In Brief

What a Guilty Person Looks Like

A list of the physical visual tells used in behavioral profiling to catch potential bad guys

By Katherine Walsh

December 01, 2006CSO

During the past three years, the Transportation Security Administration has been testing a security

program that examines how people behave, rather than how they look. The Screening Passengers by

Observation Techniques (SPOT) program was first deployed in airports throughout the Northeast in

mid-2003, and is now being implemented in airports nationwide. George Naccara, federal security

director of TSA, who is overseeing the SPOT program nationwide, describes SPOT as an additional layer

of security: "flexible and adaptable. It focuses on behavior observation, he says, looking for things out

of the ordinary, that indicate "stress, fear or deception.

Part of SPOT derives from work by a noted psychologist, Paul Ekman, a pioneer in recognizing facial

patterns that correspond to certain behaviors and emotionsquite literally he can spot

happiness, sadness, fear and so on as they flash across faces. But Naccara and proponents of

behavioral pattern recognition in general acknowledge that many people become nervous when they fly,

exhibiting "abnormal behaviors that are, in fact, very normal. That's why before tagging someone as

suspicious, TSA personnel must identify a certain number of behaviors using SPOT. "If they reach a

certain thresholdwhich would require an aggregate of different behaviorsthen we

might treat them as selectees, which subjects them to additional screening, says Naccara. "Or, we may

call a law enforcement officer over to engage in additional discussion and interrogation in order to

resolve any uneasiness we have with that passenger. This discussion with the suspect, sometimes

called a "walk and talk, is key to the success of behavioral profiling.

It takes a lot of training. But once screeners are trained, proponents say, the behaviors become

remarkably clear. One TSA staffer trained at Boston's Logan International Airport says that after his

training it was as if suspicious people were dyed purple. He also consistently spots people shoplifting in

stores when he's not working.

Katherine Walsh

Some of the things TSA employees might look for include:

  • Rapidly darting eyes

  • Deliberate and forceful attempts to make eye contact or trade hand gestures with a specific person,

    perhaps a coconspirator

  • Quivering, overactive Adam's apple in men

  • Profuse sweating

  • Pulsing carotid artery, a tell used by a Utah state trooper who identified a wanted polygamist by his

    throbbing neck vein

  • Inappropriate clothing for the weather conditions

  • Voice changes, overly combative or stressful tones of voice, regardless of what one is saying

  • Loitering without luggage

  • Long periods studying parts of the airport, especially security areas

  • Anything else that seems, intuitively, suspicious

Other stories by Katherine Walsh

RESOURCE CENTER
Loading...
VIRTUAL CONFERENCE
Data Center Directions Virtual Conference

Data Center VCAttend this free, 100% online event exploring tools and techniques for making your data center deliver for today and tomorrow.

» Learn more and register here

WHITE PAPER
Maximizing Site Visitor Trust Using Extended Validation SSL

VeriSignNow with Extended Validation (EV) SSL available from VeriSign, you can show your customers that they can trust your site. Learn about EV SSL benefits in the free VeriSign white paper.

» Read the Paper

Featured Sponsors
Sponsored Links

Manage your IT more effectively

Simplify your data center with Juniper Networks. View the webcast

Efficient - Flexible - Compliant

How Are Open Source Development Communities Embracing Security Best Practices?

IDC Defines an Identity and Access Management Submarket

Using Likewise to Comply with PCI Data Security Standard

IDC Defines an Identity and Access Management Submarket for Managing Privileged User Accounts and Meeting GRC Requirements

Enabling Compliance with Converged Mainframe Security and Storage

Managing SSL Security in Multi-Server Environments

The Latest Advancements in SSL Technology

How to Offer the Strongest SSL Encryption

Forrester Total Economic Impact (TEI) report: Save Millions in Fraud Losses.

Get in Compliance With Government Data Regulations

Taking the Botnet Threat Seriously

CA's IT Security centralizes your identity management to turn security into a proactive, business-building tool

Secure your virtual and physical environments with the same software

Any company can promise identity protection. Only Debix can prove it

Envision Identity-Based Access Control for the Datacenter

Digital Identity Protection and Data Security Get Personal

Welcome to the age of Service-Oriented Security (SOS)

When Customer Relationship is Everything, Businesses Bank on SSL Solutions

Everything Today's CISO Needs to Know About Using SSO to Succeed in the Web 2.0 Era

The Case for Business Software Assurance ~ Securing Your Applications

Maximizing Site Visitor Trust Using Extended Validation SSL

Solving Online Credit Fraud Using Device Reputation

Understanding Data Location is Imperative for Data Loss Prevention

5 Steps to Secure Outsourced Application Development