The Threat - Physical Entry of Premises - Hard copies of information, notes and files may be compromised.
The Response:
A comprehensive physical inspection will be done as an initial part of the sweep. Locks and any target areas will be inspected for signs of intrusion. Any suspicious wiring will be questioned! The client will be advised of new technology available to protect their environment.
The Threat - A bug may have been placed that will transmit conversations by RF, Infrared, or Microwave technology to a listening post. This may be transmitted in analog, or digital modes.
The Response -
A proper sweep for bugs will utilize several unique and specialized pieces of equipment to address and test for all the above. The main tool is an OSCOR, a computerized spectrum analyser specifically designed for the TSCM industry. This unit is the most up to date available and currently used by all national governments that can access them. It will quickly identify any unique to your environment, and allow for complete demodulation of the signal to determine the level of threat. It will also test for video signals, infrared transmitters, microwave and carrier current (hard-wired) transmitters. Tests are performed to identify and locate any active bug or transmitter from 5 Mhz to 21 GHz. It also performs the two newest testing procedures, RF Mapping, and Trace Analysis. These procedures have both been available for less than a year, and are designed to identify burst, frequency hopping and spread spectrum transmitters. Please note all of these have been found in BC, and should be considered a valid threat.
You will also see a portable unit with a wand sweeping all over the walls and fixtures. This is a broadband receiver and will identify transmitters in a wide frequency whereas the OSCOR is specific. It basically checks for the same thing but with a different technology covering a range of 5 Mhz to 12 GHz, the most common frequencies used in bugging.
Finally, you will see the actual walls and fixtures being swept again with a large pad. This is a Non Linear Junction Detector (NLJD). The purpose of this piece of equipment is to "excite" components of a electronic device (bug) that may be in an inert, covert or non-operating state. It will do this by energizing the device with a high energy signal, and then "listening" for a response.
The Threat - A bug covertly placed in an electrical cavity that uses power from available sources and transmits a signal (DC) using existing wiring.
The Response:
You will see all electrical junctions opened and physically inspected to see if the site has been disturbed or altered. Tests will also be done where the lines are listened to for signs of carrier current signals transmitted on existing wire. Tests will also be conducted to determine any "heat signature" difference between locations. Once determined to be safe, they will be closed and marked covertly to allow for quick inspections in the future.
|
|
The Threat - Hard Wired Telephones Since telephones can contain up to 3 microphones, they can be easily tapped using these microphones in several manners to listen to the room environment and conversations. The actual telephone line will allow for the "wire tap" to be sent to a remote listening post. The most common wiretap is generally referred to as a hook-line-bypass or "live mic". If a live mic in present in the instrument, the room audio can be transmitted to a listening post or a tape recorder. Both of these are quite likely illegal. A legal wire tape will intercept the telephone conversation at the telephone office using a "software" adaptation and is virtually invisible to testing. Newer telephones can be tapped remotely by using a software maintenance program.
The Response:
Tests will be done to determine the Line Balance on the telephone system. Imbalances strongly suggest that something foreign may be attached to the telephone line. A Time Domain Reflector (Cable Radar) will be done to check the line to a distance of about 30,000 feet for splices or irregularities. Further testing will be done on all combinations (64) of wiring to determine if there is a "hot mic" present.
The Threat - Cordless Telephones transmit any conversation even if it is conducted on a wired phone on the same system. Although a lot of these phones are sold as digital (information is a series of "1’s & 0’"s) a lot will transmit in analogue from the satellite unit to the main receiver!
The Response:
These phones will be tested to see if they are active, however, it is best just t get rid of them. If the phone is transmitting, all information is easily transmitted several hundred feet to an interested party. THEY ARE DANGEROUS.
The Threat - Computers. Wireless computers using routers DO transmit data over a distance, and therefore are vulnerable to attack. The most common threat however is that of a key stoke logger, a device that is installed covertly in software that records and transmits all data and activity on your computer.
The Response:
The computer will be checked for any unusual wiring. Test will be done to determine the presence of a key stroke logger. The client will be taught how to perform routine maintenance to identify a key stroke logger. Software will be installed to identify intrusions in the future!
The Threat -Cell Phones/Blackberry
Although not a physical wiretap, THESE ARE VERY DANGEROUS, and this danger should be recognized as a potential threat.
The Response:
Testing will be done to determine if the phone is live. The client will be advised as to proper countermeasures to be followed to minimize this threat.
The Threat - Windows - New technology using lasers is to be considered a potential threat.
The Response:
Tests will be conducted for the presence of laser signals. The client will be advised on technology that will protect from this type of attack.
The Threat - Transmission of Sound Through Walls and Ceiling Cavities
The Response:
Tests will be conducted to determine the possibility of this type of threat. The client will be advised of countermeasures that will eliminate this problem.
|
