Looking Back – 5-11-09 , Video Escorts

 Nearly every morning I start my computer time by looking at information from Google about what happened in my blog in the previous 24 hours. Google, and blogspot.com is a Google service, provides interesting pieces of analytical data about my blog readership. One item of particular interest is the top ten blog posts each day. As you would expect, most of those posts were from the last couple of days, but with 16 years of publishing this blog, every once-in-a-while, a blog post from ancient history rises into that list. 

Today, a blog post from May 11th, 2009, Video Escorts, made the list. This was a discussion about the use of video surveillance systems with sophisticated analytics tools to perform the required escort of uncleared personnel about a facility. While the post includes a fairly down-in-the-weeds discussion of CFATS regulatory requirements, many of those considerations are still applicable to unregulated security issues. 

There are two other interesting things about this post related to reader comments. The first is not visible. I had a number of comments submitted to this offering ‘video escort’ services that had nothing to do with security issues. This is one of the reasons that I moderate the comments published to my blog posts. 

There is a reader comment published with this post. It comes from a recognized video surveillance expert, John Honovich. One of the fun things about writing this blog over the years has been the number of intelligent subject matter experts that I have had the privilege of talking with about facility security topics. They have helped educate me about the wide variety of topics that blogs like this are forced to cover. 

Review – Bills Introduced – 4-28-26

 Yesterday, with both the House and Senate in session, there were 65 bills introduced. One of those bills may receive additional coverage here: 

HR 8560 To support research, development, demonstration, and other activities to develop innovative vehicle technologies, and for other purposes. Stevens, Haley M. [Rep.-D-MI-11] 

For more information on these bills, including legislative history for similar bills in the 118th Congress, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/bills-introduced-4-28-26 - subscription required. 

HR 8407 Introduced – Weather Risk Assessment

 Last week, Rep Scott (R,FL) introduced HR 8407, the Advancing Consistent and Credible Use of Risk Assessment Tools and Evaluation (ACCURATE) Act. The bill would require NIST to “establish a commission to be known as the ‘Commission on Hazard Risk Assessment Tools’”. The Commission would look at hazard risk assessment tools and models that could/should be used by the Federal government to assess natural hazards. No new funding is provided by this legislation. 

I was hoping that this bill would help industry to assess those same natural hazards so as to avoid incidents like the August 2017 Arkema chemical plant fire caused, at least in part, by unexpected flood conditions. This proposed Commission may, in fact, come up with some sort of tools that could be used by industry, but it is certainly not the focus of this legislation. And there is no call to include any chemical industry representation in the proposed Commission. So, there is a long way between this bill and any help to the chemical manufacturing community. 

I do not expect to provide any further coverage of this bill in this blog. 

Looking Back – 4-16-21

 Nearly every morning I start my computer time by looking at information from Google about what happened in my blog in the previous 24 hours. Google, and blogspot.com is a Google service, provides interesting pieces of analytical data about my blog readership. One item of particular interest is the top ten blog posts each day. As you would expect, most of those posts were from the last couple of days, but with 16 years of publishing this blog, every once-in-a-while, a blog post from ancient history rises into that list. 

Today, a blog post from March 16th, 2021, CISA Publishes CFATS Cybersecurity Letter, made the list. It briefly discusses a notification letter that the CFATS folks sent out to chemical facilities about widespread exploitation of the Microsoft Exchange Server Vulnerabilities. The interesting thing was that CISA sent that letter to not just the 3,000+ CFATS regulated facilities, but also to over 33,000 other chemical facilities that had sent Top Screen information to CISA. The odd thing was that the letter was little more than a warning about the vulnerabilities and only recommended that facilities report “evidence of threat actor activity”. 

Review – 1 Advisory Published – 4-28-26

 Today CISA’s NCCIC-ICS published one control system security advisory for products from NSA. 

Advisories  

NSA Advisory - This advisory describes an improper restriction of XML external entity reference vulnerability in the NSA GRASSMARLIN passive network mapping tool. 

For more information on this advisory, including a brief down-the-rabbit-hole look at GRASSMARLIN, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/1-advisory-published-4-28-26 - subscription required. 

Review – Bills Introduced – 4-27-26

Yesterday, with both the House and Senate in session, there were 72 bills introduced. Two of those bills will receive additional coverage in this blog: 

S 4395 A bill to reauthorize the Terrorism Risk Insurance Act of 2002, and for other purposes. McCormick, David [Sen.-R-PA]. 

S 4397 A bill to amend the Toxic Substances Control Act to improve transparency of the regulatory process and coordination of science among Federal agencies, and for other purposes. Ricketts, Pete [Sen.-R-NE]. 

For more information on these bills, including legislative history for similar bills in the 118th Congress, as well as a brief look at an AI governance bill in the House, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/bills-introduced-4-27-26 - subscription required. 

Short Takes – 4-28-26 - Federal Register Edition

Interim PFAS Destruction and Disposal Guidance; Notice of Availability for Public Comment. Federal Register EPA guidance availability notice. Summary: “The National Defense Authorization Act for Fiscal Year 2020 (FY 2020 NDAA) was signed into law on December 19, 2019 and directs the U.S. Environmental Protection Agency (EPA) to publish interim guidance on the destruction and disposal of perfluoroalkyl and polyfluoroalkyl substances (PFAS) and materials containing PFAS and to update the guidance at least every three years, as appropriate. The EPA is releasing an update to the April 16, 2024, interim guidance for public comment. The updated guidance builds on information pertaining to technologies that may be feasible and appropriate for the destruction or disposal of PFAS and PFAS-containing materials. The 2026 interim guidance also identifies key data gaps and uncertainties that must be resolved before the EPA can issue more definitive recommendations about PFAS destruction and disposal technologies.” 

Sunshine Act Meeting; Open Commission Meeting Thursday, April 30, 2026. Federal Register FCC public meeting notice. Includes: Modernizing Spectrum Sharing for Satellite Broadband (SB Docket No. 25-157); and Protecting Against National Security Threats in Domestic Telecommunications Service (WC Docket No. 26-82). 

Five-Year Review of the Oil Pipeline Index. Federal Register FERC Order establishing index level. Summary: “The Federal Energy Regulatory Commission (Commission) issues this Final Order concluding its five-year review of the index level used to determine annual changes to oil pipeline rate ceilings. The Commission establishes an index level of Producer Price Index for Finished Goods minus 0.55% (PPI-FG-0.55%) for the five-year period beginning July 1, 2026.” 

Miscellaneous Information Collection Requests  

Website for Frequency Coordination Request. FAA 30-day ICR renewal. 

Safety and Health Measures and Mishap Reporting. NASA 60-day ICR revision. 

Voluntary Protection Programs. OSHA 60-day ICR revision.