security requirements for restricted transactions pursuant to Executive Order (E.O.) 14117, \"Preventing Access to Americans' Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern.\" In October 2024, CISA published proposed security requirements for restricted transactions which would apply to classes of restricted transactions identified in regulations issued by the Department of Justice (DOJ). CISA solicited comment on those proposed security requirements and considered that public feedback when developing the final security requirements. This notice also provides CISA's responses to the public comments received.","document_number":"2024-31479","html_url":"https://www.federalregister.gov/documents/2025/01/08/2024-31479/notice-of-availability-of-security-requirements-for-restricted-transactions-under-executive-order","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-01-08/pdf/2024-31479.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-31479.pdf?1735911917","publication_date":"2025-01-08","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"}],"excerpts":"subjected to new <span class=\"match\">security</span> requirements without receiving requisite procedural protections for implementing the change, as required by law. \n III. Description of Final <span class=\"match\">Security</span> Requirements \n \n The <span class=\"match\">security</span> requirements are intended to address national-<span class=\"match\">security</span> and foreign-policy <span class=\"match\">threats</span> that arise when countries of concern \n 37 \n \n and covered persons access U.S. government-related data or bulk U.S. <span class=\"match\">sensitive</span> personal data that may be implicated by the categories of restricted transactions. Additional background on the purpose for these <span class=\"match\">security</span> requirements"},{"title":"Modernizing Security Requirements","type":"Proposed Rule","abstract":"The U.S. Nuclear Regulatory Commission (NRC) is proposing to revise its regulations to modernize security and fitness-for-duty requirements to enhance efficiency, consistent with Executive Order 14300, \"Ordering the Reform of the Nuclear Regulatory Commission.\" The proposed revisions are intended to reduce regulatory burden, where appropriate, while continuing to provide reasonable assurance that safety and security will be adequately maintained at NRC-licensed facilities.","document_number":"2026-12989","html_url":"https://www.federalregister.gov/documents/2026/06/26/2026-12989/modernizing-security-requirements","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2026-06-26/pdf/2026-12989.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2026-12989.pdf?1782391523","publication_date":"2026-06-26","agencies":[{"raw_name":"NUCLEAR REGULATORY COMMISSION","name":"Nuclear Regulatory Commission","id":383,"url":"https://www.federalregister.gov/agencies/nuclear-regulatory-commission","json_url":"https://www.federalregister.gov/api/v1/agencies/383","parent_id":null,"slug":"nuclear-regulatory-commission"}],"excerpts":"Safeguarding of National <span class=\"match\">Security</span> <span class=\"match\">Information</span> and Restricted Data. \n The NRC is proposing to revise 10 CFR part 95, “Facility <span class=\"match\">Security</span> Clearance and Safeguarding of National <span class=\"match\">Security</span> <span class=\"match\">Information</span> and Restricted Data,” to remove requirements that are duplicative and to ensure alignment with 32 CFR part 117, “National Industrial <span class=\"match\">Security</span> Program Operating Manual (NISPOM).” These changes would provide references to the applicable provisions of 32 CFR part 117 for implementation of the National Industrial <span class=\"match\">Security</span> Program.\n \n C. Costs and Benefits \n \n The NRC"},{"title":"Issuance of Maritime Security (MARSEC) Directive 105-5; Cyber Risk Management Actions for Ship-to-Shore Cranes Manufactured by People's Republic of China Companies","type":"Notice","abstract":"The Coast Guard announces the availability of Maritime Security (MARSEC) Directive 105-5, which outlines cyber risk management requirements for ship-to-shore cranes manufactured by People's Republic of China (PRC) companies. These requirements are in addition to those previously promulgated via MARSEC Directive 105-4. The Directive contains security-sensitive information and, therefore, cannot be made available to the general public. Owners or operators of ship-to-shore (STS) cranes manufactured by PRC companies should immediately contact their local Coast Guard Captain of the Port (COTP) or District Commander for a copy of MARSEC Directive 105-5.","document_number":"2024-26896","html_url":"https://www.federalregister.gov/documents/2024/11/19/2024-26896/issuance-of-maritime-security-marsec-directive-105-5-cyber-risk-management-actions-for-ship-to-shore","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-11-19/pdf/2024-26896.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-26896.pdf?1731678346","publication_date":"2024-11-19","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"},{"raw_name":"Coast Guard","name":"Coast Guard","id":53,"url":"https://www.federalregister.gov/agencies/coast-guard","json_url":"https://www.federalregister.gov/api/v1/agencies/53","parent_id":227,"slug":"coast-guard"}],"excerpts":"Commanders may provide this MARSEC Directive to appropriate owners and operators via email, mail or fax in accordance with <span class=\"match\">Sensitive</span> <span class=\"match\">Security</span> <span class=\"match\">Information</span> (SSI) handling procedures. \n Pursuant to 33 CFR 101.405, we consulted with the Department of State, Department of Defense, Department of Transportation/Maritime Administration, Department of Homeland <span class=\"match\">Security</span>, Transportation <span class=\"match\">Security</span> Administration, Cybersecurity and Infrastructure <span class=\"match\">Security</span> Agency, and National Maritime Intelligence-Integration Office. \n All MARSEC Directives issued pursuant to 33 CFR 101"},{"title":"Request for Applicants for Appointment to the Aviation Security Advisory Committee","type":"Notice","abstract":"The Transportation Security Administration (TSA) requests that qualified individuals interested in serving on the Aviation Security Advisory Committee (ASAC) apply for appointment. All applicants must represent one of the constituencies specified below to be eligible for appointment and complete applications submitted, as required below, to be considered for appointment.","document_number":"2025-09953","html_url":"https://www.federalregister.gov/documents/2025/06/03/2025-09953/request-for-applicants-for-appointment-to-the-aviation-security-advisory-committee","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-06-03/pdf/2025-09953.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2025-09953.pdf?1748868309","publication_date":"2025-06-03","agencies":[{"raw_name":"DEPARTMENT OF HOMELAND SECURITY","name":"Homeland Security Department","id":227,"url":"https://www.federalregister.gov/agencies/homeland-security-department","json_url":"https://www.federalregister.gov/api/v1/agencies/227","parent_id":null,"slug":"homeland-security-department"},{"raw_name":"Transportation Security Administration","name":"Transportation Security Administration","id":494,"url":"https://www.federalregister.gov/agencies/transportation-security-administration","json_url":"https://www.federalregister.gov/api/v1/agencies/494","parent_id":227,"slug":"transportation-security-administration"}],"excerpts":"TSA, as access to <span class=\"match\">sensitive</span> <span class=\"match\">security</span> <span class=\"match\">information</span> will be necessary. U.S. citizens and those meeting residency requirements will be vetted using TSA's Universal Enrollment Services, which includes the collection of biographic and biometric <span class=\"match\">information</span> to allow TSA to perform the <span class=\"match\">Security</span> <span class=\"match\">Threat</span> <span class=\"match\">Assessment</span>. Selected applicants will be offered a no-cost authorization code to complete the three-step Universal Enrollment Services process; which includes online pre-enrollment, coordinating a visit to an enrollment center, and the in-person visit to the"},{"title":"Provisions Pertaining to Preventing Access to U.S. Sensitive Personal Data and Government-Related Data by Countries of Concern or Covered Persons","type":"Proposed Rule","abstract":"The Department of Justice proposes a rule to implement Executive Order 14117 of February 28, 2024 (Preventing Access to Americans' Bulk Sensitive Personal Data and United States Government- Related Data by Countries of Concern), by prohibiting and restricting certain data transactions with certain countries or persons.","document_number":"2024-24582","html_url":"https://www.federalregister.gov/documents/2024/10/29/2024-24582/provisions-pertaining-to-preventing-access-to-us-sensitive-personal-data-and-government-related-data","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-10-29/pdf/2024-24582.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-24582.pdf?1729628118","publication_date":"2024-10-29","agencies":[{"raw_name":"DEPARTMENT OF JUSTICE","name":"Justice Department","id":268,"url":"https://www.federalregister.gov/agencies/justice-department","json_url":"https://www.federalregister.gov/api/v1/agencies/268","parent_id":null,"slug":"justice-department"}],"excerpts":"personally identifiable <span class=\"match\">information</span> (PII) about U.S. citizens and others, such as biometric and genomic data, health care data, geolocation <span class=\"match\">information</span>, vehicle telemetry <span class=\"match\">information</span>, mobile device <span class=\"match\">information</span>, financial transaction data, and data on individuals' political affiliations and leanings, hobbies, and interests.” \n 2 \n \n These and other kinds of <span class=\"match\">sensitive</span> personal data “can be especially valuable, providing adversaries not only economic and [research and development] benefits, but also useful [counterintelligence] <span class=\"match\">information</span>, as hostile intelligence"},{"title":"Provisions Pertaining to U.S. Investments in Certain National Security Technologies and Products in Countries of Concern","type":"Proposed Rule","abstract":"This proposed rule sets forth regulations that would implement Executive Order 14105 of August 9, 2023, \"Addressing United States Investments in Certain National Security Technologies and Products in Countries of Concern,\" which declares a national emergency to address the threat to the United States posed by countries of concern, which seek to develop and exploit sensitive technologies or products critical for military, intelligence, surveillance, or cyber-enabled capabilities. The proposed rule would require United States persons to provide notification to the U.S. Department of the Treasury regarding certain transactions involving persons of a country of concern who are engaged in activities involving certain national security technologies and products that may contribute to the threat to the national security of the United States; and prohibit United States persons from engaging in certain other transactions involving persons of a country of concern who are engaged in activities involving certain other national security technologies and products that pose a particularly acute national security threat to the United States. This notice of proposed rulemaking (NPRM) seeks public comment on various topics related to the implementation of Executive Order 14105. In accordance with 5 U.S.C. 553(b)(4), a summary of this rule may be found at https:// www.regulations.gov.","document_number":"2024-13923","html_url":"https://www.federalregister.gov/documents/2024/07/05/2024-13923/provisions-pertaining-to-us-investments-in-certain-national-security-technologies-and-products-in","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2024-07-05/pdf/2024-13923.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-13923.pdf?1720010713","publication_date":"2024-07-05","agencies":[{"raw_name":"DEPARTMENT OF THE TREASURY","name":"Treasury Department","id":497,"url":"https://www.federalregister.gov/agencies/treasury-department","json_url":"https://www.federalregister.gov/api/v1/agencies/497","parent_id":null,"slug":"treasury-department"},{"raw_name":"Office of Investment Security","name":"Investment Security Office","id":603,"url":"https://www.federalregister.gov/agencies/investment-security-office","json_url":"https://www.federalregister.gov/api/v1/agencies/603","parent_id":497,"slug":"investment-security-office"}],"excerpts":"of a country of concern who are engaged in activities involving certain national <span class=\"match\">security</span> technologies and products that may contribute to the <span class=\"match\">threat</span> to the national <span class=\"match\">security</span> of the United States; and prohibit United States persons from engaging in certain other transactions involving persons of a country of concern who are engaged in activities involving certain other national <span class=\"match\">security</span> technologies and products that pose a particularly acute national <span class=\"match\">security</span> <span class=\"match\">threat</span> to the United States. This notice of proposed rulemaking (NPRM) seeks public comment"},{"title":"HIPAA Security Rule To Strengthen the Cybersecurity of Electronic Protected Health Information","type":"Proposed Rule","abstract":"The Department of Health and Human Services (HHS or \"Department\") is issuing this notice of proposed rulemaking (NPRM) to solicit comment on its proposal to modify the Security Standards for the Protection of Electronic Protected Health Information (\"Security Rule\") under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the Health Information Technology for Economic and Clinical Health Act of 2009 (HITECH Act). The proposed modifications would revise existing standards to better protect the confidentiality, integrity, and availability of electronic protected health information (ePHI). The proposals in this NPRM would increase the cybersecurity for ePHI by revising the Security Rule to address: changes in the environment in which health care is provided; significant increases in breaches and cyberattacks; common deficiencies the Office for Civil Rights has observed in investigations into Security Rule compliance by covered entities and their business associates (collectively, \"regulated entities\"); other cybersecurity guidelines, best practices, methodologies, procedures, and processes; and court decisions that affect enforcement of the Security Rule.","document_number":"2024-30983","html_url":"https://www.federalregister.gov/documents/2025/01/06/2024-30983/hipaa-security-rule-to-strengthen-the-cybersecurity-of-electronic-protected-health-information","pdf_url":"https://www.govinfo.gov/content/pkg/FR-2025-01-06/pdf/2024-30983.pdf","public_inspection_pdf_url":"https://public-inspection.federalregister.gov/2024-30983.pdf?1735334119","publication_date":"2025-01-06","agencies":[{"raw_name":"DEPARTMENT OF HEALTH AND HUMAN SERVICES","name":"Health and Human Services Department","id":221,"url":"https://www.federalregister.gov/agencies/health-and-human-services-department","json_url":"https://www.federalregister.gov/api/v1/agencies/221","parent_id":null,"slug":"health-and-human-services-department"},{"raw_name":"Office of the Secretary"}],"excerpts":"providers, and health plans) of the <span class=\"match\">security</span> of the <span class=\"match\">sensitive</span> and confidential health <span class=\"match\">information</span> the regulated entities electronically create, receive, maintain, or transmit.\n \n \n As discussed above, the <span class=\"match\">Security</span> Rule carefully balances the benefits of safeguarding against <span class=\"match\">security</span> risks with the burdens of implementing protective measures by permitting regulated entities to consider several factors, including costs and available technology for preventing and mitigating <span class=\"match\">security</span> risks,\n 108 \n \n when determining which <span class=\"match\">security</span> measures are reasonable and"}]}