Feeds

Supersleuthing BOFHs could help crack cybercrimes

MS exec: Sysadmins should gather evidence for the cops

The Power of One eBook: Top reasons to choose HP BladeSystem

LCC System administrators should be the detectives in cyber investigations, a top Microsoft security bod said.

It wasn’t helpful for cops to go blundering into companies’ networks to look for evidence in cybercrimes, because the sysadmin will know where to look for that information, said Scott Charney, VP of trustworthy computing group at MS.

“The evidence you need to investigate cybercrime is often in the hands of the private sector... and in these cases, the sysadmin becomes lead investigator in the cybercrime case,” he said.

Charney, who was previously chief of the Computer Crime and Intellectual Property Section for the US Justice Department, said that companies often didn’t want to collaborate with government investigations because they were afraid they’d have to open up their networks. But in reality, it was better for the firm’s IT staff, who know the network, to search for the evidence, he said.

In the great anonymity versus accountability debate, Charney argued that what was needed was a bit of both.

“What increasing became clear [in my career] is that you had to ask the question at one level up. Do you want anonymity or accountability in certain things on the net?” he said. “For internet banking – we want robust authentication. But if I’m engaged in certain kinds of speech I may want anonymity and society should support that anonymity.”

“The reason for anonymity is that it protects important values like free speech... and things we want to support as human rights. On the other hand, criminals do bad things so you want accountability,” he added.

Charney also said that everyone already knows what to do about cybercrime, but getting it done was the problem.

“Strategically we know what to do but tactically it’s hard,” he said. “What we need to do is harmonise national laws and build capability in countries all over the world and then you need to establish 24/7 contacts so that you can access knowledgeable people in any country at any time so that you can at least freeze the info you need before it’s gone... and then find a quick way to get that information to the agency that needs it.”

Charney was speaking at the London Conference on Cyberspace (LCC), which is hosting debates on issues like cyber security, cybercrime, the digital divide and internet freedoms. ®

Designing a Defense for Mobile Applications

More from The Register

next story
DARPA-derived secure microkernel goes open source tomorrow
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Don't look, Snowden: Security biz chases Tails with zero-day flaws alert
Exodus vows not to sell secrets of whistleblower's favorite OS
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
Four fake Google haxbots hit YOUR WEBSITE every day
Goog the perfect ruse to slip into SEO orfice
prev story

Whitepapers

Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Seven Steps to Software Security
Seven practical steps you can begin to take today to secure your applications and prevent the damages a successful cyber-attack can cause.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.