Education and research in the area of cybercrime · • Police – sharing of knowledge and tools,...

21
Education and research in the area of cybercrime Václav Stupka Czech CyberCrime Centre of Excellence

Transcript of Education and research in the area of cybercrime · • Police – sharing of knowledge and tools,...

Page 1: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Education andresearch inthe areaof cybercrime

VáclavStupkaCzechCyberCrimeCentreofExcellence

Page 2: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Why it all started?• Demand for research anddevelopment intheareaof cybercrime

• MasarykUniversity– Instituteof law andtechnology&CSIRT-MU– Instituteof computer science– Faculty of Informatics– Faculty of social science– etc.(ad-hoccooperation)

Page 3: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

• Focusontechnologylaw(ICTlaw,dataprotection,intellectualpropertylaw,energylaw,etc.)

• Longtermcooperationwithpublicauthorities• Expertiseintheareaofcybercrime&cybersecurity

• http://cyber.law.muni.cz

Instituteoflawandtechnology

Page 4: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

CSIRT-MU• ComputerSecurityIncidentResponseTeamofMasarykUniversity

• PartoftheInstituteofComputerScience• AccreditedbyTrustedIntroducer• LongtermexperiencewithR&Dinthefieldofnetworksecuritymonitoring

• http://csirt.muni.cz

Page 5: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Howitallstarted?• Cooperation(CSIRT-MU,ILT,RAC&partners)• Growingdemandforexpertadvices• Abilitytofindcommonlanguage• EstablishmentofC4e– ECDGHomeproject(2013)

• https://www.C4e.cz

Page 6: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Whatdowedo?• Cooperation• Research• Education• Development• Consultations

Page 7: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Cooperation• Whattofocuson?• Whatdowe(orsomeoneelse)alreadyknow?• Whatcanweprovide/share?• Howcanwecollaborate?

Page 8: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Internationalcooperation• Europol (EC3)

– taxonomy,– lectures forLEA

• ENISA– taxonomy– sharingofknowledge

• NATO– taxonomy,– studyprograms

• UN– sharingoftoolsandknowledge

• TF-CSIRT– sharingoftools,knowledge,bestpractices,etc.

• Nationalresearchandeducationinstitutions– ad-hoccooperation,researchprojects,sharingofknowledgeandtools

Page 9: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Nationalcooperation• NationalSecurityAuthority

– sharingofknowledgeandtools– trainingandeducation:coursesandexercises(CyberCzech)– attendance atexercises: LockedShields,CyberEurope,EDA

• Police– sharingofknowledgeandtools,consulting– trainingandeducation– cooperationwithPoliceacademy

• ArmyandMinistryofDefense– consulting

• Intelligence services– Consulting

• MinistryofInterior– Researchanddevelopmentprojects(KYPOlatertoday,SABU– sharingofcybersecurityeventsdata)

• Judicialacademy,Publicprosecutorsoffice,Judges– Trainingandeducation,consulting

• Expertboardoncybercrime andcybersecurity– Whattofocuson?

Page 10: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Cooperationwithprivateentities• Attendanceatconferencesandworkshops• Expertopinions• CERITsciencepark

Page 11: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Research• Legal– Substantiveandprocedurallaw– Whatisandshouldberegardedtoasthecybercrime?– Whatproceduresareandshouldbefollowedduringinvestigation?

– Howtoinvestigateit?– Howtohandleevidence?– Howtocooperateinternationally?– Howtocooperatewithprivateandpublicauthorities?

• Focusoftheresearchisdiscussedatthemeetingoftherectorsexpertadvisoryboard.

Page 12: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Education- national• Lecturesandtrainings

– Judicialandpoliceacademy(cybercrimeinvestigation,digitalevidencehandling,intellectualproperty,dataprotection)

– Ad-hoctrainings(forinvestigators,experts,publicprosecutors,etc.)

– KYPOhands-ontrainingandexercises(sysadmins,CSIRTmembers)

• Bachelordegree(ICTsecurity)withUniversityoftechnology

• Mastersdegree(Cybersecurity– interdisciplinaryandlaw)• Doctoralstudyprogramme

Page 13: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Education- international• Jointdoctoraldegree– withUniversityofHaifa

• Mastersstudyprogrames NATO(MultinationalCyberDefenseEducationandTrainingProject)

• Ad-hoccoursesandtrainings– NATO

Page 14: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Education- regularevents• Seminars:– iSysel– Cybercake

• Conferences– Cyberspace– Czechlawandinformationtechnologies

• SummerschoolonICTlaw

Page 15: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Development• Tools,• methodologies,• bestpractices.

Page 16: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Forensictools• Networkandhostforensics– Trafficreconstruction– Automatedfirstsightoverview

• Honeypots• Digitalforensiclaboratoryexaminationandmanagementsystem

• Tutorialsforusers&virtualimagewiththetools

Page 17: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

TaxonomyofCSI• ToolforCERTteamsandLEA• PreparedincooperationwithNSAandPolice,alsopresentedanddiscussedatENISA/Europolmeetings

• Individualtypesofcybersecurity incidents– Isitcrime?(czech lawandCoC)– Whotonotify?– Whatinformationtoshareandwithwhom?– Howtoproceed?– Howtohandleevidence?

Page 18: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Guidebookondigitalevidenceincriminalproceedings

• Generaloverviewofczech procedural lawrelatedtodigitalevidencehandling

• Guidanceforhandlingofspecifictypesofevidence:– Email– Personalprofiledata– Website– Trafficandlocationdata– Interceptionrecords– Mobiledevices– Cybersecurityincidentsdata

Page 19: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

BookonInterceptionanddataretention

• Analysisofthelegislatureandcaselawrelatedtointerceptionofelectroniccommunication

• Comparisonwithforeignapproaches• Liablility ofserviceproviders• ProceduraltoolsforLEA• Proceduraltoolsforinternationalcooperation• PartofstudyfromMaxPlanckInstitute

Page 20: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

Plansforthefuture?• SENTER– followup projectfocusedon:StrengtheninternationalcooperationofCoEs

• Internationalresearchprojects(H2020)• MasterswithNATO• CyberOlympics– Estonianledinitiativeforhighschool student(participation)

• Doctoralstudies(withpublicauthorities)• Growthofthecenter– morespecializedlabs• Methodologiesbasedonthetaxonomy

Page 21: Education and research in the area of cybercrime · • Police – sharing of knowledge and tools, consulting – training and education –cooperation with Police academy • Army

[email protected]


Cybercrime Booklet

Cybercrime Booklet

Hampshire Police and Crime Panel ‘Cybercrime – Cyber ...democracy.hants.gov.uk/documents/s11408/Item 6 Appendix Two Cybercrime... · Replies from Members of the Public - South

Hampshire Police and Crime Panel ‘Cybercrime – Cyber ...democracy.hants.gov.uk/documents/s11408/Item 6 Appendix Two Cybercrime... · Replies from Members of the Public - South

Investigating Cybercrime

Investigating Cybercrime

4598 cybercrime

4598 cybercrime

Cybercrime Support Network · 2020-07-01 · Cybercrime Support Network Giving victims of cybercrime a voice. Cybercrime Support Network is a national nonprofit whose mission is to

Cybercrime Support Network · 2020-07-01 · Cybercrime Support Network Giving victims of cybercrime a voice. Cybercrime Support Network is a national nonprofit whose mission is to

The Business of Cybercrime A Complex Business Modella.trendmicro.com/media/wp/cybercrime-business-whitepaper-en.pdf · The Growth of Cybercrime Unfortunately for consumers, cybercrime

The Business of Cybercrime A Complex Business Modella.trendmicro.com/media/wp/cybercrime-business-whitepaper-en.pdf · The Growth of Cybercrime Unfortunately for consumers, cybercrime

Fighting Russian Cybercrime Mobsters - Black Hat is Online Cybercrime? Russian Justice System ... What is Online Cybercrime? Progression of Russian Cybercrime ... • Rise of Nationalism.

Fighting Russian Cybercrime Mobsters - Black Hat is Online Cybercrime? Russian Justice System ... What is Online Cybercrime? Progression of Russian Cybercrime ... • Rise of Nationalism.

Cybercrime Law

Cybercrime Law

Cybercrime convention

Cybercrime convention

Online complaint system for Cybercrime · This paper is about “Online complaint system for cybercrime”. Conventional methodology of a police complaint ... Android uses SQLite

Online complaint system for Cybercrime · This paper is about “Online complaint system for cybercrime”. Conventional methodology of a police complaint ... Android uses SQLite

Cybercrime Awareness Clinic Questionnaire - Schools (generic) · Cybercrime Awareness Clinic Questionnaire - Schools (generic) Page 1: Cybercrime Awareness Survey - Participant Information

Cybercrime Awareness Clinic Questionnaire - Schools (generic) · Cybercrime Awareness Clinic Questionnaire - Schools (generic) Page 1: Cybercrime Awareness Survey - Participant Information

Fighting fraud, cybercrime and scamsvoc.sa.gov.au/.../publication-documents/VOC_0003_OrangeBook_Scams_WEB.pdf · When speaking to police try to be as ... The Australian Cybercrime

Fighting fraud, cybercrime and scamsvoc.sa.gov.au/.../publication-documents/VOC_0003_OrangeBook_Scams_WEB.pdf · When speaking to police try to be as ... The Australian Cybercrime

of cybercrime? Can the US Department of Justice police an ......of cybercrime? The bottom line: GovInsider’s cyber columnist looks at how governments can wade into the deep end.

of cybercrime? Can the US Department of Justice police an ......of cybercrime? The bottom line: GovInsider’s cyber columnist looks at how governments can wade into the deep end.

Cybercrime Decision

Cybercrime Decision

Cybercrime Awareness

Cybercrime Awareness

Cybercrime - Grant Thornton Ireland · PDF file2 Types and characteristics of cybercrime Definition of cybercrime In assessing the current state of cybercrime, we need to consider

Cybercrime - Grant Thornton Ireland · PDF file2 Types and characteristics of cybercrime Definition of cybercrime In assessing the current state of cybercrime, we need to consider

CyberCrime Challenges in the middle east · cybercrime is education and awareness. Unfortunately there is no effective strategy or plan to improve capacity building and security education

CyberCrime Challenges in the middle east · cybercrime is education and awareness. Unfortunately there is no effective strategy or plan to improve capacity building and security education

Presented By: Brian Nienhaus. What is cybercrime? Running a cybercrime syndicate Cybercrime attacks Countermeasures Organization profiles.

Presented By: Brian Nienhaus. What is cybercrime? Running a cybercrime syndicate Cybercrime attacks Countermeasures Organization profiles.

Profile of Canadian Businesses who Report Cybercrime to Police€¦ · Canadian Survey of Cyber Security and Cybercrime ... because organizations are not required to report data breaches

Profile of Canadian Businesses who Report Cybercrime to Police€¦ · Canadian Survey of Cyber Security and Cybercrime ... because organizations are not required to report data breaches

International Telecommunication Union Cybercrime ...€¦ · International Telecommunication Union Cybercrime Legislation Resources ITU TOOLKIT FOR CYBERCRIME LEGISLATION ... This

International Telecommunication Union Cybercrime ...€¦ · International Telecommunication Union Cybercrime Legislation Resources ITU TOOLKIT FOR CYBERCRIME LEGISLATION ... This