TRANSPORTATION SECURITY INFORMATION SHARING – Stakeholder Satisfaction Varies; TSA Could Take Additional Actions to Strengthen Efforts, GAO, June 2014 (CORE1020)

/0 Comments/in , , , , , , , , , , , , , , , /by

Summary: This report presents and discuses findings of a survey on stakeholders’ satisfaction to the US Transportation Security Administration’s security-related activities and to the way the TSA disseminates information about its activities. The survey’s scope is the overall US transportation system, covering aviation, rail, and highway modalities and transport of passengers and freight. Given the broad scope and the US-centricity of the survey, this report is not very relevant for CORE. The education and training cluster could anyhow learn how security-related user satisfaction surveys are done and how to establish a mechanism for collecting regular user feedback. The report is available for download at: http://gao.gov/assets/670/664350.pdf.

[s2If is_user_logged_in()]

Full review: The scope of the report is very broad and the information about cargo security is limited, so the CORE project cannot much benefit from this report. However, the project’s educational and training cluster might use the report’s information to design ways administer end-user surveys: what questions to ask, which stakeholders to survey and how to report the findings. Some demonstrations adopt some of the report’s ideas and methods to collect high-quality user requirements.

Additional keywords: Transportation security, aviation security

 

CORE1020

[/s2If]

MARITIME SECURITY – Progress and Challenges with Selected Port Security Programs, GAO, June 2014 (CORE1019)

/0 Comments/in , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , /by

Summary: The report provides a comprehensive review of progress and challenges of various port security activities and programs the Department of Homeland Security (DHS) has carried out since 9/11. In essence, the report is a summary and an update of a number of more detailed GAO reports on maritime supply chain security. The report states that needs to strengthen further its efforts on maritime domain awareness through intensified communication among maritime stakeholders. Regarding the US domestic port security, the report recommends DHS to reassess its Port Security Grant Program (PSGP) that allows ports to request funds for security projects and to improve quality of vulnerability assessment in US ports. The report also urges DHS to overcome challenges of risk-based targeting and scanning of US-bound shipping containers.  The findings and recommendations of this report help CORE consortium understand the current state of the US maritime security regime. This understanding benefits particularly the demonstrations of WP9 and WP14. Also educational and training as well as risk clusters of CORE may find the report’s information useful. The report is available for download at: www.gao.gov/assets/670/663784.pdf.

[s2If is_user_logged_in()]

Full review: This GAO document summarizes the US maritime supply chain security and provides useful information for the CORE project across its work packages. This information most obviously benefits WP9 and WP14 that involve US-bound maritime trade lanes. However, also the CORE’s risk cluster can find useful insight in the report, for example about challenges and opportunities of risk-based container targeting and screening approaches. This summary GAO document caters the needs of state-of-the-art work packages and the CORE’s educational and training cluster that aims to produce relevant and up-to-date material about supply chain security for a variety of stakeholders.

Cross-references:

  • Combating Nuclear Smuggling: Additional Actions Needed to Ensure Adequate Testing of Next Generation Radiation Detection Equipment. GAO-07-1247T. Washington, D.C.: September 18,
  • Supply Chain Security: CBP Has Made Progress in Assisting the Trade Industry in Implementing the New Importer Security Filing Requirements, but Some Challenges Remain. GAO-10-841. Washington, D.C.: September 10, 2010.
  • Supply Chain Security: CBP Needs to Conduct Regular Assessments of Its Cargo Targeting System, GAO-13-9. October 25, 2012.

Additional keywords: Maritime security, Port Security Grant Program (PSGP), risk-based controls, targeting, container scanning

 

CORE1019

[/s2If]

MARITIME SECURITY – Progress and Challenges in Key DHS Programs to Secure the Maritime Borders, GAO, November 2013 (CORE1018)

/0 Comments/in , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , /by

Summary: This report is a summary of previous GAO reports on US maritime supply chain security and border controls. The report focuses on progress and challenges in four main areas of the Department of Homeland Security’s (DHS) activity on the maritime security. The report highlights that DHS and its component Coast Guard agency could improve its maritime domain awareness through increased information sharing and more advanced vessel-tracking systems. The Customs and Border Protection (CBP) in turn could step up its role in securing US-bound container traffic by conducting more frequent risk assessment audits in key foreign ports that ship cargo into the US and by fostering more close relationship with foreign authorities. The GAO report also recommends the Coast Guard to rethink its maritime surveillance, interdiction and security operations because current protection and support is not adequate in high priority locations. The report also calls for more collaboration and coordination among maritime authorities, port operators and ocean carriers. Finally, the report encourages the DHS to develop performance metrics and data collection procedures the agency uses to assess and monitor its maritime security programs and activities. This report gives a recent update on the US maritime security activities that might be helpful for CORE demonstrations and clusters. The report is available for download at: www.gao.gov/assets/660/659087.pdf.

[s2If is_user_logged_in()]

Full review: This summary GAO documents provides detailed background material about the US maritime security programs. This information is very relevant for the CORE demonstrations WP9 and WP14 that involve shipping cargo from and into the US. The information this document offers also help the CORE’s risk and IT clusters to learn lessons from the US approach to risk-based maritime security and security-related IT integration.

Cross-references:

  • Maritime Security: Ferry Security Measures Have Been Implemented, but Evaluating Existing Studies Could Further Enhance Security. GAO-11-207. Washington, D.C.: December 3, 2010.
  • Supply Chain Security: DHS Could Improve Cargo Security by Periodically Assessing Risks from Foreign Ports. GAO-13-764. Washington, D.C.: September 16, 2013.

Additional keywords: Maritime security, maritime surveillance, risk-based controls, targeting, container scanning

 

CORE1018

[/s2If]

 

MARITIME SECURITY – Ongoing U.S. Counterpiracy Efforts Would Benefit From Agency Assessments, GAO, June 2014 (CORE1017)

/0 Comments/in , , , , , , , , , , , , , , , , , , , , , , , , , /by

Summary: This GAO report explains how the US government agencies have fought sea piracy around the Horn of Africa and at the Gulf of Guinea since 2010. The report also describes the current state of sea piracy threats in these two areas, and it urges US government agencies to reconsider their resource allocations, strategies and tactics related to the counterpiracy efforts. The report points out that the number of annual piracy incidents at the Gulf of Guinea has surpassed the yearly incidents off the Horn of Africa. This shift in pirate attacks prompt changes in the US counterpiracy operations. However, as the report points out, the US government agencies responsible for the counterpiracy activities have not recently conducted reassessments of their actions, despite the changing conditions. The report therefore recommends the US government agencies to re-evaluate the counterpiracy efforts, especially at the Gulf of Guinea that is becoming the most important hotspot of the international sea piracy. This GAO report provides information about modern sea piracy from which CORE’s maritime demonstrations might benefit. The report is available for download at: www.gao.gov/assets/670/664268.pdf.

[s2If is_user_logged_in()]

Full review: This GAO report delivers a comprehensive analysis of the current state of sea piracy at the two African hotspots and the US government’s counterpiracy efforts. This information benefits those CORE demonstrations that involve maritime shipping. The detailed description of the US counterpiracy efforts might also inspire the risk cluster to find effective and efficient risk-based solutions to protect maritime logistics and transport from sea piracy.

Cross-references:

  • Maritime Security: Federal Efforts Needed to Address Challenges in Preventing and Responding to Terrorist Attacks on Energy Commodity Tankers. GAO-08-141. Washington, D.C.: December 10, 2007.
  • Maritime Security: Actions Needed to Assess and Update Plan and Enhance Collaboration among Partners Involved in Countering Piracy off the Horn of Africa. GAO-10-856. Washington, D.C.: September 24, 2010.

Additional keywords: Maritime security, sea piracy

 

CORE1017 

[/s2If]

 

A Decade of GAO’s Supply Chain Security Oversight, 2015 (CORE1113)

/0 Comments/in , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , /by

Summary: The US Government Accountability Office (GAO) is an independent government watchdog organization that has been publishing many reports on the US government’s supply chain security initiatives over the past ten years. This article reviews 25 most relevant GAO’s reports that discuss strengths, weaknesses and future challenges of the US policies and regulations on supply chain security. The review findings reveal interesting facts about similarities and differences of the US and the EU approaches to supply chain security. This comparison opens new venues for further Transatlantic benchmarking as well as harmonisation and mutual recognition of supply chain security programs. This review was conducted as part of European FP7-Project CORE.  The reviewed document is available for download here: https://hicl.org. Review by Toni Männistö (CBRA)

[s2If is_user_logged_in()]

Full review: The GAO reports suggest that the US administration has been struggling with effective performance monitoring and auditing of its supply chain security initiatives. The reports indicate that there is some confusion about costs of security initiatives for the government and for the business community. There is also a lack of common understanding about the actual benefits of many of these programs. The GAO reports also urge US government officials to adopt risk-based approach to supply chain security, for example to use information and intelligence to assess risk levels of specific shipments, people, trading companies, and other entities, and then employ security solutions that are commensurate to the risk level. The GAO reports also emphasize the importance of involving the industry in the process of defining new policies and regulations.

Altogether, the review team found that the GAO documents are not only highly relevant for SCS management and governance but also of high quality. The study concludes that it might be useful for the EU to establish a quality-assurance organization similar to the US GAO. This new EU body would oversee spending of the EU and its member states on supply chain security programs and projects and this way improve efficiency of such investments.

Reference: Männistö, T., and Hintsa J., (2015), “A Decade of GAO’s Supply Chain Security Oversight,” Proceedings of the Hamburg International Conference in Logistics (HICL), September 24-25, 2015, Hamburg

 

CORE1113

[/s2If]

Mr. Chris Thibedeau and the Barbados ESW

/0 Comments/in , , , , , , , , , , , , , , , , , , , , , , , , /by

CBRA Interview with Mr. Chris Thibedeau, on the Barbados Single Window

Hi Chris, and thanks for agreeing to join CBRA Interview. Can you first tell a bit about yourself, your background, where you work and so forth?

Sure thing.  For those that don’t know me, I’m an ex Customs official and a mediocre hockey player from Canada.  I worked at Canada Customs for about 17 years.  In 2006, I joined a firm called GreenLine Systems as a Vice President and went to work on contract as a resident subject matter expert for US Customs and Border Protection in their Office of Anti-Terrorism. In Canada I was awarded a Government of Canada Technology Award gold medal and the Canadian Public Service Award of Excellence for leading the design and development teams responsible for the TITAN automated risk assessment system.

I am a co-author – along with you, Juha, and other colleagues – of the World Customs Organization’s Customs Risk Management Study, the Inter-American Development Bank’s Knowledge and Capacity Product on Risk Management of Cargo and Passengers, and the WCO’s “Global Container Security and Identification of High Risk Indicators” that served as a core input to the General High Risk Indicator document.

GreenLine was acquired by A-TS in 2013 and then PAE in 2015. Over the last 10 years, I’ve been responsible for leading the development and providing guidance to internal and external clients and stakeholders for solutions that provide a customized risk management solution to support screening and facilitation of cargo, passengers, and conveyances. I also just completed my Master’s degree in International Customs Administration from the Charles Sturt University in Australia.

It’s great to be here Juha and nice to see you again!

Thanks Chris for the comprehensive background notes, and great to see you too again, since quite some while! In 2015, the Barbados Government initiated an Electronic Single Window project sponsored and funded by the InterAmerican Development Bank. Can you provide an overview of this project?

The Barbados Government recently initiated a major project to modernize Barbados with an Electronic Single Window, or, ESW.  Sponsored and funded by the InterAmerican Development Bank, the ESW initiative intends to optimize the management of trade facilitation and border security through the use of new border management technologies to be developed by my firm, A-T Solutions and its partner, a Canadian-based commodity classification specialist, 3CE Technologies. The ESW intends to provide a Single interface for the exchange of trade-related documents between the trading community, customs, and other government agencies with a stake hold in border processing.  The ESW will also provide a public one stop user-friendly repository for comprehensive tariff and regulatory trade information, government advisories, and training materials.

Ultimately, the ESW project intends to reduce business costs involved in the movement of goods for export and import, international trade, particularly to maximize the efficiency of Customs and trading processes and improve integration with related agencies that involve legal and business partners in the trading community.

Our ESW seeks to establish an integrated solution for commercial trade processing that addresses both the needs of the Barbados Customs mandate and those of 30 other government agencies, OGAs.  It is believed that this initiative will expand the number of OGA programs that interact with Customs commercial processing and deliver a more advanced electronic approach to the collection, consolidation and dissemination of commercial trade data for both the trade community and regulating programs.

Which other government agencies, OGAs – next to Customs – will benefit from the ESW?

At this stage we are working directly with 30 OGAs, including, but not limited to, the following ones: Ministry of Agriculture – Animal Health, Food Safety, Plant Health; Barbados Defense Force; Barbados Drug Service; Barbados Licensing Authority; Barbados Investment and Development Corporation; Barbados Police Service; Barbados Port Incorporated; Barbados Postal Service; Barbados Revenue Authority; Department of Commerce And Consumer Affairs; Department of Corporate Affairs and Intellectual Property Office; Ministry of Finance; Data Processing Department; Department of Economic Affairs – Research and Planning Unit; Immigration Department; Ministry of Health; Port Authority; and, Statistical Service.

We ‘ve learned that some OGA mandates add an additional layer of operational complexity for risk based border management methodologies.  In one example, the Ministry of Health in Barbados, MoH, requires a 100% visual or physical inspection for all their regulated commodities. The MoH does not have access to the ASYCUDA – the system developed by the United Nations Conference on Trade and Development, or, UNCTAD, used to record declarations – and therefore the Ministry doesn’t have visibility for what will be arriving until they receive a notification from the consignee or importer, usually done by fax. They also lack access to a historical repository of enforcement data in order to analyze and develop recurring profiles that could be used as a risk management resource. In this sense, the ESW project can help the MoH by giving them access to earlier and updated information of the cargo data when initially reported to begin the decision making process under their protection mandate. interview 07.04.2016

In many cases, our ESW is providing visibility into border processing that the OGAs never had in the past.  The ESW does not intend to replicate information that is already collected by the ASYCUDA. However, ESW can monitor controlled goods that enter and leave the country for permit and control purposes.

The ESW can also give an OGA a regular count of “License, Permit, Certificate, Other document”, LPCOs, by commodity or goods within identified periods of time.  We essentially are providing the core OGA/LPCO management capability where ASYCUDA does not – in other words, we are closing this gap.  However, this is not a knock at ASYCUDA.  ASYCUDA is a great system for declaration processing and accounting, but it was never designed to do all things.  ESW functions are really not part of its true capability.  This project is a great example of how ASYCUDA can work hand in hand with a parallel and complimentary system. Here’s an analogy to consider:  I see ASYCUDA as an iPhone.  We are a vendor building apps for that iPhone where the app adds large value for developing and modernizing nations.  I believe this is a framework for modernization that should be fostered internationally and replicated.  I would like to see UNCTAD agree and endorse this type of approach and methodology.  It’s time for all of us to collaborate and offer larger value.

Interesting! What do you consider as the most important lessons learned from the Barbados ESW-case, so far?

Well, there are a few I might highlight that I personally think are important:

First, in principle, information visibility for Customs and OGAs is important in order to efficiently apply risk management techniques, reduce release times, and improve physical inspections. OGAs should have access to the declarations made through ASYCUDA in order to find specific threats and create Risk Assessment modules according to the protection mandate of an institution.

Second, there should be greater coherence between different IT systems. ASYCUDA, the ESW and other IT systems of Barbados should work together without any task redundancy.  This is where the time savings are found associated with the release of goods. I can’t underestimate how important change management and business transformation is on a project of this nature.  I still struggle with this in my own company trying to convince others how important this is.  We’ve made sure to include Change Management and Business Transformation Architects on our delivery team in this instance and it has paid off in dividends.  Our Barbadian clients praise this approach.

Third, I’d certainly recommend that OGAs use a common risk assessment decision support system.  This will guide OGAs through a data exploitation framework using risk-based principles tailored to their mandate and mission.  In Barbados, Customs actually has access to an Automated Risk Management System.  I seriously think they should consider sharing access with the OGAs.  By distributing access to the other OGAs, each agency would have full visibility into all declaration filings, and an ability to scan this information and seek out inspections that could be in violation of their controls or mandate.  If this access can be provided, I see this as the greatest single step forward to having OGAs endorse and adopt risk based decisions at the border.  This would help lead to interoperability with Customs.  Until that happens, we will continue to see conflicting mandates where one agency endorses risk management and the other endorses risk aversion.  That’s a real problem.

And fourth, I’d also recommend that when two or more inspections must be done, the inspections should be executed at the same time and location with both Customs and OGAs present. This will reduce redundancy and unnecessary cost for the trade community.

Thanks Chris for sharing these insights! Any final comment or greetings you would like to send to CBRA Interview readers?

Yes, one important thing to take away.  There have been many time release studies that have taken place over the years in this region and in Barbados.  Current release times sit at approximately eight days for import and export.  Now think about that: eight days to import your goods into the country!  I believe this timeline is unacceptable in any modern nation or a country that seeks to endorse trade facilitation. Our ESW solution will ideally eliminate many of the redundant tasks that exist today and improve on the time release of import and export shipments significantly and extensively.

Here is an example: Today, an importer or their broker has to file an electronic declaration in ASYCUDA.  If the goods are controlled, commonly done for example with meat products, then the importer or the broker has to travel across Bridgetown to the Department of Agriculture and Veterinary Services to apply and pay for a paper permit.  Once approved and obtained, they then have to travel back to Customs, and submit the paper permit along with a paper copy of their declaration as a release package.  Once duties and taxes are paid, the customs officer stamps up the release and re-releases the shipment in ASYCUDA.  A paper delivery authority is provided.  The importer makes arrangements to pull their container or shipment out of the terminal or sufferance warehouse and provides the delivery authority to the terminal operator or warehouse keeper.  Only then can the goods enter the economy.
interview 07.04.2016

If you can appreciate how long that might take – that is currently eight days on average – think about what happens when you have other controlled goods in your shipment, requiring additional visits to OGAS, and possible offload inspections at the port or inland.  It’s no wonder the release time sits at around eight days!  I have a strong belief this is where all the time savings are.  We are automating much of this process in the ESW and will reduce the redundancy of tasks and visits to Customs and OGAs.

The solution to an ESW is in the workflow and approval process.  It’s not about scanning paper permits to attach to a declaration.  The solution is about interoperability.  I’m excited about this.  Just think about reducing a release time from eight days to a number of hours.  That will be quite the story to tell!

Great! Let’s be soon in touch about writing a joint journal paper on this highly topical project. Thanks Chris for the interview, Juha.

We should!  It’s an important topic for the community of WCO and WTO members, donor agencies etc.  Talk soon.

 

SUPPLY CHAIN SECURITY – DHS Could Improve Cargo Security by Periodically Assessing Risks from Foreign Ports, GAO, September 2013 (CORE1007)

/0 Comments/in , , , , , , , , , , , , , , , , , /by

Summary: This GAO report reviews maritime supply chain security programs that the Department of Homeland Security and its component agencies – mainly the Customs and Border Protection (CBP) and the Coast Guard – have implemented since 2001. The report examines (1) the extent to which DHS has assessed risk levels of foreign ports and allocated security resources accordingly and (2) activities DHS has taken to monitor and improve efficiency and effectiveness of its security initiatives. Drawing on numerous interviews of key stakeholders and examination of key documents, the report recommends CBP to consider expansion of its Container Security Initiative (CSI) into new ports based on a periodic risk assessment of foreign ports. The report also highlights opportunities for further harmonization of the US maritime security initiatives with their foreign counterparts through mutual recognition agreements. Since this report contains fundamental information about the US maritime security programs, many CORE work packages are likely to benefit from the insights this report provides. Especially, the demonstrations, which involve ocean shipping, as well as the risk cluster, can use this information to support and guide their work. The document is available for download at: http://www.gao.gov/assets/660/657893.pdf (accessed 13.3.2016)

[s2If is_user_logged_in()]

Full review: The report provides a comprehensive outlook on the US maritime supply chain security initiatives that the DHS and its component agencies – mainly CBP and Coast Guard – have implemented since 2001. The report features some interesting figures that map the security initiatives on the global supply chain and that illustrate current solutions the US government employs to screen and examine US-bound shipping containers. The CORE’s demonstrations that involve maritime shipping are likely to benefit from the information this report provides. Also the risk cluster can use the information, and especially the mapping of the US maritime security initiatives over the global supply chain, to design risk-based, layered approaches to maritime supply chain security. The education cluster can also reuse the contents of this report to produce relevant and informative training material for various supply chain stakeholders that are involved in the seaborne trade and logistics.

Cross-references:

  • Maritime Security: Progress and Challenges 10 Years after the Maritime Transportation Security Act. GAO-12-1009T. Washington, D.C.: September 11, 2012.
  • Supply Chain Security: Container Security Programs Have Matured, but Uncertainty Persists over the Future of 100 Percent Scanning. GAO-12-422T. Washington, D.C.: February 7, 2012.
  • Homeland Security: DHS Could Strengthen Acquisitions and Development of New Technologies. GAO-11-829T. Washington, D.C.: July 15, 2011.
  • Maritime Security: Responses to Questions for the Record. GAO-11-140R. Washington, D.C.: October 22, 2010.
  • Supply Chain Security: DHS Should Test and Evaluate Container Security Technologies Consistent with All Identified Operational Scenarios to Ensure the Technologies Will Function as Intended. GAO-10-887. Washington, D.C.: September 29, 2010.
  • Supply Chain Security: CBP Has Made Progress in Assisting the Trade Industry in Implementing the New Importer Security Filing Requirements, but Some Challenges Remain. GAO-10-841. Washington, D.C.: September 10, 2010.

Additional keywords: Mutual recognition, Customs-trade partnership against Terrorism (C-TPAT), Container Security Initiative (CSI), maritime security, counter-terrorism

CORE1007

[/s2If]

SUPPLY CHAIN SECURITY – Container Security Programs Have Matured, but Uncertainty Persists over the Future of 100 Percent Scanning, GAO, February 2012 (CORE1005)

/0 Comments/in , , , , , , , , , , , , , , , /by

Summary: This GAO document analyses the progress and challenges of the US maritime supply chain security initiatives. The document puts a special emphasis on (1) the advance cargo information (ACI) schemes that enable the US Customs and Border Protection (CBP) to assess risk levels of US-bound cargo containers, (2) technologies to track, monitor and screen the shipping containers for weapons of mass destruction (WMD) and other contraband, and (3) to evaluate the progress towards the 100-percent scanning of the US-bound containerized cargo. As the overarching theme, the report addresses the current state of the partnerships the component agencies of the Department of Homeland Security (DHS) have been fostering with the private sector and foreign governments. Besides the demonstrations, which deal with the US-related maritime logistics, the CORE’s risk and educational clusters can benefit from the insight and information this report offers. The document is available for download at: http://www.gao.gov/assets/590/588253.pdf (accessed 12.3.2016)

[s2If is_user_logged_in()]

Full review: This report provides a general outlook on the US maritime supply chain security initiatives, but the contents of this document largely overlaps with other, reviewed GAO documents. However, this report offers some fresh perspectives on the US maritime security – particularly the best updates available on the advanced cargo information programs –, and therefore the CORE’s partners, which are engaged in demonstrations on maritime security, might benefit from studying this GAO document. Moreover, the CORE risk, educational and IT clusters might learn from this document how the US Department of Homeland Security (DHS) has implemented its supply chain security philosophy in the maritime context. In particular, the risk cluster may use the description of the US risk-based approach to cargo inspections as a starting point for the related CORE solutions. The IT cluster may learn from the ways how the US government has organized its IT processes and infrastructure that support the maritime security initiatives. Finally, the educational cluster can use the material of this report to produce meaningful training material for CORE’s stakeholders that are engaged in maritime supply chain security.

Cross-references:

  • Supply Chain Security: DHS Should Test and Evaluate Container Security Technologies Consistent with All Identified Operational Scenarios to Ensure the Technologies Will Function as Intended. GAO-10-887. Washington, D.C.: September 29, 2010.
  • Supply Chain Security: CBP Has Made Progress in Assisting the Trade Industry in Implementing the New Importer Security Filing Requirements, but Some Challenges Remain. GAO-10-841. Washington, D.C.: September 10, 2010.
  • Combating Nuclear Smuggling: Inadequate Communication and Oversight Hampered DHS Efforts to Develop an Advanced Radiography System to Detect Nuclear Materials. GAO-10-1041T. Washington D.C.: September 15, 2010.
  • Supply Chain Security: Feasibility and Cost-Benefit Analysis Would Assist DHS and Congress in Assessing and Implementing the Requirement to Scan 100 Percent of U.S.-Bound Containers. GAO-10-12. Washington, D.C.: October 30, 2009.
  • Combating Nuclear Smuggling: Lessons Learned from DHS Testing of Advanced Radiation Detection Portal Monitors. GAO-09-804T. Washington, D.C.: June 25, 2009.

Additional keywords: Importer Security Filing (10+2 rule), Advanced Targeting System (ATS), 24-hour rule, 100-percent scanning requirement

CORE1005

[/s2If]

TRANSPORTATION SECURITY ADMINISTRATION – Progress and Challenges Faced in Strengthening Three Key Security Programs, GAO, March 2012 (CORE1004)

/0 Comments/in , , , , , , , , , , , /by

Summary: The report discusses status and future challenges of the Transportation Security Administration’s three key security programs: The Advanced Imaging Technology (AIT), the Screening of Passengers by Observation Techniques (SPOT) and the Transportation Worker Identification Credential (TWIC) program. The two earlier programs are related to the passenger security, which not in the scope of the CORE project. The third TWIC program – an initiative for vetting backgrounds of maritime workers that require access to regulated maritime facilities and vessels – is the only program on supply chain security. The report recommends that the Department of Homeland Security (DHS) would improve its internal procedures (e.g., enrolment practices, background checking and quality control) and define and measure performance criteria for assessing the TWIC program’s efficiency and effectiveness. This GAO report discusses mainly passenger security programs that are not interesting for the CORE and for most of the project partners. However, learning about the TWIC program might be useful for at least those CORE demonstrations on maritime supply chain security. The document is available for download at: http://www.gao.gov/assets/590/589587.pdf (accessed 12.3.2016)

[s2If is_user_logged_in()]

Full review: This GAO report has only a limited use in the CORE project because of its emphasis on passenger security programs (the Transportation Worker Identification Credentials (TWIC) program is the only program discussed in the report that has something to do with supply chain security). The CORE’s maritime demonstrations may find it useful to learn about the US way for managing credentials and access to regulated maritime facilities and vessels. The CORE’s risk cluster might learn something about conducting risk-based background checks for logistics workers, and the CORE’s educational cluster might use the description of CWIT, that this report provides, to produce training material and guidebooks on how to implement and maintain access control schemes.

CORE1004

[/s2If]

Revisiting the Yemen bomb plot of 2010

/0 Comments/in , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , /by

blog_070316This CBRA blog revisits the Yemen bomb plot from 2010, the most decisive turning point in modern air cargo security. More than five years after the events, this blog discusses the plot’s implications to the contemporary air cargo security and outlines CBRA’s recommendations for future security work. Parts of this blog text have already been published in the doctoral thesis of CBRA researcher Toni Männistö.

Two explosive devices aboard passenger planes: The series of events, that we call the Yemen bomb plot, took place on 29 October in 2010. On that day, al-Qaeda terrorists almost destroyed two passenger airplanes with a pair of express courier parcels, each enclosing plastic explosives hidden inside a printer toner cartridge. The explosive parcels where sent to Chicago from the capital of Yemen, Sana’a, via two different express courier operators.

Both parcel bombs were eventually intercepted and defused, without fatalities or injuries. But before the interception, the bombs had already travelled onboard multiple air freighters and passenger planes. Many people flew that day with a fully functional explosive device under their seat! Though the parcels were addressed to Chicago, officials think that terrorists wanted to detonate the bombs mid-air, just before landing using cell phone timer alarms.

A Lockerbie-style mayhem was slightly avoided, largely thanks to a timely piece of intelligence. The bomb plot started to uncover when a suspected double agent tipped Saudi-Arabian intelligence that al-Qaeda terrorists had shipped two parcel bombs from Yemen to the US via the express courier service. The Saudi intelligence forwarded the tracking numbers of the suspected explosive devices to their US and German colleagues and told them to look for printer toner cartridges.

The first parcel was intercepted in Dubai, and the second one at the East Midlands airport, nearly 200 km to the northwest from London. In the UK, a bomb squad did not first recognize anything suspicious when they screened the suspected parcel. “It looked like a printer cartridge – there were no wires or anything,” one of CBRA’s contacts at World Customs Organization (WCO) recounts. “But of course, what the cartridge did contain was explosive that current technologies couldn’t detect.” Later laboratory tests revealed that each parcel contained 300 to 400 grams of PETN, military grade plastic explosive, wirings, and a detonator hidden inside a printer’s toner cartridge. The bombs were so meticulously concealed that they had not only passed the standard air cargo and safety screening but also the special screening of the bomb squad.

Aftermaths: The Yemen incident was rude reminder of the vulnerability of the air cargo logistics to terrorism. Sure, the day was saved by old-school, field intelligence work and prompt government response. But before interception, the first parcel travelled aboard three different flights: Sana’a – Dubai, Dubai – Cologne, and Cologne – East Midlands Airport. The second explosive parcel flew first from Sana’a to Doha and then to Dubai where it was intercepted.

In the immediate aftermaths of the events, aviation security authorities in the US and many European countries stopped accepting freight shipments from Yemen. Germany also cancelled all passenger flights from Yemen for more than two weeks. “As often happens in these situations,” the WCO’s air cargo specialist remarks, “the first reaction was stopping anything coming from this part of the world – any plane for any reason.” The new security rules changed the air cargo operations virtually overnight, seriously disrupting the air cargo and mail service. Delays were widespread and lengthy, but the worst aspect of the disruption was that no one knew when the new apparently transient security regime was to be revoked.

Eventually, once the precautionary stoppage was ended, new unprecedentedly stringent security requirements entered into force, disrupting the air cargo and mail service further. The US Transportation Security Administration, TSA, introduced the most stringent rules: any mail originating or transiting through Somalia or Yemen was banned, as well as printers or printer toner cartridges from high-risk locations. Moreover, parcels originating from any business partners had to be screened up to high-risk screening standards, piece by piece, if such shipment did not accompany a tendering statement, a document assuring that cargo comes from a known and trusted shipper. The new regime disrupted seriously international air cargo logistics, causing air cargo shippers worldwide to accumulate huge backlogs of US-bound shipments. Annoyed and surprised about the turn of events, the air cargo industry reacted to the US rules with a barrage of criticism, calling the measures superfluous and impractical. Over the following weeks, the reactive security rules were gradually relaxed to enable clearing of the backlog of US-bound air cargo.

In the long term, the Yemen events put air cargo security into a spotlight, securing political commitment and spurring further reforms for years to come. The International Civil Aviation Organization, ICAO, for example, included advanced security, concepts such as the “secure supply chain” principle, the concept of high-risk cargo and mail, and the consignment security declaration, CSD, into the new edition of the Annex 17 of the Chicago Convention. Also the European Union expanded the EU air cargo regime to cover airlines operating into the EU aviation security area – EU-28 plus Switzerland, Norway and Iceland – from third country airports. The amendment also specified criteria for identifying and screening high-risk cargo and mail, known as HRCM.

CBRA considerations for future air cargo security: The modern air cargo security has taken major leaps since the Yemen incident, but the work towards higher air cargo security still continues. The CBRA research team considers that, like in any other area of supply chains, it is crucial both to facilitate cross-border logistics and to ensure adequate security. This classic dilemma of striking the balance between trade facilitation and supply chain security is not easy to solve, but we believe that there are some promising ways to promote logistics-friendly air cargo security.

Governments should normally consult the air cargo industry before introducing new security rules. New security rules should avoid reducing speed, on-time reliability, or cost-efficiency of the air cargo service. There are often ways to integrate new security requirements seamlessly into the sequence of day-to-day logistics activities, but this requires close government-business coordination.

One promising way forward is to improve capabilities of pre-loading risk assessment, so that the riskiest air cargo shipments can be identified early on and subjected to a more stringent screening. Many projects on this matter are under way, most notably the Air Cargo Advance Screening (ACAS) in the US and Pre-loading Consignment Information for Secure Entry
 (PRECISE) in the European Union. The CBRA team applauds these efforts of advancing risk assessment and reminds of the importance of proactive updating of risk-scoring algorithms.

EU’s decision of forcing flights from third countries into EU to comply with EU’s air cargo security regime makes also good sense. It is reasonable to secure air cargo up to an adequate standard sooner rather than later, preferably before the first flight. More global capacity building – especially training and funds for modern screening equipment – are needed in developing countries. Also, auditing activities in third countries would benefit from further resources.

Harmonization and mutual recognition is another key theme for years to come. In the EU, civil aviation and customs authorities might find some synergies if they harmonized their respective Known Consignor (KC) and Authorized Economic Operator (AEO) programs. Air cargo companies would also benefit if types and performance requirements of screening methods would be uniform across the members of the European Union.

Bibliography:

BBC, Q&A: Air freight bomb plot, 2 November 2010

European Commission, Regulation 173/2012, amending 185/2010

International Civil Aviation Organization, Chicago convention, Annex 17, 9th edition

Koolloos M.F.J., Männistö T., van der Jagt O.C., Jezierska M.M., Hintsa J., Kähäri P. and Tsikolenko V. (2015), Security Screening for the Air Express Cargo Industry, Final Report, Brussels, Belgium.

Männistö, T., 2015. Mitigating Crime and Security Risks in the International Logistics Network: the Case of Swiss Post. Doctoral thesis, École Polytechnique Fédérale de Lausanne (EPFL).

CBRA Blog by Dr. Toni Männistö