Reporting the crime The investingation - PowerPoint PPT Presentation
1 / 12
Title:
Reporting the crime The investingation
Description:
Reporting the crime The investingation Politiinspekt r Berit B rset Solstad Politiets datakrimsenter 20.10.04 Agenda Scenarioet How many are hit by hackers? 60 % of ... – PowerPoint PPT presentation
Number of Views:150
Avg rating:3.0/5.0
Title: Reporting the crime The investingation
1
Reporting the crime The investingation
- Politiinspektør Berit Børset Solstad
- Politiets datakrimsenter
- 20.10.04
2
The police data crime center
- Opened15. mai 2003
- Address Bryn by Kripos
- lawyers, police and technologists
- 21 employees
3
Agenda
- Scenarioet
4
How many are hit by hackers?
- 60 of all organisations
- 5200 attacks (datainnbrudd)
- 2,7 mill attempts
- 150 000 virus infections
5
Consequences
- 70 of companies had extra work
- 38 analysed security after the attack
- 5 - loss of business
6
Difficult to estimate financial loss
- 25 can estimate direct loss
- 6 indirect loss
- 12 have routines to estimate loss
- 5 billion kroner in loss
7
Sikkerhetstiltak og rutiner
8
Number of cases reported 2001 - 2003
Dataskadeverk og -bedrageri
Datainnbrudd
2001
2003
Tyveri av datainformasjon
Misbruk av IT-ressurser
0
20
40
60
80
100
120
9
Paragraphs in criminal law
145,2 Inntrenging i og avlytting av dataanlegg/-system (datainnbrudd)
151b Rettsstridig forføyning datasystem (ulovlig bruk - stort omfang)
261 Ødeleggelse av dataavhengige samfunnsviktige installasjoner (sabotasje)
270 Forandring, manipulering datasystem (databedrageri)
294 Misbruk datalagret forretningshemmeligheter (industrispionasje)
291 Skadeverk på datalagringsmedier
292 Grovt skadeverk på datalagringsmedier
317 Heleri datainformasjon
391,2 Uaktsomt grovt skadeverk på datalagringsmedier
393 Rettsstridig forføyning datasystem (ulovlig bruk - mindre omfang)
405a Innsyn i datalagret forretningshemmelighet (industrispionasje)
10
This case
- Financial motive
- The employees background/skills
- The results of investigation
- In the company
- The employees home computer
11
Investigation abroad
- Directly between countries
- Interpol
- Europol
- G8-nettverk
12
G8-network
- Bakgrunn for deltakelse
- Convention on Cybercrime
- Rask respons
- Uavhengig av tidssoner/arbeidstid
- 24/7-nettverk
- Stor antall land med ulike regelverk
13
- The ISPs obligation to save traffic information
- Few countries demand that ISPs collect traffic
information - The ISPs obligation to freeze information after
police intervention - varies from a few days to several months
14
Norway
- ISP save information
- Max 3 months
- Only for bills and security
- Freezing information (on police demand)
- The Datakrimutvalget proposes a new law
- Max period proposed 90 days
Recommended
CrystalGraphics Presentations
