b'<html>\n<title> - USING UNMANNED AERIAL SYSTEMS WITHIN THE HOMELAND: SECURITY GAME-CHANGER?</title>\n<body><pre>[House Hearing, 112 Congress]\n[From the U.S. Government Publishing Office]\n\n\n\n \nUSING UNMANNED AERIAL SYSTEMS WITHIN THE HOMELAND: SECURITY GAME-CHANGER?\n\n=======================================================================\n\n                                HEARING\n\n                               before the\n\n                       SUBCOMMITTEE ON OVERSIGHT,\n                     INVESTIGATIONS, AND MANAGEMENT\n\n                                 of the\n\n                     COMMITTEE ON HOMELAND SECURITY\n                        HOUSE OF REPRESENTATIVES\n\n                      ONE HUNDRED TWELFTH CONGRESS\n\n                             SECOND SESSION\n\n                               __________\n\n                             JULY 19, 2012\n\n                               __________\n\n                           Serial No. 112-107\n\n                               __________\n\n       Printed for the use of the Committee on Homeland Security\n                                     \n\n[GRAPHIC] [TIFF OMITTED] TONGRESS.#13\n\n\n                                     \n\n      Available via the World Wide Web: http://www.gpo.gov/fdsys/\n\n                               __________\n\n\n\n                  U.S. GOVERNMENT PRINTING OFFICE\n80-848                    WASHINGTON : 2013\n-----------------------------------------------------------------------\nFor sale by the Superintendent of Documents, U.S. Government Printing Office, \nhttp://bookstore.gpo.gov. For more information, contact the GPO Customer Contact Center, U.S. Government Printing Office. Phone 202\xef\xbf\xbd09512\xef\xbf\xbd091800, or 866\xef\xbf\xbd09512\xef\xbf\xbd091800 (toll-free). E-mail, <a href="/cdn-cgi/l/email-protection" class="__cf_email__" data-cfemail="94f3e4fbd4f7e1e7e0fcf1f8e4baf7fbf9ba">[email&#160;protected]</a>  \n\n\n                     COMMITTEE ON HOMELAND SECURITY\n\n                   Peter T. King, New York, Chairman\nLamar Smith, Texas                   Bennie G. Thompson, Mississippi\nDaniel E. Lungren, California        Loretta Sanchez, California\nMike Rogers, Alabama                 Sheila Jackson Lee, Texas\nMichael T. McCaul, Texas             Henry Cuellar, Texas\nGus M. Bilirakis, Florida            Yvette D. Clarke, New York\nPaul C. Broun, Georgia               Laura Richardson, California\nCandice S. Miller, Michigan          Danny K. Davis, Illinois\nTim Walberg, Michigan                Brian Higgins, New York\nChip Cravaack, Minnesota             Cedric L. Richmond, Louisiana\nJoe Walsh, Illinois                  Hansen Clarke, Michigan\nPatrick Meehan, Pennsylvania         William R. Keating, Massachusetts\nBen Quayle, Arizona                  Kathleen C. Hochul, New York\nScott Rigell, Virginia               Janice Hahn, California\nBilly Long, Missouri                 Ron Barber, Arizona\nJeff Duncan, South Carolina\nTom Marino, Pennsylvania\nBlake Farenthold, Texas\nRobert L. Turner, New York\n            Michael J. Russell, Staff Director/Chief Counsel\n               Kerry Ann Watkins, Senior Policy Director\n                    Michael S. Twinchek, Chief Clerk\n                I. Lanier Avant, Minority Staff Director\n                                 ------                                \n\n       SUBCOMMITTEE ON OVERSIGHT, INVESTIGATIONS, AND MANAGEMENT\n\n                   Michael T. McCaul, Texas, Chairman\nGus M. Bilirakis, Florida            William R. Keating, Massachusetts\nBilly Long, Missouri, Vice Chair     Yvette D. Clarke, New York\nJeff Duncan, South Carolina          Danny K. Davis, Illinois\nTom Marino, Pennsylvania             Bennie G. Thompson, Mississippi \nPeter T. King, New York (Ex              (Ex Officio)\n    Officio)\n                  Dr. R. Nick Palarino, Staff Director\n                   Diana Bergwin, Subcommittee Clerk\n              Tamla Scott, Minority Subcommittee Director\n\n\n                            C O N T E N T S\n\n                              ----------                              \n                                                                   Page\n\n                               STATEMENTS\n\nThe Honorable Michael T. McCaul, a Representative in Congress \n  From the State of Texas, and Chairman, Subcommittee on \n  Oversight, Investigations, and Management:\n  Oral Statement.................................................     1\n  Prepared Statement.............................................     3\nThe Honorable William R. Keating, a Representative in Congress \n  From the State of Massachusetts, and Ranking Member, \n  Subcommittee on Oversight, Investigations, and Management:\n  Prepared Statement.............................................    30\nThe Honorable Henry Cuellar, a Representative in Congress From \n  the State of Texas.............................................     5\nThe Honorable Bennie G. Thompson, a Representative in Congress \n  From the State of Mississippi, and Ranking Member, Committee on \n  Homeland Security:\n  Prepared Statement.............................................    10\n\n                               WITNESSES\n                                Panel I\n\nMr. Todd E. Humphreys, Ph.D., Assistant Professor, Cockrell \n  School of Engineering, The University of Texas at Austin:\n  Oral Statement.................................................    12\n  Prepared Statement.............................................    13\n\n                                Panel II\n\nMr. Gerald L. Dillingham, Ph.D., Director, Physical \n  Infrastructure Issues, Government Accountability Office:\n  Oral Statement.................................................    36\n  Prepared Statement.............................................    38\nChief Deputy William R. McDaniel, Montgomery County Sheriff\'s \n  Office, Conroe, Texas:\n  Oral Statement.................................................    46\n  Prepared Statement.............................................    47\nMs. Amie Stepanovich, Litigation Counsel, Electronic Privacy \n  Information Center:\n  Oral Statement.................................................    49\n  Prepared Statement.............................................    50\n\n                             FOR THE RECORD\n\nThe Honorable Michael T. McCaul, a Representative in Congress \n  From the State of Texas, and Chairman, Subcommittee on \n  Oversight, Investigations, and Management:\n  Statement of Michael Toscano, President and CEO, Association \n    for Unmanned Vehicle Systems International (AUVSI)...........     6\n  Letter From the Air Line Pilots Association International......     9\nAssociation for Unmanned Vehicle Systems International:\n  Unmanned Aircraft System Operations Industry ``Code of \n    Conduct\'\'....................................................    61\n\n\n   USING UNMANNED AERIAL SYSTEMS WITHIN THE HOMELAND: SECURITY GAME-\n                                CHANGER?\n\n                              ----------                              \n\n\n                        Thursday, July 19, 2012\n\n             U.S. House of Representatives,\n    Subcommittee on Oversight, Investigations, and \n                                        Management,\n                            Committee on Homeland Security,\n                                                    Washington, DC.\n    The subcommittee met, pursuant to call, at 9:40 a.m., in \nRoom 311, Cannon House Office Building, Hon. Michael T. McCaul \n[Chairman of the subcommittee] presiding.\n    Present: Representatives McCaul, Long, Duncan, Marino, \nKeating, Clarke, and Davis.\n    Also present: Representatives Cuellar and Brady.\n    Mr. McCaul. The committee will come to order. First and as \na matter of business, Mr. Keating is running late, and I would \nask unanimous consent that Mr. Cuellar sit as the Ranking \nMember of the subcommittee for this hearing. Seeing no \nobjection? Mr. Duncan, you have no objection to that?\n    I now recognize myself for an opening statement.\n    Unmanned aerial systems, commonly known as drones, have \nbeen a game-changer for our men and women serving in Iraq and \nAfghanistan. The systems have provided our troops with much-\nneeded eyes in the skies and have taken the fight to the enemy, \neliminating some of the most dangerous al-Qaeda terrorists. \nDrones have also increased our capabilities to secure our \nborders and aid our first responders.\n    U.S. Customs and Border Protection began first looking at \nthese drones back in 2004. Now CBP owns 10 UAS aircraft. These \nsystems have been used to surveil drug smuggler tunnels, video \ndams, bridges, levees, riverbeds at risk of flooding, and \nassist with the deployment of National Guard resources \nresponding to local flooding. CBP has also flown missions in \nsupport of the Border Patrol, Texas Rangers, U.S. Forest \nService, FBI, and others. The systems have become a force \nmultiplier for military operations and for border security.\n    However, we are on the edge of a new horizon: Using \nunmanned aerial systems within the homeland. Currently, there \nare 200 active Certificates of Authorization issued by the \nFederal Aviation Administration to over 100 different entities, \nsuch as law enforcement departments and academic institutions, \nto fly drones domestically. This map on the monitor shows the \nlocations of COA, or COA recipients as of April 2012. The \nnumber of recipients since that time has in fact increased.\n    The FAA plans to select six test sites around the country \nfor the use of non-Government drones this year and plans to \nallow the deployment of non-Government drones Nation-wide by \nthe year 2015.\n    While the FAA is responsible for ensuring these systems fly \nsafely in U.S. airspace, with only 2\\1/2\\ short years until \ndrones begin to dominate the skies in the U.S. homeland, no \nFederal agency is taking the lead to deal with the full \nimplications of using unmanned aerial systems and developing \nthe relevant policies and guidelines for their use. This is \ndespite the fact that 4 years ago the Government Accountability \nOffice recommended to the Secretary of Homeland Security that \nshe direct the TSA Administrator to examine the security \nimplications of future, non-military UAS operations in the \nNational airspace system and take any actions deemed \nappropriate.\n    GAO\'s recommendation was well-founded because in 2004, TSA \nissued an advisory that described possible terrorist interest \nin using UASs as weapons. The advisory noted the potential for \nUASs to carry explosives or disperse chemical or biological \nweapons. It discussed how the Revolutionary Armed Forces of \nColombia, or FARC, and Hezbollah were interested in acquiring \nthese UASs. While the advisory acknowledged there was no \ncredible evidence to suggest that terrorist organizations \nplanned to use these systems in the United States, it did state \nthat the United States Government was concerned that these \naerial vehicles could be modified and used to attack key assets \nand critical infrastructures within the United States.\n    These concerns were validated just last week, or last year \nwhen a Massachusetts man agreed to plead guilty to attempting \nto damage and destroy Federal buildings. The individual was \narrested in September 2011 after an undercover FBI \ninvestigation revealed his plot to use multiple remote \ncontrolled aircraft laden with explosives to collapse the dome \nof the United States Capitol and attack the Pentagon using that \nUAV system.\n    As if this plot wasn\'t frightening enough, cutting-edge \nresearch out of the University of Texas at Austin has revealed \nyet more security vulnerabilities. Specifically, researchers \nfrom the Cockrell School of Engineering led by Dr. Todd \nHumphreys, who is our first witness today, proved that civilian \nunmanned aerial systems can be hacked into and hijacked with a \nrelatively small investment of money and time. These findings \nare alarming and have revealed a gaping hole in the security of \nusing unmanned aerial systems domestically. Now is the time to \nensure these vulnerabilities are mitigated to protect our \naviation system as the use of unmanned aerial systems continue \nto grow.\n    The Department of Homeland Security\'s mission is to protect \nthe homeland. Unfortunately, DHS seems either disinterested or \nunprepared to step up to the plate to address the proliferation \nof unmanned aerial systems in U.S. airspace. The potential \nthreats they pose to our National security and the concerns our \ncitizens have of how drones fly over cities will be used, \nincluding protecting civil liberties of individuals under the \nConstitution.\n    For example, in discussions with my subcommittee staff \nprior to this hearing, Department officials repeatedly stated \nthat the Department does not see this function, the domestic \nuse of drones, as part of their mission and has no role in the \ndomestic unmanned aerial systems. I strongly disagree. I can\'t \nimagine how they would find that they have no role when there \nis a terror plot thwarted by the FBI attempting to hit the \nUnited States Capitol and the Pentagon. What more Homeland \nSecurity interest could there possible be?\n    DHS\'s lack of attention about this issue is truly \nincomprehensible.\n    It should not take a 9/11-style attack by a terrorist \norganization such as Hezbollah or a lone wolf-inspired event to \ncause DHS to develop guidance addressing the security \nimplications of domestic drones. It should not take a hearing \nto force the DHS to develop policy when it comes to the \nsecurity of our homeland, and what it should take is \nresponsible leadership willing to recognize a potential threat \nand take the initiative. DHS lacks this initiative and I am \nconcerned that DHS is reverting back to a pre-9/11 mindset, \nwhich the 9/11 Commission described as a lack of imagination in \nidentifying threats and protecting the homeland.\n    We are disappointed that DHS declined to testify here \ntoday. This is simply another example of how DHS leadership is \nfailing to get ahead of the curve on an issue which directly \nimpacts the security of the United States. I hope our \nwitnesses\' testimony will be a call to action for the \nDepartment. During today\'s testimony we look forward to \nlearning more about the security issues related to the domestic \nuse of drones and what DHS needs to do to prepare for their \nwidespread use.\n    [The statement of Mr. McCaul follows:]\n\n                Statement of Chairman Michael T. McCaul\n                             July 19, 2012\n\n    Unmanned aerial systems, commonly known as ``drones\'\', have been a \ngame changer for our men and women serving in Iraq and Afghanistan. \nThese systems have provided our troops with much-needed ``eyes in the \nsky\'\' and have taken the fight to the enemy, eliminating some of the \nmost dangerous al-Qaeda terrorists. Drones have also increased our \ncapabilities to secure our borders and aid first responders.\n    U.S. Customs and Border Protection began first looking at using \ndrones back in 2004. Now, CBP owns ten UAS aircraft. These systems have \nbeen used to surveil drug smuggling tunnels; video dams, bridges, \nlevees, and riverbeds at risk of flooding; and assist with the \ndeployment of National Guard resources responding to local flooding. \nCBP has flown missions in support of the Border Patrol, Texas Rangers, \nU.S. Forest Service, FBI, and others. These systems have become a force \nmultiplier for military operations and border security.\n    However, we are now on the edge of a new horizon: Using unmanned \naerial systems within the homeland. Currently, there are about 200 \nactive Certificates of Authorization issued by the Federal Aviation \nAdministration to over 100 different entities, such as law enforcement \ndepartments and academic institutions, to fly drones domestically. This \nmap shows the location of COA recipients as of April 2012. The number \nof recipients since that time has increased.\n    The FAA plans to select six test sites around the country for the \nuse of non-Government drones this year and plans to allow the \ndeployment of non-Government drones Nation-wide by 2015.\n    While the FAA is responsible for ensuring these systems fly safely \nin U.S. airspace, with only 2\\1/2\\ short years until drones begin to \ndominate the skies in the U.S. homeland, no Federal agency is taking \nthe lead to deal with the full implications of using unmanned aerial \nsystems and developing the relevant policies and guidelines for their \nuse. This is despite the fact that 4 years ago the Government \nAccountability Office recommended the Secretary of Homeland Security \ndirect the TSA Administrator to examine the security implications of \nfuture, non-military UAS operations in the National airspace system and \ntake any actions deemed appropriate.\n    GAO\'s recommendation was well-founded because in 2004 TSA issued an \nadvisory that described possible terrorist interest in using UASs as \nweapons. The advisory noted the potential for UASs to carry explosives \nor disperse chemical or biological weapons. It discussed how the \nRevolutionary Armed Forces of Columbia, or FARC, and Hezbollah were \ninterested in acquiring UASs. While the advisory acknowledged there was \nno credible evidence to suggest that terrorist organizations planned to \nuse these systems in the United States, it did state that the U.S. \nGovernment was concerned that these aerial vehicles could be modified \nand used to attack key assets and critical infrastructure in the United \nStates.\n    These concerns were validated just last week when a Massachusetts \nman agreed to plead guilty to attempting to damage and destroy Federal \nbuildings. The individual was arrested in September 2011 after an \nundercover FBI investigation revealed his plot to use multiple remote-\ncontrolled aircraft laden with explosives to collapse the dome of the \nU.S. Capitol and attack the Pentagon.\n    As if this plot wasn\'t frightening enough, cutting-edge research \nout of the University of Texas at Austin has revealed yet more security \nvulnerabilities. Specifically, researchers from the Cockrell School of \nEngineering led by Dr. Todd Humphreys proved that civilian unmanned \naerial systems can be hacked into and hijacked with a relatively small \ninvestment of money and time. These findings are alarming and have \nrevealed a gaping hole in the security of using unmanned aerial systems \ndomestically. Now is the time to ensure these vulnerabilities are \nmitigated to protect our aviation system as the use of unmanned aerial \nsystems continues to grow.\n    The Department of Homeland Security mission is to protect the \nhomeland. Unfortunately, DHS seems either disinterested or unprepared \nto step up to the plate to address the proliferation of Unmanned Aerial \nSystems in U.S. air space, the potential threats they pose to our \nNational security, and the concerns of our citizens of how drones \nflying over our cities will be used including protecting civil \nliberties of individuals under the Constitution. For example, in \ndiscussions with my subcommittee staff prior to this hearing, \nDepartment officials repeatedly stated the Department does not see this \nfunction (domestic use of drones) as part of their mission and has no \nrole in domestic unmanned aerial systems. I strongly disagree.\n    DHS\'s lack of attention about this issue is incomprehensible. It \nshould not take a 9/11-style attack by a terrorist organization such as \nHezbollah or a lone wolf-inspired event to cause DHS to develop \nguidance addressing the security implications of domestic drones. It \nshould not take a hearing to force DHS to develop policy when it comes \nto the security of our homeland. What it should take is responsible \nleadership willing to recognize a potential threat and take the \ninitiative. DHS lacks that initiative. I am concerned DHS is reverting \nback to a pre-9/11 mindset, which the 9/11 Commission described as a \nlack of imagination in identifying threats and protecting the homeland.\n    We are disappointed DHS declined to testify today. This is simply \nanother example of how DHS leadership is failing to get ahead of the \ncurve on an issue which directly impacts the security of the United \nStates. I hope that our witnesses\' testimony will be a call to action \nfor the Department. During today\'s testimony, we look forward to \nlearning more about the security issues related to the domestic use of \ndrones and what DHS needs to do to prepare for their widespread use.\n\n<GRAPHIC(S) NOT AVAILABLE IN TIFF FORMAT>\n\n<GRAPHIC(S) NOT AVAILABLE IN TIFF FORMAT>\n\n\n    Mr. McCaul. With that, the Chairman now recognizes the \nRanking Member, I guess pro tem, Mr. Cuellar.\n    Mr. Cuellar. Thank you very much, Mr. Chairman. Thank you \nfor this opportunity to be here with you as the Ranking Member \nfor the Border-Maritime where we deal with border security and \ndealing with some of the UAVs that I think you and I have \nworked on together. It certainly gives us an opportunity, and \nalso as the co-chair of the Congressional Unmanned System \nCaucus with Congressman Buck McKeon. Just for informational \npurposes, Members, we do have tomorrow a caucus meeting, and we \nare going to have Members, representatives from the FBI, DHS, \nCBP tomorrow at 10:00 at the Rayburn Room 2261. I will give a \ncopy to the Members here. This will be an excellent opportunity \nfor Members and their staff to learn about current and future \ndomestic law enforcement use of unmanned aerial vehicles.\n    We have, Buck McKeon and myself, have spent a lot of time \nwith other Members of the caucus looking at the issues that you \nhave brought up, Mr. Chairman, privacy issues that have been \nbrought up, and as you know a lot of the privacy issues have \nalready been decided by the Supreme Court. All we are looking \nat is using a different type of platform. So whether it is a \nhelicopter, an airplane, or in this case a UAV, a lot of those \nissues have been addressed by the Supreme Court issues, and \nthere is 1, 2 pages that I have though. So if anybody wants to \nlearn about the privacy issues on drones or UAVs, please \ncontact my office or Buck\'s office.\n    But the other thing, Mr. Chairman, you do bring up a lot of \ngood points that I think we need to cover. Good questions. I \nlook forward to hearing from my UT graduate also, from UT. I do \nhave two degrees from UT, and Doctor, it is a pleasure meeting \nyou. I do have a few questions for you on that, but I think \nthis type of a dialogue would be good to talk about the UAVs.\n    One last thing, Mr. Chairman, as you mentioned, the FAA, we \ndid pass the reauthorization of the FAA that talks about the \nintegration of more civilian UAVs and there are different steps \nwe have brought in. If you haven\'t talked to the FAA, I would \nask you to spend some time with the FAA because they have \ncertain steps that they will be going into the future use on \nthis. I know that the Ranking Member, Mr. Keating, for this \nparticular subcommittee is on his way. He does have a \nstatement. I am not going to read his statement. He will be up \nhere and if you will give him the opportunity to also make that \nstatement when he shows up.\n    But at this time, Mr. Chairman, thank you for allowing me \nto be here with you.\n    Mr. McCaul. I thank the Ranking Member, and before I \ncontinue I ask unanimous consent to include a statement from \nMr. Michael Toscano, president and CEO of the Association for \nUnmanned Vehicle Systems International, and Captain Lee Moak, \nthe president of the Airline Pilots Association, describing the \ndomestic use of UAS, both of whom are very much in favor of \nthis hearing. Hearing no objection, so ordered.\n    [The statements of Mr. Toscano and Mr. Moak follow:]\n\n   Statement of Michael Toscano, President and CEO, Association for \n             Unmanned Vehicle Systems International (AUVSI)\n\n    On behalf of the Association for Unmanned Vehicle Systems \nInternational (AUVSI) and its members, I want to thank the committee \nfor examining important issues relating to the expansion of unmanned \naircraft systems (UAS) in the National Airspace System. Unmanned \naircraft extend human potential and allow us to execute dangerous or \ndifficult tasks safely and efficiently, saving time, saving money and, \nmost importantly, saving lives.\n    Whether it is helping search-and-rescue teams find a lost child, \ngiving researchers a new understanding of hurricanes, or helping to \nfight wildfires, the applications of unmanned aircraft in the United \nStates are virtually limitless. The incredible benefits of UAS aren\'t \njust theoretical, however; the technology is already serving important \nhomeland security and safety functions here at home. For example:\n  <bullet> U.S. Customs and Border Protection (CPB) currently uses UAS \n        to monitor the border to help interdict illicit trafficking. \n        According to the CPB\'s Office of Air and Marine, unmanned \n        aircraft in 2011 assisted with the seizure of thousands of \n        pounds of narcotics and the apprehension of dozens of \n        individuals taking part in illegal activities.\n  <bullet> UAS aided the response to the severe flooding of the Red \n        River in the upper Midwest in April 2011. According to the U.S. \n        Customs and Border Protections Office, which leant the UAS to \n        the effort, the UAS mapped more than 800 nautical miles along \n        the flooded tributaries and basins in Minnesota and North \n        Dakota, and provided streaming video and analysis of the areas \n        affected by the flood such as levee integrity and ice damming. \n        The information provided by UAS gave forecasters more accurate \n        predictions of when and where the flooding would be at its \n        worst.\n  <bullet> In 2008, NASA assisted the State of California in fighting \n        wildfires with the use of Ikhana, a UAS equipped with advanced \n        technology. The information about the fires collected by Ikhana \n        was transmitted to command centers within minutes, and then \n        distributed into the field giving firefighters crucial \n        situational awareness.\n  <bullet> UAS were used to help search-and-rescue teams in the \n        aftermath of Hurricane Katrina. Scientists from the University \n        of South Florida worked with Florida rescuers in Mississippi, \n        in what was the first known use of small UAS for an actual \n        disaster. Brought in to survey Pearlington, MS, within 2 hours, \n        the responders had the data from the UAS showing that no \n        survivors were trapped and that the flood waters from the \n        cresting Pearl River were not posing an additional threat.\n    These are just a few examples of the real-world security and safety \napplications of UAS. And there are likely many more. As with any new \nrevolutionary technology, all of the potential uses of UAS have \nprobably not been thought of yet.\n    It\'s important to note, meanwhile, that, just as we recognize the \nbeneficial security and safety functions of UAS, so too does the \nAmerican public. According to a recent National poll conducted by \nMonmouth University in New Jersey, nearly two-thirds of Americans \nsupport the use of unmanned aircraft to protect the U.S. borders and \ncontrol illegal immigration. Eighty percent of Americans support the \nuse of unmanned aircraft to help in search-and-rescue missions.\n    As we further integrate UAS into the U.S. airspace and recognize \nthe corresponding security and safety benefits, we are also mindful \nthat UAS operations and the technology itself must be as safe as \npossible. Safety has always been a top priority for the industry, and \nwe are already working with a variety of stakeholders to ensure \nunmanned aircraft are integrated safely into our Nation\'s airspace. The \nindustry is in regular contact with the Federal Aviation Administration \n(FAA) and we have met with, and continue to maintain an open dialogue \nwith, representatives from the pilot community, air traffic \ncontrollers, and others with an interest in aviation safety.\n    Safety is also one of three main pillars of the industry\'s new Code \nof Conduct published earlier this month. We understand and take very \nseriously the need to conduct UAS operations in safe manner that \nmitigates risk and instills confidence in our systems. Specifically \nwith regard to safety, the guidelines recommend when and by whom UAS \nshould be flown, address training and crew fitness requirements, call \nfor a thorough risk assessment before each UAS flight and codify our \ncommitment to respecting other users of the airspace, the privacy of \nindividuals, and the concerns of the public.\n    UAS users are already demonstrating a commitment to safety. Case in \npoint is the Arlington, Texas Police Department. Home to one of the \nmost fully developed UAS programs of any local law enforcement agency \nin the country, the Arlington Police Department works cooperatively \nwith the FAA to safely fly its UAS for operational missions city-wide. \nThe department has developed pre-flight checklists, flight and squawk \nlogs, training protocols and a standard operating procedure for all UAS \nflights. This is a model for the safe usage of UAS we hope to instill \nin manufacturers and operators through our Code of Conduct.\n    The UAS used by the Arlington Police Department also exemplify the \ntypes of unmanned aircraft we can expect to see more of in the coming \nyears. The vast majority of UAS currently flying in the United States \nare small models that weigh under 25 pounds and can fit in the trunk of \na car. The Arlington Police Department, for example, is using an 11-\npound mini-helicopter, which has proven effective for surveying multi-\ncar crashes on interstate highways. The UAS allow the crash scenes to \nclear more quickly, reduce pollution, and keep officers safe by \nreducing the amount of time they spend roadside. Even when the domestic \nairspace is further opened in 2015, most unmanned aircraft will be \nlimited to no more than 55 pounds.\n    In addition to safe operations, the industry is committed to \nbuilding safeguards into UAS technology, such as ``sense and avoid\'\' \nsystems and other innovations, which will enable a safe and orderly \nintegration. For example, the U.S. Army recently completed a 2-week \nevaluation of a Ground Based Sense and Avoid (GBSAA) system at Dugway \nProving Ground in Utah. The system uses 3-D radar and software \nalgorithms to detect other aircraft flying in the vicinity of UAS, and \nsafely steer UAS away from other aircraft. In both live and simulated \ntests, the system successfully recognized conflicts and navigated UAS \naway from other aircraft.\n    The GBSAA system provides a window into the type of ``sense and \navoid\'\' technologies available for the U.S. domestic airspace. \nMeanwhile, the development of this particular system is ahead of \nschedule. The Army has said the GBSAA could be deployed as early as \nMarch 2014, 1 full year ahead of the Army\'s initial estimate of 2015.\n    In addition to ``sense and avoid\'\' systems, it is important to \nunderscore that many UAS have multiple redundant systems that add extra \nlayers of safety and security. This is an especially relevant point in \nlight of the recent media attention surrounding so-called ``spoofing\'\' \nof a GPS signal by researchers at the University of Texas. ``Spoofing\'\' \nis not a new issue. Papers have been written on the subject since the \n1990s and, in 2001, the U.S. Department of Transportation broadly \nexamined vulnerabilities in the GPS system relating to aviation, \nmaritime, and ground applications.\n    The industry is well-aware of ``spoofing.\'\' Meanwhile, as the DOT \nvulnerability assessment demonstrates, ``spoofing\'\' is not a concern \nunique to UAS. ``Spoofing\'\' has implications for any technology that \ndepends on GPS for guidance and timing, whether it is manned or \nunmanned aircraft, your cell phone, or your car. In fact, commercial \nairliners are relying more and more heavily on GPS signals to locate \nthe runways at airports and, with the advent of the next generation air \ntraffic control system, all aircraft--manned and unmanned--will rely on \nGPS for navigation.\n    At the same time, ``spoofing\'\' is not as simple or easy as news \nreports suggest. To successfully spoof a GPS signal, one must have the \nequipment and capability to broadcast a counterfeit signal at a high \nenough power level to overpower the GPS signals emanating from more \nthan 20 satellites in orbit around the earth. One must know the \nlocation of the target vehicle and be able to track it. If the target \nvehicle is not in close proximity to the spoofing device, this requires \na detection system such as radar. Meanwhile, custom software is needed \nto make adjustments to the target vehicle\'s course. It took the \nUniversity of Texas team four years to develop the necessary software, \nand the professor overseeing the experiment has acknowledged that the \nskills involved in ``spoofing\'\' are ``outside the capability of any \naverage American citizen.\'\' In sum, in a controlled experiment where an \naircraft is kept low to the ground, hovering in place and equipped with \nminimal safeguards, spoofing is feasible. Under real-world conditions, \nhowever, ``spoofing\'\' is much more difficult.\n    That said, the industry takes the potential for ``spoofing\'\' very \nseriously and is already advancing technologies, such as SAASM--\nSelective Availability Anti-Spoofing Module--to prevent it. SAASM, \nwhich involves the authentication of encrypted satellite signals, is \nalready widely used by the military to thwart GPS spoofing. The \nDepartment of Defense (DOD) issued a directive that, as of October \n2006, required all newly-acquired UAS systems--as well as systems going \nthrough major modifications or upgrades--to be SAASM-equipped. As has \nhappened with other technologies, innovations developed for the \nmilitary could transition in some form to the civilian market in the \nyears to come. In fact, GPS itself was a military technology that \ntransitioned to civilian use.\n    In addition to SAASM, many unmanned aircraft also have alternate \nnavigation systems, such as radio links and backup inertial systems, \nwhich provide redundancy to GPS. Other backup technologies exist--or \nare being developed--that autonomously guide unmanned aircraft to a \nsafe landing at a pre-determined location in the unlikely event of \ninterference with navigation signals. Other ``spoofing\'\' \ncountermeasures have been proposed since the 1990s, some of which are \nrelatively simple software changes. Finally, it is also important to \nremember that while an aircraft itself may be unmanned, a trained \nprofessional is behind the controls, ready to respond, and bring a safe \nresolution to any problem that may arise.\n    Like any other technology, unmanned aircraft technology continues \nto become smarter and safer every day. In preparation for the expansion \nof UAS in the domestic airspace, AUVSI member companies have been hard \nat work developing new technologies that would add extra layers of \nsafety and security to unmanned aircraft. More and more innovations \nwill be available in the very near future.\n    While the industry continues to refine and enhance UAS technology, \nthe FAA is preparing for its rule-making process, which will unfold \nover the next few years. In addition, later this year, the FAA is \nexpected to announce the selection of six UAS test sites around the \ncountry. This window will provide ample time for all stakeholders to \ndevelop a robust framework for the integration of unmanned aircraft, \nput the technology to the test, and resolve any outstanding issues.\n    Other concerns have been raised, for example, about privacy--\nconcerns which the industry is actively working to address. AUVSI has \nmet with nearly a dozen privacy advocates and civil liberties \norganizations, as well as other interested parties, to understand their \nconcerns, encourage them to work together and let them know that, like \nthem, AUVSI supports Americans\' rights to privacy, especially the \nprotections afforded under the Fourth Amendment to the U.S. \nConstitution. Meanwhile, the industry\'s recently released Code of \nConduct clearly articulates our commitment to respecting individuals\' \nprivacy. As the integration progress, the industry will continue to \nengage in a constructive, thoughtful, and civil dialogue on the \nNational, State, and local levels with all parties to address any \nprivacy concerns.\n    The unmanned aircraft systems industry is committed to the safe and \nresponsible integration of unmanned systems into the National airspace. \nWe look forward to continuing to work with Congress, the FAA, DHS, and \nother stakeholders to ensure unmanned aircraft are integrated safely \nand responsibly, so we can unlock the tremendous potential of this \ntechnology to enhance public safety, advance scientific research, and \notherwise benefit society.\n                                 ______\n                                 \n       Letter From the Air Line Pilots Association International\n\n\n                                     July 18, 2012.\nThe Honorable Mike McCaul,\nChairman, Oversight, Investigations, and Management Subcommittee, H2-\n        176 Ford Building, Washington, DC 20515.\nThe Honorable Bill Keating,\nRanking Member, Oversight, Investigations, and Management Subcommittee, \n        H2-117 Ford Building, Washington, DC 20515.\n    Dear Chairman McCaul and Representative Keating: The Air Line \nPilots Association, International (ALPA) represents the safety and \nsecurity interests of more than 53,000 professional airline pilots \nflying for 37 airlines in the United States and Canada. On their \nbehalf, I respectfully request ALPA\'s views be included in the hearing \nrecord for the upcoming hearing on ``Using Unmanned Aerial Systems \n(UAS) Within the Homeland: Security Game-Changer?\'\' ALPA is the world\'s \nlargest professional pilot association and the world\'s largest non-\nGovernmental aviation safety organization. As such, we are pleased the \nsubcommittee is holding this hearing and appreciate your oversight and \ncontinued interest in the subject of unmanned aircraft systems.\n    The much-publicized success of Unmanned Aircraft Systems (UAS) in \ncombat operations has created a large potential market for the use of \nthese aircraft by commercial enterprises. The FAA has managed the \nprocess of accommodating UAS into the National Airspace System (NAS) \nsince it began. Currently, several UAS are in domestic use by \nGovernment agencies (e.g., law enforcement, Customs Border Protection \n(CBP), agriculture, etc.) operating with FAA Certificates of \nAuthorization (COA) in segregated airspace. As the number of these \naircraft increases, and the potential for business applications also \nincreases, so does pressure to allow their unrestricted operation in \nthe NAS. FAA has recognized the need for regulations, standards \ndevelopment, and oversight unique to future domestic UAS operations in \nthe NAS and has, for several years, proactively worked with industry \nstakeholders to develop those standards and regulations. This process \nis extremely complex and draws on the expertise of both industry \nstakeholders and FAA specialists in air traffic control, airspace \nmanagement, equipment certification and other disciplines with a direct \nbearing on the safety and security of flight operations of UAS in the \nNAS.\n    ALPA recognizes the benefits that UAS may provide valuable National \ndefense and law enforcement functions domestically. However, the \nintroduction of such aircraft into an integrated National airspace \nsystem represents an entirely new concept that has the potential to \nprofoundly degrade the safety of both commercial and general aviation \nflight operations if this integration is not accomplished in a \nresponsible, comprehensive manner. To achieve the complex goals of safe \nand secure UAS integration in the NAS, the most capable agency to \nprovide effective oversight would be the one that is currently the \nspecialist agency in all aspects of aviation. FAA has decades of \nexperience with safely integrating new technologies and concepts into \nthe NAS and has the experience, knowledge, and expertise to provide \nharmonized regulatory standards and oversight to the many stakeholders \nto maintain aviation safety and security of NAS. While DHS can, and \nshould continue to, provide expertise in the threats that must be \nmitigated, it is FAA with the expertise to develop and implement those \nmitigations. This relationship is true for all aircraft operating in \nthe NAS, regardless of where the pilot sits.\n    There are significant industry and Government regulatory and \nstandards development activities already under way in North America and \nother parts of the world oriented toward addressing the challenges and \nconcerns associated with attempts to integrate UAS into unsegregated \nairspace with the entire spectrum of civil traffic. FAA is central to \nthese developments, and has partnered with numerous other agencies \nincluding the Department of Defense (DOD), the National Aeronautics and \nSpace Administration (NASA), the Federal Aviation Administration (FAA), \nTransport Canada, and RTCA in the United States and its counterpart \nEUROCAE in Europe. The International Civil Aviation Organization (ICAO) \nhas published a circular to guide the development of harmonized \nstandards and practices for UAS. FAA is the lead U.S. Government agency \nin those international developments. In addition, in the United States, \nthe FAA is in the process of selecting six UAS Test Site facilities to \nfurther develop technologies that enhance future aviation safety and \nsecurity. RTCA is currently producing substantive recommendations for \nUAS standards for aviation safety and security for the FAA, as well. \nFor further information regarding present and future issues of UAS \nrelating to NAS safety and security integration, I refer you to the \nwhite paper attached, ``Unmanned Aircraft Systems, Challenges for \nSafely Operating in the National Airspace System\'\' and ask that this \nmaterial be included in the hearing record as well.*\n---------------------------------------------------------------------------\n    * The document has been retained in committee files.\n---------------------------------------------------------------------------\n    Unmanned Aircraft Systems approval for operations in the NAS \nrequires comprehensive and exhaustive total system analysis to achieve \nintegration. The needs of air traffic services, airspace, airports, \nairmen, and operators all will need to be evaluated to safely and \nsecurely integrate the UAS into the complex and dynamic operations of \nthe NAS. There are also technological requirements inherently unique to \nthe UAS and, therefore the regulator\'s expertise must not be limited to \ncertification of just the aircraft, but also the complete system, \nincluding the data link infrastructure, g round control station, as \nwell as the security of the ground control station that contain both \nthe pilot(s) and communication components. The FAA processes are \nsynonymous with safety of NAS and responsibility for those processes \nshould reside with them. The current role played by TSA and DHS in \nidentifying and mitigating threats to the security of operation NAS \nshould similarly be maintained.\n    To maintain the exceptional level of safety in the NAS, it is the \nFAA that must evaluate the safety, operational, and security procedures \nthat may need to be modified to provide for unique UAS requirements. As \nwith all certified aircraft, furthering the understanding of the design \nand limitations of the aircraft will be required so that appropriate \nlevels of safety and security assurances can be developed. ALPA has \nalways been a vanguard of aviation safety, and we have worked as a \nstakeholder with the FAA for many years and are convinced that the \nthorough current certification processes of the FAA have the breadth \nand scope to continue to safely and securely maintain aviation safety \nduring the entire current and future certification programs for UAS \naircraft, pilots, and operators.\n    We appreciate the subcommittee\'s interest in this issue and look \nforward to continuing our work together to protect the security of the \nNation\'s airspace.\n            Sincerely,\n                                          Captain Lee Moak,\n             President, Air Line Pilots Association, International.\n\n    Mr. McCaul. Members are reminded that statements may be \nsubmitted for the record.\n    [The statement of Ranking Member Thompson follows:]\n\n             Statement of Ranking Member Bennie G. Thompson\n                             July 19, 2012\n\n    I would first like to thank Chairman McCaul for holding this \nhearing on a very timely subject.\n    In February, President Obama signed the Federal Aviation \nAdministration Reauthorization Act into law.\n    Included in the Act was a provision directing the Federal Aviation \nAdministration (FAA), to rapidly expand the ability of public \nagencies--including State and local law enforcement--to use Unmanned \nAerial Vehicles, or UAVs, to fulfill their missions.\n    The use of UAVs within the homeland is not a new concept.\n    Following Hurricane Katrina, UAVs played a vital role in surveying \nstorm-damaged communities and assisting in the search and rescue of \ntrapped survivors in Mississippi and other areas affected by the storm.\n    Moreover, since 2004, the U.S. Customs and Border Protection (CBP), \nwithin the Department of Homeland Security has deployed UAVs along the \nSouthwestern Border as a force-multiplier in its border security \nefforts.\n    CBP recently announced its intention to increase its fleet of 10 \nUAVs to 24 by the year 2016.\n    Clearly, UAVs have many beneficial uses in the National airspace \nand, when used within proper parameters, can serve as an important tool \nin securing the homeland.\n    However, the use of UAVs in our National airspace may be expanding \nat a faster rate than the legal protections governing its use.\n    In late 2010, there were 273 active Government-licensed UAVs, \nnearly 100 more than the previous year. Reports in 2012 demonstrate \nthat the FAA has issued more than 300 UAV licenses.\n    Yet, according to the Government Accountability Office, ``no \nFederal agency has specific statutory responsibility to regulate \nprivacy matters related to UAVs.\'\'\n    Despite the Department of Homeland Security\'s role as the leading \nFederal agency operating UAVs, its Chief Privacy Officer has never \nperformed a Privacy Impact Assessment on UAVs or developed safeguards \nand guidelines for ensuring that privacy protections are in place.\n    Furthermore, although FAA is responsible for incorporating UAVs \ninto our National airspace, according to its website: ``the FAA\'s sole \nmission and authority as it focuses on the integration of unmanned \naircraft systems is safety.\'\'\n    So, who is watching the henhouse, with respect to privacy?\n    That is the question that causes me concern.\n    UAVs are capable of hovering in the same spot for up to 30 hours \nand recent reports indicate that in the near future, 45 hours is not \nout of the question.\n    They can find and follow a single target or up to 65; utilize \nfacial recognition software to find a face in a crowd or an event; read \nlicense plates from the sky; and some can even shoot taser projectiles, \ntear gas, and rubber balls from 300 feet above ground.\n    Given these capabilities, there is the potential for invasive \nsurveillance and warrantless searches with little to no privacy \nprotections in place.\n    Like my colleagues, I strongly support providing homeland security \nofficials and law enforcement agencies with the tools they need to \ncarry out their vital work on behalf of our Nation.\n    However, we have a responsibility to ensure that as technology \ndevelops and our systems become more sophisticated, proper safeguards \nand protections are in place to ensure the right to privacy is \nmaintained.\n    I look forward to hearing from our witnesses and thank them for \nappearing before us today.\n    I yield back.\n\n    Mr. McCaul. The Chairman now will go to the panel and \nintroduce Dr. Todd Humphreys I had the pleasure to visit \nyesterday, and being from Austin I take particular pride that \nyou are here also today, and growing up in a family of Long \nHorns, I take even more in that as well. So I have a little bit \nof orange blood in myself.\n    Dr. Todd Humphreys is an Assistant Professor at the \nCockrell School of Engineering at the University of Texas at \nAustin. He specializes in the application of optimal estimation \ntechniques to problems in satellite navigation, orbital and \nattitude dynamics, and signal processing. For anybody here who \nunderstands that, other than Dr. Humphreys, congratulations to \nyou.\n    He directs the radio navigation laboratory at UT Austin, \nwhere his current research focuses on defending against \nintentional GPS spoofing and jamming. Most recently Dr. \nHumphreys uncovered that GPS signals that navigate unmanned \naerial systems can be hijacked and controlled. He conducted \nexperiments at White Sands Missile Range with the Department of \nHomeland Security, and Dr. Humphreys--and also I believe at the \nMemorial Stadium in Austin. I believe we will see a video that \ndescribes that. He obtained his doctorate from Cornell \nUniversity.\n    The Chairman now recognizes Dr. Humphreys for his opening \nstatement.\n\n  STATEMENT OF TODD E. HUMPHREYS, PH.D., ASSISTANT PROFESSOR, \n  COCKRELL SCHOOL OF ENGINEERING, THE UNIVERSITY OF TEXAS AT \n                             AUSTIN\n\n    Mr. Humphreys. Chairman McCaul, Members of the \nsubcommittee, you may have heard these reports mentioned by \nChairman McCaul that at about this time last month my students \nand I from the University of Texas hijacked a civilian unmanned \naerial vehicle, a small helicopter, and brought it down from a \nremote location. That much is true, and I have come today \nprepared to talk about what we did, what the implications are \nfor the National airspace, and what can be done to address the \nproblem that our experiment brought to the fore.\n    So how did we hijack this UAV, this small helicopter? We \nexploited a weakness in the Global Positioning System. You see, \nGPS signals come in two flavors. There are the military signals \nwhich are encrypted to prevent counterfeiting and unauthorized \nuse. Then there are the second class of signals, civilian \nsignals, and these signals are not encrypted. They are freely \naccessible and that has explained--that explains their enormous \npopularity, their usefulness, but it also opens up a \nvulnerability. It makes them easy to counterfeit or, in other \nwords, to spoof.\n    Just like monopoly money, they have a detailed structure \nbut they don\'t have any built-in protection against \ncounterfeiting or spoofing.\n    So what does this have to do with UAVs? Well, the \nconnection is fairly obvious. Almost all civilian UAVs depend \nheavily on civil GPS for their navigation, and that means that \nif you can convincingly fake a GPS signal you can fool a UAV \ninto tracking your signal instead of the authentic one, and at \nthat point you can control the UAV. You make it move left or \nright, front or back, up or down. In other words, you have \nhijacked the UAV, and you can do this from miles away.\n    My friends at the University of Texas have prepared a video \nthat I would like to show you which illustrates what we did and \nhelps me to explain the technique involved.\n    You see against the background here, a UAV, an animated \none, like the one we used, flying above the desert floor. This \nwhite person entering your picture is the good guy. He is the \nUAV\'s remote operator and he is now uploading to the UAV a way \npoint. That white diamond is a destination the UAV is supposed \nto move to. The GPS satellites above help the UAV locate itself \nand as you can see here, it recognizes where it is, where the \ndestination is, and makes its tracks toward the destination \nlining up nicely with its goal.\n    But the bad guy moving in here from the left is a spoofer \noperator, and he is going to transmit fake GPS signals to the \nUAV. At this point, we will pause so that I can talk a little \nbit about what you see on the screen. The peak you see on the \nscreen exists in every GPS receiver. It corresponds to the \nauthentic signals. You can go ahead and roll it now. But if you \ncan create fake GPS signals, you have caused another peak to \nappear, and that peak, when it lines up with the authentic one, \nends up hijacking the tracking loops inside the GPS receiver, \nand what you will notice is that as it draws off the tracking \nloops, a ghost UAV slides out the back. That ghost UAV is where \nnow the UAV thinks it is. It is not its actual location, it is \nits perceived location. As it moves toward its way point it is \nthe ghost UAV that lines up the way point instead of the actual \nUAV.\n    We did the same here at Texas Memorial Stadium by making \nour UAV think that it was rising upward at a fast clip, and you \nwill see here that in response it falls downward. We can go \nahead and roll it. The bar at the bottom will tell you who is \nin control. At first it is the authentic signals and the ground \ncontroller who is in control of this UAV, but at this point \nwhen they go red, it is now the spoofer, the hijacker, who \ncontrols the UAV and you will see that it drops precipitously \ntoward the ground. That is all under control of this remote \nhijacker.\n    Then at White Sands we were invited by the Department of \nHomeland Security or authorized by the Department Security, and \nin fact they facilitated some of this test, so that we could \nconduct a test over the air where we capture the UAV in mid-\nair. We did it from about a half-mile away. On a hilltop, we \nbroadcast our signals. You can go ahead and roll it now, and \nyou will see that in this case, as in the former case, the UAV \nstarted in a nice hovering position but then came straight down \nas if it were an elevator moving down a shaft entirely under \ncontrol of the remote hacker.\n    So what are the implications for our National airspace? \nWell, back in February, Congress handed a mandate, the Federal \nAviation Administration, to develop a comprehensive plan for \nsafely accelerating the integration of civil UAVs into the \nNational airspace system, and I believe that the results of our \ndemonstration should factor heavily into that plan. But the \ntruth is that the FAA is, its culture and its expertise is \ngeared more toward safety than security and our test implicated \nthe security of the airspace. So I think it is fair to say that \nthe DHS may have also a role to play in drawing up these new \nrules and regulations, and I am happy to entertain questions \nfrom the committee.\n    [The statement of Mr. Humphreys follows:]\n\n                Prepared Statement of Todd E. Humphreys\n                             July 18, 2012\n\n                               1. SUMMARY\n\n    Military Global Positioning System (GPS) signals have long been \nencrypted to prevent counterfeiting and unauthorized use. Civil GPS \nsignals, on the other hand, were designed as an open standard, freely \naccessible to all. These virtues have made civil GPS enormously \npopular, but the transparency and predictability of its signals give \nrise to a dangerous weakness: They can be easily counterfeited, or \nspoofed. Like Monopoly money, civil GPS signals have a detailed \nstructure but no built-in protection against counterfeiting. Civil GPS \nis the most popular unauthenticated protocol in the world.\n    The vulnerability of civil GPS to spoofing has serious implications \nfor civil unmanned aerial vehicles (UAVs), as was recently illustrated \nby a dramatic remote hijacking of a UAV at White Sands Missile Range. \nThe demonstration was conducted by the University of Texas \nRadionavigation Laboratory at the behest of the Department of Homeland \nSecurity (DHS). From a stand-off range of a half mile, the University \nspoofer commandeered the UAV and induced it to plummet toward the \ndesert floor. The results of this demonstration will no doubt factor \ninto the Federal Aviation Administration\'s (FAA\'s) plans for \nintegrating UAVs into the National airspace.\n    Hacking a UAV by GPS spoofing is but one expression of a larger \nproblem: Insecure civil GPS technology has over the last 2 decades been \nabsorbed deeply into critical systems within our National \ninfrastructure. Besides UAVs, civil GPS spoofing also presents a danger \nto manned aircraft, maritime craft, communications systems, banking and \nfinance institutions, and the National power grid.\n    Constructing from scratch a sophisticated GPS spoofer like the one \ndeveloped by the University of Texas is not easy. It is not within the \ncapability of the average person on the street, or even the average \nAnonymous hacker. But the emerging tools of software-defined radio and \nthe availability of GPS signal simulators are putting spoofers within \nreach of ordinary malefactors.\n    There is no quick, easy, and cheap fix for the civil GPS spoofing \nproblem. What is more, not even the most effective GPS spoofing \ndefenses are fool-proof. But reasonable, cost-effective spoofing \ndefenses exist which, if implemented, will make successful spoofing \nmuch harder.\n    I recommend that for non-recreational operation in the National \nairspace civil UAVs exceeding 18 lbs be required to employ navigation \nsystems that are spoof-resistant.\n    More broadly, I recommend that GPS-based timing or navigation \nsystems having a non-trivial role in systems designated by DHS as \nNational critical infrastructure be required to be spoof-resistant.\n    Finally, I recommend that the DHS commit to funding development and \nimplementation of a cryptographic authentication signature in one of \nthe existing or forthcoming civil GPS signals.\n\n                             2. BACKGROUND\n\n    The design of the Global Positioning System came together over \nLabor Day weekend in 1973. A group of hard-working engineers, mostly \nAir Force officers, decided over that weekend that the GPS satellites \nwould broadcast two different types of signals, a precise military \nsignal and a so-called clear access or C/A signal. The military signal \nwould later be encrypted to prevent unauthorized use and imitation.\n    But the clear access signal, true to its name, would be freely \naccessible to all. Detailed and accurate specifications for the clear \naccess signal were later distributed to encourage its use.\n    The early designers of the GPS system, for whose tireless efforts \nwe are all indebted, knew the GPS was going to be valuable for \ncivilians across the globe, but they never could have imagined just how \nvaluable. An intentional degradation of the C/A signals called \nselective availability was discontinued by Presidential Order in 2000. \nInstantaneously, every GPS receiver across the globe went from errors \nthe size of a football field to errors the size of a small room. It is \nhard to overstate the impact of this improvement in accuracy. Before \nselective availability was turned off, there were no in-car navigation \nsystems giving turn-by-turn directions, because back then civilian GPS \ncouldn\'t tell you what block you were on, let alone what street. For \ngeolocation, accuracy matters.\n    Things have only improved over the last decade. With more ground \nstations, better algorithms, more open-access signals, and better \nreceivers, civil GPS--the family of open-access signals to which all \ncivilians have access--can now tell you not only what street you are \non, but what part of the street.\n    The accuracy, transparency, and low cost of civil GPS have enabled \na firestorm of innovation. After 2000, any engineer designing a system \nfor which accurate timing or location was important found GPS to be an \nalmost irresistible option. As a result, civil GPS receivers are built \ndeeply into our National infrastructure: From our smartphones to our \ncars to the internet to the power grid to our banking and finance \ninstitutions. Some call GPS the invisible utility: It works silently, \nand for the most part perfectly reliably, in devices all around us--\ndevices of which we are scarcely aware.\n    Nearly 40 years after the GPS design was put together we can look \nback and marvel at its designers\' foresight. The GPS that we all depend \non today is nearly identical to their original design. But with 40 \nyears of hindsight, many of us in the GPS community, if we could be \ntransported back to those seminal meetings over Labor Day weekend in \n1973, would suggest that one crucial change be made to the clear access \nsignal.\n    The problem is that the same transparency and predictability that \nhave made civil GPS signals so wildly popular all across the globe give \nrise to a dangerous vulnerability. Transparency and predictability make \nthe civil GPS signals easy to imitate--to counterfeit. The fact is that \ncivil GPS signals are like Monopoly money: They have a detailed \nstructure but no built-in protection against forgery.\n    That civil GPS is so easy to counterfeit, or ``spoof,\'\' would not \nbe a problem if GPS were not so popular, its use so widespread. But \nsuch is not the case.\n    For the past few years my students and I at the University of Texas \nRadionavigation Laboratory, and several others in the GPS community, \nhave had two goals with regard to GPS security. First, we aim to alert \nGPS device manufacturers, the public, and public officials that civil \nGPS--notwithstanding its spectacular utility and historical \nreliability--is inherently insecure and shouldn\'t be trusted blindly. \nSecond, we endeavor to develop practical and effective techniques to \nfix the problem, to make GPS secure and trustworthy for civilian users. \nThe remainder of this statement is a brief summary of our major \nfindings and recommendations to date.\n\n         3. EXAMPLE CASE: HIJACKING A UAV BY CIVIL GPS SPOOFING\n\n    What implications follow from the lack of authentication on civil \nGPS signals? Consider unmanned aerial vehicles (UAVs). In February 2012 \nthe U.S. Congress passed the FAA Modernization and Reform Act, which \ngives the FAA until 2015 to develop a ``comprehensive plan for safely \naccelerating the integration of civil UAVs into the National airspace \nsystem.\'\' The Modernization Act has spurred a great deal of discussion. \nHobbyists, public safety officials, academics, UAV manufacturers, and \nmany in the general public envision myriad beneficial applications of \ncivil UAVs. Others, less sanguine, point out that UAVs threaten to \ninvade our privacy. Still others question whether UAVs can be \nintegrated safely into the National airspace.\n    The connection between civil UAVs and civil GPS is straightforward: \nThe vast majority of civil UAVs depend on civil GPS for navigation. It \nis true that the navigation sensor suite of a typical civil UAV also \nincludes inertial sensors (accelerometers and rate sensors), \nmagnetometers, altimeters, and in some cases a camera; even so, GPS is \nfundamental to the sensor suite because, unlike the other navigation \nsensors, it works in all weather conditions and does not drift.\n    Does the dependence of UAVs on civil GPS make them susceptible to \nhijacking via GPS spoofing? In February 2012 the University of Texas \nRadionavigation Laboratory posed this question to the DHS. DHS \nconsidered the question seriously. At the time, DHS was moving forward \nwith plans to offer universities and other interested civilian groups a \nchance to test their proposed techniques for addressing civil GPS \nvulnerabilities in a series of realistic over-the-air tests at White \nSands Missile Range. My students and I proposed to DHS an experiment \nwhereby we would attempt to commandeer a civilian UAV by GPS spoofing. \nDHS agreed to the test on the condition that the University of Texas \nfurnish all the necessary manpower and equipment--including the target \nUAV.\n    Our group selected a Hornet Mini from Adaptive Flight as the target \nUAV. This sophisticated $80k rotorcraft, used by law enforcement, has a \nnavigation system built around an extended Kalman filter that draws \nmeasurements from an altimeter, a magnetometer, an inertial measurement \nunit, and a civil L1 C/A GPS receiver. The Hornet Mini\'s sensor suite \nand flight control system are representative of those in much larger \ncommercial UAVs.\n    It is important to note that the Hornet Mini\'s GPS receiver was \nequipped with a standard technology called Receiver Autonomous \nIntegrity Monitoring (RAIM), which is designed to identify and discard \nGPS signals that appear to be outliers. Standard RAIM is ineffective \nagainst GPS spoofing because a spoofer generates a fully self-\nconsistent ensemble of spoofing signals; there are no outliers.\n    After a dry run on the University of Texas campus, our research \ngroup traveled to White Sands for the test of record. The test was \nconducted as follows: A sophisticated civil GPS spoofer developed in \nour laboratory was placed on a hilltop about a half mile from the \ndesignated test site where the UAV would be flying. The UAV was \ncommanded by its ground control operator to hover 50 feet above the \nground at the test site. On command, our spoofer began transmitting \nweak counterfeit GPS signals toward the hovering UAV, achieving meter-\nlevel alignment with the counterpart authentic signals at the location \nof the UAV\'s GPS antenna. The spoofer then rapidly increased its \ncounterfeit signal power, bringing the UAV under its control. By \ninducing a false upward drift in the UAV\'s perceived location, the \nspoofer fooled the UAV\'s flight controller into commanding a dive. At \nabout 10 feet above ground level a human safety pilot assumed manual \ncontrol of the UAV to prevent it from crashing.\n    Between this and other tests, the spoofer demonstrated short-term \nthree-dimensional control of the UAV. Thus, we conclude that it is \nindeed possible to hijack a civil UAV--in this case, a fairly \nsophisticated one--by civil GPS spoofing.\n\n                         4. THE LARGER PROBLEM\n\n    The vulnerability of civil UAVs to GPS spoofing is but one \nexpression of a more fundamental problem: the insecurity of civil GPS \nsignals. If a UAV can be hijacked by GPS spoofing, what else could go \nwrong within our GPS-dependent National infrastructure? In what \nfollows, the potential vulnerabilities of our National transportation, \ncommunications, banking and finance, and energy distribution \ninfrastructure are discussed briefly.\n\n4.1 Transportation\n    In 2001, the U.S. Department of Transportation issued a report \nassessing the vulnerability of the U.S. transportation infrastructure \nto disruption of civil GPS.\\1\\ Known as the Volpe report, it \nhighlighted the threats posed by civil GPS spoofing attacks. At the \ntime, the open literature contained little research on such attacks and \npossible countermeasures. Accordingly, the report recommended further \nstudy of GPS spoofing and development of civil GPS anti-spoofing \ntechniques. Unfortunately, despite a flurry of GPS security research \nover the past decade, brought about in part by the Volpe report, no \ndedicated spoofing defenses have been built into any commercially-\navailable GPS receivers so far as I am aware. This means that the GPS \nreceivers used in commercial and general aviation aircraft, in maritime \nvessels, and in surface vehicle transport are vulnerable to GPS \nspoofing just as was the GPS receiver on the UAV tested at White Sands.\n---------------------------------------------------------------------------\n    \\1\\ Anon., ``Vulnerability assessment of the transportation \ninfrastructure relying on the Global Positioning System,\'\' tech. rep., \nJohn A. Volpe National Transportation Systems Center, 2001.\n---------------------------------------------------------------------------\n            4.1.1 Manned Aviation\n    Manned civil aircraft increasingly depend on civil GPS for \nnavigation. Nonetheless, they are currently somewhat less vulnerable \nthan civil UAVs to GPS spoofing for two reasons:\n\n    (1) All commercial aircraft and many general aviation aircraft \n        continue to operate legacy VOR/DME navigation equipment along \n        with newer GPS equipment. Because of their higher power, VOR/\n        DME signals are less vulnerable to spoofing than GPS signals. \n        Legacy VOR/DME equipment can provide pilots a valuable cross-\n        check against which to compare GPS-produced position and \n        velocity data.\n\n    (2) Manned aircraft are typically equipped with higher-quality \n        (lower drift) inertial measurement units (IMUs) than those used \n        in small UAVs, which means that the GPS navigation solution can \n        be more effectively cross-checked against the IMU. Whereas a \n        spoofer might be able to induce a fictitious acceleration of \n        0.5 m/s\\2\\ in a small UAV without being detected in a cross-\n        check against the (relatively poor) IMU, an attack against a \n        larger craft with a higher-quality IMU might be limited to an \n        induced acceleration of 0.1 m/s\\2\\. However, it should be noted \n        that the benefit of a higher-quality IMU is only realized if \n        the navigation systems is designed to be on the lookout for \n        suspicious accelerations in the GPS solution.\n\n    Despite these advantages, GPS spoofing remains a significant risk \nto civil manned aircraft. When the aircraft\'s autopilot is engaged, the \ncourse it commands depends primarily on the aircraft\'s IMU. However, \nGPS plays a role in estimating the bias drift in each of the IMU\'s \naxes. Thus, neither the autopilot nor the human pilot(s) may notice a \nspoofer-induced navigation error that builds up gradually over time. \nPilots are trained to continually monitor the autopilot for errant \nbehavior, and disengage it if necessary, but they rely on anomaly \nalerts provided by the aircraft\'s navigation system itself. I have \nreason to believe that the resilience of commercial aircraft navigation \nsystems to civil GPS spoofing has not been sufficiently tested. Roll-\nout of the FAA\'s NextGen air traffic control system, which will further \nincrease the reliance of commercial and general aviation on civil GPS, \nwould seem to demand even greater scrutiny as regards vulnerability to \nGPS spoofing.\n\n            4.1.2 Maritime\n    Many of the adverse effects of GPS spoofing in maritime \napplications follow the pattern of those in aviation applications. As \nwith aircraft, marine craft rely on civil GPS to estimate the bias \ndrift in their inertial sensors. This reliance opens up an indirect \nvulnerability to GPS spoofing. Marine vessels may in fact be more \nvulnerable than aircraft to spoofing because the discontinuation of \nLORAN in the United States 2 years ago left them with fewer \nradionavigation backups to GPS. It should be noted that differential \nGPS, often used for improved navigation accuracy on marine craft, is \nnot a defense against GPS spoofing.\n    Many marine craft autopilot systems could likely be induced by GPS \nspoofing to veer gradually off course, which could be especially \ndangerous in constricted waterways. And whereas formal trials have been \nconducted to evaluate the effect of GPS jamming on commercial marine \ncraft (with alarming results--see the tests conducted in the North Sea \nby the U.K. Lighthouse Authority), to my knowledge no such tests have \nbeen performed to evaluate the effects of GPS spoofing.\n\n            4.1.3 Surface Transportation\n    The reliance of surface transportation on civil GPS is collectively \ngreater than that of aviation or maritime transportation, but the \nnature of the reliance is different, being attached to far less \nworrisome consequences. A spoofing attack against an automobile could \ninduce the in-car navigation system to display a false position, which \nmay confuse the driver, but would be unlikely to result in an accident. \nIn the case of autonomous vehicles such as the Google autonomous car, a \nsubstantial suspicion of GPS is built into the navigation system. GPS \nmeasurements are used to estimate the biases in inertial sensors, but \nLIDAR, RADAR, and optical sensors are also used for this purpose and \ntheir measurements are constantly cross-checked against GPS. The \nrobustness of the Google autonomous car to loss of GPS or GPS spoofing \nis a good model for all autonomous systems in their use of GPS.\n    Rail transport employing so-called Positive Train Control (PTC) \nsystems, which automatically locate a train on a digital map in the on-\nboard and control center computers, may be susceptible to civil GPS \nspoofing. A GPS spoofing attack mounted against a PTC-enabled train at \na railway switch may be able to deceive the train operator and the \ncontrol center monitors into thinking that the train is moving along a \ndifferent track.\n\n4.2 Communications\n    Many communications networks, including cellular networks and the \ninternet, rely on civil GPS for precise timing. The discussion here \nwill focus on cellular networks because these have stringent \nsynchronization requirements.\n    Code division multiple access (CDMA) cell-phone towers rely on GPS \ntiming for tower-to-tower synchronization. Synchronization prevents \ntowers from interfering with one another and enables call hand-off \nbetween towers. If a particular tower\'s time estimate deviates more \nthan 10 ms from GPS time, hand-off to and from that tower is disrupted. \nIn laboratory tests conducted at the University of Texas we have \ndemonstrated that a spoofer can induce a 10-ms time deviation in less \nthan 30 minutes when acting against a typical CDMA tower setup. A \nspoofer, or spoofer network, could also cause multiple neighboring \ntowers to interfere with one another. This is possible because CDMA \ncell-phone towers all employ the same spreading code, distinguishing \nthemselves only by the phasing (that is, the relative time offset) of \ntheir spreading codes. Furthermore, it appears that a spoofer could \nimpair CDMA-based E911 user-location.\n\n4.3 Banking and Finance\n    All global financial exchanges, including the New York Stock \nExchange (NYSE) and the Nasdaq, have gone digital. Large data centers \nhold the exchanges\' matching engines, the modern-day equivalent of the \nhistoric trading floor, in racks of interconnected servers. The DHS \nconsiders these data centers critical National infrastructure. Private \nsecurity personnel, tall fences, and the best network security money \ncan buy protect the integrity of the thousands of high-stakes trades \nexecuted every second within these data centers.\n    But there is one input port that the network firewalls leave \nentirely unprotected. An unassuming set of antennas on the roof of \nthese data centers carry unsecured civil GPS signals directly into the \ncore of the matching engine network. Slaved to a once-per-second \nsynchronization pulse from a GPS-disciplined clock, the individual \nservers in the network apply time stamps to the trades they execute. A \ndecade ago, a tenth of a second was an acceptable time stamp \nresolution. High-frequency traders now demand nanoseconds.\n    I believe that all major financial exchanges across the globe are \naware of the GPS spoofing threat. I have been in indirect contact with \nnetwork service managers at the NYSE, BATS, and London exchanges; they \nhave each taken precautions against GPS spoofing. For example, system \ntime at the NYSE is ultimately traced to civil GPS, but a spoofing \nattack that shifted the apparent GPS time by more than 0.05 nanoseconds \nper second would fail a timing consistency check against redundant \nlocal atomic clocks. This would limit a spoofer to shifting the \nexchange\'s system time by less than 5 microseconds per day, making the \nNYSE system time an attractive target only for the most patient of \nspoofers.\n    High-frequency traders whose servers are co-located with the \nmatching engines at major exchanges may be more vulnerable to GPS \nspoofing. In the NYSE and some other exchanges, these co-located \ncustomers are offered either a timing feed from the exchange\'s system \ntime or a direct feed from GPS antennas on the roof. Many co-located \ncustomers, distrustful of the exchange\'s system time, opt for the \ndirect GPS feed. In laboratory tests conducted at the University of \nTexas we have shown that a popular model of GPS-disciplined oscillator \nused by these co-located customers is incapable of detecting GPS \nspoofing attacks that shift timing by less than 100 nanoseconds per \nsecond--or 2,000 times faster than the maximum undetectable rate when \ntargeting NYSE system time.\n    Why could this be a problem? Automated transactions initiated by \nco-located servers account for 50 to 70 percent of the trading volume \non major exchanges. The high-frequency traders who own the servers do \nnot like inexplicable market behavior, and unlike old-fashioned traders \nwho are obligated to stay in the market no matter its behavior, high-\nfrequency traders can pull the plug at any moment. In the aftermath of \nthe May 6, 2010 flash crash, it was revealed that automatic data \nintegrity checks in trading algorithms were configured to trigger on \nunusual latency in the exchanges data feeds. In other words, if \ntransaction time stamps do not look right, algorithmic traders flee the \nmarketplace. A spoofing attack that aggressively manipulated the timing \nin a large number of co-located servers could therefore cause a partial \nmarket vacuum--what traders call a loss of liquidity--with the result \nbeing increased price volatility and damage to market confidence.\n\n4.4 Energy Distribution\n    In a recent study, our laboratory examined the vulnerability of a \nparticular type of smart grid equipment, the phasor measurement unit \n(PMU), to a timing attack.\\2\\ If a spoofer manipulates a PMU\'s time \nstamps, it could cause spurious variations in measured phase angles. \nThese variations could distort power flow or stability estimates in \nsuch a way that grid operators or automatic response systems would take \nincorrect or unnecessary control actions, including powering up or \nshutting down generators, potentially causing blackouts or damage to \npower-grid equipment. Under normal circumstances, a changing separation \nin the phase angle between two PMUs indicates changes in power flow \nbetween the regions measured by each PMU. Thus, a spoofing attack could \ncreate the false indications of power flow across the grid.\n---------------------------------------------------------------------------\n    \\2\\ D. Shepard, T. Humphreys, and A. Fansler, ``Evaluation of the \nVulnerability of Phasor Measurement Units to GPS Spoofing,\'\' in Sixth \nAnnual IFIP WG 11.10 International Conference on Critical \nInfrastructure Protection, (Washington, DC), 2012.\n---------------------------------------------------------------------------\n    Under controlled experimental conditions at a Department of Energy \nNational laboratory, we demonstrated last December that a GPS-spoofer-\ninduced timing offset does indeed create a proportional offset in the \nvoltage phase angle measured by a PMU. In a brief examination of the \nconsequences of such an offset, we found that future smart grids will \nlikely employ advanced PMUs in automated closed-loop grid control \\3\\ \nand that such closed-loop control has already been implemented in at \nleast one network.\\4\\ We have reason to believe that timing \nmanipulation would cause generators to trip in this network and in \nfuture automated closed-loop grid control networks.\\2\\\n---------------------------------------------------------------------------\n    \\3\\ J. Giri, D. Sun, and R. Avila-Rosales, ``Wanted: A more \nintelligent grid,\'\' IEEE Power & Energy, pp. 34-40, April 2009.\n    \\4\\ E.O. Schweitzer, A. Guzman, H.J. Altuve, and D.A. Tziouvaras, \n``Real-time synchrophasor appliactions for wide-area protection, \ncontrol, and monitoring,\'\' tech. rep., Schweitzer Eng. Laboratories, \n2009.\n---------------------------------------------------------------------------\n                         5. assessing the risk\n    A thorough assessment of the spoofing risk would investigate two \nfactors: (1) The probability, and (2) the consequences of an attack. \nThe foregoing section presented various consequences, though certainly \nnot a thorough listing, related to critical National infrastructure. \nThe probability of a spoofing attack is a function of the incentives \nthat would prompt an attack and the difficulty of mounting one. As an \ninvestigation of incentives is necessarily subjective and, in any case, \noutside my expertise, I will leave this to others, focusing here on \nassessing the difficulty of mounting a spoofing attack.\n5.1 What Does it Take to Build a Spoofer?\n    Constructing from scratch a sophisticated GPS spoofer like the one \ndeveloped by the University of Texas is not easy. It is not within the \ncapability of the average person on the street, or even the average \nAnonymous hacker. It is orders of magnitude harder than developing a \nGPS jammer. Nonetheless, the trend toward software-defined GNSS \nreceivers for research and development, where receiver functionality is \ndefined entirely in software downstream of the A/D converter, has, in \nrecent years, significantly lowered the bar to developing a spoofer.\n\n            5.1.1 Cost of Hardware\n    The University of Texas spoofer was constructed almost entirely \nfrom commercial off-the-shelf components. The total hardware cost was \nbetween $1k and $2k. Universal software radio platforms that rival the \ncapability of our hardware system can be purchased for less than $2k.\n\n            5.1.2 Required Skill and Effort\n    As a point of reference, I estimate that there are more than 100 \nresearchers in universities across the globe who are well-enough-versed \nin software-defined GPS that they could develop a sophisticated spoofer \nfrom scratch with a year of dedicated effort. Spoofer development is \nlikely outside the capability of organized crime or terrorist \norganizations without access to advanced training, but is well within \nthe capability of near-peer nation states.\n\n5.2 Can One Buy a Spoofer?\n    Unlike GPS jammers, marketed by overseas firms as ``personal \nprivacy devices\'\' and sold by the thousands on the internet, \nsophisticated GPS spoofers such as the one developed by the University \nof Texas Radionavigation Laboratory cannot currently be obtained in any \nmarket of which I am aware. However, a GPS signal simulator, a piece of \ntest equipment that is readily obtainable from various vendors, can \nserve as an unsophisticated yet effective GPS spoofer. A sophisticated \nspoofer is only different from a GPS signal simulator in the following \nrespects:\n    (1) It is capable of predicting, with nearly 100% accuracy, the \n        navigation data sequence that modulates the GPS signals--not \n        just the implied orbital and clock data, but the exact \n        sequence. This same effect can be realized on a standard GPS \n        signal simulator only by developing a secondary system that \n        generates blocks of predicted navigation data and uploads these \n        to the signal simulator.\n    (2) A sophisticated spoofer is capable of precisely aligning \n        (within a few meters equivalent) the codes in its counterfeit \n        signals with the corresponding codes of the authentic signals \n        at the location of the target receiver\'s antenna. The \n        University of Texas spoofer is capable of achieving this \n        alignment from a standoff distance of several kilometers. An \n        off-the-shelf GPS signal simulator would have to be \n        substantially modified to achieve such alignment.\n    These differences are only important if one wishes to carry out a \nstealthy spoofing attack, that is, one that effects a near-seamless \ntransition from authentic to counterfeit signals and is therefore \ndifficult to detect by simple timing and signal checks within the \ntarget system. But this is hardly necessary for a successful attack \nagainst most targets at present, given that few GPS-based systems \nperform even these rudimentary checks. Indeed, a vulnerability \nassessment team from Los Alamos National Lab convincingly demonstrated \nover a decade ago that an off-the-shelf GPS signal simulator is \nsufficient to mount a spoofing attack,\\5\\ and spoofing defenses in \ncommercial receivers have hardly progressed since that time.\n---------------------------------------------------------------------------\n    \\5\\ J.S. Warner and R.G. Johnston, ``A simple demonstration that \nthe GPS is vulnerable to spoofing,\'\' The Journal of Security \nAdministration, vol. 25, pp. 19-28, 2002.\n---------------------------------------------------------------------------\n    High-end commercial GPS signal simulators cost several hundred \nthousand dollars, but these can be leased for a few hundred dollars on \na weekly basis. Moreover, within the past few years much less expensive \n(less than $40k) single-frequency GPS signal simulators have emerged on \nthe market. GPS signal record-and-playback devices, which can be \npurchased for a few thousand dollars, can also be used effectively as \nunsophisticated spoofers.\n\n5.3 Range and Required Knowledge of Target\n    Assuming one could build or otherwise obtain a spoofing device, a \nsuccessful spoofing attack further requires proximity to and knowledge \nof the target system.\n\n            5.3.1 At What Standoff Range Can a Spoofer Be Effective?\n    The University of Texas Radionavigation Laboratory demonstrated a \nsuccessful spoofing attack from a 0.62-km standoff range in our over-\nthe-air test at White Sands. Our spoofer\'s maximum standoff range is \nfundamentally limited only by the spoofer\'s need to track all or nearly \nall of the authentic GPS signals seen by the target receiver, which \nimplies an operational range of several tens of kilometers. A spoofer\'s \nbroadcast power requirement, even at a stand-off range of several \nkilometers, is quite modest because the authentic GPS signals are \nthemselves extremely weak.\n\n            5.3.2 What Must the Spoofer Know About the Target to Be \n                    Effective?\n    For a near-seamless transition from authentic to counterfeit \nsignals, and, in the case of UAV spoofing, for fine-grained control of \nthe UAV after capture, a spoofer must be furnished with real-time \nestimates of the target system\'s location and velocity accurate to \nwithin a few meters and meters per second, respectively. This \nrepresents a substantial challenge for a would-be spoofer. In the case \nof UAV spoofing it implies that the UAV is being accurately tracked by \na RADAR or LIDAR system. However, if a spoofer operator\'s goal is \nsimply to confuse the target\'s navigation or timing system, and the \noperator is unconcerned about possible detection, then knowledge of the \ntarget\'s position and velocity is unnecessary.\n\n6. fixing the problem: what can be done to defend against gps spoofing?\n    There is no quick, easy, and cheap fix for the civil GPS spoofing \nproblem. Moreover, not even the most effective GPS spoofing defenses \nare foolproof. In contrast to message authentication, such as is used \nto sign data transmitted across the internet, the security of GPS \nsignal authentication is much weaker and demands a probabilistic model. \nNonetheless, there are many possible remedies to the spoofing problem \nthat, while not foolproof, would vastly improve civil GPS security. For \ndiscussion, it is convenient to categorize spoofing defenses along two \naxes: (1) Cryptographic or non-cryptographic, and (2) networked or \nstand-alone. A cryptographic spoofing defense relies on secret keys \nthat encrypt or digitally sign components of the broadcast signals, \nwhereas a non-cryptographic defense does not depend on encryption or \ndigital signatures. A networked defense requires a (possibly \nintermittent) link to a communications network whereas a stand-alone \ndefense operates in isolation of a network.\n    Our laboratory has been engaged in developing civil GPS spoofing \ndefenses over the past several years. In addition, a number of other \nresearchers have proposed civil GPS spoofing defenses in the open \nliterature or have otherwise disclosed their ideas to me. In what \nfollows, I examine each of the proposed techniques of which I am aware. \nMore promising techniques approach the ideal spoofing defense, which: \n(1) Would reliably detect a sophisticated spoofing attack such as the \none conducted at White Sands with a low probability of false alarm, (2) \ncould be implemented in the short term, (3) would not significantly \nincrease the cost of a GPS-based navigation system, and (4) would be \napplicable to a broad range of GPS-dependent systems.\n    It should be noted at the outset that a military-style spoofing \ndefense, in which the transmitted signals are fully encrypted, is not \nappropriate for the civilian sector as it denies free and open access. \nAll techniques discussed below permit signal authentication without \ndenying access. Likewise, I do not believe that widespread civilian use \nof military-grade SAASM receivers is practical or likely. The \nconstraints on manufacture of SAASM receivers makes them significantly \nmore bulky and expensive than standard civil GPS receivers. \nFurthermore, even though SAASM receivers can be operated in an \nunclassified setting and can be re-keyed with unclassified ``black\'\' \nkeys, use of SAASM receivers is currently restricted to military \npersonnel and to other select and authorized end-users, and initial \nkeying logistics would likely present a headache for civil users. \nTherefore, civilian use of SAASM-type receivers is not considered here \nas a viable option.\n\n6.1 Jamming-to-Noise Sensing Defense\n    Perhaps the simplest and most readily-implementable defense against \nGPS spoofing is to monitor the total received power near the GPS \nband(s) of interest (e.g., GPS L1). This can be done with a jamming-to-\nnoise (J/N) sensor within the radio frequency (RF) front-end of a GPS \nreceiver. The presence of in-band spoofing signals tends to increase \nthe total in-band received power. In the case of the White Sands \ndemonstration, to ensure a clean capture of the UAV GPS receiver, the \nspoofing signal ensemble was configured to be at least 10 times as \npowerful as the authentic signal ensemble. The presence of these \nspoofing signals would have been readily detectable with a J/N sensor.\n    This is a stand-alone non-cryptographic defense.\n            6.1.1 Benefits\n    (1) Simple and inexpensive. At least one mass-market GPS receiver, \n        the uBlox GPS.G6-SW-10018, already provides a crude J/N output \n        indicator.\n\n    (2) Immediately implementable.\n\n    (3) Forces spoofer to maintain received signal power below \n        threshold.\n            6.1.2 Drawbacks\n    (1) For threshold corresponding to a reasonable false alarm rate, a \n        J/N sensor will not typically detect a spoofing attack in which \n        the spoofed signals are only slightly more powerful than their \n        authentic counterparts.\n6.2 Defense Based on SSSC or NMA on WAAS Signals\n    The SSSC- or NMA-based defenses described below could be \nimplemented on the geostationary wide-area augmentation system (WAAS) \nsatellites even if they are never implemented on the GPS satellites \nthemselves.\n            6.2.1 Benefits\n    (1) WAAS is a civil program and thus could be seen as a proper \n        avenue for implementation of civil signal authentication.\n\n    (2) WAAS signals are generated on the ground, not on the satellite, \n        so an SSSC or NMA overlay is readily implementable.\n\n    (3) A single WAAS-authenticated WAAS signal would be sufficient to \n        secure pre-surveyed timing receivers.\n            6.2.2 Drawbacks\n    (1) Implementation of SSSC or NMA on WAAS satellites alone would \n        only provide users with one, or possibly two, authenticated GPS \n        signals. While this would constrain a spoofer significantly, it \n        would not be sufficient to authenticate a full three-\n        dimensional navigation solution.\n\n6.3 Multi-System Multi-Frequency Defense\n    The GPS receiver on the UAV that was spoofed in the White Sands \ndemonstration was a simple single-frequency GPS L1 C/A receiver. The \nUAV\'s navigation system could immediately be made much more secure by \nincorporating a multi-system or multi-frequency receiver that performs \nproper cross-checks among separate signal ensembles. The improvement in \nsecurity is one of degree, not of kind because the new signals \naccessible with such a receiver would not necessarily have any better \ninherent security than the GPS L1 C/A signals. Nonetheless, the \nimprovement in security can be significant because, from a spoofer\'s \nperspective, it is much more challenging to simultaneously spoof \nsignals at multiple frequencies and from multiple systems than to spoof \nthe popular single-frequency single-system GPS L1 \nC/A signals.\n    Satellite navigation systems other than GPS include the Russian \nGLONASS system (fully operational), the European Galileo system \n(undergoing in-orbit validation of early spacecraft; may be operational \nby 2019), and the Chinese Compass system (global system in preliminary \ntest phase). Small, low-power, inexpensive GPS + GLONASS receivers are \nnow available off-the-shelf. These appear to be an excellent option for \nimmediately improving navigation security in existing systems.\n    As a result of GPS modernization, new civil GPS signals are now \nbeing broadcast at the L2 and L5 frequencies in addition to the legacy \ncivil signal on L1. These signals are not yet modulated with proper \nnavigation data, but they can nonetheless already be used for \nconsistency checks against the GPS L1 C/A signals. Similarly, the \nGalileo system will offer open-access signals at three separate \nfrequencies. Off-the-shelf multi-frequency receivers are currently \navailable, but these are currently several times more expensive than \nsingle-frequency GPS receivers or GPS + GLONASS receivers.\n    The multi-system multi-frequency defense is non-cryptographic and \nstand-alone.\n            6.3.1 Benefits\n    (1) Small, low-power, inexpensive GPS + GALILEO receivers are \n        available today.\n\n    (2) Increases the difficulty of mounting a spoofing attack by \n        forcing a would-be spoofer to generate other signal ensembles \n        besides GPS L1 C/A.\n            6.3.2 Drawbacks\n    (1) Difficulty of mounting a spoofing attack only increases \n        linearly with the number of new signal ensembles.\n\n    (2) Multi-system, multi-frequency capability must be combined with \n        supervisory software that performs proper consistency checks \n        among observables from all signals. Currently available multi-\n        system, multi-frequency receivers do not perform this \n        supervisory function.\n\n    (3) Multi-frequency receivers will likely remain significantly more \n        expensive than legacy single-frequency GPS L1 C/A receivers.\n\n6.4 Single-Antenna Defense\n    A stand-alone non-cryptographic single-antenna spoofing defense \ndeveloped by Cornell University was tested against the University of \nTexas spoofer during the June White Sands trials. The technique is \nstill under development but initial results indicate that it offers \nreliable spoofing detection with a low probability of false alarm. \nWithout false alarms, it successfully detected each spoofing trial in \nwhich it was invoked at White Sands. The Cornell single-antenna defense \nis an extension of the signal spatial correlation technique developed \nby the University of Calgary PLAN group.\\6\\\n---------------------------------------------------------------------------\n    \\6\\ J. Nielsen, A. Broumandan, and G. LaChapelle, ``Method and \nsystem for detecting GNSS spoofing signals,\'\' May 31 2011. US Patent \n7,952,519.\n---------------------------------------------------------------------------\n            6.4.1 Benefits\n    (1) Rapid (sub-second), reliable spoofing detection with a low \n        probability of false alarm.\n\n    (2) Stand-alone, compact.\n            6.4.2 Drawbacks\n    (1) Specialized receiver will likely be several times more \n        expensive than current GPS L1 C/A receivers.\n\n    (2) Uncertain availability.\n\n6.5 Defense Based on Spread-Spectrum Security Codes on L1C\n    In 2003, Logan Scott proposed a cryptographic anti-spoofing \ntechnique based on spread spectrum security codes (SSSCs).\\7\\ The most \nrecent proposed version of this technique targets the L1C signal, which \nwill be broadcast on GPS Block III satellites. Logan has briefed his \nproposal to the GPS Independent Review Team and the GPS Directorate is \naware of it.\n---------------------------------------------------------------------------\n    \\7\\ L. Scott, ``Anti-spoofing and authenticated signal \narchitectures for civil navigation systems,\'\' in Proceedings of the ION \nGNSS Meeting, (Portland, Oregon), pp. 1542-1552, Institute of \nNavigation, 2003.\n---------------------------------------------------------------------------\n            6.5.1 Benefits\n    (1) SSSC are an example of a high-rate security code. As shown in \n        [footnote 8],\\8\\ such codes offer an excellent defense against \n        spoofing.\n---------------------------------------------------------------------------\n    \\8\\ T.E. Humphreys, ``Detection strategy for cryptographic GNSS \nanti-spoofing,\'\' IEEE Transactions on Aerospace and Electronic Systems, \n2011 to be published; available at http://radionavlab.ae.utexas.edu/\ndetstrat.\n\n    (2) Because the signal modification is targeted to L1C, whose \n        center frequency coincides with that of the legacy GPS L1 C/A \n        signal, even single-frequency receivers would have access to an \n---------------------------------------------------------------------------\n        authenticated signal.\n\n    (3) The SSSC defense would offer global civil GPS authentication \n        for all users of GPS.\n            6.5.2 Drawbacks\n    (1) It appears that the first 8 Block III satellites are under \n        design lockdown. There may still be time to modify the \n        remaining satellites to incorporate hardware to support SSSC, \n        but time is quickly running out.\n\n    (2) Even if funds materialized to implement Scott\'s SSSC proposal, \n        the formal design and validation process would take several \n        years.\n\n    (3) In stand-alone operation, the keys required to verify each SSSC \n        would be released up to 5 minutes after the SSSC was \n        transmitted. For 10 satellites in view, this equates to more \n        than 30 seconds between authentication events on any signal. \n        This would be far too long for use in aviation, where integrity \n        alerts within 2 seconds of an event are required. The time-to-\n        authentication could be reduced to less than 2 seconds in a \n        networked architecture. For example, the keys could be sent \n        over a UAVs command-and-control link. But if the command-and-\n        control link were somehow compromised, then short-horizon \n        authentication would again become impossible.\n6.6 Defense Based on Navigation Message Authentication on L1C, L2C, or \n        L5\n    A spoofing defense based on navigation message authentication (NMA) \nembeds public-key digital signatures into the flexible GPS civil \nnavigation (CNAV) message, which offers a convenient conveyance for \nsuch signatures. A detailed proposal for NMA-based authentication is \ngiven in [footnote 9].\\9\\\n---------------------------------------------------------------------------\n    \\9\\ K. Wesson, M. Rothlisberger, and T.E. Humphreys, ``Practical \ncryptographic civil GPS signal authentication,\'\' NAVIGATION, Journal of \nthe Institute of Navigation, 2012 to be published; available at http://\nradionavlab.ae.utexas.edu/nma.\n---------------------------------------------------------------------------\n            6.6.1 Benefits\n    (1) NMA-based authentication is easier to implement than SSSC \n        because the CNAV format is extensible by design so that new \n        messages can be defined within the framework of the GPS \n        Interference Specification (IS). The current GPS IS defines \n        only 15 of 64 CNAV messages, reserving the undefined 49 CNAV \n        messages for future use.\n\n    (2) Could be implemented post-launch on Block IIR-M, Block II-F, \n        and Block III satellites.\n\n    (3) Like SSSC, the NMA-based defense would offer global civil GPS \n        authentication for all users of GPS.\n            6.6.2 Drawbacks\n    (1) Inherently less secure than SSSC because its security codes are \n        low rate.\n\n    (2) As with SSSC, in stand-alone operation there is an up-to-5-\n        minute delay between authentication events for any particular \n        signal. The discussion in Drawback 3 of the SSSC technique \n        applies here in full.\n6.7 Correlation Profile Anomaly Defense\n    This stand-alone non-cryptographic defense relies on the difficulty \nof: (1) Suppressing the true GPS signals during a spoofing attack, and \n(2) exactly duplicating the correlation profile of the authentic GPS \nsignals. A preliminary description of this defense is given in \n[footnote 10].\\10\\\n---------------------------------------------------------------------------\n    \\10\\ K. Wesson, D. Shepard, J. Bhatti, and T.E. Humphreys, ``An \nevaluation of the vestigial signal defense for civil GPS anti-\nspoofing,\'\' in Proceedings of the ION GNSS Meeting, (Portland, Oregon), \nInstitute of Navigation, 2011.\n---------------------------------------------------------------------------\n            6.7.1 Benefits\n    (1) Immediately implementable, low-cost defense.\n\n    (2) No additional hardware required.\n\n    (3) Effective for stationary GPS receivers such as are used for \n        timing applications.\n            6.7.2 Drawbacks\n    (1) Can get confused by multipath when implemented on moving \n        receivers.\n6.8 Multi-Antenna Defense\n    This stand-alone non-cryptographic defense is based on the premise \nthat a spoofer will have great difficulty in mimicking the relative \ncarrier phase of the authentic signals as seen by two or more \nspatially-separated antennas. The technique is detailed in [footnote \n11].\\11\\\n---------------------------------------------------------------------------\n    \\11\\ P.Y. Montgomery, T.E. Humphreys, and B.M. Ledvina, ``A multi-\nantenna defense: Receiver-autonomous GPS spoofing detection,\'\' Inside \nGNSS, vol. 4, pp. 40-46, April 2009.\n---------------------------------------------------------------------------\n            6.8.1 Benefits\n    (1) Extremely effective spoofing defense when combined with \n        physical security of the antenna array.\n\n    (2) Immediately implementable.\n            6.8.2 Drawbacks\n    (1) Additional antenna(s) and RF front-ends required add cost and \n        weight to the defended receiver.\n\n6.9 Defense Based on Cross-Correlation with Military Signals\n    This networked cryptographic defense correlates the unknown \nencrypted military P(Y) code between two civil GPS receivers, \nexploiting known carrier-phase and code-phase relationships. It is \nsimilar to the dual-frequency codeless and semicodeless techniques that \ncivil GPS receivers apply to track the P(Y) code on L2. Originally \ndeveloped by researchers at Stanford University, the technique has been \nrefined and tested by researchers at Cornell University and the \nUniversity of Texas.\\12\\\n---------------------------------------------------------------------------\n    \\12\\ M. Psiaki, B. O\'Hanlon, J. Bhatti, D. Shepard, and T. \nHumphreys, ``GPS spoofing detection via dual-receiver correlation of \nmilitary signals,\'\' IEEE Transactions on Aerospace and Electronic \nSystems, 2012 submitted for review; available at http://\nweb.mae.cornell.edu/psiaki/.\n---------------------------------------------------------------------------\n            6.9.1 Benefits\n    (1) Strong defense.\n\n    (2) Immediately implementable.\n\n    (3) Less than 2-second time to detection.\n            6.9.2 Drawbacks\n    (1) Requires a persistent network connection.\n\n    (2) Computationally expensive.\n                           7. recommendations\n    (1) I recommend that for non-recreational operation in the National \n        airspace, civil unmanned aerial vehicles exceeding 18 lbs be \n        required to employ navigation systems that are spoof-resistant. \n        Spoof resistance will be defined through a series of four \n        canned attack scenarios that can be recreated in a laboratory \n        setting. A navigation system is declared spoof resistant if, \n        for each attack scenario, the system is:\n\n    <bullet> (a) unaffected by the spoofing attack, or\n\n    <bullet> (b) able to detect the spoofing attack.\n\n    (2) More broadly, I recommend that GPS-based timing or navigation \n        systems having a non-trivial role in systems designated by DHS \n        as National critical infrastructure be required to be spoof-\n        resistant.\n\n    (3) I recommend that the Department of Homeland Security commit to \n        funding, development, and implementation of a cryptographic \n        authentication signature in one of the existing or forthcoming \n        civil GPS signals. The signature should at minimum take the \n        form of a digital signature interleaved into the navigation \n        message stream of the WAAS signals. Better would be to \n        interleave the signature into the CNAV or CNAV2 GPS navigation \n        message stream. Best would be to implement the signature as a \n        spread spectrum security code interleaved into the spreading \n        code of the L1C data channel.\n\n    Mr. McCaul. Thank you, Dr. Humphreys, and let me just state \nfor the record I think they canceled the UT football practice \nto do that demonstration; is that correct?\n    Mr. Humphreys. Losing football practice was the biggest \nmiracle of all in my students\' eyes.\n    Mr. McCaul. Which is a big deal in Texas.\n    Let me just follow-up on your last comment because I think \nthat is probably the most--well, first of all this is \nastounding that you could hijack a UAV and bring it down, and I \nthink it is an eye opener. Let me also state that military UAVs \nare encrypted. This could not be done to a military UAV such as \nthe ones used on the border, but any ones used domestically I \nthink have this vulnerability that we are very concerned about. \nI will ask you about that later.\n    But you mentioned that you talked to the FAA and their main \nconcern is security of the airways.\n    Mr. Humphreys. Safety of the airways.\n    Mr. McCaul. I am sorry. Safety of the airways. In terms \nof--we will designate a flight pattern and they want to make \nsure that there are no other either airplanes or UAVs that \nwould interfere with that flight pattern, but their focus is \nnot security.\n    Mr. Humphreys. That is right.\n    Mr. McCaul. So there is no Federal agency that is providing \noversight in terms of that security aspect today; is that \ncorrect?\n    Mr. Humphreys. As far as I know. As far as I know. I \nbelieve that the DHS has a role to play in that and that the \nFAA could possibly play a role there, too. But as I say, its \nculture and its expertise are not designed for that.\n    Mr. McCaul. Well, I think the Government Accountability \nOffice agreed for you. In their report they said that this is \nthe role, when they directed the Secretary of Homeland \nSecurity, to the TSA, to basically provide for that security, \nassess the security risk within the country domestically and \ndevelop a National policy. So I think you have some company \nthere in terms of agreement. I find this to be you know a bit \nof a ``no one\'s minding the store\'\'-type scenario. No Federal \nagency is wanting to step up to the plate, and when you got the \nGAO saying that DHS needs to do it, I tend to agree with them \nthat DHS should be stepping up to the plate, and yet they \nfailed to even bring witnesses to testify here today on this \nvery, very important issue when you had a terror plot just \nthwarted right at the United States Capitol less than a year \nago using one of these UAVs.\n    Getting back to--well, let me ask you this. You have \nidentified a real vulnerability with these domestic UAVs. Tell \nme what would be sort of your kind of nightmare scenario in \ndemonstrating what you are able to do with the UAVs if a \nterrorist or some other malicious person wanted to exploit the \nsystem.\n    Mr. Humphreys. Okay. Well, first I should point out that \ncurrently I am not terribly worried about this. The UAV that we \nbrought down was only about 13 pounds. Not very large. It could \ndo some damage to you if it fell on you and the helicopter \nblades swing swiftly. But I am not terribly worried at present.\n    What my nightmare scenario would be is looking forward 3 or \n4 years where we have now adopted the UAVs into the National \nairspace without addressing this problem, and now the problem \nis scaling up so that we have got more heavy UAVs, more capable \nUAVs and yet this particular vulnerability isn\'t addressed. So \nthat would be my nightmare scenario. We don\'t fix it and it \nbecomes even more an indigenous problem in the UAV navigation \nsystems.\n    Mr. McCaul. In fact I think in the next 2 years predictably \nwe will have thousands of these things flying around \ndomestically. Does that give you concern given the fact that \nthere is no Federal agency really addressing the security \naspects?\n    Mr. Humphreys. The FAA did make a prediction that by 2020 \nthere could be 30,000 of these flying our airspace. It does \nconcern me. I would like someone to take, to take ownership of \nthe security component of UAVs coming into the National \nairspace.\n    Mr. McCaul. Getting back to the--I mean, you have done I \nthink the country a great service by identifying a \nvulnerability. You know, we talk a lot about cybersecurity, if \nyou are connected to the internet you are vulnerable. What you \nhave identified is if you are connected to a GPS device you are \nvulnerable.\n    Can you explain to us basically how that works in the \nlimited amount of time I have left and how we can fix that?\n    Mr. Humphreys. Yeah, sure. Well, you are right. This is a \nbigger problem than UAVs. This is just one expression of the \nlarger problem of unauthenticated civilian GPS signals The \ncivilian GPS signals have been so popular, so useful that over \nthe last 2 decades we have absorbed the technology deeply into \nour critical National infrastructure. So it is that even manned \naircraft have some vulnerability to spoofing. Financial \nexchanges and the energy distribution system are increasingly \nreliant on GPS for timing. So in fact this is, this is a larger \nproblem than the UAV and it all gets traced back to the \nunauthenticated civilian GPS signals.\n    Mr. McCaul. I see my time is about ready to expire but let \nme just say ``thank you\'\' for coming up to Washington and \ntestifying here today. Thank you for what I believe is a great \nservice to the country. Thanks for identifying a vulnerability, \nnot only technology-wise but also from a bureaucratic \nstandpoint. I intend for this committee to fix this problem.\n    With that, the Chairman now recognizes the Ranking Member, \nMr. Cuellar.\n    Mr. Cuellar. Thank you very much, Mr. Chairman. Doctor, \nthank you again very much and I appreciate the work that you \nhave done. Let me just to repeat again, the specific spoofing \nefforts were beyond successful against the encrypted military-\ngrade GPS systems, is that correct?\n    Mr. Humphreys. It is important to remember that. Yes.\n    Mr. Cuellar. Right. So we are talking civilian UAVs.\n    Mr. Humphreys. We are talking about civilian GPS and \ncivilian UAVs.\n    Mr. Cuellar. I would note that also my understanding is \nthat for the civilian, there is different purposes, law \nenforcement, ag purposes, university.\n    Mr. Humphreys. Research purposes.\n    Mr. Cuellar. Research purposes. All of that.\n    So for civilian purposes or commercial purposes most of \nthose UAVs are going to be small, maybe 11 pounds, mini-\nhelicopters, and I just saw one in Laredo for law enforcement \npurposes, small ones, and they are used for specific instances \nand it is usually line of sight, is that correct, most of them?\n    Mr. Humphreys. Those are the norms under which they \ncurrently operate.\n    Mr. Cuellar. So if it is law enforcement, it would be line \nof sight, most of the time it would be there, and they are \nusually 11 pounds; or whatever the case might be?\n    Mr. Humphreys. Yeah. That helps to put that into \nperspective, and I appreciate that, too.\n    Mr. Cuellar. Right. The other thing is since spoofing \nfocuses on GPS signals, it goes beyond unmanned aircraft which \nmeans that anything from cell phones to aircraft will depend, \nyou can have an impact on anything dealing with GPS that \ndepends on GPS for navigation. So it is not only the unmanned. \nIt could be other technologies; is that correct?\n    Mr. Humphreys. Entirely true. As long as they are depending \non civilian GPS signals.\n    Mr. Cuellar. Right. Exactly.\n    Now, I think in a recent interview you stated that the \nclosest thing we had for a foolproof way to prevent spoofing \nwould be for the GPS, the--I think it is part of the Air Force \nor actually also civilian?\n    Mr. Humphreys. Yes. The Directorate.\n    Mr. Cuellar. Yeah, the Directorate, that is correct, from \ncoming down. Can you explain how this would be done without an \nimpact to existing devices that rely on GPS and explain that \nAir Force Directorate?\n    Mr. Humphreys. Sure. Well, I said that is the closest thing \nto foolproof, but the truth is that it would take a long time \nfor that to be planned, rolled out, and implemented. So I am \nnot holding my breath for a change in the signals being \nbroadcast by the GPS satellites. I would like to have it happen \nbecause it would be a solution that would solve the problem for \neveryone worldwide that uses the civil GPS signals. At least it \nwould solve the problem to some degree. How this would not \naffect people who currently use GPS, well, we can make it \nbackward-compatible. So that if you pay attention, it is like a \nwatermark you see in a $20 bill. If you hold up the $20 dollar \nbill, you can see the watermark. But if you don\'t pay attention \nyou are not bothered by its presence. The same thing happens \nwith adding authentication signatures to civilian GPS.\n    Mr. Cuellar. Right. Bottom line is spoofing will affect GPS \nsignals which means anything that depends on GPS signals for \nnavigation, right?\n    Mr. Humphreys. Yeah, you can think of this UAV problem as \nbut one expression of the larger problem.\n    Mr. Cuellar. Right, exactly. Most of the civilian \ncommercial purposes of the UAVs are going to be small, and I \nhave seen different types of UAVs and most of them are, I mean \na lot of them are going to be mini-helicopters. They are going \nto be within a specific site for that specific purpose, law \nenforcement, ag, scientific, news, whatever the case might be?\n    Mr. Humphreys. That is right. Initially I anticipate that \nit will always be very specific when these get authorization. I \ndon\'t know how it is going to look 10 or 20 years from now, \nwhether we are going to have UAV highways in the sky like you \nmight see in the movies. But initially it is going to be very \nspecific. As far as your comments about small UAVs, I want to \npoint out that one of my recommendations in the written \ntestimony is that UAVs exceeding 18 pounds in weight be \nrequired to have a spoof-resistant navigation system, but I \nrecognize that we wouldn\'t want to encumber the smaller UAVs \nwhich are less of a danger and more sensitive to price with \nthat same sort of requirement.\n    So I recognize there is a balance to be struck here and we \ncan debate about the 18 pounds versus the 16 pounds, but as \nthey get above 18 pounds they do become quite, quite deadly if \nthey, if something goes awry.\n    Mr. Cuellar. Right, right. The bottom line is I really \nappreciate it because like any time we go into a new technology \nand we are talking about UAVs and it is basically the \ntechnology is a different platform. You got cameras or sensors, \nwhatever it might be, but it is a different platform, whether \nit is a helicopter, an airplane, this time a UAV. I really \nappreciate what you are doing, and I certainly will be looking \nat your recommendations. I think it is a lot of good work \nthat--you and your students\' data. I think it is a great job \nand certainly we are going to take that into consideration, and \nI thank you for your good work.\n    Mr. Humphreys. Thank you, Mr. Cuellar.\n    Mr. McCaul. I thank the Ranking Member and just I would \nlike for you--I haven\'t had a chance to ask you about your \nrecommendations for safety and security but if I ask that you \nsubmit that for the record, that would be excellent.\n    Mr. McCaul. I now recognize the gentleman from South \nCarolina, Mr. Duncan.\n    Mr. Duncan. Thank you, Mr. Chairman, and I want to thank \nDr. Humphreys for being here. This is very educational to me.\n    In thinking through as we watched the video, thinking \nthrough what happened in 2011 in Iran with the Iranians \nclaiming to have hijacked a military UAV, I guess the question \nI have for you, I know that was an encrypted signal but do you \nthink that the Iranians were able to use a similar technology \nof spoofing to help bring down that UAV?\n    Mr. Humphreys. I think it is important to take whatever the \nIranians say with a couple of doses of salt. But in this case, \nI am somewhat concerned that their claims could have some \nmerit. They may have initiated an electronic barrage against \nthe CIA UAV that was flying their airspace, and it could have \ninitiated a sequence of events that led to its capture. The \nplain fact is it showed up on Iranian television intact. \nIntact. That means we have got a lot of explaining to do.\n    Mr. Duncan. Right. I mean, that means that didn\'t crash.\n    So that type of an electronic barrage that you mentioned \nthat may have been used, is that possible, a possibility within \ncivilian airspace? If someone wanted to capture say a law \nenforcement UAV, could they put up an electronic barrage to \nbring down a law enforcement UAV?\n    Mr. Humphreys. Similar techniques could be used. UAVs \ntypically have two important wireless signals, the command-and-\ncontrol signal, the signal that goes back to the remote pilot, \nand then of course the GPS signal that helps it to navigate. \nMostly the UAVs do well if you cut one of those two umbilical \ncords, but they don\'t do well if you cut both of them. In our \ncase, with the spoofing, we didn\'t cut the cord, we supplanted \nit with a fictitious one. So I am broadly concerned about \njamming electronic barrage attacks and about spoofing, these \nmore sinister under-the-wire attacks.\n    Mr. Duncan. So you not only changed the GPS signal to fool \nthe UAV in regard to elevation or direction but you were able \nto tap into the command-and-control aspect as well?\n    Mr. Humphreys. No, we did not attempt that. What I am \nsaying is that that could be done as a jamming attack. You \ncould cut that cord and prevent the remote operator from \ncontrolling the UAV as he or she wishes.\n    Mr. Duncan. So you were able to change the GPS signal and \nto fool the plane into thinking the elevation was differently \nto bring it down?\n    Mr. Humphreys. Yes, and the remote operator was in contact \nwith the UAV the entire time. It was just that nothing appeared \nwrong to his sensors in the current configuration that we \nattacked.\n    Mr. Duncan. But you couldn\'t have flown that UAV through \nany command-and-control ability to another runway and captured \nit.\n    Mr. Humphreys. Ultimately, yes. It is not terribly easy to \ncontrol it once you have got it. It is like a black stallion \nyou find in the forest. You can jump on its back; can you ride \nit? The question that we have been asking ourselves is what \ncould be done actually after you have captured it other than \njust moving it down like we did or doing broad strokes.\n    Mr. Duncan. Right. Well, if the drone is used for \nsurveillance purposes and has a real-time video feed, could \nthat feed be hacked into or a replacement feed sent to fool the \noperator? I am thinking Mission Impossible here where they \nchange the video feed and the operator is seeing something \ncompletely different; is that a possibility?\n    Mr. Humphreys. Or sneak up there and put a Polaroid picture \nright in front of the video feed?\n    Mr. Duncan. Exactly.\n    Mr. Humphreys. Well, it turns out that these are areas of \nresearch in our laboratory and elsewhere, but the truth is that \nthose kinds of data feeds can take advantage of the existing \nencryption utilities that are very difficult to crack. So if \nprecautions have been put in place so those feeds are encrypted \nthen it is not so easy.\n    The attack that we were successful in was going after the \nunencrypted, unauthenticated civil GPS signal. Nobody had \nbothered to protect that signal and so that was the weakest \nlink.\n    Mr. Duncan. Do you think most law enforcement or most \nagencies, even Governmental agencies over the United States are \nusing encrypted signals capability or using just civilian GPS?\n    Mr. Humphreys. Only a very few civil government agencies in \nthe United States are using the encrypted military signal. \nAlmost all of us depend on these civilian signals. I will tell \nyou that I had two of the lieutenants in the Austin Police \nDepartment in my office on Tuesday, and they were asking me for \nguidance on what I would do with their newly-purchased UAV. \nWould I use it, would I recommend that they use it during game \nday as they want to monitor for suspicious activities on, \naround the UT football stadium? Would I recommend they for SWAT \nactivities as they have perhaps hostage situations and so \nforth? So I gave them my recommendations, which were if you \nhave got some risk on the ground already I would get those eyes \nin the sky but if there isn\'t an on-going risky activity on the \nground, I would probably keep it down.\n    Mr. Duncan. Do you think criminal elements could utilize \nthis activity to thwart law enforcement surveillance?\n    Mr. Humphreys. I think they could use the technology, the \nspoofing technology that I was talking about?\n    Mr. Duncan. The GPS technology that the students have come \nup with.\n    Mr. Humphreys. I want to make a point that this is not \neasy. It wasn\'t easy to build the device that we have got. It \nhas taken us years to perfect its use. The trouble is that \ncivilian malefactors or others can get a hold of what are \ncalled GPS signal simulators, and they can do almost everything \nthat we did. These are readily available, even purchasable. So \nI am worried that it could be a weapon in the arsenal of \norganized crime or state actors or organized terrorists.\n    Mr. Duncan. Thank you. My time is up. I yield back, Mr. \nChairman.\n    Mr. McCaul. Right. The Chairman now recognizes the actual \nRanking Member of the subcommittee, Mr. Keating.\n    Mr. Keating. Thank you, Mr. Chairman. The thought of having \ntwo Texas representatives here prompted me to get here with \ngreat alacrity, but I want to thank Mr. Cuellar for his fine \nperformance. I appreciate that. Thank you, Mr. Chairman. I just \nask unanimous consent that my statement go on the record so \nthat we can move expeditiously to questions.\n    [The statement of Mr. Keating follows:]\n\n              Statement of Ranking Member William Keating\n\n    I want to thank Chairman McCaul for holding today\'s hearing to \nexamine the use of Unmanned Aerial Vehicles, or UAVs, within the \nhomeland.\n    For years, the United States has successfully deployed UAVs in \nmilitary operations throughout Iraq and Afghanistan.\n    More recently, changes in the law have paved the way for public \nagencies--including State and local law enforcement--to pursue UAVs \ntechnology for law enforcement use.\n    At present, the impact of UAVs flying in the National airspace and \nparticipating in day-to-day activities like watering fields and \nspraying pesticides is unknown; however, there are both risks and \nbenefits to expanding this technology within the homeland.\n    As a Member representing a maritime district, I am impressed with \nthe ability of UAVs to map hurricanes, respond to severe flooding, and \nassist the U.S. Coast Guard in search-and-rescue missions.\n    The unique manner in which UAVs conduct surveillance and \nreconnaissance has also resulted in successful military missions; \nhowever, it is these same capabilities that make UAVs so disconcerting \nat home.\n    To that end, I am concerned about the lack of oversight on these \nvehicles, the fact that there is a continuing need to define what they \ncan and cannot be used for and finally, the absence of privacy \nsafeguards that currently do not exist.\n    I understand the general public\'s concern. UAVs can be equipped \nwith thermal-imaging sensors; WiFi sniffers; license plate readers, and \nfacial recognition cameras.\n    Moreover, they can hover over the same location for extended \nperiods of time, collecting information and searching targets and \nproperties within view without first obtaining a warrant.\n    Some law enforcement agencies have already procured UAVs capable of \nfiring non-lethal weapons and there aren\'t any rules, laws, or \nregulations in place to prevent these agencies from fully weaponizing \nthis equipment.\n    I do not mean to use this hearing as an opporuntity to fear monger \nbecause as a former District Attorney, I do not believe that it\'s law \nenforcement\'s intent to employ these technologies in a harmful manner, \nbut I am seriously concerned that there is not one single Federal \nagency responsible for overseeing the operations of UAVs in our \nNational airspace.\n    Moreover, safety issues, such as: Sense-and-avoid technologies that \nenable UAVs to avoid other aircraft; the absence of a dedicated radio \nfrequency for UAVs; and the assurance of constant command-and-control \non the ground--continue to exist.\n    As Chairman McCaul knows, I take a particular interest in airport \nperimeter security and the deployment of these technologies makes me \nwonder how far we are stretching this perimeter when airplanes are made \nto share the skies with UAVs. What does this mean for passenger safety?\n    Furthermore, as we will learn this morning, the risk faced by \nhackers and spoofers seeking to intercept and use for their own \npurposes information captured by UAVs has not been fully addressed.\n    As a result, I am looking forward to hearing from today\'s witnesses \nabout the best path forward as we seek to safely and lawfully integrate \nUAVs in our National airspace.\n    As we grapple with UAVs and the privacy and safety issues they \npresent, I would be remiss if I did not also mention a much safer and \nnon-invasive unmanned technology--underwater unmanned vehicles, or \nUUVs--developed throughout the United States and often tested in waters \nright off the Cape.\n    There are today an estimated 450 underwater unmanned vehicles in \nthe U.S. military inventory.\n    At present, the primary missions of UUVs are mine detection and \nmaritime security and as we\'ve already seen with the Deepwater horizon \ndisaster--where UUVs developed at Wood\'s Hole Oceanographic Institute \nwere deployed to record the contamination of the water--there are many \nhomeland security-related applications that can be pursued for \nunderwater technologies, as well.\n    Again, I look forward to hearing from today\'s witnesses.\n    I yield back the balance of my time.\n\n    Mr. Keating. I had just a question for Dr. Humphreys. When \nyou are comparing the civilian, if you want to use that term, \nversus what law enforcement uses in the different codes of \nencryption, what is the cost differential? You know, if law \nenforcement wants encrypted more, is the cost-prohibitive or \nwould that be a better track to take to differentiate it so \nthat there is more encryption and more safety as a result from \nspoofing?\n    Mr. Humphreys. Right. So perhaps you are voicing some of \nthe recommendations that the AUVSI group has recommended. They \nwould like to use the so-called SASM receivers, GPS receivers \nthat have been formerly dedicated just for military uses, into \nthe civilian UAVs so that they can be protected from these \nkinds of hacking attacks. The trouble I see with that is two-\nfold. No. 1, yes, the price goes quite a bit up because there \nare only a couple of companies that can build these SASM \nreceivers and so the price would much more than double, and \nthat is going to hurt this Nation\'s industry that is sensitive \nto price, especially for the smaller devices. Second, I don\'t \nsee the logistics working out. These SASM receives are hot \nitems. You would not want them proliferating among civilians. \nYou wouldn\'t want them to end up in the wrong hands, and you \nwouldn\'t necessarily want to distribute the keys on a short-\nterm basis because that is cumbersome for the owners and you \ndon\'t want to distribute them on a long-term basis because then \nthey can be used in unauthorized senses.\n    So I don\'t see that as a solution. I don\'t see military \nsignals being used by civilians as a widespread solution.\n    Mr. Keating. Just another question. You know, we have dealt \nquite a bit with airport security on this committee as well. As \nany person is told to turn off your cell phone, turn off \neverything during the critical periods of communication on \nlanding and takeoff, how could this be used to disrupt the \norderly and safe takeoffs and landings of airplanes, commercial \nairplanes?\n    The FAA is rolling out what is called its NextGen system. \nIt is an air traffic control system that depends much more \nheavily on GPS than their current system. Of course, they are \nalso using in commercial aircraft and general aviation the \ncivilian GPS signals. Now, these planes are large and they have \ngood inertial sensors and they have two pilots at the helm. So \nthere is some redundancies in place. But the autopilots depend \nquite heavily on the GPS. Whereas they deal fairly well with an \noutage of GPS, a jamming attack for example, or some other \nreason that it goes away, I don\'t think the testing has been \nadequate for understanding how they would deal with a spoofing \nattack.\n    Mr. Keating. Thank you. Mr. Chairman, I yield back my time.\n    Mr. McCaul. Thank the Ranking Member. The Chairman now \nrecognizes the gentlelady from New York, Ms. Clarke.\n    Ms. Clarke. Thank you very much, Mr. Chairman. I thank our \nRanking Member, Mr. Cuellar, for filling in.\n    Dr. Humphreys, I find this whole topic quite fascinating. I \nserve as Ranking Member on the Subcommittee for Cybersecurity \nand Infrastructure Protection. So this is quite fascinating. \nOne of the questions I have, and I have had this quite \nfrequently as we advance our technological know-how, is whether \nin fact it pays in the outset to bake into our technology ways \nin which we can counteract disruption or if need be disarm and \ndisable the devices that are developed. It would seem to me \nknowing what we know, that the next generation of UAVs would be \nsensitive enough that if any spoofing activity were to take \nplace, something could be baked into the device that would \nprotect us.\n    What say you about that?\n    Mr. Humphreys. I agree with that, and I would recommend \nwholeheartedly efforts to bake in, as you say, anti-spoofing \ntechniques into the UAV technology. The problem would be \nfinding ourselves 5 or 10 years from now without taking this \nissue as seriously enough that now we have got a great number \nof these UAVs plying our airspace which are, which continue to \nbe just as vulnerable as the one that we took down. There are \ntechniques, there are simple techniques that, while not \nfoolproof, they can increase the resistance to a spoofing \nattack significantly. I recommend in my written testimony a \nlong list of these techniques. Some of them simple, some of \nthem not so simple. The bare fact is that anti-spoofing is \nhard. There is no quick and easy and cheap solution, but there \nare reasonable cost-effective measures we can take in the short \nterm to bake this in, as you say.\n    Ms. Clarke. You also stated that in your view the problem \nshould be solved at the source, at the GPS satellites \nthemselves. Do you believe that this is likely to occur?\n    Mr. Humphreys. So I did say that on an interview. I guess I \ndespair at the kinds of institutional changes that would be \nrequired looking for funding, looking for a political will to \nbring that about. In the very best scenario it might take 5 \nyears before we see any protection. So I am becoming more \npessimistic that we can solve this problem at the GPS \nsatellites themselves. I suppose that a more grassroots \napproach from the UAVs within their navigation systems is more \nreasonable, more practical.\n    Ms. Clarke. Dr. Humphreys, you recommended that DHS commit \nto funding development and implementation of a cryptographic \nauthentication signature in existing or forthcoming civil GPS \nsignals.\n    How did DHS respond to this recommendation, and do you \nthink the agency will make the suggested changes?\n    Mr. Humphreys. So this is a long-term recommendation. As I \nsaid, I am not terribly sanguine about it happening tomorrow or \neven within 5 years, but long-term I would like DHS to commit \nto funding this. The Department of Defense has indicated some \nwillingness to implement a change to the civil GPS signals so \nthat the can be authenticated like putting a watermark on a $20 \nbill, but they don\'t have funds to do it. They have got tight \nbudgets and they are looking for somebody who would step up to \nfund it. I believe it would fall to the DHS to fund something \nlike this. I can\'t say that I am terribly optimistic.\n    Ms. Clarke. So just listening what you have had to say, \nwhen you look at the rate at which these UAVs are being \nproduced, and if your estimate is that it might take us about 5 \nyears to get there, we could be talking about you know tens of \nthousands of UAVs at that point in time having been deployed at \nsome level, whether it is military, whether it is local law \nenforcement.\n    So, you know, I want to thank you first of all for the work \nthat you have done, the research, and the capabilities that you \nhave uncovered, but my concern is, you know, what you suggest \nwe do right now.\n    Mr. Humphreys. The suggestions I have right now are these \ngrassroots approaches for fixing the UAV without having to ask \npermission of the DHS or the GPS Directorate of the Air Force. \nThere are reasonable techniques that you can bake into the GPS \nreceivers and into the entire navigation systems of these UAVs. \nBut while they don\'t prevent sophisticated, very sophisticated \nattacks, they would sure make them much harder.\n    Ms. Clarke. Thank you very much. I yield back, Mr. \nChairman.\n    Mr. McCaul. I thank the gentlelady and you raise a great \npoint, and if anything, I hope we can fix these vulnerabilities \nthat we have, and I again ask that you put those \nrecommendations into the record.\n    The Chairman now recognizes the gentleman from Illinois, \nMr. Davis.\n    Mr. Davis. Thank you very much, Mr. Chairman. I must \nconfess that I am fascinated by this. I was sitting here \nthinking that we may have all of these things in the \nenvironment zinging all around every place when you watch what \nused to be science fiction. I am not sure it is as much fiction \nnow as it used to be. But I was trying to figure out the \nutilization and utility. What is the usefulness of the \ncontinuous development of this technology?\n    Mr. Humphreys. That is a great question. There are in fact \na lot of great uses to which these drones could be put. I \nparticularly want to use them in our research so that we can do \nbetter detection of interference sources in the GPS radio \nbands, and I will confess also that I am looking forward to a \nday when I could get a burrito delivered to my doorstep from a \ndrone that does takeout delivery.\n    Other types of uses could be in monitoring power lines. Of \ncourse monitoring the border, helping to surveil to difficult \nsituations like a SWAT attack against somebody who has got a \nhostage situation on-going. So I see these as being very \nuseful, and I would not want to put the brakes on the plan the \nFAA has to roll them out in the future. I would simply want to \nhold the FAA to the language of the act passed back in February \nso that we safely accelerate the adoption of these UAVs into \nthe National airspace.\n    Mr. Davis. I guess since we have got a great deal of \nconcern about terrorism, terrorists, terrorist plots, that it \nwould give us the opportunity to stay a step ahead of \nindividuals or countries even that might have other kinds of \nmotivation for further development.\n    Mr. Humphreys. That is true. If you put the brakes on this \nmassive industry now, you end up putting us at a disadvantage \ncompared to other countries. The UAV revolution is coming and \nwe might as well be on the cutting edge of it.\n    Mr. Davis. How do we balance, and I am thinking of all of \nthe concerns that we have right now about money and \nexpenditures and, you know, when we cut $25 billion out of this \nor we deny people food stamps. You know I think of people who \nare having so much difficulty simply having shelter or a place \nto live. How do we balance the utilization of our resources in \nterms of what it would take to further develop the technology \nthat we are talking about versus how do you feed the hungry?\n    Mr. Humphreys. Well, it is a good question, but I guess I \nwould point out that in many cases these UAVs would save money. \nThe Austin Police Department, the lieutenants that were talking \nto me last Tuesday, were telling me that it cost them $5 \nmillion to buy a helicopter for manned use for surveillance and \nso forth and maybe only $50,000 for UAV. They are on a tight \nbudget, so I can understand why they would be looking to the \nUAVs to save money. That frees up budgets for other worthy uses \nof those funds.\n    It is also going to be I think a dynamo for innovation and \njobs, a healthy domestic UAV industry. My main contention is \nthat, let\'s let it go ahead, but let\'s be vigilant about the \nuses to which these UAVs are put and ensure that people\'s \nprivacy and their security is a top priority.\n    Mr. Davis. Well, let me thank you very much. I certainly \nsupport technological exploration and technological \nadvancement. I just want to be as balanced about it as we can, \nand I commend you for your work. Thank you very much.\n    Mr. McCaul. I thank the gentleman. The Chairman now \nindulges the gentleman from Texas, Mr. Cuellar, for one \nquestion.\n    Mr. Cuellar. One question. Again, I appreciate all of the \ngood work you have done. There are, first of all, there is the \nmilitary type of drones or UAVs, and then there is the hobby \nUAVs and then the commercial UAVs. Would you say that?\n    Mr. Humphreys. I think those are good broad \nclassifications, yes.\n    Mr. Cuellar. What you used was----\n    Mr. Humphreys. It wasn\'t a personal UAV. It was an $80,000 \ndevice.\n    Mr. Cuellar. But was it a hobby?\n    Mr. Humphreys. No. I mean a hobbyist could use it, of \ncourse, but it was quite expensive for your average weekend \nhobbyist.\n    Mr. Cuellar. Right. My understanding is that most of the \nhobby UAVs do not have protection over radio signals and they \ncan be easily taken over, whether it is $80,000 or $5,000. My \nunderstanding is most commercial UAVs have encryption \ncommunication, the frequency hop or the transmission methods \nwhere hacking or spoofing would be a lot more difficult; is \nthat correct?\n    Mr. Humphreys. The communication to the UAV from the remote \npilot might well be secure, but the spoofing of the GPS signals \nis not secure and that is what we demonstrated. We were using a \nhigh-end sophisticated UAV. We were not using a do-it-yourself \ndrone.\n    Mr. Cuellar. Right. My understanding is most of the \ncommercial UAVs do have the encryption on it and having the \nencryption is very important because just like Robert Hanssen, \nremember the FBI person, they were selling the encryption keys \nand there were certain things involved on that, but I just \nwanted to--like I say I appreciate the work but I want to make \nsure we----\n    Mr. Humphreys. Yes. They may well have encryption on the \ncommand-and-control link. They do not have encryption on the \nGPS navigation link.\n    Mr. Cuellar. Those are the recommendations that you \nmentioned to the Chairman----\n    Mr. Humphreys. I recommend that we ensure that UAVs \nexceeding 18 pounds have certified themselves as spoof-\nresistant, and I give a brief definition for that in my \nstatement. Also I am willing to entertain that definition in \nfurther research.\n    Mr. Cuellar. Okay. Thank you. Thank you, Mr. Chairman.\n    Mr. McCaul. I thank the gentleman. Let me just also \nreiterate what Mr. Cuellar said earlier, and that is we have \nworked together very closely on getting these UAVs, military, \nDHS, down on the border, Southwest Border where they are very \nneeded and very valuable in securing the border. What we are \ntalking about here today is the domestic use of UAVs, which are \nnot encrypted, which are vulnerable, and there is really no \npolicy set forth at a National level in terms of: How do we \ndeal with these UAVs that we know in the next couple of years \nare going to multiply by the thousands? I think it is incumbent \nupon the Department of Homeland Security, particularly in light \nof this terrorist plot, to engage on this issue and come \nforward with some leadership and provide that security and \npolicy.\n    So with that, I would really want to thank our witness, Dr. \nHumphreys. It has been a real pleasure, not only to hear your \ninsightful and very intelligent testimony but on a personal \nlevel to meet you as well. Thank you for being here.\n    Mr. Humphreys. Thank you, Chairman McCaul and all of you \nMembers of the subcommittee.\n    Mr. McCaul. With that, the first panel is adjourned and we \nwill move into the second panel.\n    The Chairman now recognizes the second panel, and before I \ndo that, I want to ask unanimous consent that this committee \nwelcome a colleague and fellow Texan, Congressman Kevin Brady, \nto introduce his local hometown sheriff.\n    Mr. Brady. Great. Well, thank you very much, Chairman \nMcCaul and Ranking Member Keating. I want to thank you and the \nother Members of the committee for allowing me this special \nprivilege today. I am very pleased to be able to introduce to \nthe committee today not only a constituent but a friend and an \nincredible law enforcement officer who has hands-on experience \nin this very subject, Chief Deputy William Randy McDaniel of \nthe Montgomery County Sheriff\'s Office. The Montgomery County, \nTexas Sheriff\'s Office has jurisdiction over Houston\'s largest \nsuburb, and it is one of the fastest-growing counties in \nAmerica. It is the only agency in Texas that is currently using \nunmanned aerial vehicles for law enforcement purposes. In my \nview it has tremendous potential for public safety, for \nemergency response, for search and rescue, and at times during \nnatural disasters such as the wildfires we experienced locally \nlast year.\n    Chief McDaniel is a decorated law enforcement officer with \nan impressive career spanning many decades. He has received the \nTexas Department of Public Safety, Traffic Law Enforcement \nDivision Chief\'s Award for Excellence, two awards in that \narena. While serving the United States Air Force, he received \nthe Air Force Commendation Medal, the Humanitarian Service \nMedal, and the 15th Air Force Combat Crew Excellence Award. He \nis also a graduate of the FBI National Academy in Quantico, \nVirginia.\n    I know that Chief McDaniel\'s testimony will be insightful \nand helpful in an emerging issue. So thank you for allowing me \nto introduce this good friend of the community today, Chief \nMcDaniel. Thank you for being here.\n    Mr. McCaul. Thank you, Mr. Brady, for that very good and \nkind introduction. With that I am going to introduce the rest \nof the panel.\n    Dr. Gerald Dillingham is currently the director of the \ncivil aviation issues for the U.S. Government Accountability \nOffice, or GAO. He is a member of the Senior Executive Service \nand is responsible for direction, program evaluations, and \npolicy analysis studies related to civilian aviation issues, \nincluding safety, environment, air traffic control, airport \ndevelopment, and international aviation.\n    Prior to coming to GAO in 1981, Dr. Dillingham served on \nthe faculties of the University of California and the \nUniversity of Illinois. I note that for Mr. Davis, my \ncolleague, a fellow Illinoian. In addition, he served on the \nNational Commission on Terrorist Attacks upon the United \nStates, or the 9/11 Commission, on the aviation in \ntransportation security team from 2003 to 2004.\n    Let me see here. My notes. I apologize. Our last witness, \nlast but not least, Ms. Amie Stepanovich is the legal counsel \nat the Electronic Privacy Information Center. Her work includes \nissues of National security, Government surveillance, digital \nsecurity, and open Government. Ms. Stepanovich is the moderator \nof a weekly Twitter-based privacy discussion. She regularly \nassists with EPIC\'s internet and social media web presence. \nPrior to joining EPIC, not to be confused with the El Paso \nIntelligence Center, I don\'t think anybody would ever confuse \nyou with being associated with them, but Ms. Stepanovich \ngraduated from New York Law School where she pursued studies on \nmedia law, technology, and the First Amendment. We appreciate \nyou being here today as well to bring up these very important \nprivacy issues that we see with the domestic use of these UAVs.\n    So with that, now the Chairman recognizes Mr. Dillingham \nfor his opening statement.\n\n STATEMENT OF GERALD L. DILLINGHAM, PH.D., DIRECTOR, PHYSICAL \n    INFRASTRUCTURE ISSUES, GOVERNMENT ACCOUNTABILITY OFFICE\n\n    Mr. Dillingham. Thank you, Mr. Chairman, Ranking Member, \nand Members of the subcommittee. My statement today discusses \nthree areas: First, an overview of the findings and \nrecommendations from our 2008 study that focused on some of the \nkey challenges to safe integration of unmanned aerial systems \nin the National airspace; second, DHS\'s role in the domestic \nuse of these systems; and, third, our preliminary observations \non emerging issues.\n    In 2008, the four key challenges we identified to \nintegration were the ability of UASs to sense and avoid other \naircraft, ensuring uninterrupted command and control, the \ndevelopment of standards to ensure that UASs meet established \nsafety, reliability, and performance requirements and, finally, \nto ensure that the regulations being developed for unmanned \naircraft be equal to existing regulations for manned aircraft.\n    To address these challenges, GAO developed a matter for \nCongressional consideration and three recommendations, two for \nFAA and one for DHS. We recommended that FAA issue a \ncomprehensive UAS program plan and that it establish processes \nto obtain available operational data. We have closed those \nrecommendations as being implemented. We suggested that \nCongress create an organization within FAA to coordinate \nGovernment and private-sector efforts to address the safety \nchallenges and we also recommended that TSA examine the \npotential security implications related to UASs and take \nappropriate action.\n    We have closed our matter for Congressional consideration \nand our recommendation to TSA, but as not being implemented.\n    Regarding DHS\'s role with UASs international airspace, DHS \nis one of several partner agencies of FAA\'s Joint Planning and \nDevelopment Office that is working to integrate UASs.\n    FAA has granted Customs and Border Protection authority to \noperate its 10 UASs to support its National security missions \nalong the U.S. Northern and Southern Borders. DHS has also \nprovided UAS support to other Federal and State agencies in \ncarrying out their missions.\n    As the Chairman described in his opening statement, TSA, \nacting in this role as lead agency for transportation security, \nin 2004 issued an advisory which indicated that the Federal \nGovernment was concerned that UASs could be modified and used \nto attack key assets and infrastructure in the United States.\n    However, neither DHS nor TSA has taken any significant \nactions to implement our 2008 recommendations to examine the \npotential security implications of UAS.\n    According to TSA officials, in 2008 and again as recently \nas this month, they believe that the agency\'s current practices \nare sufficient and that no additional actions are needed.\n    With regard to emerging issues, our on-going work has \nidentified three key issues that warrant further consideration. \nFirst is privacy as it relates to the collection and use of \nsurveillance data. Members of Congress, civil liberties \norganizations, and civilians have expressed concerns at the \npotential increased use of UASs in the National airspace by law \nenforcement or for commercial purposes as potential privacy \nimplications. Currently, no Federal agency has specific \nstatutory responsibility to regulate privacy matters relating \nto UAS. Stakeholders have told us by developing guidelines for \nthe appropriate use of UASs ahead of widespread proliferation \ncould in fact preclude abuses of the technology and negative \npublic perception of the potential uses that are planned for \nthese aircraft.\n    A second emerging issue is that owners of model aircraft do \nnot require permission or license from FAA to operate their \naircraft. As the Chairman described in his opening statement, a \nman in Massachusetts pleaded guilty for plotting to use a \nlarge, remote-controlled model aircraft filled with C4 plastic \nexplosive to attack the Pentagon and the U.S. Capitol. This \nkind of incident highlights the potential for model aircraft to \nbe used to cause harm.\n    A third emerging issue is the potential for jamming of GPS \nsignals that control UASs. In a GPS jamming scenario, the \naircraft could potentially lose its ability to determine where \nit is located and in what direction it is traveling. Low-cost \ndevices that jam GPS signals are readily available on the \ninternet.\n    Mr. Chairman, Ranking Member Keating, and Members of the \nsubcommittee, we plan to issue a full report to this \nsubcommittee and other committees in the Congress on our UAS \nwork later in the fall.\n    Thank you, Mr. Chairman.\n    [The prepared statement of Mr. Dillingham follows:]\n\n               Prepared Statement of Gerald L. Dillingham\n                             July 19, 2012\n\n                             GAO HIGHLIGHTS\n\n    Highlights of GAO-12-889T, a testimony before the Subcommittee on \nOversight, Investigations, and Management, Committee on Homeland \nSecurity, House of Representatives.\n\nWhy GAO Did This Study\n    UAS aircraft do not carry a human operator on board, but instead \noperate on pre-programmed routes or by following commands from pilot-\noperated ground stations. An aircraft is considered to be a small UAS \nif it is 55 pounds or less, while a large UAS is anything greater. \nCurrent domestic uses of UAS are limited and include law enforcement, \nmonitoring or fighting forest fires, border security, weather research, \nand scientific data collection by the Federal Government. FAA \nauthorizes military and non-military UAS operations on a limited basis \nafter conducting a case-by-case safety review. Several other Federal \nagencies also have a role or interest in UAS, including DHS. In 2008, \nGAO reported that safe and routine access to the National airspace \nsystem poses several obstacles.\n    This testimony discusses: (1) Obstacles identified in GAO\'s \nprevious report on the safe and routine integration of UAS into the \nNational airspace, (2) DHS\'s role in the domestic use of these systems, \nand (3) preliminary observations on emerging issues from GAO\'s on-going \nwork.\n    This testimony is based on a 2008 GAO report and on-going work, and \nis focused on issues related to non-military UAS. In on-going work, GAO \nanalyzed FAA\'s efforts to integrate UAS into the National airspace, the \nrole of other Federal agencies in achieving safe and routine \nintegration, and other emerging issues; reviewed FAA and other Federal \nagency efforts and documents; and conducted selected interviews with \nofficials from FAA and other Federal, industry, and academic \nstakeholders.\n\nUNMANNED AIRCRAFT SYSTEMS.--USE IN THE NATIONAL AIRSPACE SYSTEM AND THE \n              ROLE OF THE DEPARTMENT OF HOMELAND SECURITY\n\nWhat GAO Found\n    GAO earlier reported that unmanned aircraft systems (UAS) could not \nmeet the aviation safety requirements developed for manned aircraft and \nposed several obstacles to operating safely and routinely in the \nNational airspace system. These include: (1) The inability for UAS to \ndetect, sense, and avoid other aircraft and airborne objects in a \nmanner similar to ``see and avoid\'\' by a pilot in a manned aircraft; \n(2) vulnerabilities in the command and control of UAS operations; (3) \nthe lack of technological and operational standards needed to guide the \nsafe and consistent performance of UAS; and (4) the lack of final \nregulations to accelerate the safe integration of UAS into the National \nairspace. GAO stated in 2008 that Congress should consider creating an \noverarching body within the Federal Aviation Administration (FAA) to \naddress obstacles for routine access. FAA\'s Joint Planning and \nDevelopment Office (JPDO) has taken on a similar role. FAA has \nimplemented GAO\'s two recommendations related to its planning and data \nanalysis efforts to facilitate integration.\n    The Department of Homeland Security (DHS) is one of several partner \nagencies of JPDO working to safely integrate UAS into the National \nairspace. Since 2005, FAA has granted DHS authority to operate UAS to \nsupport its National security mission in areas such as the U.S. \nnorthern and southern land borders. DHS\'s Transportation Security \nAdministration (TSA) has the authority to regulate security of all \nmodes of transportation, including non-military UAS, and according to \nTSA officials, its aviation security efforts include monitoring reports \non potential security threats regarding the use of UAS. Security \nconsiderations could be exacerbated with routine UAS access. TSA has \nnot taken any actions to implement GAO\'s 2008 recommendation that it \nexamine the security implications of future, non-military UAS.\n    GAO\'s on-going work has identified several UAS issues that, \nalthough not new, are emerging as areas of further consideration in \nlight of greater access to the National airspace. These include \nconcerns about privacy relating to the collection and use of \nsurveillance data. Currently, no Federal agency has specific statutory \nresponsibility to regulate privacy matters relating to UAS. Another \nemerging issue is the use of model aircraft (aircraft flown for hobby \nor recreation) in the National airspace. FAA is generally prohibited \nfrom developing any rule or regulation for model aircraft. The Federal \nBureau of Investigation report of a plot to use a model aircraft filled \nwith plastic explosives to attack the Pentagon and U.S. Capitol in \nSeptember 2011 has highlighted the potential for model aircraft to be \nused for unintended purposes. An additional emerging issue is \ninterruption of the command and control of UAS operations through the \njamming and spoofing of the Global Positioning System between the UAS \nand ground control station. GAO plans to report more fully this fall on \nthese issues, including the status of efforts to address obstacles to \nthe safe and routine integration of UAS into the National airspace.\n\n<GRAPHIC(S) NOT AVAILABLE IN TIFF FORMAT>\n\n    Chairman McCaul, Ranking Member Keating, and Members of the \nsubcommittee: I appreciate the opportunity to testify before you today \non obstacles to unmanned aircraft systems (UAS) safe and routine \noperations in the National airspace, the role that the Department of \nHomeland Security (DHS) has in UAS operations, and emerging UAS issues. \nMany stakeholders have exhibited increased interest in UAS for border \nsecurity and disaster assistance, among other uses. Additionally, as \ncombat operations in Afghanistan decrease, all of the United States \nmilitary services expect to conduct more UAS training flights across \nthe contiguous United States.\\1\\\n---------------------------------------------------------------------------\n    \\1\\ House Permanent Select Committee on Intelligence, Performance \nAudit of the Department of Defense Intelligence, Surveillance, and \nReconnaissance (Washington, DC: Apr. 2012).\n---------------------------------------------------------------------------\n    UAS aircraft do not carry a human operator on board, but instead \noperate on pre-programmed routes or by following commands from pilot-\noperated ground stations. These aircraft are also referred to as \n``unmanned aerial vehicles,\'\' ``remotely piloted aircraft,\'\' ``unmanned \naircraft,\'\' or ``drones.\'\' The term ``unmanned aircraft system\'\' is \nused to recognize that a UAS includes not only the airframe, but also \nassociated elements such as a ground station and the communications \nlinks. UAS are typically described in terms of weight, endurance, \npurpose of use, and altitude of operation. Most UAS are considered \nsmall, weighing less than 55 pounds; some of which fly less than 400 \nfeet above the ground. According to an industry association, small UAS \nare expected to comprise the majority of UAS that will operate in the \nNational airspace.\n    The Federal Aviation Administration (FAA) authorizes military and \nnon-military (academic institutions; Federal, State, and local \ngovernments including law enforcement entities; and private sector \nentities) UAS operations on a limited basis after conducting a case-by-\ncase safety review. Only Federal, State, and local government agencies \ncan apply for a Certificate of Waiver or Authorization (COA); private-\nsector entities must apply for special airworthiness certificates in \nthe experimental category.\\2\\\n---------------------------------------------------------------------------\n    \\2\\ COAs and special airworthiness certifications in the \nexperimental category represent exceptions to the usual certification \nprocess. FAA examines the facts and circumstances of a proposed UAS to \nensure that the prospective operator has acceptably mitigated safety \nrisks.\n---------------------------------------------------------------------------\n    Between January 1, 2012 and July 17, 2012, FAA had issued 201 COAs \nto 106 Federal, State, and local government entities across the United \nStates, including law enforcement entities as well as academic \ninstitutions. Additionally, FAA had issued 8 special airworthiness \ncertifications for experimental use to four UAS manufacturers. \nPresently, under COA or special airworthiness certification, UAS \noperations are permitted for specific times, locations, and operations. \nThus it is not uncommon for an entity to receive multiple COAs for \nvarious missions. Over the years, concerns have been expressed by the \nCongress and other stakeholders that sufficient progress has not been \nmade to integrate UAS into the National airspace system. In 2008, GAO \nreported that safe and routine access to the National airspace system \nposes several obstacles. We also stated that Congress should consider \ncreating an overarching body within FAA to coordinate Federal, \nacademic, and private-sector efforts in meeting the safety challenges \nof allowing routine access to the National airspace system. \nAdditionally, we made two recommendations to FAA related to its \nplanning and data analysis efforts to facilitate the process of \nallowing UAS routine access to the National airspace. We also \nrecommended that DHS assess the security implications of routine \naccess. FAA is working toward implementing the requirements set forth \nby its February 2012 reauthorization to accelerate UAS integration.\\3\\\n---------------------------------------------------------------------------\n    \\3\\ FAA Modernization and Reform Act of 2012, Pub. L. No. 112-95, \n\x06\x06 332-334, 126 Stat. 11 (2012).\n---------------------------------------------------------------------------\n    Several other Federal agencies also have a role or interest in UAS, \nincluding the Department of Homeland Security (DHS), the Department of \nDefense (DOD), and the National Aeronautics and Space Administration \n(NASA).\\4\\ DHS\'s Transportation Security Administration (TSA) has \nauthority to regulate the security of all transportation modes, \nincluding non-military UAS, to ensure that appropriate safeguards are \nin place. According to TSA, its aviation security efforts include \naddressing risks, threats, and vulnerabilities related to non-military \nUAS. In addition, according to DHS officials, Customs and Border \nProtection (CBP) owns ten UAS that it operates for its own missions as \nwell as for missions in conjunction with other agencies. DOD has \nsuccessfully used UAS for intelligence, surveillance, reconnaissance, \nand combat missions.\\5\\ While many of DOD\'s UAS operations currently \ntake place outside of the United States, the military services require \naccess to the National airspace to conduct UAS training. DOD has also \nassisted DHS in border security missions, including two missions since \n2006 where the National Guard provided support in four Southwestern \nBorder States. NASA uses UAS primarily for research purposes, such as \nthe Predator B for wildfire mapping and investigations as well as an \nexpected arctic mission next year on surface sea ice.\n---------------------------------------------------------------------------\n    \\4\\ Senior executives from these four Federal agencies represent \nthe UAS ExCom, whose mission is to enable increased and ultimately \nroutine access of Federal UAS engaged in non-military aircraft \noperations into the National airspace to support these agencies\' \noperational, training, development, and research requirements.\n    \\5\\ GAO, Unmanned Aircraft Systems: Comprehensive Planning and a \nResults-Oriented Training Strategy Are Needed to Support Growing \nInventories, GAO-10-331 (Washington, DC: Mar. 26, 2010).\n---------------------------------------------------------------------------\n    My statement today discusses: (1) Obstacles we identified in our \nprevious report to the safe and routine integration of UAS into the \nNational air space, (2) DHS\'s role in the domestic use of these \nsystems, and (3) preliminary observations on emerging issues from our \non-going work examining UAS. This statement is based on our 2008 UAS \nreport \\6\\ and on-going work for this subcommittee, the House Committee \non Transportation and Infrastructure and its subcommittee on Aviation, \nand the Senate Committee on Science, Commerce, and Transportation. Our \non-going work is focused on issues related to non-military UAS and is \nbased on our analysis of FAA\'s efforts to integrate UAS into the \nNational airspace, the role of other Federal agencies in achieving safe \nand routine integration, and other emerging issues. Our preliminary \nobservations are based on our review of various FAA and other Federal \nagency efforts and documents; and selected interviews with officials \nfrom FAA and other Federal, industry, and academic stakeholders. Our \n2008 report contains detailed explanations of the methods used to \nconduct that work. We have discussed the information in this testimony \nwith officials from FAA and DHS, and incorporated their comments as \nappropriate. The work on which this statement is based was performed in \naccordance with generally accepted Government auditing standards. Those \nstandards require that we plan and perform the audit to obtain \nsufficient, appropriate evidence to provide a reasonable basis for our \nfindings and conclusions based on our audit objectives. We believe that \nthe evidence obtained provides a reasonable basis for our findings and \nconclusions based on our audit objectives.\n---------------------------------------------------------------------------\n    \\6\\ GAO, Unmanned Aircraft Systems: Federal Actions Needed to \nEnsure Safety and Expand Their Potential Uses Within the National \nAirspace System, GAO-08-511 (Washington, DC: May 15, 2008).\n---------------------------------------------------------------------------\n                               BACKGROUND\n\n    Current domestic uses of UAS are limited and include law \nenforcement, monitoring or fighting forest fires, border security, \nweather research, and scientific data collection. UAS have a wide-range \nof potential uses, including commercial uses such as pipeline, utility, \nand farm fence inspections; vehicular traffic monitoring; real estate \nand construction site photography; relaying telecommunication signals; \nand crop dusting. FAA\'s long-range goal is to permit, to the greatest \nextent possible, routine UAS operations in the National airspace system \nwhile ensuring safety. Using UAS for commercial purposes is not \ncurrently allowed in the National airspace. As the list of potential \nuses for UAS grows, so do the concerns about how they will affect \nexisting military and non-military aviation as well as concerns about \nhow they might be used.\n    Domestically, State and local law enforcement entities represent \nthe greatest potential use of small UAS in the near term because small \nUAS can offer a simple and cost-effective solution for airborne law \nenforcement activities for agencies that cannot afford a helicopter or \nother larger aircraft.\\7\\ For example, Federal officials and one \nairborne law enforcement official said that a small UAS costing between \n$30,000 and $50,000 is more likely to be purchased by State and local \nlaw enforcement entities because the cost is nearly equivalent to that \nof a patrol car. According to recent FAA data, 12 State and local law \nenforcement entities have a Certificate of Waiver or Authorization \n(COA) while an official at the Department of Justice said that \napproximately 100 law enforcement entities have expressed interest in \nusing a UAS for some of their missions. According to law enforcement \nofficials with whom we spoke, small UAS are ideal for certain types of \nlaw enforcement activities. Officials anticipate that small UAS could \nprovide support for tactical teams, post-event crime scene analysis and \ncritical infrastructure photography. Officials said that they do not \nanticipate using small UAS for routine patrols or missions that would \nrequire flights over extended distances or time periods.\n---------------------------------------------------------------------------\n    \\7\\ FAA generally considers UAS in the two broad categories of \n``small\'\' and ``large,\'\' and has used these categories to split its \nefforts to develop rules that would allow Government and commercial UAS \naccess to the National airspace. FAA has been developing rules for \nsmall UAS for several years. Although there is no widely-accepted \ncommon classification system for UAS, an aircraft is considered to be a \nsmall UAS if it is 55 pounds or less, while a large UAS is anything \ngreater.\n---------------------------------------------------------------------------\n    FAA has been working with the Department of Justice\'s National \nInstitute of Justice to develop a COA process through a memorandum of \nunderstanding to better meet the operational requirements of law \nenforcement entities. While the memorandum of understanding \nestablishing this COA process has not been finalized, there are two law \nenforcement entities that are using small UAS on a consistent basis for \ntheir missions and operations. The proposed process would allow law \nenforcement entities to receive a COA for training and performance \nevaluation. When the entity has shown proficiency in operating its UAS, \nit would then receive an operational COA allowing it to operate small \nUAS for a range of missions. In May 2012, FAA stated that it met its \nfirst requirement to expedite the COA process for public safety \nentities. FAA\'s reauthorization also required the agency to enter into \nagreements with appropriate Government agencies to simplify the COA \nprocess and allow a Government public safety agency to operate unmanned \naircraft weighing 4.4 pounds or less if flown within the line of sight \nof the operator, less than 400 feet above the ground, and during \ndaylight conditions, among other stipulations.\n\n            OBSTACLES TO SAFE AND ROUTINE INTEGRATION OF UAS\n\n    In 2008, we reported that UAS could not meet the aviation safety \nrequirements developed for manned aircraft and posed several obstacles \nto operating safely and routinely in the National airspace system.\n  <bullet> Sense-and-avoid technologies.--To date, no suitable \n        technology has been identified that would provide UAS with the \n        capability to meet the detect, sense, and avoid requirements of \n        the National airspace system. Our on-going work indicates that \n        research has been carried out to mitigate this, but the \n        inability for UAS to sense and avoid other aircraft or objects \n        remains an obstacle. With no pilot to scan the sky, UAS do not \n        have an on-board capability to directly ``see\'\' other aircraft. \n        Consequently, the UAS must possess the capability to sense and \n        avoid an object using on-board equipment, or with the \n        assistance of a human on the ground or in a chase aircraft,\\8\\ \n        or by other means, such as radar. Many UAS, particularly \n        smaller models, will likely operate at altitudes below 18,000 \n        feet, sharing airspace with other vehicles or objects. Sensing \n        and avoiding other vehicles or objects represents a particular \n        challenge for UAS, because other vehicles or objects at this \n        altitude often do not transmit an electronic signal to identify \n        themselves and, even if they did, many small UAS, do not have \n        equipment to detect such signals if they are used and may be \n        too small to carry such equipment.\n---------------------------------------------------------------------------\n    \\8\\ Chase pilots are in constant radio contact with research pilots \nand serve as an ``extra set of eyes\'\' to help maintain total flight \nsafety during specific tests and maneuvers. Chase pilots monitor \ncertain events for the research pilot and are an important safety \nfeature on all research missions.\n---------------------------------------------------------------------------\n  <bullet> Command-and-control communications.--Similar to what we \n        previously reported, ensuring uninterrupted command and control \n        for UAS remains a key obstacle for safe and routine integration \n        into the National airspace. Without such control, the UAS could \n        collide with another aircraft or crash, causing injury or \n        property damage. The lack of dedicated radiofrequency spectrum \n        for UAS operations heightens the possibility that an operator \n        could lose command and control of the UAS. Unlike manned \n        aircraft that use dedicated radio frequencies, non-military UAS \n        currently use undedicated frequencies and remain vulnerable to \n        unintentional or intentional interference. To address the \n        potential interruption of command and control, UAS generally \n        have pre-programmed maneuvers to follow if the command-and-\n        control link becomes interrupted (called a ``lost-link \n        scenario\'\'). However, these procedures are not standardized \n        across all types of UAS and, therefore, remain unpredictable to \n        air traffic controllers who have responsibility for ensuring \n        safe separation of aircraft in their airspace.\n  <bullet> Standards.--A rigorous certification process with \n        established performance thresholds is needed to ensure that UAS \n        and pilots meet safety, reliability, and performance standards. \n        Minimum aviation system standards are needed in three areas: \n        Performance; command-and-control communications; and sense-and-\n        avoid. In 2004, RTCA, a standards-making body sponsored by FAA, \n        established a Federal advisory committee called the Special \n        Committee 203 (or SC 203), to establish minimum performance \n        standards for FAA to use in developing UAS regulations.\\9\\ \n        Individuals from academia and the private sector serve on the \n        committee, along with FAA, NASA, and DOD officials. ASTM \n        International Committee F38 on UAS, an international voluntary \n        consensus standards-making body, is working with FAA to develop \n        standards to support the integration of small UAS into the \n        National airspace.\\10\\\n---------------------------------------------------------------------------\n    \\9\\ RTCA, formerly the Radio Technical Commission for Aeronautics, \nis a private, not-for-profit corporation that develops consensus-based \nperformance standards regarding communications, navigation, \nsurveillance, and air traffic management system issues. RTCA serves as \na Federal advisory committee, and its recommendations are the basis for \na number of FAA\'s policy, program, and regulatory decisions.\n    \\10\\ ASTM International, formerly known as the American Society for \nTesting and Materials (ASTM), is a globally recognized leader in the \ndevelopment and delivery of international voluntary consensus \nstandards. ASTM members deliver the test methods, specifications, \nguides, and practices that support industries and governments \nworldwide.\n---------------------------------------------------------------------------\n  <bullet> Regulations.--FAA regulations govern the routine operation \n        of most aircraft in the National airspace system.\\11\\ However, \n        these regulations do not contain provisions to address issues \n        relating to unmanned aircraft. As we highlighted in our \n        previous report, existing regulations may need to be modified \n        to address the unique characteristics of UAS. Today, UAS \n        continue to operate as exceptions to the regulatory framework \n        rather than being governed by it. This has limited the number \n        of UAS operations in the National airspace, and that limitation \n        has, in turn, contributed to the lack of operational data on \n        UAS in domestic operations previously discussed. One industry \n        forecast noted that growth in the non-military UAS market is \n        unlikely until regulations allow for the routine operation of \n        UAS. Without specific and permanent regulations for safe \n        operation of UAS, Federal stakeholders, including DOD, continue \n        to face challenges. The lack of final regulations could hinder \n        the acceleration of safe and routine integration of UAS into \n        the National airspace.\n---------------------------------------------------------------------------\n    \\11\\ Title 14, Code of Federal Regulations (14 CFR).\n---------------------------------------------------------------------------\n    Given the remaining obstacles to UAS integration, we stated in 2008 \nthat Congress should consider creating an overarching body within FAA \nto coordinate Federal, academic, and private-sector efforts in meeting \nthe safety challenges of allowing routine access to the National \nairspace system. While it has not created this overarching body, FAA\'s \nJoint Planning and Development Office has taken on a similar role. In \naddition, Congress set forth requirements for FAA in its February 2012 \nreauthorization to facilitate UAS integration. Additionally, we made \ntwo recommendations to FAA related to its planning and data analysis \nefforts to facilitate the process of allowing UAS routine access to the \nNational airspace, which FAA has implemented.\n\n    ROLE OF THE DEPARTMENT OF HOMELAND SECURITY IN DOMESTIC UAS USE\n\n    DHS is one of several partner agencies of FAA\'s Joint Planning and \nDevelopment Office (JPDO) working to safely integrate UAS into the \nNational airspace. TSA has the authority to regulate the security of \nall transportation modes, including non-military UAS, and according to \nTSA officials, its aviation security efforts include monitoring reports \non potential security threats regarding the use of UAS. While UAS \noperations in the National airspace are limited and take place under \nclosely controlled conditions, this could change if UAS have routine \naccess to the National airspace system. Further, DHS owns and uses UAS.\n    Security is a significant issue that could be exacerbated with an \nincrease in the number of UAS, and could impede UAS use even after all \nother obstacles have been addressed. In 2004, TSA issued an advisory in \nwhich it stated that there was no credible evidence to suggest that \nterrorist organizations plan to use remote-controlled aircraft or UAS \nin the United States. However, the TSA advisory also provided that the \nFederal Government remains concerned that UAS could be modified and \nused to attack key assets and infrastructure in the United States. TSA \nadvised individuals to report any suspicious activities to local law \nenforcement and the TSA General Aviation Hotline.\\12\\ Security \nrequirements have yet to be developed for UAS ground control stations--\nthe UAS equivalent of the cockpit.\\13\\ Legislation introduced in the \n112th Congress would prohibit the use of UAS as weapons while operating \nin the National airspace.\\14\\\n---------------------------------------------------------------------------\n    \\12\\ Department of Homeland Security, TSA Advisory: Security \nInformation Regarding Remote Controlled Aircraft and Unmanned Aerial \nVehicles (Washington, DC: Nov. 22, 2004).\n    \\13\\ Additionally, in response to the events of September 11, 2001, \nentry doors to passenger airplane cockpits were hardened to prevent \nunauthorized entry.\n    \\14\\ No Armed Drones Act of 2012, H. R. 5950, 112th Cong. (2012).\n---------------------------------------------------------------------------\n    In our 2008 report, we recommended that the Secretary of Homeland \nSecurity direct the administrator of TSA to examine the security \nimplications of future, non-military UAS operations in the National \nairspace and take any actions deemed appropriate. TSA agreed that \nconsideration and examination of new aviation technologies and \noperations is critical to ensuring the continued security of the \nNational airspace. According to TSA officials, TSA continues to work \nwith the FAA and other Federal agencies concerning airspace security by \nimplementing security procedures in an attempt to protect the National \nAirspace System. Examples of this collaboration include the coordinated \nefforts to allow access to temporary flight-restricted airspace such as \nthose put in place for Presidential travel and DHS Security Events. \nHowever, to date, neither DHS nor TSA has taken any actions to \nimplement our 2008 recommendation. According to TSA officials, TSA \nbelieves its current practices are sufficient and no additional actions \nhave been needed since we issued our recommendation.\n    DHS is also an owner and user of UAS. Since 2005, CBP has flown UAS \nfor border security missions. FAA granted DHS authority to operate UAS \nto support its National security mission along the United States \nnorthern and southern land borders, among other areas. Recently, DHS \nofficials told us that DHS has also flown UAS over the Caribbean to \nsearch for narcotics-carrying submarines and speedboats. According to \nDHS officials, CBP owns ten UAS that it operates in conjunction with \nother agencies for various missions. As of May 2012, CBP has flown \nmissions to support six Federal and State agencies along with several \nDHS agencies. These missions have included providing the National \nOceanic and Atmospheric Administration with videos of damaged dams and \nbridges where flooding occurred or was threatened, and providing \nsurveillance for DHS\'s Immigration and Customs Enforcement over a \nsuspected smuggler\'s tunnel. DHS, DOD, and NASA, are working with FAA \nto identify and evaluate options to increase UAS access in the National \nairspace. DHS officials reported that if funding was available, they \nplan to expand their fleet to 24 total UAS that would be operational by \nfiscal year 2016, including 11 on the Southwest Border.\n    The DHS Inspector General reviewed CBP\'s actions to establish its \nUAS program, the purpose of which is to provide reconnaissance, \nsurveillance, targeting, and acquisition capabilities across all CBP \nareas of responsibility. The Inspector General assessed whether CBP has \nestablished an adequate operation plan to define, prioritize, and \nexecute its unmanned aircraft mission. The Inspector General\'s May 2012 \nreport found that CBP had not achieved its scheduled or desired level \nof flight hours for its UAS. It estimated that CBP used its UAS less \nthan 40 percent of the time it would have expected.\\15\\\n---------------------------------------------------------------------------\n    \\15\\ The report made four recommendations intended to improve CBP\'s \nplanning of its UAS program to address its level of operation, program \nfunding, and resource requirements, along with stakeholder needs.\n---------------------------------------------------------------------------\n            PRELIMINARY OBSERVATIONS ON EMERGING UAS ISSUES\n\n    Our on-going work has identified several UAS issues that, although \nnot new, are emerging as areas of further consideration in light of the \nefforts towards safe and routine access to the National airspace. These \ninclude concerns about: (1) Privacy as it relates to the collection and \nuse of surveillance data, (2) the use of model aircraft, which are \naircraft flown for hobby or recreation, and (3) the jamming and \nspoofing of the Global Positioning System (GPS).\n  <bullet> Privacy concerns over collection and use of surveillance \n        data.--Following the enactment of the UAS provisions of the \n        2012 FAA reauthorization act, Members of Congress, a civil \n        liberties organization, and others have expressed concern that \n        the increased use of UAS for surveillance and other purposes in \n        the National airspace has potential privacy implications. \n        Concerns include the potential for increased amounts of \n        Government surveillance using technologies placed on UAS as \n        well as the collection and use of such data. Surveillance by \n        Federal agencies using UAS must take into account associated \n        Constitutional Fourth Amendment protections against \n        unreasonable searches and seizures. In addition, at the \n        individual agency level, there are multiple Federal laws \n        designed to provide protections for personal information used \n        by Federal agencies. While the 2012 FAA reauthorization act \n        contains provisions designed to accelerate the safe integration \n        of UAS into the National airspace, proposed legislation in the \n        112th session of Congress, seeks to limit or serve as a check \n        on uses of UAS by, for example, limiting the ability of the \n        Federal Government to use UAS to gather information pertaining \n        to criminal conduct without a warrant.\\16\\\n---------------------------------------------------------------------------\n    \\16\\ Preserving Freedom from Unwarranted Surveillance Act of 2012, \nS. 3287, 112th Cong. (2012) and Farmer\'s Privacy Act of 2012, H.R. \n5961, 112th Cong. (2012).\n\n    Currently, no Federal agency has specific statutory responsibility \n        to regulate privacy matters relating to UAS. UAS stakeholders \n        disagreed as to whether the regulation of UAS privacy-related \n        issues should be centralized within one Federal agency, or if \n        centralized, which agency would be best positioned to handle \n        such a responsibility. Some stakeholders have suggested that \n        FAA or another Federal agency should develop regulations for \n        the types of allowable uses of UAS to specifically protect the \n        privacy of individuals as well as rules for the conditions and \n        types of data that small UAS can collect. Furthermore, \n        stakeholders with whom we spoke said that developing guidelines \n        for technology use on UAS ahead of widespread adoption by law \n        enforcement entities may preclude abuses of the technology and \n        a negative public perception of UAS. Representatives from one \n        civil liberties organization told us that since FAA has \n        responsibility to regulate the National airspace, it could be \n        positioned to handle responsibility for incorporating rules \n        that govern UAS use and data collection. Some stakeholders have \n        suggested that the FAA has the opportunity and responsibility \n        to incorporate such privacy issues into the small UAS rule that \n        is currently underway and in future rulemaking procedures. \n        However, FAA officials have said that regulating these sensors \n        is outside the FAA\'s mission, which is primarily focused on \n        aviation safety, and has proposed language in its small UAS \n---------------------------------------------------------------------------\n        Notice of Proposed Rulemaking to clarify this.\n\n  <bullet> Model aircraft.--According to an FAA official with whom we \n        spoke and other stakeholders, another concern related to UAS is \n        the oversight of the operation of model aircraft--aircraft \n        flown for hobby or recreation--capable of sustained flight in \n        the atmosphere and a number of other characteristics.\\17\\ \n        Owners of model aircraft do not require a COA to operate their \n        aircraft.\\18\\ Furthermore, as part of its 2012 reauthorization \n        act, FAA is prohibited from developing any rule or regulation \n        for model aircraft under a specified set of conditions.\\19\\ \n        However, the 2012 reauthorization act also specifies that \n        nothing in the act\'s model aircraft provisions shall be \n        construed to limit FAA\'s authority to take enforcement action \n        against the operator of a model aircraft who endangers the \n        safety of the National airspace system.\\20\\ The Federal Bureau \n        of Investigation report of the arrest and criminal prosecution \n        of a man plotting to use a large remote-controlled model \n        aircraft filled with plastic explosives to attack the Pentagon \n        and U.S. Capitol in September 2011 has highlighted the \n        potential for model aircraft to be used for non-approved or \n        unintended purposes.\n---------------------------------------------------------------------------\n    \\17\\ The 2012 reauthorization act defines the term ``model \naircraft\'\' to mean an unmanned aircraft that is: (1) Capable of \nsustained flight in the atmosphere, (2) flown within visual line of \nsight of the person operating the aircraft, and (3) flown for hobby or \nrecreational purposes.\n    \\18\\ FAA\'s Advisory Circular 91-57 sets out model aircraft \noperating standards that encourage voluntary compliance with specified \nsafety standards for model aircraft operators.\n    \\19\\ This prohibition on FAA model aircraft rules or regulations \nonly applies where the aircraft is: (1) Flown strictly for hobby or \nrecreational use, (2) operated in accordance with a community-based set \nof safety guidelines and within the programming of a Nation-wide \ncommunity-based organization, (3) limited to not more than 55 pounds \n(unless otherwise certified through a design, construction, inspection, \nflight test, and operational safety program administered by a \ncommunity-based organization), (4) operated in a manner that does not \ninterfere with and gives way to any manned aircraft, and (5) when flown \nwithin 5 miles of an airport, prior notice of the operation is given to \nthe airport operator and the air traffic control tower.\n    \\20\\ Pub. L. No. 112-95, \x06 336, 126 Stat. 11.77 (2012).\n\n    The Academy of Model Aeronautics, which promotes the development of \n        model aviation as a recognized sport and represents a \n        membership of over 150,000, published several documents to \n        guide model aircraft users on safety, model aircraft size and \n        speed, and use. For example, the Academy\'s National Model \n        Aircraft Safety Code specifies that model aircraft will not be \n        flown in a careless or reckless manner and will not carry \n        pyrotechnic devices that explode or burn, or any device that \n        propels a projectile or drops any object that creates a hazard \n        to persons or property (with some exceptions).\\21\\ The Academy \n        of Model Aeronautics also provides guidance on ``sense and \n        avoid\'\' to its members, such as a ceiling of 400 feet above \n        ground of aircraft weighing 55 pounds or less. However, apart \n        from FAA\'s voluntary safety standards for model aircraft \n        operators, FAA has no regulations relating to model aircraft. \n        Currently, FAA does not require a license for any model \n        aircraft operators, but according to FAA, the small UAS Notice \n        of Proposed Rule Making, under development and expected to be \n        published late 2012, may contain a provision that requires \n        certain model aircraft to be registered.\n---------------------------------------------------------------------------\n    \\21\\ The Academy of Model Aeronautics National Model Aircraft \nSafety Code allows members to fly devices that burn producing smoke and \nare securely attached to the model aircraft and use rocket motors if \nthey remain attached to the model during flight. Model rockets may be \nflown but not launched from a model aircraft.\n---------------------------------------------------------------------------\n  <bullet> GPS jamming and spoofing.\\22\\--The jamming and spoofing of \n        the communication signal between the UAS and ground control \n        station could also interrupt the command and control of UAS \n        operations. In a GPS jamming scenario, the UAS could \n        potentially lose its ability to determine where it is located \n        and in what direction it is traveling. Low-cost devices that \n        jam GPS signals are prevalent. According to one industry \n        expert, GPS jamming would become a larger problem if GPS is the \n        only method for navigating a UAS. This problem can be mitigated \n        by having a second or redundant navigation system on-board the \n        UAS that is not reliant on GPS. In addition, a number of \n        Federal UAS stakeholders we interviewed stated that GPS jamming \n        is not an issue for the larger, military-type UAS, as they have \n        an encrypted communications link on the aircraft. A stakeholder \n        noted that GPS jamming can be mitigated for small UAS by \n        encrypting its communications, but the costs associated with \n        encryption may make it infeasible. Recently, researchers at the \n        University of Texas demonstrated that the GPS signal \n        controlling a small UAS could be spoofed using a portable \n        software radio. The research team found that it was \n        straightforward to mount an intermediate-level spoofing attack \n        but difficult and expensive to mount a more sophisticated \n        attack.\\23\\ The emerging issues we identified not only may \n        exist as part of efforts to safely and routinely integrate UAS \n        into the National airspace, but may also persist once \n        integration has occurred. Thus, these issues may warrant \n        further examination both presently and in the future.\n---------------------------------------------------------------------------\n    \\22\\ GPS spoofing is when counterfeit GPS signals are generated for \nthe purpose of manipulating a target receiver\'s reported position and \ntime. Todd E. Humphreys, Detection Strategy for Cryptographic GNSS \nAnti-Spoofing, IEEE Transactions on Aerospace and Electronics Systems \n(August 2011).\n    \\23\\ The presentation ``Assessing the Civil GPS Spoofing Threat\'\' \nby Todd Humphreys, Jahshan Bhatti, Brent Ledvina, Mark Psiaki, Brady \nO\'Hanlon, Paul Kintner, and Paul Montgomery sought to assess the \nspoofing threat of a small civil UAS. The team built a civilian GPS \nspoofer and tested some countermeasures. They concluded that GPS \nspoofing is a threat to communications security and civil spoofing has \nnot been the focus of research in open literature.\n---------------------------------------------------------------------------\n    Chairman McCaul, Ranking Member Keating, and Members of the \nsubcommittee, this concludes my prepared statement. We plan to report \nmore fully this fall on these same issues, including the status of \nefforts to address obstacles to the safe and routine integration of UAS \ninto the National airspace. I would be pleased to answer any questions \nat this time.\n\n    Mr. McCaul. Thank you, Dr. Dillingham, for your good work. \nThe Chairman now recognizes another fellow Texan, Chief \nMcDaniel.\n\n  STATEMENT OF CHIEF DEPUTY WILLIAM R. MC DANIEL, MONTGOMERY \n             COUNTY SHERIFF\'S OFFICE, CONROE, TEXAS\n\n    Chief McDaniel. Thank you, sir.\n    The Montgomery County Sheriff\'s Office is the seventh-\nlargest in the State of Texas, and is responsible for law \nenforcement services for a county that covers over 1,000 square \nmiles and has a population of over 471,000. As indicated, it is \nan extremely fast-growing county. The county is diverse in \ngeography as well as population, with an extremely urban area \nwith a very dense population on our Southern Border with \nHouston and Harris County, to an extremely rural area in the \nnorthern portion of our county.\n    The sheriff\'s office is committed to protecting the lives \nand the property of the people we serve, and since my sheriff \ntook office in 2005, we have sought out new and better \ntechnology to enhance both our efficiency as well as our \neffectiveness in carrying out our public safety mission. I \nbelieve the UAV systems now available to public safety agencies \nare exactly the type of technology that will make us more \nsuccessful. It is not just a law enforcement tool, but a public \nsafety asset that can now be used by fire departments, \nemergency management offices, and probably other governmental \nunits as well.\n    The sheriff\'s office has owned a Shadow Hawk UAV since \nDecember 2011, having purchased it through a Homeland Security \ngrant. Although we have not used it for an operational mission \nto date, we absolutely see its benefit and its mission profile \nfor SWAT operations, high-risk warrants, locating lost persons, \nmanhunts, hazardous material spills, fire scene, traffic \naccident investigations, or traffic management and observation \ndue to hurricane evacuations.\n    We did not obtain this for the purpose of surveillance. I \ndo not believe small UAVs such as our Shadow Hawk are \nparticularly designed or suited for that type of mission.\n    Although the FAA has expertise in the aeronautical field, \nthey do not have the necessary public safety mission experience \nto effectively oversee this type of operational environment. If \nFederal oversight is necessary, it would seem appropriate to \nestablish it under the Department of Homeland Security. \nDifferent from the aeronautical component the FAA would \ncontinue to manage, DHS would manage the operational aspect by \nsetting and enforcing operational guidelines and procedures, \nestablish a database relating to the UAVs, agencies using them, \nmission results, and act as a resource and information tool for \ncurrent and interested public safety agencies.\n    Current case law supports the use of air assets by law \nenforcement, and I do not believe that it is necessary to \nintroduce new legislation that would severely restrict the \nUAV\'s effectiveness. I encourage you to recognize unmanned \naerial vehicle systems as an important tool for public safety \nagencies. I believe in this technology and its mission of \nprotecting the citizens of my county, my State, and this \nNation.\n    [The prepared statement of Chief McDaniel follows:]\n\n               Prepared Statement of William R. McDaniel\n                             July 19, 2012\n\n    Montgomery County is directly north of Houston and contiguous to \nHarris County. The county is diverse in both geography and population. \nThe current census lists the population at over 471,000. It is \napproximately 1,042 square miles in size with highly populated urban \nareas in the southern portion of the county (The Woodlands) to very \nrural areas in the north. Sam Houston National Forest, situated in the \nnorthwestern portion of the county encompasses 47,609 acres. Situated \nin the middle of the county is Lake Conroe, a large lake (21,000 \nacres), with a significant population surrounding it.\n    In 2005, the Montgomery County Sheriff\'s Office began to explore \nvarious avenues to enhance our operational effectiveness. One idea was \nto obtain air assets for public safety response needs. We envisioned \nhaving an air asset that was multi-purpose and could be utilized in a \nvariety of critical incidents to improve our ability to respond. \nInitially we looked at small aircraft (i.e. Cessna\'s, etc.) as well as \nhelicopters. We looked at both new and used aircraft and quickly \nrealized we did not have sufficient funding to purchase nor maintain \nsuch an item. As an example, a ``law enforcement\'\' helicopter, with \nassociated equipment, would require over $2 million for the initial \ncost. We would be unable to fund full-time personnel to operate and \nmaintain the aircraft. A small, fixed-wing aircraft would be less \ncostly, around $400,000, but we would still have the same staffing \nissues. In addition, we compared operational costs and determined the \nhourly cost alone would be prohibitive, based on our budget.\n    We are fortunate to be situated in an area with agencies (Houston \nPD, State Police, and DEA) that do have air assets and we have \ncertainly called upon them to assist us in a variety of ways. It has \nbeen problematic; however, since these agencies also have budget \nconstraints which limit their operational flight hours as well as their \nability to respond. The problem has been further compounded by the need \nfor these air assets to cover large areas or, because it may be a State \nor Federal asset, it is deployed to other areas of the State or \ncountry. They are, therefore, unavailable at times.\n    We continued to review opportunities over the next few years. One \nsuch opportunity was a pilot project through the Department of Justice. \nThe program was offering certain types of ``ultra-light\'\' aircraft for \ntesting by law enforcement. A letter was sent to the DOJ representative \non two different occasions; however, no response was ever received.\n    In 2008, a call was received from the CEO of Vanguard Defense \nIndustries (VDI) requesting a meeting to discuss the concept of a UAV \nfor law enforcement. During our first meeting, a discussion was held \nregarding the practicality of using a UAV for law enforcement purposes. \nThe platform being proposed was a small helicopter with a color video \ncamera and Forward Looking Infrared (FLIR) capabilities. The aircraft \ncould be launched quickly, provide an aerial view during a critical \nincident, and be economical to purchase and operate. We discussed at \nlength the types of incidents we thought would be appropriate for its \nuse. These included SWAT call-outs, high-risk warrants, manhunts, lost \npersons, and accident scene investigation (aerial photography). In \nmeetings that followed, we expanded on its use to an overall public \nsafety response instead of being geared strictly towards law \nenforcement. In addition to a law enforcement use, we envisioned fire \ndepartments and emergency management offices as agencies that would \nbenefit from such an asset. We then added to the types of incidents it \nwould be suitable for to include hazardous materials spills, fires, \ndamage assessment, or traffic management observation due to hurricane \nevacuations.\n    While VDI was working on the manufacturing component, we began to \nresearch funding sources and eventually submitted a grant proposal \nthrough the Department of Homeland Security\'s Urban Areas Security \nInitiative (UASI) program in December, 2010. The UASI project goal, \nidentified in the grant project was, ``to enhance regional response \ncapability.\'\' The grant was approved in June, 2011, and the delivery of \nthe Shadowhawk was made in December, 2011. The total funding for the \ngrant was $220,000. This included a 1-year maintenance agreement and \nair crew training for two personnel. Within a few months the Sheriff\'s \nOffice purchased an upgraded guidance system, as well as an LED \nlighting system, to better identify the aircraft.\n    In 2010, we also initiated our Certificate of Authorization (COA) \napplication to the FAA. The web-based application process was \nrelatively simple to complete and many email exchanges and phone \nconversations took place with FAA personnel. It was clear to us that \nthis was somewhat ``uncharted waters\'\' for them and we were warned on \nseveral occasions that it would be a lengthy process. Once the final \napplication was submitted, it was a number of months before the \napplication was approved. The initial COA was renewed in 2012.\n    To date, the Montgomery County Sheriff\'s Office has only had one \nopportunity to utilize the Shadowhawk for an operational mission; \nhowever, the FAA denied our request for an emergency COA, citing there \nhad to exist a ``loss of life or potential loss of life\'\' before they \nwould approve it. We certainly believed there to be a potential danger \nto the law enforcement officers who were going to conduct the mission. \nWe opted to not press the issue at that point. To some critics, this \nwould seem to be a waste of Federal tax dollars. I would point out, \nhowever, public safety operations are not static or particularly \nconsistent. This is especially true with ``special missions.\'\' As an \nexample, our SWAT unit responded 23 times in 2011 but has not been \n``called out\'\' in 2012. The need is there; however, and will continue \nto be. Those types of incidents we identified as being ideal for the \nShadowhawk are actual types of incidents we have experienced over and \nover again in the past. It is only a matter of ``when\'\' the next such \nincident will occur.\n    We continue to think of ways to deploy our UAV and one such example \nis utilizing a UAV to deliver a cellular phone or an emergency medical \nkit to a flood victim, stranded on the roof of a house. (Currently, the \nFAA prohibits this type of activity.) It would appear to be highly \neffective to send a UAV in to deploy a cellular phone, have a first \nresponder explain to the victim what the procedures will be to be \npicked up by a helicopter or boat (excellent safety protocol) and then \ncontinue with the rescue operation or; be able to drop a first aid kit \nto a victim with a UAV in a timely manner so they can immediately \naddress their basic first aid needs as opposed to forcing them to wait \non medical help to be delivered by aircraft or boat (not very timely). \nIn discussions we have had with the manufacturer of the Shadowhawk, it \nwould be relatively easy to build the necessary platform for the \nShadowhawk to ``drop\'\' supplies as stated. There are still, no doubt, \nscenarios we have not even dreamed of wherein the UAV could be used to \nbenefit public safety.\n    There has been a knee-jerk reaction to the use of UAV\'s by public \nsafety agencies in the United States with National media outlets \npainting a dark picture of tens of thousands of ``drones\'\' being used \ndaily to ``spy\'\' on citizens. We believe there is sufficient case law \nin place to establish, for the UAV community, the legal requirements \nand procedures for operation and also the necessary repercussions for \nthose agencies who fail to comply with the legal mandates. UAV\'s \noperate just like their manned counterparts. Obviously, the primary \ndifference is having a crew on the ground operating it as opposed to a \ncrew operating the airborne aircraft. There has been case law developed \nover the years to deal with manned aircraft operations for public \nsafety agencies. We believe these same laws would absolutely apply to \nUAV operations.\n    Governmental entities, as identified and approved by the FAA, must \nfollow strict guidelines and protocols and are extensively scrutinized \nby the FAA hierarchy for improper operations. The problem exists in the \nrank-and-file FAA hierarchy having no real concept of the needs of \npublic safety agencies. It is my perception they tend to look at the \nuse of UAV\'s with myopic vision. This was fine for past years as new \ntechnology, in the FAA domain, was scarce. Now that UAV technology is \nhere, the FAA does not have the experience in its application. FAA \nstaffers do not have the law enforcement, fire, or emergency management \nbackground to be able to relate to the mission of these agencies. The \nsole purpose of the FAA is to monitor them from an aeronautical \nstandpoint only. Obviously, they are the experts in this environment; \nhowever, we believe they have no real understanding regarding the \n``critical mission\'\' aspect of UAV operations. If UAV operations remain \nunder the oversight and control of the FAA, as is currently the case, \ndomestic UAV operations will continue to be severely hampered or \nlimited to the point of being useless.\n    If it is necessary to require Federal oversight of UAV operations \nwithin the United States, it would seem to be most appropriate that The \nOffice of State and Local Law Enforcement within DHS would be the \nlikely agency at the Federal level to be tasked with this role. DHS \nwould serve as a database, keeping track of the types of UAV\'s in use, \nagencies using them, types of missions the UAV is being flown, mission \nresults, keeping track of case results (if used in response to a \ncriminal offense--narcotics warrant/SWAT operation), etc. To this end, \nwe would propose having DHS work as a liaison for local agencies that \nuse UAV\'s. DHS could provide contact information, act as a resource and \ninformation tool, and as a monitoring/approving agency for public \nsafety agency operations. Obviously, it is incumbent on such agencies \nto work through the COA approval process to allow the FAA the \nopportunity to scrutinize the aircraft, the associated operating \nsystems, locations, etc. The FAA, however, does not need to go beyond \nthat, other than the regular, routine review of agency flight \noperations to insure flight safety rules are being followed.\n    UAV systems for public safety agencies are extremely viable, \neffective, and economical means to enhance the public safety response \nto critical incidents. The use of drones by public safety agencies is, \nultimately, about protecting and making safe the citizens we serve. Too \nmuch focus is being made on the impractical application of UAV\'s and \nnot about its true design and purpose.\n\n    Mr. McCaul. Thank you, Chief.\n    The Chairman now recognizes Ms. Stepanovich.\n\n STATEMENT OF AMIE STEPANOVICH, LITIGATION COUNSEL, ELECTRONIC \n                   PRIVACY INFORMATION CENTER\n\n    Ms. Stepanovich. Mr. Chairman and Members of the \nsubcommittee, thank you for the opportunity to testify today \nconcerning the use of drones in the United States. My name is \nAmie Stepanovich. I am Association Litigation Counsel at the \nElectronic Privacy Information Center, a nonpartisan research \norganization in the District of Columbia that is focused on \nfocusing public attention on emerging issues in privacy and \ncivil liberties. We thank you for holding this hearing today, \nand believe it is very important to address these issues early.\n    Drones greatly increase the capacity for domestic \nsurveillance. Drones are specifically designed to carry highly \ninvasive surveillance technology. They are cheaper to buy, \nmaintain, and operate than typical aerial surveillance \nvehicles, and they can operate undetected in both urban and \nrural environments. Sensitive information collected by drones \nis particularly vulnerable to unlawful access. As previously \ndiscussed, drones are not secure.\n    EPIC observed in comments to the FAA on drone test site \nlocations that drone hacking poses a threat to the security of \nlawful drone operations. Hackers are not only able to gain \ncontrol of drone movements, but they are also able to intercept \nthe date feeds transmitted by a drone.\n    We recognize that drone technology has very positive uses \nin the United States. It can be used to monitor for \nenvironmental abuse, help prevent the spread of forest fires, \nand assist in search-and-rescue operations. However, there are \nsubstantial legal and Constitutional issues involved in the \ndeployment of aerial drones by Federal agencies.\n    As drone technology becomes cheaper, it will also become \nmore widespread and the threat to privacy will become more \nsubstantial. EPIC supports compliance with current Federal law \nfor the deployment of drone technology and limitations for \nFederal agencies and other organizations that obtain drones for \na specified purpose, but the current state of the law is \ninsufficient to address the drone surveillance threat. \nLegislation is needed to protect against the use of drones in \nsurveillance tools and to provide for redress against drone \noperators who fail to comply with those protections.\n    Congress has directed the FAA to develop regulations that \nwill encourage widespread deployment of drones in the United \nStates. The forthcoming regulations will address licensing \nprocedures for both public and private drone operators, \nincluding DHS, and the Customs and Border Protection Bureau, a \nDHS component. Earlier this year in a formal petition to the \nFAA, EPIC urged the agency to conduct a rulemaking to implement \nprivacy rules for domestic drones. EPIC\'s petition was joined \nby more than 100 other organizations, experts, and members of \nthe public who also believed that privacy rules are necessary \nbefore drones enter our domestic skies in a more widespread \nway. The FAA has not yet responded to EPIC\'s request for agency \naction, and this failure to act means that there is also no \nadministrative framework in place to regulate drones in our \nskies.\n    As has previously been mentioned, CBP currently operates 10 \ndrones in the United States. The DHS Inspector General recently \nassessed CBP\'s practice in making drones available by other \nFederal agencies, including the Department of Defense, the FBI, \nthe Secret Service, many local law enforcement agencies, and \nothers.\n    Regarding privacy concerns, the Inspector General said that \na standardized process was needed to request CBP drones for \nnon-CBP purposes in order to provide transparency. To the \nextent that DHS chooses to operate drones within the United \nStates, the agency must develop appropriate regulations to \nsafeguard privacy. As you have indicated, Chairman McCaul, the \nprivacy and security concerns arising from the use of drones \nneeds to be addressed. Several of your colleagues have made \nefforts to address some of the privacy threats of drone. \nHowever, we believe those efforts are not sufficient.\n    There are several simple steps that we believe can protect \nprivacy as the use of drones increases in our skies. First, \nCongress should pass targeted legislation. An initial step \nwould be the passage of Congressman Austin Scott\'s bill to \nlimit drone surveillance in the United States in cases where a \nwarrant has not been first obtained. However, to fully address \nthe invasive nature of drones, new legislation must prohibit \nnonspecific untargeted drone surveillance, limit the use of \ndrone surveillance data collected, transmitted, stored, or \nshared, and require notice of drone surveillance operations and \npolicies. The law should also provide for independent audits \nand oversight.\n    Second, Congress should expressly require Federal drone \noperators, including DHS and its components, to implement \nregulations subject to public notice and comment that address \nthe privacy implications of drone use.\n    Finally, I think Congress should clarify the circumstances \nunder which drones purchased by CBP in pursuit of its mission \nmay be deployed for other purposes. The failure to make clear \nthe circumstances when Federal and State agencies may deploy \ndrones for aerial surveillance has already raised significant \nconcerns about the agency\'s programs.\n    Once again I thank you for the opportunity to testify \ntoday, and I will be pleased to answer your questions.\n    [The prepared statement of Ms. Stepanovich follows:]\n\n                 Prepared Statement of Amie Stepanovich\n                             July 19, 2012\n\n    Mister Chairman and Members of the subcommittee, thank you for the \nopportunity to testify today concerning unmanned aerial systems, or \ndrones, in the United States. My name is Amie Stepanovich. I am the \nassociate litigation counsel at the Electronic Privacy Information \nCenter.\n    EPIC is a non-partisan research organization, established in 1994, \nto focus public attention on emerging privacy and civil liberties \nissues.\\1\\ We work with a distinguished panel of advisors in the fields \nof law, technology, and public policy.\\2\\ We have a particular interest \nin the protection of individual privacy rights against Government \nsurveillance. In the last several years, EPIC has taken a particular \ninterest in the unique privacy problems associated with aerial drones. \nWe have urged the Federal Aviation Administration (``FAA\'\'), as it \nconsiders new regulations to permit the widespread deployment of \ndrones, to also develop new privacy safeguards.\\3\\\n---------------------------------------------------------------------------\n    \\1\\ About EPIC, EPIC, http://www.epic.org/about (last visited July \n16, 2012).\n    \\2\\ EPIC Advisory Board, EPIC, http://www.epic.org/epic/\nadvisory_board.html (last visited July 16, 2012).\n    \\3\\ Unmanned Aerial Vehicles (UAVs) and Drones, EPIC, http://\nwww.epic.org/privacy/drones (last visited July 16, 2012).\n---------------------------------------------------------------------------\n    In my statement today, I will describe the unique threats to \nprivacy posed by drone surveillance, the problems with current legal \nsafeguards, the EPIC petition to the FAA, and the need for Congress to \nact.\n    We appreciate the subcommittee\'s interest in domestic drone use and \nits substantial impact on the privacy of individuals in the United \nStates.\n\n            I. AERIAL DRONES POSE A UNIQUE THREAT TO PRIVACY\n\n    An unmanned aircraft, or drone, is an aerial vehicle designed to \nfly without a human pilot on board. Drones can either be remotely \ncontrolled or autonomous. Drones can be weaponized and deployed for \nmilitary purposes.\\4\\ Drones can also be equipped with sophisticated \nsurveillance technology that makes it possible to identify individuals \non the ground. Gigapixel cameras used to outfit drones are among the \nhighest-definition cameras available, and can provide ``real-time video \nstreams at a rate of 10 frames a second.\'\'\\5\\ On some drones, sensors \ncan track up to 65 different targets across a distance of 65 square \nmiles.\\6\\ Drones may also carry infrared cameras, heat sensors, GPS, \nsensors that detect movement, and automated license plate readers.\\7\\ \nDrones are currently being developed that will carry facial recognition \ntechnology, able to remotely identify individuals in parks, schools, \nand at political gatherings.\\8\\\n---------------------------------------------------------------------------\n    \\4\\ See, e.g., Predator B UAS, General Atomics Aeronautical, http:/\n/www.ga-asi.com/products/aircraft/predator_b.php (last visited June 25, \n2012); X-47B UCAS, Northrop Grumman, http://www.as.northropgrumman.com/\nproducts/nucasx47b/index.html (last visited July 16, 2012).\n    \\5\\ US Army Unveils 1.8 Gigapixel Camera Helicopter Drone, BBC News \nTechnology (Dec. 29, 2011), http://www.bbc.co.uk/news/technology-\n16358851.\n    \\6\\ Id.\n    \\7\\ Customs and Border Protection Today, Unmanned Aerial Vehicles \nSupport Border Security (July/Aug. 2004), available at http://\nwww.cbp.gov/xp/CustomsToday/2004/Aug/other/aerial_vehicles.xml.\n    \\8\\ Clay Dillow, Army Developing Drones that Can Recognize Your \nFace From a Distance, PopSci (Sept. 28, 2011, 4:01 PM), http://\nwww.popsci.com/technology/article/2011-09/army-wants-drones-can-\nrecognize-your-face-and-read-your-mind.\n---------------------------------------------------------------------------\n    In a report on drones published by EPIC in 2005, we observed, ``the \nuse of [drones] gives the federal government a new capability to \nmonitor citizens clandestinely, while the effectiveness of the . . . \nsurveillance planes in border patrol operations has not been \nproved.\'\'\\9\\ Today, drones greatly increase the capacity for domestic \nsurveillance.\n---------------------------------------------------------------------------\n    \\9\\ Spotlight on Surveillance: Unmanned Planes Offer New \nOpportunities for Clandestine Government Tracking (August 2005), EPIC, \nhttp://epic.org/privacy/surveillance/spotlight/0805/ (last visited July \n16, 2012).\n---------------------------------------------------------------------------\n    Much of this surveillance technology could, in theory, be deployed \nin manned vehicles. However, drones present a unique threat to privacy. \nDrones are designed to undertake constant, persistent surveillance to a \ndegree that former methods of surveillance were unable to achieve. \nDrones are cheaper to buy, maintain, and operate than helicopters, or \nother forms of aerial surveillance.\\10\\ Drone manufacturers have \nrecently announced new designs that would allow drones to operate for \nmore than 48 consecutive hours,\\11\\ and other technology could extend \nthe flight time of future drones out into weeks and months.\\12\\ Also, \n``by virtue of their design, size, and how high they can fly, [drones] \ncan operate undetected in urban and rural environments.\'\'\\13\\\n---------------------------------------------------------------------------\n    \\10\\ Nick Wingfield and Somini Sengupta, Drones Set Sights on U.S. \nSkies, NY Times (Feb. 17, 2012), available at http://www.nytimes.com/\n2012/02/18/technology/drones-with-an-eye-on-the-public-cleared-to-\nfly.html?pagewanted=all; http://www.wired.com/autopia/2012/05/drone-\nauto-vids/; Sabrina Hall, Shelby County Sheriff\'s Department Wants \nDrones, WREG (May 3, 2012), available at http://wreg.com/2012/05/03/\nshelby-county-sheriffs-department-wants-drones/. Drones can run from \n$300 for the most basic drone, able to record and transmit video, to \n$18 million for a General Atomics Predator B drone, the model owned by \nthe United States Bureau of Customs and Border Protection. See Parrot \nAR.Drone 2.0, Apple, http://store.apple.com/us/product/H8859ZM/A (last \nvisited July 16, 2012); Office of the Inspector Gen., Dep\'t Homeland \nSecurity, OIG-12-85, CBPs Use of Unmanned Aircraft Systems in the \nNation\'s Border Security (May 2012), available at http://\nwww.oig.dhs.gov/assets/Mgmt/2012/OIG_12-85_May12.pdf [hereinafter DHS \nOIG Report] at 2.\n    \\11\\ Mark Brown, Lockheed Uses Ground-Based Laser to Recharge Drone \nMid-Flight (July 12, 2012), available at http://www.wired.co.uk/news/\narchive/2012-07/12/lockheed-lasers.\n    \\12\\ Steven Aftergood, Secret Drone Technology Barred by \n``Political Conditions\'\' (Mar. 22, 2012), available at http://\nwww.fas.org/blog/secrecy/2012/03/sandia_drone.html.\n    \\13\\ Jennifer Lynch, Are Drones Watching You?, Electronic Frontier \nFoundation (Jan. 10, 2012), available at https://www.eff.org/deeplinks/\n2012/01/drones-are-watching-you.\n---------------------------------------------------------------------------\n    The ability to link facial recognition capabilities on drones \noperated by the Department of Homeland Security (``DHS\'\') to the \nFederal Bureau of Investigation\'s Next Generation Identification \ndatabase or DHS\' IDENT database, two of the largest collections of \nbiometric data in the world, exacerbates the privacy risks.\\14\\ Drones \ncould be deployed to monitor individuals in a way that was not possible \npreviously.\n---------------------------------------------------------------------------\n    \\14\\ See Next Generation Identification, Federal Bureau of \nInvestigation, http://www.fbi.gov/about-us/cjis/\nfingerprints_biometrics/ngi/ngi2/ (last visited July 16, 2012); Privacy \nImpact Assessment, Department of Homeland Security, Automated Biometric \nIdentification System (IDENT) (July 31, 2006), http://www.dhs.gov/\nxlibrary/assets/privacy/privacy_pia_usvisit_- \nident_final.pdf.\n---------------------------------------------------------------------------\n    Sensitive information collected by drones is particularly \nvulnerable to unlawful access. In comments addressing the issue of \ndrone test site locations, EPIC observed, ``drone hacking,\'\' or the \nprocess of remotely intercepting and compromising drone operations, \nposes a threat to the security of lawful drone operations.\\15\\ Recent \nexamples have highlighted the ease with which drones may be ``hacked\'\'. \nThe University of Texas was able to use GPS signals in order to gain \nfull control of a drone.\\16\\ The researchers indicated that the method \ncould be use on any drone operated over the civilian GPS band, which \ninclude the majority of drones in the United States.\\17\\ Hackers are \nalso able to intercept video and audio feeds, as well as other \ninformation collected and transmitted by surveillance drones.\\18\\\n---------------------------------------------------------------------------\n    \\15\\ Comments of EPIC to the FAA re: Request for Comments on \nUnmanned Aircraft System Test Sites (May 8, 2012), available at http://\nepic.org/privacy/drones/EPIC-FAA-2012-0252.pdf.\n    \\16\\ Alex Fitzpatrick, Researchers Prove Drones Can Be Hacked, \nMashable (June 29, 2012), available at http://mashable.com/2012/06/29/\ndrone-hacking/.\n    \\17\\ Id.\n    \\18\\ Siobhan Gorman, Yochi Dreazen, and August Cole, Insurgents \nHack U.S. Drones, Wall St. J. (Dec. 17, 2009), available at http://\nonline.wsj.com/article/SB126102247889095011.html.\n---------------------------------------------------------------------------\n    Within DHS, the Bureau of Customs and Border Protection (``CBP\'\') \nis the primary operator of unmanned aerial drones. CBP operates ten \ndrones in the United States, including the Predator B and its maritime \nvariant the Guardian, at a cost per unit of about $18 million each.\\19\\ \nBy 2016, CBP plans to operate 24 drones, with the ability to deploy one \nanywhere in the continental United States within 3 hours.\\20\\\n---------------------------------------------------------------------------\n    \\19\\ See DHS OIG Report, supra note 11 at 2.\n    \\20\\ William Booth, More Predator Drones Fly U.S.-Mexico Border, \nWASH. POST (Dec. 21, 2011), available at http://www.washingtonpost.com/\nworld/more-predator-drones-fly-us-mexico-border/2011/12/01/\ngIQANSZz80_story.html.\n---------------------------------------------------------------------------\n    But there are problems with the CBP program. According to a recent \nreport of the DHS Inspector General, CBP ``needs to improve planning of \nits unmanned aircraft systems program to address its level of \noperation, program funding, and resource requirements, along with \nstakeholder needs.\'\'\\21\\ The Inspector General assessed CBP\'s practice \nof making the drones available for use by other Federal and State \nagencies, including the Bureau of Land Management, the Department of \nDefense, the Federal Bureau of Investigation, the Texas Rangers, the \nUnited States Forest Service, the National Oceanic and Atmospheric \nAdministration, the Office of Border Patrol, the United States Secret \nService, the Immigrations and Customs Enforcement, the Federal Agency \nManagement Agency, and local Law Enforcement Agencies.\\22\\\n---------------------------------------------------------------------------\n    \\21\\ See DHS OIG Report, supra note 11 at 1.\n    \\22\\ Id. at 6-7.\n---------------------------------------------------------------------------\n    The Inspector General concluded that all purchases of new drones \nshould be suspended until CBP develops a plan that addresses \n``necessary operations, maintenance, and equipment.\'\'\\23\\ Regarding \nprivacy concerns, the DHS Inspector General said that a standardized \nprocess was needed to request CBP drones for non-CBP purposes, in order \nto ``provide transparency.\'\'\\24\\\n---------------------------------------------------------------------------\n    \\23\\ Id. at 8\n    \\24\\ Id. at 7.\n---------------------------------------------------------------------------\n             II. CURRENT PRIVACY SAFEGUARDS ARE INADEQUATE\n\n    Current regulations permit civil organizations to operate a drone \nwithin the United States only pursuant to a special ``experimental\'\' \ndesignation.\\25\\ However, Government operators of drones do not have a \nsimilar restriction.\\26\\ Recent policy changes at the FAA, the \nadministrative agency in charge of licensing both Governmental and non-\nGovernmental drones to operate in the National airspace, are designed \nto ``streamline\'\' the process by which Government agencies, including \nlaw enforcement, receive drone licenses.\\27\\\n---------------------------------------------------------------------------\n    \\25\\ See Fact Sheet, FAA, Unmanned Aircraft Systems (UAS) (Dec. 1, \n2010), available at http://www.faa.gov/news/fact_sheets/\nnews_story.cfm?newsid=6287 (``A Special Airworthiness Certificate in \nthe Experimental Category is the only certification available to civil \noperators of UAS.\'\').\n    \\26\\ See Id. (``The COA process is available to public entities, \nsuch as government agencies (including local law enforcement and state \nuniversities), who want to fly a UAS in civil airspace.\'\').\n    \\27\\ See FAA Makes Progress with UAS Integration, Federal Aviation \nAdministration, (May 14, 2012, 3:09 PM) http://www.faa.gov/news/\nupdates/?newsId=68004 (``The FAA has been working with its government \npartners to streamline COA procedures as part of the effort to ensure \n[drones] are safely integrated into the [national airspace system].\'\').\n---------------------------------------------------------------------------\n    The CBP currently operates drones with few regulations concerning \nprivacy. No current legislation limits the visual surveillance that a \nDHS drone may engage in. And while the Privacy Act of 1974 expressly \nprescribes the circumstances under which agencies can retain personally \nidentifiable information, the agency may still exempt itself from the \nPrivacy Act provisions that limit the collection and use of personal \ninformation.\\28\\ DHS has not sought public comment on or published any \nspecific rules or guidelines that restrict the surveillance practices \nof its drone program. Also, despite recent releases of records, the \nFAA\'s process for the application for and approval of a drone license \nare still mostly opaque, preventing any transparency or accountability \nfor operators.\\29\\\n---------------------------------------------------------------------------\n    \\28\\ See e.g. 5 U.S.C. \x06 552a(j) (allowing agencies to exempt \nthemselves from maintenance requirements pursuant to law enforcement \nreasons).\n    \\29\\ See FAA Releases Lists of Drone Certificates--Many Questions \nLeft Unanswered, Electronic Frontier Foundation, (Apr. 19, 2012) \nhttps://www.eff.org/deeplinks/2012/04/faa-releases-its-list-drone-\ncertificates-leaves-many-questions-unanswered (listing information \nabout the FAA\'s drone authorization process that remains unknown).\n---------------------------------------------------------------------------\n    There are substantial legal and Constitutional issues involved in \nthe deployment of aerial drones by Federal agencies that need to be \naddressed. And, as we have noted, no legislation currently provides \nadequate safeguards to protect privacy rights against the increased use \nof drones in the United States.\n    As drone technology becomes cheaper and more proliferate, the \nthreat to privacy will become more substantial. High-rise buildings, \nsecurity fences, or even the walls of a building are not barriers to \nincreasingly common drone technology.\n    The Supreme Court is aware of the growing risks to privacy \nresulting from new surveillance technology but has yet to address the \nspecific problems associated with drone surveillance. In United States \nv. Jones, a case that addressed whether the police could use a GPS \ndevice to track the movement of a criminal suspect without a warrant, \nthe Court found that the installation and deployment of the device was \nan unlawful search and seizure.\\30\\ Justice Sotomayor in a concurrence \npointed to broader problems associated with new forms of persistent \nsurveillance.\\31\\ And Justice Alito, in a separate concurrence joined \nby three other Justices, wrote, ``in circumstances involving dramatic \ntechnological change, the best solution to privacy concerns may be \nlegislative.\'\'\\32\\\n---------------------------------------------------------------------------\n    \\30\\ United States v. Jones, 132 S.Ct. 945, 949 (2012). See also \nU.S. v. Jones, EPIC, http://epic.org/amicus/jones/.\n    \\31\\ Id. at 954-57.\n    \\32\\ Id. at 964.\n---------------------------------------------------------------------------\n    As you have indicated, Mister Chairman, the privacy and security \nconcerns arising from the use of drones needs to be addressed.\\33\\ \nSeveral of your colleagues in the House of Representatives have made \nefforts to address some of the privacy threats of drones, and we \nsupport these initiatives.\n---------------------------------------------------------------------------\n    \\33\\ Press Release, United States House of Representatives \nCommittee on Homeland Security, A Look Ahead: House Committee on \nHomeland Security (July 13, 2012), available at http://\nhomeland.house.gov/press-release/look-ahead-house-committee-homeland-\nsecurity-34 (``However, no Federal agency is taking responsibility for \ncreating comprehensive policies and regulations concerning the use of \nthese systems domestically. Additionally, vulnerabilities to `drone\' \nhackers exist, as recently demonstrated by researchers at the \nUniversity of Texas, raising concerns these vehicles could be \ncommandeered by terrorists or others with ill intent.\'\').\n---------------------------------------------------------------------------\n    An amendment to the National Defense Authorization Act of 2013, \nintroduced by Congressman Jeff Landry (R-LA) and passed by the House, \nwould prohibit information collected by drones operated by the \nDepartment of Defense from being used in court as evidence if a warrant \nwas not obtained.\\34\\ In June, House Representative Austin Scott (R-FL) \nintroduced legislation to expand this protection, requiring all law \nenforcement to first obtain a warrant before conducting any criminal \nsurveillance.\\35\\ Also, Congressman Markey (D-MA) and Congressman \nBarton (R-TX) sent a letter to the FAA raising concerns about the \nincreased use of drones in the United States, noting, ``there is . . . \npotential for drone technology to enable invasive and pervasive \nsurveillance without adequate privacy protections.\'\'\\36\\\n---------------------------------------------------------------------------\n    \\34\\ See H.R. 4310, 112th Cong. \x06 1084 (2012), available at http://\nwww.gpo.gov/fdsys/pkg/BILLS-112hr4310rfs/pdf/BILLS-112hr4310rfs.pdf; \nsee also Pete Kasperowicz, House Approves 20 en bloc Amendments to \nDefense Reauthorization, Including Satellite Language, the Hill (May \n17, 2012), available at http://thehill.com/blogs/floor-action/house/\n228147-ndaa-update-1-house-approves-20-en-bloc-amendments-including-\nsatellite-language.\n    \\35\\ Preserving Freedom from Unwarranted Surveillance Act of 2012, \nH.R. 5925, 112th Cong. (2012), available at http://thomas.loc.gov/cgi-\nbin/query/z?c112:H.R.5925:.\n    \\36\\ Letter from Congressmen Edward J. Markey and Joe Barton to \nMichael Huerta, Acting Federal Aviation Administration Administrator \n(Apr. 19, 2012) available at http://markey.house.gov/sites/\nmarkey.house.gov/files/documents/4-19-12.Letter%20FAA%20Drones- \n%20.pdf.\n---------------------------------------------------------------------------\n    However, these measures are not sufficient to protect the myriad of \nprivacy interests implicated by increased drone use.\n\n   III. EPIC HAS URGED THE ADMINISTRATIVE ACTION TO ADDRESS DRONE USE\n\n    The FAA has been directed by Congress to develop regulations in \norder to permit more widespread deployment of drones in the United \nStates.\\37\\ The forthcoming regulations will address licensing and \nprocedures for both public and private drone operators, including DHS \nand CBP. Experts, including Professor Ryan Calo, the former Director of \nPrivacy and Robotics at the Center for Internet and Society at Stanford \nLaw School, have noted that this effort will have significant privacy \nimplications.\\38\\\n---------------------------------------------------------------------------\n    \\37\\ See FAA Modernization and Reform Act of 2012, Pub. L. 112-95 \x06 \n324(c)(1) (2012), available at http://thomas.loc.gov/cgi-bin/query/\nz?c112:H.R.658:.\n    \\38\\ See, M. Ryan Calo, The Drone as a Privacy Catalyst, 64 Stan. \nL. Rev. Online 29 (2011), available at http://\nwww.stanfordlawreview.org/online/drone-privacy-catalyst; see also Ryan \nCalo and John Villasenor, Ten Myths About Drones, Huffington Post (May \n22, 2012), http://www.huffingtonpost.com/ryan-calo/drones-\nmyths_b_1537040.html; Drones Over America: What Can They See, NPR (Mar. \n12, 2012), available at http://www.npr.org/2012/03/12/148293470/drones-\nover-america-what-can-they-see.\n---------------------------------------------------------------------------\n    Earlier this year, in a formal petition to the agency, EPIC urged \nthe FAA to conduct a privacy rulemaking on the use of drones, with the \naim of creating regulations to ensure baseline privacy protections.\\39\\ \nEPIC\'s petition was joined by more than 100 organizations, experts, and \nmembers of the public who also believe that drones should not be more \nwidely deployed until privacy safeguards are established.\\40\\\n---------------------------------------------------------------------------\n    \\39\\ Petition from EPIC, et al., to Michael P. Huerta, Acting \nAdministrator, FAA (Feb. 24, 2012), available at http://epic.org/\nprivacy/drones/FAA-553e-Petition-03-08-12.pdf [hereinafter EPIC \nPetition to FAA].\n    \\40\\ Id.\n---------------------------------------------------------------------------\n    The FAA has thus far failed to respond to EPIC\'s request for agency \naction. The FAA\'s failure to act means that there is no framework in \nplace that ensures that civilian operators and Federal agencies, such \nas DHS, utilize drone technology in a privacy-protective manner. To the \nextent that DHS, as well as other agencies, chooses to operate drones \nwithin the United States, we believe that the DHS should also develop \nappropriate regulations to safeguard privacy.\n    Specifically, the Department of Homeland Security must utilize its \nPrivacy Office, one of the most robust, well-funded Privacy Offices in \nthe Federal Government. The Privacy Office at DHS ``conducts [Privacy \nImpact Assessments] on technologies, rulemakings, programs, and \nactivities . . . to ensure that privacy considerations and protections \nare incorporated into all activities of the Department.\'\'\\41\\\n---------------------------------------------------------------------------\n    \\41\\ Guide to Implementing Privacy, Department of Homeland Security \n(June 2010), http://www.dhs.gov/xlibrary/assets/privacy/\ndhsprivacyoffice-guidetoimplementingprivacy.pdf at 14.\n---------------------------------------------------------------------------\n    However, despite a DHS component operating one of the largest, and \ndefinitely the most well-publicized drone fleet in the United States \nfor the past 7 years, a Privacy Impact Assessment has never been \nconducted on the privacy impact of drone surveillance. At a minimum, we \nbelieve that if the CPB plans to continue the drone program, the DHS \nprivacy office must assess the privacy impact of the program and \npublish a report for public review.\n\n IV. CONGRESS SHOULD ESTABLISH SAFEGUARDS RELATED TO THE USE OF DRONES\n\n    There are several strategies to provide meaningful privacy \nprotections that address the increased use of drones in our domestic \nskies. First, Congress should pass targeted legislation, based on \nprinciples of transparency and accountability. A first step would be \nthe consideration and passage of Congressman Scott\'s bill to limit the \nuse of drone surveillance in criminal investigations without a warrant.\n    State and local governments have also considered laws and \nregulations to further prevent abuses of drone technology.\\42\\ These \nproposals would serve as a good basis for Federal legislation. Drone \nlegislation should include:\n---------------------------------------------------------------------------\n    \\42\\ See, e.g., Erika Neddenien, ACLU Teams with Lawmaker to Push \nRegulation of Unmanned Drones in VA, WTVR (July 12, 2012) http://\nwtvr.com/2012/07/12/aclu-working-with-lawmaker-to-push-regulation-of-\nunmanned-drones-in-va/  (last visited July 16, 2012); Press Release, \nSeattle City Council, Seattle City Council Committee to Discuss Drones \nin Seattle and the Issues They Present (May 1, 2012), available at \nhttp://council.seattle.gov/2012/05/01/seattle-city-council-committee-\nto-discuss-drones-in-seattle-and-the-issues-they-present/.\n---------------------------------------------------------------------------\n  <bullet> Use Limitations.--Prohibitions on general surveillance that \n        limit drone surveillance to specific, enumerated circumstances, \n        such as in the case of criminal surveillance subject to a \n        warrant, a geographically-confined emergency, or for reasonable \n        non-law enforcement use where privacy will not be substantially \n        affected;\n  <bullet> Data Retention Limitations.--Prohibitions on retaining or \n        sharing surveillance data collected by drones, with emphasis on \n        identifiable images of individuals;\n  <bullet> Transparency.--Requiring notice of drone surveillance \n        operations to the extent possible while allowing law \n        enforcement to conduct effective investigations. In addition, \n        requiring notice of all drone surveillance policies through the \n        Administrative Procedure Act.\n    These three principles would help protect the privacy interests of \nindividuals. In addition, the law should provide for accountability, \nincluding third-party audits and oversight for Federally-operated \ndrones and a private right of action against private entities that \nviolate statutory privacy rights.\n    Second, Congress should act to expressly require Federal agencies \nthat choose to operate drones, such as DHS and its components, to \nimplement regulations, subject to public notice and comment, that \naddress the privacy implications of drone use. Recently, in EPIC v. \nDHS, the D.C. Circuit Court of Appeals ruled that the Department of \nHomeland Security violated the Administrative Procedure Act when it \nchose to deploy body scanners as the primary screening technique in \nU.S. airports without the opportunity for public comment.\\43\\ The Court \nobserved that there was ``no justification for having failed to conduct \na notice-and-comment rulemaking.\'\'\\44\\ We believe that the public has a \nsimilar right to comment on new surveillance techniques, such as \nunmanned aerial vehicles, undertaken by Federal agencies within the \nUnited States.\n---------------------------------------------------------------------------\n    \\43\\ See EPIC v. DHS, 653 F.3d 1 (D.C. Cir. 2011).\n    \\44\\ Id. at 8.\n---------------------------------------------------------------------------\n    Finally, Congress must clarify the circumstances under which the \ndrones purchased by the CBP in pursuit of its mission may be deployed \nby other agencies for other purposes. The failure to make clear the \ncircumstances when Federal and State agencies may deploy drones for \naerial surveillance has already raised significant concerns about the \nagency\'s program.\\45\\\n---------------------------------------------------------------------------\n    \\45\\ See Jason Koebler, First Man Arrested with Drone Evidence Vows \nto Fight Case, US News (Apr. 9, 2012), available at http://\nwww.usnews.com/news/articles/2012/04/09/first-man-arrested-with-drone-\nevidence-vows-to-fight-case.\n---------------------------------------------------------------------------\n                             V. CONCLUSION\n\n    The increased use of drones to conduct surveillance in the United \nStates must be accompanied by increased privacy protections. We \nrecognize that drone technology has the potential to be used in \npositive ways. For example, drones may be used to monitor for \nenvironmental abuse, prevent the spread of forest fires, and assist in \nthe rescue of individuals in dangerous situations.\\46\\\n---------------------------------------------------------------------------\n    \\46\\ See, e.g., Tim Wall, Flying Drones Fight Fires, Discovery News \n(Nov. 10, 2011), available at http://news.discovery.com/earth/flying-\ndrones-fight-fires-111110.html; Meghan Keneally, Drone Plane Spots a \nRiver of Blood Flowing From the Back of a Dallas Meat Packing Plant, \nDaily Mail Online (Jan. 24, 2012), available at http://\nwww.dailymail.co.uk/news/article-2091159/A-drone-plane-spots-river-\nblood-flowing-Dallas-meat-packing-plant.html; Sean Holstege, Drones\' \nGood Flies Hand in Hand with Bad, Experts Fear, AZCentral (July 7, \n2012), available at http://www.azcentral.com/12news/news/articles/2012/\n07/07/20120707arizona-unmanned-drones-concerns.html.\n---------------------------------------------------------------------------\n    However, the current state of the law is insufficient to address \nthe drone surveillance threat. EPIC supports legislation aimed at \nstrengthening safeguards related to the use of drones as surveillance \ntools and allowing for redress for drone operators who fail to comply \nwith the mandated standards of protection. We also support compliance \nwith the Administrative Procedure Act for the deployment of drone \ntechnology and limitations for Federal agencies and other organizations \nthat initially obtain a drone for one purpose and then wish to expand \nthat purpose.\n    Thank you for the opportunity to testify today. I will be pleased \nto answer your questions.\n\n    Mr. McCaul. Thank you, Ms. Stepanovich.\n    Let me start first with Mr. Dillingham. You mentioned, as I \ndid in my opening statement, TSA identified a potential \nterrorist threat through the use of these UAV systems, the FARC \nin Colombia, and they talk about Hezbollah. Then, of course, \ntheir concerns really came to fruition last September when it \nwas reported by the Associated Press: Man to blow up Pentagon \nand U.S. Capitol is arrested, and this was a drone that he was \ngoing to use to do that.\n    Mr. Dillingham. Yes, sir.\n    Mr. McCaul. The United States Capitol and the Pentagon, the \nvery targets of 9/11. Yet the Department and as you recommended \nthrough the GAO, the Department has a role in this to provide a \nsecurity assessment and a National policy. The Department \napparently disagrees with you and frankly disagrees with me as \nthe Chairman, and has refused to provide testimony before this \ncommittee here today. I find that reprehensible. I believe the \nDepartment should come before this committee to answer why they \nbelieve they should not have a role in this, when they had a \ndirect threat to the United States Capitol and the Pentagon, \nand yet they don\'t see it as a role of the Department of \nHomeland Security to come up with a policy and a security \nassessment to monitor the threat that these domestic drones can \npose to the American people.\n    Do you have any idea what their rationale is?\n    Mr. Dillingham. Mr. Chairman, we specifically followed up \nin preparation for this hearing. But before that, the GAO has a \npolicy of once we issue a recommendation that we do periodic \nfollow-ups because those agencies are not only responsible for \nreporting to the GAO, but they also report to the Congress. So \nwe followed up most recently and asked the TSA again about \ntheir position: Had their position changed? They indicated that \ntheir position had not changed, but they added--their added \ncomments were that they were doing, they were taking actions \nthat they thought were sufficient to address the issue.\n    As you know, one of the central tenets of TSA\'s security \nare risk analysis or risk assessment so that they know where \nthey would best deploy their resources. So we asked for some \nevidence of risk assessment that was done with regard to UAVs \nor UASs. We were not able to obtain that from DHS.\n    So we still think that our recommendation is valid and \nneeded to be addressed. For balance, though, let me say that \nDHS is participating with the Joint Planning and Development \nOffice as part of the cross-Government-wide development for \nplans. But in terms of exactly what the nature and scope of \nthat participation is beyond being members of that particular \ngroup, we were not able to ascertain at this point. But we \ncontinue to work that issue for our full report.\n    Mr. McCaul. Well, I can\'t ascertain it either. If they \nwon\'t come before this committee to describe what they are \ndoing, how can we possibly know what they are doing? You said \nthey have taken certain precautions, but yet they will not come \nbefore this committee to tell us what precautions they are \ntaking. They have defied not only you but I think the will of \nthis committee and the will of the American people. I am not \npleased about that, obviously.\n    Let me go to Chief McDaniel. You actually received Homeland \nSecurity grants to purchase these drones; is that correct?\n    Chief McDaniel. That is correct.\n    Mr. McCaul. But yet they have no role?\n    Chief McDaniel. No, sir.\n    Mr. McCaul. I hope you are saying that facetiously. You \nsaid you believe that there needs to be Federal oversight by \nthe Department of Homeland Security; is that correct?\n    Chief McDaniel. Yes, sir. There is a difference between the \naviation aspect of it that certainly the FAA is entitled to as \nexperts in that environment, but they do not have the \nunderstanding and the expertise that I believe an agency such \nas the DHS would have in understanding the operational roles \nand missions that, in our case, law enforcement would have and \nthe needs that we would have.\n    Mr. McCaul. I tend to agree with you. I think FAA provides \nthe safety of the routes but not security.\n    Tell me just very briefly the legitimate law enforcement \npurposes. I do believe there is a legitimate law enforcement \npurpose for the use of these domestically. Can you expand on \nthat?\n    Chief McDaniel. Well, we have periodic needs for our SWAT \nteam to be called out and respond to critical incidents \ninvolving barricaded suspects, high-risk warrants, and this is \nan asset that provides that incident commander with a \nsituational awareness to see everything that is going on within \nthat incident so that he can better manage that incident and \nbring it to a safe conclusion.\n    Mr. McCaul. I agree. I think it should be limited to a \nspecific instance or mission within a legitimate law \nenforcement purpose. I think what most American people do not \nwant to see are thousands of these drones being eyes of the \nskies, sort of spying on the American people.\n    That takes me to you, Ms. Stepanovich. When it comes to the \nprivacy issues, which I think are of legitimate concern, I \nthink people can accept if these are being used for a manhunt, \nas we use law enforcement helicopters. They are used in the sky \nfor various legitimate law enforcement purposes. What they \ndon\'t want to see is sort of spying without any mission \ninvolved in the plan. So there is no policy.\n    The Department of Homeland Security has an Office of \nPrivacy. Don\'t you believe they should be involved in working \nwith people like yourself and people like the sheriff and \npeople like the GAO to develop a privacy policy?\n    Ms. Stepanovich. EPIC does believe that. In fact, we \nbelieve that a great first step, DHS has the most robust \nprivacy office in the Federal Government, and they have not \neven done a privacy impact assessment on their own drone \nprogram, which is also one of the most robust and definitely \none of the most well-publicized programs in the Federal \nGovernment. So they have not even gone in to determine what \nimpact these drones will have on the American public as they \nuse them. We think that would be a great first step, and then \nafter that has been completed, to really go in and to monitor \nthese and determine what they can be used for and what they \ncannot be used for.\n    Mr. McCaul. Let me just conclude by saying that while you \nall may not agree on all of the issues, one thing you do agree \non is that DHS has a role here to play, whether it is providing \na security analysis, working with the State and locals and with \nprivacy. I hope this hearing gets their attention. I hope your \ntestimony gets their attention to step up to the plate and do \nsomething about this.\n    With that, I recognize the Ranking Member, Mr. Keating.\n    Mr. Keating. Thank you, Mr. Chairman.\n    Chief McDaniel, I am not saying by any stretch of the \nimagination you would do this, but just a question for you: If \nthere was a law enforcement person, chief or other official, \nfor instance, who wanted to replace the rubber bullets with \nreal bullets, do you know of any State law, rule, regulation, \nthat could stop anyone from doing that in place right now?\n    Chief McDaniel. I am not aware of any law within the State \nof Texas that would prevent that; no, sir.\n    Mr. Keating. I would suggest that that is probably typical \nfor all States. Do you think that we should be looking at this \nboth at the Federal and State level?\n    Chief McDaniel. Certainly I can understand it as being a \nconcern. The actuality of that ever occurring is slim and none, \nin my view, based upon the platform, the accuracy that would be \nrequired, all of those things that go into a lethal or less-\nthan-lethal-force situation. I do not believe these UAVs are \nappropriate for that type of a weapons platform.\n    Mr. Keating. Thank you.\n    A question for Ms. Stepanovich. I can just envision, \nprobably in the more extreme example, the paparazzi or someone \nelse--you know how they invade someone\'s privacy right now--\nabusing these vehicles. Is there any way even besides criminal \nlaw and other law, is there a way that we could trace someone \nwho is photographing or doing video cam work on people in their \nprivate lives out in their backyard or in front of a pool or \nwherever, is there any way we can trace that so there can be \ncivil action? Do you think there is available civil action that \ncould be brought forward?\n    Ms. Stepanovich. On the State level, there could be civil \naction in some States. You would have to look to the Peeping \nTom laws. However, some of those are very, very specific and \nthey require the motivation to catch a person in a state of \nundress. Other than that, there really is no legislation that \nwould address those circumstances. Right now with the opaque \nprocess for licensing these drones to be used and the fact that \nhobbyists can gain control of a drone and use it without \ngetting a license at all, there is additional barriers too, \nespecially the paparazzi using these.\n    Mr. Keating. In addition to Homeland Security, do you \nbelieve the FAA should be involved in setting these kinds of \nregulations?\n    Ms. Stepanovich. I believe the FAA has a role. It do not \nbelieve that they are set up to go the full distance that the \nDepartment of Homeland Security can go. However, they are the \nlicensing authority, and in their authority they have the \nability to request the description of what a drone is going to \nbe licensed for and what they will be used for and to hold the \nlicensee to task for that purpose. We don\'t believe that is \ntaking place right now, and we think that would be an \nappropriate function of the FAA.\n    Mr. Keating. I will just conclude by commenting that I \nagree with the Chairman as well. There is some need of some \nkind of oversight because people\'s privacy rights are in \ndanger. There is a potential for terrorist activities that are \ninvolved and misuse that way. There should be some kind of \ncontrol other than the good common sense of law enforcement as \nto how this is used as well. We are hopeful we can follow up \nthis hearing with that kind of input from Homeland Security and \nperhaps FAA.\n    Mr. McCaul. I thank the Ranking Member for his comments.\n    The Chairman now recognizes Mr. Duncan from South Carolina.\n    Mr. Duncan. Thank you, Mr. Chairman. I do want to follow \nup. I think we do need a hearing with the FAA to bring them \nforward and ask questions about what they are doing to \nimplement permitting and certificates in this country with the \nflying of unmanned aerial systems because we have got a robust \ncivilian aviation population in this country. If you have \nvisual flight rules and you have got a civilian aviator that \ngoes up in his Cessna 172, he is not filing a flight plan. He \nis generally currently probably not looking to see if there is \na certificate whether the sheriff is flying a drone in the \narea. These drone pilots, they are not looking forward for \nother aircraft in their air space, they are looking down at \nwhatever they are surveilling. So I think there is a real \nthreat to civilian aviation with unmanned aerial systems, \nespecially if we see a dramatic increase that is projected \nbased upon the information that has been provided today. So I \nthink that is a valid question that we need to talk with the \nFAA about with regard to civilian aviation and VFR flight \nrules.\n    The gist of my concern about drones and unmanned aerial \nsystems is the privacy issue. It is a real issue and it is a \nreal concern to the constituents I represent and it is a real \nconcern to Americans all across this great land on what the \nGovernment is surveilling. We just had recently an episode in \nNebraska where farmers were upset that the EPA was flying \naircraft and possibly UAVs to check their fencing and whether \ntheir cattle were getting into streams, and enforcement issues, \nare they going to use UASs for that going forward. I am a \ncosponsor of Austin Scott\'s bill, which I think is an important \npiece of legislation.\n    When I think about privacy issues, I think about what we \nhave done in the war on terror and surveillance of people that \nwe suspect are involved in terrorism. In order to listen in on \ntheir phone conversations, whether cell phone or landline, the \nFISA court is involved. Well, is the FISA court going to be \ninvolved in unmanned aerial systems surveilling American \ncitizens in this country on what their activities are, whether \nit is terrorist activities or narcotic activities? Where is the \nright of privacy and where does a court such as FISA get \ninvolved in this?\n    I think these are legitimate questions that we need to ask. \nWe have an Office of Privacy within Homeland Security that the \nChairman mentioned earlier. That Office of Privacy is there for \na reason. It is to make sure that the Department of Homeland \nSecurity is involved in making sure that the privacy rights of \nAmerican citizens are not violated as we try to protect this \ngreat country. Is that Office of Privacy involved with the \nDepartment of Homeland Security with regard to unmanned aerial \nsystems?\n    I think it is a valid question for us to ask, and I want to \nthank Amie for being here. I want to ask you: What methods of \ncivil liberty protection are best to cooperate with this growth \nin UAS?\n    Ms. Stepanovich. We think that the best principles to \nalways look at are transparency and accountability. So we are \nlooking at, again, procedures at FAA to make sure that drone \noperators aren\'t allowed to utilize their drones for purposes \noutside of what they have initially been licensed for. We want \nto see DHS implement regulations protecting privacy and \nensuring that they cannot be used for generalized surveillance. \nWe think that that is not in line with Constitutional \nprinciples and should not be used. Then we would like to see, \nas we have proposed in our longer statement, legislation that \nis really geared towards protecting these rights. We think that \nit is important to do this now, as previous witnesses have \nstated. Violations have not occurred yet, and if we wait for \nthe drones to go up in the air before we act, I think that we \nare going to regret it.\n    Mr. Duncan. Well, thank you for protecting civil liberties \nin this country and what you are doing.\n    I come from South Carolina. We are on the coast. There is \nthe threat of hurricanes. I can see and understand a \ncertificate is issued for, whether it is the EPA or whether it \nis Homeland Security or some organization, to fly the coastline \nprior to a hurricane coming in to assess changes in the \nenvironment, take real-time actual aerial photos that can be \nused. I can understand a certificate being issued for Custom \nand Border Patrol if they know that there is an area of the \nborder that is being exploited, a one-time certificate. I can \nunderstand the need for some sort of privacy committee to issue \nthose certificates. I can understand a one-time certificate or \na temporary certificate being issued to a sheriff if you had a \nprison break or you had a lot of drug activity. But these are \nisolated incidents. They are not carte blanche flying of \nunmanned aerial systems across this country.\n    Mr. Dillingham, why has the Department of Homeland Security \nbeen so slow to develop policies and guidance related to the \ndomestic use of drones?\n    Mr. Dillingham. That is a good question, sir. We have not \nbeen able to get an answer from DHS or TSA why they have not \nfollowed our recommendations.\n    We have been told by many stakeholders that it is better to \nact on these potential issues before we have a crisis or before \nsome of these things occur because oftentimes not only does it \ntake regulations 2 or 3 years to be enacted, but oftentimes \nwhen regulations are enacted in a crisis situation, sometimes \nthey are not the best work that the agencies do. So we continue \nto follow-up with DHS and point out that we think they have a \nrole in the UAV situation as well, both in terms of privacy as \nwell as security.\n    Mr. Duncan. Well, I don\'t want to wait for a crisis \nsituation. If I know this Chairman as well as I think I know \nhim, I believe we will have the Department of Homeland Security \nsitting where you are sitting to answer these tough questions, \nand I yield back.\n    Mr. McCaul. I thank the gentleman for his confidence in his \nChairman. Let me just say that not only have they been slow, \nthey have completely disregarded Mr. Dillingham and the GAO and \nthey have defied this committee by refusing to testify on the \nissue, indicating that they have no role, no role whatsoever in \nthe domestic use of UAVs.\n    With that, I now recognizes Ms. Clarke.\n    Ms. Clarke. Thank you very much, Mr. Chairman. Let me add \nmy voice to that of my colleague about concern with respect to \nDHS and their response to this committee. Clearly this is an \nemerging threat, and it is certainly within the jurisdiction of \nDHS to respond to this committee, this subcommittee, in its \nrequest to know where they stand with regards to this. It is \nnot acceptable to not participate, to not share with us their \nthinking when you think about the implications of these \ndevices.\n    Dr. Dillingham, you note in your testimony that currently \nno Federal agency has specific statutory responsibility to \nregulate privacy matters related to UAS. Do you agree with Ms. \nStepanovich that the responsible agency should be DHS? In your \nopinion, which agency is best positioned to take this on, and \nwhy?\n    Mr. Dillingham. I think our answer at this point is we are \nprobably not in a position to say who should be responsible, \nbut we think the process that is under way now in terms of the \npotential agencies, including Justice, Homeland Security, FAA, \nshould be working together to figure out who in fact is going \nto take the lead in these particular areas. It is in no one\'s \nmission at this point because UASs didn\'t exist in the domestic \narea before not too long ago, so we think this is something for \ncollaboration and cooperation, but definitely something that \nneeds to be attended to now rather than later.\n    Ms. Clarke. Ms. Stepanovich, do you agree?\n    Ms. Stepanovich. We do agree, and we agree that as other \nagencies implement drones in the United States, we think that \nthose agencies should also take on a role in regulating and \nprotecting the privacy of the people who may come under \nsurveillance because of those operations.\n    Ms. Clarke. Ms. Stepanovich, the organization representing \nUAV manufacturers and operators recently released an industry \ncode of conduct. That included some privacy safeguards. \nMoreover, compliance with the guidelines is both voluntary and \nunenforceable. Although the attempt to address concerns in that \nmanner was laudable, can you explain why official action with \nenforcement is necessary?\n    Ms. Stepanovich. I am holding the voluntary code of conduct \nright here. It is 1 page front and back. All they say on \nprivacy is we will respect the privacy of individuals. As you \nmentioned, it is both voluntary and nonenforceable. We believe \nthat without official action, if everything comes down to that \none line on this 1 page, that privacy will not be sufficiently \nprotected.\n    [The information follows:]\n\n   Association for Unmanned Vehicle Systems International: Unmanned \n        Aircraft System Operations Industry ``Code of Conduct\'\'\n\n    The emergence of unmanned aircraft systems (UAS) as a resource for \na wide variety of public and private applications quite possibly \nrepresents one of the most significant advancements to aviation, the \nscientific community, and public service since the beginning of flight. \nRapid advancements in the technology have presented unique challenges \nand opportunities to the growing UAS industry and to those who support \nit. The nature of UAS and the environments which they operate, when not \nmanaged properly, can and will create issues that need to be addressed. \nThe future of UAS will be linked to the responsible and safe use of \nthese systems. Our industry has an obligation to conduct our operations \nin a safe manner that minimizes risk and instills confidence in our \nsystems.\n    For this reason, the Association for Unmanned Vehicle Systems \nInternational (AUVSI), offers this Code of Conduct on behalf of the UAS \nindustry for UAS operation. This code is intended to provide our \nmembers, and those who design, test, and operate UAS for public and \ncivil use, a set of guidelines and recommendations for safe, non-\nintrusive operations. Acceptance and adherence to this code will \ncontribute to safety and professionalism and will accelerate public \nconfidence in these systems.\n    The code is built on three specific themes: Safety, \nProfessionalism, and Respect. Each theme and its associated \nrecommendations represent a ``common-sense\'\' approach to UAS operations \nand address many of the concerns expressed by the public and \nregulators. This code is meant to provide UAS industry manufacturers \nand users a convenient checklist for operations and a means to \ndemonstrate their obligation to supporting the growth of our industry \nin a safe and responsible manner. By adopting this Code, UAS industry \nmanufacturers and users commit to the following:\n\n                                 SAFETY\n\n  <bullet> We will not operate UAS in a manner that presents undue risk \n        to persons or property on the surface or in the air.\n  <bullet> We will ensure UAS will be piloted by individuals who are \n        properly trained and competent to operate the vehicle or its \n        systems.\n  <bullet> We will ensure UAS flights will be conducted only after a \n        thorough assessment of risks associated with the activity. This \n        risks assessment will include, but is not limited to:\n    <bullet> Weather conditions relative to the performance capability \n            of the system.\n    <bullet> Identification of normally anticipated failure modes (lost \n            link, power plant failures, loss of control, etc) and \n            consequences of the failures.\n    <bullet> Crew fitness for flight operations.\n    <bullet> Overlying airspace, compliance with aviation regulations \n            as appropriate to the operation, and off-nominal \n            procedures.\n    <bullet> Communication, command, control, and payload frequency \n            spectrum requirements.\n    <bullet> Reliability, performance, and airworthiness to established \n            standards.\n\n                            PROFESSIONALISM\n\n  <bullet> We will comply with all Federal, State, and local laws, \n        ordinances, covenants, and restrictions as they relate to UAS \n        operations.\n  <bullet> We will operate our systems as responsible members of the \n        aviation community.\n  <bullet> We will be responsive to the needs of the public.\n  <bullet> We will cooperate fully with Federal, State, and local \n        authorities in response to emergency deployments, mishap \n        investigations, and media relations.\n  <bullet> We will establish contingency plans for all anticipated off-\n        nominal events and share them openly with all appropriate \n        authorities.\n\n                                RESPECT\n\n  <bullet> We will respect the rights of other users of the airspace.\n  <bullet> We will respect the privacy of individuals.\n  <bullet> We will respect the concerns of the public as they relate to \n        unmanned aircraft operations.\n  <bullet> We will support improving public awareness and education on \n        the operation of UAS.\n    As an industry, it is incumbent upon us to hold ourselves and each \nother to a high professional and ethical standard. As with any \nrevolutionary technology, there will be mishaps and abuses; however, in \norder to operate safely and gain public acceptance and trust, we should \nall act in accordance with these guiding themes and do so in an open \nand transparent manner. We hope the entire UAS industry will join AUVSI \nin adopting this industry Code of Conduct.\n\n    Ms. Clarke. Is there a particular downside for the \nmanufacturers in not providing a much more robust code of \nconduct?\n    Ms. Stepanovich. Many privacy experts, including Ryan Calo, \na former professor at Stanford and an expert in privacy and \nrobotics, has said that people in the United States will be \nvery hesitant to accept the adoption of this technology if \nprivacy safeguards are not put into place prior to the adoption \nof it. So we believe that if we don\'t address this now, that \nthere will actually be a visceral reaction from the American \npublic and that we will not be able to comply with the spirit \nof the FAA act which requires that drones be allowed into the \nUnited States National airspace.\n    Ms. Clarke. So from a commercial use standpoint or even a \nlocal law enforcement standpoint, is it within the best \ninterest of manufacturers to strengthen their code of conduct?\n    Ms. Stepanovich. We believe it is not only in the best \ninterest for them to strengthen the code of conduct, it is also \nin their best interest to support large-scale legislation and \nregulations related to privacy.\n    Ms. Clarke. Thank you very much, Mr. Chairman, and I yield \nback.\n    Mr. McCaul. I thank the gentlelady.\n    The Chairman now recognizes Mr. Billy Long from Missouri.\n    Mr. Long. Thank you, Mr. Chairman.\n    Any of you can answer. Can you define a drone for me? Is \nthere a certain size or certain altitude that it flies at? What \nconstitutes what we are trying to deal with?\n    Mr. Dillingham. I guess I will try and start. It varies, \nsir. It varies from hand-held model airplane types to the ones \nthat we are most familiar with in terms of the Predators and \nthe Global Hawks that are used mostly in the war theater.\n    What we are talking about here for the most part are what \nis called the small UAVs, which is what FAA is trying to \ndevelop a rule for, and that is I think less than 55 pounds and \nrelatively small in size.\n    Mr. Long. A flying trash can, are you familiar with that?\n    Mr. Dillingham. I have heard that phrase before. It could \nbe the size of a flying trash can, or it could be the size of a \nhummingbird.\n    Mr. Long. I thought you said 55 pounds?\n    Mr. Dillingham. Right. But I am saying it varies in size, \nthe small UAV rule that is being worked refers to that size, 55 \nand down.\n    Mr. Long. Okay. I know that the flying trash cans, \noriginally when they were developed, I think part of their \nthought process was to use them for police work. If you are in \na neighborhood and you are chasing a suspect through several \nbuildings or whatever where they can fly that over at a fairly \nlow altitude. But I just had a question on that.\n    To answer Mr. Duncan\'s question, or part of it, maybe not \nanswer it but I think that the Transportation and \nInfrastructure Committee has tried to tackle the problem of \ngetting in general airspace, general aviation, and also FAA \nairspace. So I think that that is a separate issue that \nhopefully we are trying to handle on that angle.\n    Generally, to the sheriff, it has always been my \nunderstanding that anything that can be seen by anyone driving \ndown the street, flying a helicopter I guess I would say, but \nif you are driving down the street and a guy is sitting on his \nlawn smoking marijuana, then you have a right to arrest that \nman, correct?\n    Chief McDaniel. That is correct, sir. Yes.\n    Mr. Long. If he is in his backyard and he has a privacy \nfence, you are not allowed to go put a ladder up and look over \nthe fence, are you, because that is not available to people?\n    Chief McDaniel. The norm is to be able to view it from what \nthe public can see.\n    Mr. Long. Okay. That is kind of where I was going--that was \nmy hillbilly way of getting there, I guess.\n    At 30,000 feet or whatever, we always think of the Predator \ndrones that are armed of course that have been successful in a \nlot of military operations, but my constituents and I think a \nlot of constituents across the country are concerned with that \ntype of surveillance, albeit they are not armed. You can\'t see \nthem. You can\'t hear them, but that is a whole different level, \nisn\'t it, than what we were talking about a second ago, being \nable to see what you can normally see?\n    Chief McDaniel. Certainly the utilization of a UAV up over \nan area would open it up to view for law enforcement or any \nother governmental entity.\n    Mr. Long. These small ones that we are talking about here \ntoday, the 55 pounds and below, the flying trash cans, I have \nseen those. I think that they would be fairly apparent to \npeople. I have not seen one operate. I have seen them on the \nshelf where they develop them, but as far as the sounds that \nthey put out and things like that, most of those, are people \ngoing to be able to acknowledge there is something flying up \nover their farm or their house, looking to see if you are \nshooting doves?\n    Chief McDaniel. Yes, sir. That is an excellent point. The \nUAVs that public safety agencies, law enforcement, and fire \ndepartments are using or looking to utilize are not the Global \nHawk or the Predator at $20 million or $30 million a copy. \nThese are very small in stature. The maximum time aloft on our \nShadow Hawk is 2 hours and 20 minutes.\n    Mr. Long. At what altitude?\n    Chief McDaniel. At no more than 400 feet above ground \nlevel.\n    Mr. Long. So privacy concerns would be a little bit \nalleviated I would assume with that type?\n    Chief McDaniel. Absolutely. At that altitude and the type \nof engine that it has, it sounds like a very powerful weed \neater, and you will be able to notice that it is above.\n    Mr. Long. Maybe you could make a weed eater out of one of \nthem. That would be kind of handy.\n    Mr. Chairman, the Department of Homeland Security will not \ntestify before this subcommittee, the Department of Homeland \nSecurity; is that correct?\n    Mr. McCaul. That is correct.\n    Mr. Long. I rest my case.\n    Mr. McCaul. Thanks for the point well taken, and I will \nclose on that as well.\n    The Chairman now recognizes for the third time in this \nhearing Mr. Cuellar from Texas.\n    Mr. Cuellar. Thank you very much. It is refreshing to hear \nmy good Republican friends talk about civil liberties. Thank \nyou, I appreciate that. But one more thing on the EPA story by \nFox, Fox actually took that back. It was not a UAV, it was \nactually aircraft that they have been flying for the last 10 \nyears under both Democratic and Republican Presidents, just to \nmake that sort of correction.\n    Let me say this. I have a border sheriff who happens to be \nmy brother. I have got three peace officers, and I believe that \nif there is going to be evidence collection techniques, I would \nassume that your jurisdiction or as a sheriff, you have certain \nprocedures as law enforcement to follow that; is that correct?\n    Chief McDaniel. That is correct, sir.\n    Mr. Cuellar. If someone violates that, I would assume that \nthey would be liable for not following that; is that correct?\n    Chief McDaniel. Yes, sir.\n    Mr. Cuellar. Okay. Having three peace officers in my \nfamily, I put a lot of trust in law enforcement on that. Even \nthough there are some bad apples, you still have to follow the \nConstitution; is that correct?\n    Chief McDaniel. Absolutely.\n    Mr. Cuellar. Talking about the Constitution, there is the \nFourth Amendment of the U.S. Constitution that prohibits \nunreasonable searches and seizures and requires search warrants \nto be based on probable cause, and the Supreme Court has \nalready interpreted different cases. For example, talking about \naircraft--and keep in mind that the Supreme Court has already \ntalked about using cameras on aircraft. This time it is a \ndifferent platform. It happens to be UAVs. For example, just to \nmake sure we all understand, the Supreme Court has said that \nthere is an expectation of privacy. When it is inside the \nhouse, it is a different type of privacy. Once you go outside \nthe house, there is a different type of privacy. A business has \nless expectation of privacy than inside the home, and the \nSupreme Court has talked about the open field doctrine, and I \nbelieve you understand what I am talking about here. You are \nfamiliar with the Dow Chemical Company v. The United States. I \nam sure you are also familiar with the open fields doctrine of \nCalifornia v. Serrano case. The Supreme Court held that the \npolice did not have to obtain a search warrant when observing a \nperson\'s backyard or curtilage from an airplane more than 1,000 \nfeet above the air; is that correct? That is what the Supreme \nCourt held.\n    Also, the court also defined aerial searches in Florida v. \nRiley that said, and Chief, you mentioned the 400 feet, I think \nwe mentioned the 400 feet, that held that police officers do \nnot need a search warrant when they are flying a helicopter \nabove 400 feet. So in this case a different type of platform, \nbut if you are flying above 400 feet, no search warrant. But if \nyou are flying below 400 feet, and I believe most of the law \nenforcement and most of those UAVs will be at 400 feet or \nbelow. So, therefore, if you are flying at 400 feet in \naltitude, then at that time you would need a search warrant, \nwhether you use a helicopter or UAV, probably not an airplane. \nSo the Supreme Court has already laid out the law on what it \nis.\n    Now, I do agree with my colleagues here that we probably \nneed to look at some legislation but as we draft the \nlegislation, we got to keep in mind that the Supreme Court has \nalready defined open doctrine, home business, and certain \nexpectations; is that correct?\n    Chief McDaniel. Yes, sir, that is absolutely correct. As \nfar as case law is, in my view and from those I have talked \nwith, there is no difference between establishing a separate \ntype of case law for UAVs. The manned aircraft component is \nnothing more than an aircraft with people in it compared to a \nUAV that has them on the ground. The case law is the same \nbecause they are both aircraft, air assets.\n    Mr. Cuellar. In the Dow Chemical Company v. The United \nStates, it involved airborne use of thermal imaging. So here is \nanother case where technology is being used. Again, I am one of \nthose that is fascinated by the UAVs; but at the same time I do \nunderstand there are concerns. The doctor that just testified, \nI looked at his recommendations and they are very, very good \nrecommendations, and I think we need to look at those \nrecommendations. But all I am saying, Members, there is already \nsome case law on this. The Supreme Court has ruled on this. If \nwe do any legislation, I just say let\'s look at the legislation \nof the Supreme Court. Let\'s use some common sense in applying \nsome of this, and put a little trust in our law enforcement, \nwhich I appreciate, and having three brothers and having one \nwho is a border sheriff, I appreciate the work that you all do.\n    Thank you very much, Mr. Chairman.\n    Mr. McCaul. I thank the gentleman.\n    In closing, let me thank the witnesses for being here. As a \nformer Federal prosecutor, I understand--is there somebody I \nmissed? Oh, my goodness, Mr. Davis from Illinois, I sincerely \napologize.\n    Mr. Davis. I really don\'t have a lot to ask, but let me \nask, Dr. Dillingham, you mentioned in your testimony something \nabout using the instruments to jam signals and that that could \nbecome a problem and the use. Would you mention that a little \nbit more?\n    Mr. Dillingham. Yes, sir. One of the emerging issues that \nwe have identified is the potential that the signals that \ncontrol these UAVs in flight, and we are again talking about \nthe small ones as opposed to the encrypted DOD-type, could in \nfact be jammed and break command-and-control links with the \nUAV, meaning that the UAV could go off-course, not \nnecessarily--or could include being taken control over, but \nclearly breaking that command-and-control link with the \nappropriate persons or organizations that were controlling it. \nIt is something that needs to be addressed now before we have \nthese potentially serious kinds of incidents.\n    Mr. Davis. Thank you very much. Let me ask you, Chief \nMcDaniel, the data that is collected, could you describe what \nkind of data it is? What is it used for and how long is it \nkept? Would the individuals have any idea that this data may be \ncollected that involves them?\n    Chief McDaniel. The only data that we are collecting off of \nour Shadow Hawk is color video. We can convert that to both \nstill photographs or video. Depending upon the situation, we \nwould obviously store that video for criminal purposes; i.e., \nif our SWAT team is going in on an individual or it is a high-\nrisk warrant, we would also have that video or those \nphotographs preserved as evidence. It does have a FLIR system, \na forward looking infrared camera system, that can identify \nheat sources in low-light conditions. However, the idea behind \nthat was more for searching for lost persons in our National \nforests to more readily be able to identify them.\n    Mr. Davis. Let\'s say you got a tip that a farmer was using \nsome of his or her acreage and they had a little plot of \nmarijuana growing and you wanted to check that out with one of \nthese vehicles. Would there be a way to do that without \nacquiring a search warrant, or would you be within--and I am \ngoing to ask you, Ms. Stepanovich, when he finishes, how would \nyou handle a situation like that?\n    Chief McDaniel. Well, as indicated earlier, the Supreme \nCourt in 1924 established the open fields doctrine which allows \nfor things to be observed that the majority of the public could \nsee. In responding to the example that you present, the reality \nis, and this is based upon law enforcement, investigation \ntechniques, et cetera, utilizing this drone to try to observe a \nmarijuana field would not be appropriate. It would not be a \ngood investigative tool, A, because of the constraints that the \nFAA puts on the use of UAVs by law enforcement agencies, flying \nno higher than 400 feet AGL, and because of the noise and the \nsize of it.\n    So if we are trying to investigate whether there is a \nmarijuana field to continue with our investigation and to \nultimately arrest suspects, the UAV is not it.\n    Mr. Davis. Ms. Stepanovich, are you comfortable that enough \nattention is being given to the individual rights and civil \nliberties of citizens given the use of this type of \nsurveillance?\n    Ms. Stepanovich. I am not sure if ``comfortable\'\' would be \nthe right term. We do respect the fact that law enforcement at \nthis time does not expect to use drones for broad and \nuntargeted access. We respect the Supreme Court precedent that \nRepresentative Cuellar had referred to that allows for aerial \nsurveillance in ``open fields.\'\'\n    However, recently the Supreme Court did investigate a case \nof in U.S. v. Jones of police using GPS without a warrant to \ntrack a suspect. Drones allow for the same type of pervasive \nand very intensive surveillance that GPS allows for. In that \ncase Justice Alito wrote a very eloquent dissent saying, and I \nquote: ``In circumstances involving dramatic technological \nchange, the best solution to privacy concerns may be \nlegislative.\'\' We agree with Justice Alito in that case, and we \nbelieve that drones represent a similar jump in technology from \nnormal tracking of an individual with a policeman in a police \ncar, as drones respect to aerial tracking in a helicopter or \nairplane.\n    Mr. Davis. Thank you very much.\n    Thank you, Mr. Chairman, for a very interesting hearing, \nand I yield back.\n    Mr. McCaul. Thank you, Mr. Davis. I apologize again for my \noversight. Speaking of oversight, this has been a real \nproductive hearing and very insightful.\n    Let me just close by saying as a former Federal prosecutor, \nI recognize the value of--legitimate law enforcement value of \ntechnology. I think as with technology, we have to balance \nprivacy and security. Obviously, the Fourth Amendment applies \nhere. The case law, as Mr. Cuellar has set forth, is there. I \nhave studied it in my prior career. But this is an evolving \nfield. We have thousands of these things that could be deployed \nin the skies now. Over the next couple of years, we may see \nmore than a couple of thousand, maybe 10,000 of these things. I \nthink it is incumbent upon the Department of Homeland Security \nto come up with a policy, to come up with a security analysis.\n    I think the one thing that we can all agree on, \ninterestingly on both sides of the aisle on this committee, \nboth Republicans and Democrats, and I think all three of these \nwitnesses agree on one thing, and that is that DHS has a role. \nI think Mr. Dillingham and GAO stated it 4 years ago. Chief \nMcDaniel, you stated it in your testimony here today. I think \nlocal law enforcement does need that guidance. I think, Ms. \nStepanovich, you as a privacy expert, the Office of Privacy \nwithin DHS should be involved in this issue.\n    So I hope that we can all walk away from here with that \ncommon goal and understanding, and I sure hope that this wakes \nup the Department, that they need to step up to the plate and \ndo something.\n    With that, I want to thank the witnesses. This has been a \nvery insightful, productive hearing, and I thank the Members \nalso for their questions. Thanks so much, and this hearing now \nis adjourned.\n    [Whereupon, at 11:30 a.m., the subcommittee was adjourned.]\n\n                                 <all>\n\x1a\n</pre><script data-cfasync="false" src="/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js"></script></body></html>\n'