Entity Resolution to Combat Criminal and Terrorist Activities
Posted by 
Identification is an extremely complex process that is only compounded by increasing data volumes, complex relationships, and tightly coupled application and data architectures.
Many government organizations are charged with combating terrorism, identifying criminals and effectively applying immigration policies. All these activities require that persons of interests (and their organizations and networks) be accurately identified. Identification is an extremely complex process that is only compounded by increasing data volumes, complex relationships, and tightly coupled application and data architectures.
Counter-terrorism and counter-intelligence initiatives are the domain of the Departments of Homeland Security, Justice and Defense, and other law enforcement, intelligence and immigration and border control agencies. These groups share many common goals in their efforts to combat criminal activities that impact national security, including:
- Stopping terrorism by finding potential threats before they happen
- Reducing crime by identifying potentially harmful persons of interest when in custody and during field investigations and analysis
- Protecting the nation from potential threats trying to enter the country and detecting other unlawful border crossings
- Meeting or exceeding citizen service expectations (credentialing, verification, renewals, etc.) in an increasingly critical and high-risk environment
- Reducing costs, increasing efficiency and improving the outcome of national security activities and investigations
Despite their common goals, intelligence, integrated law enforcement and immigration and border patrol organizations have their own unique set of demands and requirements. In coming posts, I’ll discuss how each type of organization works and how entity resolution could help them achieve better results.
Gartner has been tracking the entity resolution market for several years and recently stated in their June 2009 “Hype Cycle for Master Data Management, “Entity resolution and analysis was previously an obscure technology that has come to the forefront as a result of world events and market forces where it is used to identify the use of false identities and networks of individuals who are attempting to hide their relationships to each other.”
So how do they define entity resolution? According to Gartner, entity resolution is “the capability to resolve multiple labels for individuals, products or other noun classes of data into a single resolved entity when pseudonyms, alias names or other synonym-style constructs exist. This is especially true in cases wherein there exists intentional falsification of information or the creation of false identities. While most prevalent in detecting perpetrators of criminal or illegal activity, more-commercial applications exist as well.”
The other noun classes that Gartner refers to implies the entity resolution problem for persons of interest is inherently multi-domain with its emphasis upon not only persons but also objects, locations and events.
Now that we’ve got a definition, we can move into use cases in the next posts.
Connecting the Dots Across the Intelligence Community
Integrated Law Enforcement - Catching Criminals
4 Responses »
Trackbacks
Leave a Response
Entries(RSS)
Thanks for a well-written, informative post.
While the Gartner definition nicely captures the value of “first degree” entity resolution, it falls short by omitting non-obvious relationship detection. Finding out "who's who" is very important, but in many application domains, pinpointing “who knows whom” is equally valuable and sometimes critical.
You inspired a new piece today on this topic ( http://www.identityresolutiondaily.com ).
Interesting and informative. But will you write about this one more?
Bob, I appreciate the mention and referenced quote with Gartner's definition of entity resolution. I agree that some analysts' definitions are a bit shortsighted regarding entity resolution. To avoid confusion, at Initiate we use the term "entity correlation" to differentiate between resolving “who is who” (entity resolution) and “who knows who” (entity correlation). Both activities go hand in hand, but more often than not occur in a particular order. We feel that “correlation” more accurately describes the function of deriving relationships between entities. Correlation is much more relevant and valuable when applied to resolved entities. To your point, though, both are extremely valuable in their own right and have their place.
A previous blog that I wrote entitled “Kicking Down the Right Door: Multi-Domain MDM” (http://blog.initiate.com/wordpress/index.php/2009/08/20/kicking-down-the-right-door-multi-domain-mdm/), speaks specifically to entity correlation and discovery of non-obvious relationships across resolved entities.
I'm working on several more posts that will explore these topics - stay tuned.