new: [a.4] added

a.4-best-practices/content.tex

@@ -0,0 +1,436 @@
+% DO NOT COMPILE THIS FILE DIRECTLY!
+% This is included by the other .tex files.
+
+\begin{frame}[t,plain]
+\titlepage
+\end{frame}
+
+\begin{frame}
+	\frametitle{Plan for this session}
+	\begin{itemize}
+		\item Explanation of the CSIRT use case for information sharing and what CIRCL does
+		\item Building an information sharing community and best practices
+	\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Communities operated by CIRCL}
+\begin{itemize}
+        \item As a CSIRT, CIRCL operates a wide range of communities
+        \item We use it as an {\bf internal tool} to cover various day-to-day activities
+        \item Whilst being the main driving force behind the development, we're also one of the largest consumers
+	\item Different communities have different needs and restrictions
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Communities operated by CIRCL}
+\begin{itemize}
+        \item Private sector community
+	\begin{itemize}
+		\item Our largest sharing community
+		\item Over {\bf 900 organisations}
+		\item {\bf ~2000 users}
+		\item Functions as a central hub for a lot of sharing communities
+		\item Private organisations, Researchers, Various SoCs, some CSIRTs, etc
+	\end{itemize}
+	\item CSIRT community
+	\begin{itemize}
+		\item Tighter community
+		\item National CSIRTs, connections to international organisations, etc
+	\end{itemize}
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Communities operated by CIRCL}
+\begin{itemize}
+	\item Financial sector community
+	\begin{itemize}
+		\item Banks, payment processors, etc.
+		\item Sharing of {\bf mule accounts} and {\bf non-cyber threat infomartion}
+	\end{itemize}
+	\item X-ISAC
+	\begin{itemize}
+		\item {\bf Bridging the gap} between the various sectorial and georgraphical ISACs
+		\item New, but ambitious initiative
+		\item Goal is to {\bf bootstrap the cross-sectorial sharing} along with building the infrastructure to enable sharing when needed
+	\end{itemize}
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Communities operated by CIRCL}
+\begin{itemize}
+	\item Coming up - the ATT\&CK EU community
+	\begin{itemize}
+		\item Work on attacker modelling
+		\item With the assistance of Mitre themselves
+		\item Unique opportunity to {\bf standardise on TTPs}
+		\item Looking for organisations that want to get involved!
+	\end{itemize}
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Communities supported by CIRCL}
+\begin{itemize}
+	\item FIRST.org's MISP community
+	\item Telecom and Mobile operators' community
+	\item Various ad-hoc communities for exercises for example
+	\begin{itemize}
+		\item Most recently for example for the ENISA exercise a few weeks ago
+	\end{itemize}
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Sharing Scenarios in MISP}
+\begin{itemize}
+	\item Sharing can happen for {\bf many different reasons}. Let's see what we believe are the typical CSIRT scenarios
+        \item We can generally split these activities into 4 main groups when we're talking about traditional CSIRT tasks:
+	\begin{itemize}
+		\item Core services
+		\item Proactive services
+		\item Advanced services
+		\item Sharing communities managed by CSIRTs for various tasks
+	\end{itemize}
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{CSIRT core services}
+\begin{itemize}
+	\item Incident response
+	\begin{itemize}
+		\item {\bf Internal storage} of incident response data
+		\item Sharing of indicators {\bf derived from incident response}
+		\item {\bf Correlating data} derived and using the built in analysis tools
+		\item {\bf Enrichment} services
+		\item {\bf Collaboration} with affected parties via MISP during IR
+		\item {\bf Co-ordination} and collaboration
+		\item {\bf Takedown} requests
+	\end{itemize}
+	\item Alerting of information leaks (integration with {\bf AIL}\footnote{\url{https://github.com/CIRCL/AIL-framework}})
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{CSIRT proactive services}
+\begin{itemize}
+	\item {\bf Contextualising} both internal and external data
+	\item {\bf Collection} and {\bf dissimination} of data from various sources (including OSINT)
+	\item Storing, correlating and sharing own manual research ({\bf reversing, behavioural analysis})
+	\item Aggregating automated collection ({\bf sandboxing, honeypots, spamtraps, sensors})
+	\begin{itemize}
+		\item MISP allows for the creation of {\bf internal MISP "clouds"}
+		\item Store {\bf large specialised datasets} (for example honeypot data)
+		\item MISP has {\bf interactions with} a large set of such {\bf tools} (Cuckoo, Mail2MISP, etc)
+	\end{itemize}
+	\item {\bf Situational awareness} tools to monitor trends and adversary TTPs within my sector/geographical region (MISP-dashboard, built in statistics)
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{CSIRT proactive services - MISP dashboard}
+\includegraphics[scale=0.18]{screenshots/dashboard-live.png}
+\end{frame}
+
+\begin{frame}
+\frametitle{CSIRT proactive services - MISP dashboard}
+\includegraphics[scale=0.18]{screenshots/dashboard-trendings.png}
+\end{frame}
+
+\begin{frame}
+\frametitle{CSIRT advanced services}
+\begin{itemize}
+	\item Supporting {\bf forensic analysts}
+	\item Collaboration with {\bf law enforcement}
+	\item {\bf Vulnerability} information sharing
+	\begin{itemize}
+		\item {\bf Notifications} to the constituency about relevant vulnerabilities
+		\item {\bf Co-ordinating} with vendors for notifications (*)
+		\item Internal / closed community sharing of pentest results
+		\item We're planning on starting a series of hackathons to find
+	\end{itemize}
+\end{itemize}
+\end{frame}
+
+
+\begin{frame}
+\frametitle{CSIRTs' management of sharing communities for constituent actions:}
+\begin{itemize}
+	\item {\bf Reporting} non-identifying information about incidents (such as outlined in NISD)
+	\item {\bf Seeking} and engaging in {\bf collaboration} with CSIRT or other parties during an incident
+	\item Pre-sharing information to {\bf request for help} / additional information from the community
+	\item {\bf Pseudo-anonymised sharing} through 3rd parties to {\bf avoid attribution} of a potential target
+	\item Building processes for {\bf other types of sharing} to get the community engaged and acquainted with the methodologies of sharing (mule account information, border control, etc)
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{A quick note on compliance...}
+\begin{itemize}
+	\item Collaboration with Deloitte as part of a CEF project for creating compliance documents
+	\begin{itemize}
+		\item Information sharing and cooperation {\bf enabled by GDPR}
+		\item How MISP enables stakeholders identified by the {\bf NISD} to perform key activities
+		\item {\bf AIL} and MISP
+	\end{itemize}
+	\item For more information: https://github.com/CIRCL/compliance
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Bringing different sharing communities together}
+\begin{itemize}
+	\item We generally all {\bf end up sharing with peers that face similar threats}
+	\item Division is either {\bf sectorial or geographical}
+	\item So why even bother with trying to bridge these communities?
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Advantages of cross sectorial sharing}
+\begin{itemize}
+	\item {\bf Reuse of TTPs} across sectors
+	\item Being hit by something that {\bf another sector has faced before}
+	\item {\bf Hybrid threats} - how seemingly unrelated things may be interesting to correlate
+	\item Prepare other communities for the capability and {\bf culture of sharing} for when the need arises for them to reach out to CSIRT
+	\item Generally our field is ahead of several other sectors when it comes to information sharing, might as well {\bf spread the love}
+\end{itemize}
+\includegraphics[scale=0.3]{screenshots/sharing.jpeg}
+\end{frame}
+
+\begin{frame}
+\frametitle{Getting started with building your own sharing community}
+\begin{itemize}
+	\item Starting a sharing community is {\bf both easy and difficult} at the same time
+	\item Many moving parts and most importantly, you'll be dealing with a diverse group of people
+	\item Understanding and working with your constituents to help them face their challenges is key
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Getting started with building your own sharing community}
+\begin{itemize}
+	\item When you are starting out - you are in a unique position to drive the community and set best practices...
+\end{itemize}
+\includegraphics[scale=0.3]{screenshots/power-responsibility.png}
+\end{frame}
+
+\begin{frame}
+\frametitle{Running a sharing community using MISP - How to get going?}
+\begin{itemize}
+	\item Different models for constituents
+	\begin{itemize}
+		\item Connecting to a MISP instance hosted by a CSIRT
+		\item Hosting their own instance and connecting to CSIRT's MISP
+		\item Becoming member of a sectorial MISP community that is connected to CSIRT's community
+	\end{itemize}
+	\item Planning ahead for future growth
+	\begin{itemize}
+		\item Estimating requirements
+		\item Deciding early on common vocabularies
+		\item Offering services through MISP
+	\end{itemize}
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Rely on our instincts to immitate over expecting adherence to rules}
+\begin{itemize}
+	\item Lead by example - the power of immitation
+	\item Encourage improving by doing instead of blocking sharing with unrealistic quality controls
+	\begin{itemize}
+		\item What should the information look like?
+		\item How should it be contextualise
+		\item What do you consider as useful information?
+		\item What tools did you use to get your conclusions?
+	\end{itemize}
+	\item Side effect is that you will end up raising the capabilities of your constituents
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{What counts as valuable data?}
+\begin{itemize}
+	\item Sharing comes in many shapes and sizes
+	\begin{itemize}
+		\item Sharing results / reports is the classical example
+		\item Sharing enhancements to existing data
+		\item Validating data / flagging false positives
+		\item Asking for support from the community
+	\end{itemize}
+	\item Embrace all of them. Even the ones that don't do either, you'll never know when they change their minds...
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{How to deal with organisations that only "leech"?}
+\begin{itemize}
+	\item From our own communities, only about 30\% of the organisations actively share data
+	\item We have come across some communities with sharing requirements
+	\item In our experience, this sets you up for failure because:
+	\begin{itemize}
+		\item Organisations will lose protection who would possibily benefit the most from it
+		\item Organisations that want to stay above the thresholds will start sharing junk / fake data
+		\item You lose organisations that might turn into valuable contributors in the future
+	\end{itemize}
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{So how does one convert the passive organisations into actively sharing ones?}
+\begin{itemize}
+	\item Rely on organic growth
+	\item Help them increase their capabilities
+	\item As mentioned before, lead by example
+	\item Rely on the inherent value to one's self when sharing information (validation, enrichments, correlations)
+	\item Give credit where credit is due, never steal the accolades of your community (that is incredibly demotivating)
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Dispelling the myths around blockers when it comes to information sharing}
+        \begin{itemize}
+                \item Sharing difficulties are not really technical issues but often it's a matter of {\bf social interactions} (e.g. {\bf trust}).
+		\begin{itemize}
+			\item You can play a role here: organise regular workshops, conferences, have face to face meetings
+		\end{itemize}
+                \item Legal restrictions
+                        \begin{itemize}
+                                \item "Our legal framework doesn't allow us to share information."
+                                \item "Risk of information leak is too high and it's too risky for our organization or partners."
+                        \end{itemize}
+                \item Practical restrictions
+                        \begin{itemize}
+                                \item "We don't have information to share."
+                                \item "We don't have time to process or contribute indicators."
+                                \item "Our model of classification doesn't fit your model."
+                                \item "Tools for sharing information are tied to a specific format, we use a different one."
+                        \end{itemize}
+        \end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Contextualising the information}
+\begin{itemize}
+	\item Sharing technical information is a great start
+	\item However, to truly create valueable information for your community, always consider the context:
+	\begin{itemize}
+		\item Your IDS might not care why it should alert on a rule
+		\item But your analysts will be interested in the threat landscape and the "big picture"
+	\end{itemize}
+	\item Classify data to make sure your partners understand why it is important for them
+	\item Massively important once an organisation has the maturity to filter the most critical subsets of information for their own defense
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Choice of vocabularies}
+\begin{itemize}
+	\item MISP has a verify versatile system (taxonomies) for classifying and marking data
+	\item However, this includes different vocabularies with obvious overlaps
+	\item MISP allows you to pick and choose vocabularies to use and enforce in a community
+	\item Good idea to start with this process early
+	\item If you don't find what you're looking for:
+	\begin{itemize}
+		\item Create your own (JSON format, no coding skills required)
+		\item If it makes sense, share it with us via a pull request for redistribution
+	\end{itemize}
+\end{itemize}
+\end{frame}
+
+
+\begin{frame}
+\frametitle{Shared libraries of meta-information (Galaxies)}
+\begin{itemize}
+	\item The MISPProject in co-operation with partners provides a curated list of galaxy information
+	\item Can include information packages of different types, for example:
+	\begin{itemize}
+		\item Threat actor information
+		\item Specialised information such as Ransomware, Exploit kits, etc
+		\item Methodology information such as preventative actions
+		\item Classification systems for methodologies used by adversaries - ATT\&CK
+	\end{itemize}
+	\item Consider improving the default libraries or contributing your own (simple JSON format)
+	\item If there is something you cannot share, run your own galaxies and share it out of bound with partners
+	\item Pull requests are always welcome
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{False-positive handling}
+\begin{itemize}
+	\item You might often fall into the trap of discarding seemingly "junk" data
+	\item Besides volume limitations (which are absolutely valid, fear of false-positives is the most common reason why people discard data) - Our recommendation:
+	\begin{itemize}
+		\item Be lenient when considering what to keep
+		\item Be strict when you are feeding tools
+	\end{itemize}
+	\item MISP allows you to filter out the relevant data on demand when feeding protective tools
+	\item What may seem like junk to you may be absolutely critical to other users
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Many objectives from different user-groups}
+        \begin{itemize}
+                \item Sharing indicators for a {\bf detection} matter.
+                        \begin{itemize}
+                                \item 'Do I have infected systems in my infrastructure or the ones I operate?'
+                        \end{itemize}
+                \item Sharing indicators to {\bf block}.
+                        \begin{itemize}
+                                \item 'I use these attributes to block, sinkhole or divert traffic.'
+                        \end{itemize}
+                \item Sharing indicators to {\bf perform intelligence}.
+                        \begin{itemize}
+                                \item 'Gathering information about campaigns and attacks. Are they related? Who is targeting me? Who are the adversaries?'
+                        \end{itemize}
+                \item $\rightarrow$ These objectives can be conflicting (e.g. False-positives have different impacts)
+        \end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{False-positive handling}
+\begin{itemize}
+	\item Analysts will often be interested in the modus operandi of threat actors over long periods of time
+	\item Even cleaned up infected hosts might become interesting again (embedded in code, recurring reuse)
+	\item Use the tools provided to eliminate obvious false positives instead and limit your data-set to the most relevant sets
+\end{itemize}
+\includegraphics[scale=0.8]{screenshots/false-positive.png}
+\end{frame}
+
+\begin{frame}
+\frametitle{Managing sub-communities}
+\begin{itemize}
+	\item Often within a community smaller bubbles of information sharing will form
+	\item For example: Within a national private sector sharing community, specific community for financial institutions
+	\item Sharing groups serve this purpose mainly
+	\item As a CSIRT running a national community, consider bootstraping these sharing communities
+	\item Organisations can of course self-organise, but you are the ones with the know-how to get them started
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Managing sub-communities}
+\begin{itemize}
+	\item Consider compartmentalisation - does it make sense to move a secret squirrel club to their own sharing hub to avoid accidental leaks?
+	\item Use your best judgement to decide which communities should be separated from one another
+	\item Create sharing hubs with manual data transfer
+	\item Some organisations will even have their data air-gapped - Feed system
+	\item Create guidance on what should be shared outside of their bubbles - organisations often lack the insight / experience to decide how to get going. Take the initiative!
+\end{itemize}
+\end{frame}
+
+\begin{frame}
+\frametitle{Get in touch if you need some help to get started}
+\begin{itemize}
+\item Getting started with building a new community can be daunting. Feel free to get in touch with us if you have any questions!
+\item Contact: info@circl.lu
+\item \url{https://www.circl.lu/}
+\item \url{https://github.com/MISP} - \url{https://gitter.im/MISP/MISP} - \url{https://twitter.com/MISPProject}
+\end{itemize}
+\end{frame}

a.4-best-practices/images/logo-circl.pdf

@@ -0,0 +1 @@
+../../logos/logo-circl.pdf

a.4-best-practices/misp-overview.pdf

@@ -0,0 +1,734 @@
+%PDF-1.4
+%âãÏÓ
+1 0 obj
+   << 
+      /Title ()
+      /Author ()
+      /Subject ()
+      /Keywords ()
+      /Creator (yExport 1.5)
+      /Producer (org.freehep.graphicsio.pdf.YPDFGraphics2D 1.5)
+      /CreationDate (D:20161110075922+01'00')
+      /ModDate (D:20161110075922+01'00')
+      /Trapped /False
+   >>
+endobj
+2 0 obj
+   << 
+      /Type /Catalog
+      /Pages 3 0 R
+      /ViewerPreferences 4 0 R
+      /OpenAction [5 0 R /Fit]
+   >>
+endobj
+4 0 obj
+   << 
+      /FitWindow true
+      /CenterWindow false
+   >>
+endobj
+5 0 obj
+   << 
+      /Parent 3 0 R
+      /Type /Page
+      /Contents 6 0 R
+   >>
+endobj
+6 0 obj
+   << 
+      /Length 7 0 R
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+GauHqbDmm\DWSOF,(H9VlMVP<BY\Qh*aDK'2@AYh#$HES5L:V+,/r1rgTZ6`CQ_,$LI.^`^88oCl2:EL
+O$>l#".Z]hs*Xb@rSuda4Fd/'a!g9F_I!N=OfokQ0"uf4q;WQHr:B1907WTdYCHOMrqPM<?Fo3iJ,ePU
+r'1,HO8L$t>N?[l?iLAgoh(_*\\HSTQ$/hFs"=`Bcb7eT)u;M71\C]`T!_AYq.CS;r,j,qIf)#a6,1A\
+K)T;!m-OJ-T1p76n`>Rm4!nL!]HR385C`U's05#lDuKI;Vc*C"T#d7$B\3:Q'q743Nq)YGkKhg/p0o*9
+oBiYEM>^T3QG7\ZDVi/+h=!SVa8buPh%OXR^5r%:Ys7gu3jc<3ZPh)dO8jVtgA5OYq]A&o?D$W_Ef\PS
+ANB?G`5m].$Adr&p6jAkU8IoM)A)kRlutjFKWfekn?mcFcq3SMH7>Jol-S#ZSD+S[>b;a=,<55bo?q":
+o0^<mLo'M9Za9hccb(=Wkk9'd[*Q[_kH(>iC^gPZq0j`$,Xn4X.9Os2FTKe+We%o=p/49T3..CWfDp%D
+mBa%kZ[c%G\%8qjq(#iU!A'jkiTH6"+S^S4,j-&EO<`LP)o>[uH?hk77grVd1HG\D<j33ILV;?9F&U$$
++NbS*J1H7_3?(MPc5kWJFK<;.!,#05@"!7qbXG$G<^sn4YXYi(=7GC1-tc&ES_VW&gcDmMgP0dq;K<5L
+Df#i)Y&><b`YD=gf)nnE"-J99=Q->h-UVSI8_A\90]q%"qf<:\n4Zlu<<:B]+DH%SHeZkil2W3B(I-g+
+As]F0/e-)IK..,"Epo]hs84##q1JGDifHkGKklnA\t&9$J\`TR?'Y.;T?Q^'$c%l5[(46NrjhR)49.99
+`ceL7()_#@V'KCeTd/Ipd]G3ajPCa2d]G4LFG?stfu,Y\H1oRA>@F-%rS/@TD:k!XO"=k5pkt"UNK6nb
+Q"7YfU7Q?Q+q'H"7)F[?'"cdUlAWK&bQU(V*Yrt^d-9*,(7=-4)n_J)\BH9t76(tWn/qqF6!*B&'0Dnk
+!#F5gr4+#O&-PdMj3>qt'2J@W_/'IDJ\a1!5$]b!S_u.pVRFj#.($k?B2E7n*.&I\lJ'ue3NB/hi#Olk
+V]5>9^e&m-hCiI8G&A7XmF!l?rRYO.P`pTlLHR;+b7!Xl8+U[jMVItMo$A2QPT!c)+N%2B@%^<9&;R.U
+j$'S[`HmTPbtq"Q1'hB2q.iX^np+9b%qol.cLH"#EQm:OXO2HCQRUgs&\Lb&"QsAmF6;[L;F]Pm.9Ecq
+N38<2=GgTZ%1)#>=+:I.n'>Kh;8^$hZM\tldY=_jOZm;JUBt,C-<P[Q'C%$Ah,[UeB6:CH#jTaJ0^W^!
+1,XKk!UM';QK')GQusl79IR8!VH*gYe>4>VlkUl!$R3Y-4S"6R+[N)u0i5.!`%b_UN?C=DmQ<:1BMSdG
+B^%/'To[?Af)l8?GA+0(=]>oRJD<5=5?CKR8#HLKqBh#Ma81E7NWm0f'U4#op3J[i!Va<[ZI9q9EGuJ!
+?9rkPeZPQ%coKkm'U8;J"f:kJU7gilC5nr_`n%=9`7VtN4,=dXBr;,J:CiS,5u8VU)QXX;#>G"%8d"P7
+M4gNKV^X$rpIcC<SUqJa]6'$SIkHE_9(B(,?$gkU^>$>FZ(HY.3/Ea$\EFAoL;LmE3uoLnN9k89.eFcr
+43XBq;2;Ee+LIta5q.2F6Mm&hk"h$@gWOq.L`,&u^qK0g%(nou#ZCePg/Nb!*\!k&^Qd3P?+NM:@k#?S
+`7iZ.C?g"WQbp3:CfnBZ!R^rs(ge4oS#VZk^_/J1UQG(AILms:2po0RllD2:Ti]jG&64]QrHX+)Ol1s3
+aA%*q0'$2g&q!'VOM;&9,7!9;8&k<;D<#Hmk>k,i+$mu?fdE-NU^i(qg8>NeKm_o-Fs5b?Xf`$,"0Nd-
+01[7)Lc`3P7Xme\krJmph)6BLGFNScdre_8Z(2Z2:8b/\$e%7p[6f5+IXJ^3*%aq[+SN=om0,BOVgC^)
+f+:-X?=CX_+G's<,B&C2e'8f]]K5G1I9rJqYJlfULAU8C"0/J?q^Wh9EnPk.`>H3/5"Bg!s(,E:^p?62
+DRNlu?LmdT*a=oA2k-pFhkh\J=e@AZOX9X^2oNV30[u37O52;F.j-sM@un8GpkX#rMp+iMD?M7<@\DI:
+i?(/nd%]gg+&GCM'np_EJ_f%=?RoV#%BEVpUnLu_JD%UDrHUaEakE3f'f:YEX!uR*#!<1f++rqu]rPg/
+PF7O)>YRS-);Q+#cVPX!iq^k*b3&$"S!T,;@\qRbW9k0NWRPC[LX+[J0\?o8&e0#9"""%Y<-;Vj2XIjS
+%T'Tn!#BQCq/\up/`"f\Z&_l-S_e!8:Aolh1LmXtTkY/9BC'c]I<+K$F(hahBPN4[J2@MnFNQ5j$($XW
+KU?)u%/],X0IZW"33V%X1d5$B71hA"<>jgjVM,PT;/@Mb0/lEU*V[):k?X>GD''$Cf[GUkbMC2](8dkS
+Vb4@YTbM>OA=<%mf?%E5Q!n.&@"(@SN!J,-+R%%La]G>VgH),3YX;/`efMa:+f2JPRr^n$ln(uBD"A[o
+^+F$)1Va=O4E:<49Ic$O.@AN>ecRbS-6g@AX9io$b@J$T"gB9lb^c;O%II_pQ(VVG$NNMdGd*6l98J.,
+@3VZ`fLZO\6V)X^_m'GD@C!"hG)@^(<u3\k%C87KJh,oA#)RN=%I9-CjLi0'l&kNc#_<*G)MN]82R[Pq
+H7(/2nFPn/AP<mQ/O>tO:p,,_J<VpEMRY<%ccA%5?imAemk/$dZThKf_7$_e1/)"f8@s[-$bGZ4-Us$8
+Z]d'.:+EnO`TmORc'?BZXPUQ6eFkU`=4qs.19e_/Xm?<9e8d#I&JhP(Z2b+gWQhON[sS4]&U!FbOG`:^
+"3tL@7oD-D2*7*JK8H9,ZUkR/?5I$3MEViJ:?Lf01f#/_ggRrqr1;#h)9&pU2RZEU.QW7gUd<-m.S:*)
+Y9J;4p#I4#lBgW8Mkm=/YP%G[P4-QnH+lq8A@m,AoC%/.;81;!:#.]&FBr<o&<W9?R/thoQu<Pb,/(;h
+=1oiaZ9AkU/3.?t7(Z8u5\23tFA2p#6XOR?$"@X_Cl5A-&95--VE.$Aq0o\(p%SZ+"HU3W_$m2@ZL$tK
+2Lf'*l*Oh0))t@'(nrg'`i#:7_L%'KV*E#T-#fMea4Q'elQ&(&?Q`r%Tj>>T!ET>iZ[u.;;_=\Z>7=BE
+Cm%aabtGn@TkHkO?O/jB,TVL)d%2UkQgjoZ^(?ZjHBX/e/!p;dX!jo2<uTq=FcE2@0Vpfj!fgfed^OF4
+=d$k=S-F/,JTi8n=KoR,l-4l,H[#G4\"@eE8^4LH:UW?.J6[nn6i2t[$KdDmOic3la9Kp`@gaI3%PNaP
+MW*,<E_/aH.)JqL7"g."?t3_2A(T,SQe6Xc`+&VZm+"//+=0/_R?"++h(^%(Ku9H&pW%B\d)h*?C.3k<
+%:i^lbhG=''M8cC[4]i/!]#*a('FaB-3odEVp0`$_.DcG750)cTH27eJ`TMQZF<6_*29o'a#?BnLu.b?
+)OMBM9:h9Z*SWVcp@]UijGI-V;_>@,PnGKmV35!`[p<iJ*=`2B)'H8p;mi2P*)e;M$PpNF1?1SC(:(F?
+F:R))7+%sWp:O-R9!2Ug]+jU:^Qf4d.kiQ%HP+KY)IgK8*1C4L&03Cq5Kkr$)hP.91+]4@OK"P4Ba-?;
+UVje4ZF^6M)QIn$k1i$R,R9N<)hV"u1=[ojOP*i*FN`N9NGtg=@M5^"FdZs:N56b]S^P5,+/leV60>6s
+k-jkU$LNU,'iIhUQc$9OPi9n.lHI=geI=6&2aU$KVdsMY"/7%XMAT@$/J)8*&[h`^Gsg4/)M)3+.5%k$
+f'QoJCN.[ea'%/S!p^ss$CJVl..+_Ml[h$3+A?/Ph$5R:L2-0"YR[E$/$Ob_Q!>GSX^2879;9'LZnLB:
+(K^pd/IJRC_7p[d>ncc]YRGW)FV,<i&)*/9_fd.+((ka"fZQ?#"iT\-@!0^i\\OA"PpijH@]_/bOKNSS
+e2JfB!c'%pLY=pK!9sXOJ8Ic,26^dg?qFYT]E4#L'j-3`^lkTgi1;Kk7M&[SlAu'_,jZZ]XA3cp!m=W[
+"kH+=?l<Eu\k'cE$*:kf^C.,qB]TRP+m$?<WGa2l*g-jk>db.p*-$NUPT<V/$+#sKY_N#=0!Ig"A`Ej8
+&2(0s,4@%dKNRIG/D5n<$ETq-V@0K>@AZmE$"*<QYdul\[p@V$"kE]IM#s^gLr82NZ<dU+,N!i7AO5*-
+,V(T[W%41'1p($k>G:F#JL,keCe=IC>m"R+(L<@a+H"8oQCIMYMe\sS$6Ha6Cc3]b9mUhcY\^+Z/dr1J
+m$&\tl8K8Q&=!QpNh''V.iqNGRfh(lDG&TP)Zifu0kgtEGoO_WJkU0?4osXn+Oi&G";^3PBT>>IW[O6Q
+MFNBe)(D8%B)"hN<^jj]!Hs"S[\hGWPsa(+ZlaBRDr>LfKU0i\!63Ho!^GrK_RI=/jAPg>>9E[U;A6(l
+SF.WRmqY8!L2J=.!.I(KrNZ3Uct^fmo&K.rYEH!&;p&:\0=8#>,.&7<5,(5fr.PK7LsT&F!YrmBUoGX^
+[.:GW5DWUM#DR\WYr%F[&92_sBI_PH,&Y'?<%9\S5d;=p.l<M"&gClOW1hkh4m&RY5*6BA!F!#P&X.pG
+Wga1!6IPus=eY'o;'6,YRSFE*HD,%%#6)JM7LnfQo1Pr^Q=^VK("dl"W.BoQ$;DhY-'ENWY_PPD,&X+=
+V4AEkB&T$k$;D8oCLFig+_Eu1W^ubljfl4G<bTVc],(m!X>1,W#Inb.i\<aX'ad\,$LR\W%Yr#^).;u$
+@]n'eZ/jtt7<"XV2aiG`QVts)i#[`mai5CI4]BH[\A#:!BQ^"HkQ!<>5RW:C7,1,XJk`M[jH>jn+A!b+
+\RiG#<,+?<jtcEmah()3L4uL=)b>-go?f1UT`VOH1umcRbG9L:f:gQ5BsKQq0/Q\sXeF+K5R(>aWVY1t
+5bY12:BF^nBqj8Md4+Ih(RhANaXe^fW_S.(pXi5\;HRV4Q,NgYc;bc!/!;X$2F9pJBDLH%m]0Z-W\IsO
+W0=m@+_a/<IY7t^"&+?chIqtgT%bM=;eu[nE```%K[Q2!,U9[1!@G+h@Xq$Z\<_k'Yfhppk;thMD74<T
+JoD$6O1ZX9-//r^1RsD\<Ii=\BR%79k]9RH(Jpd#]7(E9a*2s0(?rk_'b_Gsq?+/5Yh@?<#GQ_'`QGnU
+RGbBChpl<&X_*rB1Jb(GljnelSFKIj6Sp=7\;8("LFTB_FO)L7#M"\?B=7+:QDtQP<?>Q</pGCJ+jqFc
+;-,2B1Q^5(T.J'NPe7aqU=g^'Qm09&NS!TRW1O_blj_o)@?8&ES4@)ul12ok5U2=0ORfGsq(dF0*bhiY
+N!H@rl,Y(a'$f2=Gbd$8?a.PhM@:f6eSNY%qVHPY]D`iWD8$63>d6uF=B-XZ:*Y,H%2"O7TZ!A*.#@R`
+7-lg7(=RST622[S_K?bG19_qi=>Def)o<Kf,*KLNkq]J&`]Z*H6'Qd8(j2:mTVL3B=I#u=i84/3>ttSF
+-l]Z)4HPph"s+fY+;ss+<[HL-m)>Yg?G8_\jl7S(#\RNor#M,TLSg!"JRo$G1@V79o>Ird3\H%+qJ>>-
+da-uPEGsPK(p7pf?oZKX^p^sfi5b]#1fHQ>Jct`7J=qbI\\Y3KH\;*62:GFRCFdn_q_"1@mU[NsleXuj
+:>,HlR\GeT:U!Lb3/?"?pt,juo%Xeo$WH`__(&U]5#E\Jh`andARh4N?J3u/R=7%QCZiq/l/ma#2TjM`
+hG1Z9fHT.^'P^+:--CgN,*ol46++]k98]c&FnUFZY&#bI`B%(G>1/YEka*EYU-78M(<\8/l'fa.0QeV+
+fZ?,us4&KGSl#!/TOU7jP@58uT4XlNgfG2pftV?7Mi`,T*!OR*7^k(>P.<Ia?jBegJQs-s4)`.dc,kgE
+G/tFLgsu\*X<fF;@_&ju9Q1q[MVl9Y9BB&Gp>>ND"I2%C8du8jY+ihZ9ep"8@PZb)j3&LtC%a0?N+TY[
+*oS#&A4HSW]t>B$]1Ig_EbIY]6Eol9rpmm%i>11Q5p"_3?!c4>XIV/FZnok72!f+a1m9gSb'-qnQ"G"Z
+8dKI6nJu'_8Z_e=CUmKo!1ASG(An_4Hj)pIbd'D&L>X9p)+3cUlKG*?@*m:d"RXXmPC4Pp3kA=i4LZ_B
+Gu7.f\@kl5G[D#uU&Z['(6nl.[-Z?Q#j^RUnJH-1(-H%LRN\[GU/a/I1+NG720o9oVhQ\4%WEf/S3$1]
+lAM[!m\!A@Jm2jS94HB(>m@fP4gP]:@ucK_er=WBAKdLp<es45@j0PaeQ>p0\`(4\0<q$$Qr-V4dsTNN
+W0uGFUf`U;iLr*'D]PKVLJ4cOVF/BnXYeTl>]UGc5M&H'<$eERmk8pD'H,J#&$U3oZdVQ_'?jFVAn@oK
+_6C!3&QPeOGr&?<ZF?Bu\k1%V&)iVUh0E*gHCp!;UX2+TUT>W9(SYc"'.418:j7m1'4+1'hB+7(&I>_Z
+15o6s#\UQNg21ZP$k\V7(LPaa<-TGKHj?B`P>!kc#\Uh464;2"ci`r.'aH:-nj[d*NLGR;<#?+7*1u01
+>IEZMdD\GZMW;=c2^=EAiQmD!^Yh,83n%U+=Gd/,ep*R5ePA:e!n$aQrYc-k4D&#UB\Oi^%f;OFU/&YE
+>as7=Y`A#YnT5*KqHC?RR_969pr6^k=FS>k?_Kel6sM1769PV/R]pSA6#8MKpQ6910PeK9'0abD)qY=j
+e]%5.O&sk@gcJX8\%oUjG1LKb7C1JJUkgus<sSH?723g#gO07&fqK=bB)Z=5c"[>]V[Tu_b25:23aMa?
+A3(%F4:q4D0V\Cg0*kjNYLf%K&[[;pX9b7#f0,trq$b_8#Gc]t,3WpQLD<*^DhXIk[9VNcL55*-6F6l&
+7k.($eNHeplL?n53?q5Q.:nnkD!M+*AM4YF4fl^_h,>`->kc>*da^KYh3tP8.25pfH__'q7bq"S`O-@N
+Q2B)pV4!RP,%u;^e30Wo-rK_Dcq)\<5D16EL+jBc:Ve3ZX*[Ho=J5(2"6LJD9:=oX/[%BUch=oPmO?<!
+62)'_Xi^NQ_2hf,5$gb/4bdq3;]+SnmZHr"eNN#_kP_Y@e3,]ll5#d]NOhX&ASYs$k'ATLm$^fGP]!9b
+&TkLa>&"%CpKRiYT]%esmO:,?H$)oV"JtNPl+?8Q1/5+!oiMLO4XaZ]h.*7TmO8O-ESXPOQAW7D.%d^2
+1!k'h722=[?oA*_HX=&7Woe>E:RR:5Z##Omj@-MuZTZj>HUN,&W-_4J;"k[uFAN)\A_$NDd/T@6DoHQ1
+9^oLZ'"hf>4W\`A-9MGTVcu'bJ47W6VLl\!!]IFFKVosRr57+]*YA(WCd#S;TH"RLW'A=B#]I`qXK>&V
+"m,C0!TDc?6LKQ\HK3*Joc/X8EsH[SKI7?`'rim3h')P4668FC1*D6_"dB[N>GX-1gH_<Gj6n*l@_:ER
+YdK3kVd$'MqX]OU>5L'aMqD"_-3Y?8h]SeR,V6p_Z'G7fGI*n`7$sMZX,_BlR-mE,FD%l[l#`cqE6%3<
+/S+J;:-E^[duiA%)Q,(tneKk9d-/rDF@D8>Q#t!Xe"(g-fr'0_:)A^G4&meL#\D!Z"T*F29ZCQG_')H6
+<lVWL2M,tHD\#;["Auu7@MB(OjOBa*o@-[@_!Y,oWc*7TiA?)?C=$LsT\O@s@)4quQ<5!MXf<.NO^]i"
+%m`HHXDE[pAts>1!!fr2-c9M"P-+Y=o<2B!q_#C(d#EjIoYd"X/`</c?!9%&/^Us[71AQhRAo-nQ&WK1
+ANW0b/j]"#Y!pG21s41PGDmOY1c4(R+CL`W>B;KWh%36*;t=Xnq=NMGAajl>h"\+Y?+NM:5F8,9ecL,m
+VRuPM6#roHU0t"1LP*D$ed\CPT[ZXo_[>=mNZr#FE\d]f<pEBI4jmBg/mCbRi>e>;.u0rL[#nn\-s=og
+7EkSV6X>l%qp7a,^O9(;+c[">A><m+W0#8IQoTI'Pel+FEZ!P2+d)1pMOmOu,:M]1b32ji)G#<E"Asb@
+^-Q;7V22'UJ"`@BX"Y6l<e),'6sWFL7:_#nUb5*Ofe.uj=s[S\\sC.fG.kLT5ZP^-$PIRca:96XRG?>t
+?s9.=@,r@Q('fa*G4m2*F;OPt"uCcXmDHqe3EsNFU`SZAgC'h:J._lo['PFX],JLnQ*+j)XH/^ejSIl;
+1T'cu&MBD\\FmujUfN(Pl4n)uq1]5BU1KTNgcZ(QQ.r!<CBX(S.T9jGP^<&sr/d=)S\#ThAM/Hbk>A]p
+Me9YDAbblQY!g=_>V9IO;6!TO3GYgk]fk0oU2KE/94;`dTl"V.mT9gqDeqJH"S34]TQ-G>")j!M>9f^F
+n_XJ>TW]3h!`H>?_\,@goT<'cV<RLph$Og'b6I7XRqj$]=8/BX/jB@M>*0RNE_-O;:FU7u:,1KC'FMW3
+G/TrB?6]0!#_L"+Hpak/,[s)`W(ejR>Z\3f4`)5c$YjK`Z5a54GpPuHd)mtDg&O3=qZ+5Ekkm>5Wb)0W
+g2`/G&JlGZM<ds'85N<O\V#K!GS%;K6jb1fZPS9Z,2Lgd=p3GE"N4]W"*,e61=f>c_L_c[%_Vr1i$0/P
+<MLDR=L-8R*nGCRUfQY7/:H']F)4VTKhf%+O#!no&4G3<N`Dp4ZLnFS.7IVO)PZ_I#^l[YES[J'8sR$i
+:/Z&akbu6q$<>5./paWBKel/7d,<L3Z"`i(N"WG(-k`QfON,IG$3IEB988)L%hq)l;k/)Y??K2%H%"JR
+<K""ch,N/VBBl9NY`l+,\H&@ZFtM":IShe-6dFq\/S7IZ2UWO8?e>bq?#f8i?G%=G&KQo`^5uZ*#.WkQ
+%UTQV=1rsk<]F4raYKD"75h=inb2C*BHl%4-NM):aB!jm[E)Fi2@)X$cXgp;-\ItD=9O'KhZ5GL)&38p
+3OPt^G9%q30=V!u%s-7Cn/5!.mkCH0h1c7-m(Be\m!X#Y'r5,oaJ^4.aBA<09db6M5]X:V((>JF+os4t
+#7Mbj(O7#4]qIT7Ld?gM8A/kM:[lIB8Ynl&Q'_7OW@$C3[>[c!o:(k>6-pTR3r0%hS?T1LBV]BTRl'hF
++@K2'aYI9<;i!t(&?7uQ/)n.SaX*ajU(AaF)Q[5$U*>8TV,j&_q1]Jb+OQ&fCfHfgE9#bD=X#UGU\_d;
+,#GiY!YPmkE5dC1$l+'f\:^VX<]%f66r]R$c-\_.C\2?3Cg1MrP>q04)gRat][Qp.n(eQo3&*bKhCc]n
+d8GB_d,nIJXG#ct"r-K]!L^i"=r(Z"An8:<>*?!52H$Lt7T-8eh2I:"@Y-+Ck>HhelNlE*kM[U=frb"-
+mGUhW7KA@+DD@$R\R4qC^W7](n]VqM]Np/:$?cc;D9`0+"Jl:qCW?W"0V9Gm$K=&V`"5qdM>55P_DSiq
+=_$dg_CA3DEDOXsXCW/8)(&`*XH5A&K$0CB+])7ZVj.jKpYKl$bc`,^G23?BN,jYR4PJGW?hC9]?\\@8
+lhE_3s!ud*3hQ[molZqa6.C="l+CI(j/*=lmpmE#fH'.XiR[@hi6lH0$R(MPaVpknLQ.i4n`t=/TPJS#
+n/g_\B=54$]pu,p-/*rqj:1(/`,=DnZu4^^1k_^0r/ip+YW3AN\Hg1(0OmF\:t"B3*ZUM?7DI(B;ent0
+FjuM>FIPA7$Dp>#:_l("(JpU;ENi7FN[&i-X-IWIYm&/Wo\_\?JW?^sjo7T!B^nNifKsc0UW(<EL1kS,
+#er,uN7<bUK5hE+L_`WE0gpq`>90_(EMb3RMfFF"UW(=a*EA@@U_*YrSDAjOImM$;3Wdd$2BY\;+r5R(
+43\>QFE*)L:M1gaEi6N(6>PJM8SA+UNml6pJN-pag^L`D$Z`gD`*JO;=2#j;:1GAa#S2qgJL-&P*`:W<
+p`%$RdERJ`U8,ceGZp.^:g23jQeggLGb1cCVZBKH9Zn39Rn\Oq8TW<tA3RFOau/mE3M\_8G<g73/d`d$
+L:AMf,MsVU5`i&[%MCIj#L/D!Bd?'M/&P,i?s)8?6)J91q[PHG;iQ>t!g:EHESbTc,N_#Nk;U2O>4T<V
+R#8;E#$UAM#W#][Ziq&pq[G=Om1tB9fZ[U]fWR<W\_ZrcP7(e+;W`]g83%'!OKK@*I4cku[mPUJ(sij#
+=6X[B-r%Ju6YV-S2jBWEC$(-U\3bunj"I*S>/gP<0-l9in&rA\h0o3FC]s3)E./'+nnAIUZM,;KjP)6l
+ag%8=bHYDaQufn,h:hC@pY^[F?!cLW*C2G">GO?H@VnbUYS_d9@oO"4NtP],-$(23`3aI4;a8osOTIch
+b/$`PN!+eCkRhgbhYUeDa[3@eT**3,^9Fm"^lEl[,)(2_"o[\.Q\$SUVhHcOcPb%#@<j8Q@I/_6*f<a_
+\]N\1Aajld6ZHp;f*C-(94<)o4_&lA$9^aMUQ/`A&S!71@*09Urs#2HMl2(3hWYG:d?*\Qe!:;Lmub$l
+@B[N]W6:>Np6h98&q_^T-l>?C[QG;C>DBEL]l3%8q"@u9OZ57LOc>1TgibE#Y;8];;#k-"qE[4ja:k=a
+UcXne_0iONPT5QSgFWU1/^c?RE[g?=2>r,#h7QKlA]qsK88!)H`A=#*H:C!1fg*;A4tolJ:\!Uo<>s[Y
+"Xa^,X?48c7m7Z-m0PogS)4fD='?\aM!7DnX3D2G5-&8H)t0P+1&J+0S8M`u<I^.;F''"%YI-m4d[0Vt
+/%[smm,s[:ltB/tm78co^Q\&fm['L7V,+o/;+!;Hj>+.:4_":i?22JCd;],"6tAMA9[-[b;O-7a5#fBQ
+%cs%I<+T<g\+27kEc60^o.1G1KWh^FEY/[.)?bZa/2D:3$Qq%Mlpm7P1:olh2*@2k@'Ti2+9Fi0199RI
+@78qtS<G2AXa[De(U)LOEjnj+Yb!#u:m)uZ,9#WC'0]BKeuD.A4,o<V\+#n64Z1E!"9e2(*d"2"#Ul+`
+c\$=oV^fIjNE6!^)\WJs3p]DH:r/-'lJFclTVjYcHSl#FD-#38WP&"P'P&O%\.atg/@?*\JKJKl%7aN4
+6QZ:pM\8Ob,-K5#=0`p?YEh1MD(eC+4dCT?4B0Dc;#]$0/01W)?OoqCf_'^BMGWZg.3#-Q)\1`KL*Mf5
+d&5L'^W5tM3o4I*/7#4J]<"X::kK>c(LZf2RG]+,q:B?+"A[!hbB`Wc:puc&FP-qfN@14kGAtdb+8-_F
+N?T7q<*$+g2;(KRX(.P,>m`WO4M=p9nW?T0@6kEbO.a2(2mT?LWj'^%&duZM\-EE!a^\q8>Ms*OSs/uU
+j/O=nS+Jf]Zl1TS3PXbg=k<J.<pLEe[H+eKD3G$E$921#c5p,Ss5Nu8,JA>aI@DluLl(u&jgQi7B-."3
+(I+q.4c'%u+P`TSo54FH&\I^NN#0D@LjA;@"Jif55,4Ar\:`P"]?kj<1V(rq2\),in&Wi0FtLmu)DK64
+p^IX)*Ut'ie*?[LK=,D>Om4_@kS>3Nmbm)=GAtrVE,b>jGAo8p(EF?>&1s9=[q"Rgi8+eb]9CMb1,t\i
+/M_/"^Xs\S_99]qq[U@CJkfi\0Sek$2F_?8"`<!eB0+%^SH[g3'e@XQr*fKrltOYgF^MEJSmh'WmD_()
+Rt89f2F%%SGhRR(oH&B<]\QjmN6NAFN'3!ak"_GTA*3c4o3;oT#NbmNTW=.@6$FqMnQ7+Xgualu8uu&F
+Hj<P.PTmUVf:#/*2Etb?A%SoE?G:81[V\:SoK.f^:b6df;luEP9fs;_='"&-K77`FMLbDZ8;o^&]p+Ug
+cd8n<E*MmeC_"Ii-YESUSloM`^%Y'clrmeEf[qf^,Metbi=9bSRenU%Z;pO+P:+')rj''S=TdP>448kJ
+DHR#4klB[;,bB/q'>6oiHK?CTP`G-gOCI>p77aJFcTun6;[?0CY:3oKh2BN)g=H[Al_`WX.CrX^Kt#Zn
+0QZk-.FYA#XRLR/.g<LR](80l6fj"`\GRb33OmW*Z'FWjZ_a=IbE%sVK3Rjl/otEsmc,JgC\PsWSt'>m
+,S=QU0-/h?X4[uW9oBKjh5<]HZ6-;F&%u<6.D6jUY-^CL&FSK!q+T"Oo&Cc"R5]_f+h(YBmP!:\:]b:Q
+LIKW]:nC];En^g,@4J8&"`*i'7WYl1]b9DkQp9qER(99`hrmr/_&ZcJ3!G3&#i6-e^`sqH+G,5]#WfKG
+2.Pag%OeLH"D%5Q0Mas>>]\W>%c!]TjT>i"Xs*3oo9"sP<r-2O+B]qE'9EAMK0-TnbG";+AA6#\%]41H
+1-Z(Cc0BRAg]NVJItqtJpT[UY!P'bo:C"?;F55uL)T'2<_Uta_Z\8FlLgWun*f4gOMfX[2iXYBFd%;lu
+(IpmIf>5]Q'N!*#)jZ^M\="KF3k0G=O7n+Qe3CocSd7niq_/4Q#<+H$i=9`H(@p#;cZBc_i9"p^G<36g
+E!J=K24Ze<H!%IakM&KXh366k$qI^RT'!;XMTGBXL#ceg<O?\&e#@t('&7-/PY/4o+rn<r<T4L+@8P/g
+>XQlS/]j0[Wh;uTo&FEl_&/j!ms.,AFAa.,UB&IN2Q!kmo.AJ.c/&!m*F,:SrGW"nfSC%*K?^'^1;8'W
+*S`cig2HM84A_=E:.RJsd-R$TlD!G*!SPW[4=o^/4<I'O2>]ItCY)'qE:^L@PWH=.LD&h/@LE;DpG!QP
+X>E5:AQNsS&O]^S03TrE;hM`WlQYtoA(kOul"Sl4,pBo[-uI/NX)QWGM'&&6(=6eV8\p?0"`*kl96GQ$
+[d47&kfUkd\t6pd`=D8`ZX/_3%>Z^M>`fnM5m0bnICp_.BBN`\HjGpPAJgCL4/C/f4-8lm0YNc8=AAU:
+4@SMd6:Nomdm+lF9mX'*M`ge+AK_mR;elb)@>dA$+"X#k(;t'q<1F>-_,::Md3_M8J:KO\nfr'&)cO#g
+L"]e2+<ond*[fBSHhGf`"e2&IUJ6IrTX[^^)"F=pAt[mhl)"*/T;$TuK]Pnp-0/qL?f0pVY-+seZ/,(I
+eRlnq[Ak"F0<QtAlUQ!Oodt&lPsA^1A?#?tY\$,/lFHn6(T[GuU`=6Wa6HP,,V,Y+K'VBKaPfNTU8;KO
+d'JdG[oQDgh-*C8,Q(RBHfPWU9<,GM1pK52*GJ#;?6aiHS/DPG0mLKGj`skB8cNaFiMM"dai]JN`uVD8
+S&L^,L+BOjk7WBZrhU/ah&qJ(3cen-),U#MR7EQ=V&6Q6,Cnoq&YZong':P8,0ed;p"T:c2([mFNQoZ[
+Nr>CuS6KZ&Pu^Y(b,F!F_16PA"<h($DO.PYmV5+_G=*'N*\7htD#l20a"SkWJn>>'J0`%+)*G/8/`4)8
+Q8:#\`.8V`N#T7`''m5$$t\rZrG#nke^+^9aloSF&eUU6*"33`#Ug12RR`DDH=of"Xt>jHPA:N8!_e>3
+XS8(%asC2H&@\!oRge4A<-R?3&=MM7rF'eJOhX+eG(e"W\YaXA[8+ZrYaT^<mte$q"%$<D=+S\uf&cU8
+l<1'.\`S9]f+N*u[Sc6"9^Yrq>$QM/JZF4RjjKg_C4/[n0,Cn92;$l`pQA^hiN!VW#Xos*m%gB90n1CM
+0_.Ea&17)]@W5I<m)p4p2am#U<ST]i!3r_m$.[#/e7F<^]Mc[&A$/u&`XZ"q9>30#bEh6N#$*HGXY73q
+_WCPuE2`HmqC>4[rPQU\,DRSBBRU<"o*5/j(Y$#U-1XL.&asFqDgLrN"VIM.Z=#Vs+P5sD%^$mA$)r!V
+7Q94O)WVfBX*N.tS+:RQ>DbK'RqWG/;Msb4Q(en2QW'*Bq]0\03?Wu_nkhOST;=GEL7;kdB9'`l>A57i
+#1%(]c9YnX43t_TZ<[grS$TGKoT-gmYk++&HENMoV-6)F3sQ>`9LP9(VC6mZK]ufr:3W<2L$?`;nrN%X
+l1@&C\LO(,T'jlK,ah<bmZfGs?)(ZI,hANhe<Qgh?24h8^!g8@8s6g\K&"%nC<gCS>["bs&_BA>52Hjb
+HOG\Qh4%FAq!OEbTdfD9\VTlYMF`:`&%hS7kOi5,WCR<L6,(W9$/Tbi2\.=S_j?7=MV!\sPcM[QNE\TU
+WpX3(A;!Gd&HN1D"?`Q/!iimUg.h+\GIMVa#`.9j_#t!&@)td9fcqV[<Q$J(q`2SJNKmE4$+"qN!/@#Z
+\e,ML$s/FD(F;`"Z]5Y!)=m``m1GE^Q5NX!Nj&eF4?sC<#`.=EP<8mjY@HQ#&J,i*\e,MPhV*s>aK6oC
+ZG>7.38>pKQnX4E&J2LZAB,D!I.<.10Y1Q/gUe%/Ji<bj#Xgr=l#P+mbP0Yj.MT0?.;^U;,+k3k2npg!
+g"S7].G*bD)^1=OA8XG.k[p\S+s95*j^l`(N=Z,9Z5GVt.M1h3CBR$:4Duha&G`1A-&4lRUjdjqC`$&J
+hnZNPM.+I/2KgB<`H5.>JB0>%jr[WprO-J*"Kj=2![>SBR0AFtkdU!JiC2Q(%!WUrKZU/Wd2+6BV@jJB
+fZ<6T*ju._=4d_1QqCYu[kuo?deb=_0U;9GDta_a\^dK];b4[c'dFiIHc=Me6_Y#K!]#Wgo+e]$0"9[i
+CuqZ*.KX&0!(,<NEG$XV(m"J+EFl3FnV/`+/!UhI?AbMeY[:fh1Is5%U=[39XG'n?hQJVuDlN-f+j9'7
+Jo)Z<jC2.[9I76;AAnh1>X5t#!f4JH0U86qY:M>n40*J4,_[IZ_K%O-W8Ag2E=\*m&3!2>#UCi%9Xb@)
+/i"J&8^ZW6n+7lZg]l'aL6A@rP*kd0`%N4Z9i<sf\_%sCKO!/UO(1d&MZoZ*CuT9tOJIsgZ8j%9bAOI4
+KOV]f/!:V&*+:59@9@9s2["t`+*g.SP2a#MfZtaYAO"g]5,eXOmDBHsrTnPp<VipuB2T&O6WKj.V++s>
+!;[+/$NlQ]VG4uiJuj9,g'&Y6*J"lFI+llpZ1kK(Ge9Nej4N_**li_jpMkBNGb870U#uT!*`,'*G>ATi
+.:e5!_J-k>F[X:k%EuKr%X&''-K>BmhYFM^kL_lpcsK$(m<2BjA$^6@c^"=g;S'XBaH,*>publBYM\O+
+s7YJ+J+N?:J,WCGpu=SfV!id+msf_Gs+eAfn%J%DE-TP"5,:M\'P3&$Qp28(r5ToZHq+%c+9*--D2nG
+~>
+endstream
+endobj
+7 0 obj
+   15148
+endobj
+8 0 obj
+   << 
+      /Length 9 0 R
+      /Subtype /Image
+      /SMask 10 0 R
+      /Width 333
+      /Height 333
+      /ColorSpace /DeviceRGB
+      /BitsPerComponent 8
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+Gb"0W95Y\=*li7@AJP;Y@B%e9J./aT-+&NFDDnI2(^%=$c]F]K`"^rI06@M+?oG@\,U$`3&R_c8kpBt1
++o>,tIs"a-^E4/AbXAP8WidH@_1(1s!rr<$zzzzzzzzzzzzzzzzzzzzz!057ARnr5/qL#\20CR?>?2ZF
+s=-Dll2$fE?)rGE5&6@+oht[V`UoX1[gKWPc#I'IGf88rQKjT52-,<>Th@X_GP*VT@IO+7sRIejVG",O
+chL+n-h>gR?nrrghN3fU6Y<"oT)7M*Im(+E`V]S+/]5CauS<61kWngG=0o;Q.hY:E>5`5s'EM8P%F-)D
+IYpgJ?^/lZ.b^20U._\t2d%J*Zh01\b._aL^clcWni]S27(#S<jBL'du3MK$fM)h;#b_\?S8'HfMU.<F
+a3MK$fM)h;#b_\?S8'HfMU.<Fa3MK$fM)h;#b_\?S8'HfMU.<Fa3MIlCoBT+S5O&,Ao&4WN3aJkOe[hb
+cXHBPXrAaZE:9;b7Qs[N'Dn93B9#Bn^0K?n9Vsj'I.XuX50t!sacLpJ3]fOK*^Y+$Fgmu)A(kbfRq)OF
+eh"6s![/M!!+#1P7WL,pIl!rHl-KQV-/S;C`crT,ec+VdW3*iu,2kg(3))gUfV:q\8b5Z.W1-h0sbV)0
+HDfbZ>U7LiR4^7;7gG?S8ofI_k]f+Hso;QbOqNfAe*3tWNU@pQFSN?5>]mYSAFgf':8ia1A:,hKcb2,3
+bZB)Q]K!(BJQ0l3LHdj![p/^FiW;:i1'(`+K92<aJ(!Dslb-)?)8W\8BQ+f9lS_pt/2s;j\<;CPZk&A:
+cCTaqOWVY.Bri4[s`M7.<(S'0<L.0>>Dhg-W0mA_PjIL%VMD(,`[C54oeVQ8dNcW>`D@C])T"J.,:jjE
+iI0]YM+4\+ej@;T-Z_skMMN%bG#b5U1gBJthFXli'W4s)t<BJZYlKM">6fIMSD@"0c@H2_)k'q]".dXV
+lRMXEo?Mnuff+2U,]j>`(%OXXsO.#X2D`=W$HT1hkQ$0L_hF:+BKQ#=f@Lbn=/p8gN0CYo`ku6(+I!os
+rr6F!'l2;s\Ru96*5-47L^8tT_j2;pGP.Yq6^3aEsD.e&MT=nMXf5$j[=6_iU2jNa8q<cEK8\#VXA%B<
+%+"hqh[er9?5A?WH+QaN7Z.s88q/t(_">4.2jp9jH@Qp++369#XIM$X1Np%'r@ZKXaF(10n&T_EAkRhl
+FNp%'r@ZKXaF(10n&T_EAkRhlFNp%'r@ZKXaF(10n&T_EAkRhlFNp%'r@ZKXaF(10n&T_EAkRhlFNp%'
+r@ZKYHIf@lE1h%qoK1sMJf891dKIFbYiU\+MGY6.pTnk_Ao:M%F9%*:-2I[0bT&8CN%nI]%g!.RW&LQW
+G_8Vm>hD6qT;JsoolT<f5[9#X+F1=]fD9COSf6\@\9;U7P&9A8Q9"LL9(e%cZ^/mNLN[cd(@+$?0="R"
+W*Uh,4=$J1d7a*TgUg+kQ>kg9NohB\BqQ)H8B1pdM+^tp7/oU$]`6%[!/N89"#9IBS?gGA99Bso,\%R%
+"OnuR"F*O$B]I(.Wo@6U;n#d)^<+h8JR);#_IJDn%&I!P0ebO).k4%]i:ERg`?>_+Od09H^rjc;&2bIN
+h^T%B6e!T#m#P^e[n[EOJNc:ejr\"%^F7J3Jh[T><+7H8uRsZ_!F82RNnD7N9j7E#;J">)%j,J80LcKi
+DIB.E1l2'hDZSphX"C%[NC*_s2-nWuX:tM1OMq2+eOoPDUbRl1e.=/F%4Ua82DEW`;P[4$u!)B)/rqMu
+J>S;35FI>jfAb,O3Is+3c-L]]%B"@`lnormsX'JZmJI8_C=F5R]`_C`ig0Bl7bUP`#*T:-\qi\,7@u!!
+uB?ZOep.S=uI^)VcL%B6PUV9+_n\U[!^/+.lmB&q(WW#=qEL1TE^PE:LTIY<Y;k!YSr2KPgnG65;`ELo
+(LIY_FfUZ9RqWu5]G*oe^km+%4;ueNrml'!g[+S*5r\68DKklQrYtLFuT3i]#TmGGlBQkRkc[P_X^0B1
+om(6d$1@/J4meTbY>YduTHV+9S4MSR(oWQtCO7MfZ^o0uaDKJZ*phhhe'<1OIRbM/:$6X^Db!-ahml7K
+\N*-%'W4oTZWT[>O!5/*<>^,"?b?6eI(?b(Gh!s2W!+N[Uq4mJ:=D)Q_JfTZijBnPRmb(B](_jtt3h7l
+=Mp'::h[LH_am-unpu?_42*t=IGrD/Rq)k:WQE:)K+tr)$WW'T0<M-R%o^g\<B0l[q3dQ7%qj;K_D#rp
+]F]L')e(nB2O68r4'Nt.XTFJ51@C>a9->idZWdIkIo;_)Tpuli^rU>*%oOE7jN<m]f&F@i#lqs'smj)8
+j7R*AD)eeo13,1oM.I+)]qqVbkK:(Eckjm9)LV7T7R9I85\l*7gE&%C!'\*dc+FElsA&"bU>kA$PWHMX
+($rdu#/BdmY1jmO5P&5F*eV=V:F.+tIMg!pIbX\,m3_bNm<r%XKA#YJq1hH`B,-l4k>cuPiA@%!91_oV
+jK4=:(Y=maF70G9><c2RYFk;c@:t0uZB(P8o@4+'kQuC:jC<[!n-FIGQ>H"<W'ObOb.OQSQ:J2$?k&k+
+%*YQ:H)q5L+e9Q=bRJYfGs&+I*C%#g_L*sK7#@:[0&tRNdH0L5dC#;_k(%^k0`/k10Xb/3#][#oAgja:
+Kc<c8AoBI0jG=l6CibN`(bA+)^^.d@,C@])%iQu&*c\QiX`7OA.Qdo,F(.*WDSmS>3Mtu/pidAgfZ"Eq
+eaDu9[[0c3)k?lBls4"/:@0\d1Qudp%!#KEoR&)VlaF8u*[4N/k-eS$9<\3D)rG$O8X(kmO;^d@=-Ka!
+F,'pPWrHA3q$/dL1&QrRQD8qpGG@-j9.*EC^$15EprC]3]@t&[D^UnVOcNSb_jMhu(*!PhG?3XMb@)!U
+qb;(H)gf*,!f!lSt^=5P)k'sMalLa,qc3sn85R%HqKODQ`CU:PG/^sVpl/g*Tq:!A_'H3=%3K!W\rC(@
+J4'kD#I<1ak?"@3l0A`nPg+pie>dk5PW&DduKGE*3[0>>3?2Z#B/n82uBl5s;3AL9PBae8`(]A*MXkFg
+&2ENE)MALmDnA>c?CX[:I%?Jso[1a6na*Ud&MMlp@f&lC\Q/-`\f/c]ZlJOM]e*5AdO2Tg4mnpJA0)F+
+#>8>%!HB]4KVRMo+a(`bE+'72t\1cAoO!1na0)F+%iIL[)CnID9EdO/%QlH(\_"4>6)a9aC`C7Pq.^]"
+Gc+$`b]3;s=\NMi(9TRH/hUT*oVljEIdBBtc:JOZ4h/#8R52Yc\k0p=*%r,>jj.2N^.ofjHX/f"1pR<]
+2//@+)0jN0K!h])8]"$s*aMZOI);1C,\a\JD&pJ4R%tNP_CKXp7X*_@b\#T8:$`j\Ua*Up)DI&Yn.GOm
+#&D;E@;L=N/SFSXLm>HmOoo<.&jgiuLGAPaG]+L<&Gn>@!"0:FU?`N-eaDC2O9?YR2TuEP&f`U2]-J0"
+KrDF`KWRmq)hO5?^bW5J7%e#UtV@>0SV)s2`:VX1m?9oK/beO&CT=TX]7r70-1)VXti1aQ_lAOL,fnZ_
+t1c:MbkM!E&_C:s7-8eX(kIF-uN(p5!+ZJhE^OcV%F09BiNFa(\kCZ;E>kH4faiR-Q*/;+FqY'NurUpe
+3Y4u6Q%*:[C+k5GE?i<?Y.p^.t7D?LW`:SZNNcKB)bBM/<:9B;n=%HoWi1aT7*hOgTFXu/2LZ^'$p#Y]
+V#P*67H]*/UJ*0eO/F#TR+c/msiBQ0<8JcM5b-Jd"RbM1/hI/U?Dndg(Y$9Y]dne2I\rS"+`F6!s.Rqi
+TSNC[aP,WWJ%5qklNGlfI8NqBDqnOqYnWpPEOG\ZbNa,!#7@j/`%nc+Zj`]N]ml^3?@U<U<,;8?,GN0(
+^&LP=R6m)$fOgS@<li#K3FKnZa6>"qNadr-QpW/dfbP&r_@eV;8lJNkUZf)r[ff1tf<$3nSH[JHa#,Pe
+691lT(XMT"'Gr`).rMi%>[s5$3@*CX@Nn]XM+/TL-lC=8CkcPmH*>!9K&s%\38'K[0?=tB62t(T50h8"
+T+r3Kabj'S'!D6Ijl(q%k*0#]0=9ratX0[8MRJ0*.Q,`Fk`#ObA7-q/3iS,JQkOr=trY++Pb3"oE`#Ob
+A6u9&105V9"F8p!a?qT0r35cer>XWD3AhS"_Wj=)\j576bQ&aTdLcHBaMn._'#hE-cO6Z(3M:rj9]ZlY
+-UCf4^X>A2;pV'f!]p5(SUCf4^YHr[K]7\kXPtJ4O?;Y0l7`8Q@?Zk#mTmoX`U%V@d@ZEprgpg_/]H^G
+BR7kI<NJP,V^U?(pbalCd.9F*sm3uM)7`8Q3?WAALe#VlLfS0,OP.+5<IduEO=W=YU1&L:kckO[bX&m:
+]8,.nNUOHKS>noe*m;c:UX&%.3cJ:WIbIuQaP?pJJTg$.Jk<Wh_z!!%Ot:/B.W)j)3\#&C>lEO@\+`]l
+oZXe90.EA%*'r&Z#U7lOmp7^g'DA)@0(S+a?MY1?'mR%#8]2TF;$#S;&5K)IPJoBmO`qWHG>=rRKODJ"
+EdGPkO-)U/)5j'XQXm,P9OK48W@g2+)Hj.I7uO\2Zr.lSCYh$0gb8uau/+0es[EGuL-W<?@Q`1XL^*u#
+]0bO2af5JXkR/Rn.T8&cc<C'Gnj5G#G.Zrro=CW5IqaF"Yhcbk]SgY_nqNnLXtS\YTa&#nYQEAT9A542
+n*f[h?'V2+k_gY_nqNp\BTK>@g%[U)?;BDc`cF2kp\OXWH;GddRaCj4*<:g[dR0GjiHeZ(LOT)O:\D28
+/AVYbs$`-s30rhX(bN!DbI[GCF?X#@<XBT:Y!0GjhCJMgc4=U_pSTGoN:):H-=bK`_^:oVssf4N]Ch$-
+A@A6.pFWP23b:hV`.pp9q:g<$3F;@Rg'!;4?6G"8el\o!Ig_$HE>8um^7WjHB8c"D0'X34A_bZ9g5"4S
+9"fcA&OkdEK8"s[M6MmR6_Y"F+Sg3hJE[5J.dAl+-VJET`FVqk3dN,G-F@k[rgl_SgeC,Je8B%hX`TXF
+J];PookXT?h?0Z/+T?rWn60EMIEV0D#.2UAZT>1603_:T6iM\3q@pV4-gJs_T[k.S+TTRPR]G?86-FBT
+-^YMX/U39lNDK5FZK(`A9_I<O,,W4n9#B!l+0D1?.O@="se8XXI_[0B$C"IsYUGY#6n=p,7'^ap:*2>#
+Is\->AKJDc*cDi\H^L1u0IA*gfPeZ%aMN.BTcCXo(UTun8fR/hgP`_g5ls$j4%\g(TiS,E]">\ap*(]j
+N5BJASSdo(Ak850pk/a<3Q_#_q(!W1U;=-1ZVMhAhg(p'(\Q##/Sb;l6P(o]N*3>Fu'@5B%;,@FlJqVj
+&-0nNlIb/.E,*bXCcb^B;+AcU\1KND[h%"NQea$IW`(b%3M7$!9/d3I\enK?Wfzzzzzzzzzzzzzzzzzz
+zzzzzzzzzJ11@<1PAht~>
+endstream
+endobj
+9 0 obj
+   5448
+endobj
+10 0 obj
+   << 
+      /Length 11 0 R
+      /Subtype /Image
+      /Width 333
+      /Height 333
+      /BitsPerComponent 8
+      /ColorSpace /DeviceGray
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+Gb"/lH[ni@rkR-R1Dn+K#0e8.6V56;%='4[)u$pCMVD.0'I@[=o9LIrMKDR,4:6:'P7"">7!6&iV0%tm
+rA;f]`[f:fH-G=8HhLY?^"5;lT/6@!F*p4PfOoWahKuAc3G5P/p=a:*"98E%zzzzzzzzzzzzz!!!"L[D
+_g-phKM;X',H"e$lhm1WSal]nj"Q_rINJY+CiQIVtWHbl1X\f?c7TH_](sQQ0'h]8G@NFG<!rfWC>"]6
+LgNklbi1ST)\jleJYA"5J.@)4)>0mWMTI-h/R^>]N:#h6*j8lu^Gta5qR%Y-#BZG0hPUol@[Up9Mt@RI
+@^m?$eTrW6F_dY-+nF46i!@k]VAk-.uFhSD3_E'p*,Q+O`YBVM0Oo$NZY2!\u>1A6K8[Zk/=5+X#6#5c
+06c9FClh(;cA_ie+4O5J'/i'n*E!I+CU[U\=;O]J0;Z;arP.V5C+rmqTi/J0d#?IN5Ng6Er__W<&%8]L
+O'ToLosZ%JhZdba8+lhf^X=l:.=]K->;OJs`7>p92^?U_r[JeF%MT7PWKP.q>"F_(oL@XK:7)AY-%LkN
+K%)/QD)M=WJu+,DV`eDFPtnrRB2NC,uH&Am],8[oB&2eJ4b^l>Q86j_j>FA9-@H=4'%,1=)o)go61U;T
+2\:@O]GrFm9-&#V'B]gY#ar-_\]<UroF?npi2J8f9[f54h-^1:`H_XIcapANm$;o7JgL=;C+o%"4l,:&
+S/:QMHGe[<!1bbh(Bj<!0aM=,$'>LA%TjqoGR,/n-Hs<1.*mZ<XSj%8k)DNMEQ>iN/s%b%td)"eC;ro8
+;gOjfb]:;Ut3-Wa^0%6VV5aVTShC]iB.aHIF9@Oe^WkW_ftkH[`/E[lmTGfLF=FHe;\"B;!H?GE[)!d)
+<Yb^Wa+W1pQTADN@U)HnEM%nfJP)YmY]Z>tp#TR]c0Z4L5Y,H,a.lR5,_mf1%1MiM2W6iIk6s:t<"\.=
+E>o[s`-Z.&eTc72Y!jf9jb^a&u\4JID5"&n^Ls00tUISG([#Ba;Lh5pjZ0!+]7=aKuM?Bd"VJ69qE%J4
+p=OR2,iZ/HfTf#fs@aOD,j\dm?<sKn)i)!LX])1+`W>>"F'S>o!gGND,`]`ZnWUa:V/dR530VNli%@b!
+i8QJW@m#<&eZHb)CN7:\3bl_HA*_-Am#mAq$b)deOJ)dlEna4%\U7%>9]dR4*N:,;)W8bGS;K@>ZJ$#d
+r@0112"!okF!mWi/B:7@6c%g2<_$"D*k@pJk_*>H!,c-PIYAX'mN!D=DdY?hX,IS#Xf")<io%k#-=9:9
+f$flR#'PK$:E4/lu9V/orpp%EM59]V0PBZfS*qgOCfrm&O'1I\cYC"@&Y%^)`Us[4_WH^/;pqV\#i$T9
+hJlAZFY_iHD+:mh-OYm9fiqs%<ue1)m6nR.mOLMQHMS5qZZDJr#XO85[3tH#\^t]h>Y!UeJal#?u+I7I
+6Rp]WFj"[2%s)SXfR7&UIsD.dFTC>C3nLW8"0KMp[9*f]hsY)jRfM@>]m8DpX96HoB.FYObc%TCmTV^A
+fE8f#u'uXIc2YZ!ub<kICGpXG,]3g?.s8D+CYk$uJ$)ZKmlTcPjE+^?f5J*Fm5nG6A:TheJ4qj,$N2cq
+/-L(hDjVSpN/=p=FMaEoi@NMu:S<6=Y(Zj3pII$/Hu2aiP%urG?i=M;:fc)grY*)UW'%djg;q]1<[)\k
+CR<&eVhZR,,,H%37IjG&\ukSjCL'5r6!.;phT7&,?7QPK):,i&'=<b$=%O;'LQT65S,X[gNf\<1Qbgd\
+dpp"cR0&QBsVQm:+^DCk<>$'6cOZEW:.=4>,Se*O0A2_7Zfgk:c>lhm%'5H3`9d$VYXNK?D^1%&22YEf
+>'>87I?lUF]nP[!0>OrBlMPB",b01]P5Ye&>+l1H1/0ipm:S=+`rU^8u[VW&\?9X1eD+W4q0UF57FGb+
+P8!^q]OC:%(/JVF]sF=Z>V@i[2%t%B&@<XY:?]bj%h0HIbj:<"1<6QH?IG=B19=PQ@5she9^O2dRr&bV
+$qpc'2`f*n6R@)(7io41p4Moo&P[,pW)&Jkl^madd7O_tWeUdN3"3Eno68lu<[ooO"jU\pP#doD,2lJ]
+rtJc)aPNFtkY6.o8qumN-J<LFR#D`DMBRETUgB1G=JEhjj$HJkW>OI&rpX\@t_dA:'$%bpR'..^MJj%s
+>;fcPT!2a^)L4DGb"RaS``6.T[#3N7=A#RGRlcBK6aGf/u<):&A36_J8m`:hK:b@c[)O=b=a8&W2i[ia
+/>#e?%Qc%a8PW]o#LEZSM?P/4!fIr\Xg+Y=V4m;'ndT^#US8RE)=!GnSE.1AR_.6"KZt_8lZQ5!;l5HQ
+;Pj'_W!mCam[CAfdS/-]#uXk(R'O<A%FQ1B!FlM@ROiGuYh.h3NI@p.<;5bOhC$m<R^/D?'Q'G?Gl^-s
+<K(\\C49/-p'[g^]Lbq[GWF:HAtiAg@7l`?WLO+)gH6<B5qYeQ%YSo>`'V:9[c4E;t8+6mahmk84pZLJ
+Kr@>@otqDQB$KBXLt/Prkr`6:m;2RQo3A]fr;.`p\5?7kg@/iWC']K&uJna'm/=5el&8l7u=gl7eNtDK
+msKnt[>%PfEBO4i(+V($"-\QGFphLFn^1.s\[tVA,<8?.>t#Bcn(sUqA_<d<[sL&QE@V)X84lDFu6u7\
+am6G>d>tf?aGWVEZ359Jf$WrgOp[66W:$mQWF]b:KtEA)DkKL8t*l[;YIPaLkFn*b0tu:^A\;1RLAH-Q
+RsoZQWmEOhCEXrdk'1`)('Irl#<B'*8CnOD05@3Y#A+<"W\3"i#IBTtRnTO2jLtN5"cB!Qn7Z`I=6=6f
+[2@B&0:6R=WTUqQT9Y)`o260;]6Pj2<p"aUD^?dt_5DT6*>qLUM:HKeoK'htGt`S*LGg'%5tH4)dG3)I
+W8X5Q+/NZCit:.1bsXgMb78-Y05)$OfL]U9fG'e!mq3f(6*3-#j/[A9pHpIDd[N>R*^[Vcs5hb,%<i.<
+YY21e2)NlL1-)jBQ\s:qPXLF&!V]]hIQV)>W1TP'k\tN!:H$1EO[&n;@g.6Bp_YrQ^o[Zd2^3iXXY99C
+bZp0cV7`G,In^kCel*&7rT7QngRGRJ5T.^Lc)Las7Xo*rF/q&T4j@PBj0o6c+F@Obm\s8pdO/=_/fL`t
+]CbGWA#ELEs5$*_1#a5a,@HHV/:uTsDj0./&c6N$%u+_-'-f=]@RS_U2ngG5<8JI9oQW#4Su>]oMrJ9n
+N$:KHRTl4/\-4:hAorfu8G+AX*!<jisBp`Q0oQTeGCfk%3[uZWWGokV?Xh1l9QMH-7D<+*Ui90bi/MlG
+)QM-1Xg!=dd6Mc&HRa!4kkR9q?G1GCu5JjrKcj/\raE_,YKgC%k)-:NJ9a2n-$99uo#!U?0NCTg9[4b_
+CC&.;u0QO3$pi?I3:(0dAJe>!q&gKE4_XXZT$M-HR48bZJRQ@DQa(2$N3>=0r)8N+D(RSTIpnRkB:=;`
+U33EM;,F>a\ITQ0CB%^.mj"MI+ag*2(AX^6n)k=lZ+=f<%/1PK/oEek.ASKp6OfcI%BlDjoInj3;_[EU
+ALn8K#T+#k)?Odp=)(b=iPH%XD:&)lChF\rZo-5T';CLa\\T$1dnn1qRdQ1@MfsP0#tV:,&ta+u5QOJ*
+D#V1/jPbAQ_\R4%>U]`r)PPS)h6@aG`>#Wlri1jG4Bp';]d*"[td2%%1H#5"9&g7uT9m;.$>XS:i&lQ$
+*3[6ZU+gIAFtQ[r,,&$,cS-2r#IK9W?Jbiaf%qlN6-=VnESa_CpBP5c.k"i6PX-+HAn4,P'MQ-;>her9
+S-=/h\]pZ%5TKb^du/pR6'3`b6\%O=AQU*J8@#5AJc@!1@Yk#h:$3Onks8d]0peh.[ufR*5Q%k"fUR"r
+NXI>VWaC54?S=Fd2WgK=?9.V%YZRHsPS>Ut@#"Ca&*uM&l#4m-i7RH?\*[)cgLn(t#VD4Mh+!!!%O?"L
+"-Ch`.5s,i6qTIBu!*.r4n;o2D)P`baW.FCtoQ7AhQ0+b\U$6`iFGNLBkbb8YZ^ELF0q07GYE+X4-tpe
+CD`r19<b(UPa+6b=j_B>%":4QopO,iM\P\]If)+>XjNRHrDd#+<IbAI]I#H)8;#R1h=WoIW^=_kul2$l
+P@VP^Jj<]n8*1;s!p#FV1X=p/#p@fk%`j,@(!qEe5_2L@g1f_klJ+mcY:V#t"=)/m(,k,ZX(cn^WnmcZ
+W;n>jD&WT=&(gZ@@hE;jd:Tjt9qY\&pITpFbaS&@VM8po2u":%>u]b`:"$IrU"ogKCl3nEKQE\`1"g4f
+#6A=FAK2FfX?BV9:qCe=-Dn-O5IDO]i#JTDV0u&B2RZkdpY'B8d;LUHZt3ocPrCbW'%qW$T=Q/4]IGo=
+ZgH6WLnZ'<4eh,CE3]N=d'eWFAJM?cHNFMIg?$W&fMDEDfT.6'0c_]V\QqY`O6+5"aeNG`pVjIr&I6^V
+r#rq4$%?8%L"/[;/F4M_2-2=eo):f-GFfYne;f(V7hIdOQ[eP#Ntg,7>md%"(f1TTHO3(fsK[Z&u4U&=
+HPf>Xb82BZ`\QpAS@QB7Q^U,"Kao3$Rt.j7o7/HC9D,`?"*)K>_UB'>C$sTM3>R75BKFQ?e(XljE[5rB
+N8pEELm$RF6utj+GN#LZF=N4a"C-2<fRYoB0(Na:s]K;'Ajde7cNhq&ib[C[(HOU0M_8-H@.KQq(35=J
+MfTa'IQ2pVLffWjmaA7GmSqhSRmkNl@J/C"pEB?#MEGR!(Aae>KUXE0\/Zi_dGn,u:psAa;m$m`p8Jg6
+S-WaQP94,;HZOoN`n#Sm(lNY=o=,-@_n`LJ#SMATHS_QX2&WSmLDTPDS,i*ZlpCSTIEbH\%*oFa0M5mh
+@NMV?Te&W>0/uTC"2FOa$WGYPG:'koEt`1mkr1_n;GYW;>CQ$Tf#irdfXF5+K9d2#+QbIRboZh\9Umlk
+7sRP<tBl05uJVL@;BdO#@kf5)%mal(lNir)8p'Dj$BQO2qJ20EbIe*o?=F,P(?"kbR;#VYKKW3<%->Zo
+=6#n)69&eflIsfCPIQ]^)'X%\DC6P*<ZC':852M9HTH=XpPtA,$suVtAilDrL4s4tNq\8I&gi+2LNn)\
+:$014L%22W,Gn$h45]`ME$"^5T01I<S.%c:Zs9B?N]7!LjcfcA-A^M9*=?a72\)@7X_")>d1ODnY)D1a
+7";F?$Brdc[m"h`Mq3Lr/=YUo8i31.aJqj)*Q__(p4jGs:5pn?)U,]@CUoES_fn"2skXj\&JN@se??8X
+bD6QA`1>r;n!7CakpCTTt@pLL0($cUfu?KgO6.PY$W0%+`L)-Ka!TPPGVRhT_KG1GX4ocQHRU4>@h<8K
+(:WUnUT4**OLaT&W0gP=/^kAWfGicL8jbas@#CK/>@HMg=g'cPMgAAH*uO^N4@/kG6%ldSOHuF?eW)*P
+\SdSbuS@=q1DMHZ%-Bf-_p5dE$,W*C\Rna/QC5R9mj4;eV2U$^i[>T*dD*-'<>m>P"?+MSDi4>;V=[B#
+Uij?@9k#bAU9iP1IHOSG7081(eCCPL9!YT?<5=*]P9<SfQ!MI$MsSjl4Tr'Jb_?ShusA-bUWk-83=ZW%
+s.g7,7?.PKOoF9QI,N2lOT0X5uZ[Ac1!Ag",65/IMpB8)jINs6==a!ej>G_foNk>,+Q0OG[C*meDD5\(
++2d3J"Q=+6$4u14/%L^1!?"D>5l)`Ab#tYPb6K6EV<M'\<oljJDL-O*S"C9JU<oiS'-,$,a0,bh"iec"
+`?o2u<,bG7[b$q:R1lI#;l1':qnZ*8UU7,SRka(;\1Q3@'%.?6[R//A2]2>\5E&W(E82<_1nm4qt`T7-
+T-Fj)`A,9_=!YlA^snq4oiEcgH%39Jf-W.&N-;W^,h>S1mG`?"U`/lc$s]T7np3<>@Q$Fsc7Xf$uOedu
+fGj2KRs_r0^eoHJiXfgU!(#;QUlZ5B],["$$>-ZG-_ej)s5>0ASidN^he!liVs3[E#qkJc@i4F6_saZi
+>Fns4q#6SM#*)F]FBKRj/`Od\P[62tK^T*Ah+q9YjlnY2A@=7m%;VI2khrWDE#QdKJ]L7VApN\2t&"`;
+_XP.C4f.]$4,0F*f8k$h]X+6M%'s9_EX3CM#2k).IRfCU7#r],%A)7<lp8H85E-]0=8Q7A^B8-$rV#k1
+rOh.B7IR.u=>)&GqCm(H]-4SdLHLk0^VT(T1_@.na"ESFc1k;p@9d&=hhLrPsj<fX6;@EW?(>zzzzzzz
+zzzzzzzzzz!!(.RrrZ-4)hS~>
+endstream
+endobj
+11 0 obj
+   6262
+endobj
+12 0 obj
+   << 
+      /Length 13 0 R
+      /Subtype /Image
+      /SMask 14 0 R
+      /Width 48
+      /Height 48
+      /ColorSpace /DeviceRGB
+      /BitsPerComponent 8
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+Gb!Sm@;k0K%.0\Bk=Ia@MZK#be[-&hjfb;m5\QTCCfbZ*TrK1Q#S5\b4hJ>^VW69B!-;/r<GON%_mZ%q
+!tb\t0NOW+Imj&qFBbN'SJ<#pVXK%-B4)M%D$G`",;K8+qu(u^Gq;g0!Qg^%Zj-4W$dk\BZlYUK2'+H3
+O8h1]+b^S=_cRO\&DA'.hUd/f]r#X64Ma"MX1U\-%FO#dMYP7"X,]lnA='^A'8*4N/lR9(q_[r3N47qQ
+1E#,/k;NHpGY(K:lH!MU7X1T$CZ8m%#./LGoi:A6VoCN+2f]SfFS&sUFof62EVr!a+b#4tl#\*g7/$a7
+Z_UK+Ca`D_"(F2,dZhNbB-$J.liu/NN&dD7[?NR080DtM=L-h6hJ@sqb_k$d]UME3&BG:GT2'G%iFM&P
+*gh>tq9pJ6(:lpt")&QMAFj195Z_i)nn^!r10U&@p/-^-@l"/I<Fq8rEO9&ed6t'Dq>sZjK'nrBEQE?4
+s#tKnBs-fe%$-C,hpa6"*9lPiCC`@D?QT,c0*trkQ<m!q"\.T=W+rL)cUP:Vmb^2l*m^&u[`mh6lmL^_
+I]Sqgj%ZMIJ=hfLW[mVXgXKIC<0eT2F%_AU^VplGH0OTg7S$uPQSud7nU@Uc,TF`YWbWM;=2qSHm/]6<
+D:ABR2kg`Y+H!P?5g&eND1s9MK3Z_8kMB#(]Yg/8Un3\>-Tq0KS5(G@.pmLBN_">:0-9Bqa^$U,(e_X=
+kgb]qa5[-lFeG'taWQK`$0q>6?9'ct#BW:.a]*RQSBn?1%=+;.O1(lD4YqDkj&=;'F'QBLPVgtU8N4X^
+'RsAjVC>80U#J-Z/(E^HgUNSO2>T4XbG7qTP*8Ds5)!]254b3Sog@[Gn&3KV]U*J,F=jU@TdAF>OQ_:,
+]b+NnRB4LU$?A<6`QWBHm8=pao%r9?cdc#HHeL?S#Xe/L'tHT9H8#m*SU.j4\=_-RI`K/LGfKQKoFi][
+&3>/Tqbc=Xf=#dA.W1#sX&j=-9nulk8ueR?h\H+6a14,d2sb:=o9[A(1h4;P&Jrd=)+h/GR?5I?#VP4.
+Wpr_]`$n.J]j6P&R*<sLc9+3PrdtbC$uNoEIZU'B%6!T$`$W8aqj3'B74aga;K`Ad+-L6nf)~>
+endstream
+endobj
+13 0 obj
+   1127
+endobj
+14 0 obj
+   << 
+      /Length 15 0 R
+      /Subtype /Image
+      /Width 48
+      /Height 48
+      /BitsPerComponent 8
+      /ColorSpace /DeviceGray
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+Gatn%>t>Z,'Z][DD/*csj[X'i(2[4mMb.Jg&P=Gq@9?rA.Nq5&U.G,W7Ss[b)/+n@.V5<\fqMrmp44-L
++r4kuq+ulLWGAPMX(uLr^R<muAldWtqp9ULs"hDOF6D?Y*/5"@@a33^:migV+7A;VJr>I@KhJpj#Vbsp
+N<5u8N,q,X(]"Zc\RaG^i0I;(?lZStD0b\7d[fncBGFl2*L!Pf\Gq/+K;b.raJ&2Ccq%^T?IS^ZjOua,
+PB=MCBi6Ct,+UC+3N;Yi1_ob#_)&'N7i-jhY;?9d^66W;>]Bm&EG`LcqCO29g-M+Ws-n2X)?=C;.>W![
+"bLMh3YYc(Xk-mlms]:\3'=sM0jl9aLX/m7dAZ+>YJN:V>0]2(3NOs+-PNrEH[M5uERGQjTs!\B/5X@`
+N^W,>-qTARb0g>C/,3tfRXGh3#*_gO2e06M(:d;'k&o6*Z"'0`b[.kpakOm\T?)suC[4>8e8E,,jT>&X
+^4[8A)"eYE5).l5Z[C7G?_Wq63'cZA@^B%jEI<Ah0XGqT+raP^Qi@,`<8PT*3r]JP,YBtJrH(4=h^.1X
+%=E6F:So-N_($_s2pe-]T43[LZisX^"<@^>5_#6X*q>32aA*'V<9-#t(!2Sbca3dK*aZB%^i7RkOUeNJ
+>27jECF]OeD1:(!n@b*Zqulr1DY"u21'=t_]"E.iW"LFe=A`kk]=L\P85*J?0R#aGcVmur>8#7e,FTW2
+@ulA`T6_4Y2^(tq782(PZDF"*QF7ao@OVNQ6&lbCT\BZgT(ki+%Cf$h$1V_]>,i+,S'!CTLT=jVo<n;`
+Q>ng$MoG,R&HEiB5D:G`4GHpZhTrj-ODLfs([*u,!3LLC=jVFm=?cY4i3A'A)`(B_i.UGP@.5SRJl+B*
+2kAr]C`ha;"9s0"\>)7R!`$i-llMHKqe0u*9/n$M4/,&X?g1qC*FlV~>
+endstream
+endobj
+15 0 obj
+   947
+endobj
+16 0 obj
+   << 
+      /Length 17 0 R
+      /Subtype /Image
+      /SMask 18 0 R
+      /Width 41
+      /Height 48
+      /ColorSpace /DeviceRGB
+      /BitsPerComponent 8
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+Gb"0;!=]#/!5bE':MgUI'EA+5!!)p9(D$QI~>
+endstream
+endobj
+17 0 obj
+   37
+endobj
+18 0 obj
+   << 
+      /Length 19 0 R
+      /Subtype /Image
+      /Width 41
+      /Height 48
+      /BitsPerComponent 8
+      /ColorSpace /DeviceGray
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+Gar8O(d('VYhP]sFgqAMs'J-H_IB1Ls$(c7/"?T;pg8l^_B=rO#L%i91/@cIs1&;!AP<FL)D89!)B/PK
+eTjCW%g@G!j7A>rn,EZt%ZeJls,hjJDM;0k^O?DfFmnf!#i#c*r6M<m.cbjE5A"RZ>]qA8rWiY2D`U3a
+W[%pB)A&$S5bR5R!'M(^2-%e,.V/2=8EWB<kPaTDs**`F$@@:(HBK:OiC-Q[c\JalDuB(d"gb$)JV9e\
+'n-.>liXNR=8i/Bir?>E-6V%E*(SQ#$FbRSRXg@hn,J`t1'ZP2ImT$DJbLB[fF_8['!QW5_[U.$T!JUj
+3NCB/!\+/qs8R3a.:\]G:lXsG<0..7`rm+ZdejFZqXJ_9$=ZgTQHjEQ>k0EYTj)?n5FCq#,I#5lj:(,R
+;o`n_8bB\Q:dc-\MuGpN;s8pu+kqPl<^7W(6Fbq1r;Qdr=SDdh$`L'9TE"?[MV.k,0CSrcZGPZ%+.0p&
+s(>l8$?KDMmhm;V%F1L&h0]D8g8rSiKIKSSZWJ1kH6tc?bVY':$35jie\;~>
+endstream
+endobj
+19 0 obj
+   546
+endobj
+20 0 obj
+   << 
+      /Length 21 0 R
+      /Subtype /Image
+      /SMask 22 0 R
+      /Width 48
+      /Height 48
+      /ColorSpace /DeviceRGB
+      /BitsPerComponent 8
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+Gb"/g95_U#&;I_u0@<CWa?re']:Qj.@N-SGOLcj"P>HDP;psQH)d\@m@l"Hi7^E@EN'I6-q8]8X@(0[/
+-t9>A4V_N^*aU,?f+B8BO,aF:WQlP(UjtS4bWR0Z4?(KjgYoZ%?f17K=C?bmp3@kQ<*hP@_0HZUlSB`L
+IU6h(Y2Id>@Z2U2l/Cc^OsaP"M$0!%q6\?iXs08uD`3tA4Vf]jnq3+GdjTK><i.D4rR5F^094hGqXW;Q
+T#g9]n]Wj1l$BJS=Loi7R&=dXF!R4p-PW#fnNt`oa5hg2EL&WAM9VJM?.h2T^BfI>BXJ<A;VT;S5nuo]
+OE?I\R82?THfK2\]Qq(-EeQJW,=ka1i%&9&#PJr)gt';F^L)HArpYq&:Cm4ROq9[eo2`'R0cC.nXL!]<
+U1*VmS&al1kaA%35^&T-D)DY$%l>uK7"9I\)i]@Q)'0^+-Tl'BFQm^&LD2j+ZVmSH4>?D%\lIu(%n+UT
+JE#O\R'Pam6bkM*-!j`VKiZ09#I\&,'%#WQZ)-MIYAHADOceY340X>7Y6++mB\!R)G1GHDDlQtUB],(X
+CmD-_:9U\UN?1E<*q6P`iSriY_>4ki?K7Rta0an4hKV391A?)uO*!@=1Aa,qR6%O%Y%7A19)NjjkFRR$
+\2Ag'f3OjoC)pZpXOi\!K3cBD!4PuMkP~>
+endstream
+endobj
+21 0 obj
+   682
+endobj
+22 0 obj
+   << 
+      /Length 23 0 R
+      /Subtype /Image
+      /Width 48
+      /Height 48
+      /BitsPerComponent 8
+      /ColorSpace /DeviceGray
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+Gar8O(gOj*""S?+V>f(rXPa=9p&>io?ieIMj&A5DS*6*QW1MC&P(CGGPCZ$AJgg;Cs3EJLs80gZo]Emp
+1$T5)c".HtF,#s"pJVr5\/u2?"@uG:GjW*]8a>dEefr4!!cfQs#6k$TGm4IRY(e`>Tr;=@=WG_YI0'mZ
+X?s.h,:R:%o\U;1U-2"s?jB^kk]pWY(^U&Uj_T%S(^!h=08bl?jZLT`5f$;mW"9>;JCB/jf^nb^>jD?]
+T7@)M_!+-)nVC#f(hc0tHADOh85_*dIP+4Wd/[VJb!IAQ2uIlT,k[V`cB.00?<5M(1BE[X,:L)W&Z&gu
+c#*`GC\IuL<diC@7_Qe@V[NXaJ'0QOrpNFCHVAsDSf4ik&-lj^s*N^I;gLKp\K>I3]g8IQ]n[0cB=QG!
+_lBSsC*4pVnUtk\LBGuq2$4pg4YLfTR5/,8h#/FVW.KOU3<]bQfnjkb>larDr'd"~>
+endstream
+endobj
+23 0 obj
+   471
+endobj
+24 0 obj
+   << 
+      /Length 25 0 R
+      /Subtype /Image
+      /SMask 26 0 R
+      /Width 48
+      /Height 48
+      /ColorSpace /DeviceRGB
+      /BitsPerComponent 8
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+Gb"0Q#uD=K('j?\$of5aaPh[oQbrk3"8%O,,"/1cTIqX4"`sn_KjeT'PZ=C9_%fcX'biYc-n*)K2BgQs
+]"<dM7KF*4eYkaconXGDRY]tBgTPr@"`4InUaidqX&i4Wo[NMos7a7!DT)P>YQ"C5/*N\4!AXZ'!MXr;
+6uUU<e+UA^TQ-htK#;!hTBt+7M8ajVA(0At[F<K!%Np->a`S];mlYGk(L"6`lEqoV[!8)&MU[d<HStrd
+nG*O"Amnpa`lGQBKH,/WN!#I%2p@O)p+9ToGLm7Q<lr7CJ;<&ShLPK]LX]#HpGLEI/^GaZ;`8Z,X%\7>
+8JiD)bEl^<'S_B%9V%WTWuD>;V\[`4)0bHMgU:Pn4:bNrGQdLd^iJYk9g+Na\`U$#<Q+3u-PKl<O*>'U
+PkK7c0JsS0r")r3@Q`W.(`%i57B<%fRC0F:?j:g+NfDL-Ie]-&UZ:(\!dG4EPfiS8i$X'Pi*!Y2_aV5u
+mo,gqeTnU0am:o?q%nl63uceTa+OS#]peJm=Fh%r.$\74#a1r<fa1a32;6c*!![WB_Q+`</O&4_'b82`
+$<mNaX#sC4?N^9FY`.sF!I)E088+/OMB00]m%Z+hWcWH7Y]1n*hi8QlpsDU!R)jNnH7;!&+6"Fa)G5Um
+jmQPeDSDL4gis_<UCA.gc8QsNO3[(N1Vb(5s/kj^mdAcO2B1/0<4M;tjYVa*4%3GB4W@$eZ*4cuDskT>
+m"gIXd*SM\6[^B('3a1J[=!:%P9c-)J3U90/&9@>nJl+'T6KhlANWBUA3F1ib2FcLG[tQHM\fl0*p2N;
+*\oi`4ctj[jjP7^E7;g=&!,mB;<`6KgQIP`d3Zms#.t%_%Ibk5WFe;K\pO.UYF0paTnUZWL?Cbr$Ycj_
+e'aWZ+g8hjAe!dWM0\&';^@^ePt2et%6@:n+b6U'03U=Tf,-8U3P[6\;;GVC%:))'W'"UqM?2<1b+M*3
+=5>l!gR`a_%i`NY3\qFJ;S%.p,g5;qJqJ!Q\=<Su")%bgCofL-nHc$@lc)<p##bk2!dG-@c./odOLL!J
+%m)]1T>qZT"s]d.!LI*&kP9ge1lmF\^5HOF-RU_%6fNr_-J^Rmc6X-f)Lr33Y7g.?VV-3aFIVoffJM-c
+?lP^u>o?9r#^?RC,%.Oq;o'MI!E9'A!Q-u^(FO0H[_1Zu[[A!;"Ym%Ppl:/d>8&C8CMAoA/d#&iC/#'Q
+0l"I*g,(=feU)G^oN@G'PKZl).GE%c'U(m5]/5;rGp_/+^B<m*N+6?pYSa3,%LlkW:F;u0):[`hmD6Vu
+<`UI]1,.UK2>WlH8V2q;[HFF\^s&GKf%p-"WlAa-hmrtmM_+HObZ8J.QH_$V)65g6@WGV+9I8r_WH[Lo
+OPe<T3B_1;o6Adc(BI9H;%"\)L*+/DhQj4"'jDa`VZ#Zg`"Und&c'aEZ9#8gXOuoj5_#&BoK'K`U/D`2
+B:!h_W'#3_gn"ac4DZPp,IK(4bU4E6=SuRu5tioHYUpA%Y5`KJ_G+sF-aZng;F;u"`=%\68#Hl=#h/]e
+(<$[pnO.P'VCiq<[Gs5/W;nl'p,):f`=sQg>dp(NR8mAg2&>SqK_u<_<dULf'A#?0l@PMtN0ni\LXh6W
+FeX)'#tu(gCY/,!(/c"BMC4"dq#%c)N`g=G'EDhIkBcWFCo95%bcUNok?%1O'n0;Gq0Oj$!9M/*iND(=
+*n$aioSSRe4Xu*r3;f9=RcMuS4Aed]\%SKX$l8)IGf\WR!9!obE%Ti\Vno,m'rEkmrp=.i#s;ID7:hic
+J;UEu6,\u^]asX$?ZZgZ)m@1NCM?ol4en/]Z:b<uo?-.^SnN?g#0j<TcPXY4:j9Z/$G[Hc"$=)"4^/s!
+c1X1$f/h"!9[*H!r\%Bd+&e(O4Bpp(s%`.?,Hml/S>O=JU`keRmBjkgbGsV(SXp)kF4VMZfg;c(k\I-/
+hfrJqCetiHc^oL'%5cfq2RH5d[+Zt=>.F:kgte%C(?=uPa,AC7q'Y!e9g$TP]dGm'?;X5=4[or4Tco3a
+jO"m^el>:h`Y6I=DG5gQAh[."?EKe]V!Qd-ZItd;Noc5M1Fo^VT$SC%=cLUf;i["'h)F,W^[:9KN1U/R
+O6=[/mtI;Qmoi$K$^k*69KqcF,WM7:a-H-:#d/t,b67/9E+%1BPVj>/gr"V/maLNE7Mjf-4j"(6HJ3(I
+[56LuA:LH2p.`'b'lqUUHG>i(-+>[u:<t#!.q?!Uc\$_+JYd+R0REDR&ch\-Gh?\6m^/:'nYfF4o(iZn
+>9pq\hq-U+HG2j%4S^fK@)$KIp3opOo$q1FkTNC_]SD;c/Tt6MSU&o+Co&&:q'Tl_55d6+jT.RN9-ZS`
+eI/8C*iA'1(?Cn,?HIu5o[VB=-Wj.sQ\Wf54<Y-tj[nsL4]6^79d@a*!?o/AnNT<T(3"PBd]g[o,Yh`T
+n-aSjF==,K7>C>aUQ4nk0tI#OiZZG1THVu+4Is:1)L*5t>ArUHAY]>JP]!;JjAJW;P+<?\kh3ed8qfNk
+"XBeV8D_:[/Fid*7oPL)I)-Dgr&bWl2if_[<+k]CKJAdcX4)::)gY'>;;fG9\C=&IAu@U9P+NJ3HB]Ep
+"BTq(*VN["\+1rj;2=]t&uGu$ST7k8/^bo>S)j^0*'bp&_1USEo<o]<`WL`L2@d$]]LU%=E<:t[=IOhR
+T18QVnL.%<7(HGt'?5PoT/QAGmePu0\*W@_rq[_8rrRpr=IB~>
+endstream
+endobj
+25 0 obj
+   2723
+endobj
+26 0 obj
+   << 
+      /Length 27 0 R
+      /Subtype /Image
+      /Width 48
+      /Height 48
+      /BitsPerComponent 8
+      /ColorSpace /DeviceGray
+      /Filter [/ASCII85Decode /FlateDecode]
+   >>
+stream
+Gar8O(^2_t4C)%;"^02@^$fksk@2B(>lWa^s8OtqEhLKn\,Q:)s)jGX1PYJ;O8hN(BsnS9SB6&\i;['e
+W5^NIYPo%9^Qp=S_*kWd_aGRo$8<VP&&.]Y!A6h2K&m\J+pn6NUrEmCc.D\3"alpnbK@U3n-E%d<X9ec
+9pSl\UOu5-@LN41$\"]k`<oNC&4?9ns'*[O#lY5D"0)<X7I&YJ/:tY&e3W@aA!+@6!h9$=?!QZE]Hp98
+<q*_BBWM.8nLq??a)4(/IE*ERQ!^Og"0!)PIRB(b:Bu4D76p-@AKm-I<dnt4V5kje[k\>ZbkcouooE$M
+P7?GQL64hPpBj+GcaU@XbJWoZ&?puDXT!rIorfleEihc-ZTKJAHJr_"/-5m&hsBV8=6IRO;HP1bf4.\W
+n*HPG#>'k`$"O384uW"VV.fC./$FIG*h3"c*^&(T1GGb4`)Q_HOpqXKok]@udF-$q1Xd#%0FL6m+DJ;K
+7TTLtCJ00j:?+VuaS6hS#?1TulC;*0;/AON!)*Ij;k^&MVZXUEl<&sb'Ypl5E!E*XPea*a)\)m"_WLII
+I69[s.=pF_N1A#k,t1!G$&jr\8r<[0K5i.;!,D5OQ2~>
+endstream
+endobj
+27 0 obj
+   611
+endobj
+3 0 obj
+   << 
+      /Parent null
+      /Type /Pages
+      /MediaBox [0.0000 0.0000 628.00 773.00]
+      /Resources 28 0 R
+      /Kids [5 0 R]
+      /Count 1
+   >>
+endobj
+29 0 obj
+   [/PDF /Text /ImageC]
+endobj
+30 0 obj
+   << 
+      /Img0 8 0 R
+      /Img0Mask 10 0 R
+      /Img1 12 0 R
+      /Img1Mask 14 0 R
+      /Img2 16 0 R
+      /Img2Mask 18 0 R
+      /Img3 20 0 R
+      /Img3Mask 22 0 R
+      /Img4 24 0 R
+      /Img4Mask 26 0 R
+   >>
+endobj
+31 0 obj
+   << 
+      /S /Transparency
+      /CS /DeviceRGB
+      /I true
+      /K false
+   >>
+endobj
+32 0 obj
+   << 
+      /Alpha1
+      << 
+         /ca 1.0000
+         /CA 1.0000
+         /BM /Normal
+         /AIS false
+      >>
+   >>
+endobj
+28 0 obj
+   << 
+      /ProcSet 29 0 R
+      /XObject 30 0 R
+      /ExtGState 32 0 R
+   >>
+endobj
+xref
+0 33
+0000000000 65535 f 
+0000000015 00000 n 
+0000000315 00000 n 
+0000037304 00000 n 
+0000000445 00000 n 
+0000000521 00000 n 
+0000000609 00000 n 
+0000015867 00000 n 
+0000015891 00000 n 
+0000021581 00000 n 
+0000021604 00000 n 
+0000028091 00000 n 
+0000028115 00000 n 
+0000029484 00000 n 
+0000029508 00000 n 
+0000030678 00000 n 
+0000030701 00000 n 
+0000030980 00000 n 
+0000031002 00000 n 
+0000031771 00000 n 
+0000031794 00000 n 
+0000032718 00000 n 
+0000032741 00000 n 
+0000033435 00000 n 
+0000033458 00000 n 
+0000036423 00000 n 
+0000036447 00000 n 
+0000037281 00000 n 
+0000037998 00000 n 
+0000037475 00000 n 
+0000037515 00000 n 
+0000037753 00000 n 
+0000037855 00000 n 
+trailer
+<< 
+   /Size 33
+   /Root 2 0 R
+   /Info 1 0 R
+>>
+startxref
+38095
+%%EOF

a.4-best-practices/slide.tex

@@ -0,0 +1,26 @@
+\documentclass{beamer}
+\usetheme[numbering=progressbar]{focus}
+\definecolor{main}{RGB}{47, 161, 219}
+\definecolor{textcolor}{RGB}{128, 128, 128}
+\definecolor{background}{RGB}{240, 247, 255}
+
+
+\usepackage[utf8]{inputenc}
+\usepackage{tikz}
+\usepackage{listings}
+\usetikzlibrary{positioning}
+\usetikzlibrary{shapes,arrows}
+%\usepackage[T1]{fontenc}
+%\usepackage[scaled]{beramono}
+
+\author{Team CIRCL \\ \emph{TLP:WHITE}}
+\title{MISP workshop}
+\subtitle{Introduction into Information Sharing using MISP for CSIRTs}
+\institute{}
+\titlegraphic{\includegraphics[scale=0.85]{misp.pdf}}
+\date{\input{../includes/location.txt}}
+
+\begin{document}
+\include{content}
+\end{document}
+

a.4-best-practices/test.txt

@@ -0,0 +1,45 @@
+
+Model of governance
+- Dictatorship instead of democracy
+- Gathering ideas, issues, use-cases, code from the community is key, listen to them but reserve the right to veto
+  - Prevents malevolent community members from blocking the process / imposing tunnel-visioned ideas
+- Don't wait for the perfect implementation, start small extend it later
+- If the idea doesn't seem suitable for the above, shelf it as soon as possible
+
+Development process based on failures
+- Any idea needs real-world validation
+- Be willing to throw away features that "sure seemed like a good idea at the time"
+- Failures can often be used to pinpoint better alternatives
+- Format follows the implementation (code is law)
+
+PMF model
+
+On the flip-side, the dangers of sticking to theoretical format development for too long
+- The same mistakes will be made anyway
+- Piling mistakes on shaky foundation will be more difficult to undo later
+  - technical reasons
+  - sunk cost fallacy
+
+Designing a standard with sharing in mind (how not to do it)
+- Originally the sharing aspects were quite limited (private flag)
+  - If I want to keep it within my organisation, simply set the flag
+  - If not set any organisation can see it on the instance
+- Utterly simplistic, only worked on communities using a hosted MISP
+
+Designing a standard with sharing in mind (how to be a minimalist)
+- Needed to be extended once communities started self-hosting MISP to be able to control the distance of the data-flow
+- Distirbution levels
+  - Organisation only (private)
+  - Community
+  - Connected community
+  - All
+
+Designing a standard with sharing in mind (going all out)
+- Still not covering all use cases, certain types of users wanting more granularity
+  - Sharing groups (distribution lists)
+  - Complex system for persistent and special ad-hoc use-cases
+- Next step: Multiple sharing groups/nested sharing groups
+
+
+
+

a.4-best-practices/texput.log

@@ -0,0 +1,21 @@
+This is pdfTeX, Version 3.14159265-2.6-1.40.17 (TeX Live 2016/Debian) (preloaded format=pdflatex 2017.6.14)  25 MAY 2018 13:50
+entering extended mode
+ restricted \write18 enabled.
+ %&-line parsing enabled.
+**infosharing-introduction.te
+
+! Emergency stop.
+<*> infosharing-introduction.te
+                               
+End of file on the terminal!
+
+ 
+Here is how much of TeX's memory you used:
+ 5 strings out of 494945
+ 133 string characters out of 6181032
+ 45270 words of memory out of 5000000
+ 3400 multiletter control sequences out of 15000+600000
+ 3640 words of font info for 14 fonts, out of 8000000 for 9000
+ 14 hyphenation exceptions out of 8191
+ 0i,0n,0p,34b,6s stack positions out of 5000i,500n,10000p,200000b,80000s
+!  ==> Fatal error occurred, no output PDF file produced!

build.sh

@@ -1,7 +1,7 @@
 #!/bin/bash
 #
 
-slidedecks=("0-misp-introduction-to-information-sharing" "1-misp-usage" "1.2-misp-integration" "1.1-misp-viper-integration" "1.2.1-misp-integration-mail2misp" "2-misp-administration" "3-misp-taxonomy-tagging" "3.1-misp-modules" "3.2-misp-galaxy" "3.3-misp-object-template" "6.0-misp-dashboard" "a.0-contributing" "a.1-devintro" "a.2-pymisp" "a.3-misp-feed")
+slidedecks=("0-misp-introduction-to-information-sharing" "1-misp-usage" "1.2-misp-integration" "1.1-misp-viper-integration" "1.2.1-misp-integration-mail2misp" "2-misp-administration" "3-misp-taxonomy-tagging" "3.1-misp-modules" "3.2-misp-galaxy" "3.3-misp-object-template" "6.0-misp-dashboard" "a.0-contributing" "a.1-devintro" "a.2-pymisp" "a.3-misp-feed" "a.4-best-practices")
 mkdir output
 export TEXINPUTS=::`pwd`/themes/
 echo ${TEXINPUTS}