Maritime Security Risk Analysis Model (MSRAM) is a process and model that supports the U.S. Coast Guard's mission to understand and mitigate the risk of

terrorist Terrorism, in its broadest sense, is the use of criminal violence to provoke a state of terror or fear, mostly with the intention to achieve political or religious aims. The term is used in this regard primarily to refer to intentional violen ...

attacks on targets in U.S.

port A port is a maritime facility comprising one or more wharves or loading areas, where ships load and discharge cargo and passengers. Although usually situated on a sea coast or estuary, ports can also be found far inland, such as Ham ...

s and

waterway A waterway is any navigable body of water. Broad distinctions are useful to avoid ambiguity, and disambiguation will be of varying importance depending on the nuance of the equivalent word in other languages. A first distinction is necessary b ...

s. MSRAM began as a Captain of the Port-level risk analysis tool developed shortly after

9/11/2001 The September 11 attacks, commonly known as 9/11, were four coordinated suicide terrorist attacks carried out by al-Qaeda against the United States on Tuesday, September 11, 2001. That morning, nineteen terrorists hijacked four commer ...

. In 2005, the USCG began development and implementation of MSRAM in order to take advantage of lessons learned with the initial effort and to apply a risk approach that can be applied at both the field and headquarter levels. To develop this program, USCG HQ invited representatives from headquarters, and all levels of command to define requirements and identify milestones. This led to an action plan that fielded the first MSRAM system in 2006. Since the first MSRAM rollout, USCG is in the third iteration of MSRAM as of 2008. Following is a summary of the use of MSRAM data and future enhancements.

Method

Risk = Threat * Consequence * Vulnerability. The unit of analysis is a generic attack mode against a specific target. All of the

Department of Homeland Security The United States Department of Homeland Security (DHS) is the U.S. federal executive department responsible for public security, roughly comparable to the interior or home ministries of other countries. Its stated missions involve anti-terr ...

’s planning scenarios are addressed. However, each attack mode is defined in sufficient detail to support analysis of consequences and vulnerabilities. The target is defined in terms of classes, location, potential maximum consequences,

geographic location In geography, location or place are used to denote a region (point, line, or area) on Earth's surface or elsewhere. The term ''location'' generally implies a higher degree of certainty than ''place'', the latter often indicating an entity with an ...

and other key facts used for analysis. Based on the target class and potential consequences, a number of attack modes are specified for analysis of consequences and vulnerabilities. Consequence scoring is based on a value system that considers death and injury, primary and secondary economic impacts, environmental impact, national security impact and symbolic impact. The values and scales for these consequences are determined by the USCG leadership. The values are intended to represent those of the

American people Americans are the Citizenship of the United States, citizens and United States nationality law, nationals of the United States, United States of America.; ; Although direct citizens and nationals make up the majority of Americans, many Multi ...

. Vulnerabilities are broken down into five factors: Attack achievability, three system security factors (owner operator, local law enforcement, and USCG) and target hardness.

Model

MSRAM methodology is a

Microsoft Access Microsoft Access is a database management system (DBMS) from Microsoft that combines the relational Access Database Engine (ACE) with a graphical user interface and software-development tools (not to be confused with the old Microsoft Access w ...

application in two versions. The field-level version supports data collection, analysis, and "what if" analysis. The HQ version supports analysis and "what if" analysis of combined data at the classified level. The USCG MSRAM Model is supported with geographic risk displays at the local and HQ's levels.

Process

MSRAM data comes from two sources and is subjected to an iterative review leading to its use in informing programs,

strategy Strategy (from Greek στρατηγία ''stratēgia'', "art of troop leader; office of general, command, generalship") is a general plan to achieve one or more long-term or overall goals under conditions of uncertainty. In the sense of the "art ...

, procedures and local application of resources to mitigate and/or manage risk of terrorist attacks in our nation's maritime system. Threat data is provided by the USCG Intelligence Coordination Center for all combinations of attack modes and target classes. The detailed target and scenario level data is captured at the field level, in collaboration with owner operators and local law enforcement and its responders.

MSRAM data

At the field level, MSRAM data is used to prioritize use of USCG resources. Sector Commanders use it to assess and prioritize Port Security Grant Applications. Sector HQ's use it to assess risk in difference seasons or for different threats. District HQ and Area HQ's use the data to inform operational decisions. HQ uses the data to inform resource, strategy and policy decisions.

Future enhancements

Each MSRAM cycle has implemented a number of improvements based on feedback from field and HQ users as well as comments by the U.S. Government Accountability Office and risk experts. The next iterations will address the Terror Transfer Threat and other relevant scenarios. In addition, USCG is working to apply lessons learned and concepts with other agencies.

Method

Model

Process

MSRAM data

Future enhancements

See also