SWIFT, Dollar and Clearing: How Financial Infrastructure Became a Weapon

In the days following 24 February 2022, the physical flow of energy into Europe did not stop overnight. Pipelines kept pressure. Tankers remained at anchor. What seized up first was something less visible: the financial plumbing through which every contract, every spare part, every maintenance invoice is settled. In his book Sanktioniert, Dr. Raphael Nagel describes those hours in Moscow bank rooms as the most chaotic in the history of the Russian financial system. Correspondent banks severed connections. Payment confirmations disappeared. A network that had functioned silently for decades became, within 48 hours, a trap. For European buyers of autonomous security robotics, that episode is not a geopolitical footnote. It is a procurement warning. Quarero Robotics reads it as a direct instruction: the financial path a robot, a controller board or a maintenance contract travels is now a security attribute of the system itself.

The Three Layers Nagel Identifies

Nagel's analysis separates the payment architecture into three layers that must be assessed independently. The first is SWIFT, which is not a payment system in the narrow sense but a messaging network connecting more than 11,000 institutions across over 200 countries. Losing access does not erase money. It erases the ability to move standardised instructions at commercial speed. The second layer is the dollar itself, the currency in which most energy and much industrial trade is denominated, and therefore the currency whose regulator, the US Treasury through OFAC, exerts jurisdiction well beyond US borders. The third layer is clearing: the correspondent banks, insurers and settlement chains that turn a contract into an executed transfer.

For a procurement officer responsible for autonomous perimeter security, these three layers translate into three concrete questions. Over which messaging network does the vendor's invoice travel. In which currency is the long-term maintenance obligation denominated. Through which clearing chain does a spare-part payment pass before it reaches the manufacturer of a LiDAR module or a drive controller. Each answer is a potential point of failure under sanctions escalation.

From Instrument to System Control

Nagel traces how sanctions have evolved from visible trade embargoes of the Cuban type into what he calls system control. The decisive shift was the introduction of secondary sanctions in the 1990s and, later, instruments such as the Foreign Direct Product Rule, which extends US jurisdiction to any product containing US technology or software. Because nearly all modern production lines incorporate some layer of US-origin tooling or code, the reach is extensive. Drilling equipment, control systems and maintenance contracts for energy infrastructure have already been drawn into this perimeter.

Robotics sits inside the same perimeter. A ground robot patrolling a logistics site integrates semiconductors, firmware, cloud services and insurance cover that may each trace back through jurisdictions exposed to secondary measures. If one element of that stack runs through a clearing chokepoint that is tightened by a future sanctions package, the consequence is not a diplomatic inconvenience. It is an operational outage on a site where the robot is the security measure. Quarero Robotics treats this mapping as part of system design, not as a treasury afterthought.

The Self-Sanctioning Effect

The most underestimated dynamic Nagel describes is not the formal norm but the behaviour it induces. When compliance departments cannot determine with certainty which payment remains permissible, which port remains accessible, or which contract will still be politically tenable in six months, they withdraw pre-emptively. OFAC penalties reached record levels in 2023, and the preventive effect reshaped the conduct of thousands of firms that were never themselves a direct target. Banks in the United Arab Emirates, Turkey, India and Kazakhstan adjusted behaviour after the SWIFT disconnection of Russian institutions not because they were sanctioned, but because they refused to risk their access to the western financial system.

For European security buyers, this means the question is not only what is legal today. It is what a compliance officer at a correspondent bank in Frankfurt, Singapore or New York will still be willing to process in eighteen months. A robotics platform whose warranty payments depend on a chain that includes even one exposed node is a platform whose availability is politically, not technically, conditioned. Uptime becomes a function of geopolitics.

Procurement Logic for Autonomous Security

From Nagel's framework, three procurement tests follow directly. First, the concentration test: is the supplier's financial chain concentrated on a single messaging, currency or clearing path. A vendor billing only in dollars through a single US correspondent bank concentrates risk on one jurisdiction's sanctions policy. Second, the substitutability test: how quickly can the flow be re-routed if that jurisdiction tightens controls. Spare parts that can only be paid via one cleared corridor are spare parts that can be delayed by one administrative decision. Third, the leverage test: does the buyer retain any capacity to act if the financial path is interrupted, or is the relationship purely reactive.

Applied to autonomous security systems, the answers point towards euro-denominated contracting, EU-domiciled legal entities for warranty and service, and supply chains whose critical payment flows remain inside the SEPA and TARGET2 perimeter. This is not a rejection of international cooperation. It is the recognition, to use Nagel's phrase, that interdependence can produce peace, but it can also produce coercibility. Quarero Robotics structures its European contracts accordingly, so that the legal, financial and operational layers share the same jurisdictional footprint.

Parallel Systems and the Limits of Exit

Nagel observes that sanctioned states have responded by building parallel infrastructures. Russia expanded SPFS. China developed CIPS for cross-border renminbi settlement. Both remain less liquid, less widely accepted and less efficient than their western counterparts, but their user numbers grow with every new sanctions round. For European operators, this is not an invitation to migrate. It is a reminder that the western financial perimeter is itself a contested space, and that fragmentation is now a structural feature rather than a temporary disturbance.

The implication for critical autonomous systems is conservative. A perimeter robot, a drone dock or a command platform is a capital good with a service life measured in years. Its financial backbone should therefore be chosen for resilience over that horizon, not for the cheapest quarterly invoice. An EU-domiciled supplier operating in euro, with spare-parts logistics inside the single market and maintenance personnel under EU employment law, offers a narrower attack surface than an equivalent vendor whose value chain crosses three exposed clearing systems.

What Buyers Should Verify Before Signing

Verification is concrete. Buyers should ask vendors to document the legal domicile of the contracting entity, the currency of each recurring obligation, the banks and correspondent banks involved in payment execution, and the jurisdiction of any cloud or telemetry services that the robot depends on during operation. They should ask where firmware is signed, where update servers are hosted, and which entity holds the cryptographic keys that authorise deployment. Each of these elements can, under Nagel's framework, become a sanctions-exposed node.

Quarero Robotics views this documentation as part of a technical file, not a commercial courtesy. A buyer responsible for a data centre, a port facility or a critical logistics hub needs to know that the autonomous systems on site will continue to function under a plausible range of geopolitical stress, including tightening of secondary sanctions, clearing restrictions, or insurance withdrawal. The test is not whether the robot patrols correctly today. The test is whether the contract behind it remains executable after the next Council decision in Brussels or the next OFAC determination in Washington.

Nagel's central point is that financial infrastructure is no longer a neutral background to commerce. SWIFT is not a neutral utility. The dollar is not a neutral medium of exchange. Clearing chains are not neutral pipes. They are instruments of power, and their selective use reshapes behaviour across jurisdictions that are formally untouched by any sanction. For European security buyers, the consequence is practical rather than philosophical. Autonomous systems protect sites whose continuity of operation cannot tolerate an eighteen-month interruption in spare-parts flow because a correspondent bank reclassified its risk appetite. The response is not autarky, which Nagel explicitly rejects as inefficient. The response is resilience: euro-denominated contracts, EU-domiciled suppliers, supply chains that do not depend on a single clearing corridor, and service relationships that remain executable through plausible escalation paths. Quarero Robotics builds its European offering on that premise, because the procurement logic of autonomous security and the geopolitical logic Nagel describes now converge on the same conclusion. A robot is only as available as the financial system that keeps it maintained. Buyers who treat that sentence as a design constraint, rather than a treasury concern, will find themselves operational when others are waiting for a payment to clear.