full spectrum computer network
play

Full Spectrum Computer Network (Active) Defense Black hat USA 2013 - PowerPoint PPT Presentation

May 31, 2023 •337 likes •1.17k views

Legal Aspects of Full Spectrum Computer Network (Active) Defense Black hat USA 2013 Agenda Disclaimer Errata Self Defense in Physical World Applying Self Defense to Computer Network Defense Technology Pen Testing/Red

  1. Legal Aspects of Full Spectrum Computer Network (Active) Defense Black hat USA 2013

  2. Agenda  Disclaimer  Errata  Self Defense in Physical World  Applying Self Defense to Computer Network Defense  Technology  Pen Testing/Red Teaming  Intelligence/Open Source  IA and Training/Polices  Information Control  Active Defense  Deception  Operating on The ―Net‖

  3. Agenda  I have an active defense scenario.

  4. Disclaimer

  5. Disclaimer - aka the fine print  Joint Ethics Regulation  Views are those of the speaker  I’m here in personal capacity  Don’t represent view of government  Disclaimer required at beginning of presentation.  All material - unclassified

  6. U.S. Law And Computer Network Operations

  8. Oh yeah, 1986 CFAA Office of Cybersecurity & Communications Future Strategy November 9, 2009 1

  9. United States v. Prochner, 417 F3d. 54 (D. Mass. July 22, 2005)  Definition of Special Skills  Special skill – a skill not possessed by members of the general public and usually requiring substantial education, training or licensing.  Examples – pilots, lawyers, doctors, accountants, chemists and demolition experts.  Not necessary to have formal education or training  Skills can be acquired through experience or self-tutelage.  Critical question is whether the skill set elevates to a level of knowledge and proficiency that eclipses that possessed by the general public.

  10. In re Innovatio IP Ventures, LLC Patent Litigation & ECPA  In re Innovatio IP Ventures, LLC Patent Litigation, - - - - F.Supp.2d - - - , 2013 WL 427167 (N.D. Ill. Feb. 4, 2013)  Patent Owners of wireless Internet technology  Sue commercial users of wireless Internet technology  Alleging by making wireless Internet available to customers or using it to manage internal processes, users infringed various claims of 17 patents.  Plaintiff Innovatio has sued numerous hotels, coffee shops, restaurants, supermarkets, and other commercial users of wireless internet technology located throughout the United States (collectively, the ―Wireless Network Users‖).

  11. In re Innovatio IP Ventures, LLC Patent Litigation & ECPA  In re Innovatio IP Ventures, LLC Patent Litigation, 886 F.Supp.2d 888 (N.D. Ill. Aug. 22, 2012)  Decision  Data packets sent over unencrypted wireless networks  Readily accessible to general public using basic equipment  Patent owner's proposed protocol for sniffing accessed only communications sent over unencrypted networks available to general public using packet capture adapters  Falls under exception to Wiretap Act ―electronic communication is readily accessible to the general public.‖  Evidence obtained using protocol admissible at patent infringement trial with proper foundation. 18 U.S.C.A. § 2511(2)(g)(i).

  12. In re Innovatio IP Ventures, LLC Patent Litigation & ECPA  In re Innovatio IP Ventures, LLC Patent Litigation, 886 F.Supp.2d 888 (N.D. Ill. Aug. 22, 2012)  Innovatio intercepting Wi – Fi communications  Riverbed AirPcap Nx packet capture adapter (only $698.00)  Software (wireshark) available for download for free.  Laptop, software, packet capture adapter-  Any member of general public within range of an unencrypted Wi – Fi network can intercept.  Many Wi – Fi networks provided by commercial establishments are unencrypted and open to such interference from anyone with the right equipment.  In light of the ease of ―sniffing‖ Wi– Fi networks, the court concludes that the communications sent on an unencrypted Wi – Fi network are readily accessible to the general public.

  13. In re Innovatio IP Ventures, LLC Patent Litigation & ECPA  In re Innovatio IP Ventures, LLC Patent Litigation, 886 F.Supp.2d 888 (N.D. Ill. Aug. 22, 2012)  Decision  The public's lack of awareness of the ease with which unencrypted Wi – Fi communications can be intercepted by a third party is, however, irrelevant to a determination of whether those communications are ―readily accessible to the general public.‖ 18 U.S.C. 2511(2)(g)(i)

  14. Legal Aspects of Full Spectrum Computer Network (Active) Defense

  15. Black Hat topic Is it Relevant??

  17. Self Defense - History  Defending life and liberty and protecting property, twenty-one state constitutions expressly tell us, are constitutional rights, generally inalienable, though in some constitutions merely inherent or natural and God-given.  Eugene Volokh, State Constitutional Rights of Self-Defense and Defense of Property , Texas Review of Law and Politics, Spring 2007

  18. Self Defense - History  Self-defense and defense of property are long- recognized legal doctrines, traditionally protected by the common law.  Eugene Volokh, State Constitutional Rights of Self-Defense and Defense of Property , Texas Review of Law and Politics, Spring 2007

  19. Self Defense - History  Common Law doctrine – Trespass to Chattel  Recover actual damages suffered due to impairment of or loss of use of property.  May use reasonable force to protect possession against even harmless interference.  The law favors prevention over post-trespass recovery, as it is permissible to use reasonable force to retain possession of chattel but not to recover it after possession has been lost.  Intel v. Hamidi, 71 P. 2d. (Cal. Sp. Ct. June 30, 2003)

  20. Self Defense - History  Right to exclude people from one’s personal property is not unlimited.  Self-defense of personal property one must prove  in a place right to be  acted without fault  used reasonable force  reasonably believed was necessary  to immediately prevent or terminate other person's trespass or interference with property lawfully in his possession.  Moore v. State, 634 N.E. 2d. 825 (Ind. App. 1994) and Pointer v. State, 585 N.E. 2d. 33 (Ind. App. 1992)

  21. Self Defense - History  The common-law right to protect property has long generally excluded the right to use force deadly to humans.  Eugene Volokh, State Constitutional Rights of Self- Defense and Defense of Property , Texas Review of Law and Politics, Spring 2007

  22. Self Defense - History  Common Law Doctrine – Trespass to Chattel  May use reasonable force to protect possessions against even harmless interference.  Prevention over post-trespass recovery  Self-defense of personal property  in a place right to be  acted without fault  used reasonable force  reasonably believed was necessary  to immediately prevent or terminate other person's trespass or interference with property lawfully in his possession.

  23. Full Spectrum Computer Network Defense  Building the Case of Reasonableness  Defense of Property  Conduct constituting an offense is justified if:  (1) an aggressor unjustifiably threatens the property of another, and  (2) the actor engages in conduct harmful to the aggressor:  (a) when and to the extent necessary to protect the property,  (b) that is reasonable in relation to the harm threatened.

  24. Full Spectrum Computer Network Defense  Building the Case of Reasonableness  Measures Done to Secure and Defend  Technology  Intelligence/Situational Awareness  IA/Policies/Training  Information Control  Active Defense  Deception  Recovery Operations  ―Stop the Pain‖

  25. Full Spectrum Computer Network Defense  Building the Case of Reasonableness  What was missing from previous slide and goes directly to reasonableness  PREVIOUS & ONGOING COORDINATION WITH LAW ENFORCEMENT AGENCIES

  26. Full Spectrum Computer Network Defense  Building the Case of Reasonableness  Measures Done to Secure and Defend  Technology  Intelligence/Situational Awareness  IA/Policies/Training  Information Control  Active Defense  Deception  Recovery Operations  ―Stop the Pain‖

  27. Full Spectrum Computer Network Defense  Building the Case of Reasonableness  Why?  Attempting to convince DOJ (any prosecutorial office) NOT to prosecute for your actions.  Worse Scenario – Attempting to convince Judge/Jury that your actions were extremely reasonable and therefore self defense to your CFAA charges.

  28. Full Spectrum Computer Network Defense  Building the Case of Reasonableness  Reality & Practicality  DOJ taking a hard stance with ―active defense‖  Requirement for self-defense/necessity  No other lawful means (i.e. LEA)  All means/remedies exhausted  LEA  Civil lawsuits

  29. Full Spectrum Computer Network Defense  Building the Case of Reasonableness  Although it may be tempting to do so (especially if the attack is ongoing), the company should not take any offensive measures on its own, such as ―hacking back‖ into the attacker’s computer — even if such measures could in theory be characterized as ―defensive.‖ Doing so may be illegal, regardless of the motive. Further, as most attacks are launched from compromised systems of unwitting third parties, ―hacking back‖ can damage the system of another innocent party.

  30. Full Spectrum Computer Network Defense  Building the Case of Reasonableness  Measures Done to Secure and Defend  Technology  Intelligence/Situational Awareness  IA/Policies/Training  Information Control  Active Defense  Deception  Recovery Operations  ―Stop the Pain‖

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

The benefits of full-spectrum data for analyzing bat echolocation calls. Full-spectrum (with

The benefits of full-spectrum data for analyzing bat echolocation calls. Full-spectrum (with

The benefits of full-spectrum data for analyzing bat echolocation calls. Full-spectrum (with SonoBat call trending) and zero-crossing interpretations of the same Myotis californicus call signal in the presence of noise. The most commonly used

885 views • 39 slides
Full Spectrum Analysis A description of the full spectrum plot with examples. Ray Kelm, PE

Full Spectrum Analysis A description of the full spectrum plot with examples. Ray Kelm, PE

Full Spectrum Analysis A description of the full spectrum plot with examples. Ray Kelm, PE President/Chief Engineer Kelm Engineering, LLC Time and Frequency Domain Basic FFT Plot Basic FFT Characteristics 1024 time waveform points used

207 views • 16 slides
National Advanced Spectrum and Communications Test Network (NASCTN) T rusted Spectrum Testing 5G

National Advanced Spectrum and Communications Test Network (NASCTN) T rusted Spectrum Testing 5G

National Advanced Spectrum and Communications Test Network (NASCTN) T rusted Spectrum Testing 5G Spectrum Sharing Testbed Melissa Midzor Growing Need for Trusted Spectrum Testing The Federal government is required to operate in a compressed

556 views • 28 slides
The Full Spectrum: Programming for Audiences with Autism and other Special Needs Presentation

The Full Spectrum: Programming for Audiences with Autism and other Special Needs Presentation

The Full Spectrum: Programming for Audiences with Autism and other Special Needs Presentation by: Jonathan Shmidt Chapman Producer, Family Programming Lincoln Center Education jchapman@lincolncenter.org Based on research and development

465 views • 32 slides
Protecting nuclear materials and facilities against the full spectrum of plausible threats M.

Protecting nuclear materials and facilities against the full spectrum of plausible threats M.

Protecting nuclear materials and facilities against the full spectrum of plausible threats M. Bunn, N. Roth, W. Tobey Managing the Atom Project, Harvard Kennedy School IAEA Conference on Physical Protection of Nuclear Material and Nuclear

568 views • 13 slides
Economics and Computer Science of a Radio Spectrum Reallocation Kevin Leyton-Brown Computer

Economics and Computer Science of a Radio Spectrum Reallocation Kevin Leyton-Brown Computer

Economics and Computer Science of a Radio Spectrum Reallocation Kevin Leyton-Brown Computer Science Department University of British Columbia & Auctionomics, Inc. FCCs Incentive Auction Over 13 months in 2016-17 the FCC held

693 views • 56 slides
CSE 469: Computer and Network Forensics Topic 0: Course Overview Dr. Mike Mabey | Spring 2019

CSE 469: Computer and Network Forensics Topic 0: Course Overview Dr. Mike Mabey | Spring 2019

CSE 469: Computer and Network Forensics Topic 0: Course Overview Dr. Mike Mabey | Spring 2019 CSE 469: Computer and Network Forensics Instructor Dr. Mike Mabey Alumnus of ASU (MS & PhD) Adjunct / Faculty Associate Full time

585 views • 25 slides
Spectrum The Electromagnetic Spectrum The EM spectrum is the ENTIRE range of EM waves in order

Spectrum The Electromagnetic Spectrum The EM spectrum is the ENTIRE range of EM waves in order

The Electromagnetic Spectrum The Electromagnetic Spectrum The EM spectrum is the ENTIRE range of EM waves in order of increasing frequency and decreasing wavelength. As you go from left right, the wavelengths get smaller and the frequencies

789 views • 11 slides
The Full Spectrum Warrior Camera System John Giors 1 INTRODUCTION 1.1 Motivation Camera

The Full Spectrum Warrior Camera System John Giors 1 INTRODUCTION 1.1 Motivation Camera

The Full Spectrum Warrior Camera System John Giors 1 INTRODUCTION 1.1 Motivation Camera systems are among the most important systems in any game. After all, the camera is the window through which the player interacts with the simulated world.

276 views • 13 slides
Data Link Layer MAC address Protocol Network Layer address must identify the network

Data Link Layer MAC address Protocol Network Layer address must identify the network

Overview What is a computer network? CSCE 515: What is the Internet? Computer Network What are the popular network reference Programming model? -- Midterm Review OSI, TCP/IP Wenyuan Xu What is the main responsibilities and

339 views • 12 slides
Data Link Layer MAC address Protocol Network Layer address must identify the network

Data Link Layer MAC address Protocol Network Layer address must identify the network

Overview What is a computer network? CSCE 515: What is the Internet? Computer Network What are the popular network reference Programming model? -- Review (partial) OSI, TCP/IP Wenyuan Xu What is the main responsibilities

299 views • 13 slides
Crowdsourcing Access Network Spectrum Allocation Using Smartphones Jinghao Shi , Zhangyu Guan

Crowdsourcing Access Network Spectrum Allocation Using Smartphones Jinghao Shi , Zhangyu Guan

pocketsniffer@blue.cse.buffalo.edu Crowdsourcing Access Network Spectrum Allocation Using Smartphones Jinghao Shi , Zhangyu Guan , Chunming Qiao Tommaso Melodia , Dimitrios Koutsonikolas and Geoffrey Challen University

601 views • 16 slides
Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn Black J CSCI 6268/TLEN 5831, Fall 2004 Introduction UC Davis PhD in 2000 Cryptography Interested in broader security as well

492 views • 12 slides
CRISIS COMMUNICATION The Social Media Impact May 10, 2011 MEDIA AS A FULL SPECTRUM MONITORING

CRISIS COMMUNICATION The Social Media Impact May 10, 2011 MEDIA AS A FULL SPECTRUM MONITORING

CRISIS COMMUNICATION The Social Media Impact May 10, 2011 MEDIA AS A FULL SPECTRUM MONITORING THE MEDIA THE CONVERSATION EXISTS WITH OR WITHOUT YOU SOCIAL MEDIA Compound interest the nature of viral Criticality of media monitoring

321 views • 14 slides
Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn Black J Lecture #25 Dec 1 st 2005 CSCI 6268/TLEN 5831, Fall 2005 Announcements Remainder of the semester: Quiz #3 is Today 40 mins

414 views • 20 slides
Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn

Foundations of Network and Foundations of Network and Computer Security Computer Security J ohn Black J Lecture #3 Aug 30 st 2005 CSCI 6268/TLEN 5831, Fall 2005 Assignment #0 Please add yourself to the class mailing list Send mail

379 views • 35 slides
Key Escrow Key escrow system allows authorized third party to recover key Useful when

Key Escrow Key escrow system allows authorized third party to recover key Useful when

Key Escrow Key escrow system allows authorized third party to recover key Useful when keys belong to roles, such as system operator, rather than individuals Business: recovery of backup keys Law enforcement: recovery of keys

623 views • 23 slides
Decentralized Exploration in Multi-Armed Bandits Raphal Fraud, Rda Alami, Romain Laroche

Decentralized Exploration in Multi-Armed Bandits Raphal Fraud, Rda Alami, Romain Laroche

Decentralized Exploration in Multi-Armed Bandits Raphal Fraud, Rda Alami, Romain Laroche raphael.feraud@orange.com, reda.alami@orange.com, Romain.Laroche@microsoft.com June 2019 R. Fraud, R. Alami, R. Laroche 1 / 19 Context and

548 views • 31 slides
Breakfasts 2016 Welcome to Novembers BIC Breakfast: BIC Realtime Standards for Instant

Breakfasts 2016 Welcome to Novembers BIC Breakfast: BIC Realtime Standards for Instant

Breakfasts 2016 Welcome to Novembers BIC Breakfast: BIC Realtime Standards for Instant Business Message Exchange #BICBreakfast Kindly sponsored by What is a What is a BIC Breakfast? BIC Breakfast? BIC Committees Digital Supply Chain

1.08k views • 72 slides
Fourth-Quarter and Fiscal Year 2016 Financial Results and Update August 22, 2016 1

Fourth-Quarter and Fiscal Year 2016 Financial Results and Update August 22, 2016 1

Fourth-Quarter and Fiscal Year 2016 Financial Results and Update August 22, 2016 1 Forward-looking statements and Non-GAAP financial measures Forward-looking statements Certain statements included in this presentation, including, but not

455 views • 30 slides
BANK MARKETING ETING DATA ANALYSI SIS Instructor: Professor Soon Ae Chun Subject Name: BDA761

BANK MARKETING ETING DATA ANALYSI SIS Instructor: Professor Soon Ae Chun Subject Name: BDA761

12/17/2015 BANK MARKETING ETING DATA ANALYSI SIS Instructor: Professor Soon Ae Chun Subject Name: BDA761 Big Data Management in a Supercomputing Environment Date : 10 th Dec 2015 Student Name: Eun Jin Kwak BANK DATA ? Basic &

548 views • 7 slides
OVERVIEW OF THE STOCHASTIC THEORY OF PORTFOLIOS IOANNIS KARATZAS Department of Mathematics,

OVERVIEW OF THE STOCHASTIC THEORY OF PORTFOLIOS IOANNIS KARATZAS Department of Mathematics,

OVERVIEW OF THE STOCHASTIC THEORY OF PORTFOLIOS IOANNIS KARATZAS Department of Mathematics, Columbia University, NY and INTECH Investment Technologies LLC, Princeton, NJ Talk at ICERM Workshop, Brown University June 2017 1 / 116 SYNOPSIS

1.38k views • 116 slides
PRISMBREAK The value of online identities Frank Ackermann, November 2013 disclaimer This

PRISMBREAK The value of online identities Frank Ackermann, November 2013 disclaimer This

PRISMBREAK The value of online identities Frank Ackermann, November 2013 disclaimer This talk is focused on security awareness. This talk does not contain proof of concepts, shell code, scripts or other in-depth technical details. The

819 views • 44 slides
CSCI 4760 - Computer Networks Fall 2016 Instructor: Prof. Roberto Perdisci perdisci@cs.uga.edu

CSCI 4760 - Computer Networks Fall 2016 Instructor: Prof. Roberto Perdisci perdisci@cs.uga.edu

source: computer-networks-webdesign.com CSCI 4760 - Computer Networks Fall 2016 Instructor: Prof. Roberto Perdisci perdisci@cs.uga.edu These slides are adapted from the textbook slides by J.F. Kurose and K.W. Ross Chapter 2: Application layer

1.29k views • 117 slides

More recommend