Tuesday, 14 June 2011

8:30-16:30	Online Social Media and Internet Investigations (Six One Hour Sessions) Presented By Charles Cohen, Cohen Training and Consulting, LLC Charles Cohen also holds the position of Commander, Special Investigations and Criminal Intelligence, Indiana State Police, USA 8:30-9:30: Session 1 of 6 What Investigators & Analysts Need to Know about Online Social Media. This session is for criminal investigators and intelligence analysts who need to understand the impact of online social networking on how criminals communicate, train, interact with victims, and facilitate their criminality. 9:45-10:45: Session 2 of 6 OSINT and Criminal Investigations  Now that the Internet is dominated by Online Social Media, OSINT is a critical component of criminal investigations.  This session will demonstrate, through case studies, how OSINT can and should be integrated into traditional criminal investigations. 11:00-12:00: Session 3 of 6 Successful Use of Online Social Media in Criminal Investigations This session is for investigators who need to understand social network communities along with the tools, tricks, and techniques to prevent, track, and solve crimes. 13:00-14:00: Session 4 of 6 Counterintelligence & Liabilities Involving Online Social Media Current and future undercover officers must now face a world in which facial recognition and Internet caching make it possible to locate an online image posted years or decades before.  There are risks posed for undercover associated with online social media and online social networking Investigations.  This session presents guidelines for dealing with these risks. 14:15-15:15: Session 5 of 6 What Investigators Need to Know about Hiding on the Internet Criminal investigators and analysts need to understand how people conceal their identity on the Internet.  Technology may be neutral, but the ability to hide ones identity and location on the Internet can be both a challenge and an opportunity.  Various methods of hiding ones identity and location while engaged in activates on the Internet,  provides an opportunity for investigators to engage in covert online research while also providing a means for criminals to engage in surreptitious communication in furtherance of nefarious activities.  As technologies, such as digital device fingerprinting, emerge as ways to attribute identity this becomes a topic about which every investigator and analyst my become familiar. 15:30-16:30: Session 6 of 6  Cyberspace Money Laundering: Tools, Tricks & Techniques Today, every investigator and analyst must at least understand the basics of the Internet online monetary transactions in order to be effective.  This session addresses eCash to online virtual stored value cards and from virtual currencies to mobile payment systems. The Internet is a panacea for the active or aspiring entrepreneurial criminal.
8:30-16:30	Implementation of a Tactical Communications Analytical Unit in Your Agency Jill Hammond, Senior Analyst, NTI Law Enforcement Services A detailed review of the equipment, hardware, software, analytical/reporting techniques, and concepts necessary to put into operation an analytical unit that can exploit communications records (Landline, cell, VoIP, Satphone, Prepaid calling cards, and emails) in support of criminal and national security investigations Function of a Tactical Communications Analysis Unit (TCAU) Acquire real time and historical communications records and perform appropriate analyses to determine relationships, hierarchy, and organizational structure of co-conspirators and identify individual involvement in criminal and/or terrorist activities.  Integrate the results of communications analysis with other intelligence information (activities, financial transaction, surveillance, etc.) collected during the investigative process to generate tactical leads that support the ongoing investigative process.             8:30-9:30         Acquisition of communications records: What to get (real time & historical). How much to get. Validating and understanding records received 9:45-10:45       Preparing and formatting communications records for computer analysis.  Hardware and software to pre-process raw communications records for electronic storage 11:00-12:00     Understanding basic and advanced analytical concepts.  Enhancing the results of basic contact communications analysis (frequency, common call, etc.). Advanced communications temporal analytical theory. 13:00-14:00     Understanding the functionality you’ll need in database & analytical software.  Functionality needed to support your operation.  Database storage to properly hold communications and related records.  Selecting advanced analytical software to perform contact and temporal direct and implied analysis of those records 14:00-15:00     Presentation of findings – Interpreting the results of computerized analysis of communications records and generating tactical leads.  A new approach to writing and presenting analytical reports 15:30-16:30     Building the TCAU – Staffing- Choosing the right people and training. Working with vendors.  Putting analytical workflow and operational procedures in place.
13:00-16:30	OSINT Tactical, Strategic and Tradecraft for Law Enforcement and Intelligence Analysts (Three-One Hour Sessions) Steve Edwards OSINT Training Steve Edwards has 30 years service as a detective intelligence officer with the UK National Crime Squad and SOCA 13:00-14:00 Tactical OSINT Today's needs, collection strategies, knowing your customer, audit trails, the importance of provenance and attribution versus plagiarism 14:15-15:15 Strategic OSINT Strategy and collection plans, monitoring of extremist, terrorist groups and organized crime, country research; grey literature and machine translation. 15:30-16:30 OSINT Tradecraft Expanded search methodology, identity protection, search engine breakdown, deep web and more.
8:30-12:00	Understanding Telecommunications Technologies for LEA Investigators and Intelligence Analysts (Three One Hour Sessions) Presented By: Dr. Jerry Lucas, President, TeleStrategies This pre-conference seminar is for law enforcement, interior security and intelligence analysts who have to understand telecommunications technology buzz words and jargon in order to communicate with telecom operator engineers regarding their Intelligence Support System (ISS) requirements regarding lawful interception, investigative analysis and intelligence gathering with intercept case study challenges. Seminar sessions include: 8:30-9:30 Understanding Wireline Telecom Infrastructure and Interception What do LEAs need to know about the public switched telecommunications networks, circuit switching, fiber optics, SS7, SDH, DSL, billing systems and call detail records, standards overview for lawful intercept, basic LI elements (access, delivery and collection function), call information and call content data collection, SS7 probes and relevant telecom network elements.  Circuit Switching vs. VoIP, SIP, SoftSwitches, Gateways, VoIP over Broadband, DSLAM's and PSTN Interconnection. 9:45-10:45 Understanding Mobile Wireless Infrastructure and Interception Infrastructure basics (GSM, GPRS, EDGE, UMTS, HSPA and LTE), Wi-Fi, WiMax and Femtocells, How a cellular call is processed, back office infrastructure, HLR, VLR, Backhaul and PSTN interconnection, data services, SMS, MMS, EM, data services, fixed mobile convergence and IMS.  The basics of mobile wireless technologies, A-GPS, AOA, TDOA, U-TDOA, WLS and location accuracy.  Transforming cell records and location data into actionable intelligence, Smart Phone intercept and wireless provider business model, Apple iPhone, Google Android and LTE Challenges. 11:00-12:00 Understanding the Internet and Lawful Interception What Investigators Have To Know about IP call Identifying Information, Radius, DHCP, DNS, etc. and Tracking an Internet Address to a Source, Investigations Involving E-Mail, Websites, Skype, Instant Messaging, Chat Rooms and Message Boards, IMS, P2P Networks and Deep Packet Inspection and what can be done to address Internet intercept deploying ISS infrastructure, what can’t be done without new legislation and future challenges law enforcement and the intelligence community faces.
13:00-16:30	Basics of Internet Intercept for Law Enforcement and Intelligence Analysts Matthew Lucas (Ph.D, Computer Science), VP, TeleStrategies 13:00-14:00 Understanding TCP/IP for Packet Traffic Analysis Learn the basics/fundamentals of IP network, including: key equipment components, network access types, service provider infrastructure, IP protocol basics, TCP protocols and applications. 14:15-15:15 Understanding DPI for LEAs, Intelligence Analysts and Telecom Operators Learn packet intercept by example, including: intercept options, probe types, packet capture, packet analysis and application protocol decoding. 15:30-16:30 Understanding Web 2.0, IM, P2P and Social Networking Messaging (Facebook, Twitter, ect.) Learn about advanced IP applications, including: social networking communications models, web2.0 apps, computing models and intercept options.
9:45-10:45	ETSI/TC LI Standard Update Peter Van der Arend, Chairman, ETSI/TC LI
11:00-12:00	eWarrant/HI-1 Standard Update Tony Rutkowski, VP, Yaana Technology