ISS World Middle East is the region’s largest gathering of Law Enforcement, Intelligence and Homeland Security Analysts as well as Telecom Operators responsible for Lawful Interception, Hi-Tech Electronic Investigations, DarkNet Monitoring and Cyber Intelligence Gathering.
ISS World Programs present the methodologies and tools for Law Enforcement, Public Safety and Government Intelligence Communities in the fight against drug trafficking, cyber money laundering, human trafficking, terrorism and other criminal activities conducted over today's telecommunications network and the Internet.Track 1: Lawful Interception and Criminal Investigation Training
Track 2: OSINT Automation and Cyber Threat Detection
Track 3: Cyber Security and Counter Intelligence
Track 4: Encrypted Traffic Monitoring and IT Intrusion Product Training
Track 5: LEA, Defense and Intelligence Analyst Product Demonstrations
Track 6: Social Network Monitoring and Big Data Analytics Product Demonstrations
Track 7: Mobile Signal Intercept and Electronic Surveillance Product DemonstrationsPlus Seminars and Conference Training Sessions (13 - 15 March 2017)
ISS World Agenda From 2017 ISS World America Program
ISS World Middle East 2018
Agenda and Registration Link
Available December, 2017
ISS World MEA Exhibits Schedule
Tuesday, 14 March 2017
10:00-17:00Wednesday, 15 March 2017
9:30-12:30
Special Intel and LEA Training Sessions (Monday, 13 March 2017)
Seminar #1
09:00 -17:00Practitioners Guide to Internet Investigations
Presented by: Mark Bentley, Communications Data Expert, National Cyber Crime Law Enforcement, UK Police
The aim of this 1-day seminar is to take the attendees from the basics of understanding the internet, how to find data, through to a full understanding of best practice of an internet investigator, having awareness and knowledge of all the tools available to achieve this.
This is exclusively Law Enforcement only, as Practical examples, covert and investigative methods will be given throughout the seminar.
9:00-10:00
The Internet and how suspects leave a digital footprint10-15-11:15
Recognizing Traffic Data and Digital Profiling11:30-12:30
WI-FI, Geolocation and Mobile Data Traces13:30-14:30
Awareness of Emerging Technologies, Masking Tech and Tolls, TOR and Proxies14:45-15:45
Advanced Techniques in Tracing Suspects and lateral problem solving16:00-17:00
Open Source Intelligence Training (OSINT), Resources and TechniquesSeminar #2
9:00-12:30Understanding ISS Products Deployed in Telecommunication and IP Networks for Lawful Interception and Mass Surveillance
Presented by: Dr. Jerry Lucas, President, TeleStrategies
This half-day seminar covers how criminals and terrorists communicate over today's public telecommunications wireline and wireless networks, over the top Internet services and social networks. This seminar is ideal for law enforcement, interior security, public safety and others who need to understand the ISS technologies and products used to lawfully intercept electronic communications and conduct mass network surveillance as discussed at ISS World Conference sessions and by exhibitors.
9:00-10:00
Understanding Wireline and IP Infrastructure and related ISS Products for Lawful Interception and Mass Surveillance10:15-11:15
Understanding Mobile Wireless Infrastructure and Related ISS Products for Interception and Surveillance11:30-12:30
Understanding the Internet Over-the-Top (OTT) Services and Related ISS Products for Interception and SurveillanceSeminar #3
13:30-15:45SS7 Vulnerabilities and Intercept Options
Presented by: Dr. Jerry Lucas, President, TeleStrategies and a Distinguished Telecom Technology Expert to be announced
There are two very important aspects of telco SS7 infrastructure law enforcement and inteior security needs to understand. For law enforcement: you can locate and track a target anywhere in the world if they just turn on their cell phone. For Interior Security: Injected Nation – State Malware can completely disable today's telecom networks.
(Full Description Below Track 7)
Seminar #4
16:00-17:00The Implications of multi-IMSI and OTA for Law Enforcement and the Government Intelligence Community
Presented by Dr. Jerry Lucas, President, TeleStrategies and a Distinguished Telecom Technology Expert to be announced
The era of SIM Cards with static IMSIs issued by cellular operators is changing. Deployment of multi-IMSI as well as network programmable (OTA) SIM cards will create new challenges for law enforcement. This session looks at the implications of multi-SIM and OTA for LEAs and Intel analysts
Seminar #5
13:30-14:30
Defeating Network Encryption: What Law Enforcement and The Intelligence Community Needs to Understand
Presented by Matthew Lucas, (Ph.D Computer Science), VP, TeleStrategies
The starting point to defeating encryption is to separate techniques addressing stored encrypted data such as with the Apple iPhone issue. The other challenge is defeating encrypted data in transit ( Telegram, Whatsapp, etc.) or so called Network Encryption. This webinar is about defeating the later.
When it comes to defeating network encryption the technical community separates into two camps. Those who want to impede law enforcement and the government intelligence community from defeating network encryption: IETF, Silicon Valley and hundreds of third party encryption services. And your camp, those who want to investigate criminals and terrorist group, who depend on network encryption.
(Full Description Below Track 7)
Seminar #6
14:45-15:45
Investigation Techniques for Unmasking TOR Hidden Services and Other Dark Web Operations
Presented by Matthew Lucas, (Ph.D Computer Science), VP, TeleStrategies
TOR networks are notoriously effective at hiding the online identity of criminals, terrorists and others who are up to no good. The other side that receives less attention are TOR hidden services. These are services that leverage TOR's anonymizing capabilties to mask the identity of criminally-hosted online services - forming the basis of just about all illegal gambling sites, drug markets, child exploitation material, firearm sales, terrorism propaganda, and more.
Wednesday, 15 March 2017
Seminar #7
8:30-9:30
First Step in Bitcoin Investigations: Clustering Bitcoin Addresses and Blockchain Data Analytics
Presented by Matthew Lucas, (Ph.D Computer Science), VP, TeleStrategies
Investigators looking at bitcoin transactions and the blockchain might think that having an open public ledger listing every transaction from the beginning of bitcoin time makes correlating transactions easy. It is not. Addresses are created at will, and transactions can often appear all but random events. This webinar will look at how you make sense of the blockchain using address clustering technologies.
(Full Description Below Track 7)
Seminar #8
11:45-12:45Top 20 Open Source Tools (OSINT) Used in Cybercrime Investigations
Presented by Mark Bentley, Communications Data Expert, National Cyber Crime Law Enforcement, UK Police
(Full Detailed Pre-Conference Seminar Agenda Appears After Track 7)
Tuesday, 14 March 2017
Welcoming Remarks
8:15-8:30 Tatiana Lucas, ISS World Program Director, TeleStrategies Keynote
8:30-9:00 Top Ten Internet Challenges Facing Law Enforcement and the Intelligence Community and Who at ISS World Middle East has Solutions
Dr. Jerry Lucas, President, TeleStrategies
Track 1: Lawful Interception and Criminal Investigation Training
This track is for Telecom Operators and Law Enforcement/Intelligence/Defense Analysts who are responsible for specifying or developing lawful intercept network infrastructure.
Monday, 13 March 2017
11:30-12:30 Amplifying Security Intelligence with Visual AI
Presented by Abiba Systems13:30-14:30 Acquisition, Processing & Decryption on Wheels
A complete forensic laboratory on the move
Martin Hermann, MH Service GmbHTuesday, 14 March 2017
9:00-10:00 Current and Future Standardization Challenges: Encryption, Network Function Virtualization, Cloud Computing and More
Alex Leadbeater, Chairman, SA3 LI and EU Data Retention Compliance Manager, BT11:30-12:00 Session A Lawful interception in modern and future Wireless Networks like 5G
This session will elaborate the needs and the challenges of lawful interception in current and future wireless networks.
Network operators and law enforcement agencies will get practical advice and hear about best practice
techniques for successful and cost efficient LI implementations with focus on conformity with national laws
and international standards.
Alexander Chillinksi, Utimaco TS GmbH11:30-12:30 Session B "Voice Biometrics and Speech Technologies. A whole new offering for Criminal ID and Intelligence"
Presented by Agnitio. Now part of Nuance12:00-12:30 Session A Data Fusion and Analytics for National Security and Intelligence
Saran Gopalakrishnan, Yaana Technologies14:00-14:30 High-Speed NAT Logging
Tracing back Internet addresses to individual users and devices is an important requirement of law enforcement agencies
to support their fight against crime and terrorism. Anonymous access and network address translation (NAT), however, complicate the identification of suspects. This presentation elaborates the technical challenges and describes solutions based on high-speed logging.
Sven Jonas, Utimaco TS GmbH14:30-15:00 Finding intelligence in data with network visualization
Presented by Cambridge Intelligence15:30-16:00 Application Monitoring in 100G Networks
Petr Kastovsky, Netcope TechnologiesWednesday, 15 March 2017
8:30-9:30 Bitcoin 101: Introduction to What Technical Investigators Need to Know about Bitcoin Transactions, Dark Web Commerce and Blockchain Analysis
Matthew Lucas, (Ph.D Computer Science), VP, TeleStrategies10:30-11:30 Session A Bitcoin Hide and Seek:
In depth analysis of the services used to prevent bitcoins tracking, with a focus on new decentralized and trustless mixing systems, and technologies to counter them.
Presented by Neutrino.nu10:30-11:30 Session B Last Mile localization techniques and options
Presented by Celliber12:00-13:00 Defeating Encryption with Quantum Computers *** Followed by Defeating Quantum Computers with Quantum-Safe Cryptography: What The ISS Community Needs to know
Dr. Jerry Lucas, President, TeleStrategies
Track 2: OSINT Automation and Cyber Threat Detection
This track is for Private Enterprise Investigators and Law Enforcement who are responsible for Real Time Threat Detection and Mitigation.
Monday, 13 March 2017
14:45-15:15 Actionable Intelligence with the SDL Government Language Platform
One of the most complex – and often overlooked – tasks for Intelligence Analysts is handling multilingual data. From streamlining internal translation processes, using standardized and centralized terminology to translating huge amounts of data automatically into actionable output, handling data in multiple languages is a task that requires the correct approach and tools. Learn how the SDL Government Language Platform offers end-to-end specialized language processing tools for Intelligence, Defense and Law Enforcement organizations
Presented by Patrick Vanderper, SDLTuesday, 14 March 2017
9:00-10:00 Multi-Source Intelligence Collection & Big Data Analytics
Presented by Nanjing Sinovatio Technology
11:30-12:30 Session A Untangling the Criminal Web Using Neo4j, World's Most Popular Graph Database
Presented by GraphAware11:30-12:30 Session B Cyber threat detection: Converting theory into effective operations
To catch a criminal, you have to think like a criminal. Relying solely on tools to detect and respond to a sophisticated, targeted attack is not enough. This session looks at real world training and understanding of a threat to drive security operations forward.
Braden Roux de Buisson, BAE Systems14:00-15:00 Cyber Intelligence, the future of preemptive security
Presented by ISnSC15:30-16:30 Intelligence Analysis on Big Data
Presented by Nanjing Sinovatio Technology
Wednesday, 15 March 2017
10:30-11:00 Handling Multilingual Big Data with Automated Translation
Big Data is not just characterized by volume, variety and velocity, but it also comes in a Multilanguage format. Translating limitless amounts of Multilanguage data can only be achieved by using ultra-fast, state-of-the art automated translation tools. Learn how SDL helps Intelligence, Defense and Law Enforcement agencies to automatically translate social media and secure data to actionable output, handling intelligence-specific scenarios like informal Arabic and Arabizi and enforcing terminology and dictionaries, on a highly scalable and on- premise server platform.
Presented by Claudiu Stiube, SDL
Track 3: Cyber Security and Counter Intelligence
This track is only open to Law Enforcement, Public Safety and Government Intelligence Community Attendees.
Tuesday, 14 March 2017
14:00-15:00 Unidirectional Gateway: the business case and 3 case studies
In this presentation Global Security Network will first present the Data Diode technology as a one way gateway, that is to say to enable data transfer only one way. We will then present 3 cases studies: file transfers in Lawful Interception context, Database replication between low and high confidentiality networks and Message Queue replication across security domains.
Abder Aichoun, Global Security Network (GSN)15:30-16:30 Secure Mobile Communication
Presented by Advantal TechnologiesWednesday, 15 March 2017
8:30-9:30 Best Practices and Use Cases for Secure Mobile Communications for Law Enforcement, Military and Civilian Agencies
Julie Holdren, Chief Product & Operations Officer, Koolspan10:30-11:30 Cross domain security solution: real life case studies
In this presentation Global Security Network will first present the Data Diode technology as a one way gateway, that is to say to enable data transfer only one way. Then we will present the application of Data Diode in two-way Cross Domain applications and their benefits compare to Firewalls or other non-deterministic solutions.
Abder Aichoun, Global Security Network (GSN)
Track 4: Encrypted Traffic Monitoring and IT Intrusion Product Training
This track is only open to Law Enforcement, Public Safety and Government Intelligence Community Attendees
Monday, 13 March 2017
10:15-11:15 Hacking the Human Element
Presented by FinFisher14:45-15:45 Keeping up with the Pace: New Hacking Tools & Techniques for Practical Operations
Presented by FinFisherTuesday, 14 March 2017
15:30-16:30 In-Line tactical IP probing: practical demo and use cases from the field for passive/active interception and remote infection
Presented by RCS S.p.A.Wednesday, 15 March 2017
8:30-9:30 New challenge Network Monitoring: IPv4 disambiguation and rich metadata SIGINT in the age of encryption
Presented by AREA
Track 5: LEA, Defense and Intelligence Analyst Training and Product Demonstrations
This track is only open to Law Enforcement, Public Safety and Government Intelligence Community Attendees.
Monday, 13 March 2017
9:00-17:00 Practitioners Guide to Internet Investigations
Mark Bentley, Communications Data Expert, National Cyber Crime Law Enforcement, UK Police11:30-12:30 Communication World is getting Darker. Conventional Monitoring is getting Obsolete. Targets take advantage of Encrypted Channels (TOR, VPN etc.), Social Networks (Facebook, Twitter, YouTube etc.) and Mobile Apps (Skype, WhatsApp etc.) to communicate anonymously. Conventional Lawful Interception systems fails even to provide an investigation starting point to identify the unknown threats.
Join us and experience for yourself how ClearTrail can help you Analyze Dark Communication to reveal real identities of its users.
Presented by ClearTrail Technologies13:30-14:30 Internet Connection Records (ICR): Collection, Storage, Disclosure and Analysis
Saran Gopalakrishnan, Yaana Technologies14:45-15:45 Vitok-Bridge: intercepted data viewer
Alexey Volkov, NORSI-TRANSTuesday, 14 March 2017
9:00-10:00 Session A Lawful Interception in 2017. VoLTE and encrypted services like Facebook, Gmail and WhatsApp. A new approach to the IP investigation
Presented by IPS9:00-10:00 Session B Analytics - Digital Investigative Platform Overview
To work cases faster, investigators need direct access to all digital forensic evidence. The Cellebrite UFED Analytics Platform automates digital data analysis and case management tasks.
A virtual partner, it automatically merges multiple disparate data sources, even historical case extractions, to help investigators document all forensics artifacts.
Advanced user and case-level permission management controls ensure authorized stakeholders can view data independently or collaboratively as needed throughout the investigative process.
Martin Pfeiffer, Cellebrite11:30-12:00 Session A How to quickly and efficiently identify suspects - Live demonstration analyzing complex data generated from multiple Monitoring Centers
Presented by trovicor11:30-12:30 Session B Generate powerful evidences from PCAP, CDR and OSINT data, all from a single interface. Agencies have to deal with variety of data like PCAP, CDR, and Open Source Data etc. coming from different sources. A typical investigation of such data involves manual correlation using different tools that eventually leads to disconnected intelligence and doesn't provide a single view of a "Person of Interest.
What if you could bring data, tools and systems together on a single interface?
Experience a seamless Investigation Workbench that assists investigators to collaboratively discover evidences, profile suspects, build stories and solve cases rapidly.
Presented by ClearTrail Technologies
12:00-12:30 Session A Real-time target location tracking - Live demonstration detailing how to generate intelligence from location information
Presented by trovicor14:00-15:00 Session A Tracking Location and calls of foreign nationals through the use of a passive strategic mobile interception system
Presented by VASTech14:00-15:00 Session B LIVE DEMO: face & voice recognition to identify people in video surveillance, phone calls and social media
Presented by ATIS systems15:30-16:30 Session A Voice Biometry and Speech Analytics for Intelligence, LEA and Police Forces
Presented by Phonexia15:30-16:30 Session B IP Resolution in Carrier Networks
Ray Hutton, TelesoftWednesday, 15 March 2017
8:30-9:30 Session A Next generation LI-MC: extracting intelligence from Meta-Data with easy-to use DPI and Big Data analysis capabilities in a unique platform.
Presented by RCS S.p.A.10:30-11:00 Session A How to uncover patterns in communication - Live demonstration on utilizing email analysis to detect corruption
Presented by trovicor10:30-11:30 Session B Man in the Middle technology. Hardware and Software solution Vitok-Bridge.
Roman Khokhlov, Head of Information Security Department, NORSI-TRANS
Track 6: Social Network Monitoring and Big Data Analytics Training and Product Demonstrations
This track is only open to Law Enforcement, Public Safety and Government Intelligence Community Attendees
Monday, 13 March 2017
9:00-10:00 Automatic Exploitation of Social Network, Deep and Dark Web to complement traditional Lawful Interception Infrastructure
Presented by IPS11:30-12:00 Session A The New Forensic Investigator Toolbox: from Tactical to Open Source Investigations
Presented by AREA11:30-12:00 Session B OSINT/Dark Web
Tracking radical groups across media -- a journey from OSINT into the Dark Web
Presented by Gamma Group13:30-14:30 How Public Sentiment can be influenced through propaganda campaigns on Social Media
Presented by IPS14:45-15:45 Cloud Investigation with UFED Cloud Analyzer
We live in a connected world and connectivity ubiquitousness carries an ever increasing data volumes to cloud services. This leads to new investigative challenges of increased volumes of data stored on cloud services.
Join this session to learn how groundbreaking technology and tools enriches investigations with private data obtained from cloud based services.
Mark Pfeiffer, CellebriteTuesday, 14 March 2017
9:00-10:00 Session A 10 Best Practices on All Media Monitoring
A live demo of National Intelligence System for Mobile/Twitter/Facebook/Youtube/News/Forums/Any website.
Monitor your targets' messages, profiles, locations, behaviors, relationships, and more
Bear Xu, CEO, Knowlesys International Limited9:00-10:00 Session B Data Enrichment Techniques and Sources for Internet Investigations
A Unique Collection of Internet-related Open Source Intelligence and How it can be Exploited.
You'll see a powerful collection of open source Internet intelligence data at work and see how some organizations use it to track cyber crime and enrich their existing tools to make sense of what is happening on the Internet related to your investigations. If cyber investigation is now part of your workload, you're going to love this session and leave with lots of new ideas.
Presented by Packet Forensics9:00-9:30 Session C Leveraging Big Data Effectively
Chris Savos, Director of Operations, Pegasus11:30-12:30 Session A OSINT-based Social Engineering
Presented by S2T11:30-12:30 Session B Post Trojan Infiltration: The new Digital Undercover Agent
Presented by AREA14:00-15:00 Session A Aegis, the overall interception system based on big data
Presented by Semptian14:00-15:00 Session B Cutting Out the Noise: Using Social Data Effectively
Presented by Babel Street15:30-16:30 New Intelligence Analysis Framework in the Age of Big Data --- Detection, Analysis and Response
Presented by Privis TechnologyWednesday, 15 March 2017
8:30-9:30 Session A Converging information from multiple sources to create holistic target profile
Presented by S2T8:30-9:00 Session B Leveraging Big Data Effectively
Chris Savos, Director of Operations, Pegasus10:30-11:30 Turning Social Networks Analysis into Intelligence and Social Engineering
Presented by RCS S.p.A.12:00-13:00 Top 20 Open Source Tools (OSINT) Used in Cybercrime Investigations
Mark Bentley, Communications Data Expert, National Cyber Crime Law Enforcement, UK Police
Track 7: Mobile Signal Intercept and Electronic Surveillance Training and Product Demonstration
This track is for Law Enforcement, Interior Security and the Government Intelligence Community who must work with cellular and mobile satellite operators regarding mobile location, electronic surveillance and RF intercept.
Monday, 13 March 2017
10:15-11:15 Border Security and Force Protection Analytics using Passive RF
A Passive Radio System and Analytics Platform for Gaining Deep Insight from Public Wireless Signals.
Passively collect and react to the presence of RF signals using a small form factor sensor. Automatically decode and analyze protocols to gain knowledge about individuals. Correlate sensor data (and where available, open source data) to build a pattern of life and uncover group affiliations. This session will include live demonstrations of real-world scenarios.
Presented by Packet Forensics12:00-12:30 "Evidence-based, operational mission management - from the simple to the sophisticated"
Presented by Gamma Group11:30-12:30 Eskan MG50 - Innovative technical equipment development for hostage and crisis negotiation operations
Presented by Eskan Electronics Limited13:30-14:30 Deep Cover Audio Surveillance and Miniature Hybrid Tracker
Presented by TELECELL (Inteltronix)14:45-15:45 Command and Control Center for covert field operations using Audio, Video and GPS feeds
Presented by IPSTuesday, 14 March 2017
9:00-10:00 VSAT Interception made easy
Presented by VASTech11:30-12:30 Session A Passive Tracker, the 3 in 1 target-transparent phone finder.
Presented by Semptian11:30-12:30 Session B NeoSoft Data Traffic Analyzer for Mobile Monitoring.
Presented by NeoSoft AG14:00-15:00 Session A Machine Learning for Intelligenge: Cerebro NG
Presented by Advanced Systems14:00-15:00 Session B Future proofing your COMINT Systems
Presented by EXFO Homeland Security15:30-16:30 Session A Virtual Reality and Tactical Location Finding
Presented by BTT15:30-16:30 Session B Crime Prevention by Combining Invisible Cell Phone Positioning and Behavioral Analysis
Amalendu Parasnis, MobilarisWednesday, 15 March 2017
8:30-9:30 Session A IMSI Catcher, Target localization, Active and Passive Interception, Basics and Options
Presented by NeoSoft AG8:30-9:30 Session B Miniature surveillance capabilities through wireless solutions
The overall purpose of this class is to provide you with a general overview and basic knowledge of the current feasible wireless capabilities in a miniature surveillance context. All topics in this class will be thoroughly introduced and presented in an easy to understand language. No special technical skills are required to attend.
During the class, we will cover the current wireless technologies such as WIFI, 4g/LTE, COFDM, and VHF. The technologies will be presented through concrete examples that relates to real world uses. We will also cover important topics such as power consumption, wireless range, and detection.
Presented by Covidence10:30-11:30 Session A OSINT/Dark Web and Media Campaigning
Looking at how media communications can influence various actors from radicalizing individuals to rigging elections
Presented by Gamma Group10:30-11:30 Session B GSM Tactical Interception System for 3G and 4G
Presented by Advanced Systems
Special Intel and LEA Training Sessions (Monday, 13 March 2017)
Seminar #1
09:00 -17:00Practitioners Guide to Internet Investigations
Presented by: Mark Bentley, Communications Data Expert, National Cyber Crime Law Enforcement, UK Police
The aim of this 1-day seminar is to take the attendees from the basics of understanding the internet, how to find data, through to a full understanding of best practice of an internet investigator, having awareness and knowledge of all the tools available to achieve this.
This is exclusively Law Enforcement only, as Practical examples, covert and investigative methods will be given throughout the seminar.
9:00-10:00
The Internet and how suspects leave a digital footprint10-15-11:15
Recognizing Traffic Data and Digital Profiling11:30-12:30
WI-FI, Geolocation and Mobile Data Traces13:30-14:30
Awareness of Emerging Technologies, Masking Tech and Tolls, TOR and Proxies14:45-15:45
Advanced Techniques in Tracing Suspects and lateral problem solving16:00-17:00
Open Source Intelligence Training (OSINT), Resources and TechniquesSeminar #2
9:00-12:30Understanding ISS Products Deployed in Telecommunication and IP Networks for Lawful Interception and Mass Surveillance
Presented by: Dr. Jerry Lucas, President, TeleStrategies
This half-day seminar covers how criminals and terrorists communicate over today's public telecommunications wireline and wireless networks, over the top Internet services and social networks. This seminar is ideal for law enforcement, interior security, public safety and others who need to understand the ISS technologies and products used to lawfully intercept electronic communications and conduct mass network surveillance as discussed at ISS World Conference sessions and by exhibitors.
9:00-10:00
Understanding Wireline and IP Infrastructure and related ISS Products for Lawful Interception and Mass Surveillance10:15-11:15
Understanding Mobile Wireless Infrastructure and Related ISS Products for Interception and Surveillance11:30-12:30
Understanding the Internet Over-the-Top (OTT) Services and Related ISS Products for Interception and SurveillanceSeminar #3
13:30-15:45SS7 Vulnerabilities and Intercept Options
Presented by: Dr. Jerry Lucas, President, TeleStrategies and a Distinguished Telecom Technology Expert to be announced
There are two very important aspects of telco SS7 infrastructure law enforcement and inteior security needs to understand. For law enforcement: you can locate and track a target anywhere in the world if they just turn on their cell phone. For Interior Security: Injected Nation – State Malware can completely disable today's telecom networks.
This two hour session addresses:
• SS7 Infrasturcture Architecture Basics
• Law Enforcement Challenges with Current SS7 Architecture
• SS7 Attack Vectors and Protocol Attack Scenarios
• How to Achieve an International Call Intercept
• What Else: Inbound Call Forwarding, SMS Intercept, Denial of Target Service and more!
Seminar #4
16:00-17:00The Implications of multi-IMSI and OTA for Law Enforcement and the Government Intelligence Community
Presented by Dr. Jerry Lucas, President, TeleStrategies and a Distinguished Telecom Technology Expert to be announced
The era of SIM Cards with static IMSIs issued by cellular operators is changing. Deployment of multi-IMSI as well as network programmable (OTA) SIM cards will create new challenges for law enforcement. This session looks at the implications of multi-SIM and OTA for LEAs and Intel analysts
• Understanding IMSIs, MSISDNs and Subscribers
• Growth of multi-IMSI and Multi-MSISDN and Impact on Law Enforcement Target Tracking
• Over The Air (OTA), Billing Fraud, Softsim Vulnerabilities and more!
Seminar #5
13:30-14:30
Defeating Network Encryption: What Law Enforcement and The Intelligence Community Needs to Understand
Presented by Matthew Lucas, (Ph.D Computer Science), VP, TeleStrategies
The starting point to defeating encryption is to separate techniques addressing stored encrypted data such as with the Apple iPhone issue. The other challenge is defeating encrypted data in transit ( Telegram, Whatsapp, etc.) or so called Network Encryption. This webinar is about defeating the later.
When it comes to defeating network encryption the technical community separates into two camps. Those who want to impede law enforcement and the government intelligence community from defeating network encryption: IETF, Silicon Valley and hundreds of third party encryption services. And your camp, those who want to investigate criminals and terrorist group, who depend on network encryption.
Webinar Part I: Review of Overall Encryption Ecosystem
• Where is network encryption placed: devices, access and applications
• Current efforts from the IETF, Silicon Valley and privacy groups to further enhance encryptionWebinar Part II: Proven Techniques to Defeat Network Encryption
• Man-in-the-Middle Attacks
• Encryption Downgrade Attacks
• Web Exploits
• Available Malware Toolkits
• IT IntrusionThis seminar concludes with specific case examples and follow-up resources discussion.
Seminar #6
14:45-15:45
Investigation Techniques for Unmasking TOR Hidden Services and Other Dark Web Operations
Presented by Matthew Lucas, (Ph.D Computer Science), VP, TeleStrategies
TOR networks are notoriously effective at hiding the online identity of criminals, terrorists and others who are up to no good. The other side that receives less attention are TOR hidden services. These are services that leverage TOR's anonymizing capabilties to mask the identity of criminally-hosted online services - forming the basis of just about all illegal gambling sites, drug markets, child exploitation material, firearm sales, terrorism propaganda, and more.
This seminar will present exactly:
• How TOR Hidden Services Work
• The Scale/Scope of TOR-Based Online Markets
• How are TOR Hidden Services Set-up and Searched
• How to Identify TOR Hidden Service Traffic
• How Bitcoin is used in Dark Web Transactions
• Basics of Bitcoin Clustering Analysis
• Other Dark Web Operations Outside of TOR Hidden Service
• And More
Wednesday, 15 March 2017
Seminar #7
8:30-9:30
First Step in Bitcoin Investigations: Clustering Bitcoin Addresses and Blockchain Data Analytics
Presented by Matthew Lucas, (Ph.D Computer Science), VP, TeleStrategies
Investigators looking at bitcoin transactions and the blockchain might think that having an open public ledger listing every transaction from the beginning of bitcoin time makes correlating transactions easy. It is not. Addresses are created at will, and transactions can often appear all but random events. This webinar will look at how you make sense of the blockchain using address clustering technologies. Topics covered include:
• Clustering dark market and exchange addresses
• Correlating darkweb transactions on the blockchain
• Identifying/tracing tumbled addresses
• How online markets manage and use bitcoin accounts
• Exchange tracking and dark markets money in/out flowSeminar #8
11:45-12:45Top 20 Open Source Tools (OSINT) Used in Cybercrime Investigations
Presented by Mark Bentley, Communications Data Expert, National Cyber Crime Law Enforcement, UK Police