Government Security News August Digital Edition

Government Security News
AUGUST 2016 DIGITAL EDITION
Smart-mapping leader Esri releases robust collection of Web maps that forecast
data into vivid stream-flow throughout the continental U.S. – Page 4
Also in this issue:
GSN Airport, Seaport, Border Security Awards Program: Telos Corp wins “Best Biometric Identification/
Authentication” – Page 12
HID Global releases mid-year update in secure identity trends – Page 24
Forescout describes security challenges in handling both Republican and Democratic National
Conventions – Page 28
3M’s Peter Smallridge discusses EU/US border security practices and need for improvement in border
security management – Page 39

GSN August 2016 Digital
NEWS
4
5
7
10
12
14
15
18
20
22
24
28
Smart-mapping leader Esri releases robust
collection of Web maps that forecast data into
vivid stream-flow throughout the continental U.S.
IntraLogic Solutions to announce first ever
National Common Operating Picture (COP) platform for first
responders allowing immediate 9-1-1 notification
Senators Grassley/Leahy, press federal investigators on breach of
Democratic National Committee
Cypherpath, Quali partnership provides portable containerized
infrastructures that support virtual sand boxes and cyber ranges
GSN Airport, Seaport, Border Security Awards Program: Telos Corp
wins “Best Biometric Identification/Authentication”
Cellebrite introduces UFED Touch2 platform for
standalone mobile Forensic solutions
Controp’s airborne EO/IR Surveillance
Camera payload protects Olympic games
ECN acquires MIR3, extends SaaS-based unified critical
communications platform to enterprise clients
Climate Change – This is what it’s going to look
like! A dispatch from Baton Rouge from
George Lane, GSN Columnist
Convy on Net-Centric Security – Securing the Internet of Things
HID Global releases mid-year update on top trends for secure identity
Forescout describes security challenges of handling both Republication
and Democratic National Conventions
2

Edition Table of Contents
FEATURES
SPECIAL REPORT: Border Security/Immigration
30
31
32
Why the Department of Homeland Security should
also end private prison contracts
Donald Trump’s shortsighted immigration plans
won’t secure the homeland
Government sued for withholding records on
immigration raids
33
35
36
37
Court order release of graphic photos of Arizona
Border Patrol detection facilities
3M’s new ALPR software extends reach,
delivers real-time actionable intelligence
DevMynd obtains strategic investment
from Motorola Solutions
Albuquerque police fight violence with
intelligence-led policing
SPECIAL REPORT: Access Control/Biometric ID
39
3M’s Peter Smallridge discusses EU/US border
security practices and need for improvement in
border security management
41
LBsecure promotes best-of-class granular
and layered security solutions for its clients
within SAP
3

New Esri Maps NOAA’s National Model forecast
data into vivid pictures of U.S. river flows
REDLANDS, CA—August 25, 2016
—Smart-mapping leader Esri today
released a beautiful, robust new
collection of Web maps that forecast
NOAA stream-flow data throughout
the continental U.S.
Esri’s multiscale visualization
of the National Water
Model enables forecast water
flows in real time at high
resolution. The maps weave
together NOAA’s recently released
water model data and
Esri ArcGIS functionality to
provide interactive views of current
and future water-system behaviors.
Esri maps the flow of water along
2.7 million stream segments in the
U.S. river network. These data-rich
maps improve NOAA’s ability to
meet the needs of emergency responders,
reservoir operators, ecosystem
professionals, and floodplain
managers by providing detailed information
that can anticipate flood
and drought conditions. National
Weather Service data populates the
interactive maps with hourly updates
and forecasts up to 10 days.
“In collaboration with our academic
partners, the Esri team supported
the development process
leading up to the launch of the National
Water Model,” said Edward
Clark, director of geointelligence at
NOAA. “We share a common vision
for the value that high-resolution
water prediction brings to the nation.”
Esri’s new maps enable users to
access large amounts of complex
data quickly and easily. Although
10-day, mid-range forecasts contain
more than 200 million records and
short-term forecasts require hourly
data refresh, Esri maps automatically
integrate and synthesize NOAA
data so that users have the real-time
information they need at the click of
a button.
“These attractive, accessible maps
are part of our commitment to improve
water awareness—a commitment
we made at the White House
Water Summit earlier this year,” said
Esri President Jack Dangermond.
“ArcGIS provides a visually engaging
way to communicate complex
scientific information simply so that
4
anyone can understand it.”
Esri plans to continue its investment
in water prediction and analysis
by releasing an open-source
toolkit later this year that will enable
ArcGIS users to analyze
data and create custom maps
from water model records.
About Esri
Since 1969, Esri has been
giving customers around the
world the power to think
and plan geographically. The
market leader in GIS technology,
Esri software is used in more than
300,000 organizations worldwide
including each of the 200 largest
cities in the United States, most
national governments, more than
two-thirds of Fortune 500 companies,
and more than 7,000 colleges
and universities. Esri applications,
running on more than one million
desktops and thousands of Web
and enterprise servers, provide the
backbone for the world’s mapping
and spatial analysis. Esri is the only
vendor that provides complete
technical solutions for desktop, mobile,
server, and Internet platforms.
Visit us at esri.com/news.

IntraLogic Solutions to announce first ever National
Common Operating Picture (COP) platform for first
responders allowing immediate 9-1-1 notification
As recently reported by Government
Security News, Intralogic Solutions,
Inc. a leading global school security,
and government developer and integrator,
and Rave Mobile Safety, a
respected creator of innovative public
safety and communication software
have announced a partnership
to develop an integrated service offering
that will benefit both schools
and first responders during crisis
situations, including ones involving
active shooters.
According to the partners, the new
solution combines Rave’s Panic Button
application and 9-1-1 data delivery
capabilities with robust video
surveillance, interactive rich digital
floor plans, One Button Lockdown
and access control technology. The
combined solution will allow
first responders full access
to critical information
about a situation from any
location, including while
en route via a secure, mobile
broadband connection.
In an August 10 interview
with Intralogic CEO Lee
Mandel, GSN learned that the integrated
technologies offer a unique
Lee Mandel,
Intralogic CEO
technological breakthrough experience
that no other company is presently
offering. Rather than the traditional
9-1-1 process to call police,
the new, integrated technology
can send critical information
within milliseconds
to a 9-1-1 call center.
“When someone hits the
panic button in a school,
the 9-1-1 center is immediately
activated giving
operators full command
and control to help find the shooter
while the first responders are still in
5
View the video
transit. They can then remotely open
the doors and guide the responders
to exactly where the shooter is,” said
Mandel. “No one else on a national
level is offering this comprehensive
solution. Additionally the panic button
can initiate a lockdown which
will, locks all the doors automatically,
flash strobe lights, send text
messages to parents, teachers, and
students, and take over all computer
screens while playing a pre-recorded
message over the P.A. system.”
Mandel indicated that the technology
is a first of its kind agnos-

tic platform that allows integration
from any manufacturer. IntraLogic
considers this an advanced PSIM
solutions.
Mandel and his company have
been getting a lot of attention from
major companies in the field who
understand that clients have never
been able to customize in this manner,
“with one common operating
picture.”
Founded by Mandel in 2004, IntraLogic
focused mainly on software
development in its early years,
working for a lot of businesses on
Long Island, NY and other nearby
states. The turning point, said Mandel,
was when the company got on
its first government contract which
enables any government agency to
purchase products from pre-bid,
published lists. Currently, the company
serves over 160 School Districts
nationally including 49 of
the 57 districts in Nassau County,
30 in Suffolk County and over 80
throughout Upstate New York, New
Jersey, Connecticut, Florida, and
across the United States.
IntraLogic’s overall list of clients
include schools, townships, municipalities,
as well as a contract with the
MTA Long Island Railroad, which
buys its Cameras, Fire Alarms, Burglar
Alarms and Command Centers.
On the private side, the company
works with some very well
known National Retail chains with
hundreds of locations throughout
the U.S. and overseas.
As impressive as these entrepreneurial
accomplishments may
seem, Mandel made it clear to GSN
that another major breakthrough is
going to be announced in early September,
although he is not at liberty
to announce who this major client is
– except to assure us that the pending
client is a very significant organization.
“We’ve been working with our clients
as an integrator, manufacturer,
and software developer. Our goal is
to offer a one stop shop for our clients
and partners.”
“With our new Common Operating
Picture we can now take all
school districts, malls, schools, hospitals,
municipalities, villages and
other critical assets and tie them to
a centralized platform. We can go
to any government agency around
the world and create this without
replacing their existing technology.
It’s the first of its kind agnostic
platform that allows us to integrate
technology from any manufacturer.”
Along with many readers, GSN is
eager to learn more about this exciting
new platform, and how it will
enhance technology and security
around the globe!
6

Senators Grassley, Leahy press federal investigators on
breach of Democratic National Committee
VIA ELECTRONIC TRANSMISSION
The Honorable Loretta Lynch
Attorney General
U.S. Department of Justice
950 Pennsylvania Avenue, NW
Washington, DC 20530
The Honorable James B. Comey, Jr.
Director
Federal Bureau of Investigation
935 Pennsylvania Avenue, NW
Washington, DC 20535
Dear Attorney General Lynch and
Director Comey:
We are writing in regard to the recent
cyberattacks on American political
organizations. Yesterday the
FBI confirmed that it is investigating
the recent hack of the Democratic
National Committee (DNC). We are
writing to request more specific information
about the efforts that the
National Cyber Investigative Joint
Task Force (NCIJTF) and other elements
of the FBI and Justice Department
are undertaking in order
to counter these types of attacks and
bring the perpetrators to justice.
On June 14, 2016, the Washington
Post reported that Russian government
hackers had successfully penetrated
the computer network of the
Democratic National Committee,
gaining access to DNC databases
and email. [1] According to the article,
DNC officials noticed unusual
network activity and hired Crowd-
Strike, a cybersecurity firm, to investigate.
The firm identified two
separate groups of hackers who had
penetrated the DNC network, both
of which it determined were working
for the Russian government. Immediately
after the Washington Post
report, a purported hacker calling
himself “Guccifer 2.0” claimed responsibility
for the hack, and further
claimed to be a lone Romanian
hacker. [2] The Russian government
also denied its involvement. [3] However,
evidence appears to undermine
the Romanian hacker’s claim of responsibility
and instead suggests
the Russian government’s involvement.
[4] The hackers subsequently
publicly released what appears to be
the DNC’s opposition research on
Donald Trump in June. [5] Last week,
WikiLeaks released roughly 20,000
of the hacked DNC emails that the
hackers had provided to it. [6]
It is not unusual for a nation’s intelligence
services to obtain sensitive
information from other nations’
political entities. Not only
has James Clapper, the Director of
7
Senator Grassley
Senator Leahy
National Intelligence, stated that the
government has indications of cyberattacks
on the 2016 presidential
campaigns, the government has also
reported that foreign hackers targeted
the networks of the Romney
and Obama campaigns in 2012, and
that Chinese hackers compromised
the networks of the Obama and Mc-
Cain campaigns in 2008. [7]
However, when a foreign intelligence
service not only spies on
American political organizations,
which is bad enough, but then selectively
publishes the obtained
information in what appear to be
attempts to affect our democratic
process, it is substantially more troubling.
The integrity of the democratic
process is essential to the social
contract on which our republic is
formed. If foreign intelligence agencies
are attempting to undermine

that process, the U.S. government
should treat such efforts even more
seriously than standard espionage.
These types of cyberattacks are significant
and pernicious crimes. Our
government must do all that it can
to stop such attacks and to seek justice
for the attacks that have already
occurred.
We were pleased to see that the
FBI has stated that it is investigating
this situation. We are writing to
request more information on this
cyberattack in particular and more
information in general on how the
Justice Department, FBI, and NCI-
JTF attempt to prevent and punish
these types of cyberattacks. Accordingly,
please respond to the following
by August 9, 2016:
1. When did the Department of Justice,
FBI, and NCIJTF first learn
of the DNC hack? Was the government
aware of the intrusion
prior to the media reporting it?
2. Has the FBI deployed its Cyber
Action Team to determine who
hacked the DNC?
3. Has the FBI determined whether
the Russian government, or any
other foreign government, was
involved in the hack?
4. In general, what actions, if any, do
the Justice Department, FBI, and
NCIJTF take to prevent cyberattacks
on non-governmental political
organizations in the U.S.,
such as campaigns and political
parties? Does the government
consult or otherwise communicate
with the organizations to
inform them of potential threats,
relay best practices, or inform
them of detected cyber intrusions?
5. Does the Justice Department believe
that existing statutes provide
an adequate basis for addressing
hacking crimes of this nature, in
which foreign governments hack
seemingly in order to affect our
electoral processes?
In addition to the questions listed
above, we also request that the Justice
Department, FBI, and/or NCI-
JTF arrange a briefing on these issues
for Committee staff by August
16, 2016. If possible, we also request
that the briefing include a staff tour
of NCIJTF’s facilities. Thank you
for your attention to this important
matter. If you have any questions,
please contact Patrick Davis of the
Committee Staff at (202) 224-5225
or [redacted].
Sincerely,
Charles E. Grassley
Chairman
Senate Committee on the Judiciary
Patrick Leahy
Ranking Member
Senate Committee on the Judiciary
8
cc: The Honorable Donald Freese
Director National Cyber
Investigative Joint Task Force
cc: The Honorable John P. Carlin
Assistant Attorney General
National Security Division
Department of Justice
cc: The Honorable James C. Trainor, Jr.
Assistant Director
Cyber Division
Federal Bureau of Investigation
[1] Ellen Nakashima, Russian Government Hackers
Penetrated DNC, Stole Opposition Research On
Trump,The Washington Post, June 14, 2016.
[2] Lorenzo Franceschi-Bicchierai, ‘Guccifer 2.0’ Is
Likely A Russian Government Attempt To Cover Up
Their Own Hack, Motherboard, June 16, 2016.
[3] Andrew Roth, Russia Denies DNC Hack And Says
Maybe Someone ‘Forgot The Password,’ The Washington
Post, June 15, 2016.
[4] E.g., Dmitri Alperovitch, Bears In The Midst:
Intrusion Into The Democratic National Committee,
CrowdStrike, June 15, 2016; Lorenzo Franceshi-
Bicchierai, We Spoke to DNC Hacker ‘Guccifer 2.0,’
Motherboard, June 21, 2016; Eli Lake, Cybersecurity
Experts Say Russia Hacked The Democrats, Bloomberg,
July 25, 2016; Thomas Rid, All Signs Point To
Russia Being Behind The DNC Hack, Motherboard,
July 25, 2016; Evan Perez, Russians Suspected Of
Hacking Democratic National Committee Emails,
CNN, July 25, 2016.
[5] Caitlin Yilek, Stolen DNC Files On Trump Leaked,
The Hill, June 15, 2016.
[6] Andrea Peterson, Wikileaks Post Nearly 20,000
Hacked DNC Emails Online, The Washington Post,
July 22, 2016.
[7] Ellen Nakashima, National Intelligence Director:
Hackers Have Targeted 2016 Presidential Campaigns,
The Washington Post, May 18, 2016.

Cypherpath, Quali partnership provides portable
containerized infrastructures that support virtual
sandboxes and cyber ranges
SANTA CLARA, CA, Aug. 23, 2016
– Quali, the leading Cloud Sandbox
software platform for DevOps
automation, and Cypherpath, the
leader in on-demand containerized
infrastructure solutions, today
announced the integration of
the Cypherpath Virtual Container
Platform (VCP) with the Quali
CloudShell solution. Through this
partnership, joint customers are
using on-demand containerized
infrastructures to create and manage
cyber ranges and private cloud
sandboxes. Through full infrastructure
and IT environment virtualization,
customers are saving millions
of dollars in costs associated with
creating, delivering and managing
the full stack of physical compute,
network and storage resources in
highly secure containers.
A cyber range, or cloud sandbox,
gives enterprises the ability to rapidly
reconfigure IT environments
for use by individuals and teams
to conduct offensive and defensive
cyber-mission rehearsal training,
tool-specific training, software
evaluation, and configuration testing.
Most organizations lack the
budget and manpower resources
required to deploy large scale, nonproduction
cyber environments
using existing enterprise tools and
many solutions available to them
do not include the ability to rapidly
change, add, modify and control the
environments.
By leveraging the partnership,
value added reseller (VAR) TSI was
able to provide ManTech International
Corporation the technology
needed to give DISA a fully virtualized
lab infrastructure, complete
with integrated virtual sandboxing
and cyber range capabilities. With
this full stack, DISA is able to use
the lab to develop, test and run infrastructure
in private clouds or
bare-metal servers without requiring
the agency to adopt proprietary
tools, saving both time and money.
10
“DISA is responsible for supporting
a critical element of our national
defense strategy, which is the sharing
of information between joint
warfighters, national leaders, and
other mission and coalition partners,”
said Ernest McCaleb, Man-
Tech technical director and DISA
Cyber Security Range chief architect.
“This fast, simple and cost effective
solution provides us with the
ability to fulfill our mission without
sacrificing performance or security,
and deliver the Multiprotocol Label
Switching stack at a fraction of the
cost.”
Through this partnership, joint
customers can:
• Use on-demand infrastructure
to support private cloud sandboxes
in mission ready cyber ranges
• Define, deploy and manage fully
containerized IT infrastructure ondemand
while providing the agility
to share and collaborate between
nodes, networks, bare-metal servers
and private clouds
• Significantly reduce investment
in new physical data center resources
and technologies by virtualizing
More on page 42

New generation.
New possibilities.
Secure your site with the new F3 Series Fence
Controllers, the latest in perimeter protection.
Find out more at security.gallagher.com/latest-releases
security.gallagher.com
security.gallagher.com

Winners’ Portraits: GSN 2016 Airport, Seaport, Border Security Awa
Telos Corporation:
2016 Winner, Best Biometric
Identification/Authentication Solution
By Chuck Brooks, 2016 Lead Judge
It was an honor to judge the recent
GSN 2016 Airport, Seaport, Border
Security Awards Program and
review a wide array of exceptional
security technology submissions.
I’m very pleased to be discussing
the Telos winning entry with Renate
Neely, Marketing Director of Telos
Corporation, and Dawn E. Lucini,
Director of Aviation Security, Telos
Identity Management Solutions.
I have been aware of the important
work of Telos Corporation dating
back to the years when I covered
national security issues working
for the late Senator Arlen Specter
on The Hill. As the digital world
has involved operationally over the
past decade, so has the vulnerability
of maintaining security for people,
systems and information.
Brooks: In the defense, homeland,
and intel communities Telos is
highly regarded for the generic category
of “secure communications”
and we know that your solution is
advanced, efficient and certainly
has the confidence of some of the
most important government agencies
in the security arena. Can you
elaborate on your background in
government and some of the communications
areas, including mobility,
where Telos has contributed
solutions?
Renate Neely: Thank you, Chuck,
for your kind words about Telos
Corporation. We do indeed have a
long history of supporting federal
government clients with solutions
for secure communications, as well
as cyber security, secure mobility,
and identity management. But if I
may, I’d like to focus our remarks
today not on Telos Corporation,
but on Telos Identity Management
Solutions LLC (Telos ID). It is this
subsidiary rather than the parent
Telos Corporation that is the star
of the GSN 2016 Airport, Seaport,
Border Security award for the Best
Biometric Identification or Authentication
Solution.
Telos ID’s original claim to fame
12
Renate Neely,
Marketing Director
Dawn E. Lucini,
Director of
Aviation Security
is its long history of supporting the
Defense Manpower Data Center’s
(DMDC) Common Access Card
(CAC) program to provide DoD
personnel with identity-based access
to secure resources, including
communications systems, as well as
physical access to secure areas. This
has been the springboard for innovative
developments in the areas
of identity vetting and continuous
threat assessment.
Brooks: We are living in an era of
large and widespread information
security breaches. Everyone is vulnerable
and networks, including
those of government agencies (i.e.
OPM) are immune to cyber-attacks.
Risk management has become an
operational requirement for executive
management. What does Telos
do in the area of risk assessments

ds Program
for networks both in the federal and
commercial spaces?
Renate Neely: Telos Corporation
protects government and commercial
enterprises with solutions and
services for the full cyber security
lifecycle. Our offerings include independent
counsel for information
security requirements, cyber security
consulting services, and enterprise
solutions for IT risk management
and continuous compliance.
But again, let’s focus on Telos ID,
which addresses the operational
requirements of risk management
as well, focusing primarily on the
insider threat. An example is the
company’s IDVetting service, which
provides governments, schools,
medical professionals, and commercial
organizations with a complete
fingerprint background checking
solution. These customers use
IDVetting services to submit biographic
and biometric information
from employees, candidates, and
contractors to the FBI for criminal
history records checks, helping to
secure their business environment,
reduce risk and cost, and comply
with federal, state, and local laws regarding
required checks for specific
industries and roles.
Brooks: The recent terrorist attacks
against airport targets demonstrate
the need for enhanced security measures,
including screening of airport
staff, and background checks and
badging operations. The trend is for
better authentication and biometric
layering to mitigate threats. Can you
take this opportunity to highlight
the current application and futures
uses of Telos ID for transportation
security?
Can you provide more detail about
your award winning Telos ID Designated
Aviation Channeling service
(DAC)? What are the engineering
and performance differentiators for
the aviation industry? Can you also
list Telos ID current applications
and some of your key customers as
well as future offerings?
Dawn Lucini: Airports, airlines, and
related services are required to vet
the security backgrounds of job applicants
and employees who have
access to secure areas. Telos ID is
one of only three organizations authorized
by the TSA to be a designated
aviation channeler (DAC),
meaning it is certified to collect and
send fingerprints and enrollment information
to TSA for security threat
assessments and criminal history
record checks. Telos ID’s DAC service
was the first of these third party
channeling services to be approved
13
for operation by the TSA, and has
continued to win the vast majority
of DAC business since its inception.
Telos ID DAC is a modular, Webbased
offering that lets airports and
air carriers select which services
they need. The solution can be customized
to specific business processes
and provide custom reporting
and information exports. The
Telos ID DAC platform can integrate
with other workforce systems
to meet additional badging, physical
security and personnel administrative
needs. Telos ID tailors the secure
Web portal, allowing security
and badging offices to perform multiple
functions on one platform.
Telos ID DAC is deployed at more
than 50 airports and airlines across
the U.S. – including BWI Thurgood
Marshall and DFW Dallas/Fort
Worth. Here is the full list of current
clients: https://www.telos.com/
identity-management/aviationchanneling/customers/
Vetting the backgrounds of airport
and related personnel is essential to
understanding and mitigating the
risk of bad actors gaining access to
secure areas. But doing this vetting
on a periodic basis may allow something
to slip through the cracks, a
piece of information that just might
help avoid disaster. To that end, the
More on page 42

Cellebrite introduces UFED Touch2 platform
for standalone mobile forensic solutions
PETAH TIKVA, ISRAEL, July 19,
2016 – Cellebrite, a leader in digital
forensic extraction, decoding and
analysis solutions, today unveiled
UFED Touch2, the latest addition
to the company’s industry-leading
UFED Series family of mobile forensic
solutions. With enhanced speed,
usability, and portability, UFED
Touch2 is a comprehensive mobile
forensic solution that allows law enforcement,
military, and intelligence
agencies to extract evidentiary data
in a forensically sound manner. The
Touch2 can extract mobile device
content up to three times faster than
the UFED Touch, enabling investigators
and examiners to accelerate
investigations.
“Many of our customers prefer a
purpose-built device for extracting
and viewing digital evidence regardless
of location,” said Yossi Carmil,
Global Co-CEO, Cellebrite. “The
UFED Touch2 delivers the performance,
reliability and usability required
to allow customers to meet
their mission in the lab or field,
while simplifying the procurement
process by eliminating the need to
buy separate hardware.”
With its intuitive GUI and easyto-use
touch screen, UFED Touch2
enables physical, file system and
logical extractions of data and passwords,
including deleted data, from
the widest range of mobile devices.
UFED Touch2 is available in both
standard and ruggedized editions,
running Logical or Ultimate (logical,
file system and physical extraction)
configurations and comes with
a suite of supporting software applications,
peripherals and accessories.
UFED Touch2 delivers a range
of enhanced capabilities designed
to increase performance, usability,
and portability. Key performance
enhancements designed to reduce
14
extraction time include:
• 5x faster CPU than the UFED
Touch
• DDR3 memory
• Large and fast hard drive
(SSD 128GB)
• USB 3.1 phase 1 axillaries
(Up to 5Mbps)
In addition, the UFED Touch2 includes
a number of features that
simplify usage and increase flexibility:
• High-resolution (1024),
capacitive multi-touch display
with intuitive GUI
• Built-in multi-SIM Reader
• Mini Display Port
• Customized Windows 10
Finally, the Touch2 delivers new capabilities
to allow for improved portability:
• WiFi b\g\n\ac (up to 350 Mbps)
• All-inclusive field-ready
operational kit – smaller, lighter
connector tips, and external
hard drive
• Long-lasting battery
Cellebrite will continue to support
its customers using UFED Touch.
Any future announcement regarding
the end of support for the Touch
platform will be made 18 months in

advance to allow users to effectively
plan for the transition. Customers
that purchased a UFED Touch in
2016 will receive attractive offers to
trade in their device for a Touch2.
Customers that purchased a UFED
Touch after June 15, 2016 will be
able to trade in their device for a
UFED Touch2 at no cost.
About Cellebrite
Every day around the world digital
data is impacting investigations.
Making it intelligent and actionable
is what Cellebrite does best. A pioneer
of mobile data forensics since
1999 with a passion for technology
innovation, Cellebrite is uniquely
positioned to address the rapidly
evolving needs of its diverse customer
base to access, unify and defend
digital evidence of all kinds.
Together, our powerful UFED solutions
deliver the only complete, endto-end
Digital Forensics Platform
on the market. Our track record
remains unchallenged. Our results?
Proven and well documented. With
more than 40,000 UFED licenses
deployed globally in 100 countries,
we allow law enforcement, intelligence
services, border patrols, special
forces, military and the private
sector to achieve their missions
quickly and effectively.
Cellebrite is a wholly-owned subsidiary
of the Sun Corporation, a
listed Japanese company (6736/JQ)
Controp’s airborne EO/IR
Surveillance Camera payload
protects Rio Olympic games
15
HOD HASHARON, ISRAEL, 17
August 2016 – CONTROP Precision
Technologies Ltd. – a company
specializing in the field of electrooptics
(EO) and
infrared (IR)
cameras for defense
and homeland
security solutions
– is proud
to announce the
use of CON-
TROP’s SHAPO
Airborne
EO/IR surveillance
payload for
the protection
of 2016 Summer
Olympics in Rio
de Janeiro, Brazil.
The SHAPO
is installed on
board the ADB-
150 Aerostat that supports the Brazilian
Air Force security mission
and is deployed above the Olympics
area.
The ADB-150 aerostat carrying
CONTROP’s SHAPO EO/IR surveillance
payload was launched August
9th, 2016, by Airship do Brasil,
a company of Bertolini’s Holdings,
in cooperation with the Brazilian
Air Force, in order to provide 24/7
surveillance,
monitoring and
public security
of the Olympics
area.
Prior to the
start of the Rio
Olympics 2016,
the system was
deployed as part
of a surveillance
operation with
Air Force University
(UNIFA)
security systems
at Afonsos Air
Force Base in Rio
de Janeiro for the
protection of the
training center for athletes competing
in the current Olympics events.
The CONTROP SHAPO is a gyrostabilized
3-gimbal camera payload,
which was designed for surveillance
and observation on a variety of airborne
platforms including aerostats,

helicopters, fixed wing aircraft and
unmanned air vehicles. The compact
SHAPO camera payload includes
a high sensitivity color Day
Camera and a Thermal Imaging
Camera with a Continuous Optical
Zoom Lens.
The SHAPO
can also include
an optional
Laser
Range Finder
and/or
Laser Pointer
as well as
an optional
Mission
Management
Moving
Map
System.
M a r i t i m e
and Land versions
of the SHA-
PO, for installation
on patrol boats, vessels
and observation vehicles, are available
as well.
The SHAPO is used worldwide
for a variety of long-range surveillance
and observation applications
including Law Enforcement, Search
& Rescue, Homeland Security and
Defense. CONTROP’s airborne
payloads are installed on a variety
of airships and aerostats worldwide,
in order to provide public security
and safety.
About CONTROP
Precision Technologies Ltd.
CONTROP specializes in the development
and production of Electro-Optical
and Precision Motion
Control Systems.
The company’s
specialists have
over 35 years of
experience in
EO / IR products
for Surveillance,
Defense and
Homeland Security.
CONTROP’s
main product
lines include: Automatic
passive
Intruder Detection
Systems for
airport perimeter
surveillance, coastal
surveillance, port and
harbor security, border
surveillance, the security of sensitive
sites and ground troop security;
High performance Stabilized
Observation Payloads used for day
and night surveillance on board
UAVs, small UAVs and aerostats/
balloons, helicopters, light aircraft,
maritime patrol boats and ground
vehicles; Thermal Imaging Cameras
with high performance continuous
Zoom Lens and state-of-the-art
image enhancement features, and
more. CONTROP’s products are in
16
daily operational use in many of the
most critical surveillance, homeland
security and defense programs
worldwide.
For more information on CONTROP,
please visit the company’s website:
www.controp.com
FREE SUBSCRIPTION
SIGN-UP
Monthly Digital Edition
Airport/Seaport Newsletter
Daily Insider Newsletter
GSN Media Kit
CLICK HERE

GSN’s 2016 Homeland Security Awards Program
Now Accepting Entries at:
www.gsnmagazine.com/hsa2016/welcome
The 2016 Government Security News Awards Program, featuring
many new categories in Cybersecurity, Physical Security, Government
Agency Innovations and Mobile Technologies will open for entries on
August 24 and will close for entries on November 15.
In good news for Winners and Finalists, GSN will be reinstating its
annual Homeland Security Awards Dinner in Washington, DC in
the first week of December, in a venue to be announced. Longtime
participants in the GSN awards programs will recall that previous
GSN Awards Dinners have featured top government, military leaders
and respected television commentators such as 4-Star General
Barry McCaffrey (Ret); Fran Townsend, Homeland Security Advisor to
George W. Bush, James Kallstrom, Assistant Director of the FBI and
Admiral Thad Allen (Ret), Commandant of the U.S. Coast Guard
who came out of retirement twice to serve his county, first in
Hurricane Katrina and later in the BP Oil Spill.
The cost of an entry for vendors is $300 per entry, but there is no
charge for government agencies or departments. All Winners
and Finalists receive Awards Emblems, and all Winners receive a
handsome, gold-trimmed plaque describing their winning entries.
All Winners and Finalists will also be invited to participate in the 2016
Digital Yearbook of Awards Winners.
To see photo gallery of previous Awards Dinners:
https://www.flickr.com/photos/44536438@N06/
For information on the Awards Dinner or Sponsorships,
Contact Adrian Courtenay, Managing Partner, at
acourtenay@gsnmagazine.com, (Mobile) 917-696-5782

ECN acquires MIR3, extends SaaS-based
unified critical communications platform to
enterprise clients
ORMOND BEACH, FL, Aug. 1,
2016 /PRNewswire/ – Emergency
Communications Network (ECN)
has acquired MIR3, a global Software
as a Service (SaaS) provider of
intelligent communications to business
and government clients. The
combination of ECN’s critical communications
platform and MIR3’s
growing enterprise platform brings
together two highly complementary
companies, creating an organization
uniquely qualified to meet the
fast growing demand for software
communications solutions. Financial
terms of the transaction were
not disclosed.
MIR3 provides its clients with
advanced, reliable, and flexible
software solutions that facilitate
multi-channel communication and
collaboration at scale, with use cases
designed to address the growing
complexity of the messaging landscape
and ever increasing challenges
faced by enterprises today. Clients
depend on MIR3’s software for daily
business operations, including crisis
management, IT service management,
corporate communications,
customer relations, supply chain
management, and event management.
MIR3’s clients include leading
organizations in the government, financial
services, technology, healthcare,
energy, and consumer product
segments.
“The acquisition of MIR3 accelerates
ECN’s vision to be a leader
in the unified critical communications
space serving a broad range of
clients and applications.
This transaction creates
an opportunity for ECN
to greatly scale our footprint
in the adjacent enterprise
market, as well
as introduce ECN’s Cloud
Platform as a Service
(CPaaS) offering, which
can enable enterprises to
enrich software applications
with multi-channel and realtime
communication functions. We
are excited to welcome MIR3’s clients
and partners to the ECN family,
and we look forward to continuing
to enhance the MIR3 products,”
said David DiGiacomo, President
and CEO of ECN.
18
David DiGiacomo,
President and CEO
As a result of this transaction,
Amir Moussavian is stepping down
from his positions as CEO and
Chairman in order to pursue new
opportunities. “I am thrilled to have
played a role in the success of MIR3,
and could not be more proud of my
colleagues, as their hard work has
allowed us to maintain the position
as a leader in the industry. With the
additional resources of ECN, MIR3
will continue to provide
the exceptional level of
service its Intelligent Notification
and TelAlert
clients have grown to expect,”
said Mr. Moussavian.
Ann Pickren, President
of MIR3 said, “Joining
forces with ECN establishes
an industry leader
in the unified critical communications
market, paving the way for
continued innovation and development
to address critical business
needs. We are excited for this opportunity
and will continue to provide
our clients with unparalleled
service.”

ECN is a portfolio company of
Veritas Capital, a private equity
firm active in the communications
space. Veritas Capital is committed
to supporting ECN in building a fast
growing, global leader in intelligent
communications and CPaaS markets.
About ECN
ECN is a leading national provider
in the SaaS-based unified critical
communications market. ECN
has pioneered high-speed notification
services capable of reaching
millions of people in minutes
through its CodeRED solution
for government clients and has applied
its mission critical capabilities
to commercial, healthcare and
other end markets. The company’s
cloud-based software communications
platform provides seamless
and easy-to-deploy solutions for
the exchange of critical information
among organizations, their people,
devices and external entities with
use cases designed to save lives, enhance
revenue and reduce costs. In
addition, ECN will empower clients
to embed solutions directly into existing
software applications to offer
a richer suite of communications.
ECN is based in Ormond Beach, FL
with additional offices in Minneapolis,
MN. More information can
be found on the company’s website at
www.ecnetwork.com.
About MIR3
MIR3 provides intelligent notification
and response software for business
operations. It offers Intelligent
Notification, a critical notification
solution for business continuity
and disaster recovery, as well as for
various business operations, such
as information technology alerting,
business continuity, or emergency
notification. In addition, it offers
TelAlert, a two-way notification
system that helps users to simplify
the administration of their network
management, help desk, and financial
processing systems by automatically
launching alerts to personnel.
The company deploys its solution in
SaaS, on-premise, and hybrid formats.
MIR3 is based in San Diego,
CA with additional offices in London,
UK, and Dubai, UAE. More information
can be found on the company’s
website at www.mir3.com.
About Veritas Capital
Veritas Capital is a leading private
equity firm that invests in companies
that provide critical products
and services, primarily technology
or technology-enabled solutions,
to government and commercial
clients worldwide including those
operating in aerospace & defense,
healthcare, technology, national security,
communications, energy and
education. Veritas Capital seeks to
create value by strategically transforming
the companies in which it
invests through organic and inorganic
means. For more information
on Veritas Capital and its current
and past investments, visit www.veritascapital.com.
19
SOURCE Emergency Communications Network
(ECN)

Climate Change – This is what it’s going to look like!
A dispatch from Baton Rouge from George Lane,
GSN Columnist
Thu, 2016-08-18 03:00 AM
My son was evacuated Saturday
night by boat in Lafayette, Louisiana.
The National Weather Service
(NWS) said this was a one in 500
years flood; however, there have
been 8 one in 500 year floods in this
year alone, including one in Louisiana
in March. This is what climate
change will look in Louisiana. Here
is why the disastrous flooding occurred;
1.) “Inland Tropical Depression”:
Flooding in Louisiana was fueled
by a system somewhat similar to an
inland tropical depression. Parts of
Louisiana saw more rain than some
U.S. cities have seen in the last few
years combined. Deep, tropical
moisture in combination with low
pressure near the earth’s surface and
aloft were the main ingredients that
fueled the serious flooding in Louisiana.
Simultaneously the Jet stream
dipped into North Louisiana, providing
a blocking force that kept the
tropical storm over South Louisiana.
On Friday morning, NOAA’s
Weather Prediction Center said:
“The best description of this system
is that of an inland sheared tropical
20
depression.”
The rainfall it
produced was
very similar
to what one
would expect
from a
George Lane
slow-moving tropical depression or
storm since rainfall potential is related
to the forward speed of those
types of systems. A weather forecast
discussion from the National
Weather Service in New Orleans
Friday morning said that the moisture
content in the atmosphere was
higher than what has been observed
there during some tropical cyclones.
It was an all-time record for the area.
When that much moisture is
available in the atmosphere, thunderstorms
can produce excessive
rainfall of several inches in a single
hour, leading to astronomical totals
over time. While no one likely forecast
24+ inches of rain in southeast
Louisiana, this is the type of thing
that can happen on a very localized
scale in situations like this one.
2.) River Records Shattered by 4 to
6+ Feet: At least 8 river gauges have
set new record highs in southeast

Louisiana, exceeding the previous
record by several feet in some cases.
The most extreme of those was
in Magnolia, Louisiana, where the
Amite River crested at 58.56 feet.
This topped the old record at that
location by more than six feet set on
April 23, 1977. The Amite River in
Denham Springs hit 4.7 feet above
its previous record set in 1983 on
Sunday morning. Records there
date back to at least 1921, making
this an impressive feat. These areas
were already saturated with rain,
and could not absorb water, allowing
water to accumulate.
3.) More Rain Fell Than Los Angeles
Has Seen in More Than 3 Years:
Since the start of 2012, Los Angeles
has seen a total of 29.18 inches
of rain. In just a few days, Watson,
Louisiana, picked up two inches
more than that amount with 31.39
inches of rain during the event.
4.) Second 24+ Inch Rain Event
in Louisiana This Year: This is the
second time in a matter of months
that Louisiana has seen more than
24 inches of rain from a single event.
Almost 27 inches of rain fell southsoutheast
of Monroe, Louisiana, on
March 8-11, 2016. The official airport
reporting station in Monroe
picked up 20.66 inches of rain. Record
flooding was observed on five
river gauges in parts of the state,
also topping the previous records by
several feet.
The potential for heavy rain and
flooding will continue the next few
days as the tropical moisture expands
northward from the Gulf
Coast and interacts with a stalled
frontal boundary. Additional locally
heavy rain will impact parts
of the Gulf Coast, including southeast
Texas and Louisiana, though
amounts will not be nearly as heavy
as seen the last few days. FYI.
George Lane, a resident of Baton
Rouge, Louisiana, has 25 years of
experience in the development of
chemical security systems, conducting
research as a NASA Fellow at the
Stennis Space Center and as a NASA
Fellow. Lane was air quality SME for
the University of California at Berkeley
Center for Catastrophe Risk Management
during the BP Oil Spill. He
is currently Chemical Security SME
for the Naval Post Graduate School
Maritime Interdiction in the Center
for Network Innovation and Experimentation.
21
Sign-up for
Free GSN
Digital Editions
and
Email Newsletters
Free subscription to your selection of
GSN digital editions and daily/weekly
email newsletters. Add new selections
or opt-out of any selections at any
time.
Monthly Digital Edition
Airport/Seaport Newsletter
Daily Insider Newsletter
GSN Media Kit
CLICK HERE
The News Leader in
Physical, IT and
Homeland Security
www.gsnmagazine.com

Convy on Net-Centric Security
Securing the Internet of Things
By John Convy, Convy Associates, Washington, DC
Most people in technology know
that the Internet of Things (IoT) is
the vast network of physical objects
and devices, vehicles, and buildings
that have been embedded with
electronics, software sensors, and
network connectivity. This enables
them to collect, exchange, and share
data with each other and with big,
analytic tools. It’s the
digital offspring of
the Internet, and it is
growing up quickly.
Connectivity is a
fundamental part of
our world, making
our stuff “smarter.”
In fact, its growth has been exponential.
According to Markets and
Marketing, Investments made in
the Internet of Things are expected
to increase from $6.89 billion per
year in 2015 to $28 billion in 2020.
Things we use every day – lighting,
cars, healthcare, parking meters,
and even our home appliances have
become smarter and more connected.
At a recent Security Industry Association
Conference, I asked three
prominent thought leaders to address
the emerging questions concerning
the Internet of Things and
its vulnerability to attack.
Chris Cressy, who leads Federal
IoT Solutions at Cisco, emphasized
the expanding value of the IoT. “IoT
is transforming businesses and business
processes, in the public sector.
Integration and interoperability
are fundamental needs that IoT
“Customers should seek out vendors that
are designing network security into their
products, and are based on well-recognized
standards, such as the NIST certification.”
22
can address. Integration increases
operational efficiency. Traditional
approaches to system security are
called air gap – keeping systems isolated
– but that does not work with
IoT. You have to connect systems to
get value. When you connect them,
you do introduce vulnerability, but
you can do continuous real-time
monitoring of those systems.
Cressy also outlined some key
components for IoT system architecture
for security. “At the bottom
layer is basic IT security, essentially
network segmentation with firewalls,
VPNs,
and VLANs.
The second
element is encryption, and lastly, we
implement more advanced capabilities,
such as real-time monitoring
and real-time threat detection. Just
as IoT is a phased implementation,
so is IoT security.”
Jeff Hill, an Enterprise
Solutions
Specialist at Spectra
Logic, provided insight
on another consequence
of so much
connectivity – the
need for secure data
storage. “The IoT is driving massive
video growth because of automation
and monitoring, and that video
requires secured storage. Storage is
becoming a much larger piece of
the overall infrastructure because of
the tools that we are able to leverage
with storage, such as analytics.
We are expecting that by 2019, 3.4
Zeta Bytes of data will be transmitted
over networks in an entire year,
and security is one area where we
are seeing tremendous growth,” he
said.
Hill believes that the best way to

store data is with hybrid clouds,
which offer more flexibility in security
and ownership in a concept he
calls, “genetic diversity.” The other
types of clouds are private clouds in
which you own the hardware and
control the security with a high-security
protocol – and public clouds,
which are extremely efficient for accessing
information, but provide no
benefits of ownership.
“When considering best practices
for IoT data, it’s important to
plan infrastructure with a growth
mindset. Genetic diversity represents
scalable technology and tiered
storage. A great example would be
Facebook, because of the volume of
their data – millions of videos and
photos. They’ve found that it’s important
not just to have it on local
storage that can be accessed quickly,
but they’ve diversified the tiers of
storage and the kinds of storage they
have, to ensure against all types of
threats.”
Hill also explained that enterpriseclass
storage solutions are becoming
increasingly more affordable, which
makes securing data in the government
sector much more cost-effective
than not.
Matt Bretoi, VP of Security Sales
at Flir Systems, weighed in on how
the convergence of cyber security,
network security, and physical security
are creating new challenges.
“Security manufacturers have a dichotomous
responsibility to protect
the network from the security system
and anything that migrates into
it, and to protect the security system
from the network,” he suggested.
So what can manufacturers do to
help customers protect their assets?
“Customers should seek out vendors
that are designing network security
into their products, and are
based on well-recognized standards,
such as the NIST certification. This
is a cyber security framework that
ensures that any sensitive information
such as user data is encrypted,
and that users are able to identify
third-party components. This reduces
known vulnerabilities. All
communications between the edge
devices, such as cameras or access
control card readers, should include
proper encryption, such as Transport
Layered Security. Minimally,
SSL encryption should be used,”
Bretoi said.
Bretoi also explained that combining
this strategy with robust
authentication, such as two-factor
authentication, creates a very powerful
one-two punch. It is notable
that NIST certification covers security
audits for the equipment and
penetration testing. He believes this
is critical, and that collaboration
and communication are essential
when integrating physical and cyber
23
security.
“Implementing these tools should
be part of a system’s coding DNA,
as a manufacturer’s first line of defense.
The second front is deployment.
It’s imperative that integration
technicians – those people actually
installing the system – understand
cybersecurity, and employ best
practices in implementation and
maintenance,” Bretoi added. “End
users should avail themselves of all
training tools provided to them, so
that vulnerabilities can be quickly
identified and mitigated.”
The opinions of these three experts
were eye opening, and validated
that the Internet of Things is fostering
significant changes. It is not
only transforming the way we live
and work, but it is transforming the
way we think about and implement
strong security measures.
John Convy and Convy Associates
provide strategic alliance, A&E consultant,
technology ecosystem, and
lead generation programs to monetize
relationships and accelerate demand
for leading security industry
manufacturers. John is the Founder
and Managing Director of the Open
Standards Security Alliance and the
IP Security Academy, and a speaker
at many global industry events.
Email: John@ConvyAssociates.com

HID Global provides mid-year update on top
trends for secure identity
News Highlights:
• Mobility and a better user experience
continue to be the market’s
top focus areas for the year.
• Adding wearables to the device
ecosystem has elevated awareness
around the use of trusted digital
identities across increasingly connected
environments.
• The need for privacy protection,
improved mobile security, and
trust in all transactions has intensified
with growing interaction
between the identities of things
and people.
AUSTIN, TX, July 14, 2016 – HID
Global®, a worldwide leader in secure
identity solutions, today released a
mid-year update to its top 2016 security
trends, based on customer insights
into key market developments
across enterprise, healthcare, banking
and government markets. In the
first six months of the year, the company
noted continued forward movement
in market adoption of mobile
solutions and interest in the Internet
of Things, as customers place more
value on seamless environments that
require trusted digital identities with
heightened security and privacy protection.
“Customers are increasingly investing
in solutions that give them the
flexibility to incorporate new and
better capabilities that deliver a more
satisfying connected experience for
their users,” said Stefan Widing, HID
Global President and CEO. “As we
move through the middle of the year,
we are experiencing a dramatic increase
in customer demand for mobility,
a better user experience, and
connected environments. We have
also forged new partnerships with
major industry players who have the
same vision to create an extraordinary
user experience and we look forward
to unveiling more about these
partnerships as deployments progress
throughout the year.”
Following are HID Global’s midyear
updates to the trends that the
company forecasted in January:
Trend #1: “Mobilizing” security will
make it more pervasive and personalized:
a new, more secure identity
lifestyle will be built around the convenience
of ever-present mobile devices.
Computer and network logon,
driver licenses and other applications
will more seamlessly join physical
security functions on phones, tablets
24
and laptops. Wearables will be the
next step, and phones will also work
with RFID tags to add security and
trust to the IoT for proof-of-presence
applications.
Mid-year update: Demand for mobile
solutions continues to grow, along with
an increasing focus on security issues.
Multiple studies revealed fears about
mobile security, countered by growing
demand in for the benefits of online
and mobile functionality. The definition
of mobility is also expanding to
encompass the broader idea of “on-thego”
convenience and efficiency, where
smartphones can be used as both a credential
and a general-purpose reader
for new use cases. In a recent deployment
at the CityPoint building in London,
security guards are able use their
smartphones as NFC readers; with a
tap of their phone to RFID tags, guards
can check keys in and out and prove
presence at shift checkpoints.
Trend #2: Security will move to a
much greater focus on the user experience:
This will help close the gap
between planning and compliance,
while ensuring that security adapts
to rather than defines end-user habits
and lifestyles. Old ways of authenti-
More on page 26

cating will be replaced by more satisfying
alternatives.
Mid-year update: Customers continue
to want an easier, more trustworthy
way to use digital identities to access
on-the-go services and applications.
Studies repeatedly highlighted the importance
of the user experience -- the
Frost & Sullivan Asia Pacific study
ranked it among the top two most important
drivers for deploying mobile
access control over the next three years.
Biometrics continued to emerge as an
effective solution for bringing
together security and convenience
together -- this approach
is now used at four of
Brazil’s top five financial institutions
to simplify an estimated
two billion trusted ATM
transactions annually.
Trend #3: Secure, connected
identities will fuel safety and innovation
in how we work, shop and play:
The industry will enter its next new
chapter of connected identities, employing
multi-layered security strategies
that also include biometrics in
order to bind these identities to their
legitimate owners.
Mid-year update: An explosion
of trusted digital identities began ushering
in new innovation opportunities
during the first half of the year. This
trend is being fueled by a growing interest
in wearables and use of sensors
for IoT-based solutions aimed at new
use cases for employee productivity, asset
tracking, energy management and
employee safety. These developments
serve as critical points of unification
for trusted identities that make digital
interactions more personal, contextual
and valuable, and will pave the way
for innovations like building occupant
apps for the smart facility that enhance
the user experience. During 2016, financial
institutions made some of
the most visible advances on the trust
front, adopting a multi-layered approach
to addressing potential mobile
banking challenges at both the front
end (consumer devices) and the back
end (banking systems that recognize
and facilitate legitimate user requests
through mobile devices).
Trend #4: There will be more attention
on privacy in an increasingly connected
and mobile-first world: Identity
will expand beyond people and
their personal identity to the identity
of objects and their authenticity, accentuating
the need to protect personal
information across increasingly
26
interconnected devices, services and
applications.
Mid-year update: Gartner forecasts
that 5.5 million new “things” are getting
connected every day in 2016, increasing
the need for embedded security
and privacy technology across the
payments, transportation, industrial,
consumer and healthcare markets.
In the earlier CityPoint example, this
“Security of Things” goal is achieved
by adding trust to RFID tags and to
their interactions with mobile devices.
Biometrics also continues to
play a pivotal role in privacy
protection for an increasingly
connected world, and solutions
became available in early 2016
that include intelligent encryption-enabled
and tamper-resistant
fingerprint devices to more
effectively address these challenges.
Trend #5: Security policies and best
practices will become as important
as technology advances: The industry
will sharpen its focus on not only
what to deploy, but how – from the
first U.S. mobile driver licenses to
unified credential management systems
that enable organizations to
more holistically address both facility
and information security. Rather
than focus exclusively on preventing
breaches, the industry will also adopt
best practices for controlling what
More on page 43

FROM OUT Of THE BOX
to STATE OF THE ART.
ID CARD PRINTING INNOVATION.
HID Global is leading the industry with the most robust portfolio of secure ID issuance
solutions in the world. Our FARGO® line of printers and encoders provide governments,
financial institutions and businesses of all sizes fast, efficient and reliable solutions that
are as secure as they are affordable.
You’ll call it innovation on demand. We call it, “your security connected.”
YOUR SECURITY. CONNECTED | Visit us at hidglobal.com/printers
© 2016 HID Global Corporation/ASSA ABLOY AB. All rights reserved. HID, HID Global, the HID Blue Brick logo, and the Chain Design are trademarks
or registered trademarks of HID Global or its licensor(s)/supplier(s) in the US and other countries and may not be used without permission.

Forescout describes security challenges
of handling both Republican and Democratic
National Conventions
By Katherine Gronberg,
VP Government Affairs
Inside RNC/DNC Convention
Networks - Cybersecurity Challenges
ForeScout had the honor of providing
information security support
for the Republican National Convention
(RNC) and the Democratic
National Convention (DNC). These
were challenging environments
as the networks were created and
configured in a short time-span,
they were more “IP-enabled” than
any conventions in history and, of
course, they were extremely high
profile. But the lessons learned in
Cleveland and Philadelphia are relevant
to almost any complex network,
including large commercial
and government networks. It helped
us to think about the conventions’
networks in terms of buckets.
Segmentation, Segmentation,
Segmentation…
Probably the biggest challenge in securing
events like the conventions is
that there are SO MANY ad hoc networks
being created all the time. It’s
an unavoidable requirement for the
event to be successful. This happens
in the commercial and government
worlds too, although to a lesser extent.
You have to divide your network
up in to three high-level buckets.
We called them The Wild West,
Mission Control, and The Vault. If
at all possible, these networks need
to be completely isolated from each
other. The key to success in the convention
environments was to focus
on controlling access to the most
sensitive networks, while still ensuring
that the less sensitive networks
remained operational.
The Wild West
These days, people attending events
like the conventions expect access to
reliable free WiFi. Public access to
WiFi enhances their experience and
makes for a more successful and
impactful event. However, “Secure
free WiFi” is an oxymoron. When
people connect to a public WiFi
network, their traffic is often visible
to other people on the network and
they run a greater risk of having their
device infected with malware. There
are steps that can be taken to make
users more secure, such as requiring
WPA2 encryption and attempting
to isolate users from each other, but
28
these efforts
are only partially
effective
at best. In an
environment
like this, user
education is
necessary:
instructing Katherine Gronberg
users as to
which network is the “Official” free
WiFi network, and also advising users
to not conduct sensitive business
on public WiFi without establishing
a VPN tunnel first. Above all else,
the public free WiFi should NEVER
have a connection back to Mission
Control or The Vault. We developed
specific policies that looked for
cross-bucket communication and
remediated any discovered anomalies.
Mission Control
Mission Control is the network for
“official” business. These networks
often include things like staff systems,
kiosks, point-of-sale devices,
VOIP phones, cameras, and many
other mission-critical functions. In
such a dynamic and transient network
environment characterized by

so many wired and wireless
network access points,
unauthorized network access
should be expected
and planned for. Controlling
access as much as possible
by using passwords
and other authentication
protocols is critical. But
the real key is continuous
monitoring of the networks to
look for unwanted behaviors (devices
scanning your network, transmitting
large amounts of data, or
changing their profiles unexpectedly).
Establishing a baseline of
a known good state BEFORE the
event begins is critical to identifying
something that’s not supposed to be
there. For all of the devices found,
policies must be written that stipulate
how a device must be handled
depending on how it behaves. We
started this process early on for the
conventions and continually refined
our baseline throughout the events.
In addition to establishing a baseline,
penetration testing, or “pentesting,”
is highly encouraged. This
will allow you to anticipate the
methods that attackers may use to
gain access to your network. Reconfiguring
the network can mitigate
some attacks. Others can be
caught through Continuous Monitoring
policies, but you first need to
know what to look for. This is where
a skilled pen tester comes in very
handy. ForeScout did not pen test
the conventions ourselves, however,
we worked extensively with trusted
White Hat resources to develop policies
to catch malicious behavior that
can indicate network intrusions.
The Vault
29
The best advice for securing the
most sensitive assets in an organization
is: “Don’t connect it to the Internet!”
If, for some reason, Internet
connectivity is required, give these
systems their own dedicated and
highly monitored internet connection.
Something as important as a
teleprompter should be completely
disconnected. A broadcast system
is another example of something
that deserves an isolated internet
connection. If the only thing that is
ever present on that connection is a
broadcast system, network anomalies
should be easy to detect. Leading
up to the conventions, there was
a lot of speculation around the potential
hacking of teleprompters or
broadcast systems, but in actuality,
they were never connected to the
convention networks. Physical security
is also used to protect
these assets – in this case,
physical security was provided
by Secret Service agents
manning doors backstage. At
a corporate datacenter, physical
security is provided by
things like guards and retinal
scanners. At the end of the
day, for your most critical assets,
disconnect them from the network
and rely on robust physical
security.
Katherine Gronberg is Vice President
for Government Affairs at ForeScout
Technologies. Prior to joining ForeScout,
she was a professor at Georgetown
University, teaching classes in
cybersecurity and business-government
relations. Katherine also founded
and ran her own consulting firm,
Gronberg Consulting, L.L.C., which
represented top U.S. technology firms
on their government relations strategies.
Prior to this, Katherine worked
for Morhard & Associates, L.L.C.
Katherine began her Washington career
in 2000 as a staff member on the
Senate Appropriations Committee
handling annual appropriations for
a range of federal agencies. Katherine
holds a Bachelor’s degree from Yale
University, an MBA from the University
of Virginia’s Darden School of
Business, and is a former Fulbright
Scholar.

Border Security/Immigration
Why the Department of Homeland Security
should also end private prison contracts
By Walter Ewing,
American Immigration Coucil
For two years, women and children
from Honduras, El Salvador,
and Guatemala have been fleeing to
the United States to escape the extreme
violence of gangs which control
large swaths of territory within
their home countries. And for two
years the Obama Administration
has responded to this humanitarian
crisis by locking up the women
and children seeking protection
and then deporting them back to
the countries where their lives may
be in danger. In defiance of its obligations
under international law,
the Administration is
Photo: Neil Conway
trying to deter future Central
American asylum
seekers by coming down
hard on current Central
American asylum seekers.
During that first “surge”
of refugees two years ago, the
Administration knew exactly what
it needed to get a handle on the crisis:
a bigger and better prison for
women and children. And so, according
to the Washington Post, the
Administration handed a $1 billion,
four-year contract to Corrections
Corporation of America (CCA) to
build a “massive detention facility
for women and children seeking
asylum.” In the sweetest of sweetheart
deals, CCA “gets the money
regardless of how many people are
detained at the facility.”
The facility in question
is the South Texas Family
Residential Center in Dilley,
Texas. According to the
Post:
“In 2015, the first full year
in which the South Texas
Family Residential Center
was operating, CCA—which
operates 74 facilities—made
30
14 percent of its revenue
from that one center
while recording record
profit. CCA declined to
specify the costs of operating
the center.”
The Administration’s heavyhanded
approach to the social turmoil
currently engulfing Honduras,
El Salvador, and Guatemala may
mean big money for private contractors,
but it’s not going to be an
effective deterrent to women who
are running for their lives or the
lives of their children. If you or your
child face murder, rape, or forced
induction into a gang if you stay, as
opposed to a slim chance of asylum
if you head to the United States,
then common sense dictates you
head to the United States.
Moreover, even looked at from a
purely financial standpoint, CCA
isn’t running a very cost-effective
prison. The Post writes that:
“When 2,400 people are detained,
the government spends
what amounts to $285 per day, per
person, according to a Post calculation.
When the facility is half-full,
More on page 43

Donald Trump’s shortsighted immigration plans
won’t secure the homeland
By Walter Ewing
As any serious national security expert
will tell you, trying to find a potential
terrorist by treating all immigrants
or Muslims as security risks
is far too vague to be effective. Accurate
intelligence and effective information-sharing
across agencies
is the key to national security—not
profiling. Yet in a bombastic August
15 speech, Republican presidential
nominee Donald Trump offered up
blatantly bigoted and utterly pointless
proposals on national security
including ideas like instituting an
“ideological screening test” and “extreme
vetting” to determine which
would-be immigrants to the United
States (especially Muslims) harbor
“any hostile attitude towards our
country or its principles.”
Leaving aside Trump’s nativist
histrionics, it would be a serious
mistake to embrace policies that
conflate immigration enforcement
and counter-terrorism efforts, implying
that immigration enforcement
is a way to catch terrorists. In
reality, immigration enforcement is
not designed to catch terrorists; it is
meant to catch people who violate
immigration laws. Immigration-enforcement
mechanisms might snare
a terrorist if supplied with specific
intelligence gleaned from counterterrorist
operations, but immigration
enforcement by itself is very
unlikely to stumble upon and actually
identify a terrorist. Without the
right information in the right hands,
even the most efficiently constructed
immigration-enforcement and
border-control mechanisms are not
going to catch a terrorist.
This is precisely why the 9/11
Commission did not recommend
that we adopt ethnic or religious
profiling to help prevent another
terrorist attack in the United States.
Identifying threats actually depends
on the development of “actionable
intelligence” which identifies
a specific threat, and then sharing
that information with immigration
and border-enforcement personnel.
31
Photo: Gage Skidmore
This approach is a little more subtle
than profiling millions of people,
which actually undermines intelligence
gathering by alienating ethnic
and religious communities and the
countries from which they come. A
group of people who feel themselves
to be under government attack is
not likely to share information with
(and report tips to) the same government
which is attacking them.
Nor are the governments of their
home countries as likely to partner
with the United States in counterterrorism
operations.
In evaluating the typically outlandish
ideas thrown around by
Trump, we should never forget that,
shortly after 9/11, the federal government
created the National Security
Entry-Exit Registration System
(NSEERS). Under NSEERS, 83,000
men from Muslim and Arab coun-
More on page 44

Border Security/Immigration
Government sued for withholding records
on immigration raids
By Tory Johnson
The Department of
Homeland Security
(DHS) is continuing
to defend the controversial
“Operation
Border Guardian”
program that
took more than 100 Central American
women and children from their
homes in two days of immigration
raids last January. According to a lawsuit
filed this week by the Southern
Poverty Law Center (SPLC) and the
law firm Alston & Bird, the government
has failed to release records related
to the program under the Freedom
of Information Act (FOIA).
The complaint argues that DHS
and its component agency Immigration
and Customs Enforcement (ICE)
violated public records law by failing
to substantively respond to a January
7 FOIA request seeking information
related to the raids DHS conducted
January 2 and January 3 in North
Carolina, Georgia, and Texas. They
are seeking records and information
about how and why ICE went after
the 121 individuals swept up in the
raids.
The widely-publicized round-ups
raised concerns about constitutional
and due process violations.
146 members
of Congress
and more than 150
organizations condemned
the government’s
actions,
and local governments
voiced their
concerns about the damage to trust
between communities and law enforcement.
Lisa Graybill, SPLC deputy legal
director, said that “there are serious
questions about whether ICE agents’
conduct during these raids violated
the Constitution. We cannot allow
ICE, the nation’s largest law enforcement
agency, to avoid accountability
and violate federal law by withholding
these records.”
The complaint alleges, for example,
that ICE agents conducting the enforcement
operations used deceptive
tactics to enter homes. In some cases,
according to the complaint:
“ICE agents… stat[ed] that they
were police officers looking for a
criminal suspect and show[ed] residents
a photo of an African-American
man. In other instances, ICE
agents allegedly stated that they were
only taking the immigrants into custody
for a short time to examine the
32
women’s electronic ankle shackles.”
Moreover, “when asked for copies
of warrants or orders to enter a home,
ICE agents ignored the requests,
threatened residents, or ordered them
to ‘be quiet,’” according to the complaint.
The families targeted by the raids
actually had conditional permission
to be in the United States. According
to SPLC, they “had complied with orders
of supervision provided by ICE,
which permitted them to remain in
the United States subject to certain
conditions.” Yet the women and children
were detained and most were
subsequently deported. Only 12 families
had their deportations halted,
with the help of attorneys from the
Dilley Pro Bono Project.
ICE refuses to comment on pending
litigation. The agency has 20 days
and a 10-day extension to decide and
notify SPLC whether or not it will
comply with the request.
Hopefully the government will act
within that timeframe to release these
important documents. As the complaint
states, the public has a right to
this information and the government
a responsibility to be accountable for
its actions.
Photo: Julio Cesar

Court orders release of graphic photos of
Arizona Border Patrol detention facilities
WASHINGTON D.C. August 18,
2016 - Today, groups made public
damning evidence, including expert
testimony and video stills illustrating
the deplorable and unconstitutional
conditions detained individuals
are subjected to in Border
Patrol custody in
the agency’s Tucson
Sector. The
court rejected Border
Patrol’s effort
to conceal evidence
of inhumane and
abusive detention
practices from the
public. Accepting
the position of the
Plaintiffs and the
Arizona Republic,
which intervened to
argue for the release
of the materials, the
court recognized that access to court
proceedings and to basic information
about governmental practices
are fundamental First Amendment
rights.
The video stills and expert testimony
released today reveal that Border
Patrol holds individuals—among
them traumatized asylum seekers
and mothers with infants and small
children—for days at a time in cold,
overcrowded, and dirty cells that are
designed to detain people for only
a few hours. Graphic photographs
show detainees packed head-to-foot
Tucson facility: men wrapped in Mylar sheets on concrete floors and benches near
trash & toilets
in filthy, overcrowded rooms. One
image captures a mother changing
an infant’s diaper on a trash-strewn
concrete floor.
Also among the unsealed documents
is testimony from an expert
for the Plaintiffs who wrote that,
in his 35 years of experience work-
33
ing in correctional facilities, he had
“never been in one that treats those
confined in a manner that the CBP
treats detainees.”
Among other conclusions about
the poor treatment of individuals
detained in Border Patrol facilities,
he said that “[t]he
absence of medical
screening upon
arrival is unthinkable,”
and that he
had never before
witnessed an attempt
to “cram” so
many people into so
little space, without
beds and bedding.
He concluded, “[t]
he CBP [is] housing
people in conditions
that are unnecessarily
harsh, dangerous
and contrary to accepted industry
practices and standards.”
“Every step the Government has
taken in response to this lawsuit has
been designed to delay this suit and
hide the conditions present at these
facilities,” said Louise Stoupe of
Morrison & Foerster. “The Govern-

Border Security/Immigration
ment should be using the resources
they are wasting in court to provide
basic human necessities to those in
its custody.”
“Migrants detained in the Tucson
sector have long suffered horrific
conditions,” said Dan Pochoda,
senior counsel for the ACLU of
Arizona. “It is unconscionable that
the federal government continues
to detain people including infants
in this manner. The Border Patrol
continues to operate in violation of
U.S. and international law as well
as its own standards without being
held accountable for these egregious
abuses.”
“These photos show the harm
people suffer in these facilities, from
having to sleep on the floor for days
to needing to huddle together just to
stay warm,” said Travis Silva, attorney
with the Lawyers’ Committee
for Civil Rights of the San Francisco
Bay Area. “These conditions should
not exist in a facility operated by the
United States government.”
“The images unsealed by the court
leave no room to debate the fact
that thousands of immigrants are
subjected to inhumane and unconstitutional
conditions by the Border
Patrol,” said Nora Preciado, staff attorney
with the National Immigration
Law Center. “We urgently need
meaningful and lasting reforms that
put an end to these abuses, hold the
agency accountable, and ensure that
people are treated with dignity.”
“Mothers should not be forced to
change their babies’ diapers on cold
concrete floors or warm them with
flimsy aluminum sheets. Border
Patrol’s treatment of men, women
and children in its custody is simply
inexcusable,” said Mary Kenney,
senior staff attorney for the American
Immigration Council. “We are
seeking immediate relief from the
deplorable detention conditions in
CBP holding facilities for the thousands
of individuals who are or will
be held there while this case progresses.”
In December, attorneys representing
the Plaintiff class of detained
immigrants sought a preliminary
injunction to stop Border Patrol’s
unconstitutional detention practices
while the case is being litigated. The
injunction is based on compelling
evidence of inhumane conditions
in Tucson facilities—much of which
was disclosed after the Court sanctioned
Border Patrol for destroying
video recordings from these facilities
and failing to turn over other
relevant documentation.
Jane Doe, et al. v. Johnson, et al.
was filed in the U.S. District Court
for the District of Arizona. Attorneys
on the case include Harold J.
34
McElhinny, Colette Reiner Mayer,
Louise C. Stoupe, Kevin M. Coles,
Pieter S. de Ganon, and Elizabeth
Balassone of Morrison & Foerster
LLP; Nora Preciado, Linton Joaquin,
and Karen C. Tumlin of the
National Immigration Law Center;
Mary Kenney, and Melissa Crow of
the American Immigration Council;
Travis Silva of the Lawyers’
Committee for Civil Rights of the
San Francisco Bay Area; and Kathy
Brody, Brenda Muñoz Furnish, and
Dan Pochoda of ACLU of Arizona.
For additional links see:
• Challenging Unconstitutions
Conditions in CBP Short Term
Detention Facilities (Litigation
Page)
• Photo Exhibits of CBP Short-
Term Detention Conditions
• Declaration by Joe Goldenson,
M.D., Medical Conditions Expert
• Declaration by Eldon Vail,
Prison Conditions Expert
• Declaration by Robert W. Powitz,
Sanitation Expert
• Detained Beyond the Limit:
Prolonged Confinement by U.S.
Customs and Border Protection
along the Southwest Border (Special
Report, August 2016)

3M’s new ALPR software extends reach, delivers
real-time actionable intelligence
ST. PAUL‚ Minn. – (August 4‚ 2016)
– In order to create and maintain
safe communities, law enforcement
agencies are increasingly relying on
technology. A new tool for officers
is now available; 3M is proud to introduce
3M Plate Alert Analytical
ALPR Software, a next-generation
ALPR software which uses data fusion
analytics and proactive alerts to
provide more answers and the confidence
to act.
Designed to be fast, powerful and
intuitive, 3M Plate Alert Software
allows officers to take action, faster.
Collaborating with Human Factors
Scientists to ensure the software
can be learned quickly and used
efficiently, Plate Alert Software features
the latest user-centered design
methods to optimize interfaces and
usability. This makes it easier to set
up, search, get alerts and find leads.
3M also partnered with law enforcement
agencies to offer the most
in-demand features. The result is an
ALPR software that is powerful and
easy to use, so officers spend less
time clicking and more time following
up on leads.
Going beyond typical ALPR
software, which notifies users
when a plate read matches a watch
list, 3M’s Plate Alert Software features
pattern management alerts.
Designed to proactively provide
relevant information and actionable
insights in near real-time, pattern
alerts ensure almost all of the work
is done before an officer even looks
at the data. Notifications are sent
when the system detects activity
matching a pre-defined pattern that
may suggest illicit activity.
“Plate Alert Software uncovers
relevant connections and provides
a clear view of how seemingly unrelated
people, places, things and
events are connected, and how they
impact each other,” said Seth Stores,
global business manager at 3M. “By
providing a more complete, informative
and accurate picture, officers
35
can spot patterns faster and take
action to keep their communities
safe.”
3M Plate Alert Analytical ALPR
Software is the first ALPR software
powered by data fusion analytics.
Plate Alert Software can compile
ALPR data with data from various
sources, such as 911 calls, pawn
data, police reports, motor vehicle
data and more. It can then almost
instantly find connections between
data points to deliver solid, meaningful
leads. By linking and simultaneously
evaluating numerous common
characteristics across multiple
data sources, Plate Alert Software
can uncover unexpected relationships
and associations. This means
law enforcements agencies can get
new answers and leads from their
data. Using sophisticated secondorder
analysis, data fusion analytics
deliver more actionable intelligence
than conventional ALPR software,
which rely on first-order analysis.
Plate Alert Software also has increased
data privacy measures.
Mandatory controls ensure data is
only accessed for legitimate purposes
by customer chosen individu-
More on page 44

DevMynd obtains strategic investment from
Motorola Solutions
CHICAGO, IL, Aug. 18, 2016 –
DevMynd, a leading-edge digital
innovation consulting firm, announced
today that it received
Series A funding from Motorola
Solutions Venture Capital.
JC Grubbs, CEO, DevMynd,
said the investment opens new
collaborative opportunities that
include the wave of innovation occurring
in public safety and commercial
communications.
“We couldn’t be happier to be working
with a partner that has such a rich
tradition of solving problems that
have a meaningful impact on people
in critical situations,” Grubbs said.
“Those are the types of challenges
that we like to work on at DevMynd
– things that really give us purpose.
“Our experience in human-centered
user research, user experience
and service design will help Motorola
Solutions and its customers develop
products and apps that solve nextgeneration
challenges,” he added.
“And, we’re excited about opportunities
to apply software engineering
expertise to mobile, web and device
needs that will result in robust, enterprise-grade
solutions.”
Paul Steinberg, chief technology officer,
Motorola Solutions, said, “Both
of our organizations look forward to
working together on several fronts.
DevMynd is an excellent example of
our support of and collaboration with
the entrepreneurial community in
Chicago.
“The adoption of broadband technology
is driving innovation in public
safety and commercial communications,”
he added. “We know that
tailored software and services will
be required to deliver solutions and
capabilities to our customers. We’re
pursuing technological advances
such as interoperable mobile applications
for mission-critical communications
and collaboration, enhanced
situational awareness, real-time rich
messaging, data analytics, and artificial
intelligence. All of these are on
the immediate horizon and we are
looking for DevMynd to help us get
these capabilities to our customers.”
The strategic investment will allow
DevMynd to expand its team,
add new capabilities and enter new
markets. It also will support access
to strong strategy, design and custom
software development services for
Motorola Solutions and its customers.
36
About DevMynd
DevMynd is an innovation firm in
Chicago and San Francisco with
practice areas in digital strategy,
human-centered design, UI/UX,
and custom mobile and web application
development. The firm’s
mission is to help its clients use
technology to solve meaningful
problems that have a profound
impact on life, society and business.
They serve clients ranging from startups
to Fortune 100 firms that are investing
in design, digital transformation
and innovation. Learn more at
https://www.devmynd.com.
About Motorola Solutions
Motorola Solutions (NYSE: MSI) creates
innovative, mission-critical communication
solutions and services
that help public safety and commercial
customers build safer cities and
thriving communities. For ongoing
news, http://www.motorolasolutions.
com/newsroom or subscribe to a news
feed.

Albuquerque police fight violence with
intelligence-led policing
The state of New Mexico has long
held the dubious honor of high placement
on the FBI National Crime Data
Report. In 2014, the state was ranked
the #2 most dangerous state in the
Union. The city of Albuquerque has
suffered a particularly high rate of
violent crimes, with the number of
murders in the city almost doubling
between 2009-2013.
Among the problems contributing
to the high crime rate in Albuquerque
is a proliferation of gangs. The
Stop Albuquerque Gangs Task Force
maintains an online list of known
violent groups in the city. At the time
of this writing, more than 100 gangs
were listed on the website. The Albuquerque
Police Department (APD)
is not one of exceptional size, and
has historically struggled to provide
enough officers to effectively combat
the problem.
The APD is not the first and will not
be the last police department to face
this dilemma. Criminals have become
more numerous, craftier, and are
quick to take advantage of new technologies.
Reactive police action, the
traditional model of law enforcement
in which police respond to crimes as
they happen, has been steadily losing
ground in the war against crime.
Instead, more and more police departments,
the APD included, are
turning to a new paradigm known as
intelligence-led policing. The core of
this law enforcement model is “Work
smarter, not harder.” In an intelligence-led
police department, officers
collect and analyze data using a variety
of technologies and techniques.
The data is used to decide where police
resources should be committed to
have the greatest effect. Intelligence
officers are tasked with identifying
repeat offenders and high risk areas,
so that a department’s limited human
resources can be utilized most efficiently.
Intelligence-led
policing is a revelation
within the law
enforcement community.
In a study
conducted by the
non-profit Police
Executive Research
Forum (PERF), 54%
of responding agencies
reported that
37
they planned to increase the use of
the practice within the near future.
According to Wikipedia, intelligenceled
policing has also found widespread
adoption in Canada, Mexico,
the UK, and New Zealand.
A subset of intelligence-led policing
is the burgeoning field of predictive
policing. Intelligence officers within a
department use collected data to construct
heat maps and other models in
an effort to predict where crimes are
likely to occur, days or even weeks before
they do.
The heat map incorporates a vast
amount of data about criminal activity
over an area, allowing officers to
visually identify the locations where
crimes most densely concentrated.
This technique allows “boots on the
ground” to be sent where they can
have the greatest positive effect, without
wasting time patrolling quiet,
low-risk areas. By patrolling the most
crime-dense areas of Albuquerque,
the APD is able to benefit the entire
city by targeting the root causes of
criminal activity.
In Albuquerque, predictive policing
requires the high volume collection of
data about gang members and other
likely criminal elements. The APD
has successfully leveraged technology
to accomplish this task in several
ways.
In 2013, the APD opened the Re-

al-Time Crime Center (RTCC). The
RTCC is a locus of crime prevention
technology, staffed with trained operators
who monitor a network of static
cameras around the city that today
exceeds 1,000 units. RTCC personnel
also monitor pawn shops for stolen
goods and distribute a daily newscast
to APD officers. They are largely responsible
for the creation of the heat
maps APD higher-ups use to intelligently
assign police. The RTCC has
proven effective, and is the recipient
of an award from the International
Association of Law Enforcement
Planners.
In its efforts to further develop the
effectiveness of the RTCC and the
APD as a whole, in 2014 the City of Albuquerque
decided to invest in more
advanced technology for its network
of surveillance cameras. The selection
criteria for the cameras prioritized
flexibility and return on investment,
meaning the cameras would have to
cover more ground than the comparatively
basic static-mounted cameras
that comprised the original network.
The new cameras would also necessarily
be compatible with the existing
systems at the RTCC, with a minimum
of equipment retooling, software
redevelopment, and operator
retraining. After evaluating and testing
camera solutions from a number
of manufacturers across the United
States, the APD settled on the Mobile
Surveillance Unit (MSU) from
ECAMSECURE.
The MSU is essentially a freestanding
camera tower. Each unit is portable
enough to be towed by police
vehicles, and can power and support
a number of cameras with varying
configurations. ECAMSECURE custom-designed
and constructed several
MSUs that incorporated a variety
of pan / tilt / zoom (PTZ) cameras
and fixed-angle HD cameras with a
speaker feature to alert crowds to disperse.
The portable nature of the MSUs
has made them a perfect fit for Albuquerque’s
push towards intelligenceled
policing. The APD can now assign
MSUs to heavy crime areas just as it
does human officers. The imposing
structures, bristling with cameras,
have proven an effective deterrent for
crime.
By moving the MSUs from location
to location, the APD keep criminals
guessing as to whether or not they
are under surveillance. The cameras
have proven a boon for law-abiding
citizens. News coverage reports that
residents often feel safer and more
protected with the cameras present.
After moving an MSU out of a neighborhood,
the APD typically fields requests
and petitions for the cameras
to return.
Since the MSUs are a custombuilt
solution tailored to each client,
ECAMSECURE was able to ensure
that they would be seamlessly compatible
with the existing equipment
and software at the RTCC. By sourcing
compatible hardware and modifying
software where needed, the
MSU deployed in Albuquerque can
be accessed by RTCC operators using
largely the same interface and software
they have already used for years.
38
ECAMSECURE technicians accompanied
the initial deployment of
MSUs to Albuquerque to train RTCC
operators in their use, and support
personnel have remained on-call to
the APD 24/7. The APD leadership
has praised ECAMSECURE for its
dedication to service and support,
especially the fast response time and
willingness to resolve any issue, problem,
or concern.
The Mobile Surveillance Units have
proven to be an excellent fit for the
APD, and an order for additional
units is already underway. ECAMSE-
CURE is making several design upgrades
and improvements for the next
shipment of MSUs. The new units will
include license plate capture, as well
as other refinements. The existing run
already deployed in Albuquerque will
also be upgraded to match the new
units.
The crime rate in Albuquerque is
today still high, but dropping through
the efforts of the APD, the RTCC, and
ECAMSECURE. Using the MSUs, the
RTCC is able to alert APD officers of
crimes in progress, as well as in suspicious
activity or congregations that
may erupt into violence. Using the
two-way audio features, RTCC operators
can even resolve some situations
on their own, by broadcasting to
would-be criminals that the police are
on their way.
The partnership is expected to continue,
helping the APD leverage the
latest technologies to safeguard the
law-abiding residents of the city.

Access Control/Biometric ID
Peter Smallridge, 3M Traffic Safety and Security Manager,
discusses E.U. border security management, trends, new
3M products and similarity to U.S. practices
By Adrian Courtenay
In a wide-ranging discussion that
covered successful border security
initiatives, new directions and
needs for improvement in border
security management in the European
Union, including comparisons
with U.S. practices, Peter Smallridge
outlined the pros and cons of
passport readers, biometrics, facial
recognition, passwords with
chips on them, automated border
control, kiosks, mobile transport
and the treatment of refugees.
By necessity, the discussion also
focused on the many ways to enter
a country, from airports and
seaports to automobiles, trains and
private planes – not to mention the
question of what happens to people
after they have arrived in a country.
“Many companies around the
world are talking about exit,” said
Smallridge. “They come in, we don’t
know if they went home. Is he or she
still here? We have no information
whatsoever. That’s the big concern.
In an ideal world, you want reporting
of people coming in through any
mobile transport – and recording of
the exit. This is a megatrend.”
“Across the world, border agencies
are trying to get smarter,” he
pointed out. “We focus on airports
and mainly on people arriving
through the airport. But in the E.U.
we’ve found in some cities that only
50% of the people enter via airports.
Many cross land borders to go to
work each day. Some come through
seaports, some through civil airports.
And you can leave by different
routes or border agencies.”
In response to security incidents
or terrorism, Smallridge pointed
out, a second reality in border security,
that governments can be
pressed for cash. Governments
think this is where they can save
some money. And unfortunately
39
this happens at the same time they
want to replicate their installations
into different locations.
The solution that is taking place
is that there is a big move toward
Automated Border Control (ABC).
It could be kiosks, gates or barriers
– sometimes called – gates.
Sometimes these are for everybody,
sometimes they’re for people who
register, as in the Global Entry
System. This is about processing
people in a self-service way. “It’s
the least we can do with resident
nationals or people from friendly
countries who probably are not a
risk – if you can get them to use
the machines. Depending on the
situation, some numbers of officers
may have to be deployed in some
venues.”
But deploying officers can also
create a major challenge – a technical
one, because an officer from
one post who then goes to another
post to operate a different type of
machinery may not know how to
do it. This can be problematic, for
instance, if the officer has to handle
a finger print reader that he is not

Access Control/Biometric ID
familiar with and neither is the traveler,
it can call delays.
There are lots of technical issues
like these that 3M is considering,
said Smallridge. “For example, if
there’s a chip on the passport and it
takes several seconds to open, and
the user is used to seeing chips in
a supermarket, he or she may need
help in order to be processed. Our
objective here is to make the systems
easier to use, more intuitive, so
that we can use them without having
to think.”
Automated Border Control is also
being considered in the E.U. for sea
borders. People arriving by ship
may be coming off a car and may
come to a barrier system where they
are processed by password and fingerprint.
Or they may have to get
out of the vehicle, go into a building,
or you drive next to a barrier of
some sort.
In the case of trains, an officer
may have to walk through a with
some kind of mobile device processing
people as they go through. But
often, because the train is going to
arrive soon at the next station, and
people are going to get off, there are
more complications.
Alongside all of that, there is the
subject of biometrics. Typically, finger
prints have been the most accurate
and reliable system. They can
also benefit law enforcement agencies,
when they catch criminals or
when they find evidence left behind,
since the law enforcement officers
do not typically have Iris processing.
Finger prints have been the
main biometric used for authentication.
But that is changing, says
Smallridge. “In order to process
these people properly and to avoid
queues, agencies are looking to use
more than one type if biometric,
because it takes too long to find
the fingerprint. Thus we’re going
to have to more than one biometric,
because it takes too long to find
the fingerprint. Thus many agencies
around the world are now talking
about ‘face and finger.’ If I select two
of them on the way in, I can use anyone
of them on the way out. It might
be easier to face the people without
stopping them.”
The need for two means of processing
has also created interest in
iris usage, when neither face or finger
are a good idea, such as where
40
it’s difficult to lean across a vehicle
where someone is sitting next to the
window, to finger print somebody,
or when it is too dark to see their
faces It also may be too dark to see
their faces.
Summing up on the logistical
challenges, if you tighten up on the
system, how do you avoid lines? If
you’re going to the U.S., you don’t
want to wait two hours to be processed.
That’s why there’s so much
effort being put into effect to make
things smarter, and that’s why prebooking
is getting more uses. When
you book American Airlines, for example,
they ask you for your passport
during the booking process,
and the information is supplied to
the country of arrival, which will
either use it to interview you when
you arrive or possibly tell the airport
not to board you.
“We’re going to see more of these
types of systems,” says Smallridge.
“When I come to the United States,
I get an ESTA, which is a kind of
visa. The U.K. is a visa waiver country,
where you buy a twelve month
visa that costs something like $15.
The ESTA determines validity of the
entry to the country. In some countries,
you have to go to the airport,
where you provide ten fingerprints
and probably will be asked a few
More on page 44

LBsecure promotes best-of-class granular
and layered security solutions for its clients
within SAP
LBsecure is partnered with realtime,
a unique “Control and Monitoring”
security software for SAP,
called bioLock. Designed by former
SAP engineers, bioLock allows you
to secure your SAP enterprise from
the inside-out, with granular and
layered solutions, including unique
identification and natively embedded
SAP security software.
With successful installations
around the world, bioLock’s software
and biometric re-authentication
protocols can easily be installed
through a port natively embedded
within your SAP ERP. Also providing
flexibility and integration with
many different biometric partners.
bioLock can distinguish between
legitimate users and imposters in
real time and instantly alert risk
management and senior administrators
by secure email notification.
bioLock is easy to install and does
not require any outside monitoring
or the expense of MSSP support.
It also eliminates any need for 3rd
party security monitors to have access
to your privileged information.
SAP normally relies
on simple single
sign-on procedures or
“password only” protection
to gain access.
Unfortunately stolen or shared administrative
passwords allow intruders
to roam freely once inside
the system. Insider fraud can be a
major risk factor for this very reason.
Now SAP administrators can easily
make dramatic security improvements
by implementing rigorous reauthentication
protection at layered
and granular levels. Customizing
user-specific biometric checkpoints
dictated by the organization and the
governing body and not an outside
security provider.
Enhancing your present SAP
security solution with bioLock’s
unique identity management solution.
Providing positive re-authentication
and indisputable realtime
audit trails. In addition to providing
the best defense against fraud, bioLock
ensures compliance with various
government regulations, which
41
rely on log-in activities within SAP,
i.e. ITAR, HIPAA, Sarbanes Oxley,
GRC, etc.
We invite you to explore and evaluate
how bioLock can further protect
your SAP initiative from unwanted
intrusion, as it has done for
many businesses around the world
from finance, supply chain, pharmaceutical
and many many more.
Case Studies are available for Supply
Chain, Banking Fraud, Procure
to Pay, Payroll Fraud, Retail/POS,
Employee Self-service, Workflow
Approvals, Perimeter Security,
HIPAA Compliance, Public Sector
Fraud.

Cypherpath, Quali partnership
provides portable containerized
infrastructures
Continued from page 10
their underlying IT infrastructure
“Public and private sector organizations
need agility and security
to compete, which is forcing them
to look for solutions that bypass all
of the roadblocks caused by legacy
infrastructure,” said Danial Faizullabhoy,
president and CEO, Cypherpath.
“Through this partnership, our
joint customers have access to innovative
on-demand solutions that
provide IT infrastructures to support
testing, training, and experimenting
in sandboxes and cyber ranges at
scale.”
“The modern enterprise needs to
be extremely vigilant and responsive
to sophisticated security threats. Cyber
ranges are a great tool to simulate
real-world attack scenarios in a controlled
environment and strengthen
the security posture”, said Lior
Koriat, CEO, Quali. “Quali cloud
sandboxes help organizations build
cyber ranges and other portable ondemand
environments in a cost effective
manner to model, orchestrate
and test advanced threats. We’re excited
to partner with Cypherpath to
offer this solution to our defense and
enterprise customers.”
About Quali
Quali is the leading provider of
Cloud Sandboxes for automating
the DevOps lifecycle. Quali gives innovators
control over their world by
enabling them to create personalized
replicas of the most complex production
environments. The Cloud providers,
Telcos, Technology vendors
and Enterprises including the Global
100 depend on Quali to help them
deliver their products and services to
market faster and with better quality.
Learn more at: http://www.quali.com
About Cypherpath
Enterprises rely on Cypherpath to
create, deliver and manage containerized
on-demand infrastructure at
the lowest possible cost while providing
container security and simplified
control of the entire stack.
Cypherpath’s industry-leading enterprise
software platform encapsulates
virtualized compute, network,
and storage resources into software
containers running on commodity
hardware. Learn more at http://www.
cypherpath.com
About TSI
TSI is a systems integrator and value
added reseller focusing on providing
innovative automation, orchestration,
test, and virtualization solutions
for network centric environments.
TSI has been Quali’s Partner
and Service Provider since 2010 integrating
tools like those from Cypherpath.
For information go to our
website www.tsieda.com or email at
sales@tsieda.com.
42
Telos Corporation: 2016 Winner,
Best Biometric Identification/
Authentication Solution
Continued from page 13
FBI and TSA have engaged Telos
ID on a pilot basis to be part of the
continuous-vetting/always-on FBI
Rap Back Program. As continuous
monitoring and assessment are to
IT security, so continuous vetting
is to the insider threat. To know
in real time that a previously vetted
employee’s criminal record has
changed, for example, offers another
critical tool for securing our
airports.
FREE SUBSCRIPTION
SIGN-UP
Monthly Digital Edition
Airport/Seaport Newsletter
Daily Insider Newsletter
GSN Media Kit
CLICK HERE

HID Global provides mid-year
update on top trends
Continued from page 26
happens afterwards, so stolen identities
are useless to thieves.
Mid-year update: Through mid-year,
the world moved closer to deploying
driver licenses on mobile phones, while
two key policy issues emerged through
mid-year: protecting privacy by using
a smartphone’s Bluetooth connection
so users needn’t physically relinquish
their smartphones to officers and officials,
and ensuring citizens can control
what data is made available to others.
Beyond citizen ID, general security
best practices and policies remain important
for virtually any organization,
and demand grew for HID Global services
that help customers deploy innovative
solutions to meet compliance,
security and risk management needs,
while enabling new, value-added capabilities.
HID Global’s Seos® credential technology
continues to help drive these
trends, enabling organizations to
confidently incorporate mobile solutions
and empower their users with
new applications and capabilities.
For more HID Global news, visit
our Media Center, read our Industry
Blog, subscribe to our RSS Feed,
watch our videos and follow us on
Facebook, LinkedIn and Twitter. To
read about HID Global’s mobility initiative,
click here.
About HID Global
HID Global is the trusted source for
innovative products, services, solutions,
and know-how related to the
creation, management, and use of
secure identities for millions of customers
around the world. The company’s
served markets include physical
and logical access control, including
strong authentication and credential
management; card printing and personalization;
visitor management systems;
highly secure government and
citizen ID; and identification RFID
technologies used in animal ID and
industry and logistics applications.
The company’s primary brands include
ActivID®, EasyLobby®, FAR-
GO®, IdenTrust®, LaserCard®, Lumidigm®,
Quantum Secure, and HID®.
Headquartered in Austin, Texas, HID
Global has over 2,700 employees
worldwide and operates international
offices that support more than 100
countries. HID Global® is an ASSA
ABLOY Group brand.
For more information, visit http://
www.hidglobal.com.
43
Why the Department of Homeland
Security should also end private
prison contracts
Continued from page 30
as it has been in recent months, the
government would spend $570. On
some days when the facility is nearly
empty, as it was for a period in
January, the government would be
paying multiples more.”
Why would the government give
a handout like this to a private company?
Perhaps it stems from the fact
that CCA “has on its payroll a slew
of former senior government officials,”
who are—presumably—very
well connected. Regardless of how
CCA procured such a bargain, the
real bottom line is that a civilized
nation does not put asylum seekers
behind bars and then try as hard as
possible to deport them back to the
deadly situations they are fleeing.
The Department of Homeland
Security (DHS), which bears the
responsibility for immigration detention,
would be wise to follow
the lead the Department of Justice,
which just announced it is no longer
going to use private prisons.

Donald Trump’s shortsighted
immigration plans won’t secure the
homeland
Continued from page 31
tries stepped forward
and registered with
the federal government,
resulting in
13,000 deportations.
However, no one who registered under
NSEERS was ever charged with
a crime related to terrorism. The
“special registration” requirement
ended in December 2003, while
NSEERS as a whole was scrapped in
April 2011. What Trump is proposing
is NSEERS on a massive scale.
It is important to keep in mind
that “security” is about more than
just keeping out those who would
threaten our national security. It
is also about creating and maintaining
a vibrant economy and dynamic
society that attract people
from around the world. It is about
establishing our global credibility
as a society in which the rule of law
and fundamental human rights are
highly valued and respected. And it
is about not undermining U.S. relationships
with the allies needed to
effectively combat international terrorists.
If we move too far away from
these goals, building a locked-down
nation in which fear runs rampant
and productivity and creativity are
starved, then what exactly are we attempting
to “secure”?
3M’s new ALPR software extends
reach, delivers real-time actionable
intelligence
Continued from page 35
als, and audit reports provide a full
view of system activity to identify
any potential misuse of sensitive or
private data.
“From parking lots and highways
to ports and borders, we are
committed to protecting law enforcement
officials and their communities,”
said Stores. “Plate Alert
Software is the newest innovation to
support those who take the oath to
protect and serve.”
About 3M
At 3M, we apply science in collaborative
ways to improve lives daily.
With $30 billion in sales, our 90,000
employees connect with customers
all around the world. Learn more
about 3M’s creative solutions to the
world’s problems at www.3M.com or
on Twitter @3M or @3MNewsroom.
3M and 3M Science. Applied to Life. are
trademarks of 3M Company. Used under
license in Canada.
44
Peter Smallridge, 3M Traffic Safety
and Security Manager, discusses
E.U. border security
Continued from page 40
questions.
Another major trend is Interoperability
of Systems. In the U.S. there
are different fingerprint systems
which are called “AFIS” systems.
These are fingerprint identify systems.
Some are for border, a second
group is for dealing with criminals,
and the third group is use by the
military. This system is not available
in Europe, since a big objective
in Europe is to separate systems so
that citizens’ private affairs cannot
be misused by politicians.
Smallbridge adds that “The terrorist
incidents in the last few months
have proved the weakness of that
concept”.
He concludes the interview with a
number of observations of the U.S.
differences in practices from those
of the European Union, and lists a
number of objectives and initiatives
that 3M is working with, pointing

out that 3M is one of the big three in
this area – 3M, BEC and Morpho/
Safron. As a company generating
upwards of $30-billion in revenues,
3M definitely has the wherewithal
to research and produce topnotch
solutions and take a long view.
In the U.S., identification systems
are operated by Customs and Border
Protection, and with the purchase
some years ago of Cogent Systems,
the CBP biometric matching
system contains about 200 million
people in its database; the criminal
database is handled by the FBI and
the military databases are handled
by the Department of Defense.
3M is working now on Mission
Critical systems, the AFIS system
and is modernizing capabilities for
multiple biometric matching. 3M
has also been working on facial
recognition, voice recognition, mobile
readers for such applications
as walking through trains or entire
cities, and further document reader
improvement to enable processing
of people who don’t speak English.
“Learning our customers’ problems
is the best way to solve the
problems,” says Smallbridge. “It’s
the kind of things we worry about.
Can we see it? How? Do we need to
acquire? That would be our scope.
We’re a big company with many divisions.
We share information inhouse
with other divisions. Usability
is very important to us.
Sign-up for Free
GSN Digital Editions
and Email Newsletters
Free subscription to your selection of GSN digital editions
and daily/weekly email newsletters. Add new selections or
opt-out of any selections at any time.
GSN Airport, Seaport, Rail, Border Security Weekly
GSN Daily Insider Newsletter (5 Days Weekly)
GSN Monthly Digital Edition
GSN Media Kit
CLICK HERE
The News Leader in Physical, IT and Homeland Security
www.gsnmagazine.com
45

The News Leader in Physical, IT and Homeland Security
CEO/Editorial Director
Adrian Courtenay
917-696-5782
acourtenay@gsnmagazine.com
Editor
Steve Bittenbender
502-552-1450
sbittenbender@gsnmagazine.com
Senior Writer
Karen Ferrick-Roman
412-671-1456
karenferrickroman@gmail.com
Columnist
Shawn Campbell
Campbell on Crypto
shawn.campbell@safenetat.com
Columnist
George Lane
Hazmat Science & Public Policy
georgelane@hotmail.com
Contributing Author
Lloyd McCoy Jr
Immix Group
Contributing Author
Walter Ewing
Contributing Author
Wendy Feliz
Contributing Author
Joshua Breisblatt
Contributing Author
J. Michael Barrett
Contributing Author
Christopher Millar
Gatekeeper Security
Art Director
Gerry O’Hara, OHDesign3
gerry@ohd3.com
203-249-0626
Production Manager
Brenden Hitt
Brenden.hitt@gsnmagazine.com
Direct: 203-216-7798
COMING ATTRACTIONS
September
Tech Focus
School Safety/Mobile
Surveillance Solutions
Market Sector Focus
Maritime/Coastal/
Port Security
October
Tech Focus
International Threats/
Cyber Intelligence
Market Sector Focus
Oil/Gas/Electricity
Grid Security
November
Tech Focus
Perimeter Protection/
Intrusion Detection
Market Sector Focus
Mass Notification/
Disaster Response
46

GSN’s 2016 Homeland Security Awards Program
Now Accepting Entries at:
www.gsnmagazine.com/hsa2016/welcome
The 2016 Government Security News Awards Program, featuring
many new categories in Cybersecurity, Physical Security, Government
Agency Innovations and Mobile Technologies will open for entries on
August 24 and will close for entries on November 15.
In good news for Winners and Finalists, GSN will be reinstating its
annual Homeland Security Awards Dinner in Washington, DC in
the first week of December, in a venue to be announced. Longtime
participants in the GSN awards programs will recall that previous
GSN Awards Dinners have featured top government, military leaders
and respected television commentators such as 4-Star General
Barry McCaffrey (Ret); Fran Townsend, Homeland Security Advisor to
George W. Bush, James Kallstrom, Assistant Director of the FBI and
Admiral Thad Allen (Ret), Commandant of the U.S. Coast Guard
who came out of retirement twice to serve his county, first in
Hurricane Katrina and later in the BP Oil Spill.
The cost of an entry for vendors is $300 per entry, but there is no
charge for government agencies or departments. All Winners
and Finalists receive Awards Emblems, and all Winners receive a
handsome, gold-trimmed plaque describing their winning entries.
All Winners and Finalists will also be invited to participate in the 2016
Digital Yearbook of Awards Winners.
To see photo gallery of previous Awards Dinners:
https://www.flickr.com/photos/44536438@N06/
For information on the Awards Dinner or Sponsorships,
Contact Adrian Courtenay, Managing Partner, at
acourtenay@gsnmagazine.com, (Mobile) 917-696-5782