BT is backing long-range radio after spending 18 months analysing the various communications options available to meet the needs of the smart metering initiative. Unlike mobile, it can provide truly nationwide coverage and dependable reception indoors. The fact it operates on dedicated licensed spectrum is also important as it is ideal in ensuring the security of supply and protection of consumer data while meeting the needs of the Energy Industry.

The Government will soon publish a prospectus that will provide details about the project and the possible commercial opportunities. The partners will review this document and will then formally launch their proposal in September. Their aim will be to offer a universal, dedicated, secure and resilient nationwide communications network to underpin the Government's plans for smart meters and subsequent smart grid applications.

Olivia Garfield, BT Group Strategy Director, said: "Smart meters will use telecommunications to deliver important environmental benefits and so BT is determined to be at the heart of the project. It is vital that any solution is designed for ubiquitous coverage of homes and is thoroughly secure and resilient. We believe that long range radio is the only technology to offer nationwide coverage and we will release more detail in a series of events in September."

"A communications network designed to meet the unique needs of all of Britain's utilities - electricity, gas and water - must be able to deliver universal connectivity and long-term resilience. And the only way to achieve this is through a dedicated network based on long-range radio. The collaboration of three of Britain's leading communications and security organisations provides further weight to this argument and provides the most effective way of delivering the government's target of rolling out smart meters to all homes in the shortest time possible," added John Cronin, Managing Director for Arqiva Wireless Access.

"The smart meter initiative will represent a significant addition to our critical national infrastructure and, as such, security and privacy must be key considerations in its design. We are working with the group to develop safeguards to ensure protection of the data, processes, communications networks and operational sites from risk and to demonstrate how the new infrastructure can be secured effectively,"said Martin Sutherland, Managing Director, Detica.

This partnership between three of the UK's leading communications network and IT services providers brings together an leading combination of design and operational experience in the delivery of national, large-scale, communications and IT infrastructure projects to meet the smart meter challenge.

Arqiva's smart grid proof-of-concept network, which is expected to go live later in July, utilises its long-range radio communications solution for smart meters and smart grids and will cover 80 square kilometres around Reading.  The solution is built around Arqiva's nationwide portfolio of towers and masts, its dedicated licensed spectrum and the FlexNetTM technology provided by its technology partner, smart meter and grid specialist, Sensus. 

Ian Watts, head of energy and utilities at Detica, said: "Smart meters and smart grids bring a tremendous potential to transform the energy industry in terms of significant cost savings and reductions in emissions. However, they also bring security risks that need to be proactively managed, and so it's critical to incorporate comprehensive security solutions from the outset to make these systems safe from attack. Unless adequate safeguards are put in place now, the smart grid could be hacked into and confidential data could be lost."

"Securing smart meters and the smart grid will require a combination of strong governance and standards, joined up processes, and of course cutting-edge technology.

"Arqiva's "secure by design' solution has been created with the specific needs of the UK's deregulated energy industry in mind so we are delighted to be working with them as part of their proof-of-concept network and helping to develop the security technology that will secure the grid for years to come."

David Green, programme director for smart metering at Arqiva, added: "Smart meters, and the longer term objective of creating a smart grid, promises real benefits to consumers and the energy sector alike.  However, if these benefits are to be realised we firmly believe that a communications solution based on long-range radio offers the most effective solution to meet the government target of providing smart meters to every home in the UK by 2020.  This should be dedicated to the specific needs of the UK's utilities " with the built-in benefits of universal connectivity, security and resilience."

About Arqiva
Arqiva operates at the heart of the broadcast and mobile communications industry and is at the forefront of network solutions and services in an increasingly digital world. The company provides much of the infrastructure behind television, radio and wireless communications in the UK and has a significant presence in Ireland, mainland Europe and the USA. There are three business units:

Wireless Access provides cellular, wireless broadband, voice and data solutions for the mobile communications, public safety, local government, and commercial markets. Arqiva is the largest independent provider of radio sites in the UK and Ireland. With its own spectrum, the company can provide complete mobile communications networks including backhaul links.

Terrestrial Broadcast provides transmission for all UK terrestrial TV broadcasters, including the new networks being built for the Digital Switch Over. Transmission is also provided for BBC Radio and most commercial radio stations, both analogue and DAB. The company owns and operates two of the six UK digital terrestrial TV multiplexes, enabling major media companies to bring their TV and radio services to Freeview.

Satellite & Media provides global communication platforms to enterprise, government and broadcast customers around the world. It owns and operates teleports at key locations including Los Angeles, Washington, London and Paris, as well as comprehensive satellite capacity, an international terrestrial fibre network and extensive media facilities. These enable Arqiva to provide world leading organisations with a comprehensive range of services to deliver their data, broadcasts and media across the globe.

Arqiva has its headquarters near Winchester and other major UK offices in London, Warwick, Buckinghamshire and Yorkshire.  Customers include major broadcasters such as the BBC, ITV, BSkyB and the independent radio groups, major telco providers including the UK's five mobile network operators, and the emergency services.
www.arqiva.com

About Detica
Detica specialises in collecting, managing and exploiting information to reveal actionable intelligence. We use this capability to help government and commercial clients reveal intelligence, maintain security and strengthen resilience in today's complex operating environment. We also use our skills to assist clients with other information-intensive problems such as achieving regulatory compliance and understanding customer behaviour.

Detica is a BAE Systems company.

Detica and Detica Limited product names are registered trademarks or trademarks of Detica Limited in the UK and in other countries.  Other brand and product names are registered trademarks or trademarks of their respective companies.  Detica Limited is registered in England under number 1337451 and has its registered office at Surrey Research Park, Guildford, England, GU2 7YP.

For further information, please visit www.detica.com

About Sensus 
Arqiva's smart meter and grid technology partner Sensus creates innovative technology solutions that enable the conservation of water and energy. Sensus has led the discovery, development, and implementation of technologies for the energy and water industries for more than a century. Water, gas, and electric utility customers around the world benefit from the company's open, flexible products and solutions to help them optimize their resources " today and tomorrow.

With operations and service facilities on five continents and over 225 customers for FlexNetTM, its Smart Meter and grid solution, Sensus is a global leader in utility infrastructure systems and resource conservation. 

Sensus is a privately held company employing almost 4,000 people worldwide.  Nearly 1,000 of these are in Europe with offices or manufacturing facilities in Germany, France, UK, Italy, Spain, Poland, Ukraine, Czech Republic and Slovakia.  Sensus headquarters are in Raleigh, North Carolina, USA.

For more information, visit www.sensus.com.

Example: FlexNet™ and SmartPoint™ are trademarks of Sensus

Mr. Sutherland said: "With all minds focused on reducing the fiscal deficit, we need to have a new debate on how we can maintain a proportionate approach to security at lower cost. There is a firm need for Government"in areas as diverse as immigration and border control, revenue collection and taxation, counter terrorism and countering other types of organised crime"to change its approach to security.

"However, at a time when the need to change has never been stronger, we have run out of money. The state is caught between a rock and a hard place. On the one hand, cuts to security, policing, immigration, vetting and barring or other places could allow criminals to get away with doing harm to our society. On the other hand, if organisations continue to use existing labour-intensive methods to attempt to strengthen their approach to security in all of these areas, they will be unable to deliver the magnitude of savings needed by the Treasury."

Mr. Sutherland continued: "Those entrusted with our security have access to vast amounts of data. Rather than collecting more, and spending more time and money having to analyse it, we have an opportunity to make a clean break"to use what we already have in a more intelligent way. We need to adopt new "lean' solutions and services that are more appropriate to the needs of the twenty-first century. This means rationalising and joining up data already held within government, to transform the way we exploit information and communications technology to enable dramatic improvements in the way security is delivered both in and across organisations"at lower cost and in a proportionate manner. By taking this approach, rather than a narrow focus on cuts, we can turn a crisis into an opportunity."

Mr Sutherland concluded by outlining a set of lean principles for smarter security in tighter times. These included an earlier focus on high-value targets to work out the root causes of their crimes, automation of labour-intensive manual processes and rationalisation of data, tools and processes across organisations.

The whitepaper 'Securing our future: a lean and proportionate approach' is based on Martin Sutherland's speech and is available here .

Dave has over 25 years' experience in the telecommunications and media industry. He joins from Accenture where, as a senior partner, he led the systems integration business for the communications, media and high technology sectors.  

Martin Sutherland, Managing Director of Detica said:

"I am delighted to announce that Dave Brown will lead the 500-strong Systems Integration and Managed Services (SI&MS) team.  Dave brings a wealth of experience in leading large scale and high value client engagements. This new role will be key to achieving our strategic vision and goal of becoming our clients' most trusted solutions integrator".

Dave Brown, Head of Systems Integration and Managed Services at Detica added:

"Detica's SI&MS team has been making fantastic progress in this direction and my main focus will be building on that growth in depth and breadth both nationally and internationally. With the acquisition of Detica by BAE Systems in 2008, Detica is now in prime position to offer our clients differentiated solutions through our innovation, applied IP and delivery excellence."

A number of other senior appointments have also been made recently to strengthen the SI&MS businesses.  These include Chris Drew, who joined in November from Fujitsu as Delivery Director responsible for overseeing the SI delivery portfolio,  Piers Allison, Head of Managed Services and Matthew Samme, SI&MS Business Development Director.

Martin Sutherland, Managing Director, Detica said: "We are very proud that Andy has been awarded this prestigious appointment which recognises his contribution to cryptologic research. Cryptology is a complex science that, amongst many applications, underpins cyber security.  Andy's work has helped Detica become a highly-respected leader in this field".

The IACR praised Andy "for his exemplary service as board member and president and for his contributions to the preservation of cryptology's heritage". Previously elected Fellows of the IACR include Whitfield Diffie, Martin Hellman, Ron Rivest, and Adi Shamir, some of the main pioneers of public key cryptography.

In 2003, Andy received notoriety when he helped crack a 400-year old code used by Diana Dors to keep secret the whereabouts of her hidden fortune; and featured in a Channel 4 programme, "Who Got Diana Dors' Millions?'

Andy Clark, Head of Forensics, Detica added: "I feel very privileged to be elected Fellow of the IACR. It is a great honour to be in such esteemed company. Cryptology is such a pervasive science, many of us use it every day from web shopping to mobile phones and electronic transport ticketing without realising the security processing going on in the background.  It is increasingly underpinning the digital society and its study and development is important to us all".

The International Association for Cryptologic Research web site is at www.iacr.org .

Unveiling its position paper, "Unblocking the transport network: Joining the dots for smarter and safer travel', at The Great Transport Debate in London today, Detica's senior transport specialist, Grant Klein said: "Many parts of the UK's road and rail networks are now so close to capacity that even a minor incident can quickly tip them into chaos with knock-on delays for thousands of travellers.  With the prospect of unpredictable journey times, travellers have little choice but to allow for the worst-case congestion scenario if they want to be sure of arriving on time."

Faced with this situation, transport operators are searching for new ways of unblocking and better utilising their networks.  Key to this is giving travellers relevant and timely information to enable them to make better travel choices " when to travel, on what mode, on what route and with whom.  "People now expect a "seamless' experience across information sources and the different media they encounter throughout the day," says Klein. "However, the information they currently receive from travel organisations does not live up to these growing expectations."

The problem is compounded by a fragmented UK transport industry where deregulation has created numerous service operators, each with their own systems to manage and objectives to achieve.  Even within transport modes there are operational silos where the department best placed to collect information on how a service is operating is not the one who provides that information to travellers.

Since major infrastructure investment is not an option, and transport spending is generally being squeezed, equal doses of innovation and pragmatism will be needed to join up the industry.  A key challenge will be to agree on the specific roles and responsibilities of the industry players involved along the information chain.  Klein comments: "One could argue that an infrastructure operator should focus on data collection, while information service providers should take care of data enhancement and presentation.  Where we need greater clarity is in the middle of the chain, namely collating and interpreting data. The current spaghetti of connections and conflicting information results in confused and inconsistent messages being communicated to the travelling public".

The solution, according to Klein, is to combine regulation, to ensure a high-quality common pool of data, with liberalisation to encourage its exploitation by private sector information wholesalers and retailers.  "The speed and inventiveness shown by mobile phone software developers to "mash up' public transport data with online mapping and property databases to create new information services has shown the way", comments Klein. "If we can get to the situation where there is a revenue stream attached to the data being supplied by transport operators, competition in the marketplace will create pressure to maintain quality and consistency " and to innovate and keep pace with consumers' demands."

Joining up journey planning and service running information will help travellers make better and more informed choices and so help unblock congested transport networks. But there are other benefits to be gained.  Over and above their primary duty to provide a service to travelling customers, all players involved in the transport industry need to protect their services from accidental or deliberate disruption.  Klein says: "By joining up the data, infrastructure operators can mitigate against incidents caused by weather, accident or criminal intent.  Service operators can ensure those misusing or abusing the system or fraudulently obtaining tickets are deterred or caught.  And information service providers can monitor and investigate activities that could lead to transport services being compromised or disrupted."

Klein concludes: "If we don't address this fragmentation issue then passengers will continue to distrust transport information and make poor travel decisions.  But if data can be joined up properly, travellers will come to trust its accuracy and completeness, and this will unlock a change in traveller behaviour and attitudes to different transport modes. Travel choices will be more informed and the networks will be more balanced. And the travelling environment will become safer and more resilient."

Copies of Detica's position paper, "Unblocking the transport network: Joining the dots for smarter and safer travel', can be downloaded here

Within the software application solutions framework category, Detica bid for four Lots and was successful in each. These are bespoke applications, CRM/case management, information management, web design and content management. This opens the door for the firm to deliver solutions to the public sector over the next two years. The win builds on success last year where Detica secured a similar position on the ICT consultancy and delivery services framework agreement.

Theo Hildyard, Framework Manager at Detica comments: The software application solutions category is essential to delivering the efficiencies and savings required by the public sector now and in the future. We look forward to bringing our 30-year expertise of working with Government to develop innovative and mission-critical solutions.

The win follows a highly competitive bid process that began in May 2009.

Steve Daniels, Head of Cyber Security and Information Assurance at Detica explains: With new technology and operations comes new risks. Like the Internet, the smart grid could be hacked, and confidential customer data might be lost or new vulnerabilities to crime may be created, unless adequate safeguards are put in place. Energy smart metering is perhaps the biggest change to the critical national infrastructure in more than a decade, and the energy market already has many stakeholders across Government, regulatory bodies, utilities companies, generators and other third parties. Engaging them all is vital and we believe that a single sponsoring group needs to exist to coordinate the scheme.

Daniels continues: Security is everybodys problem in the smart metering landscape. Whilst each member of the ecosystem has a critical role to play, coordinated governance, strategy and solution design will also be needed to ensure that weaknesses are not introduced in the hand-offs between these groups, or by the technologies involved.

Click here for the latest Detica whitepaper entitled Securing smart meters: getting it right first time

Detica CView™ will help the UK’s ISPs and creative industries to understand the level of digital piracy in the context of new commercial services and piracy measures. It has the potential to measure file-sharing across all UK ISP networks, paving the way for ISPs, the creative industry and the government to better collaborate, understand and respond to the digital piracy challenge as outlined in the Digital Britain report.

Detica CView™ applies high volume, advanced analytics to anonymous ISP traffic data, and aggregates this information into a measure of the total volume of unauthorised file sharing. The Detica CView™ tool meets stringent consumer security design principles to protect privacy and is powered by a fully automated, closed system which does not identify individuals or store their data.

Andy Frost, Director of Media at Detica says: “The Digital Britain report set out some bold targets to reduce illegal file sharing on ISP networks, but until now measuring the extent of the problem has been based on conflicting consumer surveys and speculation. We hope the launch of Detica CView™ will pave the way for stronger collaboration between ISPs and the media industry, by enabling all parties to more accurately measure the success of shared initiatives, reduce digital piracy and provide an unparalleled level of accuracy.”

Jon James, Executive Director of Broadband at Virgin Media comments: "Understanding how consumer behaviour is changing will be an important requirement of Virgin Media's upcoming music offering and, should they become law, the Government's legislative proposals will also require measurement of the level of copyright infringement on ISPs’ networks. Detica's CView™ technology potentially offers a non-intrusive solution which enhances our understanding of aggregate customer behaviour without identifying or storing individual customers' data."

Addressing the annual RSA security conference today, in a presentation entitled ‘The end of data mining?  Surviving the digital tsunami’, David Porter, one of Detica’s senior security experts, explains: “Although criminals have been quick to exploit the benefits of the digital revolution, so too have those responsible for their disruption.  Both governments and large corporations use powerful data mining tools to help detect fraud and other serious crime.”

Porter continues: “However, there is now real concern that the explosion in data volume, complexity and speed is outstripping our ability to make sense of it.  This growing digital tsunami means that conventional approaches to data mining developed over the past few decades are hitting a ceiling.   The answer is to embrace ‘next generation’ data mining methods such as social network analysis and also re-appraise the role that human intelligence, imagination and experience play in detecting security breaches.  By substituting brute-force data interrogation with a smarter, more collaborative human-machine approach we can get to grips with today’s fast-moving security threats more quickly.”

The conference is being organised by RSA, the Security Division of EMC, with the support of the security industry.  Originally launched in 1991 as a forum for cryptographers to share the latest knowledge on Internet security, the RSA Conference is today helping to drive the information security agenda worldwide with annual industry events in the U.S., Europe and Japan, creating opportunities to tackle the most important IT security issues through first-hand interactions with experts in the field.

David Porter is speaking at the event at the Hilton London Metropole as part of the ‘Business of Security’ conference track.  Further details about the conference are available at: http://rsaconference.com/2009/europe/index.htm

About Detica
Detica specialises in collecting, managing and exploiting information to reveal actionable intelligence.   It uses this capability to help government and commercial clients reveal intelligence, maintain security and strengthen resilience in today’s complex operating environment.   It also uses its skills to assist clients with other information-intensive problems such as achieving regulatory compliance and understanding customer behaviour.

By combining technological innovation with in-depth industry knowledge, Detica has developed a range of world-class solutions centred on its expertise in intelligence, security and resilience.   This is backed up with over thirty years’ experience of developing solutions to some of the most complex security problems.   Detica’s business and technical consultants offer a range of core services from strategy formulation through people and process change to the development, delivery and support of software and hardware technology.   Detica’s understanding of today’s information-intensive challenges has also led it to develop a range of specialist services and products based on its unique intellectual property.

Detica delivers projects of significant scale across government and commercial markets in the UK, US and continental Europe.   Its principal clients are government agencies responsible for intelligence, security and resilience.   It also assists civil government and commercial organisations with a critical national infrastructure remit.   Detica’s UK government clients include: Home Office, Ministry of Defence, Borders Agency, HM Revenue & Customs, Metropolitan Police and Department for Transport.   Its US government clients include: Department for Homeland Security, Department of Defense, Federal Bureau of Investigation and Internal Revenue Service.   Detica’s commercial clients include: HSBC, Nationwide, RBS Insurance, Lloyds of London, Financial Services Authority, Turquoise, Thomson Reuters, BT, Vodafone, Cable & Wireless and 3.   Detica has offices in London, Gatwick, Guildford, Gloucester, Washington DC and Columbia.   For further information, please visit www.detica.com.

Detica and Detica Limited product names are registered trademarks or trademarks of Detica Limited in the UK and in other countries.   Other brand and product names are registered trademarks or trademarks of their respective companies.   Detica Limited is registered in England under number 1337451 and has its registered office at Surrey Research Park, Guildford, England, GU2 7YP.

Mark Dampster, Head of Business Development for Detica StreamShield®,   explains: “The fact that a recent, high-profile email security breach was able to occur just demonstrates the huge gaps in cyber security that we still face. To make ourselves safer we must get past trying to assign blame or responsibility to one group - it is the shared duty of ISPs and computer users to ensure online security and a combined effort will make our cyber resilience much more robust.”

Detica believes that ISPs need to do more to fix systemic faults and weaknesses and provide a secure environment for consumers. This should include screening emails and removing spam (including ‘phishing’ emails) and malware, such as key logging software before they reach users. The same technology that scans emails can also monitor real-time browsing so that a user is prevented from accessing a malicious website or downloading an infected file. Technologies like Detica’s StreamShield®, have the capability to provide ISPs with this comprehensive cybersecurity armoury.
 
Equally, Detica argues computer users must also take more responsibility for their own security whilst online and exercise greater common sense. This must extend beyond simply keeping anti-virus software and system ‘patches’ up to date, to encompass being wise to tricks and scams and having a secure approach to social networking and password protection. For instance, passwords need to be changed regularly, not used across different websites and kept safe offline.

Dampster says: “Online fraudsters are increasingly using \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\'soft\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' psychological techniques that exploit fear, greed, ignorance and haste. Tricking a human being can be a lot easier and more fruitful than hacking secure technology. Users still need to think ‘safety first’ and use common sense. For instance, legitimate organisations do not ask their customers to confirm their details. Why would they if a customer is already on their database?

“Similarly, users need to think twice about the level of information shared on social networking websites and never give phone numbers or addresses out. Social networking sites are by their very nature insecure since their business model is based on broadcasting as much information as possible to the greatest number of interlinked people. It’s little wonder the crooks are exploiting these sites. People need to consider whether they really need to let the world know when they are on holiday or give information out that may be confidential to their job function. Just because somebody may happen to be a ‘friend’ on Facebook, this doesn’t mean they or someone linked to them won’t misuse this information. Also personal information can be accessible from search engines, so it is important to check the privacy policy of social networking websites.”

Dampster concludes, “By recognising that cyberspace is shared territory where we all have responsibilities for security, we can ensure the internet is as safe as possible. This not only protects consumers, but opens up great opportunities for ISPs to add value to consumers and gain a competitive edge.”

Notes to editors

About StreamShield®
StreamShield® is a product division of Detica, the specialist business and technology consultancy that helps government and corporate clients reveal intelligence, maintain security, manage risk and strengthen resilience in today\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\'s complex operating environment.  StreamShield® is the first platform in the world to provide integrated, Internet-based protection for email, web and other real-time internet applications using unique technology that delivers unrivalled performance.  The platform affords ISPs the ability to offer robust and effective content security services such as parental controls, e-mail cleansing, child protection, anti-malware, anti-phishing and application firewalls, without the need for additional hardware or software whilst providing subscribers full control and management of their service.  For more information, please visit www.streamshield.com.

About Detica
Detica specialises in collecting, managing and exploiting information to reveal actionable intelligence.  It uses this capability to help government and commercial clients reveal intelligence, maintain security and strengthen resilience in today’s complex operating environment.  It also uses its skills to assist clients with other information-intensive problems such as achieving regulatory compliance and understanding customer behaviour.

By combining technological innovation with in-depth industry knowledge, Detica has developed a range of world-class solutions centred on its expertise in intelligence, security and resilience.  This is backed up with over thirty years’ experience of developing solutions to some of the most complex security problems.  Detica’s business and technical consultants offer a range of core services from strategy formulation through people and process change to the development, delivery and support of software and hardware technology.  Detica’s understanding of today’s information-intensive challenges has also led it to develop a range of specialist services and products based on its unique intellectual property.

Detica delivers projects of significant scale across government and commercial markets in the UK, US and continental Europe.  Its principal clients are government agencies responsible for intelligence, security and resilience.  It also assists civil government and commercial organisations with a critical national infrastructure remit.  Detica’s UK government clients include: Home Office, Ministry of Defence, Borders Agency, HM Revenue & Customs, Metropolitan Police and Department for Transport.  Its US government clients include: Department for Homeland Security, Department of Defense, Federal Bureau of Investigation and Internal Revenue Service.  Detica’s commercial clients include: HSBC, Nationwide, RBS Insurance, Lloyds of London, Financial Services Authority, Turquoise, Thomson Reuters, BT, Vodafone, Cable & Wireless and 3.  Detica has offices in London, Gatwick, Guildford, Gloucester and Manchester.

Detica is a BAE Systems company.  BAE Systems is the premier global defence, security and aerospace company, delivering a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. With approximately 105,000 employees worldwide, BAE Systems\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' sales exceeded £18.5 billion (US $34.4 billion) in 2008.

For further information, please visit www.detica.com.

Despite receiving over 27,000 reports (a 5% increase on the same period last year) only one in five (5742) were confirmed by the IWF as images of child sexual abuse. This figure has been falling for three years suggesting a decrease in the availability of this content. Almost all of these images (over 99%) were traced to servers outside the UK. In these circumstances, the IWF acts immediately to inform our partner Hotline and law enforcement agencies in the relevant country to get the images removed and those responsible investigated.

As a result of consistent efforts by the IWF and the internet industry, it is now extremely rare for child sexual abuse images to be on UK websites. When they are, the IWF works in partnership with the hosting provider and the police to have them removed. During the first three quarters of this year, the IWF has issued 25 notices to companies in the UK about the abuse of their networks for the distribution of these images. Each notice was quickly complied with and every identified instance of online child sexual abuse content in the UK was removed within a day of notification.

Eve Salomon, IWF Chair, said: “With the help of our Hotline, the UK has an excellent record in eradicating child sexual abuse images on the internet in partnership with 35 other Hotlines around the world and with the support of our 100 industry members. These websites are reducing in number globally and where they are sited in the UK, they are removed extremely quickly.

“If you stumble across child sexual abuse images, it’s crucial you report it to us. We are focussed on the swift removal of these images and helping the international effort to bring those responsible to justice and rescue children from sexual exploitation. Your reports to our Hotline really do make a difference.”

IWF Awareness Day is supported by many of the organisation’s 100 member companies and partners who unite to help publicise the UK Hotline and the importance of the IWF’s work. In 2008, Awareness Day led to increased reporting to the Hotline and an 18% increase in awareness of the IWF amongst UK internet users. The IWF hopes to increase that this year.

To report a website or for more information the about IWF, please visit www.iwf.org.uk.

Notes

• IWF research shows nearly 1 in 20 UK adult internet users (or 1.5 million people) say they have been exposed to child sexual abuse images

• This research also indicates that over three quarters of those UK adult internet users who say they have stumbled across child sexual abuse images are unsure how to report them

• The majority of online child sexual abuse images identified by the IWF depict the most severe levels of sexual abuse -  the abuse of child victims under 10 years old - and are made available on pay-per-view commercial websites

• It is extremely rare to trace child sexual abuse content to the UK

• Internet users should not deliberately seek out child sexual abuse images in order to report to the IWF

About the Internet Watch Foundation (IWF)

The IWF was established in 1996 by the UK internet industry to provide the UK internet Hotline for the public and IT professionals to report potentially illegal online content within our remit and to be the \'notice and take-down\' body for this content. We work in partnership with the online industry, law enforcement, government, the education sector, charities, international partners and the public to minimise the availability of this content, specifically, child sexual abuse content hosted anywhere in the world and criminally obscene and incitement to racial hatred content hosted in the UK.
 
We are an independent self-regulatory body, funded by the EU and the wider online industry, including internet service providers, mobile operators and manufacturers, content service providers, filtering companies, search providers, trade associations and the financial sector.
 
We work with UK government to influence initiatives developed to combat online abuse and this dialogue goes beyond the UK and Europe to ensure greater awareness of global issues, trends and responsibilities. We work internationally with INHOPE and other relevant authorities and organisations to encourage wider adoption of good practice in combating online child sexual abuse content and to promote inclusive and united global responses to this dynamic, cross-border criminality.

Contacts

Sarah Robertson, IWF, 01223 237700, 07929 553679, sarah@iwf.org.uk

Premier Rann’s visit closely followed Gordon Brown’s high-profile tour of Detica in July 2009, after he announced the launch of the UK’s first Cyber Security Strategy. Like the UK Prime Minister, Premier Rann and his colleagues received an update on current cyber security threats and a demonstration of the company’s cutting-edge cyber security solutions in NerveCentre™, Detica’s state-of-the-art demonstration facility. The VIP visit comes nearly a year on from when Detica joined BAE Systems as a key part of the Group’s growing focus on global security, especially in the US, Australia and UK. Detica has taken a leading place at the forefront of BAE Systems’ cyber security efforts.

Martin Sutherland, Managing Director of Detica, said: “We are hugely honoured to host Premier Rann and to have the opportunity to discuss the challenges associated with cyber space and demonstrate the innovative technological solutions that Detica has pioneered to make cyber space a safer place. As a BAE Systems company, we are growing our capabilities to meet this challenge and we are delighted to see our thought leadership on this subject is becoming increasingly visible on the international political stage. By its very nature, cyber security is a global issue and requires significant international engagement, cooperation and commitment from world leaders to combat the critical risks we all face.”

Premier Rann said: ‘It was extremely interesting to tour Detica and hear the company’s thoughts on the emergent challenges in cyber security. While the Internet can bring significant benefits to the global community, it can also facilitate significant threats such as serious and organised crime. Cyber security is becoming an increasingly international issue that we must address in a balanced way to deliver effective services to citizens and customers while protecting them from harm.”

As part of the demonstration of its cyber security solutions, Premier Rann received a briefing on cyber security and the emerging challenges. He was also shown the impressive capabilities of Detica’s market leading solutions, with a demonstration of Detica NetReveal®, groundbreaking crime-busting software that uses social network analysis to fight fraud and serious crime across the insurance, financial services and government sectors. This was showcased alongside Detica StreamShield®, which uses ultra-high performance technology to provide integrated, Internet-based protection for email, web and other Internet applications in order to make the Internet a safer place for everyone.

Premier Rann’s visit to Detica in the UK was arranged by BAE Systems Australia, which has its headquarters in the Premier’s state of South Australia.

The UK Government recently announced its intention to fit every home and small- to medium-sized enterprise (SME) in the UK with smart utility meters for gas and electricity by 2020.  Ian Watts, Head of Energy and Utilities at Detica, feels lessons should be learned from the experience with smart meters so far.  There are already around 40 million smart meters in use worldwide and, even at this early stage, we have seen a number of security breaches.  These have included insecure meters, hacking of customer details, denial of service attacks and suspected infiltration by foreign intelligence services.

Watts continues: The utilities network has been defined by the Government as a key part of the Critical National Infrastructure.  The impact of any large-scale power cut could not only put peoples lives at risk but be potentially paralysing for the economy.  Whilst there are many potential benefits of smart meters that justify their introduction, we must be aware it also brings new risks and should therefore design in security from the outset to guard against this.  Cyber security safeguards should be an integral part of the design both of the meters themselves and the network supporting it, in order to manage these new threats effectively.

In the paper Detica presented to DECC Smart Metering for Electricity and Gas the company outlines recommendations to ensure that smart meter security is handled properly.  It argues that the security approach should take a wider view of network risks and focus on proactive threat monitoring in order to identify new cyber security threats before they can compromise the smart meter infrastructure.  These mechanisms need to be sophisticated enough to detect threats from what at first may appear to be normal activity.

The paper also stresses the need to establish strong governance, such as the formulation of standards and policies, development of processes and technology, training of users and ongoing compliance audits.  In particular, Detica backs government proposals for a Central Communications Model to serve as a single nationwide body with overall responsibility for coordinating the smart meter infrastructure and enforcing standards, policies and processes.

Watts concludes: The potential risk to national cyber security from not adequately securing smart meters or not responding to public concerns whether they be founded or unfounded is too significant to ignore and merits urgent action from utilities companies.  But inaction, warns Watts, also presents these companies with an additional business risk.  The surge in customer information received will provide priceless insight into customer behaviour and offer the opportunity to create tailored energy tariffs to help smooth out peaks in energy demand and respond to new customer needs.  Utility companies that fail to exploit the opportunity hidden within that secured data will see themselves left behind as competitors and new market entrants quickly take the advantage.

For a full copy of Deticas response to DECC, please click here.

A new European Parliament Directive  will require mobile and fixed line CSPs to retain records of all telephone calls and internet data for up to two years. CSPs will need to provide law enforcement and government agencies with these records quickly and confidentially, sometimes in a matter of minutes.  CSPs will also need to preserve evidential integrity and comply with data protection legislation. As the Directive will soon become law across the EU, CSPs need to move swiftly to comply.

Simon McHattie, Director of the Interception & Compliance Business Unit at Detica, believes this presents a considerable challenge: “Although most CSPs already collect the required data records, they tend to be spread around different computer systems. Most CSPs will set up and maintain a separate database, which will need to have the capacity to store a considerable amount of data — tens or even hundreds of billions of records. This could become extremely expensive if they use conventional data warehousing technologies. Over and above the significant hardware and software costs, there will also be a sizeable recurring bill for office space, energy usage and staffing.”

Detica DataRetain™ offers an innovative solution to the data retention compliance challenge. By combining proven data compression software with low-cost, off-the-shelf, small footprint and energy-efficient hardware, Detica DataRetain™ enables CSPs to store and access billions of data records quickly and securely.  It also offers easy integration with existing industry and law enforcement technology operations. Workflow management features can be easily configured to adapt to a CSP’s business processes, forming a seamless interface between law enforcement agencies and CSP police liaison units.

McHattie says: “CSPs have a simple decision to make when it comes to data retention: re-use expensive, generic, over-specified data storage technology or choose a streamlined, low-cost compliance solution that integrates technology with workflow in order to achieve significant operational efficiencies.  It should be an easy decision to make.”

Detica DataRetain™ has been developed in close co-operation with several leading CSPs and government agencies in the UK. It is the latest in a range of world-class specialist products from the business and technology consultancy – such as the award-winning Detica NetReveal™  fraud detection solution – that are the fruits of over thirty years’ experience of developing solutions to some of the most complex security problems.

“Breaking into mobile phone voicemail boxes is incredibly easy once you know the password, but most people are simply not aware of the risks or even that it’s possible to dial into their mobile voicemail boxes remotely”, says David Porter, Head of Security and Risk at Detica.  “Although this is a simple crime to commit, it is also simple to counter with basic security measures. An incredible number of mobile phone users do not change their password from the default setting. They should do this and choose a voicemail password that is near-impossible to guess. This password should be changed regularly, especially if the voicemails are very confidential.”

Detica warns that voicemail hacking is just one part of a much wider security problem, associated with the rise of sophisticated, new generation mobile phones. ‘Smart’ phones offer a host of web applications, from email to mobile banking, meaning they store an enormous volume of sensitive data which brings additional security risks to owners and businesses. 

Detica believes that part of the solution is a more stringent use of basic security measures, such as protecting phone data with encryption and ‘hard-to-guess’ passwords, as well as setting phones to ‘wipe’ their memory should invalid passwords be typed repeatedly. However, it warns the effectiveness of these measures can only go so far and while manufacturers could do more to build security innovation into the design of mobile phones from the outset, the solution does not rest solely with technology.

Porter argues: “While ‘smart’ phones bring many positive benefits to the way we live and work, if the secrets that they hold about us fall into the wrong hands, it can put users at real risk of identity fraud and serious crime. Longer term, the answer to mobile security could lie with the ‘secure cloud’, where data is held safely in the network and handheld devices become just a way of accessing services.  But this prospect is far off and isn’t the entire solution. 

“With super-fast 4G mobile just around the corner and increasing volumes of our personal and private information held on the systems run by mobile network operators, social networking services and online stores, we have turned traditional ideas of security inside-out.  We now need a sophisticated debate about cyber security, which means asking just what information we are prepared to share when we are browsing and twittering.”

In light of the Government’s recent ‘Digital Britain’ and ‘Cyber Security Strategy’ reports, Detica calls for businesses to have a key role in this debate, given the increasing convergence in the way mobile technology and online services are used for personal, social, family and business purposes. 

Porter concludes: “We urgently need to decide what we want the future of mobile Britain to look like and balance the benefits and risks of mobile technology.”

This win is particularly significant as Detica has been given the rare appointment to work on all seven ‘lots’ contained within this framework agreement. Detica will offer consultancy and delivery services ranging from ICT strategies to software applications as well as technical and security architectures. The framework agreement provides a key route to supplying high quality services across all Government departments and the wider public sector.

“Being placed on the Buying Solutions’ ICT Consultancy and Delivery framework is a great achievement and opportunity for Detica,” says Theo Hildyard, Framework Manager at Detica. “This win provides us with the chance to work on a wealth of interesting and challenging projects.

“We are delighted to have Detica’s advisory and implementation skills and specialism in business and technology consultancy recognised in this way by the Government. It is testament to our versatile approach of addressing the individual needs of each client to build fully-tailored solutions. We look forward to delivering world-class services that will bring real value and efficiency to Government departments and ultimately benefit the wider public.”

The win follows a ten-month bidding process that  started in September 2008. Detica’s success with the Buying Solutions ICT Consultancy and Delivery framework agreement builds on its previous appointment on the Buying Solutions framework agreement for Mobile Data Solutions that the company announced in February this year.

“There is a clear and present threat from those who threaten the safety of the public, the security of the state or who seek to commit serious and organised crime,” says Sutherland.  “This has resulted in a raft of new security measures which seek to protect us whilst attempting to do so in a proportionate manner.  The government’s recent release of its Cyber Security Strategy, launched last week during a visit by the Prime Minister Gordon Brown to Detica’s London office, highlights how cyberspace makes border protection even more challenging in the 21st century.  “Because cyberspace is essentially borderless,” says Sutherland, “the traditional concept of a physical border or boundary becomes increasingly difficult to define, control and protect.  The conventions of ‘national’ or ‘homeland’ security are fast eroding. 

This is a situation, according to Sutherland, that serious organised criminals are only too eager to exploit.  “As habitual ‘early adopters’ of new technology, they are quick to exploit the digital revolution for their own purposes.  What we now term ‘the new front line’ — the collision between the physical world and cyberspace — has created a new threat environment where ‘borderless’ terrorists and criminals, acting in a more agile and unpredictable manner, can threaten national security, corporate safety and individual well-being on a scale and with a reach that was simply not possible in the past.”

This increased complexity, combined with the economic imperative to “achieve more with less” means scarce resources must be targeted at the most significant threats — which themselves are very difficult to identify — and all in a proportionate manner.  Sutherland comments: “This is the classic ‘needle in the haystack’ problem, except we do not know what we are looking for until we find it — we effectively hunt for needles as they are being prepared for the haystack.  Fortunately there are now highly innovative and proven methods for achieving this task which have very strong potential for re-use across the security industry.”

The answer, according to Sutherland lies in digital footprints.  “As we go about our daily lives we leave behind digital footprints — but so too do terrorists and criminals when they plan and execute their crimes.  By looking for unusual patterns of behaviour in data and investigating them more fully we can find the criminals and thus turn their digital footprints against them.”  Central to Detica’s proposed solution is an approach called ‘network risk targeting’.  This means targeting, at a high level, the key entities involved in a criminal network rather than traditional risk-based targeting which works at a lower level of detail and takes no account of the network context.  According to Sutherland: “The beauty of network risk targeting is that investigators can quickly identify the source of the problem and tackle it there.  Rather than expending effort in tackling the peripheral, we can go straight to the heart of the network of activity.  This enables agencies to target scarce investigative resource more effectively and thus do more with less.”

Having applied these techniques in physical and physical/virtual threat environments, the next big challenge, according to Sutherland, is applying them in the purely virtual environment of cyberspace.  “In the virtual environment we are thinking of threats like cyber attacks, online identity theft and digital piracy.  But while technology, policy and intent are now emerging, no single agent is able to act in isolation.  In this scenario we need a response that is joined-up across government, the private sector and individuals.  The launch of the UK Cyber Security Strategy last week endorses the fact that we now need to turn our attention urgently to the virtual threat scenario.”

In his presentation today, Sutherland also addresses the issue of balancing security against privacy concerns. “Security in the modern world is a careful balance between liberty and proportionality.  Where investigations are directed in a more focussed way, using network risk targeting, it means that members of the public will not be investigated unnecessarily.  By identifying identify potential targets based on anomalies and hypotheses rather than starting with the individual, it helps balance security and privacy concerns.  It is our belief that re-using innovative approaches like this across the industry will help reduce the risk to the UK from international terrorism and organised crime and enable us all to go about our lives freely and with confidence.”

Further conference details can be found at: http://www.govnet.co.uk/security.

RSA will be using Detica NetReveal®  for the detection of claims fraud across its personal and commercial motor insurance and home insurance business in the UK. The groundbreaking technology may also be extended to cast an even wider net across the insurance group's liability and commercial property lines of business.

John Beadle, UK Counter Fraud Manager at RSA, comments: "We chose Detica NetReveal®  following an extensive review of potential providers plus the successful completion of a 'live' trial that resulted in substantially improved fraud detection rates."
 
Andy Cobb, Director of Business Development for Detica NetReveal®, comments: "We are delighted that RSA, one of the world's leading insurance groups, has chosen our solution.  Using the latest version of Detica NetReveal®  we will not only accelerate offline investigations but also take fraud prevention a step further by performing live screening of new claims against pre-scored criminal networks.  We are delighted to continue to offer our commercial clients the fruits of over thirty years of developing solutions to some of the most complex security problems."

With Monday’s bad weather preventing a fifth of the nation’s workforce from getting into work, at a total estimated loss of £1.2 billion¹, Detica believes the time has come to sweep away inflexible office boundaries that make businesses so vulnerable to disruptive events such as this week’s snow. By investing in mobile technology, Detica argues that the UK economy will reap the benefits of improved flexibility, productivity, staff safety and morale. Flexible and mobile working also offers the potential to reduce accommodation costs in the economic downturn as well as lessen the impact on the environment.

Mike Brown, Head of Mobile Data Solutions at Detica, says: "When significant disruptions like heavy snow occur, it is far more efficient for employees to work remotely, by tapping into a mobile office infrastructure, rather than dragging out their snow boots and braving an arduous commute into the office. Organisations have to realise that the economy and the world are changing, and the traditional concept of the office needs to make way for a more flexible, virtual way of working that will keep businesses responsive, competitive and agile. This week’s cold snap took many by surprise, but with climate change, a world recession and a wealth of other global threats, the one thing we can forecast this year is more unpredictable events."

In December 2008, Detica was awarded a position on a framework agreement by OGCbuying.solutions, an executive agency of the Office of Government Commerce (OGC) in HM Treasury, to provide mobile working solutions for the public sector. Detica’s mobile solution provides a single, secure access point for use by mobile workers to remotely access applications, databases and information whenever and wherever it is needed, and also allows flexible users to work anywhere as though in the office, without being tied to specific locations. The secure solution will run on a wide range of devices from PDAs through to laptops, vehicle-based terminals and bespoke mobile devices on any communications network.

Brown added: "Mobile technology has the power to transform working practices and we are both proud and excited to be working with the OGCbuying.solutions to help deliver the next generation of mobile public service solutions. The mobile solutions award further extends our relationship with OGCbuying.solutions as a provider of ICT and multi-disciplinary consultancy services".

¹ Source: Federation of Small Businesses.

Andy Frost, Director of Media at Detica, says: “While we commend BERR’s focus on upholding copyright, we believe the practicalities of enforcement alone will prove too costly and time-consuming for the ISPs to administer.  The best solution will be one that meets the needs of the broader community of artists, consumers and labels — and the ISPs that bind them — and not one that fixates on the labels and the hardcore criminal minority that threatens them”.

Detica insists that stronger collaboration between Internet Service Providers (ISPs) and the entertainment industry is the only way to make it easier for consumers to download music and films legally whilst also providing ‘fair trade’ for artists. 

Frost continues: “The spirit of the BERR consultation document appears to be overly focused on protecting the interests of record labels who own the copyright material and are being threatened by an explosion in unlicensed P2P file sharing.  Of course, labels have a legitimate interest in seeing the authorities resolve this issue, but the reality is that the digital marketplace is very complex.  Any solution will need to encapsulate the needs of other stakeholders too, especially artists and consumers who are not necessarily able to demonstrate such a united front to the Government”.

Detica argues that collaboration can be achieved by the industry adopting a voluntary framework in which ISPs deploy advanced technology to identify where and when copyrighted files are being downloaded. 

Frost adds: “We can now deploy proven, scaleable intelligence technology within an ISP’s network to enable them to deliver exciting new business models such as a ‘per track’ download fee or an ‘all in’ monthly subscription service.  Ultimately, this approach could see the spectre of illegal downloading disappear altogether since users will be charged automatically — and fairly — for any files they download or share”.

As well as bypassing the significant costs and potential ineffectiveness of an enforcement-focused regime, Detica’s proposed solution will enable any profit generated by user downloads to be shared proportionately between ISPs, labels and artists. 

Frost comments: “Our collaborative business approach acknowledges all the players impacted by digital downloading and strives to provide a degree of fairness for all.  Our experience from the security industry tells us that in these situations voluntary compliance is just as important as enforced compliance — you only use a big stick for the minority of hardened cases.”

Whilst the ISPs will need to absorb the set-up costs of the technology, Detica believes this will likely be less than the costs of administering an enforcement-focused solution.  Frost concludes: “With our solution everybody wins, not least the ISPs who will be able to recoup the technology costs by charging customer subscriptions and sharing new customer insight, for a fee, with the content owners”.

Mr Bagnal will speak at the IA08 Conference on 'A Risk Management Approach to Securing Cyberspace', where he will present new methodologies to manage the growing risks and threats to national and international cybersecurity.

Commenting on the theme for his speech at IA08, Mr Bagnal says: "The growth of cyberspace and the explosion of data volumes, created by present-day Internet and global telecommunications networks, have created a highly complex environment. This presents a significant security challenge for governments because criminals — from minor offenders to international terrorists — can now threaten individual well-being and national security in ways simply not possible in the past. Cyberspace today gives criminals the capability to conduct illegal activities on a vast scale and in a very dynamic way. Our cybersecurity defences are, in many cases, no longer adequate in today's environment, making us potentially vulnerable to sophisticated attacks."

Prior to his appointment by Detica, Mr Bagnal was the Deputy Assistant to President George W. Bush for Homeland Security, where he chaired the Homeland Security Council Deputies Committee and co-chaired the Counterterrorism Security Group. Along with the Assistant to the President for Homeland Security and Counterterrorism, Mr Bagnal led the Homeland Security Council staff. Mr Bagnal has also previously held US Government posts including Special Assistant to the President for Homeland Security and Senior Director for Response Policy; Chief of Staff of the Homeland Security Council, Special Assistant to the Commander of the North American Aerospace Defense Command and the United States Northern Command, and Special Assistant to the President and Senior Director for Domestic Counterterrorism.

"Winning the war on terrorism will require the skilful application of resources and capabilities from all facets of our global society," Bagnal stated as he joined Detica. "I'm excited to join a multi-national professional services business that focuses on turning complex information into relevant and actionable intelligence."

Mr Bagnal's presentation, 'A Risk Management Approach to Securing Cyberspace', will take place at 11.15am on Wednesday 18 June at the IA08 Conference. The IA08 Conference is being held on Tuesday 17 and Wednesday 18 June 2008 at the Park Plaza Riverbank Hotel, London. IA08 will be facilitated this year by the BBC Radio 4 Today Programme presenter, Edward Stourton. For more information, visit http://www.iaevent.org.uk.

The TfL website, redesigned by Detica and TfL's New Media team, was one of 8,000 entries from more than 60 countries considered by the International Academy of Digital Arts and Sciences, a 550-member body of leading Web experts, business figures, luminaries, visionaries and creative celebrities. Detica and TfL are nominated in the Government category for both The Webby Award and The People's Voice award.

"The Webby Awards honours the outstanding work that is setting the standards for the Internet," said David-Michel Davies, executive director of The Webby Awards. "The Transport for London website selection is a testament to the skill, ingenuity and vision of its creators."

The Webby Award nomination follows hot on the heels of a special commendation for the Detica and TfL team in the recent Design Week Awards, in which the innovative design of the TfL website came second only to Apple's iPhone.

Rhys Davies, Head of Creative Services at Detica, commented: "It's a real honour for Detica to be nominated for such a highly respected industry award. We are incredibly proud of our work with TfL, which I believe complements and builds on our thirty-year heritage as innovative thinkers and designers of solutions to complex, information-intensive problems."

Detica specialists in user-centred design worked alongside TfL's New Media team to completely re-design their web services channel. The team's challenge was to reorganise and improve the website, with a specific focus on helping users find information and services as easily as possible. As a result they have transformed the original government website into a compelling and engaging consumer-focused portal capable of adopting the latest developments in digital technology.

Caroline Little, Head of New Media at Transport for London said: "With 10 million journeys a day across the TfL network, we've listened to our passengers and made it easier for them to get essential information from the site. All the information passengers need to know about the Tube, bus, Docklands Light Railway and river services, walking and cycling, is now at their finger tips."

Under the new UK voluntary Banking Code, banks and building societies should provide more support to consumers heading into debt problems, including actively identifying and contacting those customers who may be at risk. Detica believes that a significant number of UK retail banks are not currently equipped to identify these customers under the new Code's requirements.

Maggie Scott, Executive Manager from Detica's Financial Services unit, says: "Due to a stream of recent regulatory requirements, banks actually have a great deal of data in place to build an accurate profile of their borrowers. Historically, however, banks have only used this data to assess their customers' financial circumstances when applying for credit. The challenge now is for them to apply this intelligence to identify financial stress and to act on the information to get in touch with customers to discuss ways to support them. If banks can't do this, then consumers won't benefit from the aims of the new Code and we risk debt spiralling further."

Detica urges banks to focus on making more connections between the networks of evidence they already hold in order to proactively identify those customers who are falling into debt. Credit cards, for example, are often the first to show signs of stress. If a customer increases their cash withdrawals and, at the same time, reduces their monthly repayment to a minimum, these two combined behaviours are a strong indicator that the customer is struggling to meet their financial commitments. Another example is when cash withdrawals from a customer's credit card account coincide with deposits being made into a current account to keep it within the overdraft limit to pay bills or other loan repayments.

Scott concludes, "The commitments made within the new Banking Code should compel banks to look again at their responsible lending policies and how to translate them into action. The benefits are twofold - customers receive the support they need before it's too late and banks can reduce the level of debt that turns bad. By taking a more consultative approach with the customer and generating and exploiting insight from data they already hold, banks can play an important role in warding off the spread of the US consumer debt problem in the UK."

The FSA, in its latest commentary responding to recent events at Société Générale, has suggested banks integrate and aggregate the output of their existing controls so a true, trader-level, view of risk can be monitored across the entire business lifecycle. This echoes advice issued last week by Detica. As Simon Elkington, Executive Manager from Detica’s Investment Banking unit, comments: “We completely agree with the FSA — only by breaking down operational control silos will banks be in a position to truly manage potentially catastrophic operational risks and failures”.

Extending the idea that Banks need to adopt a radical new approach to managing their risk, Elkington argues that financial institutions could learn something from the gaming industry. “Casinos don’t trust anyone — staff or customers — and a strong surveillance and control culture is espoused”, he says. “While we would never expect a bank to operate like a casino, there are nonetheless some very important principles at play here”.

In order to compete effectively, banks need to be agile and innovative and therefore depend on the honesty of both their employees and customers. But, at the same time, they must ensure that an appropriate level of monitoring is maintained. Elkington comments: “Advanced information intelligence technologies can now be deployed to monitor suspicious trading activity and effectively play the role of the ‘pit boss’”. So effective is this technology, Elkington argues, that it can uncover networks of suspicious or non-compliant behaviour without disrupting the culture of trust that exists between the bank, its staff and its customers.

Longer-term this approach to tackling risk could yield a silver lining. “It’s quite possible”, says Elkington, “to adapt the methods used to track down networks of fraud and abuse to make money — for instance, by identifying previously unknown operational inefficiencies”.

For more information on the networked approach to operational control recommended by Detica download the 'Preventing operational losses: are tighter controls really the answer?' whitepaper now from the publications area of our website.

Credit abuse networks are a growing problem for the retail banking sector and a source of increasing concern given the ongoing credit crunch. Variously known as Ù"first party lending fraudÙ", Ù"sleeper fraudÙ" and Ù"bust-out fraudÙ", credit abuse involves organised fraudsters making false statements on application forms in order to gain credit which they have no intention of paying back. As Andy Cobb, Director of Business Development at Detica, comments: Ù"There is also a growing trend in credit applicants being manipulated by organised fraudsters even though they may not have made any material falsehoods. This high risk activity currently falls between the Ù"organised first party fraudÙ' and Ù"bad debtÙ' definitions being debated by the banking industry. We believe a better approach is to let the data drive the definitions, not the other way round Ù"” someone intends to take money from the bank and they need to be stoppedÙ".

Detica NetReveal®5 is the latest extension to the successful Detica NetReveal® portfolio Ù"” a suite of solutions that utilises social network analysis to fight fraud and serious crime across the insurance, financial services and government sectors. The crime-busting capabilities of Detica NetReveal® grabbed the headlines last summer when the UKÙ's Insurance Fraud Bureau announced that the softwareÙ's sophisticated analytics had enabled it to expose insurance fraud networks leading to 74 arrests in the Bureau's first year. Since then HSBC and RBS Insurance have added Detica NetReveal® to their counter-fraud armouries.

Detica NetReveal®5 takes fraud prevention one step further, enabling high-speed checks of credit applicantsÙ' details against pre-scored criminal networks during the live application process. Until today, banks lacked this pre-emptive analytical capability to identify fraudsters and credit abusers and prevent them from becoming customers. Furthermore, as well as working in the Ù"front officeÙ" with new customer applications, Detica NetReveal®5 also functions in the Ù"back officeÙ" where existing customers are scored as they request additional credit facilities.

Cobb continues: Ù"Detica NetReveal®5 will give banks the most detailed view ever of the individuals to whom they are considering lending. Not only it is a breakthrough in preventing credit abuse, but its ability to explain transparently why a customer, application or linked-in network might be suspicious is unique in the field. We are delighted to be able to offer financial institutions the means of significantly improving the way they manage credit risk in these increasingly turbulent economic times.Ù"

In a white paper published today, Detica argues that the traditional tightening up of the existing control framework is not the answer. As Simon Elkington, Executive Manager from Detica’s Investment Banking unit, comments: “Not only does this impose an ever-increasing burden of cost and complexity on the bank but, more worryingly, it generates a false sense of security”.

Instead, Elkington argues, banks should adopt a networked operational risk model that moves beyond traditional silo-based approaches to risk management. “Once separate business, technical and physical controls are linked together then fraudsters and abusers are confronted by a tight web of interconnected defences, each one reinforcing and being reinforced by its neighbours”.

With a networked control model in place, Elkington goes on to argue that banks can take a more proactive approach to identifying operational failures by deploying advanced information intelligence systems that identify anomalous patterns and behaviours at a much earlier stage than is currently the norm.

Elkington concludes that the circumstances that have led to recent operational losses are typical of any number of banking institutions and are likely to happen again. “Banks who believed, post-SOX and Basel II, that regulatory compliance, internal controls and surveillance could be put on the back burner must think again”, he warns.

Turquoise, the multi-lateral trading facility (MTF) established by nine leading European investment banks today announced that it is partnering with Progress Software and Detica to deliver a real-time Market Surveillance System. The combination of the Progress® Apama® Complex Event Processing (CEP) Platform and Detica’s market surveillance and trading expertise will deliver a real-time and post-trade market surveillance system that will capture breaches of trading rules, root out market irregularities and develop enhanced trading execution analytics.

Commenting on today’s announcement, Eli Lederman, Chief Executive of Turquoise said: “Market surveillance is a vital requirement for any stock exchange. By choosing the Apama platform and deploying Detica’s expertise, we also gain a very flexible system. This will allow us to add value to the market data we collect and offer further client services such as detailed analysis of transactions and a better understanding of price improvement and performance.”

Dr John Bates, Founder and General Manager of the Apama division of Progress Software, adds: “The selection of the Apama platform by Turquoise further affirms Apama’s market leadership in delivering mission critical CEP-powered business applications. The real-time detection of complex patterns in market activity will discourage any potential abusers, maintain an orderly market, and promote liquidity.”

“Our brief is very clear: to design, build and deploy a robust, flexible market surveillance platform within very tight timelines, to Turquoise’s satisfaction”, says Simon Asplen-Taylor, Head of Market and Regulatory Services at Detica. “Our team has the right mix of advanced technology skills and deep business domain knowledge to make this happen. We are proud to be part of an exciting venture that will ensure a fair and orderly market and justify the trust that Turquoise has invested in the Detica-Progress Apama partnership”.

Approximately 80 per cent of e-mails, equivalent to 6.5 billion emails a day, are spam. These unwanted emails are not only generated by professional spammers, but also by “botnets”, where the PCs of unsuspecting customers are secretly infected with rogue software to form a network that generates vast quantities of unwanted spam. These infected machines can be used in turn to attack other PCs and websites.

The StreamShield system is currently processing more than 600 million emails a day for BT, generating detailed intelligence on the location and size of spam-related problems originating from the BT network. This allows BT to focus on contacting customers and helping them to rid their PCs of spam infections, thereby preventing possible identity fraud and virus infection. Shivanandan continues: “Spam is a global menace, causing annoyance, disruption and potential financial loss to Internet users. BT now has an innovative, cutting-edge solution that allows us to tackle this issue proactively and create a hostile environment for professional spammers”.

Tom Black, Chief Executive, Detica, adds: “StreamShield developed this spam-attacking solution, officially named Content Forensics, with large Internet Service Providers such as BT in mind. We are delighted to receive this award from BT as acknowledgement of our unique approach to tackling the scourge of spam”.

As part of an investigation by the UK’s Medicines and Healthcare products Regulatory Agency (MHRA), the Detica team reconstructed emails and other documents and analysed metadata in files to produce evidence for the courts that helped lead to the convictions of the man who masterminded the British arm of the conspiracy, and three of his cohorts.

The case has been described by the MHRA as the largest of its kind ever heard by a British criminal court.

The multi-million pound scam involved selling counterfeit tablets of Viagra, Cialis (both for erectile dysfunction) and Propecia (for treating baldness), containing only 90% of the normal active ingredient, to unsuspecting customers – many buying on-line – for up to £20 each, having often been acquired by the vendors for as little as 50 US cents. Tens of thousands of the fake tablets, manufactured in illicit factories in China, Pakistan and Asia, were bought in the UK, America, the Bahamas and Mexico, involving scores of businesses, both real and fake.

Andy Clark, head of Detica Forensics, said: “Our digital forensics linked the man at the centre of the investigations with companies and individuals implicated in the conspiracy. By piecing together fragments of emails and other documents, our experts mapped a web of contacts and uncovered evidence including a distribution agreement, a financial transaction and company incorporation details of the company at the centre of the scam.

“By reconstructing documents and analysing hidden metadata in files, we identified evidence such as document authors and key dates of editing and modification. This evidence substantiated other intelligence gathered in the case and helped secure the convictions that were announced this week.”

David Porter, head of security and risk at Detica, added: “This is an excellent example of the power of digital forensics investigations. It’s not often that we can talk publicly about the activities of Detica Forensics because the issues we deal with are so sensitive. Cases are often resolved even before they reach court because the digital evidence is so incriminating.”

Andy Clark continued: “This case demonstrates how digital forensics is becoming an integral part of many criminal investigations. As digital footprints become bigger, multi-dimensional and ubiquitous, and criminal activities become increasingly intertwined and networked, it is not a trivial matter for digital forensics investigators to keep pace with fraudsters and illegal transactions.”

The addition of multi-disciplinary consultancy services to the Catalist framework has coincided with a report from the National Audit Office revealing that central government spent in excess of £1.8 billion on consultancy in 2005-06. This has been carried forward into the Transforming Procurement initiative that calls for greater centralisation of buying and reuse of experiences, and lessons learned, between projects.

A number of factors were taken into consideration during the evaluation and selection process, including Detica's experience in delivering transformational projects requiring significant organisational and process change. Another key consideration was Detica’s track record in providing high quality, impartial and professional advice to support clients needing to identify, de-risk, procure and implement solutions.

Commenting on this, Neil Medley, Director of UK Government at Detica, said:"We are delighted to win this vote of confidence in our capability and capacity to provide the deep client-side advice government needs to deliver true transformation - both in terms of the procurement process and the organisational impact of new projects. Detica's history of repeatable delivery and continuity in major programmes makes the company an immediate choice for many of our customers."

Because the vast majority of data in the workplace is now generated and stored electronically, many companies now consider their data as critical to the ongoing success of their business. However, it is Detica’s belief that many companies are still not ready for a serious ‘digital incident’ such as the loss, theft or corruption of data, often by insiders working in collusion with criminal gangs. In scrambling to cope with this new breed of high-tech disruption, companies may inadvertently do more harm than good. This ranges from contaminating the evidence and wasting valuable resources to making hasty decisions that disrupt company operations and degrade customer service.

To respond to the continuing evolution of the high-tech threat, Detica Group plc has launched a new digital forensics division, Detica Forensics, to enhance its Information Intelligence services for commercial and government organisations. Detica Forensics builds on the recent acquisition of Inforenz Limited, a company that has developed an enviable reputation through its work for commerce, law enforcement agencies and regulatory bodies.

“Data reaches into every aspect of an organisation, from brand and reputation, to regulation and compliance. Organisations need to be proactive in protecting their critical data resources and dealing efficiently with a digital incident should one occur,” explains Andy Clark, Head of Detica Forensics. “In the modern economy, digital forensics is a critical tool in protecting organisations from the considerable array of digital risks they face. The investigative capabilities of Detica Forensics significantly enhance Detica’s Information Intelligence services and, in particular, complements the fraud detection solution. Clients will be able to enhance their existing preventative and detective countermeasures with a forensic investigation capability that follows the complete evidential chain from keyboard to courtroom.”

Detica Forensics investigates unusual, unauthorised and illegal computer activity to help to combat fraud and reveal hidden information for commercial, regulatory and law enforcement agencies. Services include preliminary and full investigations, Digital Incident Readiness Reviews, cryptography consultancy, specialist data recovery, forensics training and access to accredited expert witnesses.

Clark concludes: “Detica Forensics will appeal to any organisation that understands the value of its data and information assets. Security can never be totally guaranteed and it is therefore essential to have ways to investigate information leakage, to monitor data traffic and to uncover concealed data. Financial, legal and telecommunications companies will be especially interested in our services, but we also expect considerable interest from the rapidly growing number of organisations needing to secure high value intellectual property.”

For more information, see

The initial contract duration is six months with a value for Detica Inc of approximately $500,000. Thereafter, the contract provides the client with options to extend annually for up to a further four years at a similar rate of spend. The work is being undertaken exclusively by the Group’s US team which now numbers 17 and continues to grow steadily.

Tom Black, Detica Group’s CEO said, “We are delighted to have won this project which adds to the increasing momentum of our US business and strengthens significantly our relationship with a major US Government client. This is a high-value consulting engagement which emphasises the underlying quality of people and client relationships that Detica Inc is developing.”