Instruction: Enterprise Administration provides the capability for customers to manage their own users who participate in online business offerings by designating an Business Service Administrator. eAdmin is an authorization system for external business customers. There is an external system as well as an internal system. Externally, customers first go through the Business Customer Gateway (BCG) to login using Customer Registration credentials. Then the user is offered the options to select access to a series of services (such as Manage/Audit Mailing Activities, Schedule a Mailing Appointment, Obtain a Mailer Id, Manage Permits, etc).
- Requires account creation. (gateway.usps.com)
- Account will be business type.
Instruction: Informed Delivery (RMIN) captures digital images of envelopes, cards and letters, for both First Class and Standard/Marketing Mail that are processed on automated equipment. The images are industrial grayscale images of the address side of the Mail piece, and are used to automate USPS mail routing and delivery processes.
RMIN leverages these automation images to provide enrolled Users access to a dashboard as well as an optional e-mail that contains images of Mail that will be delivered to their address soon. Informed Delivery also displays package tracking data (MyUSPS) in the Users dashboard as well as the optional email.
- Requires account creation. Business or Personal.
- Account can be created via ID, eReg or BCG.
- Requires eligible address.
- Requires identity verification (Online or via mail code)
Instruction: The International Claims and Inquiry process is being separating into this application International Inquiry Claims Systems IICS (eCRS). IICS is designed to pay or deny indemnity claims against the Postal Service when there is loss or damage to insured articles in the mail stream.
The eCRS application is used primarily to allow customers to file claims against insured shipments which have been either lost, damaged, missing contents, or delayed.
- Requires account creation
Integrity requirements:
Max severity: critical
Asset identifier: https://iv.usps.com
Asset type: URL
Availability requirement: high
Confidentiality requirement: high
Eligible for bounty:
Eligible for submissions: true
Instruction: Informed Visibility (IV) is the single corporate standard data source for mail tracking, service performance, and predictive analytics. IV provides access in near real-time to all data events for all mail pieces, trays, and containers and tracks these products through the entire induction, transport, and delivery lifecycle while simultaneously identifying and presenting actionable information for fully-informed decisions that benefit both internal and external customers.
- Requires business type account from BCG. (Not provided)
- Requires BSA Authorization Code, emailed to the business owner. (Not provided)
- Requires working email address during BCG registration. (Not provided)
- Business Owner is the first person to register the business in BCG.
Integrity requirements:
Max severity: critical
Asset identifier: https://moversguide.usps.com
Asset type: URL
Availability requirement: high
Confidentiality requirement:
Eligible for bounty:
Eligible for submissions: true
Instruction: The moversguide.usps.com application allows customers to change their address on usps.com. Identity validation is required using a valid debit or credit card. (NOT SUPPLIED)
A $1.05 fee is charged to the customer's credit card account for identity validation. Records contain customer name, old address, new mailing address, mail forwarding instructions, effective date, and information about whether the move is permanent or temporary. This application also offers move-related products and services. Revenue is generated from this application through an Alliance agreement sharing the authentication fee charged during the transaction and from advertiser revenue generated from coupons presented to movers.
Integrity requirements:
Max severity: critical
Asset identifier: https://ncoa.usps.gov
Asset type: URL
Availability requirement:
Confidentiality requirement: high
Eligible for bounty:
Eligible for submissions: true
Instruction: National Change of Address (NCOA) is the database of record that stores the Change Of Address (COA) information for Postal Patrons.
NCOA helps reduce undeliverable-as-addressed mail by correcting input addresses prior to mailing. NCOA provides the following benefits to mailers:
1) Reduces undeliverable mail by providing most current address information for matches made to the NCOA file
2) Prevents the need for duplicate mail pieces or re-mailings after address corrections are received, since the address correction is applied prior to the mailing
3) Using most current address information reduces mailer costs by reducing the number of undeliverable and duplicate mail pieces
4) Provides the opportunity for faster product/service marketing through accurate mail delivery.
NCOA Licensees provide mailers with the following:
1) The original input address
2) The input address standardized and appended with the ZIP+4 code
3) A standardized new address when the standardized input address matches the old address on the NCOA file that includes a 5 Digit Zip code, 4 Digit add on, and a Delivery Point code
4) PS Form 3553, Automation Discount Qualification
Integrity requirements:
Max severity: critical
Asset identifier: https://pi.usps.com
Asset type: URL
Availability requirement: medium
Confidentiality requirement: medium
Eligible for bounty:
Eligible for submissions: true
Instruction: Package Intercept
This program enables users to check on the delivery status of a package and if necessary, enter instructions to intercept and redirect it. It is an internet-based service for fee program for all classes of mail except standard mail and periodicals.
* This application is accessed thru the BCG and for commercial customers. (Account not provided)
Instruction: CUSTOMER REGISTRATION is the enterprise wide solution for registering customers who want to access USPS applications, products and services. It provides single sign-on for external users supporting >70 applications on usps.com and the Business Customer Gateway (BCG). Over 60 MILLION users have registered to date.
It provides a standardized process for user registration and login, along with centralize account profile management supporting most externally facing applications (on usps.com and BCG).
It is the system of record for customer profiles, creation of CRIDs - company identifiers to denote a company name and address combination, as well as the SMS profile for all manner of usage (ranging from account recovery to package tracking).
There is a subsystem for Promotional Registrations, an option that allows external customers to sign up to receive calls from sales personnel or to sign up to receive information about a product or service offering or to opt-in/out of temporary programs (such as Informed Delivery, MyUSPS, Political Mail, etc)
- Requires account creation. (reg.usps.com)
- Accounts can be personal or business types.
- Requires an address
Integrity requirements:
Max severity: critical
Asset identifier: https://retail-pi.usps.com
Asset type: URL
Availability requirement: medium
Confidentiality requirement: medium
Eligible for bounty:
Eligible for submissions: true
Instruction: To offer an automated USPS Package Intercept service to retail customer or customers that do not qualify to use the commercial application. The service will be available to mailers through an online interface on USPS.com or API for PC Postage vendors.
Items are intercepted at the initial destination delivery unit and, at the request of the customer, and redirected as either:
**Return to Sender**
**Hold For Pickup**
**Send to an alternate domestic address**
* This application is accessed thru the BCG and for commercial customers. (Account not provided)
* A tracking barcode is required for the Package Intercept service. (Not provided)
There are two paths for the customer to request this service:
**Online through usps.com.**
**PC Postage provider if the vendor chooses to use the Application Programming Interface.**
The Package Intercept program will support individual requests as well as multiple requests in a single transaction.
**Customer verification is required before Package Intercept can be requested.**
**Customer authorization is required on the item to be intercepted.**
Integrity requirements: medium
Max severity: critical
Asset identifier: https://store.usps.com
Asset type: URL
Availability requirement: high
Confidentiality requirement: high
Eligible for bounty:
Eligible for submissions: true
Instruction: USPS E Commerce Platform provides Postal customers using USPS.com with an online one-stop shopping experience. The application provides a quick and customer friendly interface that allows both businesses and individuals to purchase Postal Products. The application has an interface to the Global Payment application which allows Postal customers to use a credit card or PayPal for purchases.
Components of the application include: Postal Store, Personalized Stamped Envelopes and Cards (PSE) as well as the user interfaces for Hold Mail and Redelivery Services.
Integrity requirements:
Max severity: critical
Asset identifier: https://www.liteblue.usps.gov
Asset type: URL
Availability requirement:
Confidentiality requirement: high
Eligible for bounty:
Eligible for submissions: true
Instruction:
Integrity requirements:
Max severity: critical
Asset identifier: https://www.usps.com/postalone/
Asset type: URL
Availability requirement: high
Confidentiality requirement: high
Eligible for bounty:
Eligible for submissions: true
Instruction: PostalOne! provides Mailers with an efficient , cost-effective and seamless process from mail preparation to mail deliver. PostalOne! facilitates the integration of Mailer and Postal Service business processes to expedite mail acceptance and better support USPS and Mailer operations. The PostalOne! application offer businesses the capability for electronic access, electronic documentation and business mail management and electronic payment.
In addition to PostalOne! core functionality, the following business applications are submodules of PostalOne!:
- Electric Verification Systems (eVS)
- Scan Based Payment (SBP)
- Performance Based Verification (PBV)
- Seamless Acceptance
- eInduction
- Non-Profit Authorization and Periodicals Authorization
- Self Service Terminal
- Transportation Management System PostalOne! TM or TMS
Additional in-scope URL's related to PostalOne!:
https://p1webservices.uspspostalone.com
https://pcpostage.uspspostalone.com
**External account required (not provided)**
*Create through BCG/Customer Registration*
**Additional information**
The users will need to login through BCG to get to PostalWizard
**Any special steps needed?** Yes, services would need to be added to access any of the links to PO!’s PostalWizard
Integrity requirements: high
Max severity: critical
Asset identifier: special.usps.com/testkits
Asset type: URL
Availability requirement: high
Confidentiality requirement: high
Eligible for bounty:
Eligible for submissions: true
Instruction: The Biden Administration has authorized the disbursement of COVID test kits via USPS. To that end, this website allows for users to submit address specific data in order to have a set of four (4) kits delivered to their household.
