G2TT
来源类型Report
规范类型报告
DOIhttps://doi.org/10.7249/RR3096
来源IDRR-3096-DHS
The Risk-Mitigation Value of the Transportation Worker Identification Credential: A Comprehensive Security Assessment of the TWIC Program
Heather J. Williams; Kristin Van Abel; David Metz; James V. Marrone; Edward W. Chan; Katherine Costello; Ryan Bauer; Devon Hill; Simon Veronneau; Joseph C. Chang; et al.
发表日期2020-05-13
出版年2020
语种英语
结论

The vetting standards might be appropriate, depending on stakeholder intent

  • The security threat assessment (STA) would detect known or suspected terrorists who seek to legally gain persistent access to the maritime environment.
  • The federal government and industry might have different objectives in determining risk, with the former focused on national security, the transportation sector, and terrorism and the latter also concerned about profits and worker safety.
  • A single vetting standard must apply to the entire population working in the maritime sector, and facility management can adopt additional criteria beyond TWIC vetting standards to satisfy a facility's specific security needs.

Electronic biometric card readers would probably cost industry more than benefit it under the pending rule

  • Readers are ultimately costly and mitigate only certain types of threats, forcing facilities to prioritize a source of vulnerability that might not be the most jeopardizing in their specific circumstances.

Electronic biometric card readers can mitigate some kinds of risk

  • TWIC is stronger against attacks requiring persistent insider access than against those requiring one-time or no access.
  • People more often gain unauthorized access to facilities via other means than by using invalid TWICs.

Further enhancing TWIC requirements would come at significant costs, which are likely to exceed the commensurate benefit

  • There are likely more cost-effective methods of reducing the risk that maritime facilities face.
  • There might be lower-cost options to bring greater security value from the TWIC program as currently implemented, such as a mobile application to allow facilities to check the Canceled Card List at essentially zero cost.
摘要

The Transportation Worker Identification Credential (TWIC®) is one of multiple measures that the Maritime Transportation Security Act (MTSA) introduced to enhance security at U.S. ports. Anyone with unescorted access to a secure area at an MTSA-regulated facility, vessel, or outer continental shelf (OCS) facility must have a TWIC. Congress established TWIC to help prevent transportation security incidents. TWIC's primary function is to establish that the holder has passed a Transportation Security Administration (TSA) security threat assessment (STA); the TWIC card can also serve as identification.

,

Each secure area at each regulated location must maintain an access control program and verify three things at every access point: identity, presence and validity of the TWIC card, and whether the person has a business purpose at that facility. Currently, facilities are required only to conduct visual verification of the TWIC card, either at each time of entry or at time of enrollment into a facility physical access control system (PACS). A pending regulation, which we call the TWIC-reader rule, would require that any high-risk facility electronically inspect the card and, using biometrics, match it to the holder.

,

The governing legislation requires that an assessment of TWIC determine the program's value in mitigating the risk of terrorism and crime at ports. The U.S. Department of Homeland Security commissioned the Homeland Security Operational Analysis Center to complete that comprehensive assessment. In this report, the authors establish factors that increase or decrease TWIC's security value and determine what TWIC's value would need to be to offset the costs of establishing further access control requirements for facilities.

目录
  • Chapter One

    Introduction

  • Chapter Two

    Background on the TWIC Program and Maritime Facilities

  • Chapter Three

    Previous GAO and OIG Concerns About the TWIC Program

  • Chapter Four

    Security Threats to the Maritime Environment

  • Chapter Five

    The Risk-Mitigation Value of the TWIC STA

  • Chapter Six

    TWIC Use at Maritime Facilities

  • Chapter Seven

    TWIC's Limits in Addressing Risks to Maritime Security

  • Chapter Eight

    A Cost-Effectiveness Analysis of the TWIC-Reader Rule Requirements

  • Chapter Nine

    Alternative Models and Redundancies

  • Chapter Ten

    Conclusion

  • Appendix A

    Port and Facility Interviews

  • Appendix B

    Permanent and Interim Disqualifying Criminal Offenses for TWIC

  • Appendix C

    MSRAM in Relation to the TWIC Program

  • Appendix D

    The Status of GAO and OIG Recommendations

  • Appendix E

    A Detailed Analysis of TWIC User Fees

  • Appendix F

    Rationale for a Break-Even Analysis

  • Appendix G

    Detailed Estimation of Costs and Benefits

主题Freight Transportation ; Maritime Piracy ; Terrorism ; Transportation Security ; Water Transportation
URLhttps://www.rand.org/pubs/research_reports/RR3096.html
来源智库RAND Corporation (United States)
引用统计
资源类型智库出版物
条目标识符http://119.78.100.153/handle/2XGU8XDN/524096
推荐引用方式
GB/T 7714
Heather J. Williams,Kristin Van Abel,David Metz,et al. The Risk-Mitigation Value of the Transportation Worker Identification Credential: A Comprehensive Security Assessment of the TWIC Program. 2020.
条目包含的文件
文件名称/大小 资源类型 版本类型 开放类型 使用许可
RAND_RR3096.pdf(4388KB)智库出版物 限制开放CC BY-NC-SA浏览
1589303321852.jpg(9KB)智库出版物 限制开放CC BY-NC-SA缩略图
浏览
个性服务
推荐该条目
保存到收藏夹
导出为Endnote文件
谷歌学术
谷歌学术中相似的文章
[Heather J. Williams]的文章
[Kristin Van Abel]的文章
[David Metz]的文章
百度学术
百度学术中相似的文章
[Heather J. Williams]的文章
[Kristin Van Abel]的文章
[David Metz]的文章
必应学术
必应学术中相似的文章
[Heather J. Williams]的文章
[Kristin Van Abel]的文章
[David Metz]的文章
相关权益政策
暂无数据
收藏/分享
文件名: RAND_RR3096.pdf
格式: Adobe PDF
文件名: 1589303321852.jpg
格式: JPEG

除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。