Académique Documents
Professionnel Documents
Culture Documents
FEDERAL MARITIME COMMISSION Additional information on all bank or the offices of the Board of Governors
holding companies may be obtained not later than October 13, 2006.
Notice of Request for Additional from the National Information Center A. Federal Reserve Bank of Chicago
Information website at www.ffiec.gov/nic/. (Patrick M. Wilder, Assistant Vice
The Commission gives notice that it Unless otherwise noted, comments President) 230 South LaSalle Street,
has requested that the parties to the regarding each of these applications Chicago, Illinois 60690-1414:
below listed agreement provide must be received at the Reserve Bank 1. Baytree Bancorp, Inc., Lake Forest,
additional information pursuant to indicated or the offices of the Board of Illinois; to continue to engage de novo
section 6(d) of the Shipping Act of 1984, Governors not later than October 23, through its subsidiary, Baytree Bancorp,
46 U.S.C. app. 1701 et seq. This action 2006. Investments, Inc., Lake Forest, Illinois,
prevents the agreement from becoming A. Federal Reserve Bank of San in riskless–principal transactions,
effective as originally scheduled. Francisco (Tracy Basinger, Director, pursuant to section 225.28(b)(7)(ii) of
Agreement No.: 201172. Regional and Community Bank Group) Regulation Y.
Title: UMS-PHA Marine Terminal 101 Market Street, San Francisco, Board of Governors of the Federal Reserve
Agreement. California 94105-1579: System, September 25, 2006.
Parties: Port of Houston Authority of 1. Premier Commercial Bancorp, Robert deV. Frierson,
Harris County, TX, and Universal Anaheim, California; to acquire 85.4 Deputy Secretary of the Board.
Maritime Service Corporation. percent of the voting shares of Premier [FR Doc.E6–15928 Filed 9–27–06; 8:45 am]
Dated: September 22, 2006. Commercial Bank, Arizona, N.A., Mesa, BILLING CODE 6210–01–S
By Order of the Federal Maritime Arizona (in organization).
Commission.1 Board of Governors of the Federal Reserve
Bryant L. VanBrakle, System, September 25, 2006.
Secretary. Robert deV. Frierson,
GENERAL SERVICES
ADMINISTRATION
[FR Doc. E6–15910 Filed 9–27–06; 8:45 am] Deputy Secretary of the Board.
BILLING CODE 6730–01–P [FR Doc. E6–15929 Filed 9–27–06; 8:45 am] Privacy Act of 1974; Proposed Privacy
BILLING CODE 6210–01–S Act System of Records
conducted throughout the United States. obtained from the National Information FOR FURTHER INFORMATION CONTACT:
Center website at www.ffiec.gov/nic/. Director, Identity Policy and
1 Chairman Blust and Commissioner Dye would
VerDate Aug<31>2005 20:16 Sep 27, 2006 Jkt 208001 PO 00000 Frm 00035 Fmt 4703 Sfmt 4703 E:\FR\FM\28SEN1.SGM 28SEN1
56984 Federal Register / Vol. 71, No. 188 / Thursday, September 28, 2006 / Notices
SUPPLEMENTARY INFORMATION: The The Office of Management and Budget the PIV card applicant, including:
General Services Administration’s issued government-wide Name, date of birth, Social Security
Federal Acquisition Service (FAS) is implementation guidance (M–05–24) for Number, organizational and employee
publishing a Privacy Act system of HSPD–12 on August 5, 2005. This affiliations, fingerprints, digital color
records notice to cover the collection, implementation guidance required photograph, work e-mail address, and
use, and maintenance of records relating agencies to begin to issue identity phone number(s) as well additional
to its administration of managed credentials compliant with the PIV II verification and demographic
services in the collection and requirements of FIPS 201 beginning information. These records also will be
management of personally identifiable October 27, 2006. OMB formed the accessible to authorized personnel of
information for the purpose of issuing HSPD–12 Executive Steering Committee participating Federal agencies for their
credentials (ID badges) to meet the (ESC) in November 2005 to establish PIV applicants. The Privacy Act
requirements of Homeland Security broad direction to assist agencies in embodies fair information principles in
Presidential Directive 12 for multiple meeting HSPD–12 implementation a statutory framework governing the
agencies. requirements. As a key initiative to means by which the United States
Homeland Security Presidential assist government-wide implementation Government collects, maintains, uses
Directive 12 (HSPD–12), issued on efforts, the ESC asked for lead agencies and disseminates personally identifiable
August 27, 2004, required the to provide common infrastructure for information. The Privacy Act applies to
establishment of a standard for agencies to share in meeting information that a Federal agency
identification of Federal Government implementation requirements. maintains in a ‘‘system of records.’’ A
employees and contractors. HSPD–12 In response to the HSPD ESC ‘‘system of records’’ is a group of any
directs the use of a common direction, GSA established the HSPD–12 records under the control of an agency
identification credential for both logical Managed Service Office (MSO) to from which the agency retrieves
and physical access to federally provide common, shared infrastructure personal information by the name of the
controlled facilities and information and services to assist Federal agencies individual or by some identifying
systems. This policy is intended to in the implementation of HSPD–12. number, symbol, or other identifying
enhance security, increase efficiency, GSA is offering the HSPD–12 managed particular assigned to the individual.
reduce identity fraud, and protect services on a government-wide basis; The GSA HSPD–12 Identity
personal privacy. any agency can sign up to use the Management System is such a system of
HSPD–12 requires that the Federal shared infrastructure and services. The records. GSA will provide controlled
credential be secure and reliable. As scope of the GSA HSPD–12 managed access to the records of the PIV IDMS to
directed by the Presidential Directive, services consist of enrollment services, participating Federal agencies for their
the National Institute of Standards and systems infrastructure through a PIV applicants. Participating agencies
centralized PIV Identity Management will need to determine whether any
Technology (NIST) published the
System (IDMS), card production facility, updates to their existing Privacy Act
standard for secure and reliable forms of
and card activation, finalization and System of Records Notices are required.
identification, Federal Information
issuance. GSA will initially provide the
Processing Standard Publication 201 Dated: September 21, 2006.
HSPD–12 managed services in four
(FIPS 201), Personal Identity Cheryl Paige,
locations to demonstrate the initial
Verification (PIV) of Federal Employees Acting Director, Office of Information
operating capability in Atlanta, New
and Contractors, on February 25, 2005 Management.
York City, Seattle, and Washington DC.
and an update as FIPS 201–1 on June
All other localities within a Federal GSA/GOVT–7
26, 2006. HSPD–12 established four
presence will be serviced over time. The
control objectives for Federal agencies managed services provide for the SYSTEM NAME:
to accomplish in implementing the enrollment of applicants in the PIV Personal Identity Verification Identity
directive: program in compliance with FIPS PIV I Management System (PIV IDMS)
• Issue identification credentials requirements, the issuance of PIV II
based on sound criteria to verify an compliant PIV cards and credentials,
SECURITY CLASSIFICATION:
individual’s identity; and the maintenance of systems records. Sensitive but unclassified.
• Issue credentials that are strongly The initial operating capability will be SYSTEM LOCATION:
resistant to fraud, tampering, a combination of manual and automated
counterfeiting, and terrorist Records covered by this system are
processes. Following the initial maintained by a contractor at the
exploitation; operating capability, GSA will begin to
• Provide for rapid, electronic contractor’s site.
roll out enrollment stations and
authentication of personal identity; and operating capability to additional CATEGORIES OF INDIVIDUALS COVERED BY THE
• Issue credentials by providers locations to service all user agencies. SYSTEM:
whose reliability has been established The managed service PIV enrollment The PIV IDMS records will cover all
through an official accreditation process and IDMS records will cover all participating agency employees,
process. user agency employees, contractors and contractors and their employees,
FIPS 201 has two parts: PIV I and PIV their employees, consultants, and consultants, and volunteers who require
II. The requirements in PIV I support the volunteers who require long-term, routine, long-term access to federal
control objectives and identity routine access to federal facilities, facilities, information technology
verification and security requirements systems, and networks. The personal systems, and networks. The system also
described in FIPS 201, including the information to be collected in the includes individuals authorized to
requirement for standard background enrollment process will consist of data perform or use services provided in
sroberts on PROD1PC70 with NOTICES
investigation for all Federal employees elements necessary to verify the identity agency facilities (e.g., Credit Union,
and long-term contractors. PIV II of the individual and to perform Fitness Center, etc.).
specifies standards for PIV credentials background or other investigations At their discretion, participating
to support technical interoperability and concerning the individual. The PIV Federal agencies may include short-term
security for all HSPD–12 deployments. IDMS will collect data elements from employees and contractors in the PIV
VerDate Aug<31>2005 20:16 Sep 27, 2006 Jkt 208001 PO 00000 Frm 00036 Fmt 4703 Sfmt 4703 E:\FR\FM\28SEN1.SGM 28SEN1
Federal Register / Vol. 71, No. 188 / Thursday, September 28, 2006 / Notices 56985
program and, therefore, inclusion in the PIV data model may be optionally any component thereof; (2) any
PIV IDMS. Federal agencies shall make extended by agencies to include the employee of the agency in his or her
risk-based decisions to determine following logical credentials: digital official capacity; (3) any employee of the
whether to issue PIV cards and require certificate for digital signature, digital agency in his or her individual capacity
prerequisite background checks for certificate for key management, card where the agency or the Department of
short-term employees and contractors. authentication keys, and card Justice has agreed to represent the
The system does not apply to management system keys. All PIV employee; or (4) the United States
occasional visitors or short-term guests. logical credentials can only be read by Government is a party to litigation or
GSA and participating agencies will machine. has an interest in such litigation, and by
issue temporary identification and careful review, the agency determines
credentials for this purpose. AUTHORITY FOR MAINTENANCE OF THE SYSTEM: that the records are both relevant and
5 U.S.C. 301; Federal Information necessary to the litigation and the use of
CATEGORIES OF RECORDS IN THE SYSTEM:
Security Management Act (Pub. L. 107– such records and is therefore deemed by
Enrollment records maintained in the 296, Sec. 3544); E-Government Act (Pub. the agency to be for a purpose that is
PIV IDMS on individuals applying for L. 107–347, Sec. 203); Paperwork compatible with the purpose for which
the PIV program and a PIV credential Reduction Act of 1995 (44 U.S.C. 3501 the agency collected the records.
through the GSA HSPD–12 managed et al) and Government Paperwork c. Except as noted on Forms SF 85, SF
service include the following data Elimination Act (Pub. L. 105–277, 44 85–P, and SF 86, when a record on its
fields: full name; Social Security U.S.C. 3504); Homeland Security face, or in conjunction with other
Number; Applicant ID number, date of Presidential Directive 12 (HSPD–12), records, indicates a violation or
birth; current address; digital color Policy for a Common Identification potential violation of law, whether civil,
photograph; fingerprints; biometric Standard for Federal Employees and criminal, or regulatory in nature, and
template (two fingerprints); Contractors, August 27, 2004; Federal whether arising by general statute or
organization/office of assignment; Property and Administrative Services particular program statute, or by
employee affiliation; work e-mail Act of 1949, as amended. regulation, rule, or order issued
address; work telephone number(s); pursuant thereto, disclosure may be
office address; copies of identity source PURPOSES: made to the appropriate public
documents; employee status; military The primary purposes of the system authority, whether Federal, foreign,
status; foreign national status; federal are: To ensure the safety and security of State, local, or tribal, or otherwise,
emergency response official status; law Federal facilities, systems, or responsible for enforcing, investigating
enforcement official status; results of information, and of facility occupants or prosecuting such violation or charged
background check; Government agency and users; to provide for interoperability with enforcing or implementing the
code; and PIV card issuance location. and trust in allowing physical access to statute, or rule, regulation, or order
Records in the PIV IDMS needed for individuals entering Federal facilities; issued pursuant thereto, if the
credential management for enrolled and to allow logical access to Federal information disclosed is relevant to any
individuals in the PIV program include: information systems, networks, and enforcement, regulatory, investigative or
PIV card serial number; digital resources on a government-wide basis. prosecutorial responsibility of the
certificate(s) serial number; PIV card receiving entity.
issuance and expiration dates; PIV card ROUTINE USES OF RECORDS MAINTAINED IN THE d. To a Member of Congress or to a
PIN; Cardholder Unique Identifier SYSTEM INCLUDING CATEGORIES OF USERS AND
Congressional staff member in response
(CHUID); and card management keys. THE PURPOSES OF SUCH USES:
to an inquiry of the Congressional office
Agencies may also choose to collect the In addition to those disclosures made at the written request of the
following data at PIV enrollment which generally permitted under 5 U.S.C. constituent about whom the record is
would also be maintained in the PIV Section 552a(b) of the Privacy Act, all or maintained.
IDMS: physical characteristics (e.g., a portion of the records or information e. To the National Archives and
height, weight, and eye and hair color). contained in this system may be Records Administration (NARA) or to
Individuals enrolled in the PIV disclosed outside GSA as a routine use the General Services Administration for
managed service will be issued a PIV pursuant to 5 U.S.C. 552a(b)(3) as records management inspections
card. The PIV card contains the follows: conducted under 44 U.S.C. 2904 and
following mandatory visual personally a. To the Department of Justice (DOJ) 2906.
identifiable information: name, when: (1) The agency or any component f. To agency contractors, grantees, or
photograph, employee affiliation, thereof; or (2) any employee of the volunteers who have been engaged to
organizational affiliation, PIV card agency in his or her official capacity; (3) assist the agency in the performance of
expiration date, agency card serial any employee of the agency in his or her a contract service, grant, cooperative
number, and color-coding for employee individual capacity where agency or the agreement, or other activity related to
affiliation. Agencies may choose to have Department of Justice has agreed to this system of records and who need to
the following optional personally represent the employee; or (4) the have access to the records in order to
identifiable information printed on the United States Government is a party to perform their activity. Recipients shall
card: Cardholder physical litigation or has an interest in such be required to comply with the
characteristics (height, weight, and eye litigation, and by careful review, the requirements of the Privacy Act of 1974,
and hair color). The card also contains agency determines that the records are as amended, 5 U.S.C. 552a, the Federal
an integrated circuit chip which is both relevant and necessary to the Information Security Management Act
encoded with the following mandatory litigation and the use of such records by (Pub. L. 107–296), and associated OMB
data elements which comprise the DOJ and is therefore deemed by the policies, standards and guidance from
sroberts on PROD1PC70 with NOTICES
standard data model for PIV logical agency to be for a purpose compatible the National Institute of Standards and
credentials: PIV card PIN, cardholder with the purpose for which the agency Technology, and the General Services
unique identifier (CHUID), PIV collected the records. Administration.
authentication digital certificate, and b. To a court or adjudicative body in g. To a Federal agency, State, local,
two fingerprint biometric templates. The a proceeding when: (1) The agency or foreign, or tribal or other public
VerDate Aug<31>2005 20:16 Sep 27, 2006 Jkt 208001 PO 00000 Frm 00037 Fmt 4703 Sfmt 4703 E:\FR\FM\28SEN1.SGM 28SEN1
56986 Federal Register / Vol. 71, No. 188 / Thursday, September 28, 2006 / Notices
liaison channels to selected foreign GSA HSPD–12 managed service office Same as Notification Procedure above.
governments, in order to enable an protects all records from unauthorized
access through appropriate CONTESTING RECORD PROCEDURES:
intelligence agency to carry out its
responsibilities under the National administrative, physical, and technical Same as Notification Procedure above.
Security Act of 1947, as amended; the safeguards. Access is restricted on a State clearly and concisely the
CIA Act of 1949, as amended; Executive ‘‘need to know’’ basis, utilization of PIV information being contested, the reasons
Order 12333 or any successor order; and Card access, secure VPN for web access, for contesting it, and the proposed
applicable national security directives, and locks on doors and approved amendment to the information sought.
or classified implementing procedures storage containers. Buildings have
RECORD SOURCE CATEGORIES:
approved by the Attorney General and security guards and secured doors. All
entrances are monitored through Employee, contractor, or applicant;
promulgated pursuant to such statutes, sponsoring agency; former sponsoring
orders, or directives. electronic surveillance equipment. The
hosting facility is supported by 24/7 agency; other Federal agencies; contract
j. To designated agency personnel for employer; former employer.
controlled access to specific records for onsite hosting and network monitoring
the purposes of performing authorized by trained technical staff. Physical
EXEMPTIONS CLAIMED FOR THE SYSTEM:
audit or authorized oversight and security controls include: Indoor and
outdoor security monitoring and None.
administrative functions. All access is
controlled systematically through surveillance; badge and picture ID [FR Doc. E6–15901 Filed 9–27–06; 8:45 am]
authentication using PIV credentials access screening; biometric access BILLING CODE 6820–34–P
VerDate Aug<31>2005 20:16 Sep 27, 2006 Jkt 208001 PO 00000 Frm 00038 Fmt 4703 Sfmt 4703 E:\FR\FM\28SEN1.SGM 28SEN1