In 1976, the United States Congress created a new special category of information known as “Sensitive Security Information” (SSI). This new category consists of sensitive information that was gathered or created during security-related activities. Unauthorized disclosure of this information could compromise transportation security, violate individual privacy, expose trade secrets, or reveal other privileged and confidential communications (SSI).
In the aftermath of the September 11, 2001, terrorist attacks in New York City and Washington D.C., the United States Congress passed the ATSA - Aviation and Transportation Security Act on November 16, 2001. ATSA created the TSA and authorized it to improve security for all forms of transportation throughout the United States. The FAA’s regulatory authority for security regulations, including SSI, was transferred by statute to the Transportation Security Administration on February 22, 2002, and it incorporated the regulations into its own Transportation Security Regulations (TSR).
What is SSI: Sensitive Security Information?
Sensitive Security Information: SSI refers to sensitive but unclassified U.S. transportation security information that could compromise transportation systems if publicly disclosed. This includes security plans, vulnerability assessments, incident reports, and critical technical details that form the backbone of transportation security operations. Rather than locking this information away entirely, SSI creates a controlled and trusted channel through which Federal, State, local, tribal, and foreign government agencies, U.S. and foreign air carriers, and other relevant parties can exchange critical security information without the risk of public exposure.
What are the SSI Requirements?
The safeguarding and sharing of SSI are governed by Title 49 Code of Federal Regulations (CFR), parts 15 and 1520. These regulations establish specific requirements for handling and protecting SSI, including:
- Lock Up All SSI: Store SSI in a secure container such as a locked file cabinet or drawer or in a locked room (as defined by Federal regulation 49 C.F.R. part 1520.9 (a)(1)).
- Mark SSI: Under Federal Regulation 49 C.F.R. part 1520.13, every page of the document must be marked with the SSI header and footer, even when only a small portion of a paper document contains SSI. Alteration of the footer is strictly prohibited.
- Destroy SSI: Destruction of SSI must be complete to preclude recognition or reconstruction of the information when the covered person no longer needs the SSI to carry out transportation security measures (as defined by 49 C.F.R. part 1520.19).
Who are Covered Persons Under SSI Regulations?
SSI is designed to ensure that sensitive information reaches only those who really need it, such as individuals directly involved in protecting or overseeing the nation’s transportation system. This "need to know" principle means access is not freely given but deliberately granted to authorized personnel. Under 49 C.F.R. § 1520.7, the following are recognized as “covered persons” with potential access to SSI based on their role in transportation security:
- Airport, aircraft, and fixed base operators (subject to subchapter C)
- Armed security officers under subpart B of part 1562
- Indirect air carriers (IAC) as described in 49 CFR part 1548
- Certified cargo screening facilities and their personnel under 49 CFR 1549
- Vessel owners, charterers, and operators (including foreign entities) covered under Federal or international security plan laws.
- Maritime facility owners and operators governed by MTSA security plan requirements
- Computer reservation and global distribution system operators (airline passenger information)
- National, area, and port security committee participants under 46 U.S.C. 70112
- Industry trade associations with a DHS or DOT non-disclosure agreement
- Department of Homeland Security (DHS) and Department of Transportation (DOT)
- Persons conducting DHS/DOT‑approved or directed aviation or maritime security R&D
- Persons employed by, contracted to, or acting for a covered person
- Persons subject to DHS or DOT directed vulnerability assessments
- Persons receiving SSI under § 1520.15(d) or (e)
How to Recognize, Mark & Destroy SSI?
Properly recognizing, marking, and destroying SSI is a critical responsibility for all covered persons. Failure to do so can result in unauthorized disclosure, legal consequences, and serious risks to national transportation security, as governed by 49 C.F.R. Part 1520.
Recognizing SSI
The SSI regulation identifies 16 categories of information subject to protection. It grants the Secretary of Homeland Security and the TSA Administrator authority to designate additional information as SSI when circumstances warrant.
- Security programs, security plans, and contingency plans
- Security Directives
- Information Circulars
- Performance specifications
- Vulnerability assessments
- Security inspection or investigative information
- Threat information
- Security measures
- Security screening information
- Security training materials
- Identifying information of certain transportation security personnel
- Critical transportation infrastructure asset information
- Systems security information
- Confidential business information
- Research and development
- Other information, as determined in writing by the TSA Administrator
Marking SSI
SSI marking requirements mandate that all pages of a document carry the official SSI header and footer, regardless of whether the sensitive content appears on every page or only in select portions of the document.
Under 49 C.F.R. § 1520.13, covered persons must place the protective marking at the top and the distribution limitation statement at the bottom of:
- The outside of any front and back cover, including binder covers or folders
- Any title pages
- Each page of the document
TSA defines Do’s and Don’ts for Marking and handling SSI in their SSI Quick Reference Guide for DHS Employees and Contractors.
Destroying SSI
Under 49 C.F.R. § 1520.19, SSI destruction is governed by two obligations. DHS must destroy SSI records in compliance with the Federal Records Act (5 U.S.C. § 105) only when they are no longer needed to carry out agency functions. All other covered persons must destroy SSI completely once it is no longer needed for transportation security purposes, ensuring it cannot be recognized or reconstructed in any form. The following destruction methods are approved based on the type of SSI (Physical or Electronic):
- Physical: Hard Copy & Paper Materials: Physical SSI documents must be destroyed through shredding, burning, pulping, or pulverizing beyond any possibility of recognition or reconstruction. Once destroyed, the remaining materials may be disposed of through normal waste or recycling channels.
- Electronic Records: Electronic SSI may be deleted in accordance with policies or procedures issued or approved by the TSA SSI Office. Electronic storage media, including compact discs, personal computers, and other hardware devices, must be appropriately sanitized through overwriting or degaussing. Overwriting storage media like HDD or SSD requires the use of professional data erasure software.
For TSA stakeholders required to comply with stringent Sensitive Security Information (SSI) destruction regulations, certified data erasure software offers a secure, auditable, and environmentally responsible alternative to physical media destruction. By following DoD and NIST SP 800-88 Rev. 2 media sanitization guidelines, the software permanently removes data using proven erasure methods, ensuring electronic SSI is irretrievable and cannot be recovered by any known means or in a laboratory setting. This enables contractors and employees to meet SSI destruction requirements while minimizing unnecessary e-waste. Further, the software generates a digitally signed tamper-proof Certificate of Erasure for audit and compliance purposes. This helps non-DHS employees and contractors ensure sensitive data has been destroyed beyond forensic recovery while remaining compliant with 49 C.F.R. § 1520.19.
Conclusion!
Sensitive Security Information (SSI) is a legally protected category of the United States transportation security framework established to protect sensitive data from unauthorized disclosure and potential breaches. SSI carries significant legal weight, defining who may access it, how it must be marked, and the precise methods by which it must be destroyed permanently. Proper handling of SSI is a fundamental responsibility shared by all covered persons in safeguarding the security of the nation's transportation system. Destruction of this information must be done via a secure data erasure software that is compliant with NIST Special Publication 800-88 Rev. 2 guidelines. This ensures data is permanently sanitized and irretrievable while enabling device reuse, reducing e-waste, and minimizing environmental impact.
+1-844-775-0101
