Tag: Featured Stories

An “unruly passenger” is defined as an individual whose behavior on a flight disrupts the normal operation of the aircraft or compromises the safety and well-being of passengers and crew. This behavior can manifest in various ways, including physical violence, verbal threats, refusal to comply with safety protocols, tampering with aircraft systems, or harassment of crew and fellow passengers. Unruly behavior is not limited to overt aggression; it also encompasses less obvious actions such as repeated refusal to wear a seatbelt or use of prohibited devices that interfere with flight operations.

According to global statistics, unruly passenger incidents have been steadily increasing. The International Air Transport Association (IATA) reported over 10,000 cases annually in recent years, with some incidents escalating to severe threats or physical altercations. This trend has been exacerbated by the post-pandemic travel surge, where heightened anxiety, altered social norms, and pent-up frustrations contribute to a volatile environment. Airlines have also observed spikes in incidents on longer-haul flights and during peak travel seasons.

In two separate recent incidents, passengers managed to bypass TSA security protocols and board an aircraft without presenting any form of identification or a boarding pass. These alarming breaches were only discovered due to the passengers’ unusual behavior, which drew the attention of flight attendants. While neither passenger exhibited disruptive conduct or carried prohibited items — having passed through TSA metal detectors — the incidents have prompted serious reviews by both TSA and the airline involved.

Investigations revealed security footage highlighting how easily the individuals circumvented standard procedures, underscoring vulnerabilities in the current system. This repeated lapse has raised concerns about the adequacy of existing safeguards and highlighted the critical need for enhanced vigilance at every checkpoint. The incidents serve as a stark reminder that even non-disruptive passengers can pose significant security risks if fundamental processes are not consistently enforced.

Root Causes

Understanding the root causes of unruly passenger behavior is essential to addressing the problem effectively.

1. Psychological and Behavioral Triggers:

• Stress: The stress associated with travel — from security checks to navigating crowded terminals — can lead to heightened irritability. Fear of flying is another significant stressor that can trigger panic or aggressive outbursts.

• Substance Use: Excessive consumption of alcohol, often available in airport lounges and on flights, is a leading contributor. Some passengers may also use recreational drugs before boarding, further impairing judgment.

• Mental Health Issues: Unmanaged or undiagnosed mental health conditions, such as anxiety disorders, bipolar disorder, or schizophrenia, can exacerbate the risk of disruptive behavior.

2. External Factors:

• Flight Delays and Overcrowded Airports: Prolonged delays, cancellations, and overcrowding create frustration and fatigue, leading to shorter tempers and reduced tolerance.

• Perceived Customer Service Issues: Passengers who feel disrespected, ignored, or mishandled by airline staff may become combative. Issues like lost luggage, seating disputes, or miscommunication often act as flashpoints.

• Cultural Differences and Misunderstandings: Variations in cultural norms and language barriers can lead to misinterpretations and conflicts, particularly on international flights.

Impact on Airlines

Unruly passenger incidents have far-reaching consequences for airlines, affecting safety, operations, and reputation.

1. Safety Concerns:

• Physical altercations or threats can directly jeopardize the safety of passengers and crew. In extreme cases, such incidents can escalate to attempts to breach cockpit security or interfere with flight controls.

• Even minor disruptions require the crew’s attention, potentially detracting from critical operational duties, especially during takeoff, landing, or in-flight emergencies.

2. Operational Disruptions:

• Flights may need to divert to the nearest airport to remove disruptive passengers, leading to substantial operational costs. Diversions typically include additional fuel, airport fees, and the logistical challenges of rebooking passengers.

• These incidents often result in cascading delays, disrupting schedules for connecting flights, crew availability, and airport operations.

3. Brand Reputation and Legal Implications:

• Airlines risk damaging their reputation when incidents involving unruly passengers gain media attention. Public perception of inadequate safety measures or poor handling of incidents can lead to loss of customer trust.

• Legal consequences, including lawsuits from passengers or crew injured during incidents, can be costly. Airlines may also face regulatory scrutiny if found negligent in managing such situations.

Regulatory Environment

Addressing unruly passengers requires a robust regulatory framework supported by international collaboration.

1. International Guidelines:

• The International Civil Aviation Organization (ICAO) has developed comprehensive guidance on managing disruptive passengers, emphasizing the need for consistent global enforcement. The Montreal Protocol of 2014, an amendment to the Tokyo Convention, expanded jurisdictional authority to address unruly passenger behavior more effectively.

• Regional regulatory bodies, such as the Federal Aviation Administration (FAA) in the United States and the European Union Aviation Safety Agency (EASA), enforce specific measures, including mandatory reporting of incidents and penalties for airlines failing to manage such situations adequately.

2. Penalties and Enforcement:

• Penalties for unruly passengers include substantial fines, imprisonment, and bans from future flights. In some jurisdictions, passengers are held financially responsible for costs incurred due to diversions or damages.

• Despite these measures, enforcement challenges persist. Jurisdictional complexities arise when incidents occur in international airspace or on foreign carriers, making prosecution and extradition difficult.

• Preventative Measures at Check-In

• Airlines can take proactive steps during the check-in process to reduce the likelihood of encountering unruly passengers.

1. Behavioral Observation and Profiling:

• Train check-in agents to identify signs of stress, intoxication, or erratic behavior in passengers.

• Use discreet behavioral screening protocols to flag high-risk individuals for further assessment.

2. Enhanced Communication:

• Provide clear and polite communication during the check-in process to alleviate passenger frustrations. Explain policies and procedures to preempt confusion or disputes.

• Offer assistance to passengers who appear anxious or overwhelmed, such as families traveling with young children or individuals with visible disabilities.

3. Strict Alcohol Policies:

• Partner with airport vendors to limit the sale of alcohol to visibly intoxicated individuals.

• Monitor passengers for signs of inebriation during check-in and issue warnings or deny boarding if necessary.

4. Conflict De-escalation Training:

• Equip check-in staff with conflict resolution and de-escalation techniques to handle difficult passengers calmly and effectively.

• Maintain a visible presence of security personnel near check-in counters as a deterrent and for immediate intervention if required.

5. Pre-flight Notifications and Warnings:

• Send passengers reminders of the airline’s behavior policies and consequences for violations before they arrive at the airport.

• Display visible signage at check-in counters about the legal repercussions of unruly behavior.

By addressing potential triggers and identifying problematic behaviors early in the travel process, airlines can reduce the incidence of disruptive events, enhancing safety and improving the overall travel experience for all passengers.

Join us for Part Two: Training as a First Line of Defense. “Equipping the Frontline: the Role of Training in De-escalating Unruly Passenger Incidents” in the next issue of TSI magazine.

About the Author

With more than 25 years of experience, Frederick Reitz specializes in developing and implementing advanced security strategies to enhance air travel safety and operational efficiency. He holds a B.S. in Aviation Management and a master’s in Aeronautical Science from Embry-Riddle Aeronautical University and is currently pursuing a Ph.D. in Conflict Analysis and Resolution at Nova Southeastern University, with a focus on unruly passengers and conflict within the aviation industry. Reitz is currently director of security at Magnifica Air.

Part one: Understanding the Problem

By Mark Robins

Identifying and detecting the presence of explosive materials or substances using explosive detection systems is not only necessary, they are key pillars of ensuring public safety.

Those who have worked in aviation will likely remember Umar Farouk Abdulmutallab popularly referred to as the “underwear bomber” or “Christmas bomber,” a Nigerian terrorist who attempted to detonate plastic explosives hidden in his underwear. And what about Richard Reid — known as the “shoe bomber” — who tried to detonate his shoes which were filled with explosive material on a flight from Paris to Miami in 2001.

The illicit use of explosives has become an all-too-real event in the modern world. According to Global Terrorism Index (GTI), in 2023, there were approximately 3,350 explosive-related attacks in the world. High-profile terrorist attacks in public transportation-related venues, such as airports, train stations, ports and border control points have highlighted these areas’ vulnerability to explosive attacks.

Explosive detection systems play a crucial role in ensuring public safety by preventing these attacks. An explosive detection technology is a device or system designed to identify and detect the presence of explosive materials or substances, whether they be military, conventional or homemade, thereby avoiding catastrophic and damaging events. According to Selbyville, Del.-based Global Market Insights, the explosive detectors market size was valued at USD 8.95 billion in 2023 and is anticipated to register a CAGR of over 12% between 2024 and 2032.

“A vigilant guardian,” that is how John Johnson, senior director of strategic marketing and business development at 908 Devices, Boston, describes explosive detection’s role in meticulously screening passengers, luggage and cargo for potential threats. “Its presence serves a dual purpose: not only does it identify dangers, but it also acts as a powerful deterrent, discouraging attempts to smuggle explosives onto transportation systems. The technology’s ability to provide rapid threat identification is crucial, enabling swift responses that minimize disruptions and maintain the smooth flow of travel. Ultimately, these capabilities coalesce to significantly enhance the overall safety of both travelers and transportation personnel.”

Explosives and Transportation Security

Explosive detection technology is vital for transportation security; identifying explosive threats before they reach their transportation targets. “Transportation lies at the heart of the everyday life of people across the world,” says Logan Cunningham, sales and service, US Testing Equipment, Vancouver, Wash. “The importance of transportation networks makes them a prime target and at risk of harm that could cause loss of life, economic impact and destabilization that can come with losing the feeling of security in an integral part of everyday life.”

Cunningham believes it’s the integral nature of transportation to everyday life that causes some of the biggest hurdles to securing these targets from potential explosives threats. He explains, “Modern transportation, regardless of purpose or specific industry, is typically a high-volume and tightly coordinated effort. This brings the requirements for fast, consistent and reliable detection that is economical and easily deployable. Unlike, for instance, military or correctional screening of goods or people, where security typically has the utmost priority and other factors (such as time or efficiency) can be deprioritized, transportation networks are often built on their efficiency (both time and economic) and an explosive detection solution should be able to be reasonably integrated.”

Nicholas E. Ortyl, chief engineer, security enterprise solutions at Leidos, Reston, Va., cites the following key important factors of explosive detection in transportation security:

• Threat Mitigation: Detects explosives at high-risk hubs like airports to prevent attacks.

• Safety: Safeguards travelers and staff by neutralizing threats before they cause harm.

• Regulatory Compliance: Helps meet security standards from government agencies like the TSA and ECAC.

• Operational Continuity: Minimizes false alarms and delays, while enabling high throughput screening environments.

Ortyl cites the following unique aspects for it:

• Varied Environments: Adaptable for different settings (e.g., aircraft, buses, cargo).

• High Throughput: Each system can complete hundreds of screenings per hour, quickly and accurately.

• Layered Approach: Combines multiple systems and human oversight for comprehensive threat detection.

• Broader Integration: Works with biometrics, surveillance and other systems to enhance security.

• Operational Flexibility: Must be portable, fast, and reliable with minimal disruptions.

Robert Stokes PhD, director detection and security, Molecular Spectroscopy at Agilent Technologies, Santa Clara, Calif., agrees that transportation settings are among the most demanding environments for threat and explosive detection equipment and technology. “Systems must deliver exceptional detection capability and maintain low false-alarm rates within extremely short processing times. Additionally, detection technologies need to consistently perform over millions of cycles. It is also crucial that any screening technology is user-friendly and produces clear, unambiguous results for security operators to minimize disruptions to screening operations and the flow of commerce.”

The unique environment of transportation systems has shaped explosive detection technology in distinctive ways. “High-throughput screening capabilities are essential to manage the immense volume of passengers and cargo that flow through transportation hubs daily,” Johnson says. “These systems must maintain a delicate balance, delivering accurate results while minimizing false alarms to prevent unnecessary delays that could ripple through the entire transportation network. The technology must also be versatile, capable of detecting a wide spectrum of threat materials, as transportation infrastructure remains a prime target for various types of attacks. Moreover, the portability of modern detection systems allows for flexible deployment across different areas of transportation hubs and even on moving vehicles, creating a dynamic and adaptive security presence.”

Detecting Homemade Explosives

Detecting homemade explosives (HMEs) poses significant challenges in transportation security due to their unique characteristics and the non-standard nature of the devices. Unlike military-grade explosives with distinct chemical signatures, HMEs often have varied and unpredictable chemical compositions, making them more difficult to identify.

Andy Foland, chief technology officer, security enterprise solutions at Leidos explains, “HMEs can be unstable, varying in sensitivity to heat, shock or friction, which increases the risk during handling for obtaining signature data. This also poses challenges for safely neutralizing threats when detected. Detection systems designed with more consistent formulation in mind can result in high false-alarm rates, or a need to augment signatures or capabilities with new detection modalities.”

“These improvised threats are frequently crafted from common household items, further complicating the detection process as they can be easily mistaken for benign materials,” Johnson says. “The lack of a consistent chemical signature adds another layer of complexity to their detection. Homemade explosives tend to be much more sensitive than military explosives, making them prone to igniting from slight changes in pressure or exposure to an energy source. For this reason, certain technologies that utilize lasers can be dangerous to use when explosives are potentially present.”

Cunningham explains that HMEs utilize a range of explosive materials, delivery methods and quantities that can be difficult to detect based on packaging or location if the right technology is not being used to address the threat. “This is also where additional features such as software additions can aid in potential threat identification to aid operators’ inspection.”

Mitigating HMEs requires flexible and advanced detection systems that can account for a wide range of materials, formulations and concealment methods used in their construction. 908 Devices’ MX908 addresses these challenges and is equipped with sophisticated algorithms and broad detection capabilities, and is particularly adept at identifying these diverse threats in transportation settings.

Because of HMEs’ difficult-to-detect common household chemicals, London, England’s Smiths Detection has calibrated its advanced trace-detection technologies to detect a wide range of chemicals, addressing the variability in HME compositions. “This flexibility is vital in identifying these explosives, which often lack consistent ingredients but pose serious threats to transportation security.”

HEIDM Program

Recent HME attacks have further bolstered the need for a strong explosive characterization program, and have served to re-emphasize the benefits of United States Department of Homeland Security’s Homemade Explosives Identification, Detection and Mitigation (HEIDM) Program.

As HME threats are often made of common commercial items, it is a challenge to distinguish true HME threats from the many innocent gels and liquids in personal baggage or cargo. The HEIDM Program is a crosscutting portfolio, meaning the information collected in this program feeds into TSA to benefit several science and technology programs, and has focus areas on:

• Explosive detection characterization.

• Threat assessments and prioritization.

• Tests, tools and methodologies relating to explosives research and risk mitigation.

• The HEIDM Program ensures the explosives community has a clear understanding of homemade and emerging explosive threats to:

• Improve detection technology.

• Develop detection requirements.

• Inhibit the unlawful use and manufacture of HMEs.

• Provide a solid foundation for solutions to counter the threat, such as pre-planning tools for responders and event planners.

Detection Innovations

Technology advances for detecting explosives in both ever-evolving and emerging threats have countered their use and resulting impacts. Innovations have made detection more accurate, efficient and less intrusive, ensuring both security and smooth transportation operations. Cunningham says this has occurred not only in the increased library of detectable substances but also the concentrations (trace particulates) and the ability to discriminate or differentiate between non-target substances and suspected explosive materials.

Foland says explosive detection has evolved from basic X-ray and metal detectors to advanced systems utilizing AI/ML, radiofrequency (RF) waves, and Ion Mobility Spectrometry (IMS). “Early methods focused on detecting metallic threats, but the use of X-ray, RF, wideband FR complex impedance, Raman spectroscopy, capillary zone electrophoresis and IMS has enabled the identification of non-metallic explosive materials. Modern innovations, such as millimeter-wave imaging, 3D Computed Tomography (CT) scanners, and standoff detection allow for non-invasive, high-accuracy screening of passengers and baggage. AI-driven systems improve detection speed and accuracy, and reduce false alarms, while integrating them with broader security measures can enhance overall situational awareness.”

“Explosive detection technology has evolved significantly, integrating artificial intelligence into systems like (Smith Detections’) HI-SCAN 6040 CTiX, which automates threat recognition and reduces human error,” says Joachim Petry, business development manager, X-ray diffraction at Smiths Detection. “[We] also offer computed tomography and 3D-imaging solutions for more detailed and reliable screening of luggage and cargo, allowing threats to be identified with minimal manual intervention. Portable systems like the IONSCAN 600 provide flexibility for deployment in a variety of transportation settings. These systems are also non-invasive, relying on trace detection technologies like IMS without the need for physical sampling, enhancing both security and passenger experience. [Our] iCMORE technology integrates AI and deep learning algorithms into our X-ray detection systems. This enables faster decision-making and more accurate threat identification, significantly reducing false alarms and enhancing operational efficiency in busy transport environments.”

Integrating machine learning approaches that enable algorithms to quickly adapt to changes in the threat landscape and the flow of commerce has been very beneficial. Stokes say, “These advancements include enhanced detection capabilities, allowing modern systems to identify a wider range of explosive materials with greater accuracy, and reduced false alarms, as machine learning helps distinguish between actual threats and benign items. Additionally, faster processing times enable rapid screening without compromising security, while improved user interfaces provide clear and unambiguous results for security operators. Furthermore, newer systems are designed to perform consistently over millions of cycles, ensuring long-term reliability in demanding environments. It is critical that any explosive detection technology is robust enough for demanding screening operations and can be safely and effectively utilized by security personnel who may not be hazmat or laboratory trained.”

The people who conduct airport security screenings are the world’s frontline defense against terrorists, smugglers, and other criminals. This is why training them properly is so important — because the quality of their training will determine the quality of their work.

Computer-based training (CBT) is an effective combination of quality, convenience, and cost for training airport security screeners. Three key providers of CBT security training are CASRA, e-Lectio, and Renful Premier Technologies.

Founded in 2008, CASRA stands for the Center for Adaptive Security Research and Applications. Its roots go back to the Visual Cognition Research Group at the University of Zurich, which was created 25 years ago. “CASRA’s vision is to enable people and technology for a safe and secure world,” said Dr. Diana Hardmeier, CASRA director. “By combining applied research and translating the research findings into software products, we develop a computer-based training and testing solution that continuously reflects current threats and thus trains screeners in a way that is both motivating and efficient.”

As part of the ICTS Europe group, e-Lectio provides online training solutions to the security sector worldwide. Their CBT programs are delivered to students worldwide using e-Lectio’s Eagle7 Learning Management System. “By using advanced eLearning technologies, our company offers high-quality, regulation-compliant, online training to the aviation and maritime security sectors,” said Dr. Nimrod Matan, e-Lectio’s commercial director.

Renful Premier Technologies (Renful) has been offering security training solutions to the market for over 30 years. “Our computer-based training systems are the result of decades of research and development, guided by aviation security professionals, and developed in collaboration with a highly skilled team, incorporating valuable customer feedback,” said Agnes Vaspori, Renful’s head of product development. “Renful’s success is demonstrated by our ability to serve a wide range of security domains; including airports, civil aviation authorities, customs and border agencies, and police forces.”

What They Have to Offer

X-Ray Tutor 4 (XRT4) is the name of CASRA’s screening education program. XRT4 is a comprehensive, computer-based pre-employment selection, training and testing solution for training people in the use of 3D, dual-view and single-view X-ray screening across various fields. This software allows operators to select, train, and test screening security professionals in areas such as cabin baggage screening, hold baggage screening, cargo, mail, staff, air supply, maritime, as well as high-energy and baggage screening at customs.

“XRT4 features customizable user interfaces that mimic different X-ray machines, creating a realistic training and testing environment,” Dr. Hardmeier said. “All common image enhancement functions are integrated to replicate the viewing conditions security officers encounter at checkpoints. The platform’s adaptive learning system presents images tailored to each user’s knowledge and skills, ensuring they are optimally challenged and motivated throughout their training.”

Current users of CASRA’s XRT4 training program include the Canadian Air Transport Security Authority (CATSA), Securitas Aviation, Swedavia, and Zurich Airport. Overall, XRT4 is used in over 50 countries and at more than 900 airports globally.

At e-Lectio, “We offer Eagle7 online training solutions for all requirements that apply to screeners in the aviation sector,” said Dr. Matan. These include:

• The Eagle7 X-ray training simulator with over 50,000 genuine cabin baggage, hold baggage, cargo and mail, and airport supplies images; and a 3D training simulator with over 4,000 genuine cabin baggage, hold baggage, cargo, and mail images. “The simulators are suitable for initial training, recurrent training, and certification,” he told TSI.

• Comprehensive package of e-learning courses covering all required training in line with EU regulations and beyond.

• An advanced learning management system (LMS) with performance analysis and reporting modules. It is designed to provide screeners with a clear detailed picture of their achievements, and to provide supervisors and trainers with a detailed analysis of performance levels on individual and group level, to ensure compliance.

• A pre-recruitment assessment tool for X-ray screeners’ positions, including seven different psychometric tests capturing the skills and capacities required for screeners.

As for e-Lectio’s online training courses; they are used by major international airports, national authorities, and security companies. They include airports in Copenhagen, Milan Malpensa, Seattle and Vienna, plus aviation authorities such as AESA (Spain), DJI (Netherlands), the Malta Aviation Security Department, and the Moldovan Civil Aviation Authority.

“Renful offers a diverse range of computer-based training systems tailored for the security market,” Vaspori said. “These systems are designed to enhance the skills and knowledge of security personnel across various sectors.

Some of Renful’s key offerings include:

• The Simfox Simulator for X-ray and CT Image Recognition Training: This is a system that trains security operators in identifying prohibited items within 2D X-ray and 3D CT images, improving their threat recognition ability, detection accuracy, and speed. Simfox is used in over 80 countries by more than 200,000 security screeners.

• E-learning Modules: These are interactive online courses provided on Renful’s Learning Management System, covering a wide range of security topics.

• Competency and Assessment Tools: These are pre-employment testing and performance assessment platforms to evaluate the skills and performance of personnel while carrying out different security functions. The assessments are performed at the recruitment stage and after deployment to ensure officers meet the required security standard.

In order to keep its online students engaged, their “in-house development team uses animation and multimedia to create highly engaging content that keeps learners motivated and enhances retention,” said Vaspori. “This approach, combined with regular updates and customizable training, ensures our courses are both relevant and effective.” Renful’s client list includes London Heathrow and Seoul Incheon Airports, the Australian Department of Home Affairs, the U.S. Department of State, the Civil Aviation Authorities of Romania and Greece, Certis Aviation Security, G4S, I-SEC, Prosegur, Securitas, and SegurIberica.

Staying on Top of Change

Mindful that airport security threats are constant, the three CBT companies interviewed for this article do their best to keep their content current and up to date.

A case in point: “CASRA’s libraries are regularly updated based on a systematic threat assessment (STA), which takes new and emerging threats into account,” Dr. Hardmeier said. “The STA is a key component of a long-term CASRA research project that is funded by the Swiss Federal Office of Civil Aviation. It systematically scans various public and non-public internet channels, the deep web, social media platforms, radical propaganda, and third-party reports for relevant security information. Once identified, new threat objects are continuously integrated into both training and e-learning, where theoretical knowledge about these objects is also imparted.”

Since XRT4’s training algorithm is adaptive and tailored to each individual screener, new and/or poorly recognized threats are presented more frequently to students to support quicker internalization,” she noted. “This not only shortens learning times but also ensures that screeners are better prepared to recognize and respond to emerging threats.” To further improve screener responses on the job, XRT4’s training library includes a wide range of high-quality X-ray images of several hundred prohibited items in various rotations and configurations, as well as thousands of different containers. All image libraries are fully compliant with EU regulations.

The e-Lectio Eagle7 training simulators also rely on a regularly updated image library. It is populated with genuine images captured on real-life X-ray and CT machines using actual scanned luggage with authentic threat items. “The image library covers a huge array of threat items, following the EU regulation definitions of prohibited articles,” said Dr. Matan. “Our team of experts continuously extends the image library adding hundreds of new images yearly.”

The training workflow used by e-Lectio covers the operation of X-ray machines used for screening, plus the entire range of skills needed to perform this job successfully. These skills include:

• Classifying the image as a threat, no threat, or possible threat that cannot be resolved by X-ray analysis.

• Indicating the type of threat item detected.

• Marking the location of the threat on the image.

• Switching between various views of the image (simulating a dual view machine) and various angles of the luggage (simulating the rotation of the luggage on the belt) to improve analysis and decision-making.

• Comparing cargo images to the airway bill and determining whether they match.

• Clearing EDS (energy-dispersive X-ray spectroscopy) warnings, when applicable.

• For 3D images, using slicing as well as full control over a 3D image of the luggage such as rotation and zoom in/out.

Renful’s courses offer a detailed, extensive look at the threats facing screening personnel today. For example, “Simfox CT, a computed tomography X-ray simulator, is tailored to meet the operational needs of those working with Cabin Baggage and Check Baggage CT scanners,” Vaspori said. “Simfox CT is equipped with a library of over 6,000 real CT images for initial familiarizaion, certification and upskilling training modules. It is compatible with multiple CT scanner models such as Leidos ClearScan, Smiths Heimann CtiX, Rapiscan 920CT, Leidos MV3D Hold Baggage EDS, ensuring a seamless transition from training to real-world operations.”

Meanwhile, Renful’s Introduction to Explosives course is designed to equip students with the knowledge and skills needed to understand and manage explosive-related risks. These include the threats posed by improvised explosive devices (IEDs), concealed explosive devices, and other hazards. Participants get to explore detection technologies, historical developments, and advanced training methodologies to enhance their security skills.

Finally, Renful’s Trefox Training Essentials for X-ray course teaches new operators on the fundamentals of X-ray security. “Through engaging audio, text, and video content, learners can grasp essential concepts with ease,” said Vaspori. “Instructors can also leverage ready-made animations and audio content to streamline their teaching process, ensuring effective knowledge transfer.” Trefox can teach conventional X-ray, computed tomography X-ray, and vehicle/ container X-ray techniques.

Certifications Available

To deliver maximum value from their training courses to students and employers, the three CBT companies in this article all provide options for certifying successful completion of their courses.

CASRA’s XRT4 offers students the option of taking certification tests that are based on scientific criteria. These tests are used by various Civil Aviation Authorities worldwide and are fully compliant with EU regulations.

Successful e-Lectio Eagle7 students achieve all types of certifications required by EU regulations, for screening jobs related to cabin baggage, hold baggage, airport supplies, and cargo/mail; both in 2D (single and/or dual view) and EDS CT in 3D. “In fact, several CAAs throughout Europe either directly use or have approved Eagle7 for certifying screeners according to chapter 11 of the EU regulation 2015-1998,” Dr. Matan said.

Renful issues a Certificate of Completion to individuals who successfully complete any of their e-learning courses. In addition, “Simfox is used as the national screener certification platform by regulators in 14 countries and is an approved system in most European countries for recurrent training under EU Regulation 2015/1998),” said Vaspori. “Simfox is trusted for both initial certification and ongoing training, ensuring compliance with aviation security standards.”

Convenient to Take

The logic behind CBT courses is that they are available for students to pursue at their convenience, at whatever time and location(s) work best for them.

All three CBT companies hit the mark on this requirement. CASRA’s XRT4 is a web-based solution that can be accessed via any internet browser without requiring additional plugins. e-Lectio’s Eagle7 is also 100% web based and can be accessed through any web browser on any device. So are Renful’s courses, which can be accessed from anywhere with an internet connection, and viewed on computers, tablets, and smartphones.

As for the price to take these courses? “The cost of CASRA’s training programs varies depending on the specific course and the number of participants,” Dr. Hardmeier said. “We offer customized pricing packages for organizations and large groups. For more detailed pricing information, we recommend contacting CASRA directly.”

“Eagle7 is offered as SaaS (software as a service) with three main pricing models,” said e-Lectio’s Dr. Matan. These are:

• License fee per registered user, with no limit on the number of training hours or number of concurrent users.

• License fee per concurrent user (seat), with no limit on the number of training hours or the number of registered users.

• Fee per training hour (hour bank), with no limit on the number of registered or concurrent users.

Over at Renful, “The license models available include perpetual, annual subscription, and pay-per-use,” Vaspori said. “We work closely with customers to fully understand their needs and offer the most cost-effective solution that delivers the best value for their investment. For detailed pricing information, contact us directly or visit our website.”

Numerous Benefits to CBT

Clearly, the screening training provided by CASRA, e-Lectio, and Renful comes with a price tag attached. So why is it worthwhile for airports (and other transportation facilities) to pay for it?

Well, to put it bluntly, the benefits of CBT for airport security screeners are numerous and tangible.

“Numerous scientific studies have proven that CASRA’s courses significantly improve the competency of security personnel to detect threats more accurately and efficiently, thereby enhancing overall security in aviation environments,” said Dr. Hardmeier. “Employers benefit from having better-trained staff who can reduce security risks, comply with international security standards, and ensure regulatory compliance. The integrated reporting system also allows administrators to easily monitor progress and compliance. Detailed feedback on training sessions ensures continuous improvement and high levels of competency.”

The training by e-Lectio ensures full compliance with EU regulations on airport security screening, Dr. Matan said. The Eagle7 system also gives trainers full control of all training parameters, including:

• Number of images per threat type.

• Number of images per difficulty level.

• Angles of threats included in the tests.

• Type of images included in the test (single/dual view, with/without EDS markings).

• Time limit.

• Scoring method.

• The training workflow to be used (with/without marking threat location, with/without comparing images to airway bill, and so forth).

“Eagle7 is a comprehensive training solution from pre-recruitment, through initial training and recurrent training, up until certification and recertification,” he told TSI. “It supports continuous performance analysis highlighting the strengths and weaknesses of each screener, so that the training program can be personalized to address individual needs, either automatically, or manually, by the trainer.”

Finally, Renful’s students acquire practical, up-to-date skills and knowledge that make them more effective in their roles, enhancing their ability to face real-world security challenges. “This improved competence leads to better job performance, enabling screeners to carry out their duties more efficiently, which ultimately benefits their employers,” said Vaspori. “For employers, having a better-trained workforce means improved compliance with industry regulations and standards, reducing the risk of non-compliance. Additionally, our courses provide a cost-effective way to train staff, minimizing downtime while maximizing return on investment. The flexibility of remote learning allows employees to complete their training at their own pace, ensuring that productivity is maintained while they enhance their skills.”

The Bottom Line

Computer-based training for airport security screeners is an effective way to create a skilled, knowledgeable, and reliable workforce, on a schedule and with training location that work best for everybody. And it’s not just about compliance. Ultimately, it’s about the safety of all concerned, workers and passengers, moving through the facility.

On Sept. 18, 2024, U.S. Sen. Maria Cantrell, chair of the Senate Committee on Commerce, Science and Transportation, stated cyberattacks on the U.S. aviation industry were up 74% since 2020 during a hearing on aviation cybersecurity threats. The attacks are coming from many directions.

“In the past year, airlines and airports have faced challenges with cloud vulnerabilities and the plethora of shared aviation data,” says Dr. Jeff Hall, principal security consultant and North America aerospace lead for security consultant NCC Group. “With a surge in ransomware attacks targeting airlines and airports, the TSA cybersecurity mandate imposed new requirements for airports and airlines to improve their cybersecurity resiliency. Lastly, Distributed Denial-of-Service (DDoS) attacks targeting airports have become more frequent.”

Legacy systems and outdated technology also remain under attack. “Many aviation systems, especially those in air traffic control and aircraft operations, are based on legacy technologies that are difficult to secure and update, making them prime targets for cyberattacks,” said Philippe Morio, cybersecurity expert for the International Civil Aviation Organization.

And as supply chains and third-party inclusion expand, cyber hackers are using these targets to find weak spots to attack the aviation industry. “The aviation sector heavily relies on a complex supply chain, including third-party software and service providers,” Morio said. “Attacks on these suppliers, like software supply chain breaches, can have significant downstream effects on airlines and airports.”

A Closer Look

When breaking down the various cyberattacks, the number of vulnerabilities is staggering. But knowing where these weak spots are is crucial to defending them.

As more computing systems rely on the cloud for storage, the more vulnerable they become to cyberattacks. “Cloud environments hosting MBDE (model-based design environment) platforms provide flexibility and scalability but expose critical vulnerabilities in storage, identity management, APIs, networking and backup systems,” Hall said.

Shared aviation data involves many departments as well as third-party providers. This includes ATC systems, supply chain data, airport operations data, aircraft systems, aircraft maintenance data, airline data, frequent flyer and loyalty programs, flight and crew scheduling systems, drone communication networks and weather and navigational data (GPS spoofing and jamming).

GPS spoofing and jamming of weather and navigational data is not widespread across the globe — yet. Hot spots include conflict zones such as the Sinai Peninsula as well as non-conflict zones such as China and Myanmar. Large-scale events such as the Olympics also see a spike in GPS spoofing and jamming at the local level.

“GPS satellites are 12,000 miles up in the sky, GPS spoofers are only 10 miles away from the airplane, so the RF signals that you receive from the satellites are a lot weaker than what’s on the ground,” David Woodcock, principal applications engineer with customer and product support at Honeywell Aerospace, told an Oct. 8 webinar. “Jammers and spoofers overpower the GPS receivers on the aircraft. With regard to GPS spoofing on weather radar, ground returns may be interpreted as weather and vice versa. Incorrect GPS altitude can cause excessive bleed-through or incorrect radar horizon. You’re either too close to everything or everything is too far away.”

In addition, cyber hackers are leveraging artificial intelligence in their attacks. “Artificial intelligence is used for offensive and defensive cybersecurity in the aviation industry,” Hall said. “Criminals are using AI for sophisticated attacks involving phishing and social engineering. In 2019, criminals used an AI-generated voice deepfake to impersonate the CEO of a U.K.-based energy firm and tricked a senior executive into transferring $243,000 to a fraudulent account. In 2023, security researchers found that cybercriminals can exploit AI-powered chatbots like ChatGPT to automate phishing and Business Email Compromise (BEC) attacks.”

Simply put, cyber hackers are using every tool at their disposal to attack the aviation industry.

Fighting Back

Just as cyberattacks are taking many forms, thwarting cyberattacks takes a multi-pronged approach as well.

“The TSA cybersecurity requirements introduced in 2023 focus on network segmentation, access control, continuous monitoring and patching vulnerabilities,” said Lawrence Baker, managing consultant and aerospace technical lead for NCC Group Transport Practice. “Airlines and airports are implementing robust cloud security frameworks and encrypting shared aviation data. Airlines are focusing on solutions to reduce the impact of ransomware attacks, such as backup and disaster recovery measures, system redundancy, and more resilient operational strategies to ensure the continued operation of critical services while under attack. Vulnerability scanning, monitoring and automated defenses are used to protect against DDoS attacks.”

Bringing all of these segments in the aviation industry together in a cohesive manner is required across the industry to tighten cybersecurity. “Collaboration in aviation cybersecurity involves building partnerships across sectors,” Morio said. “Regulatory frameworks, such as ICAO and EASA (European Union Aviation Safety Agency) standards, govern compliance and promote cybersecurity governance within the industry. Information sharing is crucial for exchanging threat intelligence and best practices among stakeholders. Data collaboration enhances situational awareness, while resource sharing pools expertise and tools to strengthen defenses. Together, these elements create a proactive approach to addressing cybersecurity challenges in aviation.”

Members of the aviation industry also are using AI to defend against cyberattacks. “The application of AI for cybersecurity defensive purposes is moving at a rapid pace, as are the commercial offerings using this type of technology,” Baker said. “AI can be used for threat detection and predictive analytics by analyzing traffic in real-time, identifying patterns that may signal a cyberattack, and using machine learning models to learn from previous attacks and detect anomalies.”

Efforts to stop GPS spoofing and jamming are ongoing, but involve different players, which slows the process. Some solutions are as simple as avoiding areas where GPS spoofing and jamming are prevalent. “The routing you use into the Middle Eastern areas is very important,” Nat Iyengar, National Business Aviation Association International Operations Committee chair and captain at Jet Aviation Business Jets (Hong Kong) Ltd., told an Oct. 8 webinar. “Many come across Egypt and clip the corner of Jordan; you’re guaranteed to get spoofed there. The further south you can stay of the Sinai Peninsula, the better.”

Keep in mind, too, that GPS spoofing and jamming can come from the air and the ground. “Everyone is reporting spoofing when they’re airborne, but beware there are certain areas where that signal may be corrupted on the ground,” Iyengar said. “Be disciplined and check your position information to make sure your IRS isn’t initialized with a bad position.”

Original equipment manufacturers are working to combat GPS spoofing and jamming, but it’s a slow process. “For the OEMs, what they are planning for the future, they have quite a long runway to get those,” Steve Thorpe, director of standards and training and senior captain for Merck Sharp & Dohme, told an Oct. 8 webinar. “They have to do all the testing, do the certifications, get it into the OEMs and get it all approved. Whereas the folks doing the spoofing, if they want to change what they’re doing, it’ll take a week and they’re doing something different. So our hands are tied with the response.”

As such, it’s up to the individual operator to be proactive in combating GPS spoofing and jamming. “Each operator has to develop their own procedures and understanding of how they’re going to react to terminal area or crew EGPWS warnings,” Iyengar said. “That’s not something an OEM is ever going to come out with guidance and tell you how to do it. That’s something you’re going to have to do yourself.”

When creating that plan, aviation and security personnel need to prioritize specific elements rather than trying to plug all the leaks at once. “They should prioritize network segmentation and access control, continuous monitoring and threat detection, regular patching, and vulnerability management,” Hall said.

This allows them to develop a cyber resilience strategy and establish protocols for damage tolerance and recovery, ensuring that systems can switch to backups or failover to continue functioning during an incident. “Incident response and recovery to restore systems quickly and safely to ensure the continuity of services, training and awareness to reduce human error — which remains one of the weakest links in cybersecurity — and coordination between industry and government agencies like the TSA and CISA are crucial, along with sharing information about new threats and vulnerabilities,” Hall said.

There are still many moving pieces to a cohesive cybersecurity approach as cybersecurity evolves to prevent future attacks. “Cybersecurity is likely to evolve in the near future to prevent attacks through increased integration of AI and machine learning, cyber resilience and redundancy, increased collaboration between government and industry, strengthened cloud security and data protection, incorporated blockchain technology, and using zero trust architectures,” Baker said. “Government regulation and adopting industry standards will improve cybersecurity, but the adoption rate is hard to predict as it depends on lawmakers’ actions. Currently, Europe’s legislation for aviation cybersecurity is further advanced than that of the U.S., for example.”

Maintaining collective awareness and working together to thwart cyberattacks is crucial in the fight against cyberattacks. “Collective efforts will empower us to leverage diverse insights and resources, enhancing our ability to navigate the complexities of today’s security landscape,” Morio said. “Together, we can build a more resilient framework to meet these challenges head-on.”