Ss Symbol Technologies Security Forum - Airline Security Michael Attar SITA Airport and Desktop...

Ss

Symbol Technologies Security Forum - Airline Security

Michael Attar SITA Airport and Desktop Services Director Technical Design

Who is SITA ?

SITA is a Leading provider of IT solutions to the Air transport Industry

– Common use systems for passengers and baggage– Systems Integration– Resource management and Signage – Global Networking

Move

SITA Security Enablers

– Passenger Processing CUTE and KIOSK

– Baggage Reconciliation IBRIS and CUBES

– Global enterprise Campus LAN/ Airportnet WAN Logistics/Support

CUTE System Attributes

Adaptable / Global Compatibility– Globally Compatible

200+ CUTE Sites World wide 22,000+ Workstations

– Adaptable Development platform Supports 280 end user

developed applications Standards Based Solutions

– IATA,AEA, IEEE,ISO ect

Airport Security Overview

Solution Dependencies – Politics ….????

– Funding…!!!!

– Operational Practicality and Cost

Passenger Security - Overview

Security Opportunities

Steps to Realizing these Opportunities

Background : Airport IT Profile

Solution Characteristics (Key to success)

Solution Components

Passenger Security

Security Opportunities

– Terrorist Screening

– Passenger Validation

– Passenger Identification

Security Opportunities – Terrorist Screening

– Scanning and matching ALL faces is not possible Matching faces to a Known list is as follows:

– Approach Standard Collections Points with Camera Common server with existing LAN to store images

and execute comparison algorithm WAN for updates to target list

Security Opportunities – Terrorist Screening

Issues:– Logistics

Official Terrorist Comparison List Update and distribution methods No Challenge point

– Technical Considerations Positioning of cameras Trouble with Dark Skin and Facial Orientation Scalability ( how many faces?)

Security Opportunities

– Passenger Validation – Validate the person who checked in is the one transiting

the airport and boarding the plane

– Approach: Capture a biometric and a search key during Checkin Challenge point is Checkin Agent dependent Store data to a Common Server or encoded on

Boarding Pass. Check biometric at Security & Gate during boarding

Security Opportunities – Passenger Validation

Issues:– Logistics

Public acceptance to Biometrics capture Only requires “VALID ID”

– Technical Considerations ATB encoded Images are low quality No Standard Quiet Zone on ATB for Barcode Security Checkpoint Must support all airlines

Security Opportunities

– Passenger Identification– Issue Travel Cards with Multiple Biometric signatures

– Approach: Pre-screen all bio card holders Challenge Point is a Government Agency Opportunity to expedited checkin and boarding

process Utilize Security Staff to focus on Non-Bio card

holders

Security Opportunities

– Passenger Identification Issues:

– Public acceptance and Cost of cards– Issuance authority

Technology Considerations – Use Smart Cards with Digital Certs to secure data– Flexible: Can hold numerous Biometrics – Can store Airline frequent flier data– Potential to significantly expedite travel

Realizing the Opportunity – Airport IT Profile

IT responsibility is spread amongst numerous group, departments and companies

Lack of cohesive planning– Isolated Networks

different manufactures varying CORE Capabilities of Networks single purpose equipment

Characteristics of the successful Security Solution

Consistency of Operation– High Availability and accuracy

– Baseline of uniformity across airports

Scalable Components – Must address Tier 1-4 airports

– Potential for off-airport use

Ability to Leverage existing Infrastructure

Characteristics of the Successful Solution

Ability to Accommodate Diverse requirements

– Local Laws or Physical constraints – Various Input devices or screening methods

Capability to Share data – Locally within airport systems– Centrally / Globally interchange

Solution Components

Standard Data collection/retrieval points

Common Secure Transit Network

Interoperable Data Repository

Adaptable logic / rules based

Solution Components

Data collection/retrieval points– IATA RP 1797 (Common Use Terminal Equipment)

Standard PC with Serial or USB interfaces Accommodates various biometrics Customer facing at Checkin/Gates Multi-user, Multi-functional terminals Inherent Lan/Wan connectivity

Client HardwareClient Hardware

MSR /LSRMSR /LSRCAMERA CAMERA

Finger Print Finger Print

TurnstileTurnstile

ATB PrinterATB Printer

BTP PrinterBTP PrinterGate ReaderGate Reader

Document PrinterDocument Printer

Solution Components

Common Transit Network

– Must be SECURE and RELIABLE

– Provide Global Presence

– Internet Like Service IP protocols only Any to Any or Controlled connectivity

CUTE DATABASE

XSGW

AirlineIP VPN

CUTE

AA GW IPXNb GW

X25Airline

ALC/UTSPN

MTN

Router

Intranet Connect

Community 2

GLOBAL IPInfrastructure

Customer A Customer B

Customer D

Customer B

Customer C

Network Concept

Community 1

AirportNet

Airline intranetAirline DCS

Airline intranetAirline DCS

Airline intranet

Airline DCS

management centers

Airport 1

Airport 2

CUTE

CUTE

CUTE

Airport 3

Global SITAIP network

SBRAirport

CPE

AirportCPE

AirportCPE

SBR

SAR

SAR

BR’s

SAR SAR

Communityof Airports

Solution Components

Interoperable Data Repository– Collect and compare data locally

– intra-airport security

– Collect and correlate data globally – inter-airport security

– Standard DATA formats– Opportunity to leverage XML

Solution Components

Adaptable Logic / rules based

– Customization to meet local needs

– Screening criteria can be targeted to risk

– Enables innovative developments

Camera <Image>BioMouse <Fingerprint>Iris Scan <Image>Other <Other>

Checkin

Security(Global)

Boarding(Airline X)

ATB <Magnetic Stripe><Barcode>

License <Barcode>Passport <OCR>Other <Text>

Biometric Data Input

Key Input

Key Input = ATB,<Mag Stripe><Bar Code>

Biometric = FingerprintInput Iris Scan

ATB <Magnetic Stripe><Barcode>

License <barcode>Passport <OCR>Other <Text>

DepartingPassengerDatabase

Key + BiometricData

Response

Key Input

Image

Yes or No textbased response

Response

Checkin(Airline X)

Key Input

Image

Yes or No textbased response

`

`

External Links ?

Airport Airport

DepartingPassenger DB

ArrivingPassenger DB

Intra AirportPassenger DB

Global IPNetwork

ImmigrationImmigration

Airline AirlineCheckin

SecurityBoarding

Recheck -Transfer

Security

Campus Network Logical Design

Thank you

QUESTIONS???