Supply chain security culture: measure development and validation, 2009 (CORE1200)

Summary: Supply chain security culture (SCSC) is as an overall organizational philosophy embracing norms and values that keep employees vigilant when performing supply chain security practices. The article presents a scale that makes possible to gauge supply chain security culture and its correlation to organization’s ability to respond to unexpected disruptions. Employees are asked to assess two topics: security strategy of the company and impacts of significant supply chain breech to business operations. According the study improved supply chain security culture makes company more resilient against major disruptions. This research helps executives to justify their expenditures on security efforts. The reviewed document can be purchased here: http://dx.doi.org.

[s2If is_user_logged_in()]

Full review: Researchers have stressed the importance of having an organizational culture that highlights proactivity and vigilance toward supply chain security breaches. In security-focused supply chain management environment workers are empowered to detected and handle supply chain security threats without seeking formal permission from supervisors and managers. Company security strategy gives specific attention how SCS concepts are embedded into firm processes and procedures. Alignment with organizational culture and business or corporate-level strategies is believed to result in enhanced organizational performance. In addition, organization culture encompasses supply chain continuity management. The paper presents a scale for measuring supply chain security culture defined as the overall organizational philosophy that creates supply chain security as a priority among its employees through embracing and projecting norms and values to support secure activities and to be vigilant with security efforts.

The study makes possible to assess how implemented FP7-CORE security technologies, tools and practices influence on supply chain resilience based on the perception of company managers and employees. The article gives also guidelines how to develop survey forms and protocols in order to assess the influence of implemented security measures on other KPIs such as supply chain visibility and reliability. The survey tools based on perceived operational and organizational changes complete toolbox to measure impacts of introduced security interventions.

Reference: Zachary Williams, Nicole Ponder, Chad W. Autry, “Supply chain security culture: measure development and validation”, The International Journal of Logistics Management, Vol. 20 Iss: 2, pp.243 – 260

 

CORE1200

[/s2If]

New survey on European postal security

PostEurop and Cross-border Research Association have launched a new online survey on postal security management to promote further development and implementation of best security practices in the postal sector. The survey is part of the ongoing SAFEPOST project that the European Commission is co-funding under the Seventh Framework Programme (FP7). SAFEPOST project going to finish in the end of July after four years of work towards higher postal security in the European Union.

The survey studies the current state of postal security management among PostEurop members, 52 postal operators in 49 European countries. The goal is to collect responses mainly from security and safety managers of the PostEurop members, but also postal expert familiar with sorting and distribution processes are welcome to provide their inputs. The first part of the survey focuses on security implementation and security performance, and the second part studies postal managers’ expectations and concerns regarding the following six main SAFEPOST innovations:

Common Postal Security Space:

SAFEPOST has created an online platform for sharing security-related information between postal operators. This Common Postal Security Space provides a digital track record of security controls and related evidence (for example X-ray images) that a postal parcel has encountered over its journey, and facilitates an easy and controlled way to exchange information both with other operators as well as the authorities.

D-tube drug screening station:

SAFEPOST has demonstrated a new screening solution, D-tube, that can be fully integrated into the sorting process. The D-Tube’s prototype detects illegal substances, such as narcotics and explosives, at high accuracy.

Explosive detection system:

SAFEPOST has demonstrated a Raman spectroscopy screening device for detecting trace amounts of explosives and explosive precursors on the outside of postal items. The device is designed to be seamlessly integrated, at the same level as X-ray machines already used today, in the sorting process and detect the explosive threats at a high accuracy and at a low false alarm rate (≈ 1 %).

Image recognition system:

SAFEPOST has developed an Image Recognition solution that photographs five visible sides of a postal parcel at one or more locations in the postal network. The solution compares these images to detect signs of tampering or damage (≈ 92% detection rate). The current solution functions properly when the conveyor belt moves no faster than 0.5 m/s.

Radiological screening:

SAFEPOST has demonstrated detection of radiation in moving parcels, that can be fully integrated into the sorting process. The current version of the detector is able to detect any harmful level of radiation, and identify the radioactive isotope, and when possible to consider effects of possible attempts of hiding the radioactivity with lead or other shielding material by detecting neutron radiation.

Security standard and certificate:

SAFEPOST project is working towards a new European security standard for the postal operators that would give recommendations about use of security inspection technologies, exchange of security-related information, cyber security, and key security performance indicators. This standard would pave the road towards a voluntary security certification program that would help the postal operators to show their commitment to security.

This survey research is expected to produce interesting new insights about postal security activities and security performance among the PostEurop members. If the response rate is high, the survey findings will set a basis for pan-European benchmarking of security activities. The findings would also contribute to smart policy making, legislation, and standardisation in the field of postal security.

Finally, depending on the response rate, CBRA is going to publish an academic journal paper based on the results. Building on solid theory on supply chain security risk management, the journal paper would provide new empirical about how supply chain security implementation is associated operational and security performance. We expect that collaborative security measures improve both on-time delivery performance (a proxy for operational performance) and supply chain security performance simultaneously. Collaborative security measures include survey items such as “we coordinate security activities with our business customers” and “we exchange customs declaration information with customs authorities electronically [for example, ITMATT or CUSITM messages]”. Another hypothesis is that, on the one hand, non-collaborative security contributes to supply chain security performance but decrease on-time delivery performance on the other hand. Examples of such non-collaborative measures include “we use tamper-evident mail bags to transport high-value postal items” and “We perform security controls also on non-airmail items to detect explosives.” The figure below summarises the theory and hypotheses of the research paper.

blog1506161

Figure 1 Theoretical framework of the SAFEPOST survey paper

The survey findings will be presented in the final SAFEPOST meeting in Madrid 5-6 July 2016. After the meeting, we hope that we can expand the scope of the survey to cover the rest of the world, as well. The next step would be to contact representatives of the Universal Postal Union (UPU) and coordinate distribution of the survey into the organisations’ 192 member countries.

 

First results from the WCO Cancun AEO benefit survey

In today’s CBRA Blog we provide a sneak preview of the outcomes of the AEO Benefit survey carried out by CBRA research team at the 3rd Global WCO AEO Conference, in Cancun, Mexico, 11-13 May 2016.

We keep today’s Blog very simple. First, we would like to introduce a new test-categorization of Customs granted AEO benefits, with the following five groups:

  1. More streamlined / simplified Customs (and related) procedures
  2. Less frequent interventions by the Customs administration
  3. Increased priority over non-AEO companies (“getting to the front of the queue”)
  4. Increased (positive) attention by the Customs administration
  5. Increased number of other privileges granted by the customs administration

And second, we list the AEO benefits from our survey (only question 2 in the survey form, which focuses explicitly on Customs granted benefits to the supply chain companies, and not benefits for Customs themselves, or any kind of “side benefits” for the companies) under each of the five categories. The order of the benefits per category is based on the survey outcomes, i.e. the first bullet point benefit was the most common one in the survey, followed by the second bullet and so forth. Please note that there are no ranking indications between the five groups, neither when it comes to the groups per se, nor to the individual benefits – these will be included in our academic publications, bit later this year…

Group 1. More streamlined / simplified Customs (and related) procedures

  • Enjoying increased paperless processing of import/export shipments
  • Enjoying an access to / pre-qualification with various simplified customs procedures
  • Enjoying having a reduced number of data elements in the (final) declaration
  • Enjoying having entry/exit summary declarations with reduced data sets
  • Enjoying easier access to other governmental certification in the supply chain (e.g. in aviation security)

Group 2. Less frequent interventions by the Customs administration

  • Enjoying minimum number of cargo security inspections
  • Enjoying the option of audit-based / account-based controls (versus only transaction-based controls)
  • Enjoying access to self-audit or reduced audit programs

Group 3. Increased priority over non-AEO companies (“getting to the front of the queue”)

  • Enjoying priority use of non-intrusive inspection techniques when examination is required
  • Enjoying a priority status in Customs processing during a period of elevated threat conditions
  • Enjoying priority response to requests for ruling from Customs
  • Enjoying expedited processes to resolve post-entry or post-clearance inquiries
  • Enjoying priority treatment of consignments if selected for control
  • Enjoying preferential treatment at border crossings in post-disaster/post-attack situations
  • Enjoying a priority status in exporting to affected countries after a security incident

Group 4. Increased (positive) attention by the Customs administration

  • Privilege to deal with designated Customs contact points / assistance by Customs supply chain security experts
  • Privilege to receive training provided by Customs experts
  • Privilege to be notified of the intention to release goods prior to their arrival (“pre-clearance”)
  • Enjoying special treatment in some non-criminal legal cases
  • Privilege to exploit “extended Customs office opening hours”, during high peak / congestion times

Group 5. Increased number of other privileges granted by the Customs administration

  • Enjoying from tax privileges, such as speedier tax refunds and compensation
  • Enjoying the option to manage clearance formalities, inspections etc. at the business site
  • Enjoying from financial guarantee waivers, reductions or rebates
  • Privilege to self-manage the bonded warehouses
  • Enjoying tangible benefits due to mutual recognition agreements / arrangements (MRAs) with 3rd countries
  • Privilege to choose the place of controls (if selected for control)
  • Enjoying reductions on some Customs fees or charges
  • Privilege to conduct self-assessments when Customs automated systems are not functioning

And that’s about it! Please be reminded again that this CBRA Blog is just a first scratch on the surface to start publishing results from the WCO Cancun 2016 AEO conference… And by the way, we are also working to publish the results from the WCO Madrid 2014 AEO conference, as we have been waiting to publish the full results of the both conferences in a parallel manner / in a same paper. In the meanwhile, please email us any feedback, ideas and/or criticism regarding this Blog!

In Lausanne, 8 June 2016, CBRA Blog Dr. Juha Hintsa

Blog-080616-1

PS. Our earlier Blog with all the WCO Cancun 2016 AEO survey questions can be read at: https://www.cross-border.org/2016/05/08/aeo-benefits-or-no-benefits-thats-the/

PPS. Related literature by the Cross-border Research Association team and key partners:

Most of these papers are available for download at ResearchGate, https://www.researchgate.net/profile/Juha_Hintsa/publications . And all of them can be naturally requested by email ( cbra@cross-border.org )

Hintsa, J., Mohanty, S., Rudzitis, N., Fossen, C. and Heijmann, F. (2014), “The role and value of customs administrations in minimization of socio-economic negative impacts related to illicit import flows in freight logistics systems- three preliminary cases in Europe – FP7-CORE”, Proceedings of the 9th WCO PICARD Conference, September 17-19, 2014, Puebla.

Hintsa, J. (2013), AEO – MRA Study for RTC- Thailand Europe Cooperation TEC-II, PDSC: Implementation of international standards on Supply Chain Security leading to a secure Trade Environment and to increased Trade Facilitation (Activity Code : TRA 4), Final Report, Bangkok.

Urciuoli, L. and Ekwall, D. (2012), “Possible impacts of supply chain security certifications on efficiency – a survey study about the possible impacts of AEO security certifications on supply chain efficiency”, Proceedings of Nofoma Conference, June 6-8, 2012, Naantali.

Hintsa, J., Männistö, T., Hameri, A.P., Thibedeau, C., Sahlstedt, J., Tsikolenko, V., Finger, M. and Granqvist, M. (2011), Customs Risk Management (CRiM): A Survey of 24 WCO Member Administrations, Study for World Customs Organization (WCO), February 28, 2011, Lausanne

Hintsa, J., Hameri, A.P., Männistö, T., Lazarescu, M., Ahokas, J. and Holmström, J. (2010), ”Conceptual model for measuring benefits of security in global supply chains”, Proceedings of the the 3rd International Conference on Transportation and Logistics (T-LOG), September 6-8, 2010, Fukuoka City.

Hintsa, J., Ahokas, J., Männistö, T. and Sahlstedt, J. (2010), “CEN supply chain security (SCS) feasibility study”, CEN/TC 379 Supply Chain Security, Final report, January 15, 2010

Gutiérrez, X., Hintsa, J., Wieser, P. and Hameri, A.P. (2007), “Voluntary supply chain security program impacts: an empirical study with BASC member companies”, World Customs Journal, Vol. 1 No. 2, pp.31-48.

Gutierrez, X. and Hintsa, J. (2006), “Voluntary supply chain security programs: a systematic comparison”, Proceedings of the International Conference on Information Systems, Logistics and Supply Chain (ILS), May 15-17, 2006, Lyon.

AEO benefits, or, no benefits, that’s the?

“To be, or not be – that is the question”, was Prince Hamlet wondering already some 412 years ago. 400 years later, the CBRA research team started to raise the question of “AEO benefits, or no AEO benefits – that is the ?”…

 

Around year 2004, we first started to study the emerging AEO-types of programs in Europe and globally, working intensively with multinational companies (clothing, cigarettes, machinery etc.), and with multiple governments. Initially, we reviewed any data available from C-TPAT, StairSec, BASC and TAPA programs, and later we concentrated on EU AEO and all other AEO programs across the globe. After 12 years of research our intention is to publish an academic journal paper summarizing all the knowledge from the literature as well as from our own research on AEO benefits for Customs administrations and for supply chain companies – focusing on the tangible, realized benefits, instead of “paper tiger / lip service” types of benefit checklists.

As the last step of data collection, we are now launching the study: “Customs Supply Chain Security Programs (AEO, C-TPAT etc.) – Survey on Supply Chain and Government Benefits – WCO 3rd Global AEO Conference, Cancun, Mexico, 11-13 May 2016 – Research project by CBRA, ZLC, UCR, HEC UNIL and FP7-CORE”. This survey is a direct follow-up with the one CBRA did in the 2nd Global AEO Conference in Madrid two years ago. Ms. Susana Wong Chan from the University of Costa Rica and Cross-border Research Association is presenting the survey in Cancun next week, and collecting as many replies as possible, in person during the conference (and by email after).

We have three main questions in the Cancun AEO survey, each one with multiple sub-questions (all questions are presented with a five-point Likert scale, plus one option for “cannot say”):

  • Question for Customs administrations, supply chain companies, and all other experts in cross-border supply chains and Customs supply chain security programs: How often are the supply chain security program certified companies in your country benefiting from the following Customs granted incentives?
  • Question for Customs administrations only: What are the benefits for the Customs administration in your country arising from the supply chain security program?
  • Question for supply chain companies only: What are the additional benefits for the supply chain companies in your country, arising from the supply chain security program participations / certifications?

blog 08.05.20162The full list of questions and sub-questions is shared at the end of this blog. In addition, you can download the questionnaire in word-format, in English and in Spanish, at:  https://www.cross-border.org/downloads/

 

 

 

 

 

 

 

 

Why don’t (near) perfect AEO benefit -papers exist yet in the literature? One would think that the topic attracts lots of academics to carry out such research, and to publish their exciting findings, rather sooner than later… Well, it is quite challenging topic to study: where is the objective, non-biased data located, and how do you get access to it? How to deal with all the politics linked to the topic, as maybe many countries would like to be perceived as “leading edge AEO program holders, with a set of fantastic, innovative benefits delivered to the trade and logistics…”? How to differentiate between all the AEO marketing materials and incentive promises from what is actually implemented on the ground, for the real benefit of supply chain companies; and so forth..? To expand on these thoughts, one could revisit our article on the WCO News No 74 of June 2014. The table on page 45 includes a row on challenges and peculiarities with different categories of possible AEO benefits, sharing following observations and notes:

  • As some of the Customs granted benefits existed in many countries before the AEO era, companies which have enjoyed “such pre-AEO benefits” may fear a potential reduction in existing trade facilitation measures – instead of the introduction of truly new benefits.
  • Due to the dynamics in the cross-border flow of goods, outcomes might vary considerably over time – ‘seeing is believing’; in particular, the benefits linked to ‘elevated threat’ and ‘post-incident recovery’, may appear quite theoretical until such situations actually emerge (and the benefits materialize – or, not).
  • Some could also consider that the AEO system may become a technical trade barrier – the ´become an AEO or die´ scenario.
  • Some might think that an AEO program deters crime, as criminals would rather choose an easy target (i.e. a non-AEO target), for example in the case of warehouse theft; and, alternatively, other might think that an AEO program attracts criminals, as they know there are likely to be fewer Customs interventions – the smuggling of narcotics, for example.

 

Blog_080520163Dear CBRA Blog reader: although this is very challenging research topic, and one should not dream of reaching “one ultimate truth out there” – we kindly ask that if you are in Cancun 11-13 May for the 3rd Global AEO Conference, please take 10 minutes to reply the questionnaire..! Next to the good vibrations gained from participation in this highly important study, you will join a lucky drawing of a nice Costa Rican souvenir! In Lausanne, 9 May 2016, Juha Hintsa.

 

 

 

 

 

 

 

PS. List of benefit survey questions, for the CBRA Blog readers:

Customs Supply Chain Security Programs (AEO, C-TPAT etc.) – Survey on Supply Chain and Government Benefits – WCO 3rd Global AEO Conference, Cancun, Mexico, 11-13 May 2016 – Research project by CBRA, ZLC, UCR, HEC UNIL and FP7-CORE

 

Question for Customs administrations, supply chain companies, and all other experts in cross-border supply chains and Customs supply chain security programs: How often are the supply chain security program (AEO, C-TPAT etc.) certified companies in your country benefiting from the following Customs granted incentives?

Use the following scale: Very frequently – Frequently – Occasionally – Rarely – Never / Not applicable in our country (or, this is nothing specific for certified companies) – Cannot say

  • Are companies submitting entry/exit summary declarations with reduced data sets?
  • Are companies benefiting from reduced number of data elements in their final declaration?
  • Are companies benefiting from increased paperless processing of import/export shipments?
  • Are companies offered the option of audit-based / account-based controls (versus only transaction-based controls)?
  • Are companies having access to / pre-qualification with various simplified customs procedures?
  • Are companies self-managing their bonded warehouses?
  • Are companies benefiting from tax privileges, such as speedier tax refunds and compensation?
  • Are companies benefiting from financial guarantee waivers, reductions or rebates?
  • Are companies benefiting from reduction of any Customs fees or charges?
  • Are companies benefiting from access to self-audit or reduced audit programs?
  • Are companies allowed to conduct self-assessments when Customs automated systems are not functioning?
  • Are companies benefiting from designated Customs contact points / assistance by Customs supply chain security experts?
  • Are companies benefiting from training provided by Customs experts?
  • Are companies enjoying easier access to other governmental certification in the supply chain, e.g. in aviation security?
  • Are companies benefiting from the option to manage clearance formalities, inspections etc. at the business site?
  • Are companies benefiting from a minimum number of cargo security inspections?
  • Are companies being notified of the intention to release goods prior to their arrival? (“pre-clearance”)
  • Are companies benefiting from “extended Customs office opening hours”, during high peak / congestion times?
  • Are companies benefiting from choice of place of controls, if selected for control?
  • Are companies benefiting from priority treatment of consignments if selected for control?
  • Are companies benefiting from priority use of non-intrusive inspection techniques when examination is required?
  • Are companies guaranteed a priority Customs processing during a period of elevated threat conditions?
  • Are companies guaranteed preferential treatment at border crossings in post-disaster/post-attack situations?
  • Are companies guaranteed a priority in exporting to affected countries after a security incident?
  • Are companies benefiting from expedited processes to resolve post-entry or post-clearance inquiries?
  • Are companies benefiting from priority response to requests for ruling from Customs?
  • Are companies benefiting from privileges in any kind of non-criminal legal cases?
  • Are companies enjoying tangible benefits due to mutual recognition agreements / arrangements (MRAs) with 3rd countries?

blog 08.05.20164

 

Question for Customs administrations only: What are the benefits for the Customs administration in your country arising from the supply chain security program (AEO, C-TPAT etc.)?

Use the following scale: Strongly Agree – Agree – Neither Agree nor Disagree – Disagree – Strongly Disagree – Cannot say

  • Better overall allocation of governmental resources
  • Improved indirect tax revenue collection
  • Improved prevention of trafficking and illicit trade
  • Improved detection and/or seizures in trafficking and illicit trade
  • Improved prosecution to judgements -ratio (= higher percentage of successful prosecutions)
  • Increased confiscations of criminal assets and/or proceeds of crime
  • Improved collaboration with supply chain companies
  • Improved collaboration with other national government agencies
  • Improved international collaboration with Customs administrations in other countries

 

Question for supply chain companies only: What are the additional benefits for the supply chain companies in your country, arising from the supply chain security program participations / certifications (AEO, C-TPAT etc.)?

Use the following scale: Strongly Agree – Agree – Neither Agree nor Disagree – Disagree – Strongly Disagree – Cannot say

  • Improved customer service
  • Improved customs loyalty
  • Increased market share/ gaining more new customers
  • Improved security commitment of employees
  • Improved company image and credibility
  • Reduced overall vulnerability of the supply chain
  • Improved supply chain resiliency
  • Reduced cargo theft incidents
  • Reduced tax fraud incidents
  • Reduced illicit trade / trafficking incidents
  • Reduced insurance fees
  • Improved inventory management
  • Fewer delayed cross-border shipments
  • Reduced lead time variability in the cross-border supply chain

blog 08.05.20165

 

PPS. Related literature by the Cross-border Research Association team and key partners:

Most of these papers are available for download at ResearchGate, https://www.researchgate.net/profile/Juha_Hintsa/publications . And all of them can be naturally requested by email ( cbra@cross-border.org )

Hintsa, J., Mohanty, S., Rudzitis, N., Fossen, C. and Heijmann, F. (2014), “The role and value of customs administrations in minimization of socio-economic negative impacts related to illicit import flows in freight logistics systems- three preliminary cases in Europe – FP7-CORE”, Proceedings of the 9th WCO PICARD Conference, September 17-19, 2014, Puebla.

Hintsa, J. (2013), AEO – MRA Study for RTC- Thailand Europe Cooperation TEC-II, PDSC: Implementation of international standards on Supply Chain Security leading to a secure Trade Environment and to increased Trade Facilitation (Activity Code : TRA 4), Final Report, Bangkok.

Urciuoli, L. and Ekwall, D. (2012), “Possible impacts of supply chain security certifications on efficiency – a survey study about the possible impacts of AEO security certifications on supply chain efficiency”, Proceedings of Nofoma Conference, June 6-8, 2012, Naantali.

Hintsa, J., Männistö, T., Hameri, A.P., Thibedeau, C., Sahlstedt, J., Tsikolenko, V., Finger, M. and Granqvist, M. (2011), Customs Risk Management (CRiM): A Survey of 24 WCO Member Administrations, Study for World Customs Organization (WCO), February 28, 2011, Lausanne

Hintsa, J., Hameri, A.P., Männistö, T., Lazarescu, M., Ahokas, J. and Holmström, J. (2010), ”Conceptual model for measuring benefits of security in global supply chains”, Proceedings of the the 3rd International Conference on Transportation and Logistics (T-LOG), September 6-8, 2010, Fukuoka City.

Hintsa, J., Ahokas, J., Männistö, T. and Sahlstedt, J. (2010), “CEN supply chain security (SCS) feasibility study”, CEN/TC 379 Supply Chain Security, Final report, January 15, 2010

Review of Cargo 2000, C2K – an IATA interest group with the mission of creating and implementing quality standards for the worldwide air cargo industry, 2015 (CORE1043)

Summary: Cargo 2000 is the quality standard for the tracking, measuring general air cargo shipments. It is a project commenced in 1997 and is supported by a self-funded group of the world’s leading Airlines, Forwarders, Ground Handling Agents and specialist IT providers. IATA then provides oversight, administration and facilitation on behalf of the Membership. Cargo 2000 (C2K) uses standard recognized IATA Cargo-IMP (Interline Message Procedures) already used within the air cargo industry to provide reference points for measurement. These are known as FSU (Freight Status Update) messages. The key metrics under C2K are NFD (Notified for Delivery), in which case the destination has received both the physical cargo shipment and the information (paper or electronic) is available for collection by the Agent of the Consignee, and FAP, Flown as planned. In this case, the service delivered matches that which was promised to the customer in terms of timings and flights. In order to simplify and standardize the various processes that support C2K, as it is used by multiple stakeholders in a live environment, the C2K Master Operating Plan (MOP) was completely revised in 2012. The result is a very visual process description that allows every stakeholder to clearly see the part they play in the overall end-to-end routing of the shipment. The visual nature of the schematics, also allows the assessment of any new legislation, processes or procedures to be predicted both up and down the chain. Available to General Pubic at the IATA Website, this standard is hyperlinked here: http://www.iata.org

[s2If is_user_logged_in()]

Full review: Relevance for CORE: The CORE implementation objectives, which specify what will be done and how to reach the vision, are all subject to the Policies, Regulations, and Standards that exist within the Security Domain of the Global Supply Chain. Among all Work Packages of the project, some are directly impacted by the project, while others are solely primarily or secondarily contributed. Among these Work Packages, the CORE demonstrators will validate the applicability and benefits of the CORE approach in representative operating scenarios characteristic of the global supply chain. They will specifically show the way towards a Global Secure Supply Chain. The overriding goal is to demonstrate substantial gains in security and facilitation covering every major facet of the supply chain security sector.

The following CORE Work Packages are directly impacted by the C2K Industry Standards:

  • WP7: CORE Connectivity Infrastructure and Solutions Development Environment – provide an integrated set of tools for developing solutions for the Demonstrators in line with SCSRF utilising results from reference projects particularly e-Freight and iCargo.
  • WP12: Demonstrator Schiphol – apply global data pipeline concept to air cargo supply chains, managing air freight specific trade compliance requirements, and offering supply chain visibility in dashboards. Trade lanes with e.g. Africa, involving multiple inspection authorities.
  • WP17: DHL Demonstrator – managing airfreight trade compliance requirements EU-US in the context of fast supplying of parts. In this demonstrator, Cargo 2000 and mutual recognition with the US will become evident.

The following CORE Work Packages are primarily contributed by C2K:

  • WP14: Demonstrator FALACUS – FastLAne through CUStoms – implement an extensive supply chain of ceramics products along international corridors between Italy and USA.
  • WP15: Decathlon Demonstrator – operational and security related Key Performance Indicators (KPIs) within the CORE framework will be applied to monitor the overall level of security within the supply chain for different supply chain actors Taiwan to retail shop destinations across Europe implementation of this new transit modality and the impact it would have on the overall performance of the supply chain.
  • WP19: Stakeholder Engagement – Knowledge Diffusion and Sustainable Development Specify and apply an inclusive Stakeholder Engagement Strategy emphasising international co-operation to promote harmonisation of regulations, and to support further development and implementation of international standards.

The C2K Standard will have the secondary effects on the following Work Packages:

  • WP3: Multi-method Threat and Vulnerability Analysis (MTVA) Suite
  • WP4: SC Situational Awareness Tools & Maps
  • WP5: Real-time Lean Agile Resilient Green Optimised (LARG+O) SC
  • WP16: ENI Demonstrator
  • WP22: Analysis and Testing of a Secure Hybrid Composite Container

CORE Impact Anticipation: CORE seeks to give consolidated solutions and develop the resilience, optimisation and interoperability of the global supply chain, including Port, Container, Post, Truck, Rail, Maritime and Air. Cargo 2000 contributes thence directly to CORE vision.

Cross References: Introduction to Cargo 2000 by IATA, http://www.iata.org/whatwedo/cargo/cargo2000/Documents/c2k-introduction.pdf

Full Citation: IATA Website, Cargo 2000 Page, accessed 22 September 2014: http://www.iata.org

 

CORE1043

[/s2If]

Three calls for journal and conference papers

This CBRA Blog advertises three important calls for papers in 2016: Special Issue for Journal of Transportation Security (to be published in 2017); the 11th WCO Customs-Academia PICARD Conference (Sep.2016); and the 7th European Intelligence and Security Informatics Conference (Aug.2016).

 

1. Journal of Transportation Security, Special Issue: Enhancing supply chain security through government-to-government and government-to-business partnerships and collaboration

Journal of Transportation Security (JTRS): The 9/11 terrorist attacks and the subsequent events have compelled stakeholders to understand transport security as more than a single element of the global networks that move people and goods. Once a routine component of modern transportation, security now represents a vital necessity and an urgent national priority. The Journal of Transportation Security probes the relevant aspects of many critical areas of study, including supply chain and logistics; information technology; public policy; international business; political science; engineering; transportation; economics; and counterterrorism, among others. This journal is the first to take a global, apolitical, and in-depth multidisciplinary look at the field. The mission of the journal is to disseminate new research, thought, and analysis for teachers, researchers, policy makers and practitioners around the world who view transportation security as a critical element in the post 9/11 world.

Partnerships and collaboration play a crucial role in the fight against crime in the global supply chains. Investments in traditional security areas such as physical security, personnel security, and IT security no longer suffice. Both government and business actors should extend their security efforts beyond their organizational boundaries, by fostering relationships with each other. Further government-to-government and government-to-business collaboration has a great potential to improve security of the supply chain and regulatory compliance of the trading community, while facilitating trade and logistics for the legitimate, security aware companies. The scope of collaboration covers a broad range of activities, including sharing of information and data; investing in common resource pools and sharing resources; and agreeing on optimum protocols for conducting inspections and audits in the supply chains. Enhancing the information exchange, for example, would help governments and companies to prevent and detect security breaches in supply chains and to recover faster once the breaches happen. In principle, both government and business actors share a common goal of mitigating crime in the global supply chains. Priorities and procedures, however, differ markedly between various business actors (e.g., shippers, carriers, freight forwarders) and government agencies (e.g., customs, police and transport security authorities).

Call for abstracts for the JTRS Special issue is open until 30 September 2016, please visit: www.springer.com …   

(CBRA / Dr. Juha Hintsa is the lead guest editor for this special issue; and abstract review panel consists of multiple experts in FP7-CORE project).

 

 

2. The 11th Annual WCO Picard Conference – Manila, Philippines – 27-29 September 2016

The World Customs Organization and the Philippine Bureau of Customs are pleased to announce the 11th annual WCO Picard Conference. You are invited to submit your research for presentation at the conference. Papers should focus on Customs or, more globally, the regulation, dynamics, and practices of international trade. Although not required, writers could consider submitting research on the following topics: Digital Customs; security; taxation and other revenue matters; and illicit trade.

blog2104162

 

 

Call for papers is open until 15 June 2016, please visit: www.wcoomd.org…

(CBRA / Dr. Juha Hintsa is part of the Scientific Board for the conference; and he also belongs to the PICARD Advisory Group).

 

 

 

3. The 7th European Intelligence and Security Informatics Conference (EISIC) – Uppsala, Sweden – 17-19 August 2016

Intelligence and Security Informatics (ISI) research is an interdisciplinary field of research that focuses on the development, use, and evaluation of advanced information technologies, including methodologies, models and algorithms, systems, and tools, for local, national and international security related applications. Over the past decade, the ISI research community has matured and delivered an impressive array of research results that are both technically innovative and practically relevant. The 2016 European ISI Conference is the seventh ISI conference to be organized by the European ISI community. The conference was first held in 2008 and has been organized annually since 2011.

blog2104163

 

Call for papers is open until 18 May 2016, please visit: http://www.eisic.eu/call.aspx

(CBRA / Dr. Toni Männistö delivers a keynote presentation on FP7-CORE, focusing on Supply chain security education and training (CORE WP19.1) ).

FP7-CORE Education – Two new diagrams

Today’s CBRA Blog presents two new diagrams which have been recently designed and developed in the context of FP7-CORE Education and training work (Work package 19.1). The information visualized in the diagram is based on CBRA’s supply chain security research work since year 2001, particularly from the past 5-6 years.

Some background information on the first diagram of crime types in global supply chains has been presented before for example in CBRA’s Blog of 13 October 2014 – Crime taxonomies from Athens. In the center of this diagram we list the crime types – including document fraud and cybercrime – which in the supply chain criminal context are performed in order to succeed with the actual economic or ideological crime, e.g. cargo theft or terrorism.

The left area of the circle lists four examples of crime types, which typically are of primary concern for supply chain companies: cargo theft, sabotage, parallel trade and product specification fraud. With such crime types it is commonly up to the companies to prevent, to detect and to react – of course, law enforcement agencies can be called for any time there is reasonable suspicion of such activities (and naturally in certain cases the government agencies may even be the first ones to detect and react, e.g. in case of armed robberies and truck hijackings).

The right area of the circle deals with supply chain incidents where the authorities typically focus on prevention, detection and reaction: fraud in indirect border taxes; trafficking / violations in cross-border restrictions and prohibitions; human trafficking; and exploitation of illicit labor. From supply chain perspective one can characterize them as “a priori non-disruptive illegal activities – only if / after authorities detect the violations, the supply chain is disrupted and the involved supply chain companies can get in trouble”.

Lastly, on the bottom area of the circle, we list four supply chain crime areas where the prevention typically is in strong interest of both supply chain companies and governmental agencies – and, the detection and (instant) reaction varies on case-by-case basis: counterfeiting, sales channel violations, sea piracy and terrorism. Counterfeiting hits revenues on both sides of the equation, and, with many products can also be health damaging or even lethal. Not having proper sales licenses, and/or selling to unauthorized buyers – for example cigarettes and alcohol, dual use and strategic goods etc. – can again harm both the involved companies and the society as a whole. And of course, sea pirates hijacking cargo ships; bombs exploding and bringing planes down; and terrorists attacking critical supply chain infrastructures, all are in the best interest of both companies and government agencies to prevent, to detect, and to react – in the fastest and most effective possible manner.

blog10.03.161

The second new educational diagram below depicts the negative socio-economic impact areas – six in total – caused by twelve typical smuggling and trafficking activities. The data behind it has been presented before e.g. in CBRA’s Blog of 14 January 2015 – Socio-economic damages. Inside the square we present the six societal impact areas – the larger the area, the more links there are between the trafficking activities and the negative impacts. As an example of a “big area”, seven different types of trafficking typically lead into increasing market place distortions and/or unfair competition. In the other extreme, only trafficking in stolen cultural products leads to losses in cultural heritage.

blog10.03.162

That’s all for the CBRA Blog today – please let us know if you see this type of visualization as beneficial when teaching and learning about the big picture of supply chain security!  Thanks, Juha Hintsa ( email: cbra@cross-border.org )

Revisiting the Yemen bomb plot of 2010

blog_070316This CBRA blog revisits the Yemen bomb plot from 2010, the most decisive turning point in modern air cargo security. More than five years after the events, this blog discusses the plot’s implications to the contemporary air cargo security and outlines CBRA’s recommendations for future security work. Parts of this blog text have already been published in the doctoral thesis of CBRA researcher Toni Männistö.

Two explosive devices aboard passenger planes: The series of events, that we call the Yemen bomb plot, took place on 29 October in 2010. On that day, al-Qaeda terrorists almost destroyed two passenger airplanes with a pair of express courier parcels, each enclosing plastic explosives hidden inside a printer toner cartridge. The explosive parcels where sent to Chicago from the capital of Yemen, Sana’a, via two different express courier operators.

Both parcel bombs were eventually intercepted and defused, without fatalities or injuries. But before the interception, the bombs had already travelled onboard multiple air freighters and passenger planes. Many people flew that day with a fully functional explosive device under their seat! Though the parcels were addressed to Chicago, officials think that terrorists wanted to detonate the bombs mid-air, just before landing using cell phone timer alarms.

A Lockerbie-style mayhem was slightly avoided, largely thanks to a timely piece of intelligence. The bomb plot started to uncover when a suspected double agent tipped Saudi-Arabian intelligence that al-Qaeda terrorists had shipped two parcel bombs from Yemen to the US via the express courier service. The Saudi intelligence forwarded the tracking numbers of the suspected explosive devices to their US and German colleagues and told them to look for printer toner cartridges.

The first parcel was intercepted in Dubai, and the second one at the East Midlands airport, nearly 200 km to the northwest from London. In the UK, a bomb squad did not first recognize anything suspicious when they screened the suspected parcel. “It looked like a printer cartridge – there were no wires or anything,” one of CBRA’s contacts at World Customs Organization (WCO) recounts. “But of course, what the cartridge did contain was explosive that current technologies couldn’t detect.” Later laboratory tests revealed that each parcel contained 300 to 400 grams of PETN, military grade plastic explosive, wirings, and a detonator hidden inside a printer’s toner cartridge. The bombs were so meticulously concealed that they had not only passed the standard air cargo and safety screening but also the special screening of the bomb squad.

Aftermaths: The Yemen incident was rude reminder of the vulnerability of the air cargo logistics to terrorism. Sure, the day was saved by old-school, field intelligence work and prompt government response. But before interception, the first parcel travelled aboard three different flights: Sana’a – Dubai, Dubai – Cologne, and Cologne – East Midlands Airport. The second explosive parcel flew first from Sana’a to Doha and then to Dubai where it was intercepted.

In the immediate aftermaths of the events, aviation security authorities in the US and many European countries stopped accepting freight shipments from Yemen. Germany also cancelled all passenger flights from Yemen for more than two weeks. “As often happens in these situations,” the WCO’s air cargo specialist remarks, “the first reaction was stopping anything coming from this part of the world – any plane for any reason.” The new security rules changed the air cargo operations virtually overnight, seriously disrupting the air cargo and mail service. Delays were widespread and lengthy, but the worst aspect of the disruption was that no one knew when the new apparently transient security regime was to be revoked.

Eventually, once the precautionary stoppage was ended, new unprecedentedly stringent security requirements entered into force, disrupting the air cargo and mail service further. The US Transportation Security Administration, TSA, introduced the most stringent rules: any mail originating or transiting through Somalia or Yemen was banned, as well as printers or printer toner cartridges from high-risk locations. Moreover, parcels originating from any business partners had to be screened up to high-risk screening standards, piece by piece, if such shipment did not accompany a tendering statement, a document assuring that cargo comes from a known and trusted shipper. The new regime disrupted seriously international air cargo logistics, causing air cargo shippers worldwide to accumulate huge backlogs of US-bound shipments. Annoyed and surprised about the turn of events, the air cargo industry reacted to the US rules with a barrage of criticism, calling the measures superfluous and impractical. Over the following weeks, the reactive security rules were gradually relaxed to enable clearing of the backlog of US-bound air cargo.

In the long term, the Yemen events put air cargo security into a spotlight, securing political commitment and spurring further reforms for years to come. The International Civil Aviation Organization, ICAO, for example, included advanced security, concepts such as the “secure supply chain” principle, the concept of high-risk cargo and mail, and the consignment security declaration, CSD, into the new edition of the Annex 17 of the Chicago Convention. Also the European Union expanded the EU air cargo regime to cover airlines operating into the EU aviation security area – EU-28 plus Switzerland, Norway and Iceland – from third country airports. The amendment also specified criteria for identifying and screening high-risk cargo and mail, known as HRCM.

CBRA considerations for future air cargo security: The modern air cargo security has taken major leaps since the Yemen incident, but the work towards higher air cargo security still continues. The CBRA research team considers that, like in any other area of supply chains, it is crucial both to facilitate cross-border logistics and to ensure adequate security. This classic dilemma of striking the balance between trade facilitation and supply chain security is not easy to solve, but we believe that there are some promising ways to promote logistics-friendly air cargo security.

Governments should normally consult the air cargo industry before introducing new security rules. New security rules should avoid reducing speed, on-time reliability, or cost-efficiency of the air cargo service. There are often ways to integrate new security requirements seamlessly into the sequence of day-to-day logistics activities, but this requires close government-business coordination.

One promising way forward is to improve capabilities of pre-loading risk assessment, so that the riskiest air cargo shipments can be identified early on and subjected to a more stringent screening. Many projects on this matter are under way, most notably the Air Cargo Advance Screening (ACAS) in the US and Pre-loading Consignment Information for Secure Entry
 (PRECISE) in the European Union. The CBRA team applauds these efforts of advancing risk assessment and reminds of the importance of proactive updating of risk-scoring algorithms.

EU’s decision of forcing flights from third countries into EU to comply with EU’s air cargo security regime makes also good sense. It is reasonable to secure air cargo up to an adequate standard sooner rather than later, preferably before the first flight. More global capacity building – especially training and funds for modern screening equipment – are needed in developing countries. Also, auditing activities in third countries would benefit from further resources.

Harmonization and mutual recognition is another key theme for years to come. In the EU, civil aviation and customs authorities might find some synergies if they harmonized their respective Known Consignor (KC) and Authorized Economic Operator (AEO) programs. Air cargo companies would also benefit if types and performance requirements of screening methods would be uniform across the members of the European Union.

Bibliography:

BBC, Q&A: Air freight bomb plot, 2 November 2010

European Commission, Regulation 173/2012, amending 185/2010

International Civil Aviation Organization, Chicago convention, Annex 17, 9th edition

Koolloos M.F.J., Männistö T., van der Jagt O.C., Jezierska M.M., Hintsa J., Kähäri P. and Tsikolenko V. (2015), Security Screening for the Air Express Cargo Industry, Final Report, Brussels, Belgium.

Männistö, T., 2015. Mitigating Crime and Security Risks in the International Logistics Network: the Case of Swiss Post. Doctoral thesis, École Polytechnique Fédérale de Lausanne (EPFL).

CBRA Blog by Dr. Toni Männistö

C-TPAT Program Benefits Reference Guide, 2014 (CORE1032)

Summary: This guidebook outlines the key elements and benefits of the Customs-Trade Partnership Against Terrorism (C-TPAT) program that is designed to secure global supply chains and to improve United States border security. Document is available at: https://www.cbp.gov/sites/default/files/documents/C-TPAT%20Program%20Benefits%20Guide.pdf (link tested on 3 March 2016)

[s2If is_user_logged_in()]

Full review: C-TPAT partners receive a wide range of benefits listed below:

  • C-TPAT Partners are examined at a considerably lower rate than non-C-TPAT Partners.
  • C-TPAT certified/validated highway carrier Partners are granted expedited border crossing privileges. C-TPAT Partners at many Canada/Mexico land border ports of entry have access to Free and Secure Trade (FAST) Lanes.
  • Some categories of C-TPAT importer Partners are exempt from stratified exams.
  • C-TPAT shipments subject to examination are moved ahead of any non-C-TPAT shipments, to the extent possible.
  • In the event of a significant disruption/delay in cargo processing operations, actions are taken to maintain communication and coordination with C-TPAT Partners for business resumption.
  • C-TPAT Partners’ trade compliance issues are given priority over those issues related to non-C-TPAT Partners.
  • Each C-TPAT Partner is assigned a Supply Chain Security Specialist (SCSS) who coordinates between the C-TPAT Partner and the US Customs and Border Protection agency (CBP). The Specialist also assists the Partner with supply chain security issues.
  • Partners have access to the C-TPAT’s automated Portal system, to communicate with CBP and exchange program related information in a secure manner.
  • C-TPAT Partners are eligible to attend C-TPAT events like the annual Conference and other training seminars organized by the program.
  • C-TPAT importer Partners are eligible to participate in the Importer Self-Assessment (ISA) Program.
  • The Penalty Mitigation benefit is granted to sea carriers for late submission of data required under the Importer Security Filing requirements.
  • C-TPAT members are eligible to participate in other U.S. Government pilot programs, such as the Food and Drug Administration’s Secure Supply Chain program.

In addition, some benefits are associated with Mutual Recognition Arrangements (MRAs) when two customs authorities formally acknowledge the security requirements or standards of one program, as being equivalent to the other program. Some of the resulting benefits to the trade community are illustrated below:

  • C-TPAT importer Partners that also conduct export operations and Partners of the foreign Customs Administration programs (manufacturers and exporters of record) are granted a reduction in their overall cargo risk score, implying fewer examinations at export and import ports.
  • A C-TPAT validation for an overseas partner is not required if an MRA is in place because CBP recognizes the status of the Partner in the foreign partnership program.
  • Companies covered by MRAs need only to comply with a common set of security requirements, avoiding the hassle of following multiple sets of requirements from one partnership program to another.
  • MRAs lead to more transparency in international commerce. Mutual exchange of information between these partners facilitates trade across Mutual Recognition Partner nations.

CORE1032

[/s2If]

C-TPAT Best Practices Catalog Addendum, 2009 (CORE1031)

Summary: This addendum document lists cargo security best practices with focus on prevention of weapons of mass effect, terrorists, and/or contraband from infiltrating into the international supply chain. Each best practice is linked to a specific business entity, such as a Manufacturing Company, a Highway Carrier, an Importer or a Foreign Consolidator but these may apply to other business types as well. The document is available at: https://www.cbp.gov/sites/default/files/documents/ctpat_bpa_2009_0.pdf (link tested on 3 March 2016)

[s2If is_user_logged_in()]

Full review: The best practices are outlined as follows:

Risk assessment: Programs are in place to enable the identification of the most vulnerable supply chain areas, to grade suppliers supply chain security criteria. Specific processes have been developed to manage the supplier’s products, software and services and internal monitoring systems to enhance the safety and security procedures.

Business partner requirements: Several security measures have been taken by entities. These include conducting supply chain security audits to ensure compliance of non-C-TPAT business partners; carrying out security audits of a foreign manufacturer; making security self-assessments, conducting onsite inspections to ensure freight security; shipping cargo only through accredited ports and steamship lines; monitoring compliance of manufacturing facilities; screening procurements to identify ineligible status of suppliers, and performing audits of business partners.

Conveyance/Container/Trailer Security: Examples of such security practices are: integrating special security features in the GPS (global positioning system); using laser beams to protect trailers; using colour codes for matching consignments; installing infrared sensors in docks to prevent unauthorized access; using special codes to identify correct shipments; documenting all seal changes for shipments in transit; ensuring delivery by authorized Company drivers; sealing containers; operating through C-TPAT carriers; using only “seaworthy” containers; installing in-transit temperature data sensors to ensure product quality; enclosing container storage area; conducting non-intrusive inspection prior to loading a vessel; establishing specific inspection points; using multiple security devices on each container; using automated container yards; instructing foreign suppliers to provide inspection checklists; using dock locking arms for container storage; installing motion sensors in a trailer; operating through contracted highway carriers and security services; documenting a seal destruction policy, and so forth.

Physical Access Controls: Some practices by Importers include establishing multiple security stations within the building; using metal detectors for employees; installing an electronic swipe card/ lock box systems for access control for sensitive documents; conducting electronic scanning of visitors’ drivers licenses; utilizing a third-party software system to manage key inventory; and providing panic buttons for company employees.

Physical Security: Several innovative solutions have been designed to ensure physical security, such as electronically closing gates and activating tire puncturing devices to prevent vehicle exits; using an electronic security information reporting system, installing invisible electronic fences; installing laser sensors; setting up optical light beams to detect intruders; fitting double locks on doors; Installing infrared sensors on fences; using body alarm functions for emergencies; appointing patrolling guards, using multiple glass meeting rooms; using multiple interior infrared security alarm beams to detect unauthorized access; and installing security guard view towers.

Personnel Security: An Importer requires business partners to provide a monthly master list of employees and immediately notify when their employees are hired or terminated, in order to ensure that only authorized business partner’s employees enter the manufacturing facilities.

Security Training/Threat Awareness/Outreach: Business entities have invested in a wide range of training programs. One such initiative is the four-tier C-TPAT training targeted for management and supervisors, shipping and receiving personnel, internal personnel dealing with contractors and hourly staff. Other businesses use different approaches, like establishing an online training portal;; offering general security training and of site-specific training for security guards; issuing security advisories; making regular security awareness assessments; establishing a situation matrix chart to address possible incidents; establishing a direct communication channel between the president of the company and employees; putting in place a toll free hotline for company personnel; conducting security drills and exercises; establishing a web-based security awareness training; documenting security incidents in a central database; and establishing a global communication system to contact all employees and contractors remotely.

Procedural Security: Instances of this type of security measures include a bio-thermal intrusion alarm system; a global SAP network to generate all written orders for import and export; automatic screening procedures of purchase orders for restricted parties; lock boxes for sensitive documentation; an automated loading module called the Automatic Truck Loading System (ATLS); a container seal number as the shipment tracking (invoice/bill of lading) number, and so forth.

Information Technology (IT) Security: Such security practices include a biometric fingerprint door lock; a remote data backup center; a retina scanning system for access to the computer system; requiring supervisory approval to copy data; use of electronic password protected purchase orders; establishing a daily “e-test” for employees to access computers, and so forth.

CORE1031

[/s2If]