On May 19, 2016, the "Shirahama Symposium on Cyber Crime" was held in Nanki Shirahama, Wakayama Prefecture for three days. was done. In preparation for cybercrime, which is likely to increase in the future, we will exchange knowledge with information security experts and aim for prompt investigation and case resolution. The symposium, which started under the initiative of the Wakayama Prefectural Police, will be celebrating its 20th anniversary this year.
The main venue where police officials from all over the country listen intently to lectures. By the way, the theme this time is "Cyber Crime: Learning from the Past"
Participants include police officials from all over the country, private companies centered on security vendors, and local government officials. Almost 500 people participated, greatly exceeding the 400 people of the previous year. In addition to lectures and company exhibitions, there will be a night session where you can enjoy exchanges, and an "Information Crisis Management Contest" for students competing for incident response skills.
Mr. Toshikatsu Naoe, Chief of Wakayama Prefectural Police, gave a speech
It should be noted that there is still a lot of content focused on police investigation activities. For example, a workshop called "Security Dojo," which is open only to police personnel, is divided into an "introductory part" where you can learn the basics of forensic (digital investigation) technology, and a "practical part" where you can experience exercises using tools. , You can acquire evidence preservation techniques for electromagnetic recording media in initial investigations.
The logo of the Shirahama Symposium is full of tropical taste, but the content is completely for professionals.
Venue for a workshop to learn the basics of forensic (digital investigation) technology
In addition, many solutions for cybercrime investigations were exhibited at the corporate booths in the venue. was
A corner of a company booth lined with products related to criminal investigations
For example, "Cellebrite/UFED", which became famous for the "iPhone unlock problem" that occurred between the FBI and Apple, extracts data recorded in devices such as mobile phones and smartphones, It is the flagship product of the Israeli company Sellbright, which was acquired by Sun Electronics.
If you delete a file on your smartphone, it will not be visible from the OS side, but the actual data remains in the storage. The product extracts such "disappeared" data without omission. In particular, the company has a development team in Japan, and since it is verifying even old Garake models, "It corresponds to all models of all manufacturers. There is no data that can not be retrieved," said the person in charge. It is used not only by the police/law enforcement agencies of each country, but also by the military and intelligence agencies.
"Cellebrite/UFED" one generation ago. The latest version is said to further strengthen the durability of the main unit with a rubber cover
Compatible device manufacturers. I can say that it covers almost everything.
The data extracted by this tool can be drilled down from detailed items such as audio, application, chat, cookie, and e-mail with "UFED Logical Analyzer" to create a report. The following picture shows a list of smartphone operation history in chronological order.
The operation history was displayed in a row, including calls, emails, messages, and web browsing. "I want you to think that you can see everything you do on your smartphone" (person in charge)