Maryland Port Administration

1. Our most recent FVA is not available electronically. However, an FVA will be conducted within the next 12 months wherein it will be documented by both paper and electronically (disk/thumb drive ect.). Note: the FVA is voluminous and to have the FVA on a non-encryted sight poses a security risk, even a password protected system. The issue is the maritime industry sutilizes the Sensitive Security Information (SSI) information protection classification system; this system is totally inadequate. The FVA is usually marked SSI although in the realm of the U.S. Government this information would be classified SECRET at a minimum. Because non federal government computer systems do not meet the security standards setforth by the National Security Agency, for example, I believe placing a FVA on an electronic/computer system is a security risk. From my experience, the Peoples Republic of China (PRC), Russia and probably Iran could hack into local and state computer systems without fail and access the FVA. 2. At the Port of Baltimore, the FVA is shared with the U.S. Coast Guard (USCG) and the Maryland Transportation Authority Police (MDTAP), the law enforcement arm of the Port. Other than the USCG and the law enforcement arm of the Port I do not see a requirement to share the FVA with any other local or State law enforcement agency, to include first responders. The Port of Baltimore shares and/or reviews its FVA with the USCG-Sector Baltimore (during the course of our annual security inspection) and the MDTAP on a yearly basis. 3. Via telephonic means the MDTAP can be notified within seconds regarding a TSI. In addition, in approximately May 2013 the Port will utilize a new, statewide 700 mghz radio system; the Port and the MDTAP will have the capability share a frequency and hence, communicate instaneously. All Ports should have the capability to communicate by radio with their law enforcement entity. 4. The Port of Baltimore has CCTV interoperability.