[X] My Assistant

[Jaid]

I was about to launch into a rant about how magicians can track based on ritual samples, but I've only just noticed this seems to have been abolished in SR4 (or if I have missed it, someone please provide me with a page reference). If nothing else, forensics can help build a pattern on a SINless person on the premises and use blood, hair, fingerprints, etc, to build a profile and do a forensic reconstruction of the events. From that they could piece together an MO, genetic profile of the people involved, astral signatures, etc.

still around but only in street magic iirc. requires a metamagic now though i think.

No but it comes back to what I said earlier: if the runners stole something of significant value it stands to reason that their mark may want it back and may take extraordinary actions to do so. Certainly not in all cases but in some situations for sure.

- J.

perhaps, but why should the corp assume that the runners still have whateveritis? certainly, pursuit is likely. and absolutely, if the runners can't shake the corp pursuit they'll have problems. but once they do, they hand it off to their mr J and now there's no real point in going after them anymore. you can probably find out what Mr J they were working for using much cheaper routes (after all, you didn't think that renraku doesn't have contacts of it's own, did you?) and not risk a major PR disaster for their retaliation to boot.

[Larme]

still around but only in street magic iirc. requires a metamagic now though i think.

Biological samples now degrade within hours as far as material links go. Your hair, skin, blood, or whatever loses your essence pretty fast, it's no longer the instant auto death kill that leaving biological evidence behind used to be. What they need to establish a material link that won't degrade immediately is one of your treasured possessions, which isn't all that easy for them to get. Or so I recall, at least (IMG:style_emoticons/default/wink.gif)

[Jaid]

Biological samples now degrade within hours as far as material links go. Your hair, skin, blood, or whatever loses your essence pretty fast, it's no longer the instant auto death kill that leaving biological evidence behind used to be. What they need to establish a material link that won't degrade immediately is one of your treasured possessions, which isn't all that easy for them to get. Or so I recall, at least (IMG:style_emoticons/default/wink.gif)

with the metamagic, they can do it with a picture.

checking back, you don't need the metamagic for material links, and with proper (non-chemical) preservation techniques the sample can be useful for quite some time.

a treasured posession is better than a non-treasured (both require the metamagic, but the treasured possession gives you a better dice pool) but both can work, as can an object that was merely handled by the target recently. and, as i said, even a picture or a doll can be used with that same metamagic.

[The Jake]

still around but only in street magic iirc. requires a metamagic now though i think.

Yeah I think its Sympathetic Ritual or something.

perhaps, but why should the corp assume that the runners still have whateveritis? certainly, pursuit is likely. and absolutely, if the runners can't shake the corp pursuit they'll have problems. but once they do, they hand it off to their mr J and now there's no real point in going after them anymore. you can probably find out what Mr J they were working for using much cheaper routes (after all, you didn't think that renraku doesn't have contacts of it's own, did you?) and not risk a major PR disaster for their retaliation to boot.

Sure, there is that element. When I say the corp will "go after the runners" - I mean to the extent of retrieving prototype of XYZ widget, not for the purpose of retaliation against the individuals involved.

Imagine this -
Runners steal something so valuable, that Renraku cannot write it off. Let's say they've found a revolutionary encryption algorithm that cannot be cracked by current conventional technology (for argument's sake). Let's further assume this is the only copy, years of effort, millions of nuyen in research, etc. Maybe runners stole the backup tapes, copied research data and tampered the existing data enough to screw up the researchers but not enough for people to notice for awhile.

Something has to be done. So some big wig realises his career is on the line if this isn't solved. There is a team internally he can call on, but it costs several hundred thousand nuyen just to page them. Then from when the investigation starts, that bill goes up. Astronomically. And it gets taken directly out of his cost centre and the investigation gets oversight from the Board. All his security, business practises, etc, will come under review. It will be a painful process for all involved -and he knows it. But he doesn't have a choice. He hits the button. In come the Renraku 'Retrieval Specialists'.

These guys would have access to ritual sorcery, metamagics, bleeding edge forensics, psych profiling, etc, to be able to piece together exactly how the job was pulled. They then do research into what teams possess those skillsets, use that MO, who would be interested (and more importantly able to fund) that job, etc. They then feed that information to teams of corporate Johnsons and fixers to scour the shadows for any hint or sign of people interested in that data and teams with those skills. The Retrieval Specialists then review the evidence, begin the process of elimination, focusing on the highest probable matches, using expert systems to aid their work.

These Retrieval Specialists then call in the Red Samurai to start kicking in doors and shaking down people for dirt. God forbid the PCs left one piece of hair, skin or blood at the scene and it does not match to a valid SIN, you can bet your ass ritual sorcery would be used to find them.

Now, the real question:
Would these guys retrieve the data? Maybe. Success rate I'm guessing would still be pretty low, but given that they are only called when its worthwhile, from a risk perspective it is probably worth it.

Would they care about the runners? Only to the extent of getting what they need.

- J.

[LynGrey]

What I haven't seen is the self proclaimed code most sammi's take. Most Sammis are Street Sams cause of its a modern day Sam, which mean they have a type of code of honor they follow. Who eles would selflessly hold the guards back while everybody get in the get away car, who else would you get to go first into that room of guards? I mean yes your mage can cut a man in half with his healing hands, a rigger/hacke can shoot his rifle as good as the Sammi, BUT something i've noticed is they don't have that code about them.

You can Quote me on this: "Buying all the 'ware, add-ons, being up to date weapons and blades doesn't make you Street Samuarai.... being a complete bad ass does."

Either way, the Steet Sam has evolved into seperate specialities lateley: Bullet Depository, Gun Bunny, Demo expert, and what not. I'm a personal fan of the Bullet Depository (IMG:style_emoticons/default/wink.gif) But a true Sam is one that can do the Killing and keep Ticking... he gets shot..so what, he winces and the adrenlin pump kicks into till he gets to the nearist street patch joint.

[Dumori]

Remember that if it worth that much the Corp might just try to one up the other Corp. Out pay the runners to give it back. Of corse some corps/johnsons might play evil and force them to do another job as well but othering more is likely the best bet to get some thing back.

[counterveil]

Extraterritoriality really does throw a monkey wrench into the whole system. Hadn't considered that angle. That really does put a damper on things. The fighting among the megas does create a great place for people to hide.

This, for me, is one of the primary reasons that corps don't (and can't, realistically), go directly after runners based solely on forensic evidence. I really agree with Adarael here. This is Shadowrun, where the corps are at each others' throats and it's very unlikely they would share information about perpetrators with each other (and with Lone Star, for that matter). Surely, there are bits and pieces of evidence at various corporate databases that reveal a little about a given 'runner, but it's not this massive worldwide searchable database that every corp has access to. If that were the case, I would just play Paranoia and put my SR books down.

Also, very much on the same page with Larme. It's not generally cost-effective to go after the 'runners for pride and/or vengeance. The times when corps go directly after runners is when they are a vital piece of the information pie that a corp needs to get its budget back in the black.

[Larme]

Good point counterveil. It's really a prisoner's dilemma for the corps. If they all worked together, shared information with each other and the cops, they'd be able to try and stamp out shadowrunning as a business. However, in order for that to work, they'd all have to trust each other. If one corp withholds information or provides misleading information, they'll simply put those shadowrunners into their own secret "do not allow on premises" list, and let those runners run wild all over the other corps. Because they can't possibly trust each other, they can't possibly work together. Any corp that tries collaboration is going to be taken advantage of at the first possible opportunity...

And let's not forget, the cops are rival corps too! Many megas have their own private security contractors, and would love to see the Star or Knight Errant go down by failing to catch criminals. Report to the cops? More like leak information about the crimes to the public without giving the cops one shred of useful evidence! Either that, or cover it all up, because you don't want to show weakness in front of the other corps by having it known that you were successfully hit.

[The Jake]

I don't think Corps would share their intel like that at all.

I do see the split argument on fake SINs however.

It comes down to this:
Either the data on the false SIN is completely fabricated or duplicated from someone else (i.e. not yours) and upon close inspection it will not stand up to snuff - OR the fake SIN does contain your real data, in which case it will stand up to scrutiny, however it does mean there is a risk someone will get your data and could use it to pwn you (in one way or another).

In the digital world, there is no other way around it I'm afraid. Shy of refusing to get a SIN (fake or otherwise) at all. And we all know how well that goes in 2070...

- J.

[Glyph]

I have always (as far as I can recall) seen the corps like that - they will make some effort to track down people, sure, but mostly, it's part of business. The one thing that can change this is if the PCs cause truly massive damage. Shooting some guards on the way out with a valuable prototype is one thing, but blowing up buildings or going on a massacre is another thing. That is one of the few ways that the runners can bring the full wrath of a corporation down upon themselves, because the corporation can't let it slide.

Not that there aren't other ways - some corporations, such as Saeder-Krupp and Aztechnology, take it nearly as personally as the Yaks would. And sometimes an individual within a corporation can get pissed that their buddy was killed, their life's work was destroyed, etc. Even a security grunt with enough spare time can be a nuisance to the runners, but a mid-level manager or the like can make the PCs' lives miserable, at least until his waste of company resources catches up to him.

[toturi]

I don't think Corps would share their intel like that at all.

I do see the split argument on fake SINs however.

It comes down to this:
Either the data on the false SIN is completely fabricated or duplicated from someone else (i.e. not yours) and upon close inspection it will not stand up to snuff - OR the fake SIN does contain your real data, in which case it will stand up to scrutiny, however it does mean there is a risk someone will get your data and could use it to pwn you (in one way or another).

In the digital world, there is no other way around it I'm afraid. Shy of refusing to get a SIN (fake or otherwise) at all. And we all know how well that goes in 2070...

- J.

Or that the reason why fake SINs are so damn tough to fabricate and maintain is that it has one set of erronous data when someone is tracing you and it has your set that is used when the SIN is being verified.

[The Jake]

Or that the reason why fake SINs are so damn tough to fabricate and maintain is that it has one set of erronous data when someone is tracing you and it has your set that is used when the SIN is being verified.

How do you falsify DNA or fingerprints?

Short answer: not easily...
Long answer: Yes there is cyberware as well as tools to allow mundanes to forge fingerprints. DNA alteration is still in the realms of cyber only last I checked however. If the DNA sample taken from you does not match the SIN, you are in trouble. Obviously this wouldn't be needed in most uses of a fake SIN but it would be at border crossings, possibly when pulled up by Lone Star on grounds of an offence (or when you're arrested), etc.

Bottom line, a fake SIN with completely falsified data is fine if you want to walk down the street, go to StufferShack, buya Nuke-It-Burger and soyacaf and watch a sim. It's not sufficient if you want to walk into an airport where you and your ID will undergo rigorous checks and your DNA doesn't match your SIN. This goes double if you are an un-Masked magician, have cyberware or carry guns (better make sure you have good permits).

It has been well established that all airports do a decent level of verification (the Aztlan Sourcebook had VERY strict entry requirements). By 2070 I don't see why these wouldn't be standard for most, if not all countries. I'm assuming the process would be as quick as it is in Gattica - submit a finger for a blood sample as well as fingerprint analysis, plug in your credstick which holds the SIN and check in your luggage. Questionable items will be checked against your ID to ensure you have valid permits (which may or may not be sufficient for customs officials).

- J.

[toturi]

How do you falsify DNA or fingerprints?

Short answer: not easily...
Long answer: Yes there is cyberware as well as tools to allow mundanes to forge fingerprints. DNA alteration is still in the realms of cyber only last I checked however. If the DNA sample taken from you does not match the SIN, you are in trouble. Obviously this wouldn't be needed in most uses of a fake SIN but it would be at border crossings, possibly when pulled up by Lone Star on grounds of an offence (or when you're arrested), etc.

Bottom line, a fake SIN with completely falsified data is fine if you want to walk down the street, go to StufferShack, buya Nuke-It-Burger and soyacaf and watch a sim. It's not sufficient if you want to walk into an airport where you and your ID will undergo rigorous checks and your DNA doesn't match your SIN. This goes double if you are an un-Masked magician, have cyberware or carry guns (better make sure you have good permits).

It has been well established that all airports do a decent level of verification (the Aztlan Sourcebook had VERY strict entry requirements). By 2070 I don't see why these wouldn't be standard for most, if not all countries. I'm assuming the process would be as quick as it is in Gattica - submit a finger for a blood sample as well as fingerprint analysis, plug in your credstick which holds the SIN and check in your luggage. Questionable items will be checked against your ID to ensure you have valid permits (which may or may not be sufficient for customs officials).

- J.

Which is why when it is being verified as you, the DNA matches. When the SIN is being queried for your DNA it doesn't. In essense, when it is necessary to verify your SIN, the biometric data matches you. When it is not, it doesn't.

I am not saying that it has to be this way. I am simply speculating that it might be.

[Bob Lord of Evil]

For the OP topic,

I like the view that Mike Mulvihill gave me once. He envisioned SR as a futuristic version of Mission Impossible. You have one character that tends to be ever present but a pool of floaters that can be brought in for mission specific positions, think of them as guest stars for that episode. Tailoring the team for the mission seems to make a lot of sense to me. Every player has a small pool of very tightly specialized characters that do a few things very well and are brought in as needed.

If you need fire support there is nothing wrong with employing drones, far from it. As players though, I would be concerned about using the same one-trick pony too many times. At some point the GM is going to bring in a counter-measure and suddenly the team is going to be neck deep in the drek.

The only reason that I have a corp make an effort to track runners down is if there is some manner of financial upside to doing so. Such as the runner's have data that the corp doesn't want to see the light of day, that they came into possession of material that is valuable. I always do a cost to profit analysis to determine what sort of effort the corp would make. If the item is worth 10 million (IMG:style_emoticons/default/nuyen.gif) nuyen , I could see the corp putting 500,000 (IMG:style_emoticons/default/nuyen.gif) of assests in play. Even then, how much exposure is the corp risking?

Pure revenge? While there might be individuals within a corp that have an axe to grind at some point they are going to be held accountable for their expense accounts. If you are a suit, your job security is not at risk, and all that happened is that you lost some face and your rep got dinged how much are you going to risk for payback? What happens if your higher ups find out about it?

[The Jake]

Which is why when it is being verified as you, the DNA matches. When the SIN is being queried for your DNA it doesn't. In essense, when it is necessary to verify your SIN, the biometric data matches you. When it is not, it doesn't.

I am not saying that it has to be this way. I am simply speculating that it might be.

I think I get what you are saying.

Correct me if I'm wrong but you're saying that a hacker/ID forger is sitting behind the scenes and monitoring when the SIN is used and adjusts the data to match when it is being searched (?).

That is not how fake SINs are processed. It is a one-way encoding. This is well established by RAW because of the number of systems that must be compromised in order to lay down the necessary data to construct a SIN that appears valid for all intents and purposes.

DWH and I are on the same page in this regard. Because it is a one way encoding, the problem therein is that a DNA check is a snapshot in time - your real DNA versus that on the SIN (whether it is your real DNA encoded on that SIN is another matter entirely). Since nobody is changing it, you have the dilemma of deciding whether you want to use your real DNA or a fake DNA signature. The answer to this question depends on what level of scrutiny you need it to stand up to.

- J.

[Bob Lord of Evil]

I think I get what you are saying.

Correct me if I'm wrong but you're saying that a hacker/ID forger is sitting behind the scenes and monitoring when the SIN is used and adjusts the data to match when it is being searched (?).

That is not how fake SINs are processed. It is a one-way encoding. This is well established by RAW because of the number of systems that must be compromised in order to lay down the necessary data to construct a SIN that appears valid for all intents and purposes.

DWH and I are on the same page in this regard. Because it is a one way encoding, the problem therein is that a DNA check is a snapshot in time - your real DNA versus that on the SIN (whether it is your real DNA encoded on that SIN is another matter entirely). Since nobody is changing it, you have the dilemma of deciding whether you want to use your real DNA or a fake DNA signature. The answer to this question depends on what level of scrutiny you need it to stand up to.

- J.

Just curious is there any specific rule in SR4 that would prohibit creating an erase time bomb that you could attach to a SIN and the corresponding data that at point X in time it simply erases said data?

[The Jake]

Just curious is there any specific rule in SR4 that would prohibit creating an erase time bomb that you could attach to a SIN and the corresponding data that at point X in time it simply erases said data?

In real terms that is a logic bomb and useful for one-shot or disposable SINs (both of which exist in my game). That isn't canon per se, just my extrapolation. If a Johnson supplies a fake SIN for a job, we assume the SIN is of this type.

- J.

[toturi]

I think I get what you are saying.

Correct me if I'm wrong but you're saying that a hacker/ID forger is sitting behind the scenes and monitoring when the SIN is used and adjusts the data to match when it is being searched (?).

That is not how fake SINs are processed. It is a one-way encoding. This is well established by RAW because of the number of systems that must be compromised in order to lay down the necessary data to construct a SIN that appears valid for all intents and purposes.

DWH and I are on the same page in this regard. Because it is a one way encoding, the problem therein is that a DNA check is a snapshot in time - your real DNA versus that on the SIN (whether it is your real DNA encoded on that SIN is another matter entirely). Since nobody is changing it, you have the dilemma of deciding whether you want to use your real DNA or a fake DNA signature. The answer to this question depends on what level of scrutiny you need it to stand up to.

- J.

Yes, a number of systems must be compromised. But how and what exactly is done has not been specified to my knowledge. For example, a program could have been embedded into those databases or a sub routine was embeded into the actual fake SIN itself that causes it to refer to a hidden file within the database when it is queried.

[The Jake]

Yes, a number of systems must be compromised. But how and what exactly is done has not been specified to my knowledge. For example, a program could have been embedded into those databases or a sub routine was embeded into the actual fake SIN itself that causes it to refer to a hidden file within the database when it is queried.

Even hidden data is data that is still in existence somewhere (or in some form). Which means it still can be obtained by someone/somehow - potentially for nefarious purposes. This is the crux of the issue I am trying to make.

Just as an aside, I work in IT Security as a security consultant/penetration tester (although I don't get much time for this side of things anymore but I'm still across it)/security architect (I wear many hats in this role). Amoung my PCs I have a senior system administrator/network engineer with security experience and another security engineer (both which are older and more experienced than I am in many areas). As you can imagine, anything I come up with has to be technically feasible to work for these two guys or I'll get challenged on it. Not that this holds any weight in a fictitious setting but helps when trying to extrapolate fluff and aiding players with the whole "suspension of disbelief" thing.

The whole wireless thing to us strikes us as ludricrous. But we just try to envision a world where IT Architects roamed free and security was completely disregarded (which isn't that hard to envision sadly enough).

Cheers,

- J.

[Omenowl]

Ok here is my view of a couple of things.

First it is just business. If it doesn't make economical sense then it won't be done usually. Yes, there is the exception where revenge takes precedence or someone is made an example of. I view that as a minority. The majority of corporations look at shadowrunners as assets when they are being paid and pests otherwise. To a corporation a shadowrunner is like a spider. You don't want one in your house, but you do want them around. Also corporations need to have shadowrunners so alienating them tends to be self defeating. You can't attack your opponents without a war and your opponents can use proxies to attack you without fear of retribution. If Aztlan has geeked the last 5 shadowrunner groups they hired then I am pretty sure no one will work for them again. Also many shadowrunner will view you as fair game and rules of warfare are off.

Secondly, the notoriety rating determines how a corporation will react. High notoriety shadowrunners tend to get there by incompetence and violence. The point of hiring a shadowrunner is for deniability and clandestine work. No corporation will stand for front page news of an attack without retaliation. However, if something goes missing or the break in was not reported then the share holders don't notice, the stocks don't drop and while work is lost, prestige and power have not been compromised. So it is in the best interest of runners to limit damage so corporations don't come after you and they also don't team up to take you out. Leave a bloodbath across five corps' territory and see if they don't work together.

As for fake sins. I look at it differently. They are real sins, but the character is borrowing or assuming another's identity . A level 1 sin is probably fake, but a level 3 is a real sin with biometric data, etc to pass everything except a fully vetted background check. Instead of a universal sin database I think every corporation and government keeps separate and private databases. When your sin is checked it goes to the "holder" of the sin data and validates the information there. If the holder validates the sin then reports the findings to the checker, but does not give much information. This does two things. One is it allows corporations and governments to have covert ops with multiple identities that check out as real. Two it means shadowrunners aren't constantly getting flagged for a fake sin. It is only when the holder flags the sin will an error come up.

Now for the sin ratings. Very low ratings means you have adopted someone else's identity, but as long as you keep a low profile it won't be flagged. Maybe the person died without being reported and his biometric data was changed to match the runner's, etc. Or maybe the low rating has a low credit, a minimum check for balance or someone else uses the credit also and as such if you use it for major purchases it will be flagged. Now high level sins are deep cover. The only way to discover they are fake is to do a full on the ground check with acquaintances, education, etc. It takes months to break these down to find out the person was actually an elf at birth rather than human. My general rule of thumb is it is an opposed test with 1 combat turn for a 1 rating, 1 minute for a 2 rating, 1 hour for a 3 rating, 1 day for a 4 rating, 1 week for a 5 rating and 1 month for a 6 rating. Threshold is the rating.

So to sum that up
1 buys you a happy meal no questions asked or fakes your age for a club
2 buys you groceries and allows you to walk in middle class or high class neighborhoods without red flags
3 gets you on a plane
4 lets you buy a house or confidential security clearance
5 lets you get a secret security clearance
6 lets you get a top secret security clearance

[The Jake]

I really don't think people are getting what I'm trying to say (or they are being deliberately obtuse) but the idea of validation in the SIN checking process is to certify one person is who they say they are.

E.g.

I present to customs my Rating 6 Fake SIN (kindly provided by my friendly ID forger contact). Like Omenowl said, the databases are indeed managed separately. He happens to have hacked a nice Knight-Errant database to make me appear as a security consultant for them, and forged the appropriate passes for me to carry around my gear.

However, airport customs being what they are, they ask me for two things: one is my credstick (which contains the SIN), the other is my fingerprint for a DNA sample.

The credstick is inserted. Looking at my credstick data, it identifies me as a Knight-Errant employee and it contains my SIN, my employee ID number, etc. The ID checker knows to verify my SIN with the Knight-Errant database. So it asks Knight Errant "Hey, we got this SIN - is this guy a valid employee?". Now because the system has been previously owned, it responds with a resounding "Yes!"

My fingerprint is scanned and blood sampled via pinprick. The analyser takes the sample and develops a DNA fingerprint. The ID Checker submits that DNA fingerprint to the Knight-Errant database "hey we got this DNA sample here, does this match your employee ID <blah>?". Again, the K-E system responds back with a "Yes!".

Customs official sees my ID and DNA is all a match and waves me through.

-----

Now there are a number of possible methods that this process hypothetically could be defeated. Not delving into the degree of difficulty, here's some that I see:
1) Hacking the ID checker at the airport (intercept requests regarding your SIN and respond with false information),
2) Hacking the K-E system to respond as an affirmative - either by intercepting the requests and altering the replies on the fly or by placing false datastores in the K-E node (heck, maybe just hack the K-E node to respond in the affirmative to any DNA sample that is presented with that SIN. That'd be interesting...),
3) Using false fingerprints and blood capsules in the fingerprints to present a false DNA (ala. Gattica - although I'm not sure SR has this equivalent by RAW).

Bottom line, there's a number of ways to tackle it - and yes you could possibly use someone else's DNA - but does become problematic. Occam's Razor suggests that it would be your DNA used and your DNA on file (for the most part, unless specified otherwise).

- J.

[Critias]

I propose that after every semi-successfull Shadowrun, the GM rolls a d6. On a roll of 1, the team is in that unlucky 17% where a vengeful member of management or head of security wants them made an example of. On a 2+, the corp realizes that what's done is done, there's no use crying over spilled milk, and they throw their resources at re-stealing the macguffin instead of just punishing the thieves that stole it from them.

Ta da, problem solved!

[Bob Lord of Evil]

In real terms that is a logic bomb and useful for one-shot or disposable SINs (both of which exist in my game). That isn't canon per se, just my extrapolation. If a Johnson supplies a fake SIN for a job, we assume the SIN is of this type.

- J.

Thanks, good to know.