RESCUEIT: sécuRisation dE la Chaîne logiStique orientée serviCe depUis le mondE des objets jusqu’à l’univers InformaTique J-P Deutsch 1 , J. Hue 2 , Y. Gaffé 2 , L. Gomez 3 , M. Khalfaoui 3 , M. Laurent 4 , A. Levieux 5 , E. El Moustaine 4 1 LogPro Conseil, Paris 2 SOGET, Le Havre 3 SAP Research, 06250 Mougins 4 Telecom Sud Paris 5 ISEL, Le Havre jpdeustch@logpro.fr, julien.hue@soget.fr, yoann.gaffe@soget.fr, laurent.gomez@sap.com, mehdi.khalfaoui@sap.com, Maryline.Laurent@it-sudparis.eu, levieux.aurelien@gmail.com, ethmane.elmoustaine@telecom-sudparis.eu Abstract – In global supply chains, many organizations (be it public or private) are involved, and each may own its supply chain software. From a collaborative perspective, they need to work on the global process; first in terms of planning, second from an operational perspective, with a view on the management of attacks and on resilience. From a modeling perspective, RESCUEIT proposes to represent a complete supply chain in the public security area. It also proposes to integrate security requirements, and to design a database about risks and mitigation procedures related to supply chains. From a requirements perspective, the project proposes to identify the relevant security parameters, which need to be monitored and controlled. From an Internet of Things perspective, the project will enhance the usage of wireless sensor networks and of RFID systems, tailored for the specific needs of a secured supply chain. In this paper, we present a scenario related to importation of dangerous products in Europe. Elaborated with major actors of the supply chain, we secure this scenario following end users requirements. To that purpose, we propose a set of security mechanisms for secure tracking and monitoring of products. They are all integrated into a joint platform, detailed in this paper. 1. Context 1.1 RESCUEIT: a joint German-French research project In our flat world and in public security in particular, one cannot see a supply chain as a single process, managed by a single entity. Several entities – be it public or private entities are involved, each potentially using a dedicated supply chain management software. Yet as a whole, these entities need to work from a global process perspective; first in terms of planning, second in terms of operating, with a view on how to handle interruptions (possibly due to attacks) and on how to manage recovery. By focusing on how to ensure that real world information – through RFIDs and wireless sensor networks (WSN) – can enhance the security of the supply chain, this project answers to the ANR CSCOSG 2009 topic: “SECURING THE LOGISTICS CHAIN”. With the growing pressure from regulations to enhance security, while needing to control and lower the costs, Supply Chain Management (SCM) has to face an end-to-end problematic: the proper modeling of a complete supply chain, while including relevant security requirements, and leveraging real world information to both assess the security level and enforce the security requirements. At a modeling level, RESCUEIT-FR proposes to model a complete supply chain in the area of public security. At a requirements level, it proposes to identify the relevant security parameters that need to be monitored and addressed. At a real world level, it proposes to enhance the use of WSN and RFIDs for the specific needs of a secured SCM. 1.2 Scenario: Importation of dangerous goods from China In order to illustrate our approach, we propose to use a supply chain scenario defined in the scope of the RESCUEIT [1] project. Related to the importation of dangerous products from China to Europe, this scenario