DOCSLIB.ORG

D3.5 Analysis of Legal and Illegal Vulnerability Markets and Specification of the Data Acquisition Mechanisms

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
D3.5 Analysis of Legal and Illegal Vulnerability Markets and Specification of the Data Acquisition Mechanisms D3.5 Analysis of Legal and Illegal Vulnerability Markets and Specification of the Data Acquisition Mechanisms Work Package 3: Economic Analysis Document Dissemination Level P Public ☒ CΟ Confidential, only for members of the Consortium (including the Commission Services) ☐ Document Due Date: 31/10/2017 Document Submission Date: 06/11/2017 This work is performed within the SAINT Project – Systemic Analyser in Network Threats – with the support of the European Commission and the Horizon 2020 Program, under Grant Agreement No 740829 Copyright SAINT Consortium. All rights reserved. 1 D3.5 Analysis of Legal and Illegal Vulnerability Markets and Specification of the Data Acquisition Mechanisms Document Information Deliverable number: 3.5 Deliverable title: Analysis of Legal and Illegal Vulnerability Markets and Specification of the Data Acquisition Mechanisms Deliverable version: 1.0 Work Package number: 3 Work Package title: Economic Analysis Due Date of delivery: 31/10/2017 Actual date of delivery: 06/11/2017 Dissemination level: PU Editor(s): Yannis Stamatiou (CTI) Contributor(s): John Bothos (NCSRD) Jart Armin (CYBE) Dimitrios Kavallieros (KEMEA) Pantelis Tzamalis (CTI) Vasileios Vlachos (CTI) Yannis Stamatiou (CTI) Reviewer(s): Stelios Thomopoulos (NCSRD) Georgios Germanos (KEMEA) Jart Armin (CYBE) Edgardo Montes (MNTMG) Ethical advisor(s): Christina Chalanouli (KEMEA) Project name: Systemic Analyser in Network Threats Project Acronym SAINT Project starting date: 1/5/2017 Project duration: 24 months Rights: SAINT Consortium Version History Version Date Beneficiary Description 0.1 28/07/2017 CTI Table of Contents 0.2 29/09/2017 CTI First draft version for further processing by the involved partners 0.3 12/10/2017 CTI Updated version ready for proofreading 0.4 16/10/2017 CTI Proofread version ready for technical review 0.5 20/10/2017 Ethical advisor Review by Ethical and legal advisor 0.6 25/10/2017 CTI Final version 0.7 2/11/2017 Security Advisory Review by Security Advisory Board Board members 1.0 6/11/2017 CTI Final version ready for submission Copyright SAINT Consortium. All rights reserved. 2 D3.5 Analysis of Legal and Illegal Vulnerability Markets and Specification of the Data Acquisition Mechanisms Abbreviations and Acronyms ACRONYM EXPLANATION ANZUS The Australia, New Zealand, United States Security Treaty API Application Programming Interface AR Abnormal Returns ASEAN Association of Southeast Asian Nations CAR Cumulative Abnormal Returns CERT Computer Emergency Response Team CVE Common Vulnerabilities and Exposures DDoS Distributed Denial-of-Service (type of attack) DoS Denial-of-Service (type of attack) EU European Union FBI Federal Bureau of Investigations I2P Invisible Internet Project IoT Internet of Things JSON JavaScript Object Notation LPE Local Privilege Escalation (type of vulnerability) NATO North Atlantic Treaty Organization (also called the North Atlantic Alliance) NIST National Institute of Standards and Technology NSA National Security Agency NVD National Vulnerability Database OS Operating System RCE Remote Code Execution (type of vulnerability) OVAL Open Vulnerability and Assessment Language RUB Remote Jailbreak with Persistence (type of vulnerability) TCP/IP Transmission Control Protocol/Internet Protocol UK United Kingdom US United States Copyright SAINT Consortium. All rights reserved. 3 D3.5 Analysis of Legal and Illegal Vulnerability Markets and Specification of the Data Acquisition Mechanisms Table of Contents Executive summary ................................................................................................................................ 7 1. Introduction ................................................................................................................................... 8 2. Identification of vulnerability markets ........................................................................................... 10 2.1 Vulnerability related concepts ........................................................................................................ 10 2.2 Vulnerability facts and trends ......................................................................................................... 11 2.3 Vulnerability producers (discoverers) ............................................................................................. 17 2.4 Vulnerability markets ...................................................................................................................... 17 2.4.1 White markets ......................................................................................................................... 17 2.4.1.1 Publicity ............................................................................................................................... 17 2.4.1.2 Captive ................................................................................................................................. 17 2.4.1.3 Reward programs ................................................................................................................ 18 2.4.1.4 Security company ................................................................................................................ 19 2.4.2 Online forums .......................................................................................................................... 20 2.4.3 Grey markets ........................................................................................................................... 21 2.4.4 Black markets........................................................................................................................... 21 2.5 Vulnerability consumers (buyers) .................................................................................................... 22 2.6 Vulnerability resolutions (patches) ................................................................................................. 22 3. 0-Day vulnerabilities and Deep Web markets ................................................................................ 26 3.1 0-day vulnerabilities ........................................................................................................................ 26 3.2 Pricing information on 0-day vulnerabilities and exploits ............................................................... 27 3.3 0-day vulnerability markets ............................................................................................................. 32 3.3.1 White Markets ......................................................................................................................... 32 3.3.2 Grey Markets ........................................................................................................................... 34 3.3.3 Black Markets .......................................................................................................................... 35 3.4 Cryptovirology and the Market for Encryption Back Doors ............................................................ 38 4. The role of the rate of updates and security fixes published by vendors ......................................... 39 5. Financial aspects of cybersecurity breaches and vulnerability information ..................................... 40 5.1 General considerations .................................................................................................................... 40 5.2 The Capacity and Value-Based Pricing Model for vulnerability and exploit trading ....................... 41 5.3 Costs of vulnerability announcements to vendors and costs of proactive defences ...................... 42 5.4 The effect of vulnerability disclosure on the market value of software product vendors .............. 45 5.5 Modelling the decisions of the vulnerability discoverer and defender........................................... 47 6. Specifications for the OSINT Web Crawler and the Social Network Analyser ................................... 49 6.1 Web Crawler .................................................................................................................................... 50 6.2 Social Network Analyzer (SNA) ........................................................................................................ 51 6.3 Terms of use of the tools ................................................................................................................. 60 7. Conclusion .................................................................................................................................... 61 Copyright SAINT Consortium. All rights reserved. 4 D3.5 Analysis of Legal and Illegal Vulnerability Markets and Specification of the Data Acquisition Mechanisms References ........................................................................................................................................... 62 Copyright SAINT Consortium. All rights reserved. 5 D3.5 Analysis of Legal and Illegal Vulnerability Markets and Specification of the Data Acquisition Mechanisms Table of Figures Figure 1-1: Types of experienced cyber-attacks (Ponemon, 2015) ................................................................... 8 Figure 1-2: Average annual cyber-crime cost weighted by attack frequency (Ponemon, 2015) ...................... 9 Figure 2-1: Vulnerability life cycle (blue rectangle: pre-disclosure risk, red rectangle: post-disclosure risk) . 11 Figure 2-2: The evolution of vulnerability numbers since 1999 (CVE) ............................................................ 12
Load more

Recommended publications
  • Legal Considerations
    © 2010 Cooperative Cyber Defence Centre of Excellence (CCD COE) Contact: Cooperative Cyber Defence Centre of Excellence (CCD COE) 12 Filtri Rd. 10132 Tallinn, Estonia [email protected] www.ccdcoe.org All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise, without prior written permission of CCD COE. The views, opinions, and/or findings and recommendations contained in this analysis are those of the authors and should not be construed as an official position, policy, or decision of NATO or any NATO entity. Layout, design and illustrations: Marko Söönurm ISBN: 978-9949-9040-0-6 INTERNATIONAL CYBER INCIDENTS: LEGAL CONSIDERATIONS Eneken Tikk Kadri Kaska Liis Vihul 2010 4 Contents PREFACE ������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������6 INTRODUCTION TO CASE STUDIES..........................................................................................................................................................................................10 ESTONIA 2007 ����������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������14
    [Show full text]
  • Pirates of the Isps: Tactics for Turning Online Crooks Into International Pariahs
    21st CENTURY DEFENSE INITIATIVE CyBER SECuRITy #1 July 2011 Pirates of the ISPs: Tactics for Turning Online Crooks Into International Pariahs Noah Shachtman 1775 Massachusetts Ave., NW Washington, D.C. 20036 brookings.edu Pirates of the ISPs: Tactics for Turning Online Crooks Into International Pariahs Noah Shachtman CyberSeCurity #1 July 2011 21st CENTURY DEFENSE INITIATIVE Acknowledgements every research paper is a group effort, no mat- My Wired.com colleagues—ryan Singel, kevin ter what it says on the byline. this project relied Poulsen, kim Zetter and David kravets—cover more on outside assistance than most. brookings the cybersecurity beat better than anyone. this Senior fellows Peter Singer and ken lieberthal paper would have been impossible without them, were the ones who convinced me to explore the and without brian krebs, master investigator of broad topic of cybersecurity. the panel they as- the online underworld. sembled gave me new insight with every meeting; my colleague allan friedman was an especially bill Woodcock, rick Wesson, Jeff Cooper, tyler invaluable tutor and remarkably generous with Moore, audrey Plonk, Jim lewis, Dmitri alpero- his time. heather Messera and robert o’brien vitch, Paul Nicholas, Jessica herrera-flannigan, provided important research and logistical sup- Jart armin, richard bejtlich, Steve Schleien, Jona- port. My research assistant, adam rawnsley, was than Zittrain and many, many others steered me tireless in his exploration of the minutiae of ev- away from my worst ideas and towards those few erything from tort law to pirate havens. not-so-bad ones. for that, i am deeply in their debt. brookings recognizes that the value it provides to any supporter is in its absolute commitment to quality, independence and impact.
    [Show full text]
  • Cyberpro October 8, 2009
    Volume 2, Edition 20 CyberPro October 8, 2009 Keeping Cyberspace Professionals Informed Officers The articles and information appearing herein are intended for President educational purposes to promote discussion in the public interest and to Larry K. McKee, Jr. keep subscribers who are involved in the development of Cyber-related concepts and initiatives informed on items of common interest. The Chief Operations Officer newsletter and the information contained therein are not intended to Jim Ed Crouch provide a competitive advantage for any commercial firm. Any misuse or unauthorized use of the newsletter and its contents will result in removal ------------------------------ from the distribution list and/or possible administrative, civil, and/or CyberPro Editor-in-Chief criminal action. Lindsay Trimble The views, opinions, and/or findings and recommendations contained in CyberPro Research Analyst this summary are those of the authors and should not be construed as an Kathryn Stephens official position, policy, or decision of the United States Government, U.S. Department of Defense, or National Security Cyberspace Institute. CyberPro Archive To subscribe or unsubscribe to this newsletter click here CyberPro News Subscription. Please contact Lindsay Trimble regarding CyberPro subscription, sponsorship, and/or advertisement. All rights reserved. CyberPro may not be published, broadcast, rewritten or redistributed without prior NSCI consent. 110 Royal Aberdeen Smithfield, VA 23430 ph. (757) 871 - 3578 CyberPro National Security Cyberspace
    [Show full text]
  • The Polish Internet 2016 Annual Report from the Actions of CERT Polska ISSN 2084-9079
    SECURITY LANDSCAPE OF THE POLISH INTERNET 2016 Annual report from the actions of CERT Polska ISSN 2084-9079 1 THE SECURITY LANDSCAPE OF THE POLISH INTERNET 2016 Annual report from the actions of CERT Polska Introduction...... ..................................................5 Threats, incidents and observations About CERT Polska .............................................6 particularly important for Polish Internet users ........................................... 39 Highlights from 2016 ..........................................7 Pravyi Sektor ........................................ 39 Calendar ............................................................8 Ransomware ....................................... 43 Protection of Polish cyberspace Locky ................................................ 44 and actions by CERT Polska ...........................11 Cerber .............................................. 44 Misha & Petya ................................. 45 CERT Polska as part of the National TorrentLocker .................................. 46 Cyber-Safety Centre. ................................ 11 CryptXXX & CrypMIC ..................... 46 Handling incidents and reacting CryptoMix ........................................ 47 to threats ..................................................... 11 TeslaCrypt ........................................ 48 NATO Locked Shields 2016 exercises ....... 15 DMA Locker ..................................... 48 Cyber Europe 2016 exercises.................... 16 Summary .........................................
    [Show full text]
  • Top 50 Bad Hosts & Networks
    ECYFED ISBN: 978-0-9836249-2-9 HostExploit’s Worldwide Cybercrime Series Top 50 Bad Hosts and Networks 2nd Quarter 2012 - Report “Data” - Graffiti Courtesy of cuatropiedos Abstract CyberCrime Series Introduction Over the quarter, cross-border collaboration has been successful in operations against long-standing cybercriminals. Methods Data of malicious activity, from a dozen community partners, were combined with HostExploit’s own data to ensure a balanced dataset as the basis of the report. HostExploit’s transparent methodology was used to calculate the HE Index of every publicly-routed Autonomous System. The HE Index represents detected concentration levels of malicious activity, relative to all other Autonomous Systems. Results Global levels of malicious activity have remained consistent with the previous quarter. However, there have been significant movements in the rankings of notable hosts (see 7.3 Improved Hosts and 7.4 Deteriorated Hosts). Discussion The United States and Russia have by far the most publicly-routed ASes registered (14,178 and 3,760 respectively). With the competitiveness of hosting in these countries, it can be claimed that they will always be likely to host large amounts of malicious content, even in relative terms. The United States, however, has continued to improve and is now at #12 in the country rankings, whereas Russia has climbed to #1 rank. There is no obvious pattern in the deterioration of these Russian hosts. Conclusion The standing of Russian hosts in the Top 50 has continued to deteriorate while the situation for the United States has improved - with no hosts topping any category of malicious activity in this quarter.
    [Show full text]
  • Inside Cyber Warfare
    SECOND EDITION Inside Cyber Warfare Jeffrey Carr Beijing • Cambridge • Farnham • Köln • Sebastopol • Tokyo Inside Cyber Warfare, Second Edition by Jeffrey Carr Copyright © 2012 Jeffrey Carr. All rights reserved. Printed in the United States of America. Published by O’Reilly Media, Inc., 1005 Gravenstein Highway North, Sebastopol, CA 95472. O’Reilly books may be purchased for educational, business, or sales promotional use. Online editions are also available for most titles (http://my.safaribooksonline.com). For more information, contact our corporate/institutional sales department: (800) 998-9938 or [email protected]. Editor: Mike Loukides Indexer: John Bickelhaupt Production Editor: Jasmine Perez Cover Designer: Karen Montgomery Copyeditor: Marlowe Shaeffer Interior Designer: David Futato Proofreader: Jasmine Perez Illustrator: Robert Romano December 2009: First Edition. December 2011: Second Edition. Revision History for the First Edition: 2011-12-07 First release See http://oreilly.com/catalog/errata.csp?isbn=9781449310042 for release details. Nutshell Handbook, the Nutshell Handbook logo, and the O’Reilly logo are registered trademarks of O’Reilly Media, Inc. Inside Cyber Warfare, the image of light cavalry, and related trade dress are trade- marks of O’Reilly Media, Inc. Many of the designations used by manufacturers and sellers to distinguish their products are claimed as trademarks. Where those designations appear in this book, and O’Reilly Media, Inc., was aware of a trademark claim, the designations have been printed in caps or initial caps. While every precaution has been taken in the preparation of this book, the publisher and author assume no responsibility for errors or omissions, or for damages resulting from the use of the information con- tained herein.
    [Show full text]
  • Sstic2010-Freyssinet-Lutter-Co
    Réflexions pour un plan d’action contre les botnets Éric Freyssinet To cite this version: Éric Freyssinet. Réflexions pour un plan d’action contre les botnets. Symposium sur la sécurité des technologies de l’information et des communications, Jun 2010, Rennes, France. hal-01076638 HAL Id: hal-01076638 https://hal.archives-ouvertes.fr/hal-01076638 Submitted on 23 Oct 2014 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. Distributed under a Creative Commons Attribution| 4.0 International License R´eflexionspour un plan d'action contre les botnets Lt-col Eric´ Freyssinet Direction g´en´eralede la gendarmerie nationale, Sous-direction de la police judiciaire 35 rue Saint-Didier, F-75775 PARIS Cedex 16 [email protected], http://blog.crimenumerique.fr/ R´esum´e 90% de pourriels, des botnets toujours plus pr´esents, des cam- pagnes de phishing qui s'en prennent de plus en plus aux clients des institutions de tous les pays, sans discrimination. Cet article propose une r´eflexionsur les modes d'action possibles pour que l'ensemble des partenaires identifi´espuissent travailler ensemble et de fa¸conconcert´ee afin non seulement de freiner, mais aussi d'identifier, d'interpeller et de poursuivre tous les acteurs qui profitent de ces sch´emascriminels.
    [Show full text]
  • Russian Invasion of Georgia Russian Cyberwar on Georgia
    Russian Invasion of Georgia Russian Cyberwar on Georgia 10 November, 2008 Regular updates can be found on the Georgia Update website: www.georgiaupdate.gov.ge 1. INTRODUCTION ..............................................................................................2 2. BACKGROUND ON CYBERWARFARE .......................................................2 3. RUSSIA’S ONLINE WAR ON GEORGIA: FIRST STRIKE ..............................3 4. CYBER BLOCKADE .........................................................................................5 5. SITES PROVIDING DDOS ATTACK TOOLS .................................................5 6. PART OF THE INFORMATION WAR .............................................................7 7. RUSSIAN BUSINESS NETWORK ......................................................................8 8. THE 27 AUGUST ATTACK ...............................................................................9 CONCLUSION......................................................................................................10 APPENDIX: Articles About Cyberwar on Georgia .........................................11 1 1. INTRODUCTION The Russian invasion of Georgia was preceded by an intensive build up of cyberattacks attempting to disrupt, deface and bring down critical Georgian governmental and civilian online infrastructure. These attacks became a massive assault on the eve of the invasion which resulted in the blocking, re-routing of traffic and control being seized of various sections of Georgian cyberspace. The attack marks
    [Show full text]
  • Inside Cyber Warfare
    Inside Cyber Warfare Inside Cyber Warfare Jeffrey Carr foreword by Lewis Shepherd Beijing • Cambridge • Farnham • Köln • Sebastopol • Taipei • Tokyo Inside Cyber Warfare by Jeffrey Carr Copyright © 2010 Jeffrey Carr. All rights reserved. Printed in the United States of America. Published by O’Reilly Media, Inc., 1005 Gravenstein Highway North, Sebastopol, CA 95472. O’Reilly books may be purchased for educational, business, or sales promotional use. Online editions are also available for most titles (http://my.safaribooksonline.com). For more information, contact our corporate/institutional sales department: (800) 998-9938 or [email protected]. Editor: Mike Loukides Indexer: John Bickelhaupt Production Editor: Loranah Dimant Cover Designer: Karen Montgomery Copyeditor: Genevieve d’Entremont Interior Designer: David Futato Proofreader: Loranah Dimant Illustrator: Robert Romano Printing History: December 2009: First Edition. Nutshell Handbook, the Nutshell Handbook logo, and the O’Reilly logo are registered trademarks of O’Reilly Media, Inc. Inside Cyber Warfare, the image of light cavalry, and related trade dress are trade- marks of O’Reilly Media, Inc. Many of the designations used by manufacturers and sellers to distinguish their products are claimed as trademarks. Where those designations appear in this book, and O’Reilly Media, Inc. was aware of a trademark claim, the designations have been printed in caps or initial caps. While every precaution has been taken in the preparation of this book, the publisher and author assume no responsibility for errors or omissions, or for damages resulting from the use of the information con- tained herein. TM This book uses RepKover™, a durable and flexible lay-flat binding. ISBN: 978-0-596-80215-8 [M] 1259961702 Table of Contents Foreword .
    [Show full text]
  • Réflexions Pour Un Plan D'action Contre Les Botnets
    R´eflexionspour un plan d'action contre les botnets Lt-col Eric´ Freyssinet Direction g´en´eralede la gendarmerie nationale, Sous-direction de la police judiciaire 35 rue Saint-Didier, F-75775 PARIS Cedex 16 [email protected], http://blog.crimenumerique.fr/ R´esum´e 90% de pourriels, des botnets toujours plus pr´esents, des cam- pagnes de phishing qui s'en prennent de plus en plus aux clients des institutions de tous les pays, sans discrimination. Cet article propose une r´eflexionsur les modes d'action possibles pour que l'ensemble des partenaires identifi´espuissent travailler ensemble et de fa¸conconcert´ee afin non seulement de freiner, mais aussi d'identifier, d'interpeller et de poursuivre tous les acteurs qui profitent de ces sch´emascriminels. Avertissement : Cet article contient volontairement un certain nombre de d´efinitionsque beaucoup de lecteurs pourront trouver superflues, mais elles ont ´et´emaintenues dans un souci de vulgarisation. 1 Introduction Il est maintenant devenu banal d’affirmer que les botnets 1 sont l'outil le plus courant des cybercriminels. Toutefois, en dehors des cercles sp´ecialis´es, il faut bien avouer que le grand public voit les botnets comme un ph´enom`ene underground plut^otque comme une vraie tendance de fond. Les initiatives sont nombreuses qui visent `atraquer les centres de commande ou d´etecter les attaques. D'autres tentent une d´emarche plus active en incitant les fournisseurs d'acc`es`a"d´ebrancher" les h´ebergeurs malhonn^etes.Ainsi, Brian Krebs [3] est-il devenu un peu plus c´el`ebrelorsqu'il a r´eussi`aobtenir la fermeture de l'h´ebergeur malhonn^eteMcColo, gr^ace`ala publication dans un organe de presse grand public des r´esultatsde travaux de recherche de diff´erents sp´ecialistes (dont ceux de Jart Armin et al.[1]).
    [Show full text]
  • ENISA Threat Landscape Report 2017 15 Top Cyber-Threats and Trends
    ENISA Threat Landscape Report 2017 15 Top Cyber-Threats and Trends FINAL VERSION 1.0 ETL 2017 JANUARY 2018 www.enisa.europa.eu European Union Agency For Network and Information Security ENISA Threat Landscape Report 2017 ETL 2017 | 1.0 | HSA | January 2018 About ENISA The European Union Agency for Network and Information Security (ENISA) is a centre of network and information security expertise for the EU, its member states, the private sector and Europe’s citizens. ENISA works with these groups to develop advice and recommendations on good practice in information security. It assists EU member states in implementing relevant EU legislation and works to improve the resilience of Europe’s critical information infrastructure and networks. ENISA seeks to enhance existing expertise in EU member states by supporting the development of cross-border communities committed to improving network and information security throughout the EU. More information about ENISA and its work can be found at www.enisa.europa.eu. Contact For queries on this paper, please use [email protected] For media enquiries about this paper, please use [email protected]. Acknowledgements ENISA would like to thank the members of the ENISA ETL Stakeholder group: Pierluigi Paganini, Chief Security Information Officer, IT, Paul Samwel, Banking, NL, Jason Finlayson, Consulting, IR, Stavros Lingris, CERT, EU, Jart Armin, Worldwide coalitions/Initiatives, International, Thomas Häberlen, Member State, DE, Neil Thacker, Consulting, UK, Shin Adachi, Security Analyst, US, R. Jane Ginn, Consulting, US, Andreas Sfakianakis, Industry, NL. The group has provided valuable input, has supported the ENISA threat analysis and has reviewed ENISA material.
    [Show full text]
  • Babak Akhgar.Pdf
    Advanced Sciences and Technologies for Security Applications Babak Akhgar Ben Brewster Editors Combatting Cybercrime and Cyberterrorism Challenges, Trends and Priorities Advanced Sciences and Technologies for Security Applications Series editor Anthony J. Masys, Centre for Security Science, Ottawa, ON, Canada Advisory Board Gisela Bichler, California State University, San Bernardino, CA, USA Thirimachos Bourlai, Statler College of Engineering and Mineral Resources, Morgantown, WV, USA Chris Johnson, University of Glasgow, UK Panagiotis Karampelas, Hellenic Air Force Academy, Attica, Greece Christian Leuprecht, Royal Military College of Canada, Kingston, ON, Canada Edward C. Morse, University of California, Berkeley, CA, USA David Skillicorn, Queen’s University, Kingston, ON, Canada Yoshiki Yamagata, National Institute for Environmental Studies, Tsukuba, Japan The series Advanced Sciences and Technologies for Security Applications focuses on research monographs in the areas of – Recognition and identification (including optical imaging, biometrics, authen- tication, verification, and smart surveillance systems) – Biological and chemical threat detection (including biosensors, aerosols,mate- rials detection and forensics), and – Secure information systems (including encryption, and optical and photonic systems). The series is intended to give an overview at the highest research level at the frontier of research in the physical sciences. The editors encourage prospective authors to correspond with them in advance of submitting a manuscript.
    [Show full text]