I527-290 ESRIF Final Report (WEB).indd - European Commission
I527-290 ESRIF Final Report (WEB).indd - European Commission
I527-290 ESRIF Final Report (WEB).indd - European Commission
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
186<br />
We need to develop appropriate business cost models to manage how such matters will be paid for: who will be the service<br />
provider and hence will governments, airports or the citizen end up footing the bill? There are a number of projects and<br />
jurisdictions where we can and should learn lessons from, such as our own EU systems. As already stated, once the initial cost is<br />
overcome, these systems can drastically reduce operational costs. This important aspect should also be detailed in the related<br />
business cases.<br />
In summary some of the key capabilities and gaps are as follows:<br />
Lack of eff ective planning and the need to factor in Change Management from the start<br />
Need to consider appropriate and new business models focused on effi ciency and cost reduction<br />
Develop new and required standards for key identity management matters such as interoperability and other matters<br />
8.3.2.2 Deployed infrastructure are not using all electronic security features deployed into secure ID documents<br />
People may hold secure electronic identity documents while the legal infrastructure is neither adopted nor deployed. E-Passports<br />
are a good example: they are already deployed in Europe even though border controls are not able to verify such an electronic<br />
document. The verifi cation is almost always visual. Over 60 countries have started issuing e-passports, and there are around 100<br />
million e-passports in circulation, but less than 10 countries 11 eff ectively use readers able to read the data from the chips.<br />
The potential reasons for this situation might be that countries wait for the EAC and are put off by the slow reading times<br />
(7s for older chips). That’s why it is important to concentrate the eff ort both on the generalization of EAC and on the system’s performance.<br />
The potential reasons for this situation might be that countries wait for the EAC and are put off by the slow reading times<br />
(7s for older chips). That’s why it is important to concentrate the eff ort both on the generalization of EAC and on the system’s performance.<br />
A similar situation can also be considered with e-ID cards. Many countries in Europe have already started to issue e-ID cards<br />
but these cards are not used as widely as they could.<br />
The reasons for that are probably similar to the ones mentioned for the e-passports with the addition of the lack of interoperability<br />
among countries. Establishing a standard, or using an existing one like EAC, is necessary.<br />
8.3.2.3 Better usage of API/PNR and ESTA<br />
As already mentioned, in the future global border control scheme, we need to move the border controls from reactive to proactive. This<br />
can be achieved via a connection to a secure information system (through companies operating fl ights or through a special secure<br />
connection), so that passengers will be checked by the authorities during the fl ight, and only those who need a more accurate control<br />
at the border will be actually and physically checked. Solutions such as Passenger Name Record (PNR), Advanced Passenger Information<br />
(API) and Electronic System for Travel Authorization (ESTA) already exist and should be more widely used to achieve this goal.<br />
In the travel industry, a PNR is a record in the database of a Computer Reservation System (CRS) that contains the travel<br />
record for a passenger, or a group of passengers travelling together. The concept of a PNR was fi rst introduced by airlines that<br />
needed to exchange reservation information in case passengers required fl ights of multiple airlines to reach their destination<br />
(‘’interlining’’). For this purpose IATA defi ned a standard for the layout and content of the PNR.<br />
The border control authorities could use the PNR to perform detailed checks and risk profi ling on all the travellers as the PNR<br />
long before their actual arrival in the country.<br />
The APIS is a system established to enhance border security by providing offi cers with pre-arrival and departure manifest<br />
data on all passengers and crew members. The information in the APIS is recorded when the passenger boards the plane.<br />
With better use of APIS, part of the border control could be moved to the point of departure of the passenger so that those<br />
who would anyway be denied entry at their destination would not even obtain authorisation to board the plane. It is also<br />
interesting to note that industry is supportive of capturing API and PNR data.<br />
11 Edgar Beugels, Frontex, presentation at Security Document World Conference, London 2009<br />
<strong>ESRIF</strong> FINAL REPORT - PART 2 • Working Group: Identifi cation of People and Assets