Stop eCrime Working Group

The emergence of the electronic crime (ecrime) plexus has confronted industry, law enforcement, nation states and international treaty organizations with a seemingly intractable problem: how can ecrime syndicates be systematically countered and brought to justice when they can move freely and instantaneously across international frontiers? In practical terms, the larger community of interest is left with the question of just how it can make ecrime as manageable as conventional crime.

The Anti-Phishing Working Group (APWG) and IEEE-SA members in 2010 organized an effort focusing on how to deal with electronic crime at an industry- and government‑ impacting level. This new working group, chartered under the IEEE Standards Association Industry Connections Security Group (ICSG), is called ʺStop-eCrimeʺ. The Stop-eCrime Working Group deals with electronic crime and its threat to society and the economy that are dependent on information and communications technologies.

Our goal is to drive change by helping citizens, businesses and governments understand that electronic crime is, and why they have a responsibility to help stop it. We strive to demonstrate how electronic crime can be better managed through establishment of technical standards, data exchange protocols, model operational systems and through crafting of industrial and public-sector data policies that will help industry and government effect a more unified response.

Such a system could be fashioned along the lines of an epidemiological response model typically employed by public health agencies, specifically in its operational profile of routine event data exchange and analysis, and in its coordinated programs of remediation.

Stop-eCrime Working Group is focusing on three fundamental, inter‑related objectives: Gears
  1. The development of taxonomies, technical standards, protocols and resources to exchange data in response to electronic crime events to facilitate security countermeasures, forensic applications, and provenance-tracing routines. 
     
  2. The establishment of formal operational protocols and model operational systems for the remediation and securing of networked machines that have been commandeered into the electronic crime infrastructure (to routinize hygienic processes to keep network resources out the hands of criminal actors).
     
  3. The establishment – or modification – of existing (industrial and public) policies, regulations, laws and treaty protocols that impede, or indirectly enervate systematic data exchange among responders 
 SeCWG is assembling responder stakeholders from industry, government and the community of NGOs to engage technical, operational and policy aspects of ecrime management at a single workbench. Contemporaneous engagement of these issues will allow SeCWG to exploit efficiencies by negotiating conflicts in technical standards, operations and data policies at the workbench – instead of the usual experiential mode of deployment, conflict/gap discovery and subsequent remediation and development of relevant standards and operational models.

The Stop-eCrime Working Group has set out to create impactful results in a multi‑phase approach, within a timeline that is measured in months rather than years. Toward that end, SeCWG is working on the following deliverables and are seeking collaborators to help develop them:
  • Gap Analysis 
  • Identifying missing technical, operational and policy components required for a systematized and universally deployable cybercrime response paradigm 
  • Measurement 
  • Infections 
  • Monetary Impact 
  • Metrics: How are we going to measure them? 
  • Common Taxonomy/Glossary/Vocabulary 
  • Guidance for Industry, Academia, Government and Consumers 
  • Data Exchange 
  • Routinized Mitigations 
  • Clean-up Tools 
  • Educational Materials 
  • Communication Protocols 
  • Model operational standards for cybercrime event data exchange 
  • List of existing related standards, guidelines, etc.
 The SeCWG wants your help, as a stake‑holding institution with important points of view of the cybercrime management problem. The IEEE’s working group, coordinated with the APWG, proposes an unprecedented coordination of development for operational systems, technical standards and data policies within the same research and development program.

Participants in the SeCWG will be able to work with eCrime fighting stakeholders from around the world to define standards, protocols and operational schema to fight electronic crime; to keep pace with these developments to ensure your institution’s system’s interoperability; and to invest your institution’s perspective and experience in the development of these enduring resources.

If your company or NGO believes it can contribute to the SeCWG effort, please contact the working groups leadership, at secwg@apwg.org.