E-raamat: Techno Security's Guide to Managing Risks for IT Managers, Auditors, and Investigators

Introduction		xxxiii
Foreword		xxxvii
Social Engineering: Risks, Threats, Vulnerabilities, and Countermeasures		1	(36)
Introduction		2	(1)
How Easy Is It?		2	(1)
Human Nature: Human Weakness		3	(1)
Risk Management: Performing a Mini Risk Assessment		3	(2)
What Do I Have at Risk?		4	(1)
What Are Some Possible Threats?		4	(1)
What Are Some of the Possible Vulnerabilities?		4	(1)
What about My Countermeasures?		5	(1)
Outsider---Insider Threats		5	(1)
The Mind of a Social Engineer		6	(1)
The Mind of a Victim		7	(1)
Countermeasures: How Do Bad Guys Target Us, and What Can We Do About It		8	(23)
Key Control		8	(2)
Dumpster Diving Still Works		10	(2)
Employee Badges		12	(1)
Shredder Technology Has Changed		13	(2)
Keep an Eye on Corporate or Agency Phonebooks		15	(1)
Tailgating		16	(1)
Building Operations: Cleaning Crew Awareness		17	(3)
Spot Check Those Drop Ceilings		20	(1)
Check for Keystroke Readers		20	(3)
Check Those Phone Closets		23	(1)
Remove a Few Door Signs		23	(1)
Review Video Security Logs		24	(1)
Motion-Sensing Lights		25	(1)
Check All Locks for Proper Operation		25	(1)
The Elephant Burial Ground		26	(5)
Internal Auditors Are Your Friend		31	(1)
Always Be Slightly Suspicious		31	(1)
Get Every Employee Involved		31	(1)
Social Engineering Awareness: A War Story		31	(5)
Answer to the Riddle		36	(1)
Summary		36	(1)
Personal, Workforce, and Family Preparedness		37	(38)
Introduction		38	(1)
Threats		38	(3)
Your Personal Preparedness Plan		41	(33)
The Escape Pack		43	(1)
Description of Kit Contents		44	(1)
Workforce Preparedness		45	(2)
Steps for Successful Workforce Preparedness		47	(1)
Get Out, Get Away, and Get in Touch		48	(2)
Family Preparedness Plan		50	(1)
Possible Meeting Points		51	(1)
Community Shelter		52	(1)
The Personal Evacuation Bag		52	(1)
Preparedness Pantry		53	(3)
Water		56	(1)
Cooking		57	(1)
Testing Your Home Preparedness Plan		58	(1)
Family Ready Kit		59	(1)
Family Ready Kit Contents		60	(1)
No Lights? No Problem!		61	(1)
Emergency Lighting		62	(1)
Handheld Lights		63	(1)
Headlamps		64	(1)
General Illumination Lamps		65	(1)
Spots and Floodlights		65	(1)
Emergency Power		66	(3)
UPS and Battery Backup		69	(1)
Portable 12-Volt Inverters		69	(1)
Alternative Power Sources		70	(1)
Staying in Touch		70	(2)
Dynamo Radios		72	(1)
FRS Radios		73	(1)
Ham Radio		73	(1)
The ``POTS'' Line		73	(1)
Summary		74	(1)
Seizure of Digital Information		75	(48)
Introduction		76	(3)
Defining Digital Evidence		79	(3)
Digital Evidence Seizure Methodology		82	(8)
Seizure Methodology in Depth		84	(2)
Step 1: Digital Media Identification		86	(1)
Step 2: Minimizing the Crime Scene by Prioritizing the Physical Media		86	(1)
Step 3: Seizure of Storage Devices and Media		87	(1)
To Pull the Plug or Not to Pull the Plug, That Is the Question		88	(2)
Factors Limiting the Wholesale Seizure of Hardware		90	(8)
Size of Media		90	(1)
Disk Encryption		91	(1)
Privacy Concerns		92	(1)
Delays Related to Laboratory Analysis		93	(1)
Protecting the Time of the Most Highly Trained Personnel		94	(2)
The Concept of the First Responder		96	(2)
Other Options for Seizing Digital Evidence		98	(14)
Responding to a Victim of a Crime Where Digital Evidence Is Involved		100	(2)
Seizure Example		102	(2)
Previewing On-Scene Information to Determine the Presence and Location of Evidentiary Data Objects		104	(1)
Obtaining Information from a Running Computer		105	(2)
Imaging Information On-Scene		107	(1)
Imaging Finite Data Objects On-Scene		108	(3)
Use of Tools for Digital Evidence Collection		111	(1)
Common Threads within Digital Evidence Seizure		112	(3)
Determining the Most Appropriate Seizure Method		115	(2)
Summary		117	(2)
Works Cited		119	(4)
Additional Relevant Resources		121	(2)
Handheld Forensics		123	(20)
Digital Forensics		124	(1)
What Is the Handheld Forensic Impact?		125	(10)
Digital Forensic Foundations		125	(1)
File System Differences		126	(1)
Static versus Active		127	(1)
Storage Capacity Differences		128	(1)
Imaging Techniques		129	(1)
Evidence Collection		129	(2)
First Responder		131	(2)
Collection to Handling		133	(1)
PDA Handling		133	(2)
Cellular Handling		135	(2)
Evidence Preservation		137	(2)
Maintain the Device		138	(1)
Maintain a Forensic Data Connection		139	(2)
Forensic Grade Tools		140	(1)
Analysis and Reporting		141	(1)
Summary		141	(1)
Bibliography		141	(2)
RFID: An Introduction to Security Issues and Concerns		143	(22)
Introduction		144	(1)
Background		144	(2)
Early Implementations		145	(1)
Manual Inventory		145	(1)
Bar Codes		145	(1)
Global Source Tagging		145	(1)
Current RFID Implementations		146	(1)
Unidirectional Information Flow		146	(1)
Bidirectional Information Flow		146	(1)
RFID-Purposes		146	(1)
Inventory Tracking		147	(1)
Where Does RFID fit in?		147	(1)
Technology Involved		148	(15)
How RFID Works		148	(1)
Parts of an RFID System		148	(2)
RFID Security from a Functional Perspective		150	(1)
Can RFID be used for Security?		150	(1)
Can RFID, in and of Itself, Function Securely?		151	(1)
Can Systems Implemented Using RFID Technology Be Secure?		151	(1)
Spy Chips or Consumer Value Tags?		151	(1)
The Electronic Product Code (EPC), an RFID Specification/Standard		152	(1)
EPC Generation 1		152	(1)
EPC Generation 2		152	(1)
EPC Generation 3		152	(1)
RFID Frequencies		152	(1)
Low Frequency (LF) Band		153	(1)
High Frequency (HF) Band		153	(1)
Ultra High Frequency (UHF) Band		153	(1)
Microwave Band		154	(1)
Frequency-Based Information Protection Concerns		154	(1)
Active and Passive RFID Comparison		155	(1)
Characteristics of Active RFID systems		155	(1)
Characteristics of Passive RFID systems		155	(1)
Software RFID Tools		156	(1)
New RFID Marketing Techniques		156	(1)
Authorizing Access to Program an RFID Chip		156	(1)
US Patent Application 20020165758		156	(1)
Authority to Monitor RFID Transmissions?		157	(1)
Providing Verifiable Protection		157	(1)
RFID Chip Placement		158	(1)
A Few RFID Uses		158	(1)
Passports (Passive)		158	(1)
Public Transportation Passess (Active, Battery Operated)		158	(1)
Exxon Mobil SpeedPass (Active)		159	(1)
Conference Badges (Passive)		159	(1)
Tagging People as Resources (Passive)		159	(1)
Cow Chips (Passive)		159	(1)
Cadaver Chips (Passive)		159	(1)
Smart Shelves		159	(1)
Security TAG Concerns		159	(1)
Altering the Identity of Goods		159	(1)
RFID Money		160	(1)
Potentially Bad Uses		161	(1)
RFID Virus		162	(1)
The Future		162	(1)
Summary		163	(2)
Open Source Intelligence		165	(32)
Introduction		166	(1)
Direction		166	(3)
Subcomponent: Purchase a Ticket		167	(1)
Subcomponent: Drive to the Stadium		167	(1)
Subcomponents: Purchase Ticket and Drive to the Stadium		168	(1)
Concepts		168	(1)
Discovery		169	(26)
Sources of Information		169	(1)
Cyberthreats		169	(3)
Physical Threats		172	(1)
Financial Service Sector		172	(1)
Other Information Sharing and Analysis Centers		173	(2)
Search Engines		175	(2)
Fee-Based Services		177	(1)
Discrimination		178	(1)
Preliminary Assessment		178	(1)
Content Assessment		179	(1)
Advocacy Assessment		180	(1)
Business/Marketing Assessment		181	(2)
News Assessment		183	(2)
Informational Assessment		185	(1)
Personal Assessment		186	(3)
Collection Trade Craft		189	(2)
Distillation		191	(1)
Basic Analysis Support		192	(1)
Intermediate Analysis Support		192	(2)
Dissemination		194	(1)
Summary		195	(1)
Notes		196	(1)
Wireless Awareness: Increasing the Sophistication of Wireless Users		197	(36)
Introduction		198	(2)
Putting Together a War-Driving Team		200	(4)
Increasing User Sophistication		204	(28)
Frequency-Hopping Spread Spectrum (FHSS) and Direct-Sequence Spread Spectrum (DSSS)		204	(1)
The 802.11 Alphabet		205	(1)
Unauthorized Access		206	(1)
Eavesdropping		207	(1)
Interference and Jamming		207	(1)
Physical Threats		208	(1)
802.11 Security		209	(1)
Confidentiality		209	(1)
Integrity		210	(1)
Availability		210	(1)
Goals of Network Security		211	(1)
Security Ramifications		212	(1)
Human Factors		213	(1)
Knowing Your Weaknesses		214	(1)
Limiting Access		214	(1)
Persistence Achieves Security		215	(1)
Physical Security		215	(1)
Perimeter Security		215	(1)
The Radiation Zone		216	(1)
Firewalls		217	(1)
Ad-Hoc and Infrastructure Modes		217	(1)
The SSID		218	(1)
Virtual Private Networks		219	(1)
Radius Servers		219	(2)
Configuration Weaknesses		221	(1)
Policy Weaknesses		222	(1)
Human Error		222	(1)
Legal Liability		223	(1)
Technology Weaknesses		224	(1)
802.11 Authentication		225	(1)
Open System Authentication		225	(1)
Shared Key Authentication		226	(1)
LEAP Point		227	(1)
SSL/TLS		227	(1)
Kerberos Authentication		228	(1)
802.11 Security (Encryption)		228	(2)
WPA		230	(1)
Intrusion Detection Systems		231	(1)
Access Point Spoofing		232	(1)
Summary		232	(1)
No-Tech Hacking		233	(56)
Introduction: What Is ``No-Tech Hacking?''		234	(5)
Physical Security		239	(11)
Tailgating		240	(3)
Where Are Your Badges?		243	(5)
Electronic Badge Authentication		248	(2)
Lock Bumping		250	(11)
Master Lock Brute Forcing		252	(6)
Picking Locks with Toilet Paper?		258	(2)
Electric Flossers: A Low-Tech Classic		260	(1)
Information Security		261	(24)
Shoulder Surfing		261	(10)
Dumpster Diving		271	(6)
Watching TV, Hacker Style		277	(8)
Checklist		285	(2)
Summary		287	(1)
Notes		287	(2)
The Basics of Penetration Testing		289	(22)
Introduction		290	(1)
Know the Security Analysis Life Cycle		290	(3)
Programmatic Testing		292	(1)
Technical Testing		292	(1)
Customer Responsibilities		293	(1)
Penetration Testing		293	(1)
Know When to Deviate		293	(2)
Stick to the Life Cycle		294	(1)
Break Out of the Life Cycle		294	(1)
The Penetration Tester Mentality		295	(3)
Know the Core Processes		295	(1)
Think for Yourself		296	(1)
Ethical Conduct		297	(1)
Know When to Fold		297	(1)
Use the Right Tools		297	(1)
Build Your Own		298	(1)
The Penetration Methodology		298	(10)
Information Gathering		299	(1)
Search Engines		299	(1)
Newsgroup Searches		300	(1)
Forums and Blogs		300	(1)
DNS / WHOIS / ARIN		301	(1)
Web Site Mirroring		302	(1)
Financial Web Sites		302	(1)
Network Enumeration		303	(1)
Vulnerability Identification		303	(1)
Vulnerability Exploitation		303	(1)
Privilege Escalation		304	(1)
Expansion of Reach		305	(1)
Ensure Future Access		306	(1)
Compromise Information		307	(1)
The Cleanup		308	(1)
Summary		308	(3)
What Is Steganography?		311	(26)
Introduction		312	(1)
Defining Steganography		312	(6)
Some Useful Definitions		312	(1)
The Differences between Steganography and Watermarking		313	(1)
The Prisoners' Problem		313	(1)
History and Steganography		314	(1)
The Greeks		315	(1)
The Chinese		315	(1)
Gaspar Schott		315	(1)
Giovanni Porta		315	(1)
Girolamo Cardano		316	(1)
The Culpers		316	(1)
Civil War Rugs		316	(1)
World War I		317	(1)
World War II		317	(1)
The Vietnam War		317	(1)
Analog Steganography		318	(2)
Microdots		318	(1)
One-Time Pads		318	(1)
Semagrams		318	(1)
Null Ciphers		319	(1)
Type Spacing and Offsetting		319	(1)
Invisible Ink		319	(1)
Newspaper Code		319	(1)
Jargon Code		320	(1)
Digital Steganography		320	(1)
Steganography Techniques		320	(1)
Injection		320	(1)
Substitution		321	(1)
Generation of New Files		321	(1)
The Six Categories of Steganography		321	(2)
Substitution System		321	(1)
Transform Domain Techniques		322	(1)
Spread Spectrum Techniques		322	(1)
Statistical Methods		322	(1)
Distortion Techniques		323	(1)
Cover Generation Methods		323	(1)
Types of Steganography		323	(2)
Linguistic Steganography		323	(1)
Text Semagrams		323	(1)
Technical Steganography		323	(1)
Embedding Methods		324	(1)
Least Significant Bit (LSB)		324	(1)
Transform Techniques		324	(1)
Spread-Spectrum Encoding		324	(1)
Perceptual Masking		324	(1)
Steganography Applied to Different Media		325	(2)
Still Images: Pictures		325	(1)
Moving Images: Video		325	(1)
Audio Files		325	(1)
Text Files		326	(1)
Steganographic File Systems		326	(1)
Hiding in Disk Space		326	(1)
Unused Sectors		327	(1)
Hidden Partitions		327	(1)
Slack Space		327	(1)
Hiding in Network Packets		327	(1)
Issues in Information Hiding		328	(1)
Levels of Visibility		328	(1)
Robustness vs. Payload		328	(1)
File Format Dependence		328	(1)
Watermarking		328	(1)
Classification of Watermarks		329	(1)
Fragile		329	(1)
Robust		329	(1)
Steganography Tools		329	(2)
Still Images: Pictures		329	(1)
Moving Images: Video		330	(1)
Audio Files		330	(1)
Text Files		331	(1)
Steganographic File Systems		331	(1)
Real-World Uses		331	(1)
Detection and Attacks		332	(3)
Detection		332	(1)
Statistical Tests		332	(1)
Stegdetect		332	(1)
Stegbreak		332	(1)
Visible Noise		332	(1)
Appended Spaces and ``Invisible'' Characters		332	(1)
Color Palettes		333	(1)
Attack Types		333	(1)
Stego Only Attack		333	(1)
Known Cover Attack		333	(1)
Known Message Attack		333	(1)
Chosen Stego Attack		334	(1)
Chosen Message Attack		334	(1)
Disabling or Active Attacks		334	(1)
Blur		334	(1)
Noise		334	(1)
Noise Reduction		334	(1)
Sharpen		334	(1)
Rotate		334	(1)
Resample		334	(1)
Soften		334	(1)
Summary		335	(2)
Insider Threat		337	(46)
Introduction		338	(1)
The Devil Inside		338	(1)
The Importance of Insider Threat		339	(12)
Insider Threat Defined		341	(1)
Authorized versus Unauthorized Insider		342	(2)
Categories of Insider Threat		344	(3)
Key Aspects of Insider Threat		347	(1)
Acceptable Level of Loss		348	(1)
Prevention versus Detection		349	(1)
Insider versus External Threat		350	(1)
Why the Insider Threat Has Been Ignored		351	(2)
Organizations Do Not Know It Is Happening		351	(1)
It Is Easy to Be in Denial		352	(1)
Fear of Bad Publicity		353	(1)
Why the Insider Threat Is Worse Than the External Threat		353	(2)
Easier		354	(1)
Current Solutions Do Not Scale		354	(1)
High Chance of Success		355	(1)
Less Chance of Being Caught		355	(1)
The Effect of Insider Threats on a Company		355	(2)
How Bad Is It---Statistics on What Is Happening		357	(12)
Insider Threat Study		357	(8)
Beware of Insider Threats to Your Security		365	(2)
Espionage: A Real Threat		367	(1)
Preliminary System Dynamics Maps of the Insider Cyber-Threat Problem		367	(1)
Do You Really Know What Your Programmers Are Doing?		368	(1)
How Much Is Too Much Data Loss?		368	(1)
Targets of Attack		369	(2)
The Threat Is Real		371	(5)
Profiling the Insider		374	(1)
Preventing Insider Threat		375	(1)
New World Order		376	(1)
Future Trends		377	(5)
Policies and Procedures		377	(1)
Access Controls		378	(1)
Miniaturization		378	(1)
Moles		378	(1)
Outsourcing		379	(1)
Porous Networks and Systems		379	(1)
Ease of Use of Tools		380	(1)
Relays on the Rise		380	(1)
Social Engineering		381	(1)
Plants		381	(1)
Tolerance Increasing		381	(1)
Framing		382	(1)
Lack of Cyber Respect		382	(1)
Summary		382	(1)
Index		383

Johnny Long is a Christian by grace, a professional hacker by trade, a pirate by blood, a ninja in training, a security researcher and author. He can be found lurking at his website (http://johnny.ihackstuff.com). He is the founder of Hackers For Charity(http://ihackcharities.org), an organization that provides hackers with job experience while leveraging their skills for charities that need those skills. Jack Wiles is a security professional with over 40 years' experience in security-related fields. This includes computer security, disaster recovery, and physical security. He is a professional speaker, and has trained federal agents, corporate attorneys, and internal auditors on a number of computer crime-related topics. He is a pioneer in presenting on a number of subjects, which are now being labeled "Homeland Security" topics. Well over 10,000 people have attended one or more of his presentations since 1988. Jack is also a co-founder and President of TheTrainingCo., and is in frequent contact with members of many state and local law enforcement agencies as well as Special Agents with the U.S. Secret Service, FBI, IRS-CID, U.S. Customs, Department of Justice, The Department of Defense, and numerous members of High-Tech Crime units. He was also appointed as the first President of the North Carolina InfraGard chapter, which is now one of the largest chapters in the country. He is also a founding member of the U.S. Secret Service South Carolina Electronic Crimes Task Force. Jack is also a Vietnam veteran who served with the 101st Airborne Division in Vietnam in 1967-68, where he was awarded two Bronze stars for his actions in combat. He recently retired from the U.S. Army Reserves as a lieutenant colonel and was assigned directly to the Pentagon for the final seven years of his career. Russ Rogers (CISSP, CISM, IAM, IEM, Hon. Sc.D.), author of the popular "Hacking a Terror Network: The Silent Threat of Covert Channels" (Syngress, ISBN: 978-1-928994-98-5), co-author of multiple books, including the best-selling "Stealing the Network: How to Own a Continent" (Syngress, ISBN: 978-1-931836-05-0) and "Network Security Evaluation Using the NSA IEM" (Syngress, ISBN: 978-1-59749-035-1), and former editor-in-chief of The Security Journal, is currently a penetration tester for a federal agency and the co-founder and chief executive officer of Peak Security, Inc., a veteran-owned small business based in Colorado Springs, CO. Russ has been involved in information technology since 1980 and has spent the past 20 years working as both an IT and InfoSec consultant. Russ has worked with the U.S. Air Force (USAF), National Security Agency (NSA), Defense Information Systems Agency (DISA), and other federal agencies. He is a globally renowned security expert, speaker, and author who has presented at conferences around the world in Amsterdam, Tokyo, Singapore, Sćo Paulo, Abu Dhabi, and cities all over the United States. Russ has an honorary doctorate of science in information technology from the University of Advancing Technology, a master's degree in computer systems management from the University of Maryland, a bachelor of science degree in computer information systems from the University of Maryland, and an associate's degree in applied communications technology from the Community College of the Air Force. He is a member of ISSA and (ISC)2® (CISSP). Russ also teaches at and fills the role of professor of network security for the University of Advancing Technology (www.uat.edu). Phil Drake is Communications Manager for the Charlotte Observer in Charlotte, N. C. The Observer is a daily newspaper that serves readers throughout North and South Carolina. In addition to the newspaper, the Charlotte Observer produces specialty magazines, voice information, and Internet services.Phil is responsible for all aspects of communications at Observer operations in both Carolinas, including telephone and data communications, wireless systems, conventional and trunked two-way radio, and satellite systems. He is also responsible for business continuity and disaster response planning and related budgeting. He is responsible for providing emergency communications facilities for reporters and photographers covering breaking news stories.His background includes photojournalism, mainframe computer support, network management, telecommunications planning and management, and business continuity planning. Phil is a former chairman of the Contingency Planning Association of the Carolinas and currently serves as a Board Advisor of the organization. He is a Certified Business Continuity Professional with the Disaster Recovery Institute International. Phil speaks to public and private sector groups and has been interviewed by and written for a number of national publications on a wide range of emergency communication issues and business/homeland defense planning. He leads business continuity training seminars for both the public and private sectors. He also has provided project management in business continuity and has advised major national clients in emergency planning, workforce protection, threat assessment, and incident response. He enjoys backpacking, spending time in the outdoors, and has taught outdoor living skills to youth group leaders. He was appointed by the North Carolina Secretary of the Department of Environment and Natural Resources as a voting member of the NC Geological Survey Advisory Committee. Ron Green (CISSP, ISSMP), a Senior Vice President within the Information Security Business Continuity division of Bank of America, currently serves as an Information Security Business Continuity Officer supporting the Banks Network Computing Group. He formerly managed a bank team dedicated to handling cyber investigations, computer forensics, and electronic discovery. Prior to joining Bank of America, Ron was a Secret Service Agent and part of the agencys Electronic Crimes Agent Program (ECSAP). In addition to the investigative and protection work all agents perform, ECSAP agents perform cyber investigations and computer forensics for the agency. Ron started with the Secret Service in its Phoenix Field Office, and then transferred to the agencys headquarters to become part of the Electronic Crimes Branch (ECB). While part of ECB he provided support to the ECSAP agents in the field. He also worked on national and international cyber crimes cases, initiatives, and laws. He was the project manager for Forward Edge and the Best Practice Guides for Seizing Electronic Evidence, version 2.0. Ron graduated from the United States Military Academy at West Point earning a bachelors degree in Mechanical Engineering, and he earned a Graduate Certificate from George Washington University on Computer Security and Information Assurance. Ron currently serves as the Treasurer/Secretary for the Financial Services Information Sharing and Analysis Center (FS/ISAC) and as a Board Member for the Institute for Computer Forensic Professionals. Ron currently lives in North Carolina with his wife, Cheryl, and their four children. Gregory Kipper is a futurist and strategic forecaster in emerging technologies. He specialized in IT security and information assurance for 17 years, working for the last 11 years in the fields of digital forensics and the impacts emerging technologies have on crime and crime fighting. Mr. Kipper has been the keynote speaker at select industry events, a digital forensics instructor, and a trusted advisor to both the government and commercial sectors. He has published books in the fields of digital forensics and emerging technologies, including: "Investigator's Guide to Steganography," "Wireless Crime and Forensic Investigation," and "Virtualization and Forensics." Raymond Todd Blackwood is an IT Manager for a private university in Tempe, AZ, with over 12 years of experience in managing technology projects, teams, and systems. He currently oversees the development of technology projects at the university and provides lectures and training on leadership principles for technology geeks. Raymond teaches several courses that focus on thinking and brain performance, as well as managing technology, systems, and change.Raymond started his career in digital film making, which took him from his southern roots to the Southwest, where he did his undergraduate studies and received his BA in Multimedia and Digital Animation and Production. Producing independent digital films led him into technology management as he began to design and implement technology for animation and multimedia applications. A series of events catalyzed by a passion for learning and working in all kinds of technology projects led Raymond to become a Manager of Information Technology in 2000 for the university. Soon thereafter Raymond began his graduate work and received his Masters of Business Administration and Technology Management in 2006. Raymond is the comoderator of the Phoenix Future Salon through the Accelerated Studies Foundation. He also serves on the board of directors for the Greater Arizona eLearning Association and the Arizona Telecommunications and Information Council, and he is the faculty sponsor for DC480, the universitys hacking club.Raymond wrote Chapter 7, Wireless Awareness: Increasing the Sophistication of Wireless Users.” Amber Schroader has been involved in the field of computer forensics for the past sixteen years. During this time, she has developed and taught numerous courses for the computer forensic arena, specializing in the field of wireless forensics as well as mobile technologies. Ms Schroader is the CEO of Paraben Corporation and continues to act as the driving force behind some of the most innovative forensic technologies. As a pioneer in the field, Ms Schroader has been key in developing new technology to help investigators with the extraction of digital evidence from hard drives, e-mail and, hand held and mobile devices. Ms Schroader has extensive experience in dealing with a wide array of forensic investigators ranging from federal, state, local, and corporate. With an aggressive development schedule, Ms Schroader continues to bring new and exciting technology to the computer forensic community world wide and is dedicated to supporting the investigator through new technologies and training services that are being provided through Paraben Corporation. Ms Schroader is involved in many different computer investigation organizations including The Institute of Computer Forensic Professionals (ICFP), HTCIA, CFTT, and FLETC. Dr. Eric Cole is an industry recognized security expert, technology visionary and scientist, with over 15 years hands-on experience. Dr. Cole currently performs leading edge security consulting and works in research and development to advance the state of the art in information systems security. Dr. Cole has over a decade of experience in information technology, with a focus on perimeter defense, secure network design, vulnerability discovery, penetration testing, and intrusion detection systems. Dr. Cole has a Masters in Computer Science from NYIT, and Ph.D. from Pace University with a concentration in Information Security. Dr. Cole is the author of several books to include Hackers Beware, Hiding in Plain Site, Network Security Bible and Insider Threat. He is also the inventor of over 20 patents and is a researcher, writer, and speaker for SANS Institute and faculty for The SANS Technology Institute, a degree granting institution. Dennis F. O'Brien is a private consultant having held senior IT security positions within Bell Laboratories, AT&T, Citigroup and other Fortune 100 financial sector enterprises. Dennis is a well-known technical expert having more than 30 years experience in the exploitation of controls, comes to us as a canary to discuss the kinds of evil things” that can be done using well-intended, generally available, tools and services such as RFID. Examining the big picture and then presenting realistic scenarios, such as destabilizing public faith in the financial services industry or corrupting an asset database through input data tampering, are examples of his work.He is known for his annual predictions of possible mal-events may occur in the near future and what the results might be. Kevin OShea is a Homeland Security and Intelligence Specialist for the Technical Analysis Group in the Justiceworks program at the University of New Hampshire. Kevin assisted in the development of the NH Strategic Plan to Combat Cyber Crime and currently supports the implementation of the Strategic Plan. Kevin has authored and coauthored a number of high-tech training programs for the law enforcement community and has assisted in the development of a new digital forensics paradigm in use in N.H.Prior to working at the University of New Hampshire, he was a Research Associate for Project Management within the Technical Analysis Group in the Institute for Security Technology Studies at Dartmouth College. He was a member of the research team and substantive author of three critical national reports to document and present the most pressing impediments facing the law-enforcement community when investigating and responding to cyber attacks: Law Enforcement Tools and Technologies for Investigating Cyber Attacks: A National Needs Assessment, Gap Analysis, and the Research and Development Agenda. Donald P. Withers is the CEO and cofounder of TheTrainingCo., which produces the Annual International Techno Security & Techno Forensic Conferences each year. Don has an extensive background in Information Security and was a member of the management team at Ernst & Youngs Information Security Services practice for the mid-Atlantic region. He also served as the Director of Information Security for Bell Atlantic, where he championed the development of a corporate incident response team and implemented their war room facility used for managing investigations, vulnerability testing, and forensic analysis. He also served as a voting member of the American National Standards Institute Committee T1 for nine years developing and representing Bell Atlantics positions on computer and network security. He was the Sub-working group Secretary and Technical Editor for the committee that was instrumental in developing several of the first telecommunications standards in North America relating to network security.Don was the cofounder and two-term president of the Maryland Chapter of InfraGard and is a member of the Secret Services Electronic Crimes Task Force. He was the cofounder and two-term President of the mid-Atlantic Chapter of the High Technology Crime Investigation Association, and he has served as secretary for its National Board of Directors. He is a member of the American Society for Industrial Security, the Association of Former Intelligence Officers, and the Academy of Security Educators and Trainers, where he earned the academys designation of Certified Security Trainer. Don is also a member of the Nine Lives Associates and has earned its designation of Personal Protection Specialist from the Executive Protection Institute. He has attended the Federal Law Enforcement Training Center in Glenco, GA, and has a Bachelors degree in Criminal Justice from the University of Maryland.