Overview - Electronic Frontier Foundation · 2014-01-06 · SSP02-W T3 Domain--SSP DOn DNS Server DHCP Sever L-toNS L-DNS C H r Host-32-WT9 1 Domain •• WorkGroup-a - DO El —

Overview

• Current People, Space, & Operations (FY2009)

• Medina era Growth (FY2011)

• BACONRIDGE era (FY2015)

TOP SECRET//COMINT//REL TO USA, FVEY

TAO - Current Staffing

Civilians 30 Includes 1 AIA, 1 Intern

Military 30 U S A F -1 0U SA - 8 (2 on orders, 1 deployed)

USN -1 0 (2 x FIOC)USM C - 2

Total 60

Not Included in figures above:

Civilian 7 Selectees (2 arrive 11/10, 1 arrives 11/17, etc)9 Nominated7 External hires - 3 C JO 'd , 7 preliminary

Military 7 Chief , etc7 5 x U SA Great S k ills Billets7 2 (additional) F lO C ers not included (R&T)

Contractor 1 (TAO / ANT contract)As Of 11/3/2008


Igp Production Operations (POD)

FY07 FY08£ Olympus Tickets 6,360 9,126

£ | S H A R P FO C U S (S F2 ) 320 1940

PARCHDUSK (PD) 340 366

FOXACID Messages 12 17

sent to 2396 3446called back 419 672

exploited 154 262

Combat Operations |

Iraq

Afghanistan


F Y 2008OperationsCollection Exploit

Mexico Cuba

Colombia Venezuela



Active Development of Mexican Public Security

Secretariat (SSP)

WHITETAMALE

Derived From: Multiple Sources Declassify On: X I


Project Background

• DHS & ICN need for intelligence on drug trafficking, people smuggling, and border security issues

• Mexico'sr J f c ■ t h b u h U l U h : a supply chain opportunity

• H M h w h i i W . I T P - , h * L M ,

h l & I U . C U l & more

• Potential S2 Goldmine for multiple customers




S S G Enabling Strategy

• Target System Administrators & Telecommunication Engineers

• Expand access to include higher priority Mexican security related organizations

• Find and Exploits2 Targets of Interest



Exampie of Collected Diagrams


Example of ConstructedDiagrams

I D N S S e rv e i

L - D N S

I E m a il S e rv e rI D N S S t iv e r .D N S S e rv e r

-t.-E

_

U~ W T 2

D o m a in -- S S P D FS S P 0 2 - W T 3 D o m a in - - S S P

D O

n D N S S e rv e r D H C P S e v e r

L -to N S L - D N S

C H r H o s t - 3 2 - W T 9 1 D o m a in •• W o rk G ro u p

- a -

D O

E l ■

— W T S i D o m a in - W o rk G ro u p

D G

m m DI IS Server

L-DNSa__

- WT6Domain - afi

DG

1 1

D U O " » » l I -D o m a in — S S P D A

- W T 8 D o m a in S S P D A

E m a il S e rv e r C O N T E L E X C H

D H C P / D N S S e rv e r

E m a il S e rv e r C O N T E L E * C H _ 5 S

L-DNS

- W T 7 D o m a m •• S S P D A W lr e ie e s D G

I C T Y D H C P / D N S S e rv e r

D N S S e r v e r / W IN S

C O R E 2

- W T11 " I D o m a in — S S P D A D O

I D N S S e rv e r

C O M P A O 2 4 2 F C 7 3 7 W T I 1D o m a m - C R U P O _ t r a d a j o

- W C A N - N IC

D H C P S e rv e r

- W T 4 D o m a in - E N F F A

B e t - 4 0 4 B E C 8 C C ” W T1 3• w fi D o m a in - IN IC IO M S

rvere rve r

WHITETAMALECollaboration

TO P I: Identify human targets of interest C E S / NIE: Direct exploitation of WhiteTamale boxes S S G : Identify network targets of interest to getto these human targets TA O : A ccess the network to exploit and collect traffic

> E nabling a balanced approach towards survey and target developmentwith the goal of sustained collection and reporting

DNI at NSA TexasN ETA 2008: Example of end-to-end targetExternal customer (IN) > T O P I (C R N ) > T A O (Collection) > S 2 (Reporting)

AOR SupportG O A L: support Homeland Security requirements




NS/mPersonnel PlanActivity Cumulative Personnel

FY08 FY09 FY10 FY11 FY12 FY13 FY14 FY15ROC

Leadership (br/div/td) 3 4 5 5 5 6 6 6SWO 1 3 4 5 5 6 6 6Interactive Operators 8 25 40 52 65 79 83 86Production Operators 19 16 19 20 21 22 23 23Network Response (NWO/NIO) 6 7 11 13 15 17 19 20ROC Totals 37 55 79 95 111 130 137 141

| R&T[Leadership (br/div/td) 1 2 3 3 3 4 4 4|Analysts 12 27 44 54 59 67 72 81|r &T Totals__________________ 13 29 47 57 62 71 76 85|

CapabilitiesLeadership (br/div/td) 0 0 0 1 1 2 2 2Developers 3 6 13 19 26 32 35 38Capabilities Totals 3 6 13 20 27 34 37 40

LZ]TAO

TAO Leadership 3 3 3 3 3 3 3 3TAO Staff 1 1 1 1 1 1 1 1TAO Totals 57 94 143 176 204 239 254 270

TO P S E C R E T//C O M IN T //R E L TO USA, FVEY

TOP SECRET//COMINT//

TAO-

RW136B

I l f iX V i- t l i*Support RM138A

Blu<J 331 O pe iJ tio iis

R H 1378

Future DataCenter

U N D ERCONSTRUCTION

TAQAT *c h S lfl-A

IC N / T C N

TKiuia-t

U NDER

TAO 8

icwrcN

U.'LI.'-IL'C

TSO CMOKS PROCESS IW ,

RM 121

TAORM 118

MIC

TO P SECRET//COMINT//

R E L TO USA, FV EY

SpaceStatus of Room 137

• 13 Racks installed, powered, in use• CDR Operational• Next installation in November 2008

for FREEZEPO ST & DOCKETDICTATE

Schedule for Space A & B• Operational - 27 NOV• Currentiy,TAO - 60 persons

occupying 39 desks• Space management enabled by TDYs,

Training, Integrees, Shift-Work, Details• End of 2008, potential for 13 more

personnel

R E L TO USA, FV EY

TO P SECRET//COM INT//REL TO USA, FVEY

BACON RIDGEA REA S

Personnel #s Workstations Workstation Area SqFt TX=100sqft vs GA/HI=72sqft

TEX A S270210

21,000

Operations Floor Ops Breakout Room s

Large 350 sq ft Medium 250 sq ft

Small 150 sq ft Ops Breakout Room s Total

RO C Training Lab (RTL) Technical Demonstration Center (TDC) Maintenance Lab Data Closet Conference Room CavesBreak/Locker area

-700 800 732

(8) - 85 = 680 -850

Data Center Racks/sqft Total Sq Ft

200/9,450*42000

BACONRIDGE-2011 (BOD)

TO P SECRET//CO M IN T//REL TO U SA , F V E Y


Future

• COOP - from weather to load balancing

• Development - DNT, ANT, ?

• C N A - "Pushed outlike CNE" - Col


UNCLASSIFIED//FOR O FFIC IA L U SE ONLY

UNCLASSIFIED//FOR O FFICIA L U SE ONLY

Documents

Overview - Electronic Frontier Foundation · 2014-01-06 · SSP02-W T3 Domain--SSP DOn DNS Server DHCP Sever L-toNS L-DNS C H r Host-32-WT9 1 Domain •• WorkGroup-a - DO El —