BIFAlink January 2024

Policy & Compliance

The Customs Declaration Service and tokens: how they work

Steve Bartlett of the Association of Freight Software Suppliers explains how Customs Declaration Service tokens work and how to ensure you do not encounter problems

T he Customs Declaration Service (CDS) introduced that have impacted Customs procedures and working practices. Whilst Members have become used to processing entries through the system, some of the ‘maintenance’ procedures need closer attention. One case in point is ‘tokens’, which are an essential part of the system. They are valid for a maximum period of time and have to be renewed. Failure to do so, as some Members have found to their cost, will prevent the processing of entries within CDS. many new working procedures However, as this article highlights, there are numerous systems that require a token to operate and in all probability these will increase over time as new ones are activated. BIFA is grateful to Steve Bartlett of the Association of Freight Software Suppliers for assisting in answering the following questions. What is a token? • A token is a form of authentication, a sort of password but used machine to machine, rather than input by a human, each time a connection or transaction is attempted. What are the likely GOV systems that will need tokens? • Going forward, we expect all government systems to employ this method of security. They already have the infrastructure in place through the government gateway. Currently the following require token-based access: - CDS declarations, - CDS document upload service, - CTC (transit through NCTS), - CDS ILE (inventory linked

exports – consolidation and movement messaging), - GVMS, - S&S GB (ICS safety and

months after authorisation; they then automatically email users one month, two weeks, one week and one day before this expiry date, and sometimes follow up manually. Who should the forwarder liaise with to make sure everything goes well? • First contact point would be with the software developer’s service desk. Based on this information it is important for Members to ensure that they have their own procedures in place to monitor which tokens they require and in particular their expiry dates. It should be noted that most software providers will mange the process for their customers, but not all do. Therefore, it is important for Members to liaise with software providers as a first step and develop their own internal monitoring systems to ensure that they maintain the validity of their tokens.

“ It is important for Members to ensure that they have their own procedures in place to monitor which tokens they require and in particular their expiry dates

security declarations for mainland GB imports),

- Customs Declaration Information (CDS Enquiries). - EMCS will start when their current development comes to fruition, - ICS Arrivals API to use with ICS2 in Northern Ireland. How does a BIFA Member make sure it has valid tokens? • Most software developers • In the pipeline: manage the process for their customers. They guide their customers through the process through their online services platform and capture the tokens once the authorisation process is completed on the government gateway. They also capture the date these tokens were generated and therefore the expiry date(s) – typically 18

8 | January 2024

www.bifa.org

Made with FlippingBook Annual report maker