Originally Posted by
cordelli
The document linked above says it's an XP9(e) machine with USB ports. Access is controlled by user level, with a super user (Level Z) being able to access way more than they are telling the public, including the ability to disable the privacy filters.
When in test mode, they can store and transmit images per their specs.
The specifications also state they will have a high capacity read / write drive, and ethernet ports. The official answer is all that stuff will be disabled before installation, but of course, why have it in the first place then?
(bolding mine)
For the remote viewing capability that TSA is using (aka peep show booth), I'd be willing to bet that the scanner would have to transmit images somehow-- most like via Ethernet using some networking protocol. If not using some network to transmit the information, the only other option I can think of off the top of my head would be a reeeeeeallly long monitor cable.
Now, if it does use some sort of network to transmit images, it's anybody's guess as to what networking protocol is used and if the information is encrypted prior to transmitting.
I'd also be willing to bet that the device uses some area on the hard drives for temporary storage-- even when operating outside of 'test mode'. Perhaps the average TSA screening clerk doesn't have the ability to access the temporary area (image cache?) to save the data (hence TSA's claim of not storing images), but I'll bet my bottom dollar that
someone at the airport does.
Of course, these are just hunches... but it would start addressing my myriad of privacy concerns if TSA could convincingly prove them incorrect. Unfortunately, the only way to really do that would likely require providing access to information that they've probably classified as "SSI" (even though, IMHO, it shouldn't be).