Target Detection Identifiers

Similar documents
Integration of PowerChute Business Edition with EcoStruxure IT

Ms. Valerie Shuey. Program Manager - Intelligence

LCDR Aaron Hill Deputy Program Manager, Joint Threat Warning System (SIGINT)

Bmw 7 Series E32 From Service Repair Maintenance Manual

TOP SECRET//COMINT//REL TO USA, CAN, AUS, GBR, NZL TOP SECRET//COMINT//REL TO USA, CAN, AUS, GBR, NZL

IBM CMM Quick Reference Guide

Training Course Catalog

New Machinery Directive

ID: Cookbook: browseurl.jbs Time: 07:59:30 Date: 29/11/2017 Version:

ID: Cookbook: browseurl.jbs Time: 20:23:06 Date: 25/05/2018 Version:

Europcar International collects information about your device by using cookies and similar technologies.

Power System Analysis And Design 5th Edition

SNMP dedicated to ORVALDI Solar Infini

ibusiness Banking Application Form Welcome to ibusiness Banking Need help completing this form? Adding an Additional Company to an existing Group

VIDA SUBSCRIPTION INSTRUCTION CONTENTS

Fixed Operations esummit

RNRG WHITE PAPER Early Detection of High Speed Bearing Failures

#14. Evaluation of Regulation 1071/2009 and 1072/ General survey COMPLETE 1 / 6. PAGE 1: Background

Hungarian Digital Ad Spend Study

UK motorists could save 6.7bn by DIY

Elements Of Electrical And Electronic Instrumentation An

Request under the Freedom of Information Act 2000 (FOIA)

Vehicle Diagnostic Logging Device

DOC HYUNDAI TUCSON SERVICE MANUAL

Guidelines for Motorcycling

FILE - AUTOLISP SCRIBD PRODUCTS MANUAL ARCHIVE

Customer User Guide. ComTrac CUSTOMER USER GUIDE VERSION 0.1

ALERT Analysis Systems

Case 1:17-cv DLF Document 16 Filed 04/06/18 Page 1 of 2 IN THE UNITED STATES DISTRICT COURT FOR THE DISTRICT OF COLUMBIA

CWA21. Giuliano Industrial S.p.A.

Volvo S40 And V40 Service Repair Manual Torrent

UAS ISR Sensors Roadmap Update to 26 th Annual AUVSI Pathfinder Symposium 19 March 2015

Jimi van der Woning. 30 November 2010

Chapter 20 Electric Fields And Forces Key Concepts

ZT-USB Series User Manual

[FILE] HARMAN KARDON AVR 1700 MANUAL DOWNLOAD

Ford Fiesta Tdi User Manual

[!l is not required; D is attached; or D has been requested

Release Enhancements GXP Xplorer GXP WebView

This is a repository copy of Combating automative engine valve recession.

Mercedes W140 Engine File Type

Psychology Hockenbury 6th Edition Online File Type

Dominik Leuzinger Fronius International GmbH Froniusplatz Wels I-SPOT CALCULATOR & VIEWER

Journal of Emerging Trends in Computing and Information Sciences

LEAP: LSC Evaluation and Achievement Program

Responding to Ethanol Incidents. Participant Manual

This reference document will help you navigate the new Electric Circuit application.

2010 National Edition correlated to the. Creative Curriculum Teaching Strategies Gold

Functional Algorithm for Automated Pedestrian Collision Avoidance System

Solar Choice Overview

ABB Spain optimize their invoice handling with Pagero

FUNCTION: What it does or how it works

Play-Doh Fun And Games By Kathy Ross READ ONLINE

Digital Command & Control (DCC) has progressed a great deal over recent years and can now provide a myriad of actions which can be made to precisely r

1993 Honda Civic Service Shop Repair Manual Set Factory 3 Volume Set Oem Service Manualbody Repair Manual And The Electrical Troubleshooting Manual

emotion in Smart Cities

PRODUCT DESCRIPTIONS AND METRICS

Intelligent Infrastructure for Coordinated Control of a Self-Healing Power Grid

E-BOOK // GARMIN NUVI 265W USER MANUAL DOWNLOAD

News English.com Ready-to-use ESL / EFL Lessons Barack Obama s supercar shown to the world

Cloudprinter.com Integration

The Leading UK Manufactured Water-Craft Tracking System USER GUIDE

Bosch Smart Home. Door/Window Contact Instruction Manual

Virginia Traffic Records Electronic Data System (TREDS) John Saunders, Director Scott Newby, TREDS Data Warehouse Architect May 25, 2014

University of Alberta

Land Rover Discovery Factory Workshop Repair Manual

Theft Thwarted with Trailer Intelligence Platform

J Series Servo Motor Life

TOTAL Cylinder Care ONBOARD IRON MEASUREMENT

Veritas CloudPoint. Snapshot based data protection

APPENDIX A 2018/ Where do you apply to obtain membership of the Scheme and the required vehicle stickers?

Agenda. 5:00 pm. IRGR 2010 Summary. 5:20 pm. Best Ranked Companies. Q&A and Closing Remarks. 5:50 pm

TOYOTA PRIUS EUROPE MANUALS

NON-ROAD MOBILE MACHINERY REGISTRATION PROCESS

DOT.FAST Service. Optimize the efficiency of your engines with fast, accurate drip oil analysis

Manual Vw Golf 2015 READ ONLINE

X Type Owners Guide Jaguar Repair Information

Truck Air Brake System Diagram Manual Guzhiore

2018 General Motors Policies And Procedures Manual READ ONLINE

Audi A2 Service Manual File Type

Benefits of an M2M platform over 6LoWPAN for Smart Cities

Traffic school maryland

Finishing Product Launch Lisbon

Diesel Engine Electrical Diagram Volvo L150e File Type

Honda Cbr 929 Rr Service Repair Manual File Formatted Product ed To Buyer

DMV/STUDY STREAMLINING IFTA AND IRP PROCESSES DMV STUDY STREAMLINING IFTA AND IRP PROCESSES

Mazda 3 Owners Manual Uk

Owners Manual Jeep Grand Cherokee 2 7 READ ONLINE

Village of Lombard Automated Red Light Enforcement Program. OPTION I. Pay the Fine

Electric vehicle charging system

Diesel Engine Timing Diagram

E-BOOK HONDA OWNERS WEBSITE ARCHIVE

Seeing Sound: A New Way To Reduce Exhaust System Noise

Access to Archives - A2A: A strand of the UK archives network

Caterpillar G3520 Gas Engine Troubleshooting Manual File Type

Electric Power Distribution System Engineering

Manual Touran READ ONLINE

Decision Blaze Energy Ltd. Application for an Exemption under Section 24 of the Hydro and Electric Energy Act.

Parcel Services. Solutions for Small Business Price Guide Savings level 4. Delivering the online world

Course Code: Bendix Wingman Fusion System Overview Study Guide

Transcription:

Target Detection Identifiers March 2009 This information is exempt under the Freedom of Information Act 2000 (FOIA) and may be exempt under other UK information legislation. Refer any FOIA queries to. Slide 1

High-Speed Internet Processing TCP SYN GET / User-Agent: Mozilla 4.1, IE5 Host:www.google.com Cookie:ik=xzxsrzczccz TCP FIN. 09:28:01 2008-10-13 7776 80 GET / Cookie: ik= qyzwww.. 09:28:13 2008-10-13 3456 80 GET / Cookie: ik= xzxsrzczccz Event data sent to bulk store Slide 2

High-Speed Internet Processing Bulk events key to SIGINT success on Internet Event types that are valuable for Intelligence change (quickly) 2000 SMTP/POP3 2001 Webmail 2007 vbulletin 2008 Social Networks,,? GCHQ s Applied Research are pioneering ways of dealing with this: Presence Events (TDI) Very large scale high speed flat file storage to bulk store TDIs Just enough data marts Slide 3

IP Packet Information Many possible types of information Many techniques available HTTP Get requests dominate cutting edge techniques To get Intelligence value Information must relate to a person or device a TDI Slide 4

TDI? ; other UK information legislation. Refer disclosure requests Slide 5

TDI? ; Crown Copyright. All rights reserved. This information is exempt from disclos Slide 6

TDI Target Detection ; Identifier Slide 7

TDI Target Detection Identifier ; Who When Where (doing)what Slide 8

TDI Target Detection Identifier ; Who When Where (doing)what Fundamental atom of the Internet age. Slide 9

Target Detection Identifiers DEFINITION TDIs are definite indicators of presence, that are unique and persistent for a user/machine. Built on the familiar Telephony +44 international phone code Signalling tells us this phone user is online Target Detection Identifiers Started with the Internet, mobile networks too. TDI is a SIGINT standardised code. Not a standard managed by the ITU/ETSI. Extraction from packets much more complex. Slide 10

TDI sources Slide 11

Target Detection Identifiers 70 distinct TDI types discovered. TDI Type TDI Location User/Machine 2500 TDIs/sec (GET, de-duplicated) Yahoo-Y-Cookie Cookie User => 200 Million per day per 10Gbps De-dupe rate??? Cost 250 hours per TDI Automated discovery prototype Yahoo-B-Cookie Coookie Machine Google-IK Request-URI User Paltalk-Nickname Request-URI User MS-MUID-Cookie Cookie Machine Google-SID-Cookie Cookie Machine Maktoob-MEUser-Cookie Cookie User Orkut-PREFID-Cookie Cookie User Cloob-Username Cookie User Slide 12

RAP2 COMINT ORCON SECRET GCHQ on Slide 13

TDI Applications Bulk store of all TDIs seen in last 6 months [MUTANT BROTH] Bulk store TDI correlations (6 months) [AUTO ASSOC] Bulk store TDI <-> website correlations (6 months) [KARMA POLICE] Bulk store TDI vbulletin activity [INFINITE MONKEYS] Bulk store TDI Social Networking Site activity [SOCIAL ANIMAL] Bulk store web search requests [MEMORY HOLE] Bulk store Google Earth requests [MARBLED GECKO] Bulk store of Host-Referer references [HRMAP] Slide 14

SECRET GCH Slide 15

SECRET GCHQ on Slide 16

SECRET GCHQ on Slide 17

Other Bulk Event Applications Most events that can be associated back to TDIs: File Transfer Signature (eg proof of life videos) Detection by Internet profile eg Dead Letter Drop. Yahoo webcam images Airline reservation confirmation emails Slide 18

2024 © autodocbox.com Privacy Policy | Terms of Service | Feedback