This is a foundation module that provides essential information relating the the security and safety of an investigation, the security and safety of the OSINT practitioners and their employers so that processing shall be lawful and the investigation product shall be reliable.
Introduces and explains the prevailing privacy legislation that relates to the processing of Personally Identifiable Information and its implications from the perspective of an OSINT practitioner.
Introduces and explains the predominant operational security (OpsSec) that relates to OSINT.
Introduces Synthetic Identities, explains why and how we use them, including any legal considerations and demonstrated how to create, manage and deploy Synthetic Identities.
The practitioners will understand their legal obligations for the safe processing of OSINT Investigations. They will understand and know how to deploy and process an OSINT investigation safely and securely, so that the investigation itself is protected and both the investigator and the authorising organisation, which is usually the employer of the OSINT investigator, is also protected.
PREPARATION FOR COMPLIANT PROCESSING
DATA PROTECTION LEGISLATION
THE RIGHTS OF DATA SUBJECTS
DATA PROTECTION IMPACT ASSESSMENT
POLICIES & GUIDELINES
PRACTITIONER ATTACK SURFACE
OPERATING SYSTEM SECURITY RESOURCES
MANAGEMENT OF PASSWORDS
FOOTPRINTS & FINGERPRINTS
OBFUSCATING THE IP ADDRESS
CREATING A SYNTHETIC IDENTITY
SYNTHETIC IDENTITY GENERATORS
PROFILE IMAGES & EXIF DATA
SYNTHETIC IDENTITY DEPLOYMENT
CREATING ONLINE ACCOUNTS
SYNTHETIC IDENTITIES & MOBILE APPS
AUTHENTICATION TEXT MESSAGES
MANAGING & SHARING SYNTHETIC IDENTITIES
SYNTHETIC IDENTITIES & SECURITY
AVOIDING SYNTHETIC IDENTITY CONFLICTS