Principles to Manage Aviation’s Security Challenges
Kuala Lumpur (Malaysia) – November 3, 2016 (travelindex.com) – The International Air Transport Association (IATA) called on industry and governments to work together in an even stronger partnership to provide durable solutions to aviation’s security challenges. These efforts, which must be based on common principles, include such areas as overflying conflict zones, landside security at airports, insider threats, cyber security, harmonization of PNR (passenger name record) and API (advance passenger information) requirements and airport checkpoints.
“Aviation is the ‘business of freedom’—a catalyst for social and economic development that improves people’s lives. Paradoxically, the good that aviation brings also makes it a target for terror. No single entity has all the answers. That’s why partnerships are essential to address our major security challenges with the speed needed to stay a step ahead of those who would do our industry harm. These efforts must keep four common principles in focus: risk-based measures, the implementation of global standards, capacity building to support the mutual recognition of standards, and information sharing among governments and with industry,” said Alexandre de Juniac, IATA’s Director General and CEO.
De Juniac’s comments were made in an opening speech to the 25th AVSEC World conference in Kuala Lumpur, Malaysia. AVSEC World is being hosted by Malaysia Airlines and jointly presented by IATA in partnership with the International Civil Aviation Organization (ICAO) and Airports Council International (ACI).
Principles and Speed
Four principles to guide the cooperative security efforts of government and industry were elaborated:
– Risk-based measures to ensure that limited resources are applied where the threats are greatest.
– Information sharing among governments and with industry to enable effective risk-assessments.
– The implementation of global standards in security systems worldwide to support effective collaboration between all parties in all locations.
– Capacity building supporting the mutual recognition of standards to improve effectiveness and efficiency.
De Juniac also emphasized the necessity of speed in keeping the industry secure. “Speed is of the essence. Threats emerge quickly. And they evolve fast. The four principles will help us to address the threats and challenges we face, but only if we move quickly enough,” said de Juniac.
Applying the Principles to Our Main Challenges
IATA identified six priority areas for addressing security challenges:
Conflict zones: Timely and accurate information is needed to support risk-assessments when overflying conflict zones. “The ICAO conflict zone information repository was an initial step. But it is not the solution. We need to evolve to a system that can function on a continuing basis with a free and fast flow of useful information. Information sharing is not just about conflict zones. If a government has any information about a risk to an airline’s operation, sharing it with the airline could save lives. There is a responsibility to get that information to the airline quickly and by effective means,” said de Juniac.
Landside security in airports: Recent attacks in Brussels and Istanbul have brought this vulnerability to the fore. Local authorities must use intelligence to keep terrorists far away from airports and keep public areas free from threats. In parallel the industry is working on solutions to reduce risk by processing passengers more quickly.
Insider threats: “With eight million people employed in air transport, the threat from insiders is a real challenge. The perfect vetting system has yet to be invented. So intelligence analysis—from governments—is our most potent tool to identify threats especially from radicalization,” said de Juniac.
Cyber security: Nimble layers of protection—security culture—and advanced detection capabilities are needed. All of these must be powered by intelligence and information sharing. Cooperation with governments and across the industry is essential.
Harmonization of API and PNR information requirements: Airlines contribute to intelligence gathering through the collection and provision of API and PNR information. Global standards exist for the collection and provision of this information. These are maintained by IATA and the World Customs Organization, and ICAO. “Despite the global standards for API and PNR, there are still far too many exceptions on what data is collected and how it is transmitted to governments. The complexity does not make us more secure. In fact, it could lead to risk. The situation is already difficult enough. And it could get much worse. There is already an impasse on PNR and European data privacy requirements which puts airlines in a difficult situation. Moreover, there is no overall international agreement spelling out obligations for handling the exchange of such information,” said de Juniac.
Security checkpoints at airports: Airport checkpoints must be both effective and convenient—the goal of the joint IATA-ACI Smart Security initiative. “Processes have improved, but can still be inconvenient and even intrusive. Smart Security is helping with a growing footprint at airports. But we need to see much faster progress,” said de Juniac.
Real threats
“Security is fundamentally a government responsibility. But making flying ever safer and more secure is engrained in the DNA of all air transport stakeholders. Governments and industry are working together to strengthen our defenses with integrated solutions in the face of evolving security threats,” said de Juniac.
In September a UN Security Council Resolution noted that, “terrorist groups are actively seeking ways to defeat or circumvent aviation security.” The resolution affirmed that “all states have a responsibility to protect the security of citizens and nationals of all nations against terrorist attacks on air services operating within their territory”.
IATA (International Air Transport Association) represents some 265 airlines comprising 83% of global air traffic.