From nobody Wed Jul 3 09:40:23 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4A57C1202B3 for ; Wed, 3 Jul 2019 09:40:21 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.997 X-Spam-Level: X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yxkQ1yEyVwPN for ; Wed, 3 Jul 2019 09:40:19 -0700 (PDT) Received: from mail-pf1-x42d.google.com (mail-pf1-x42d.google.com [IPv6:2607:f8b0:4864:20::42d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 912CA1200E5 for ; Wed, 3 Jul 2019 09:40:19 -0700 (PDT) Received: by mail-pf1-x42d.google.com with SMTP id i189so1537063pfg.10 for ; Wed, 03 Jul 2019 09:40:19 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=TooJ2OcoZdfcGdOVenm3aDJt7wdMiOiAwCeAB7+6v/g=; b=qsk7U4m46r6RvhXgE68VeD/AnplwASaKFWeyrrq4qC+LgOXBER/Ig0++dSWdni0iFj jwbQmHsW/oTRMVBOvqzqLrGClxEldfgqCQsABNTjtUXhaqEni7q0Au11PLvbnYmuNXu8 GWiwvKsDzACK9qfyPSGfgpuLZxhqtXzNkDNWvwZDE4amwUDxjWEd+Q1aFVr6iunJpNT9 6kPzHQfNyeypnZT/pjbv9aA9NFySbe0vBd9A/uFp02hShAFIAf2+qvorkjVt0e4dIKur +RUf18FwLg2ZpsWCRYq/QCOxq84gnez7dJQbQkE/ZZgJDoilQSfcjweOdjIIess4/KPS Mxjg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=TooJ2OcoZdfcGdOVenm3aDJt7wdMiOiAwCeAB7+6v/g=; b=e21d9apoqjnWg5kiiVMz7kNCRHtCGMkwfAC1GUqn2ms7CZe5lWr4hso+/8tILIop7t 3oZw2MpoD2rL1o7eDqFvIQJEpWVG74aE0s9VwEyGf7MJf7Y0CYbUwgVjw4OhEpy4lJc+ RGwJNMsWLsJwug3pqzQH+n8K2V63QsVGPExpiw7tWQmRmyXF0VlfJpg/A/A1ONK2Icjv saa76wbuAWAgr05rZCi9O3e/ToS8IlD8cTTmclh1kBj9Vsexm6McPxXTgd/l9eeejaEE VwrE0zqutyuViA58svqKMZVyg70L0iWzSKHrL690tzwD6ANvZNO+eCOU55HIsljipn5+ 4evA== X-Gm-Message-State: APjAAAXahGufdt2XCK53EkFx7yd9+4VIqAYxuHDfLuTwS243WXAS6yz2 SdNgRI2dXA+gajRypDSISvw= X-Google-Smtp-Source: APXvYqxx5mQk3Nk3pv2FJdLoQTnMS+rCfeD5qEQ2LKqBjo8HsCaEj/N4vOD2vQO5W9a3CCgoy5mbpg== X-Received: by 2002:a65:55ca:: with SMTP id k10mr38468939pgs.14.1562172019097; Wed, 03 Jul 2019 09:40:19 -0700 (PDT) Received: from ?IPv6:2605:a601:a990:4d00:4d6d:c564:e4d9:4c59? ([2605:a601:a990:4d00:4d6d:c564:e4d9:4c59]) by smtp.gmail.com with ESMTPSA id b1sm3020326pfi.91.2019.07.03.09.40.17 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 03 Jul 2019 09:40:18 -0700 (PDT) From: Bret Jordan Message-Id: <69D9BC08-C42D-4C5F-BB60-656F847A53ED@gmail.com> Content-Type: multipart/alternative; boundary="Apple-Mail=_382409C7-8C32-4C5B-825D-9062046C1DC2" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Wed, 3 Jul 2019 10:40:16 -0600 In-Reply-To: <009d01d52cf8$bc6b2e30$35418a90$@internetpolicyadvisors.com> Cc: smart@irtf.org To: mark@internetpolicyadvisors.com References: <009d01d52cf8$bc6b2e30$35418a90$@internetpolicyadvisors.com> X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: Re: [Smart] draft-mcfadden-smart-rfc3552-research-methodology X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 03 Jul 2019 16:40:21 -0000 --Apple-Mail=_382409C7-8C32-4C5B-825D-9062046C1DC2 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Mark, I think this is great. Thank you for doing it.=20 Thanks, Bret PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 "Without cryptography vihv vivc ce xhrnrw, however, the only thing that = can not be unscrambled is an egg." > On Jun 27, 2019, at 8:58 AM, mark@internetpolicyadvisors.com wrote: >=20 > All: > =20 > I=E2=80=99ve posted an I-D that proposes a piece of research to be = done in support of a possible revision to RFC 3552. The general idea is = to do an examination of Security Considerations sections from published = RFCs. Doing that examination might help guide the revision of the = fifteen-year-old guidance on writing a Security Considerations section = by providing both quantitative and qualitative information about = existing considerations sections. That research might (or, might not) be = published in its own right and then used as input to drafting a = RFC3552bis. > =20 > I propose the methodology as a place to start =E2=80=93 rather than = dive right in and tackle the revision of RFC3552 immediately it seems = prudent to learn from what we can of recent published RFCs. I=E2=80=99m = not only proposing the methodology for comment and discussion, but I=E2=80= =99m also interested in helping conduct the research once there is an = agreed methodology. > =20 > Comments and suggestions welcome as are suggestions of where else to = try to gain input, > =20 > mark > =20 > Mark McFadden > Principal Consultantsea > mark@internetpolicyadvisors.co.uk = > =20 > > =20 > =20 > =20 > =20 > --=20 > Smart mailing list > Smart@irtf.org > https://www.irtf.org/mailman/listinfo/smart = --Apple-Mail=_382409C7-8C32-4C5B-825D-9062046C1DC2 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 Mark,

I = think this is great.  Thank you for doing it. 


Thanks,
Bret
PGP = Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 = 0050
"Without = cryptography vihv vivc ce xhrnrw, however, the only thing that can not = be unscrambled is an = egg."

On Jun 27, 2019, at 8:58 AM, mark@internetpolicyadvisors.com wrote:

All:
 
I=E2=80=99ve posted an = I-D that proposes a piece of research to be done in support of a = possible revision to RFC 3552.  The general idea is to do an = examination of Security Considerations sections from published RFCs. = Doing that examination might help guide the revision of the = fifteen-year-old guidance on writing a Security Considerations section = by providing both quantitative and qualitative information about = existing considerations sections. That research might (or, might not) be = published in its own right and then used as input to drafting a = RFC3552bis.
 
I propose the = methodology as a place to start =E2=80=93 rather than dive right in and = tackle the revision of RFC3552 immediately it seems prudent to learn = from what we can of recent published RFCs.  I=E2=80=99m not only = proposing the methodology for comment and discussion, but I=E2=80=99m = also interested in helping conduct the research once there is an agreed = methodology.
 
Comments and = suggestions welcome as are suggestions of where else to try to gain = input,
 
mark
 
Mark McFadden
Principal Consultantsea
mark@internetpolicyadvisors.co.uk
 
<image001.png>
 
 
 
 
-- 
Smart mailing list
Smart@irtf.org
https://www.irtf.org/mailman/listinfo/smart

= --Apple-Mail=_382409C7-8C32-4C5B-825D-9062046C1DC2-- From nobody Mon Jul 8 06:27:07 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 57C57120178 for ; Mon, 8 Jul 2019 06:27:05 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.999 X-Spam-Level: X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=internetpolicyadvisors.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jsd41fQRioGU for ; Mon, 8 Jul 2019 06:27:03 -0700 (PDT) Received: from bumble.birch.relay.mailchannels.net (bumble.birch.relay.mailchannels.net [23.83.209.25]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6147C120165 for ; Mon, 8 Jul 2019 06:27:03 -0700 (PDT) X-Sender-Id: dreamhost|x-authsender|mark@internetpolicyadvisors.com Received: from relay.mailchannels.net (localhost [127.0.0.1]) by relay.mailchannels.net (Postfix) with ESMTP id 26E97341266 for ; Mon, 8 Jul 2019 13:27:02 +0000 (UTC) Received: from pdx1-sub0-mail-a7.g.dreamhost.com (100-96-8-155.trex.outbound.svc.cluster.local [100.96.8.155]) (Authenticated sender: dreamhost) by relay.mailchannels.net (Postfix) with ESMTPA id 5B7023420DD for ; Mon, 8 Jul 2019 13:27:00 +0000 (UTC) X-Sender-Id: dreamhost|x-authsender|mark@internetpolicyadvisors.com Received: from pdx1-sub0-mail-a7.g.dreamhost.com ([TEMPUNAVAIL]. [64.90.62.162]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384) by 0.0.0.0:2500 (trex/5.17.3); Mon, 08 Jul 2019 13:27:02 +0000 X-MC-Relay: Neutral X-MailChannels-SenderId: dreamhost|x-authsender|mark@internetpolicyadvisors.com X-MailChannels-Auth-Id: dreamhost X-Belong-Average: 74cda024028ef76c_1562592421916_4270076795 X-MC-Loop-Signature: 1562592421916:2825315099 X-MC-Ingress-Time: 1562592421916 Received: from pdx1-sub0-mail-a7.g.dreamhost.com (localhost [127.0.0.1]) by pdx1-sub0-mail-a7.g.dreamhost.com (Postfix) with ESMTP id 4FC3182AF7 for ; Mon, 8 Jul 2019 06:26:55 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d= internetpolicyadvisors.com; h=reply-to:from:to:references :in-reply-to:subject:date:message-id:mime-version:content-type :content-transfer-encoding; s=internetpolicyadvisors.com; bh=7p1 s5x576cc8Ykq/u7cpwWhF5vs=; b=MzJDNuTgmxYOz/PP/cR5AenvTVFpX4DbZ4K 41jT20ptiCLdTbS90wi/0XuSW8aG3WPcXjXSGhU9TPURoo9SXqE5pn6r5EbRD2y6 LbDoYN6sjxWakPf4/6xHvHGhvhOqosIsWkiKaFGggqs6PtSwOc5yhJkASe1P0SrU F9n031Ek= Received: from Kahlo (76-235-103-220.lightspeed.mdsnwi.sbcglobal.net [76.235.103.220]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) (Authenticated sender: mark@internetpolicyadvisors.com) by pdx1-sub0-mail-a7.g.dreamhost.com (Postfix) with ESMTPSA id A960A8077A for ; Mon, 8 Jul 2019 06:26:54 -0700 (PDT) Reply-To: X-DH-BACKEND: pdx1-sub0-mail-a7 From: To: References: <156259169027.840.9135095847874577233.idtracker@ietfa.amsl.com> In-Reply-To: <156259169027.840.9135095847874577233.idtracker@ietfa.amsl.com> Date: Mon, 8 Jul 2019 08:26:53 -0500 Organization: internet policy advisors Message-ID: <019f01d53590$cf8c2a50$6ea47ef0$@internetpolicyadvisors.com> MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable X-Mailer: Microsoft Outlook 16.0 Content-Language: en-us thread-index: AQFMPd84Pfj653eiQ4e3NZob+DYjr6fSpcbQ X-VR-OUT-STATUS: OK X-VR-OUT-SCORE: 0 X-VR-OUT-SPAMCAUSE: gggruggvucftvghtrhhoucdtuddrgeduvddrgedtgdeijecutefuodetggdotefrodftvfcurfhrohhfihhlvgemucggtfgfnhhsuhgsshgtrhhisggvpdfftffgtefojffquffvnecuuegrihhlohhuthemuceftddtnecunecujfgurheprhfhvfhfjgfuffhokfggtgfgofhtsehtqhhgtddvtdejnecuhfhrohhmpeeomhgrrhhksehinhhtvghrnhgvthhpohhlihgthigrughvihhsohhrshdrtghomheqnecuffhomhgrihhnpehivghtfhdrohhrghenucfkphepjeeirddvfeehrddutdefrddvvddtnecurfgrrhgrmhepmhhouggvpehsmhhtphdphhgvlhhopefmrghhlhhopdhinhgvthepjeeirddvfeehrddutdefrddvvddtpdhrvghtuhhrnhdqphgrthhhpeeomhgrrhhksehinhhtvghrnhgvthhpohhlihgthigrughvihhsohhrshdrtghomheqpdhmrghilhhfrhhomhepmhgrrhhksehinhhtvghrnhgvthhpohhlihgthigrughvihhsohhrshdrtghomhdpnhhrtghpthhtohepshhmrghrthesihhrthhfrdhorhhgnecuvehluhhsthgvrhfuihiivgeptd Archived-At: Subject: [Smart] New Version Notification for draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Jul 2019 13:27:05 -0000 A new version of I-D, = draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt has been successfully submitted by Mark McFadden and posted to the IETF = repository. Name: draft-mcfadden-smart-endpoint-taxonomy-for-cless Revision: 00 Title: Endpoint Taxonomy for CLESS Document date: 2019-07-08 Group: Individual Submission Pages: 15 URL: = https://www.ietf.org/internet-drafts/draft-mcfadden-smart-endpoint-taxono= my-for-cless-00.txt Status: = https://datatracker.ietf.org/doc/draft-mcfadden-smart-endpoint-taxonomy-f= or-cless/ Htmlized: = https://tools.ietf.org/html/draft-mcfadden-smart-endpoint-taxonomy-for-cl= ess-00 Htmlized: = https://datatracker.ietf.org/doc/html/draft-mcfadden-smart-endpoint-taxon= omy-for-cless Abstract: A separate document [I-D:draft-taddei-smart-cless-introduction] (CLESS) attempts to establish the capabilities and limitations of endpoint-only security solutions and explore potential alternative approaches. That document discusses endpoints in general terms. It has been suggested that there are classes of endpoints that have different characteristics. Those classes may have completely different threat landscapes and the endpoints may have completely different security capabilities. In support of the work on CLESS, this document provides a taxonomy of endpoints that is intended to provide a foundation for further work on CLESS and research on approaches to providing endpoint security alternatives in a diverse group of settings. = =20 Please note that it may take a couple of minutes from the time of = submission until the htmlized version and diff are available at = tools.ietf.org. The IETF Secretariat From nobody Mon Jul 8 06:36:34 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8EF2C12022A for ; Mon, 8 Jul 2019 06:36:23 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.702 X-Spam-Level: X-Spam-Status: No, score=-0.702 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, PDS_NO_HELO_DNS=1.295, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aANRoGxgD5oi for ; Mon, 8 Jul 2019 06:36:21 -0700 (PDT) Received: from mail-qk1-x72b.google.com (mail-qk1-x72b.google.com [IPv6:2607:f8b0:4864:20::72b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 972FB120221 for ; Mon, 8 Jul 2019 06:36:21 -0700 (PDT) Received: by mail-qk1-x72b.google.com with SMTP id d15so13275083qkl.4 for ; Mon, 08 Jul 2019 06:36:21 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-language; bh=IjNhrg7W3w8KEcakDet3gLAzjUL+kJVLqgRHTCKFPRk=; b=a4rAEUdXUqz4WefKnoQFLxYlElTkfwfwy42nOLqFudZdO6mbGan8hpxYpcX3N4H4UT 0hNamZOs+1dMIV9PlVzCKtFiMcFwe7RbZV15ajicNquo5dK0rO190ueRmChNniS2L7i8 KSPWTHTDbeep9wc2SCtj9mG9V1yxspV/YHBH7CEYY2rvgd4vmbWOEalYHVpoTikH66H3 okmTp1QTwx9qlTHLfcZzDP0TLEfNrNnAr7DHd6N10VGQJtW4mabIDS+mgi1xhtkgyUJD CD8Osz3RXeJmJ9E5o3Z31rN6hCIJbbNO7ioakYaqjbg5ZdFz8p7Rs8MR/UlzCElAguCJ 80nA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=IjNhrg7W3w8KEcakDet3gLAzjUL+kJVLqgRHTCKFPRk=; b=MWAGhKLtehg42IXjMlttuvFRYlzjB5zTQdvolNkeJAWMY3CW2vDyKkoJXmNwymkDi1 sHKxGIeWzjS5VNAv+DGAWc15Mktwo0aZY+HhrFH98kc1Qz2UjomI1zPSz3mGyI9tMBT6 wceQPf/LrjvpYrefaxao+UkUfaer3LDO7ZaDZ0j8e3RQSuKUG5+MVGFe+2gRHML10XGl U3TX8LYYjV1G7fAi2m+7t/hnbf/UQgCiUI7vtqI5UP8CyFJBd2Zhl/MQVO//PN+Y46XF B+dHEzVHEpKr/vJuEN3csSrnKO9oWQSfjPOqQHCJBZhho00MWrPQyIpXn5uOCmDWji9n CeOQ== X-Gm-Message-State: APjAAAVA0Xdj5PLPWk+1FCREFBLX63oq3DtsMk5TQjKLNUp1Etrsx+uL JUB61l8jCTUnP0bvkYNRxYYWDAxz X-Google-Smtp-Source: APXvYqyGBIc4aWH0iIcZU7p5qz5He0w4qWViTSaplFgd7J8BR56mkWtoQqhTSeR0pzEhQrXUDhA2Eg== X-Received: by 2002:a05:620a:1443:: with SMTP id i3mr14750397qkl.11.1562592980374; Mon, 08 Jul 2019 06:36:20 -0700 (PDT) Received: from [192.168.1.53] (pool-70-106-252-118.clppva.fios.verizon.net. [70.106.252.118]) by smtp.gmail.com with ESMTPSA id b23sm8740264qte.19.2019.07.08.06.36.19 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 08 Jul 2019 06:36:19 -0700 (PDT) To: mark@internetpolicyadvisors.com, smart@irtf.org References: <156259169027.840.9135095847874577233.idtracker@ietfa.amsl.com> <019f01d53590$cf8c2a50$6ea47ef0$@internetpolicyadvisors.com> From: Tony Rutkowski Message-ID: <5efde727-8e1d-9e9e-a9a4-32ce3f60e359@gmail.com> Date: Mon, 8 Jul 2019 09:36:19 -0400 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.7.2 MIME-Version: 1.0 In-Reply-To: <019f01d53590$cf8c2a50$6ea47ef0$@internetpolicyadvisors.com> Content-Type: multipart/alternative; boundary="------------572A4D83BD28589F3D353DCF" Content-Language: en-US Archived-At: Subject: Re: [Smart] New Version Notification for draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Jul 2019 13:36:32 -0000 This is a multi-part message in MIME format. --------------572A4D83BD28589F3D353DCF Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit > But, there's an important question here. CLESS specifically rules out > network infrastructure in its discussion. Should the taxonomy for > CLESS incorporate endpoints that are part of the network > infrastructure? Said a different way: is network infrastructure out of > scope for CLESS? Do you intend this to be 5G relevant? -tr On 08-Jul-19 9:26 AM, mark@internetpolicyadvisors.com wrote: > A new version of I-D, draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt > has been successfully submitted by Mark McFadden and posted to the IETF repository. > > Name: draft-mcfadden-smart-endpoint-taxonomy-for-cless > Revision: 00 > Title: Endpoint Taxonomy for CLESS > Document date: 2019-07-08 > Group: Individual Submission > Pages: 15 > URL: https://www.ietf.org/internet-drafts/draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt > Status: https://datatracker.ietf.org/doc/draft-mcfadden-smart-endpoint-taxonomy-for-cless/ > Htmlized: https://tools.ietf.org/html/draft-mcfadden-smart-endpoint-taxonomy-for-cless-00 > Htmlized: https://datatracker.ietf.org/doc/html/draft-mcfadden-smart-endpoint-taxonomy-for-cless > > > Abstract: > A separate document [I-D:draft-taddei-smart-cless-introduction] > (CLESS) attempts to establish the capabilities and limitations of > endpoint-only security solutions and explore potential alternative > approaches. That document discusses endpoints in general terms. It > has been suggested that there are classes of endpoints that have > different characteristics. Those classes may have completely > different threat landscapes and the endpoints may have completely > different security capabilities. In support of the work on CLESS, > this document provides a taxonomy of endpoints that is intended to > provide a foundation for further work on CLESS and research on > approaches to providing endpoint security alternatives in a diverse > group of settings. > > > > > Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > > --------------572A4D83BD28589F3D353DCF Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: 7bit

But, there's an important question here. CLESS specifically rules out network infrastructure in its discussion. Should the taxonomy for CLESS incorporate endpoints that are part of the network infrastructure? Said a different way: is network infrastructure out of scope for CLESS?
Do you intend this to be 5G relevant?

-tr

On 08-Jul-19 9:26 AM, mark@internetpolicyadvisors.com wrote:
A new version of I-D, draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt
has been successfully submitted by Mark McFadden and posted to the IETF repository.

Name:		draft-mcfadden-smart-endpoint-taxonomy-for-cless
Revision:	00
Title:		Endpoint Taxonomy for CLESS
Document date:	2019-07-08
Group:		Individual Submission
Pages:		15
URL:            https://www.ietf.org/internet-drafts/draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt
Status:         https://datatracker.ietf.org/doc/draft-mcfadden-smart-endpoint-taxonomy-for-cless/
Htmlized:       https://tools.ietf.org/html/draft-mcfadden-smart-endpoint-taxonomy-for-cless-00
Htmlized:       https://datatracker.ietf.org/doc/html/draft-mcfadden-smart-endpoint-taxonomy-for-cless


Abstract:
   A separate document [I-D:draft-taddei-smart-cless-introduction]
   (CLESS) attempts to establish the capabilities and limitations of
   endpoint-only security solutions and explore potential alternative
   approaches. That document discusses endpoints in general terms. It
   has been suggested that there are classes of endpoints that have
   different characteristics. Those classes may have completely
   different threat landscapes and the endpoints may have completely
   different security capabilities. In support of the work on CLESS,
   this document provides a taxonomy of endpoints that is intended to
   provide a foundation for further work on CLESS and research on
   approaches to providing endpoint security alternatives in a diverse
   group of settings.

                                                                                  


Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat
--------------572A4D83BD28589F3D353DCF-- From nobody Mon Jul 8 06:47:25 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 168601201B3 for ; Mon, 8 Jul 2019 06:47:24 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.988 X-Spam-Level: X-Spam-Status: No, score=-1.988 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=internetpolicyadvisors.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XKYrphVuExEL for ; Mon, 8 Jul 2019 06:47:21 -0700 (PDT) Received: from beige.elm.relay.mailchannels.net (beige.elm.relay.mailchannels.net [23.83.212.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DF1D412003F for ; Mon, 8 Jul 2019 06:47:20 -0700 (PDT) X-Sender-Id: dreamhost|x-authsender|mark@internetpolicyadvisors.com Received: from relay.mailchannels.net (localhost [127.0.0.1]) by relay.mailchannels.net (Postfix) with ESMTP id 9F955142396; Mon, 8 Jul 2019 13:47:19 +0000 (UTC) Received: from pdx1-sub0-mail-a7.g.dreamhost.com (100-96-92-193.trex.outbound.svc.cluster.local [100.96.92.193]) (Authenticated sender: dreamhost) by relay.mailchannels.net (Postfix) with ESMTPA id 3B6361420A3; Mon, 8 Jul 2019 13:47:14 +0000 (UTC) X-Sender-Id: dreamhost|x-authsender|mark@internetpolicyadvisors.com Received: from pdx1-sub0-mail-a7.g.dreamhost.com ([TEMPUNAVAIL]. [64.90.62.162]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384) by 0.0.0.0:2500 (trex/5.17.3); Mon, 08 Jul 2019 13:47:19 +0000 X-MC-Relay: Neutral X-MailChannels-SenderId: dreamhost|x-authsender|mark@internetpolicyadvisors.com X-MailChannels-Auth-Id: dreamhost X-Illegal-Battle: 43c6ba4a6a2f8e9c_1562593634747_3521782982 X-MC-Loop-Signature: 1562593634747:2362539485 X-MC-Ingress-Time: 1562593634747 Received: from pdx1-sub0-mail-a7.g.dreamhost.com (localhost [127.0.0.1]) by pdx1-sub0-mail-a7.g.dreamhost.com (Postfix) with ESMTP id 0DAF182AF5; Mon, 8 Jul 2019 06:47:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d= internetpolicyadvisors.com; h=reply-to:from:to:references :in-reply-to:subject:date:message-id:mime-version:content-type; s=internetpolicyadvisors.com; bh=ThAKf6cteM4CMVLI8cQKto+a+zE=; b= cQyqYC6aV+PZNGd734OeO2bBKoMJE9fBd7HI20/jofha6zWG5uNFbD6TGOxvcL61 nBRaykGh7CooMtsKx9ZRGQ3QZbwtwy0Ygv80hdGMlHbYYBH5KpC+30KVd8DcDcIt om2ene92KHu4HdNg9Xm7RIy8NJM2lf9x6Z5bOoKZjWo= Received: from Kahlo (76-235-103-220.lightspeed.mdsnwi.sbcglobal.net [76.235.103.220]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) (Authenticated sender: mark@internetpolicyadvisors.com) by pdx1-sub0-mail-a7.g.dreamhost.com (Postfix) with ESMTPSA id 358FA82AFF; Mon, 8 Jul 2019 06:47:08 -0700 (PDT) Reply-To: X-DH-BACKEND: pdx1-sub0-mail-a7 From: To: "'Tony Rutkowski'" , References: <156259169027.840.9135095847874577233.idtracker@ietfa.amsl.com> <019f01d53590$cf8c2a50$6ea47ef0$@internetpolicyadvisors.com> <5efde727-8e1d-9e9e-a9a4-32ce3f60e359@gmail.com> In-Reply-To: <5efde727-8e1d-9e9e-a9a4-32ce3f60e359@gmail.com> Date: Mon, 8 Jul 2019 08:47:07 -0500 Organization: internet policy advisors Message-ID: <01c301d53593$a3236c50$e96a44f0$@internetpolicyadvisors.com> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_01C4_01D53569.BA4E27A0" X-Mailer: Microsoft Outlook 16.0 Content-Language: en-us thread-index: AQFMPd84Pfj653eiQ4e3NZob+DYjrwEATBekAv2ZGCOnsrtQYA== X-VR-OUT-STATUS: OK X-VR-OUT-SCORE: -100 X-VR-OUT-SPAMCAUSE: gggruggvucftvghtrhhoucdtuddrgeduvddrgedtgdejudcutefuodetggdotefrodftvfcurfhrohhfihhlvgemucggtfgfnhhsuhgsshgtrhhisggvpdfftffgtefojffquffvnecuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmdenucfjughrpehrhffvfhgjufffohfkgggtofhtsegrtdhgpedvtdejnecuhfhrohhmpeeomhgrrhhksehinhhtvghrnhgvthhpohhlihgthigrughvihhsohhrshdrtghomheqnecuffhomhgrihhnpehivghtfhdrohhrghenucfkphepjeeirddvfeehrddutdefrddvvddtnecurfgrrhgrmhepmhhouggvpehsmhhtphdphhgvlhhopefmrghhlhhopdhinhgvthepjeeirddvfeehrddutdefrddvvddtpdhrvghtuhhrnhdqphgrthhhpeeomhgrrhhksehinhhtvghrnhgvthhpohhlihgthigrughvihhsohhrshdrtghomheqpdhmrghilhhfrhhomhepmhgrrhhksehinhhtvghrnhgvthhpohhlihgthigrughvihhsohhrshdrtghomhdpnhhrtghpthhtohepshhmrghrthesihhrthhfrdhorhhgnecuvehluhhsthgvrhfuihiivgeptd Archived-At: Subject: Re: [Smart] New Version Notification for draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Jul 2019 13:47:24 -0000 This is a multipart message in MIME format. ------=_NextPart_000_01C4_01D53569.BA4E27A0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Those are pretty useful questions. I=E2=80=99ve gotten the same comments = from others off-list. The scoping of CLESS is something we should try = to make progress on the list. =20 The 5G question is a little different for me. Do you think that 5G = introduces categories of endpoints that would not be present in = existing, or other, transport infrastructures? If so, I=E2=80=99m happy = to amend the text. =20 Thanks, =20 mark =20 From: Tony Rutkowski =20 Sent: Monday, July 8, 2019 8:36 AM To: mark@internetpolicyadvisors.com; smart@irtf.org Subject: Re: [Smart] New Version Notification for = draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt =20 But, there's an important question here. CLESS specifically rules out = network infrastructure in its discussion. Should the taxonomy for CLESS = incorporate endpoints that are part of the network infrastructure? Said = a different way: is network infrastructure out of scope for CLESS?=20 Do you intend this to be 5G relevant?=20 -tr On 08-Jul-19 9:26 AM, mark@internetpolicyadvisors.com = wrote: A new version of I-D, = draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt has been successfully submitted by Mark McFadden and posted to the IETF = repository. =20 Name: draft-mcfadden-smart-endpoint-taxonomy-for-cless Revision: 00 Title: Endpoint Taxonomy for CLESS Document date: 2019-07-08 Group: Individual Submission Pages: 15 URL: = https://www.ietf.org/internet-drafts/draft-mcfadden-smart-endpoint-taxono= my-for-cless-00.txt Status: = https://datatracker.ietf.org/doc/draft-mcfadden-smart-endpoint-taxonomy-f= or-cless/ Htmlized: = https://tools.ietf.org/html/draft-mcfadden-smart-endpoint-taxonomy-for-cl= ess-00 Htmlized: = https://datatracker.ietf.org/doc/html/draft-mcfadden-smart-endpoint-taxon= omy-for-cless =20 =20 Abstract: A separate document [I-D:draft-taddei-smart-cless-introduction] (CLESS) attempts to establish the capabilities and limitations of endpoint-only security solutions and explore potential alternative approaches. That document discusses endpoints in general terms. It has been suggested that there are classes of endpoints that have different characteristics. Those classes may have completely different threat landscapes and the endpoints may have completely different security capabilities. In support of the work on CLESS, this document provides a taxonomy of endpoints that is intended to provide a foundation for further work on CLESS and research on approaches to providing endpoint security alternatives in a diverse group of settings. =20 = =20 =20 =20 Please note that it may take a couple of minutes from the time of = submission until the htmlized version and diff are available at = tools.ietf.org. =20 The IETF Secretariat =20 =20 ------=_NextPart_000_01C4_01D53569.BA4E27A0 Content-Type: text/html; charset="utf-8" Content-Transfer-Encoding: quoted-printable

Those are pretty useful questions. = I=E2=80=99ve gotten the same comments from others off-list.=C2=A0 The = scoping of CLESS is something we should try to make progress on the = list.

 

The 5G question is a little different for = me. Do you think that 5G introduces categories of endpoints that would = not be present in existing, or other, transport infrastructures?=C2=A0 = If so, I=E2=80=99m happy to amend the text.

 

Thanks,

 

mark

 

From: Tony Rutkowski = <rutkowski.tony@gmail.com>
Sent: Monday, July 8, 2019 = 8:36 AM
To: mark@internetpolicyadvisors.com; = smart@irtf.org
Subject: Re: [Smart] New Version Notification = for = draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt=

 

But, = there's an important question here. CLESS specifically rules out network = infrastructure in its discussion. Should the taxonomy for CLESS = incorporate endpoints that are part of the network infrastructure? Said = a different way: is network infrastructure out of scope for CLESS? =

Do you intend = this to be 5G relevant?

-tr

On 08-Jul-19 9:26 AM, mark@internetpolicyadviso= rs.com wrote:

A new version of =
I-D, =
draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt
<= pre>has been successfully submitted by Mark McFadden and posted to the = IETF = repository.
 
Name:=C2=A0=C2=
=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 =
draft-mcfadden-smart-endpoint-taxonomy-for-cless
Rev=
ision: =
00
Title:=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=
=A0=C2=A0=C2=A0 Endpoint Taxonomy for =
CLESS
Document date:=C2=A0=C2=A0 =
2019-07-08
Group:=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=
=C2=A0=C2=A0=C2=A0=C2=A0 Individual =
Submission
Pages:=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=
=C2=A0=C2=A0=C2=A0=C2=A0 =
15
URL:=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=
=A0=C2=A0=C2=A0=C2=A0 https://www.ietf.org/internet-drafts/draft-m=
cfadden-smart-endpoint-taxonomy-for-cless-00.txt
Status:=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 https://datatracker.ietf.org/doc/draft-mcfadden-smart-= endpoint-taxonomy-for-cless/
Htmlized:=C2=A0=C2=A0=
=C2=A0=C2=A0=C2=A0=C2=A0 https://tools.ietf.org/html/draft-mcfadden-smart-endpoint=
-taxonomy-for-cless-00
Htmlized:=C2=A0=C2=A0=C2=A0=
=C2=A0=C2=A0=C2=A0 https://datatracker.ietf.org/doc/html/draft-mcfadd=
en-smart-endpoint-taxonomy-for-cless
 =

 
Abstract:
=C2=A0=C2=A0 A separate document = [I-D:draft-taddei-smart-cless-introduction]
=C2=A0=C2=
=A0 (CLESS) attempts to establish the capabilities and limitations =
of
=C2=A0=C2=A0 endpoint-only security solutions =
and explore potential alternative
=C2=A0=C2=A0 =
approaches. That document discusses endpoints in general terms. =
It
=C2=A0=C2=A0 has been suggested that there are =
classes of endpoints that have
=C2=A0=C2=A0 =
different characteristics. Those classes may have =
completely
=C2=A0=C2=A0 different threat landscapes =
and the endpoints may have completely
=C2=A0=C2=A0 =
different security capabilities. In support of the work on =
CLESS,
=C2=A0=C2=A0 this document provides a =
taxonomy of endpoints that is intended =
to
=C2=A0=C2=A0 provide a foundation for further =
work on CLESS and research on
=C2=A0=C2=A0 =
approaches to providing endpoint security alternatives in a =
diverse
=C2=A0=C2=A0 group of =
settings.
 
=C2=A0=C2=A0=C2=
=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=
=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=
=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=
=A0=C2=A0=C2=A0=C2=A0 =

 
 
= 
Please note that it may take a couple of minutes from the time of =
submission until the htmlized version and diff are available at =
tools.ietf.org.
 
The =
IETF =
Secretariat
 
 <=
/o:p>
------=_NextPart_000_01C4_01D53569.BA4E27A0-- From nobody Mon Jul 8 11:06:34 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61DA7120495 for ; Mon, 8 Jul 2019 11:06:25 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.692 X-Spam-Level: X-Spam-Status: No, score=-0.692 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, PDS_NO_HELO_DNS=1.295, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hsGkZxmX1_R2 for ; Mon, 8 Jul 2019 11:06:23 -0700 (PDT) Received: from mail-qt1-x829.google.com (mail-qt1-x829.google.com [IPv6:2607:f8b0:4864:20::829]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 174501203A7 for ; Mon, 8 Jul 2019 11:06:23 -0700 (PDT) Received: by mail-qt1-x829.google.com with SMTP id y26so6385121qto.4 for ; Mon, 08 Jul 2019 11:06:23 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-language; bh=OgbctmRk2s8G8XgXZzFmhA4lFYZ3R9o9VhH3BBHV4jU=; b=C0F4RqY1FdoJhpK5d4mxw71Jn+JYLBBUusrgcS0xk02IO7BiSHK7i6WdSafi1JCt5R DVMFZGEjYiuuDR1gCvlxPaFEs05kkTKkPx/ZggCrWnw1DXA8P51Ul/yZ/+qJQiESeH/J LMJffnxrukwkCs+AMPWMEY7iMILXbEN+CuUhDEYE+lrBCchW8YxHpqpdBTtPkWHaISzq fW39zwMDUzdxtUisAUU4lq/wDzezIpXYWak2+SMgYUfYsQWtJT/LSLpqlRshohJHsnwW QW/fxfbVLppq6F7B5bjX9WDRJYKUKIxP7sb5DTNS4H5xdu8vPITGh6HMihEh9KTqAzAL 2cyQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=OgbctmRk2s8G8XgXZzFmhA4lFYZ3R9o9VhH3BBHV4jU=; b=YV8WTJcNbwZlnuuASaIQCHFCq3LD2DWDpXPB7yCKDP9WuoYRKz7yGZMF7rjEU1+9Dg kZTTUzWPzUP6Ta2oNsY1JGCnaEWx4/N2cNu4QP57pcU+2IGmGInpM4OdE7auuJ7fIugM Gbr+9QfI0z/dpxXSYFTkB3deIGoMuz+JQ77e3c1DdM54O1vAJgyi8bvuVpMf+PM8nP3x flTyKkU41Utu6AVYbl+cZl7dKtzaqCzlK6Es7EckgDN31ylQUIOA0ez4UHPbUnJMzdmX sFwSk+XvAkT6jtoh0xKmY0aOuE25LoJf1VMJX1Wm/HW1RPSwIBoHtli3KcXW8oTahFlh gBjQ== X-Gm-Message-State: APjAAAV1wBy/TnTSLLyK472EomilHgmtsbhoh3dwPZDOpFGYfDhTluOz MQgLGZs/wX1X00ik5vdHeh8mjRjb X-Google-Smtp-Source: APXvYqxm7OocZTUNYHIhXkyPQ9U7SehJkRPJbVlJbIt0i0msocy+NUiAiir9Y14AWb5gIpT8A0Ew2w== X-Received: by 2002:ac8:25e7:: with SMTP id f36mr15270887qtf.139.1562609181728; Mon, 08 Jul 2019 11:06:21 -0700 (PDT) Received: from [192.168.1.53] (pool-70-106-252-118.clppva.fios.verizon.net. [70.106.252.118]) by smtp.gmail.com with ESMTPSA id y3sm8607662qtj.46.2019.07.08.11.06.20 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 08 Jul 2019 11:06:21 -0700 (PDT) To: mark@internetpolicyadvisors.com, smart@irtf.org References: <156259169027.840.9135095847874577233.idtracker@ietfa.amsl.com> <019f01d53590$cf8c2a50$6ea47ef0$@internetpolicyadvisors.com> <5efde727-8e1d-9e9e-a9a4-32ce3f60e359@gmail.com> <01c301d53593$a3236c50$e96a44f0$@internetpolicyadvisors.com> From: Tony Rutkowski Message-ID: <89108d73-e6a0-90fd-16ba-d1bb8e6d0958@gmail.com> Date: Mon, 8 Jul 2019 14:06:20 -0400 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.7.2 MIME-Version: 1.0 In-Reply-To: <01c301d53593$a3236c50$e96a44f0$@internetpolicyadvisors.com> Content-Type: multipart/alternative; boundary="------------EE9E8DDB1FF22FB0F5ED1AD1" Content-Language: en-US Archived-At: Subject: Re: [Smart] New Version Notification for draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Jul 2019 18:06:33 -0000 This is a multi-part message in MIME format. --------------EE9E8DDB1FF22FB0F5ED1AD1 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Full Stand Alone (SA) 5G specified by Rel. 16 will consist of fully virtualised architectures orchestrated on-demand using NFV based network slicing among virtualised Network Functions.  Given this reality and that the slices will be using different network protocols, including E2E Ethernet, and instantiating architectures and functions for periods of time using many different NF identifiers, it isn't clear how this comports with the typically highly rigid TCP/IP centric model.  (Indeed, it isn't clear that the term "internet" has meaning.) In a 5G/NFV environment, enormously diverse Network Functions will exist all over the instantiated architectures - including on end user equipment.  The interesting question is whether a taxonomy for NFs exists, and whether your draft should use the conceptualisation in the interest of accommodating 5G.  It's worth noting that useful work along those lines exists out there.  Some is found in NFV ISG specifications, e.g., ETSI GS NFV-IFA 014. Other material can be found at IETF meetings.  See, e.g., https://www.ietf.org/proceedings/92/slides/slides-92-rtgarea-3.pdf CLESS is certainly headed in the right direction - certainly in a 5G world. --tony On 08-Jul-19 9:47 AM, mark@internetpolicyadvisors.com wrote: > > Those are pretty useful questions. I’ve gotten the same comments from > others off-list.  The scoping of CLESS is something we should try to > make progress on the list. > > The 5G question is a little different for me. Do you think that 5G > introduces categories of endpoints that would not be present in > existing, or other, transport infrastructures?  If so, I’m happy to > amend the text. > > Thanks, > > mark > > *From:*Tony Rutkowski > *Sent:* Monday, July 8, 2019 8:36 AM > *To:* mark@internetpolicyadvisors.com; smart@irtf.org > *Subject:* Re: [Smart] New Version Notification for > draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt > > But, there's an important question here. CLESS specifically rules > out network infrastructure in its discussion. Should the taxonomy > for CLESS incorporate endpoints that are part of the network > infrastructure? Said a different way: is network infrastructure > out of scope for CLESS? > > Do you intend this to be 5G relevant? > > -tr > > On 08-Jul-19 9:26 AM, mark@internetpolicyadvisors.com > wrote: > > A new version of I-D, draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt > > has been successfully submitted by Mark McFadden and posted to the IETF repository. > > Name:            draft-mcfadden-smart-endpoint-taxonomy-for-cless > > Revision: 00 > > Title:           Endpoint Taxonomy for CLESS > > Document date:   2019-07-08 > > Group:           Individual Submission > > Pages:           15 > > URL:https://www.ietf.org/internet-drafts/draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt > > Status:https://datatracker.ietf.org/doc/draft-mcfadden-smart-endpoint-taxonomy-for-cless/ > > Htmlized:https://tools.ietf.org/html/draft-mcfadden-smart-endpoint-taxonomy-for-cless-00 > > Htmlized:https://datatracker.ietf.org/doc/html/draft-mcfadden-smart-endpoint-taxonomy-for-cless > > Abstract: > >    A separate document [I-D:draft-taddei-smart-cless-introduction] > >    (CLESS) attempts to establish the capabilities and limitations of > >    endpoint-only security solutions and explore potential alternative > >    approaches. That document discusses endpoints in general terms. It > >    has been suggested that there are classes of endpoints that have > >    different characteristics. Those classes may have completely > >    different threat landscapes and the endpoints may have completely > >    different security capabilities. In support of the work on CLESS, > >    this document provides a taxonomy of endpoints that is intended to > >    provide a foundation for further work on CLESS and research on > >    approaches to providing endpoint security alternatives in a diverse > >    group of settings. > > > > Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > --------------EE9E8DDB1FF22FB0F5ED1AD1 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: 8bit

Full Stand Alone (SA) 5G specified by Rel. 16 will consist of fully virtualised architectures orchestrated on-demand using NFV based network slicing among virtualised Network Functions.  Given this reality and that the slices will be using different network protocols, including E2E Ethernet, and instantiating architectures and functions for periods of time using many different NF identifiers, it isn't clear how this comports with the typically highly rigid TCP/IP centric model.  (Indeed, it isn't clear that the term "internet" has meaning.)

In a 5G/NFV environment, enormously diverse Network Functions will exist all over the instantiated architectures - including on end user equipment.  The interesting question is whether a taxonomy for NFs exists, and whether your draft should use the conceptualisation in the interest of accommodating 5G.  It's worth noting that useful work along those lines exists out there.  Some is found in NFV ISG specifications, e.g., ETSI GS NFV-IFA 014.  Other material can be found at IETF meetings.  See, e.g., https://www.ietf.org/proceedings/92/slides/slides-92-rtgarea-3.pdf

CLESS is certainly headed in the right direction - certainly in a 5G world.

--tony

On 08-Jul-19 9:47 AM, mark@internetpolicyadvisors.com wrote:

Those are pretty useful questions. I’ve gotten the same comments from others off-list.  The scoping of CLESS is something we should try to make progress on the list.

 

The 5G question is a little different for me. Do you think that 5G introduces categories of endpoints that would not be present in existing, or other, transport infrastructures?  If so, I’m happy to amend the text.

 

Thanks,

 

mark

 

From: Tony Rutkowski <rutkowski.tony@gmail.com>
Sent: Monday, July 8, 2019 8:36 AM
To: mark@internetpolicyadvisors.com; smart@irtf.org
Subject: Re: [Smart] New Version Notification for draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt

 

But, there's an important question here. CLESS specifically rules out network infrastructure in its discussion. Should the taxonomy for CLESS incorporate endpoints that are part of the network infrastructure? Said a different way: is network infrastructure out of scope for CLESS?

Do you intend this to be 5G relevant?

-tr

On 08-Jul-19 9:26 AM, mark@internetpolicyadvisors.com wrote:

A new version of I-D, draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt
has been successfully submitted by Mark McFadden and posted to the IETF repository.
 
Name:            draft-mcfadden-smart-endpoint-taxonomy-for-cless
Revision: 00
Title:           Endpoint Taxonomy for CLESS
Document date:   2019-07-08
Group:           Individual Submission
Pages:           15
URL:            https://www.ietf.org/internet-drafts/draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt
Status:         https://datatracker.ietf.org/doc/draft-mcfadden-smart-endpoint-taxonomy-for-cless/
Htmlized:       https://tools.ietf.org/html/draft-mcfadden-smart-endpoint-taxonomy-for-cless-00
Htmlized:       https://datatracker.ietf.org/doc/html/draft-mcfadden-smart-endpoint-taxonomy-for-cless
 
 
Abstract:
   A separate document [I-D:draft-taddei-smart-cless-introduction]
   (CLESS) attempts to establish the capabilities and limitations of
   endpoint-only security solutions and explore potential alternative
   approaches. That document discusses endpoints in general terms. It
   has been suggested that there are classes of endpoints that have
   different characteristics. Those classes may have completely
   different threat landscapes and the endpoints may have completely
   different security capabilities. In support of the work on CLESS,
   this document provides a taxonomy of endpoints that is intended to
   provide a foundation for further work on CLESS and research on
   approaches to providing endpoint security alternatives in a diverse
   group of settings.
 
                                                                                  
 
 
Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.
 
The IETF Secretariat
 
 
--------------EE9E8DDB1FF22FB0F5ED1AD1-- From nobody Mon Jul 8 11:55:12 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC8811206F9 for ; Mon, 8 Jul 2019 11:55:08 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.6 X-Spam-Level: X-Spam-Status: No, score=-0.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, PDS_NO_HELO_DNS=1.295, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lastpresslabel-com.20150623.gappssmtp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P2t7ZzdLeadj for ; Mon, 8 Jul 2019 11:55:07 -0700 (PDT) Received: from mail-wr1-x42f.google.com (mail-wr1-x42f.google.com [IPv6:2a00:1450:4864:20::42f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9669A120697 for ; Mon, 8 Jul 2019 11:54:53 -0700 (PDT) Received: by mail-wr1-x42f.google.com with SMTP id n9so9151998wrr.4 for ; Mon, 08 Jul 2019 11:54:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lastpresslabel-com.20150623.gappssmtp.com; s=20150623; h=content-transfer-encoding:from:mime-version:subject:message-id:date :to; bh=4zHjbcEt12ZfI7OyjlT+yTsfmuLxzEPcpYj6CrSyBqU=; b=SaDBLsz/1xOzQYYNUqK6aNltGgBz5gN0u7n1lAOYhRqot8/TluuSzCN+hs7GcwdRBo woM+361HHTk5y3CMrLC7q+LlIFAn1pytFvIZ0mI9Of8J+H8uzB8u29Btc0G0JFV3GXOJ 6N16nYZ1iFUQUVnTa89zASlv8xVYdb/Ba/GL8a26YoO1jnBV5RleYBnGOObU/v1POlLO Jo5Aenwwb9nKEjEKbyGdfkK+O17eMWtZXdoPV33faJeDWRG8tCltTrLmFYB5JOTFMukg GbnknvC7kCGKu1teJW1oK40XxRCcIbfZneXqrWgMg0py+Vrs7yZjuK0zV6TzFfaR3JiP gPYA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:content-transfer-encoding:from:mime-version :subject:message-id:date:to; bh=4zHjbcEt12ZfI7OyjlT+yTsfmuLxzEPcpYj6CrSyBqU=; b=d5NCQbQvAkJRVHqTbybkqVOoXoYN6NQmdmzx7drjQieEEpNUOwLZHO1x3Et683hTl/ luAHzy6pp6n+m5Wfj9ZXCCRZbTtuO6ppBo99cNPRRvZnUfteHPaSt/glijrCkFs1OYn0 AufnLxlMcedFe1Bdb/cG0Eaxm6huN5XvagUBNWP+DCtr7DFYe15MfgaHdphrEgA/nCTR 8+Vvbid67WoxznwoVj8lZzmBkRmIzReGRXIe8r9j6KH6RMTRIPxndRdwGXw7RFUR7P1L FLASKfsApClSVfoQf7128Y0lcLJdR6PcHsWXXBHOeX+noq85ChMeG7B946tNfikqstA1 5ivg== X-Gm-Message-State: APjAAAVhHfrZCALTz/ic/qyxxixJV3bDR98uV0pLaDHIevllsru2gLEz ji1hrmsEJq2zPVzazFV/ieyVuvyrvNzPJw== X-Google-Smtp-Source: APXvYqxIIyoEykUTNjmYfWTFT1mBRaT2SzG+ycLVZiKVqinPDgUSV9cS9VCbuTiS8IursWfKFY9DsA== X-Received: by 2002:adf:dd01:: with SMTP id a1mr2366972wrm.12.1562612091740; Mon, 08 Jul 2019 11:54:51 -0700 (PDT) Received: from ?IPv6:2a00:23c5:cda3:8400:b045:5987:e1ce:daa0? ([2a00:23c5:cda3:8400:b045:5987:e1ce:daa0]) by smtp.gmail.com with ESMTPSA id h8sm295901wmf.12.2019.07.08.11.54.50 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 08 Jul 2019 11:54:51 -0700 (PDT) Content-Transfer-Encoding: 7bit Content-Type: multipart/alternative; boundary=Apple-Mail-0FA06B59-5B16-4D70-9FB9-466FF12AF311 From: Dominique Lazanski Mime-Version: 1.0 (1.0) Message-Id: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> Date: Mon, 8 Jul 2019 19:54:50 +0100 To: smart@irtf.org X-Mailer: iPhone Mail (16F203) Archived-At: Subject: [Smart] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Jul 2019 18:55:09 -0000 --Apple-Mail-0FA06B59-5B16-4D70-9FB9-466FF12AF311 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Cross posting to this mailing list. Dominique=20 A new version of I-D, draft-lazanski-smart-users-internet-00.txt has been successfully submitted by Dominique Lazanski and posted to the IETF repository. Name: draft-lazanski-smart-users-internet Revision: 00 Title: An Internet for Users Again Document date: 2019-07-08 Group: Individual Submission Pages: 12 URL: https://www.ietf.org/internet-drafts/draft-lazanski-smart-us= ers-internet-00.txt Status: https://datatracker.ietf.org/doc/draft-lazanski-smart-users-= internet/ Htmlized: https://tools.ietf.org/html/draft-lazanski-smart-users-inter= net-00 Htmlized: https://datatracker.ietf.org/doc/html/draft-lazanski-smart-u= sers-internet Abstract: RFC 3552 introduces a threat model that does not include endpoint security. In the fifteen years since RFC 3552 security issues and cyber attacks have increased, especially on the endpoint. This document proposes a new approach to Internet cyber security protocol development that focuses on the user of the Internet, namely those who use the endpoint and are the most vulnerable to attacks.=20 --Apple-Mail-0FA06B59-5B16-4D70-9FB9-466FF12AF311 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: quoted-printable
Cross posting to thi= s mailing list.

Dominique 

A n= ew version of I-D, draft-lazanski-smart-users-internet-00.txt
has been su= ccessfully submitted by Dominique Lazanski and posted to the
IETF reposit= ory.

Name:        draft-lazanski-smart-users-inte= rnet
Revision:    00
Title:        An In= ternet for Users Again
Document date:    2019-07-08
Group: &= nbsp;      Individual Submission
Pages:     &nbs= p;  12
URL:          &n= bsp; https://w= ww.ietf.org/internet-drafts/draft-lazanski-smart-users-internet-00.txtStatus:         https://datatracker.ietf.org/doc/draft-lazanski-= smart-users-internet/
Htmlized:       <= a href=3D"https://tools.ietf.org/html/draft-lazanski-smart-users-internet-00= " dir=3D"ltr" x-apple-data-detectors=3D"true" x-apple-data-detectors-type=3D= "link" x-apple-data-detectors-result=3D"3">https://tools.ietf.org/html/draft= -lazanski-smart-users-internet-00
Htmlized:     &= nbsp; https://datatr= acker.ietf.org/doc/html/draft-lazanski-smart-users-internet


A= bstract:
  RFC 3552 introduces a threat model that does not inc= lude endpoint
  security. In the fifteen years since RFC 3552 s= ecurity issues and
  cyber attacks have increased, especially o= n the endpoint. This
  document proposes a new approach to Inte= rnet cyber security protocol
  development that focuses on the u= ser of the Internet, namely those
  who use the endpoint and ar= e the most vulnerable to attacks. 
<= /html>= --Apple-Mail-0FA06B59-5B16-4D70-9FB9-466FF12AF311-- From nobody Mon Jul 8 11:58:12 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CAA21206BB for ; Mon, 8 Jul 2019 11:58:09 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.899 X-Spam-Level: X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zfy5SaVwfHwo for ; Mon, 8 Jul 2019 11:58:07 -0700 (PDT) Received: from fgont.go6lab.si (fgont.go6lab.si [IPv6:2001:67c:27e4::14]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 12D861206A4 for ; Mon, 8 Jul 2019 11:58:07 -0700 (PDT) Received: from [192.168.1.16] (unknown [41.143.218.184]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by fgont.go6lab.si (Postfix) with ESMTPSA id 248D681B03; Mon, 8 Jul 2019 20:58:05 +0200 (CEST) References: <95cd483c-8178-63f3-d50d-2a8fa80631ba@si6networks.com> To: smart@irtf.org From: Fernando Gont Openpgp: preference=signencrypt Autocrypt: addr=fgont@si6networks.com; prefer-encrypt=mutual; keydata= mQINBE5so2gBEACzBQBLUy8nzgAzSZn6ViXT6TmZBFNYNqTpPRvTVtUqF6+tkI+IEd9N2E8p pXUXCd0W4dkxz6o7pagnK63m4QSueggvp881RVVHOF8oTSHOdnGxLfLeLNJFKE1FOutU3vod GK/wG/Fwzkv9MebdXpMlLV8nnJuAt66XGl/lU1JrNfrKO4SoYQi4TsB/waUQcygh7OR/PEO0 EttiU8kZUbZNv58WH+PAj/rdZCrgUSiGXiWUQQKShqKnJxLuAcTcg5YRwL8se/V6ciW0QR9i /sr52gSmLLbW5N3hAoO+nv1V/9SjJAUvzXu43k8sua/XlCXkqU7uLj41CRR72JeUZ4DQsYfP LfNPC98ZGTVxbWbFtLXxpzzDDT8i3uo7w1LJ2Ij/d5ezcARqw01HGljWWxnidUrjbTpxkJ9X EllcsH94mer728j/HKzC9OcTuz6WUBP3Crgl6Q47gY5ZIiF0lsmd9/wxbaq5NiJ+lGuBRZrD v0dQx9KmyI0/pH2AF8cW897/6ypvcyD/1/11CJcN+uAGIrklwJlVpRSbKbFtGC6In592lhu7 wnK8cgyP5cTU+vva9+g6P1wehi4bylXdlKc6mMphbtSA+T3WBNP557+mh3L62l4pGaEGidcZ DLYT2Ud18eAJmxU3HnM8P3iZZgeoK7oqgb53/eg96vkONXNIOwARAQABtCVGZXJuYW5kbyBH b250IDxmZ29udEBzaTZuZXR3b3Jrcy5jb20+iQJBBBMBAgArAhsjBQkSzAMABgsJCAcDAgYV CAIJCgsEFgIDAQIeAQIXgAUCTmylpQIZAQAKCRCuJQ1VHU50kv7wD/9fuNtTfxSLk3B3Hs3p ixTy8YXVjdkVwWlnJjFd7BOWmg7sI+LDhpjGfT6+ddOiwkumnvUZpObodj4ysH0i8c7P4C5t F9yu7WjklSlrB5Rth2CGChg5bKt541z2WHkFFxys9qBLmCSYDeKQkzLqhCjIUJizY2kOJ2GI MnSFDzJjhSFEh//oW830Y8fel1xnf/NVF+lBVtRMtMOfoWUqDjvP3sJ1G4zgkDCnF0CfncLx +hq2Mv26Uq9OTzvLH9aSQQ/f067BOkKAJKsfHdborX4E96ISTz57/4xECRSMr5dVsKVm4Y// uVIsb+L5z+a32FaiBZIAKDgnJO7Z8j6CV5e5yfuBTtX52Yi9HjYYqnYJGSDxYd6igD4bWu+7 xmJPHjkdqZgGV6dQIgiUfqkU+s5Cv350vK48CMaT/ZLo2BdsMhWsmaHmb+waePUMyq6E4E9x 9Js+EJb9ZiCfxS9exgieZQpet1L36IvhiwByvkQM009ywfa30JeMOltUtfLi5V06WQWsTzPL 5C+4cpkguSuAJVDTctjCA0moIeVDOpJ8WH9voQ4IeWapQnX35OIoj1jGJqqYdx65gc1ygbyx b8vw+pJ9E5GLse5TQnYifOWpXzX9053dtbwp/2OVhU4KLlzfCPCEsoTyfu9nIZxdI2PMwiL5 M85BfjX4NmwBLmPGoLkCDQRObKNoARAAqqXCkr250BchRDmi+05F5UQFgylUh10XTAJxBeaQ UNtdxZiZRm6jgomSrqeYtricM9t9K0qb4X2ZXmAMW8o8AYW3RrQHTjcBwMnAKzUIEXXWaLfG cid/ygmvWzIHgMDQKP+MUq1AGQrnvt/MRLvZLyczAV1RTXS58qNaxtaSpc3K/yrDozh/a4pu WcUsVvIkzyx43sqcwamDSBb6U8JFoZizuLXiARLLASgyHrrCedNIZdWSx0z0iHEpZIelA2ih AGLiSMtmtikVEyrJICgO81DkKNCbBbPg+7fi23V6M24+3syHk3IdQibTtBMxinIPyLFF0byJ aGm0fmjefhnmVJyCIl/FDkCHprVhTme57G2/WdoGnUvnT7mcwDRb8XY5nNRkOJsqqLPemKjz kx8mXdQbunXtX9bKyVgd1gIl+LLsxbdzRCch773UBVoortPdK3kMyLtZ4uMeDX3comjx+6VL bztUdJ1Zc9/njwVG8fgmQ+0Kj5+bzQfUY+MmX0HTXIx3B4R1I1a8QoOwi1N+iZNdewV5Zfq+ 29NlQLnVPjCRCKbaz9k6RJ2oIti55YUI6zSsL3lmlOXsRbXN5bRswFczkNSCJxJMlDiyAUIC WOay7ymzvgzPa+BY/mYn94vRaurDQ4/ljOfj6oqgfjts+dJev4Jj89vp8MQI3KJpZPEAEQEA AYkCJQQYAQIADwUCTmyjaAIbDAUJEswDAAAKCRCuJQ1VHU50km4xEACho45PZrUjY4Zl2opR DFNo5a6roTOPpgwO9PcBb3I5F8yX2Dnew+9OhgWXbBhAFq4DCx+9Gjs43Bn60qbZTDbLGJ/m 8N4PwEiq0e5MKceYcbetEdEUWhm5L6psU9ZZ82GR3UGxPXYe+oifEoJjOXQ39avf9S8p3yKP Diil0E79rn7LbJjMcgMLyjFg9SDoJ6pHLtniJoDhEAaSSgeV7Y745+gyMIdtQmrFHfqrFdjq D6G0HE+Z68ywc5KN67YxhvhBmSycs1ZSKAXv1zLDlXdmjHDHkU3xMcB+RkuiTba8yRFYwb/n j62CC4NhFTuIKOc4ta3dJsyXTGh/hO9UjWUnmAGfd0fnzTBZF8Qlnw/8ftx5lt4/O+eqY1EN RITScnPzXE/wMOlTtdkddQ+QN6xt6jyR2XtAIi7aAFHypIqA3lLI9hF9x+lj4UQ2yA9LqpoX 6URpPOd13JhAyDe47cwsP1u9Y+OBvQTVLSvw7Liu2b4KjqL4lx++VdBi7dXsjJ6kjIRjI6Lb WVpxe8LumMCuVDepTafBZ49gr7Fgc4F9ZSCo6ChgQNLn6WDzIkqFX+42KuHz90AHWhuW+KZR 1aJylERWeTcMCGUSBptd48KniWmD6kPKpzwoMkJtEXTuO2lVuborxzwuqOTNuYg9lWDl7zKt wPI9brGzquUHy4qRrA== X-Forwarded-Message-Id: <95cd483c-8178-63f3-d50d-2a8fa80631ba@si6networks.com> Message-ID: Date: Mon, 8 Jul 2019 19:58:01 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.7.2 MIME-Version: 1.0 In-Reply-To: <95cd483c-8178-63f3-d50d-2a8fa80631ba@si6networks.com> Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 8bit Archived-At: Subject: [Smart] Fwd: Unfortunate History of Transient Numeric Identifiers (Fwd: New Version Notification for draft-gont-numeric-ids-history-05.txt) X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 08 Jul 2019 18:58:10 -0000 FYI -------- Forwarded Message -------- Subject: Unfortunate History of Transient Numeric Identifiers (Fwd: New Version Notification for draft-gont-numeric-ids-history-05.txt) Date: Mon, 8 Jul 2019 19:22:31 +0100 From: Fernando Gont To: pearg@irtf.org CC: Iván Arce (Quarkslab) Folks, We have posted a rev of our I-D. which now incorporates the timeline of yet more numeric IDs with a sad story of flawed generation. The new revision is available at: https://www.ietf.org/internet-drafts/draft-gont-numeric-ids-history-05.txt We have also revised a companion document, entitled " On the Generation of Transient Numeric Identifiers", which analyzes numeric IDs and proposes algorithms that generate numeric IDs while mitigating possible security and privacy implications. It is available at: https://www.ietf.org/id/draft-gont-numeric-ids-generation-04.txt We would like to hear your comments, and also hope that PEARG is willing to work on them. P.S.: We are also pursuing (at the IETF) a third companion document entitled "Security Considerations for Transient Numeric Identifiers Employed in Network Protocols" that requires spec authors to do the warranted interoperability, security, and privacy analysis of the transient numeric IDs they employ. Such document is available at: https://www.ietf.org/id/draft-gont-numeric-ids-generation-04.txt We hope this work helps to change the sad story we have had with numeric identifiers in our protocols. Thanks, Ivan & Fernando -------- Forwarded Message -------- Subject: New Version Notification for draft-gont-numeric-ids-history-05.txt Date: Mon, 08 Jul 2019 11:10:21 -0700 From: internet-drafts@ietf.org To: Fernando Gont , Ivan Arce A new version of I-D, draft-gont-numeric-ids-history-05.txt has been successfully submitted by Fernando Gont and posted to the IETF repository. Name: draft-gont-numeric-ids-history Revision: 05 Title: Unfortunate History of Transient Numeric Identifiers Document date: 2019-07-08 Group: Individual Submission Pages: 25 URL: https://www.ietf.org/internet-drafts/draft-gont-numeric-ids-history-05.txt Status: https://datatracker.ietf.org/doc/draft-gont-numeric-ids-history/ Htmlized: https://tools.ietf.org/html/draft-gont-numeric-ids-history-05 Htmlized: https://datatracker.ietf.org/doc/html/draft-gont-numeric-ids-history Diff: https://www.ietf.org/rfcdiff?url2=draft-gont-numeric-ids-history-05 Abstract: This document analyzes the timeline of the specification of different types of "numeric identifiers" used in IETF protocols, and how the security and privacy implications of such protocols has been affected as a result of it. It provides concrete evidence that advice in this area is warranted. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat From nobody Tue Jul 9 07:54:30 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 98998120181 for ; Tue, 9 Jul 2019 07:54:28 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.573 X-Spam-Level: X-Spam-Status: No, score=0.573 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FREEMAIL_REPLYTO=1, FROM_WORDY=2.261, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NXClJVhlO4jQ for ; Tue, 9 Jul 2019 07:54:25 -0700 (PDT) Received: from mail4.protonmail.ch (mail4.protonmail.ch [185.70.40.27]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EFFDB120170 for ; Tue, 9 Jul 2019 07:54:23 -0700 (PDT) Date: Tue, 09 Jul 2019 14:54:19 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1562684061; bh=rclR0g0fko9IIvII54LW2+J0xZn9YrVsXpQj2K3zBgM=; h=Date:To:From:Cc:Reply-To:Subject:In-Reply-To:References: Feedback-ID:From; b=PuaNnPweg2Q1awUn1AymxHiDYc3WVsP8YV7+fTW/OYBWi8x0ar2iqZOn2HccGurYH o61Ix25miPn08qcR1noSX8bP+PwmFkqsyoV8C6gEC4t0dJgz4Ns8qtMj7CnKGfui5+ FLfk8lLhyA7pmrQQld6UVW3KVjuh/jsLLHLglKmE= To: Tony Rutkowski From: "Arnaud.Taddei.IETF" Cc: "mark@internetpolicyadvisors.com" , "smart@irtf.org" Reply-To: "Arnaud.Taddei.IETF" Message-ID: <5adGUOElK4PNdErBvjY24I_Tbw6FiHZG3yu0FkbgpVpFsKrlJHK-IlBGX9DRYm7Cq3WV5RakOC36FFe_nDNTYo3KrMWdg_XeKttiOjnlxwU=@protonmail.com> In-Reply-To: <89108d73-e6a0-90fd-16ba-d1bb8e6d0958@gmail.com> References: <156259169027.840.9135095847874577233.idtracker@ietfa.amsl.com> <019f01d53590$cf8c2a50$6ea47ef0$@internetpolicyadvisors.com> <5efde727-8e1d-9e9e-a9a4-32ce3f60e359@gmail.com> <01c301d53593$a3236c50$e96a44f0$@internetpolicyadvisors.com> <89108d73-e6a0-90fd-16ba-d1bb8e6d0958@gmail.com> Feedback-ID: kou6vaSHQeY5dgFN9dCIYKo4z6hnnNmKuV4IBJw2wx4vSVPtftyhWUTBigri6zMJ3K1hxYJjI-3RAIGaizMt5g==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_fcf0d80992571761f3d125b2046eaefe" Archived-At: Subject: Re: [Smart] New Version Notification for draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 09 Jul 2019 14:54:29 -0000 This is a multi-part message in MIME format. --b1_fcf0d80992571761f3d125b2046eaefe Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: base64 WWVzIEkgdGhpbmsgVG9ueSBtYWtlcyBhIHBvaW50LgoKSSBkb24ndCB0aGluayBpdCBpbnRyb2R1 Y2VzIGEgbmV3IGVuZHBvaW50IG1vZGVsIHR5cGUgYnV0IHdlIG5lZWQgdG8gYmUgbWluZGZ1bCBv ZiB0aGUgaW50ZXJuYWwgbW9kZWwgcmVwcmVzZW50YXRpb24gb2YgYW4gZW5kcG9pbnQgd2l0aCBh IDVHIGNoaXAgYXMgaXQgd2lsbCBoYXZlIGEgbnVtYmVyIG9mIHNpZGUgZWZmZWN0cyBmb3IgZGVm aW5pbmcgdGhlICJhdHRhY2sgc3VyZmFjZSIgYm90aCBpbnRlcm5hbGx5IGFuZCBleHRlcm5hbGx5 IHRvIHRoZSBlbmRwb2ludC4KCkluIGZhY3QgaWYgeW91IHRha2UgdGhlIHBlcnNwZWN0aXZlIG9m IHNheSBhbiBlbXBsb3llZSBpbiBhIGNvbXBhbnksIGZyb20gYSB6ZXJvIHRydXN0IHBlcnNwZWN0 aXZlLCA1RyB3aWxsIGFjdHVhbGx5IGhhdmUgYSBtYWpvciBlZmZlY3Qgb24gdGhlIHdheSBvcmdh bml6YXRpb25zIHdpbGwgaGF2ZSB0byBjb21wbGV0ZWx5IGNoYW5nZSB0aGVpciBzZWN1cml0eSBt b2RlbHMgYW5kIHdpbGwgaGF2ZSB0byByZWNvbnNpZGVyIHRoZWlyIGFwcHJvYWNoIHRvIGVuZHBv aW50cy4gVGhpbmsgdGhlIGRheSB3aGVuIEFwcGxlIHdpbGwgc2hpcCBhIE1hY0Jvb2tQcm8gd2l0 aCBubyBXaWZpIGFuZCBhIDVHIGNoaXAuCgpJIGFjdHVhbGx5IGNhbiBzZWUgdGhlIGVmZmVjdCBi ZXlvbmQgM0dQUCBhbmQgRVRTSSBhcyB0aGUgcHJvYmxlbSBpcyBub3cgY29taW5nIGRlZXBlciBl dmVuIGluIElUVS1UIFNHMTcuIFRoZSBwYXN0IDIgdWx0cmEgaW50ZW5zZSB3ZWVrcyBpbiBDaGlu YSBpbmNsdWRpbmcgZm9yIFE3LzE3IGFuZCBROC8xNyBvcGVuZWQgbXkgZXllcyBvbiB0aGUgcmVs ZXZhbmNlIG9mIENMRVNTIGV2ZW4gdGhlcmUgYW5kIGVzcGVjaWFsbHkgZm9yIHplcm8gdHJ1c3Qg aW4gNUcgY29udGV4dHMuCgpIb3BlIHRoaXMgaGVscHMKClNlbnQgd2l0aCBbUHJvdG9uTWFpbF0o aHR0cHM6Ly9wcm90b25tYWlsLmNvbSkgU2VjdXJlIEVtYWlsLgoK4oCQ4oCQ4oCQ4oCQ4oCQ4oCQ 4oCQIE9yaWdpbmFsIE1lc3NhZ2Ug4oCQ4oCQ4oCQ4oCQ4oCQ4oCQ4oCQCk9uIE1vbmRheSA4IEp1 bHkgMjAxOSAyMDowNiwgVG9ueSBSdXRrb3dza2kgPHJ1dGtvd3NraS50b255QGdtYWlsLmNvbT4g d3JvdGU6Cgo+IEZ1bGwgU3RhbmQgQWxvbmUgKFNBKSA1RyBzcGVjaWZpZWQgYnkgUmVsLiAxNiB3 aWxsIGNvbnNpc3Qgb2YgZnVsbHkgdmlydHVhbGlzZWQgYXJjaGl0ZWN0dXJlcyBvcmNoZXN0cmF0 ZWQgb24tZGVtYW5kIHVzaW5nIE5GViBiYXNlZCBuZXR3b3JrIHNsaWNpbmcgYW1vbmcgdmlydHVh bGlzZWQgTmV0d29yayBGdW5jdGlvbnMuICBHaXZlbiB0aGlzIHJlYWxpdHkgYW5kIHRoYXQgdGhl IHNsaWNlcyB3aWxsIGJlIHVzaW5nIGRpZmZlcmVudCBuZXR3b3JrIHByb3RvY29scywgaW5jbHVk aW5nIEUyRSBFdGhlcm5ldCwgYW5kIGluc3RhbnRpYXRpbmcgYXJjaGl0ZWN0dXJlcyBhbmQgZnVu Y3Rpb25zIGZvciBwZXJpb2RzIG9mIHRpbWUgdXNpbmcgbWFueSBkaWZmZXJlbnQgTkYgaWRlbnRp ZmllcnMsIGl0IGlzbid0IGNsZWFyIGhvdyB0aGlzIGNvbXBvcnRzIHdpdGggdGhlIHR5cGljYWxs eSBoaWdobHkgcmlnaWQgVENQL0lQIGNlbnRyaWMgbW9kZWwuICAoSW5kZWVkLCBpdCBpc24ndCBj bGVhciB0aGF0IHRoZSB0ZXJtICJpbnRlcm5ldCIgaGFzIG1lYW5pbmcuKQo+Cj4gSW4gYSA1Ry9O RlYgZW52aXJvbm1lbnQsIGVub3Jtb3VzbHkgZGl2ZXJzZSBOZXR3b3JrIEZ1bmN0aW9ucyB3aWxs IGV4aXN0IGFsbCBvdmVyIHRoZSBpbnN0YW50aWF0ZWQgYXJjaGl0ZWN0dXJlcyAtIGluY2x1ZGlu ZyBvbiBlbmQgdXNlciBlcXVpcG1lbnQuICBUaGUgaW50ZXJlc3RpbmcgcXVlc3Rpb24gaXMgd2hl dGhlciBhIHRheG9ub215IGZvciBORnMgZXhpc3RzLCBhbmQgd2hldGhlciB5b3VyIGRyYWZ0IHNo b3VsZCB1c2UgdGhlIGNvbmNlcHR1YWxpc2F0aW9uIGluIHRoZSBpbnRlcmVzdCBvZiBhY2NvbW1v ZGF0aW5nIDVHLiAgSXQncyB3b3J0aCBub3RpbmcgdGhhdCB1c2VmdWwgd29yayBhbG9uZyB0aG9z ZSBsaW5lcyBleGlzdHMgb3V0IHRoZXJlLiAgU29tZSBpcyBmb3VuZCBpbiBORlYgSVNHIHNwZWNp ZmljYXRpb25zLCBlLmcuLCBFVFNJIEdTIE5GVi1JRkEgMDE0LiAgT3RoZXIgbWF0ZXJpYWwgY2Fu IGJlIGZvdW5kIGF0IElFVEYgbWVldGluZ3MuICBTZWUsIGUuZy4sIGh0dHBzOi8vd3d3LmlldGYu b3JnL3Byb2NlZWRpbmdzLzkyL3NsaWRlcy9zbGlkZXMtOTItcnRnYXJlYS0zLnBkZgo+Cj4gQ0xF U1MgaXMgY2VydGFpbmx5IGhlYWRlZCBpbiB0aGUgcmlnaHQgZGlyZWN0aW9uIC0gY2VydGFpbmx5 IGluIGEgNUcgd29ybGQuCj4KPiAtLXRvbnkKPgo+IE9uIDA4LUp1bC0xOSA5OjQ3IEFNLCBtYXJr QGludGVybmV0cG9saWN5YWR2aXNvcnMuY29tIHdyb3RlOgo+Cj4+IFRob3NlIGFyZSBwcmV0dHkg dXNlZnVsIHF1ZXN0aW9ucy4gSeKAmXZlIGdvdHRlbiB0aGUgc2FtZSBjb21tZW50cyBmcm9tIG90 aGVycyBvZmYtbGlzdC4gIFRoZSBzY29waW5nIG9mIENMRVNTIGlzIHNvbWV0aGluZyB3ZSBzaG91 bGQgdHJ5IHRvIG1ha2UgcHJvZ3Jlc3Mgb24gdGhlIGxpc3QuCj4+Cj4+IFRoZSA1RyBxdWVzdGlv biBpcyBhIGxpdHRsZSBkaWZmZXJlbnQgZm9yIG1lLiBEbyB5b3UgdGhpbmsgdGhhdCA1RyBpbnRy b2R1Y2VzIGNhdGVnb3JpZXMgb2YgZW5kcG9pbnRzIHRoYXQgd291bGQgbm90IGJlIHByZXNlbnQg aW4gZXhpc3RpbmcsIG9yIG90aGVyLCB0cmFuc3BvcnQgaW5mcmFzdHJ1Y3R1cmVzPyAgSWYgc28s IEnigJltIGhhcHB5IHRvIGFtZW5kIHRoZSB0ZXh0Lgo+Pgo+PiBUaGFua3MsCj4+Cj4+IG1hcmsK Pj4KPj4gRnJvbTogVG9ueSBSdXRrb3dza2kgWzxydXRrb3dza2kudG9ueUBnbWFpbC5jb20+XSht YWlsdG86cnV0a293c2tpLnRvbnlAZ21haWwuY29tKQo+PiBTZW50OiBNb25kYXksIEp1bHkgOCwg MjAxOSA4OjM2IEFNCj4+IFRvOiBtYXJrQGludGVybmV0cG9saWN5YWR2aXNvcnMuY29tOyBzbWFy dEBpcnRmLm9yZwo+PiBTdWJqZWN0OiBSZTogW1NtYXJ0XSBOZXcgVmVyc2lvbiBOb3RpZmljYXRp b24gZm9yIGRyYWZ0LW1jZmFkZGVuLXNtYXJ0LWVuZHBvaW50LXRheG9ub215LWZvci1jbGVzcy0w MC50eHQKPj4KPj4+IEJ1dCwgdGhlcmUncyBhbiBpbXBvcnRhbnQgcXVlc3Rpb24gaGVyZS4gQ0xF U1Mgc3BlY2lmaWNhbGx5IHJ1bGVzIG91dCBuZXR3b3JrIGluZnJhc3RydWN0dXJlIGluIGl0cyBk aXNjdXNzaW9uLiBTaG91bGQgdGhlIHRheG9ub215IGZvciBDTEVTUyBpbmNvcnBvcmF0ZSBlbmRw b2ludHMgdGhhdCBhcmUgcGFydCBvZiB0aGUgbmV0d29yayBpbmZyYXN0cnVjdHVyZT8gU2FpZCBh IGRpZmZlcmVudCB3YXk6IGlzIG5ldHdvcmsgaW5mcmFzdHJ1Y3R1cmUgb3V0IG9mIHNjb3BlIGZv ciBDTEVTUz8KPj4KPj4gRG8geW91IGludGVuZCB0aGlzIHRvIGJlIDVHIHJlbGV2YW50Pwo+Pgo+ PiAtdHIKPj4KPj4gT24gMDgtSnVsLTE5IDk6MjYgQU0sIG1hcmtAaW50ZXJuZXRwb2xpY3lhZHZp c29ycy5jb20gd3JvdGU6Cj4+Cj4+PiBBIG5ldyB2ZXJzaW9uIG9mIEktRCwgZHJhZnQtbWNmYWRk ZW4tc21hcnQtZW5kcG9pbnQtdGF4b25vbXktZm9yLWNsZXNzLTAwLnR4dAo+Pj4KPj4+IGhhcyBi ZWVuIHN1Y2Nlc3NmdWxseSBzdWJtaXR0ZWQgYnkgTWFyayBNY0ZhZGRlbiBhbmQgcG9zdGVkIHRv IHRoZSBJRVRGIHJlcG9zaXRvcnkuCj4+Pgo+Pj4KPj4+Cj4+PiBOYW1lOiAgICAgICAgICAgIGRy YWZ0LW1jZmFkZGVuLXNtYXJ0LWVuZHBvaW50LXRheG9ub215LWZvci1jbGVzcwo+Pj4KPj4+IFJl dmlzaW9uOiAwMAo+Pj4KPj4+IFRpdGxlOiAgICAgICAgICAgRW5kcG9pbnQgVGF4b25vbXkgZm9y IENMRVNTCj4+Pgo+Pj4gRG9jdW1lbnQgZGF0ZTogICAyMDE5LTA3LTA4Cj4+Pgo+Pj4gR3JvdXA6 ICAgICAgICAgICBJbmRpdmlkdWFsIFN1Ym1pc3Npb24KPj4+Cj4+PiBQYWdlczogICAgICAgICAg IDE1Cj4+Pgo+Pj4gVVJMOgo+Pj4gaHR0cHM6Ly93d3cuaWV0Zi5vcmcvaW50ZXJuZXQtZHJhZnRz L2RyYWZ0LW1jZmFkZGVuLXNtYXJ0LWVuZHBvaW50LXRheG9ub215LWZvci1jbGVzcy0wMC50eHQK Pj4+Cj4+PiBTdGF0dXM6Cj4+PiBodHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9kcmFm dC1tY2ZhZGRlbi1zbWFydC1lbmRwb2ludC10YXhvbm9teS1mb3ItY2xlc3MvCj4+Pgo+Pj4gSHRt bGl6ZWQ6Cj4+PiBodHRwczovL3Rvb2xzLmlldGYub3JnL2h0bWwvZHJhZnQtbWNmYWRkZW4tc21h cnQtZW5kcG9pbnQtdGF4b25vbXktZm9yLWNsZXNzLTAwCj4+Pgo+Pj4gSHRtbGl6ZWQ6Cj4+PiBo dHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9odG1sL2RyYWZ0LW1jZmFkZGVuLXNtYXJ0 LWVuZHBvaW50LXRheG9ub215LWZvci1jbGVzcwo+Pj4KPj4+Cj4+Pgo+Pj4KPj4+Cj4+PiBBYnN0 cmFjdDoKPj4+Cj4+PiAgICBBIHNlcGFyYXRlIGRvY3VtZW50IFtJLUQ6ZHJhZnQtdGFkZGVpLXNt YXJ0LWNsZXNzLWludHJvZHVjdGlvbl0KPj4+Cj4+PiAgICAoQ0xFU1MpIGF0dGVtcHRzIHRvIGVz dGFibGlzaCB0aGUgY2FwYWJpbGl0aWVzIGFuZCBsaW1pdGF0aW9ucyBvZgo+Pj4KPj4+ICAgIGVu ZHBvaW50LW9ubHkgc2VjdXJpdHkgc29sdXRpb25zIGFuZCBleHBsb3JlIHBvdGVudGlhbCBhbHRl cm5hdGl2ZQo+Pj4KPj4+ICAgIGFwcHJvYWNoZXMuIFRoYXQgZG9jdW1lbnQgZGlzY3Vzc2VzIGVu ZHBvaW50cyBpbiBnZW5lcmFsIHRlcm1zLiBJdAo+Pj4KPj4+ICAgIGhhcyBiZWVuIHN1Z2dlc3Rl ZCB0aGF0IHRoZXJlIGFyZSBjbGFzc2VzIG9mIGVuZHBvaW50cyB0aGF0IGhhdmUKPj4+Cj4+PiAg ICBkaWZmZXJlbnQgY2hhcmFjdGVyaXN0aWNzLiBUaG9zZSBjbGFzc2VzIG1heSBoYXZlIGNvbXBs ZXRlbHkKPj4+Cj4+PiAgICBkaWZmZXJlbnQgdGhyZWF0IGxhbmRzY2FwZXMgYW5kIHRoZSBlbmRw b2ludHMgbWF5IGhhdmUgY29tcGxldGVseQo+Pj4KPj4+ICAgIGRpZmZlcmVudCBzZWN1cml0eSBj YXBhYmlsaXRpZXMuIEluIHN1cHBvcnQgb2YgdGhlIHdvcmsgb24gQ0xFU1MsCj4+Pgo+Pj4gICAg dGhpcyBkb2N1bWVudCBwcm92aWRlcyBhIHRheG9ub215IG9mIGVuZHBvaW50cyB0aGF0IGlzIGlu dGVuZGVkIHRvCj4+Pgo+Pj4gICAgcHJvdmlkZSBhIGZvdW5kYXRpb24gZm9yIGZ1cnRoZXIgd29y ayBvbiBDTEVTUyBhbmQgcmVzZWFyY2ggb24KPj4+Cj4+PiAgICBhcHByb2FjaGVzIHRvIHByb3Zp ZGluZyBlbmRwb2ludCBzZWN1cml0eSBhbHRlcm5hdGl2ZXMgaW4gYSBkaXZlcnNlCj4+Pgo+Pj4g ICAgZ3JvdXAgb2Ygc2V0dGluZ3MuCj4+Pgo+Pj4KPj4+Cj4+Pgo+Pj4KPj4+Cj4+Pgo+Pj4KPj4+ Cj4+PiBQbGVhc2Ugbm90ZSB0aGF0IGl0IG1heSB0YWtlIGEgY291cGxlIG9mIG1pbnV0ZXMgZnJv bSB0aGUgdGltZSBvZiBzdWJtaXNzaW9uIHVudGlsIHRoZSBodG1saXplZCB2ZXJzaW9uIGFuZCBk aWZmIGFyZSBhdmFpbGFibGUgYXQgdG9vbHMuaWV0Zi5vcmcuCj4+Pgo+Pj4KPj4+Cj4+PiBUaGUg SUVURiBTZWNyZXRhcmlhdA== --b1_fcf0d80992571761f3d125b2046eaefe Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: base64 PGRpdj5ZZXMgSSB0aGluayBUb255IG1ha2VzIGEgcG9pbnQuJm5ic3A7PGJyPjwvZGl2PjxkaXY+ PGJyPjwvZGl2PjxkaXY+SSBkb24ndCB0aGluayBpdCBpbnRyb2R1Y2VzIGEgbmV3IGVuZHBvaW50 IG1vZGVsIHR5cGUgYnV0IHdlIG5lZWQgdG8gYmUgbWluZGZ1bCBvZiB0aGUgaW50ZXJuYWwgbW9k ZWwgcmVwcmVzZW50YXRpb24gb2YgYW4gZW5kcG9pbnQgd2l0aCBhIDVHIGNoaXAgYXMgaXQgd2ls bCBoYXZlIGEgbnVtYmVyIG9mIHNpZGUgZWZmZWN0cyBmb3IgZGVmaW5pbmcgdGhlICJhdHRhY2sg c3VyZmFjZSIgYm90aCBpbnRlcm5hbGx5IGFuZCBleHRlcm5hbGx5IHRvIHRoZSBlbmRwb2ludC4m bmJzcDs8YnI+PC9kaXY+PGRpdj48YnI+PC9kaXY+PGRpdj5JbiBmYWN0IGlmIHlvdSB0YWtlIHRo ZSBwZXJzcGVjdGl2ZSBvZiBzYXkgYW4gZW1wbG95ZWUgaW4gYSBjb21wYW55LCBmcm9tIGEgemVy byB0cnVzdCBwZXJzcGVjdGl2ZSwgNUcgd2lsbCBhY3R1YWxseSBoYXZlIGEgbWFqb3IgZWZmZWN0 IG9uIHRoZSB3YXkgb3JnYW5pemF0aW9ucyB3aWxsIGhhdmUgdG8gY29tcGxldGVseSBjaGFuZ2Ug dGhlaXIgc2VjdXJpdHkgbW9kZWxzIGFuZCB3aWxsIGhhdmUgdG8gcmVjb25zaWRlciB0aGVpciBh cHByb2FjaCB0byBlbmRwb2ludHMuIFRoaW5rIHRoZSBkYXkgd2hlbiBBcHBsZSB3aWxsIHNoaXAg YSBNYWNCb29rUHJvIHdpdGggbm8gV2lmaSBhbmQgYSA1RyBjaGlwLjxicj48L2Rpdj48ZGl2Pjxi cj48L2Rpdj48ZGl2PkkgYWN0dWFsbHkgY2FuIHNlZSB0aGUgZWZmZWN0IGJleW9uZCAzR1BQIGFu ZCBFVFNJIGFzIHRoZSBwcm9ibGVtIGlzIG5vdyBjb21pbmcgZGVlcGVyIGV2ZW4gaW4gSVRVLVQg U0cxNy4gVGhlIHBhc3QgMiB1bHRyYSBpbnRlbnNlIHdlZWtzIGluIENoaW5hIGluY2x1ZGluZyBm b3IgUTcvMTcgYW5kIFE4LzE3IG9wZW5lZCBteSBleWVzIG9uIHRoZSByZWxldmFuY2Ugb2YgQ0xF U1MgZXZlbiB0aGVyZSBhbmQgZXNwZWNpYWxseSBmb3IgemVybyB0cnVzdCBpbiA1RyBjb250ZXh0 cy48YnI+PC9kaXY+PGRpdj48YnI+PC9kaXY+PGRpdj5Ib3BlIHRoaXMgaGVscHM8L2Rpdj48ZGl2 Pjxicj48L2Rpdj48ZGl2IGNsYXNzPSJwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jayI+PGRpdiBj bGFzcz0icHJvdG9ubWFpbF9zaWduYXR1cmVfYmxvY2stdXNlciBwcm90b25tYWlsX3NpZ25hdHVy ZV9ibG9jay1lbXB0eSI+PGJyPjwvZGl2PjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2lnbmF0dXJl X2Jsb2NrLXByb3RvbiI+U2VudCB3aXRoIDxhIGhyZWY9Imh0dHBzOi8vcHJvdG9ubWFpbC5jb20i IHRhcmdldD0iX2JsYW5rIj5Qcm90b25NYWlsPC9hPiBTZWN1cmUgRW1haWwuPGJyPjwvZGl2Pjwv ZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+4oCQ4oCQ4oCQ4oCQ4oCQ4oCQ4oCQIE9yaWdpbmFsIE1l c3NhZ2Ug4oCQ4oCQ4oCQ4oCQ4oCQ4oCQ4oCQPGJyPjwvZGl2PjxkaXY+IE9uIE1vbmRheSA4IEp1 bHkgMjAxOSAyMDowNiwgVG9ueSBSdXRrb3dza2kgJmx0O3J1dGtvd3NraS50b255QGdtYWlsLmNv bSZndDsgd3JvdGU6PGJyPjwvZGl2PjxkaXY+IDxicj48L2Rpdj48YmxvY2txdW90ZSBjbGFzcz0i cHJvdG9ubWFpbF9xdW90ZSIgdHlwZT0iY2l0ZSI+PHA+RnVsbCBTdGFuZCBBbG9uZSAoU0EpIDVH IHNwZWNpZmllZCBieSBSZWwuIDE2IHdpbGwgY29uc2lzdCBvZg0KICAgICAgZnVsbHkgdmlydHVh bGlzZWQgYXJjaGl0ZWN0dXJlcyBvcmNoZXN0cmF0ZWQgb24tZGVtYW5kIHVzaW5nIE5GVg0KICAg ICAgYmFzZWQgbmV0d29yayBzbGljaW5nIGFtb25nIHZpcnR1YWxpc2VkIE5ldHdvcmsgRnVuY3Rp b25zLiZuYnNwOyBHaXZlbg0KICAgICAgdGhpcyByZWFsaXR5IGFuZCB0aGF0IHRoZSBzbGljZXMg d2lsbCBiZSB1c2luZyBkaWZmZXJlbnQgbmV0d29yaw0KICAgICAgcHJvdG9jb2xzLCBpbmNsdWRp bmcgRTJFIEV0aGVybmV0LCBhbmQgaW5zdGFudGlhdGluZyBhcmNoaXRlY3R1cmVzDQogICAgICBh bmQgZnVuY3Rpb25zIGZvciBwZXJpb2RzIG9mIHRpbWUgdXNpbmcgbWFueSBkaWZmZXJlbnQgTkYN CiAgICAgIGlkZW50aWZpZXJzLCBpdCBpc24ndCBjbGVhciBob3cgdGhpcyBjb21wb3J0cyB3aXRo IHRoZSB0eXBpY2FsbHkNCiAgICAgIGhpZ2hseSByaWdpZCBUQ1AvSVAgY2VudHJpYyBtb2RlbC4m bmJzcDsgKEluZGVlZCwgaXQgaXNuJ3QgY2xlYXIgdGhhdA0KICAgICAgdGhlIHRlcm0gImludGVy bmV0IiBoYXMgbWVhbmluZy4pPGJyPjwvcD48cD5JbiBhIDVHL05GViBlbnZpcm9ubWVudCwgZW5v cm1vdXNseSBkaXZlcnNlIE5ldHdvcmsgRnVuY3Rpb25zDQogICAgICB3aWxsIGV4aXN0IGFsbCBv dmVyIHRoZSBpbnN0YW50aWF0ZWQgYXJjaGl0ZWN0dXJlcyAtIGluY2x1ZGluZyBvbg0KICAgICAg ZW5kIHVzZXIgZXF1aXBtZW50LiZuYnNwOyBUaGUgaW50ZXJlc3RpbmcgcXVlc3Rpb24gaXMgd2hl dGhlciBhDQogICAgICB0YXhvbm9teSBmb3IgTkZzIGV4aXN0cywgYW5kIHdoZXRoZXIgeW91ciBk cmFmdCBzaG91bGQgdXNlIHRoZQ0KICAgICAgY29uY2VwdHVhbGlzYXRpb24gaW4gdGhlIGludGVy ZXN0IG9mIGFjY29tbW9kYXRpbmcgNUcuJm5ic3A7IEl0J3Mgd29ydGgNCiAgICAgIG5vdGluZyB0 aGF0IHVzZWZ1bCB3b3JrIGFsb25nIHRob3NlIGxpbmVzIGV4aXN0cyBvdXQgdGhlcmUuJm5ic3A7 IFNvbWUNCiAgICAgIGlzIGZvdW5kIGluIE5GViBJU0cgc3BlY2lmaWNhdGlvbnMsIGUuZy4sIEVU U0kgR1MgTkZWLUlGQSAwMTQuJm5ic3A7DQogICAgICBPdGhlciBtYXRlcmlhbCBjYW4gYmUgZm91 bmQgYXQgSUVURiBtZWV0aW5ncy4mbmJzcDsgU2VlLCBlLmcuLCA8YSBocmVmPSJodHRwczovL3d3 dy5pZXRmLm9yZy9wcm9jZWVkaW5ncy85Mi9zbGlkZXMvc2xpZGVzLTkyLXJ0Z2FyZWEtMy5wZGYi Pmh0dHBzOi8vd3d3LmlldGYub3JnL3Byb2NlZWRpbmdzLzkyL3NsaWRlcy9zbGlkZXMtOTItcnRn YXJlYS0zLnBkZjwvYT48YnI+PC9wPjxwPkNMRVNTIGlzIGNlcnRhaW5seSBoZWFkZWQgaW4gdGhl IHJpZ2h0IGRpcmVjdGlvbiAtIGNlcnRhaW5seSBpbiBhDQogICAgICA1RyB3b3JsZC48YnI+PC9w PjxwPi0tdG9ueTxicj48L3A+PGRpdiBjbGFzcz0ibW96LWNpdGUtcHJlZml4Ij5PbiAwOC1KdWwt MTkgOTo0NyBBTSwgPGEgaHJlZj0ibWFpbHRvOm1hcmtAaW50ZXJuZXRwb2xpY3lhZHZpc29ycy5j b20iPm1hcmtAaW50ZXJuZXRwb2xpY3lhZHZpc29ycy5jb208L2E+IHdyb3RlOjxicj48L2Rpdj48 YmxvY2txdW90ZSB0eXBlPSJjaXRlIj48ZGl2PjxwPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTom cXVvdDtUcmVidWNoZXQNCiAgICAgICAgICAgIE1TJnF1b3Q7LHNhbnMtc2VyaWY7Y29sb3I6IzFG NDk3RCI+VGhvc2UgYXJlIHByZXR0eSB1c2VmdWwNCiAgICAgICAgICAgIHF1ZXN0aW9ucy4gSeKA mXZlIGdvdHRlbiB0aGUgc2FtZSBjb21tZW50cyBmcm9tIG90aGVycw0KICAgICAgICAgICAgb2Zm LWxpc3QuJm5ic3A7IFRoZSBzY29waW5nIG9mIENMRVNTIGlzIHNvbWV0aGluZyB3ZSBzaG91bGQg dHJ5DQogICAgICAgICAgICB0byBtYWtlIHByb2dyZXNzIG9uIHRoZSBsaXN0Ljwvc3Bhbj48YnI+ PC9wPjxwPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTomcXVvdDtUcmVidWNoZXQNCiAgICAgICAg ICAgIE1TJnF1b3Q7LHNhbnMtc2VyaWY7Y29sb3I6IzFGNDk3RCI+Jm5ic3A7PC9zcGFuPjxicj48 L3A+PHA+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiZxdW90O1RyZWJ1Y2hldA0KICAgICAgICAg ICAgTVMmcXVvdDssc2Fucy1zZXJpZjtjb2xvcjojMUY0OTdEIj5UaGUgNUcgcXVlc3Rpb24gaXMg YQ0KICAgICAgICAgICAgbGl0dGxlIGRpZmZlcmVudCBmb3IgbWUuIERvIHlvdSB0aGluayB0aGF0 IDVHIGludHJvZHVjZXMNCiAgICAgICAgICAgIGNhdGVnb3JpZXMgb2YgZW5kcG9pbnRzIHRoYXQg d291bGQgbm90IGJlIHByZXNlbnQgaW4NCiAgICAgICAgICAgIGV4aXN0aW5nLCBvciBvdGhlciwg dHJhbnNwb3J0IGluZnJhc3RydWN0dXJlcz8mbmJzcDsgSWYgc28sIEnigJltDQogICAgICAgICAg ICBoYXBweSB0byBhbWVuZCB0aGUgdGV4dC48L3NwYW4+PGJyPjwvcD48cD48c3BhbiBzdHlsZT0i Zm9udC1mYW1pbHk6JnF1b3Q7VHJlYnVjaGV0DQogICAgICAgICAgICBNUyZxdW90OyxzYW5zLXNl cmlmO2NvbG9yOiMxRjQ5N0QiPiZuYnNwOzwvc3Bhbj48YnI+PC9wPjxwPjxzcGFuIHN0eWxlPSJm b250LWZhbWlseTomcXVvdDtUcmVidWNoZXQNCiAgICAgICAgICAgIE1TJnF1b3Q7LHNhbnMtc2Vy aWY7Y29sb3I6IzFGNDk3RCI+VGhhbmtzLDwvc3Bhbj48YnI+PC9wPjxwPjxzcGFuIHN0eWxlPSJm b250LWZhbWlseTomcXVvdDtUcmVidWNoZXQNCiAgICAgICAgICAgIE1TJnF1b3Q7LHNhbnMtc2Vy aWY7Y29sb3I6IzFGNDk3RCI+Jm5ic3A7PC9zcGFuPjxicj48L3A+PHA+PHNwYW4gc3R5bGU9ImZv bnQtZmFtaWx5OiZxdW90O1RyZWJ1Y2hldA0KICAgICAgICAgICAgTVMmcXVvdDssc2Fucy1zZXJp Zjtjb2xvcjojMUY0OTdEIj5tYXJrPC9zcGFuPjxicj48L3A+PHA+PHNwYW4gc3R5bGU9ImZvbnQt ZmFtaWx5OiZxdW90O1RyZWJ1Y2hldA0KICAgICAgICAgICAgTVMmcXVvdDssc2Fucy1zZXJpZjtj b2xvcjojMUY0OTdEIj4mbmJzcDs8L3NwYW4+PGJyPjwvcD48ZGl2PjxkaXYgc3R5bGU9ImJvcmRl cjpub25lO2JvcmRlci10b3A6c29saWQgI0UxRTFFMQ0KICAgICAgICAgICAgMS4wcHQ7cGFkZGlu ZzozLjBwdCAwaW4gMGluIDBpbiI+PHA+PGI+PHNwYW4gc3R5bGU9ImNvbG9yOndpbmRvd3RleHQi PkZyb206PC9zcGFuPjwvYj48c3BhbiBzdHlsZT0iY29sb3I6d2luZG93dGV4dCI+IFRvbnkgUnV0 a293c2tpIDxhIGhyZWY9Im1haWx0bzpydXRrb3dza2kudG9ueUBnbWFpbC5jb20iPiZsdDtydXRr b3dza2kudG9ueUBnbWFpbC5jb20mZ3Q7PC9hPiA8YnI+IDxiPlNlbnQ6PC9iPiBNb25kYXksIEp1 bHkgOCwgMjAxOSA4OjM2IEFNPGJyPiA8Yj5Ubzo8L2I+IDxhIGhyZWY9Im1haWx0bzptYXJrQGlu dGVybmV0cG9saWN5YWR2aXNvcnMuY29tIj5tYXJrQGludGVybmV0cG9saWN5YWR2aXNvcnMuY29t PC9hPjsgPGEgaHJlZj0ibWFpbHRvOnNtYXJ0QGlydGYub3JnIj5zbWFydEBpcnRmLm9yZzwvYT48 YnI+IDxiPlN1YmplY3Q6PC9iPiBSZTogW1NtYXJ0XSBOZXcgVmVyc2lvbiBOb3RpZmljYXRpb24g Zm9yDQogICAgICAgICAgICAgICAgZHJhZnQtbWNmYWRkZW4tc21hcnQtZW5kcG9pbnQtdGF4b25v bXktZm9yLWNsZXNzLTAwLnR4dDwvc3Bhbj48L3A+PC9kaXY+PC9kaXY+PHA+Jm5ic3A7PGJyPjwv cD48YmxvY2txdW90ZSBzdHlsZT0ibWFyZ2luLXRvcDo1LjBwdDttYXJnaW4tYm90dG9tOjUuMHB0 Ij48cD48c3BhbiBzdHlsZT0iYmFja2dyb3VuZC1jb2xvcjp3aGl0ZSI+PHNwYW4gc3R5bGU9ImZv bnQtZmFtaWx5OkNvbnNvbGFzIj48c3BhbiBzdHlsZT0iZm9udC1zaXplOjEwcHQiPkJ1dCwNCiAg ICAgICAgICAgICAgdGhlcmUncyBhbiBpbXBvcnRhbnQgcXVlc3Rpb24gaGVyZS4gQ0xFU1Mgc3Bl Y2lmaWNhbGx5DQogICAgICAgICAgICAgIHJ1bGVzIG91dCBuZXR3b3JrIGluZnJhc3RydWN0dXJl IGluIGl0cyBkaXNjdXNzaW9uLiBTaG91bGQNCiAgICAgICAgICAgICAgdGhlIHRheG9ub215IGZv ciBDTEVTUyBpbmNvcnBvcmF0ZSBlbmRwb2ludHMgdGhhdCBhcmUgcGFydA0KICAgICAgICAgICAg ICBvZiB0aGUgbmV0d29yayBpbmZyYXN0cnVjdHVyZT8gU2FpZCBhIGRpZmZlcmVudCB3YXk6IGlz DQogICAgICAgICAgICAgIG5ldHdvcmsgaW5mcmFzdHJ1Y3R1cmUgb3V0IG9mIHNjb3BlIGZvciBD TEVTUz88L3NwYW4+PC9zcGFuPjwvc3Bhbj48YnI+PC9wPjwvYmxvY2txdW90ZT48cD5EbyB5b3Ug aW50ZW5kIHRoaXMgdG8gYmUgNUcgcmVsZXZhbnQ/PGJyPjwvcD48cD4tdHI8YnI+PC9wPjxkaXY+ PHA+T24gMDgtSnVsLTE5IDk6MjYgQU0sIDxhIGhyZWY9Im1haWx0bzptYXJrQGludGVybmV0cG9s aWN5YWR2aXNvcnMuY29tIj5tYXJrQGludGVybmV0cG9saWN5YWR2aXNvcnMuY29tPC9hPiB3cm90 ZTo8YnI+PC9wPjwvZGl2PjxibG9ja3F1b3RlIHN0eWxlPSJtYXJnaW4tdG9wOjUuMHB0O21hcmdp bi1ib3R0b206NS4wcHQiPjxwcmU+QSBuZXcgdmVyc2lvbiBvZiBJLUQsIGRyYWZ0LW1jZmFkZGVu LXNtYXJ0LWVuZHBvaW50LXRheG9ub215LWZvci1jbGVzcy0wMC50eHQ8YnI+PC9wcmU+PHByZT5o YXMgYmVlbiBzdWNjZXNzZnVsbHkgc3VibWl0dGVkIGJ5IE1hcmsgTWNGYWRkZW4gYW5kIHBvc3Rl ZCB0byB0aGUgSUVURiByZXBvc2l0b3J5Ljxicj48L3ByZT48cHJlPiZuYnNwOzxicj48L3ByZT48 cHJlPk5hbWU6Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7IGRyYWZ0LW1jZmFkZGVuLXNtYXJ0LWVuZHBvaW50LXRheG9ub215 LWZvci1jbGVzczxicj48L3ByZT48cHJlPlJldmlzaW9uOiAwMDxicj48L3ByZT48cHJlPlRpdGxl OiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyBFbmRwb2ludCBUYXhvbm9teSBmb3IgQ0xFU1M8YnI+PC9wcmU+PHByZT5Eb2N1bWVudCBk YXRlOiZuYnNwOyZuYnNwOyAyMDE5LTA3LTA4PGJyPjwvcHJlPjxwcmU+R3JvdXA6Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7IEluZGl2 aWR1YWwgU3VibWlzc2lvbjxicj48L3ByZT48cHJlPlBhZ2VzOiZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyAxNTxicj48L3ByZT48cHJl PlVSTDombmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDsmbmJzcDsgPGEgaHJlZj0iaHR0cHM6Ly93d3cuaWV0Zi5vcmcvaW50ZXJuZXQtZHJh ZnRzL2RyYWZ0LW1jZmFkZGVuLXNtYXJ0LWVuZHBvaW50LXRheG9ub215LWZvci1jbGVzcy0wMC50 eHQiPmh0dHBzOi8vd3d3LmlldGYub3JnL2ludGVybmV0LWRyYWZ0cy9kcmFmdC1tY2ZhZGRlbi1z bWFydC1lbmRwb2ludC10YXhvbm9teS1mb3ItY2xlc3MtMDAudHh0PC9hPjxicj48L3ByZT48cHJl PlN0YXR1czombmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsg PGEgaHJlZj0iaHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2MvZHJhZnQtbWNmYWRkZW4t c21hcnQtZW5kcG9pbnQtdGF4b25vbXktZm9yLWNsZXNzLyI+aHR0cHM6Ly9kYXRhdHJhY2tlci5p ZXRmLm9yZy9kb2MvZHJhZnQtbWNmYWRkZW4tc21hcnQtZW5kcG9pbnQtdGF4b25vbXktZm9yLWNs ZXNzLzwvYT48YnI+PC9wcmU+PHByZT5IdG1saXplZDombmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsgPGEgaHJlZj0iaHR0cHM6Ly90b29scy5pZXRmLm9yZy9odG1sL2RyYWZ0LW1j ZmFkZGVuLXNtYXJ0LWVuZHBvaW50LXRheG9ub215LWZvci1jbGVzcy0wMCI+aHR0cHM6Ly90b29s cy5pZXRmLm9yZy9odG1sL2RyYWZ0LW1jZmFkZGVuLXNtYXJ0LWVuZHBvaW50LXRheG9ub215LWZv ci1jbGVzcy0wMDwvYT48YnI+PC9wcmU+PHByZT5IdG1saXplZDombmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsgPGEgaHJlZj0iaHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9k b2MvaHRtbC9kcmFmdC1tY2ZhZGRlbi1zbWFydC1lbmRwb2ludC10YXhvbm9teS1mb3ItY2xlc3Mi Pmh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2h0bWwvZHJhZnQtbWNmYWRkZW4tc21h cnQtZW5kcG9pbnQtdGF4b25vbXktZm9yLWNsZXNzPC9hPjxicj48L3ByZT48cHJlPiZuYnNwOzxi cj48L3ByZT48cHJlPiZuYnNwOzxicj48L3ByZT48cHJlPkFic3RyYWN0Ojxicj48L3ByZT48cHJl PiZuYnNwOyZuYnNwOyBBIHNlcGFyYXRlIGRvY3VtZW50IFtJLUQ6ZHJhZnQtdGFkZGVpLXNtYXJ0 LWNsZXNzLWludHJvZHVjdGlvbl08YnI+PC9wcmU+PHByZT4mbmJzcDsmbmJzcDsgKENMRVNTKSBh dHRlbXB0cyB0byBlc3RhYmxpc2ggdGhlIGNhcGFiaWxpdGllcyBhbmQgbGltaXRhdGlvbnMgb2Y8 YnI+PC9wcmU+PHByZT4mbmJzcDsmbmJzcDsgZW5kcG9pbnQtb25seSBzZWN1cml0eSBzb2x1dGlv bnMgYW5kIGV4cGxvcmUgcG90ZW50aWFsIGFsdGVybmF0aXZlPGJyPjwvcHJlPjxwcmU+Jm5ic3A7 Jm5ic3A7IGFwcHJvYWNoZXMuIFRoYXQgZG9jdW1lbnQgZGlzY3Vzc2VzIGVuZHBvaW50cyBpbiBn ZW5lcmFsIHRlcm1zLiBJdDxicj48L3ByZT48cHJlPiZuYnNwOyZuYnNwOyBoYXMgYmVlbiBzdWdn ZXN0ZWQgdGhhdCB0aGVyZSBhcmUgY2xhc3NlcyBvZiBlbmRwb2ludHMgdGhhdCBoYXZlPGJyPjwv cHJlPjxwcmU+Jm5ic3A7Jm5ic3A7IGRpZmZlcmVudCBjaGFyYWN0ZXJpc3RpY3MuIFRob3NlIGNs YXNzZXMgbWF5IGhhdmUgY29tcGxldGVseTxicj48L3ByZT48cHJlPiZuYnNwOyZuYnNwOyBkaWZm ZXJlbnQgdGhyZWF0IGxhbmRzY2FwZXMgYW5kIHRoZSBlbmRwb2ludHMgbWF5IGhhdmUgY29tcGxl dGVseTxicj48L3ByZT48cHJlPiZuYnNwOyZuYnNwOyBkaWZmZXJlbnQgc2VjdXJpdHkgY2FwYWJp bGl0aWVzLiBJbiBzdXBwb3J0IG9mIHRoZSB3b3JrIG9uIENMRVNTLDxicj48L3ByZT48cHJlPiZu YnNwOyZuYnNwOyB0aGlzIGRvY3VtZW50IHByb3ZpZGVzIGEgdGF4b25vbXkgb2YgZW5kcG9pbnRz IHRoYXQgaXMgaW50ZW5kZWQgdG88YnI+PC9wcmU+PHByZT4mbmJzcDsmbmJzcDsgcHJvdmlkZSBh IGZvdW5kYXRpb24gZm9yIGZ1cnRoZXIgd29yayBvbiBDTEVTUyBhbmQgcmVzZWFyY2ggb248YnI+ PC9wcmU+PHByZT4mbmJzcDsmbmJzcDsgYXBwcm9hY2hlcyB0byBwcm92aWRpbmcgZW5kcG9pbnQg c2VjdXJpdHkgYWx0ZXJuYXRpdmVzIGluIGEgZGl2ZXJzZTxicj48L3ByZT48cHJlPiZuYnNwOyZu YnNwOyBncm91cCBvZiBzZXR0aW5ncy48YnI+PC9wcmU+PHByZT4mbmJzcDs8YnI+PC9wcmU+PHBy ZT4mbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgPGJyPjwvcHJlPjxwcmU+Jm5ic3A7PGJy PjwvcHJlPjxwcmU+Jm5ic3A7PGJyPjwvcHJlPjxwcmU+UGxlYXNlIG5vdGUgdGhhdCBpdCBtYXkg dGFrZSBhIGNvdXBsZSBvZiBtaW51dGVzIGZyb20gdGhlIHRpbWUgb2Ygc3VibWlzc2lvbiB1bnRp bCB0aGUgaHRtbGl6ZWQgdmVyc2lvbiBhbmQgZGlmZiBhcmUgYXZhaWxhYmxlIGF0IHRvb2xzLmll dGYub3JnLjxicj48L3ByZT48cHJlPiZuYnNwOzxicj48L3ByZT48cHJlPlRoZSBJRVRGIFNlY3Jl dGFyaWF0PGJyPjwvcHJlPjxwcmU+Jm5ic3A7PGJyPjwvcHJlPjxwcmU+Jm5ic3A7PGJyPjwvcHJl PjwvYmxvY2txdW90ZT48L2Rpdj48L2Jsb2NrcXVvdGU+PC9ibG9ja3F1b3RlPjxkaXY+PGJyPjwv ZGl2Pg== --b1_fcf0d80992571761f3d125b2046eaefe-- From nobody Tue Jul 9 09:16:27 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EA3A51206C2 for ; Tue, 9 Jul 2019 09:16:18 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.437 X-Spam-Level: X-Spam-Status: No, score=-0.437 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_WORDY=2.261, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hxqRaY6oSf1E for ; Tue, 9 Jul 2019 09:16:15 -0700 (PDT) Received: from mail4.protonmail.ch (mail4.protonmail.ch [185.70.40.27]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4715D1206C7 for ; Tue, 9 Jul 2019 09:16:13 -0700 (PDT) Date: Tue, 09 Jul 2019 16:16:06 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1562688970; bh=ikP99drHisxF95gWhSypFa7RIrndUK/99w0TNewWTVw=; h=Date:To:From:Reply-To:Subject:Feedback-ID:From; b=kF67Sa3l04ERT1xtf2WqR/nEYASl4IYIXNdKBQGmxjDEeiUeO6gOclusIGyJ9XVfk PjrbPS1THwiTmvAhiqEF8es4sWSlkaCHdKbNb8fiUhXTiOhgmQcBcSLDeCYI72/fV/ Z6ORmiSgRVjFMj0D35xVSboO3JsbqlAbj6ExW/8I= To: "smart@irtf.org" From: "Arnaud.Taddei.IETF" Reply-To: "Arnaud.Taddei.IETF" Message-ID: Feedback-ID: kou6vaSHQeY5dgFN9dCIYKo4z6hnnNmKuV4IBJw2wx4vSVPtftyhWUTBigri6zMJ3K1hxYJjI-3RAIGaizMt5g==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_382d5756352c40c7a0e7e2b44733ccfd" Archived-At: Subject: [Smart] New Version Notification for draft-taddei-smart-cless-introduction-01.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 09 Jul 2019 16:16:24 -0000 This is a multi-part message in MIME format. --b1_382d5756352c40c7a0e7e2b44733ccfd Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: base64 QSBuZXcgdmVyc2lvbiBvZiBJLUQsIGRyYWZ0LXRhZGRlaS1zbWFydC1jbGVzcy1pbnRyb2R1Y3Rp b24tMDEudHh0CmhhcyBiZWVuIHN1Y2Nlc3NmdWxseSBzdWJtaXR0ZWQgYnkgQXJuYXVkIFRhZGRl aSBhbmQgcG9zdGVkIHRvIHRoZQpJRVRGIHJlcG9zaXRvcnkuCgpOYW1lOmRyYWZ0LXRhZGRlaS1z bWFydC1jbGVzcy1pbnRyb2R1Y3Rpb24KClJldmlzaW9uOjAxCgpUaXRsZTpDYXBhYmlsaXRpZXMg YW5kIExpbWl0YXRpb25zIG9mIGFuIEVuZHBvaW50LW9ubHkgU2VjdXJpdHkgU29sdXRpb24KCkRv Y3VtZW50IGRhdGU6MjAxOS0wNy0wOAoKR3JvdXA6SW5kaXZpZHVhbCBTdWJtaXNzaW9uCgpQYWdl czo0MgoKVVJMOiAgICAgICAgICAgIGh0dHBzOi8vd3d3LmlldGYub3JnL2lkL2RyYWZ0LXRhZGRl aS1zbWFydC1jbGVzcy1pbnRyb2R1Y3Rpb24tMDEudHh0ClN0YXR1czogICAgICAgICBodHRwczov L3d3dy5pZXRmLm9yZy9pZC9kcmFmdC10YWRkZWktc21hcnQtY2xlc3MtaW50cm9kdWN0aW9uLTAx LnR4dApIdG1saXplZDogICAgICAgaHR0cHM6Ly90b29scy5pZXRmLm9yZy9odG1sL2RyYWZ0LXRh ZGRlaS1zbWFydC1jbGVzcy1pbnRyb2R1Y3Rpb24tMDEKSHRtbGl6ZWQ6ICAgICAgIGh0dHBzOi8v ZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2h0bWwvZHJhZnQtdGFkZGVpLXNtYXJ0LWNsZXNzLWlu dHJvZHVjdGlvbgpEaWZmOiAgICAgICAgICAgaHR0cHM6Ly93d3cuaWV0Zi5vcmcvcmZjZGlmZj91 cmwyPWRyYWZ0LXRhZGRlaS1zbWFydC1jbGVzcy1pbnRyb2R1Y3Rpb24tMDEKCkFic3RyYWN0OgoK ICAgSW4gdGhlIGNvbnRleHQgb2YgZXhpc3RpbmcsIHByb3Bvc2VkIGFuZCBuZXdseSBwdWJsaXNo ZWQgcHJvdG9jb2xzLAoKICAgdGhpcyBkcmFmdCBSRkMgaXMgdG8gZXN0YWJsaXNoIHRoZSBjYXBh YmlsaXRpZXMgYW5kIGxpbWl0YXRpb25zIG9mCgogICBlbmRwb2ludC1vbmx5IHNlY3VyaXR5IHNv bHV0aW9ucyBhbmQgZXhwbG9yZSBiZW5lZml0cyBhbmQKCiAgIGFsdGVybmF0aXZlcyB0byBtaXRp Z2F0ZSB0aG9zZSBsaW1pdHMgd2l0aCB0aGUgc3VwcG9ydCBvZiByZWFsIGNhc2UKCiAgIHN0dWRp ZXMuCgpTZW50IHdpdGggW1Byb3Rvbk1haWxdKGh0dHBzOi8vcHJvdG9ubWFpbC5jb20pIFNlY3Vy ZSBFbWFpbC4= --b1_382d5756352c40c7a0e7e2b44733ccfd Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: base64 PGRpdiBzdHlsZT0iY2FyZXQtY29sb3I6IHJnYigwLCAwLCAwKTsgY29sb3I6IHJnYigwLCAwLCAw KTsgZm9udC1mYW1pbHk6IC13ZWJraXQtc3RhbmRhcmQ7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9u dC12YXJpYW50LWNhcHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6IG5vcm1hbDsgbGV0dGVyLXNwYWNp bmc6IG5vcm1hbDsgb3JwaGFuczogYXV0bzsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50 OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6 IGF1dG87IHdvcmQtc3BhY2luZzogMHB4OyAtd2Via2l0LXRleHQtc2l6ZS1hZGp1c3Q6IGF1dG87 IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6IDBweDsgdGV4dC1kZWNvcmF0aW9uOiBub25lOyI+ PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBt b25vc3BhY2UsIHNhbnMtc2VyaWY7Ij48c3BhbiBzdHlsZT0iZm9udC1zaXplOiAxMnB4Ij5BIG5l dyB2ZXJzaW9uIG9mIEktRCwgZHJhZnQtdGFkZGVpLXNtYXJ0LWNsZXNzLWludHJvZHVjdGlvbi0w MS50eHQ8YnI+PC9zcGFuPjwvc3Bhbj48L2Rpdj48ZGl2IHN0eWxlPSJjYXJldC1jb2xvcjogcmdi KDAsIDAsIDApOyBjb2xvcjogcmdiKDAsIDAsIDApOyBmb250LWZhbWlseTogLXdlYmtpdC1zdGFu ZGFyZDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyBmb250 LXdlaWdodDogbm9ybWFsOyBsZXR0ZXItc3BhY2luZzogbm9ybWFsOyBvcnBoYW5zOiBhdXRvOyB0 ZXh0LWFsaWduOiBzdGFydDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7 IHdoaXRlLXNwYWNlOiBub3JtYWw7IHdpZG93czogYXV0bzsgd29yZC1zcGFjaW5nOiAwcHg7IC13 ZWJraXQtdGV4dC1zaXplLWFkanVzdDogYXV0bzsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDog MHB4OyB0ZXh0LWRlY29yYXRpb246IG5vbmU7Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IG1l bmxvLCBjb25zb2xhcywgY291cmllciBuZXcsIG1vbm9zcGFjZSwgc2Fucy1zZXJpZjsiPjxzcGFu IHN0eWxlPSJmb250LXNpemU6IDEycHgiPmhhcyBiZWVuIHN1Y2Nlc3NmdWxseSBzdWJtaXR0ZWQg YnkgQXJuYXVkIFRhZGRlaSBhbmQgcG9zdGVkIHRvIHRoZTxicj48L3NwYW4+PC9zcGFuPjwvZGl2 PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwg MCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZv bnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFj aW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVu dDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dz OiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRv OyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsi PjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywg bW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+SUVU RiByZXBvc2l0b3J5Ljxicj48L3NwYW4+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNv bG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Vi a2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3Jt YWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6 IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9y bTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6 IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tl LXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250LWZh bWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlm OyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PGJyPjwvc3Bhbj48L3NwYW4+PC9kaXY+ PGRpdiBzdHlsZT0iY2FyZXQtY29sb3I6IHJnYigwLCAwLCAwKTsgY29sb3I6IHJnYigwLCAwLCAw KTsgZm9udC1mYW1pbHk6IC13ZWJraXQtc3RhbmRhcmQ7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9u dC12YXJpYW50LWNhcHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6IG5vcm1hbDsgbGV0dGVyLXNwYWNp bmc6IG5vcm1hbDsgb3JwaGFuczogYXV0bzsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50 OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6 IGF1dG87IHdvcmQtc3BhY2luZzogMHB4OyAtd2Via2l0LXRleHQtc2l6ZS1hZGp1c3Q6IGF1dG87 IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6IDBweDsgdGV4dC1kZWNvcmF0aW9uOiBub25lOyI+ PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBt ZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij5OYW1l Ojwvc3Bhbj48L3NwYW4+PHNwYW4gc3R5bGU9IndoaXRlLXNwYWNlOiBwcmU7Ij48c3BhbiBzdHls ZT0iZm9udC1zaXplOiAxMnB4Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IG1lbmxvLCBjb25z b2xhcywgY291cmllciBuZXcsIG1vbm9zcGFjZSwgc2Fucy1zZXJpZjsiPiAgPC9zcGFuPjwvc3Bh bj48L3NwYW4+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQt ZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2Vy aWY7Ij5kcmFmdC10YWRkZWktc21hcnQtY2xlc3MtaW50cm9kdWN0aW9uPC9zcGFuPjxzcGFuIHN0 eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNl LCBzYW5zLXNlcmlmOyI+PGJyPjwvc3Bhbj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0iY2FyZXQt Y29sb3I6IHJnYigwLCAwLCAwKTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1pbHk6IC13 ZWJraXQtc3RhbmRhcmQ7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5v cm1hbDsgZm9udC13ZWlnaHQ6IG5vcm1hbDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFu czogYXV0bzsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNm b3JtOiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IGF1dG87IHdvcmQtc3BhY2lu ZzogMHB4OyAtd2Via2l0LXRleHQtc2l6ZS1hZGp1c3Q6IGF1dG87IC13ZWJraXQtdGV4dC1zdHJv a2Utd2lkdGg6IDBweDsgdGV4dC1kZWNvcmF0aW9uOiBub25lOyI+PHNwYW4gc3R5bGU9ImZvbnQt c2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNv dXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij5SZXZpc2lvbjo8L3NwYW4+PC9zcGFu PjxzcGFuIHN0eWxlPSJ3aGl0ZS1zcGFjZTogcHJlOyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTog MTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIg bmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij4gPC9zcGFuPjwvc3Bhbj48L3NwYW4+PHNwYW4g c3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywg Y29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij4wMTwvc3Bhbj48 c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IG1lbmxvLCBjb25zb2xhcywgY291cmllciBuZXcsIG1v bm9zcGFjZSwgc2Fucy1zZXJpZjsiPjxicj48L3NwYW4+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9 ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFt aWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1j YXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7 IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0 LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3Jk LXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRl eHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxl PSJmb250LXNpemU6IDEycHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNv bGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+VGl0bGU6PC9zcGFuPjwv c3Bhbj48c3BhbiBzdHlsZT0id2hpdGUtc3BhY2U6IHByZTsiPjxzcGFuIHN0eWxlPSJmb250LXNp emU6IDEycHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3Vy aWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+ICA8L3NwYW4+PC9zcGFuPjwvc3Bhbj48 c3BhbiBzdHlsZT0iZm9udC1zaXplOiAxMnB4Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IG1l bmxvLCBjb25zb2xhcywgY291cmllciBuZXcsIG1vbm9zcGFjZSwgc2Fucy1zZXJpZjsiPkNhcGFi aWxpdGllcyBhbmQgTGltaXRhdGlvbnMgb2YgYW4gRW5kcG9pbnQtb25seSBTZWN1cml0eSBTb2x1 dGlvbjwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IG1lbmxvLCBjb25zb2xhcywgY291 cmllciBuZXcsIG1vbm9zcGFjZSwgc2Fucy1zZXJpZjsiPjxicj48L3NwYW4+PC9zcGFuPjwvZGl2 PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwg MCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZv bnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFj aW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVu dDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dz OiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRv OyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsi PjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDEycHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTog bWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+RG9j dW1lbnQgZGF0ZTo8L3NwYW4+PC9zcGFuPjxzcGFuIHN0eWxlPSJ3aGl0ZS1zcGFjZTogcHJlOyI+ PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBt ZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij4gPC9z cGFuPjwvc3Bhbj48L3NwYW4+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5 bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3BhY2Us IHNhbnMtc2VyaWY7Ij4yMDE5LTA3LTA4PC9zcGFuPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTog bWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+PGJy Pjwvc3Bhbj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0iY2FyZXQtY29sb3I6IHJnYigwLCAwLCAw KTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1pbHk6IC13ZWJraXQtc3RhbmRhcmQ7IGZv bnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6 IG5vcm1hbDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFuczogYXV0bzsgdGV4dC1hbGln bjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3aGl0ZS1z cGFjZTogbm9ybWFsOyB3aWRvd3M6IGF1dG87IHdvcmQtc3BhY2luZzogMHB4OyAtd2Via2l0LXRl eHQtc2l6ZS1hZGp1c3Q6IGF1dG87IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6IDBweDsgdGV4 dC1kZWNvcmF0aW9uOiBub25lOyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4g c3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3Bh Y2UsIHNhbnMtc2VyaWY7Ij5Hcm91cDo8L3NwYW4+PC9zcGFuPjxzcGFuIHN0eWxlPSJ3aGl0ZS1z cGFjZTogcHJlOyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZv bnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMt c2VyaWY7Ij4gIDwvc3Bhbj48L3NwYW4+PC9zcGFuPjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDEy cHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5l dywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+SW5kaXZpZHVhbCBTdWJtaXNzaW9uPC9zcGFuPjxz cGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9u b3NwYWNlLCBzYW5zLXNlcmlmOyI+PGJyPjwvc3Bhbj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0i Y2FyZXQtY29sb3I6IHJnYigwLCAwLCAwKTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1p bHk6IC13ZWJraXQtc3RhbmRhcmQ7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWNh cHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6IG5vcm1hbDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsg b3JwaGFuczogYXV0bzsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQt dHJhbnNmb3JtOiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IGF1dG87IHdvcmQt c3BhY2luZzogMHB4OyAtd2Via2l0LXRleHQtc2l6ZS1hZGp1c3Q6IGF1dG87IC13ZWJraXQtdGV4 dC1zdHJva2Utd2lkdGg6IDBweDsgdGV4dC1kZWNvcmF0aW9uOiBub25lOyI+PHNwYW4gc3R5bGU9 ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29s YXMsIGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij5QYWdlczo8L3NwYW4+PC9z cGFuPjxzcGFuIHN0eWxlPSJ3aGl0ZS1zcGFjZTogcHJlOyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6 ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJp ZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij4gIDwvc3Bhbj48L3NwYW4+PC9zcGFuPjxz cGFuIHN0eWxlPSJmb250LXNpemU6IDEycHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVu bG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+NDI8L3Nw YW4+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3 LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij48YnI+PC9zcGFuPjwvc3Bhbj48L2Rpdj48ZGl2IHN0 eWxlPSJjYXJldC1jb2xvcjogcmdiKDAsIDAsIDApOyBjb2xvcjogcmdiKDAsIDAsIDApOyBmb250 LWZhbWlseTogLXdlYmtpdC1zdGFuZGFyZDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlh bnQtY2Fwczogbm9ybWFsOyBmb250LXdlaWdodDogbm9ybWFsOyBsZXR0ZXItc3BhY2luZzogbm9y bWFsOyBvcnBoYW5zOiBhdXRvOyB0ZXh0LWFsaWduOiBzdGFydDsgdGV4dC1pbmRlbnQ6IDBweDsg dGV4dC10cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNlOiBub3JtYWw7IHdpZG93czogYXV0bzsg d29yZC1zcGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zaXplLWFkanVzdDogYXV0bzsgLXdlYmtp dC10ZXh0LXN0cm9rZS13aWR0aDogMHB4OyB0ZXh0LWRlY29yYXRpb246IG5vbmU7Ij48c3BhbiBz dHlsZT0iZm9udC1zaXplOiAxMnB4Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IG1lbmxvLCBj b25zb2xhcywgY291cmllciBuZXcsIG1vbm9zcGFjZSwgc2Fucy1zZXJpZjsiPlVSTDombmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsmbmJzcDs8L3NwYW4+PC9zcGFuPjxhIGhyZWY9Imh0dHBzOi8vd3d3LmlldGYub3JnL2lkL2Ry YWZ0LXRhZGRlaS1zbWFydC1jbGVzcy1pbnRyb2R1Y3Rpb24tMDEudHh0Ij48c3BhbiBzdHlsZT0i Zm9udC1zaXplOiAxMnB4Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IG1lbmxvLCBjb25zb2xh cywgY291cmllciBuZXcsIG1vbm9zcGFjZSwgc2Fucy1zZXJpZjsiPmh0dHBzOi8vd3d3LmlldGYu b3JnL2lkL2RyYWZ0LXRhZGRlaS1zbWFydC1jbGVzcy1pbnRyb2R1Y3Rpb24tMDEudHh0PC9zcGFu Pjwvc3Bhbj48L2E+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZv bnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMt c2VyaWY7Ij48L3NwYW4+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9yOiByZ2Io MCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0YW5k YXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQt d2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRl eHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsg d2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdl YmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAw cHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDEycHgi PjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywg bW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+U3RhdHVzOiZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOzwvc3Bhbj48L3NwYW4+PHNwYW4+PHNwYW4gc3R5bGU9ImZv bnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMs IGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij4mbmJzcDs8L3NwYW4+PC9zcGFu Pjwvc3Bhbj48YSBocmVmPSJodHRwczovL3d3dy5pZXRmLm9yZy9pZC9kcmFmdC10YWRkZWktc21h cnQtY2xlc3MtaW50cm9kdWN0aW9uLTAxLnR4dCI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJw eCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3 LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij5odHRwczovL3d3dy5pZXRmLm9yZy9pZC9kcmFmdC10 YWRkZWktc21hcnQtY2xlc3MtaW50cm9kdWN0aW9uLTAxLnR4dDwvc3Bhbj48L3NwYW4+PC9hPjxz cGFuPjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDEycHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWls eTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+ PC9zcGFuPjwvc3Bhbj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0iY2FyZXQtY29sb3I6IHJnYigw LCAwLCAwKTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1pbHk6IC13ZWJraXQtc3RhbmRh cmQ7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgZm9udC13 ZWlnaHQ6IG5vcm1hbDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFuczogYXV0bzsgdGV4 dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3 aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IGF1dG87IHdvcmQtc3BhY2luZzogMHB4OyAtd2Vi a2l0LXRleHQtc2l6ZS1hZGp1c3Q6IGF1dG87IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6IDBw eDsgdGV4dC1kZWNvcmF0aW9uOiBub25lOyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+ PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBt b25vc3BhY2UsIHNhbnMtc2VyaWY7Ij5IdG1saXplZDombmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDs8L3NwYW4+PC9zcGFuPjxzcGFuPjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDEy cHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5l dywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+Jm5ic3A7PC9zcGFuPjwvc3Bhbj48L3NwYW4+PGEg aHJlZj0iaHR0cHM6Ly90b29scy5pZXRmLm9yZy9odG1sL2RyYWZ0LXRhZGRlaS1zbWFydC1jbGVz cy1pbnRyb2R1Y3Rpb24tMDEiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDEycHgiPjxzcGFuIHN0 eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNl LCBzYW5zLXNlcmlmOyI+aHR0cHM6Ly90b29scy5pZXRmLm9yZy9odG1sL2RyYWZ0LXRhZGRlaS1z bWFydC1jbGVzcy1pbnRyb2R1Y3Rpb24tMDE8L3NwYW4+PC9zcGFuPjwvYT48c3Bhbj48c3BhbiBz dHlsZT0iZm9udC1zaXplOiAxMnB4Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IG1lbmxvLCBj b25zb2xhcywgY291cmllciBuZXcsIG1vbm9zcGFjZSwgc2Fucy1zZXJpZjsiPjwvc3Bhbj48L3Nw YW4+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNv bG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250LXN0 eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3Jt YWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0 YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6 IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNp emUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVj b3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDEycHgiPjxzcGFuIHN0eWxl PSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBz YW5zLXNlcmlmOyI+SHRtbGl6ZWQ6Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 PC9zcGFuPjwvc3Bhbj48c3Bhbj48c3BhbiBzdHlsZT0iZm9udC1zaXplOiAxMnB4Ij48c3BhbiBz dHlsZT0iZm9udC1mYW1pbHk6IG1lbmxvLCBjb25zb2xhcywgY291cmllciBuZXcsIG1vbm9zcGFj ZSwgc2Fucy1zZXJpZjsiPiZuYnNwOzwvc3Bhbj48L3NwYW4+PC9zcGFuPjxhIGhyZWY9Imh0dHBz Oi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2h0bWwvZHJhZnQtdGFkZGVpLXNtYXJ0LWNsZXNz LWludHJvZHVjdGlvbiI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9 ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNh bnMtc2VyaWY7Ij5odHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9odG1sL2RyYWZ0LXRh ZGRlaS1zbWFydC1jbGVzcy1pbnRyb2R1Y3Rpb248L3NwYW4+PC9zcGFuPjwvYT48c3Bhbj48c3Bh biBzdHlsZT0iZm9udC1zaXplOiAxMnB4Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IG1lbmxv LCBjb25zb2xhcywgY291cmllciBuZXcsIG1vbm9zcGFjZSwgc2Fucy1zZXJpZjsiPjwvc3Bhbj48 L3NwYW4+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7 IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250 LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBu b3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246 IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3Bh Y2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0 LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQt ZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDEycHgiPjxzcGFuIHN0 eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNl LCBzYW5zLXNlcmlmOyI+RGlmZjombmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDs8L3NwYW4+PC9zcGFuPjxzcGFuPjxzcGFuIHN0eWxlPSJm b250LXNpemU6IDEycHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFz LCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+Jm5ic3A7PC9zcGFuPjwvc3Bh bj48L3NwYW4+PGEgaHJlZj0iaHR0cHM6Ly93d3cuaWV0Zi5vcmcvcmZjZGlmZj91cmwyPWRyYWZ0 LXRhZGRlaS1zbWFydC1jbGVzcy1pbnRyb2R1Y3Rpb24tMDEiPjxzcGFuIHN0eWxlPSJmb250LXNp emU6IDEycHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3Vy aWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+aHR0cHM6Ly93d3cuaWV0Zi5vcmcvcmZj ZGlmZj91cmwyPWRyYWZ0LXRhZGRlaS1zbWFydC1jbGVzcy1pbnRyb2R1Y3Rpb24tMDE8L3NwYW4+ PC9zcGFuPjwvYT48c3Bhbj48c3BhbiBzdHlsZT0iZm9udC1zaXplOiAxMnB4Ij48c3BhbiBzdHls ZT0iZm9udC1mYW1pbHk6IG1lbmxvLCBjb25zb2xhcywgY291cmllciBuZXcsIG1vbm9zcGFjZSwg c2Fucy1zZXJpZjsiPjwvc3Bhbj48L3NwYW4+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0 LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAt d2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBu b3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhh bnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5z Zm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNp bmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ry b2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250 LXNpemU6IDEycHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBj b3VyaWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+PGJyPjwvc3Bhbj48L3NwYW4+PC9k aXY+PGRpdiBzdHlsZT0iY2FyZXQtY29sb3I6IHJnYigwLCAwLCAwKTsgY29sb3I6IHJnYigwLCAw LCAwKTsgZm9udC1mYW1pbHk6IC13ZWJraXQtc3RhbmRhcmQ7IGZvbnQtc3R5bGU6IG5vcm1hbDsg Zm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6IG5vcm1hbDsgbGV0dGVyLXNw YWNpbmc6IG5vcm1hbDsgb3JwaGFuczogYXV0bzsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5k ZW50OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRv d3M6IGF1dG87IHdvcmQtc3BhY2luZzogMHB4OyAtd2Via2l0LXRleHQtc2l6ZS1hZGp1c3Q6IGF1 dG87IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6IDBweDsgdGV4dC1kZWNvcmF0aW9uOiBub25l OyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5 OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij5B YnN0cmFjdDo8L3NwYW4+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMs IGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij48YnI+PC9zcGFuPjwvc3Bhbj48 L2Rpdj48ZGl2IHN0eWxlPSJjYXJldC1jb2xvcjogcmdiKDAsIDAsIDApOyBjb2xvcjogcmdiKDAs IDAsIDApOyBmb250LWZhbWlseTogLXdlYmtpdC1zdGFuZGFyZDsgZm9udC1zdHlsZTogbm9ybWFs OyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyBmb250LXdlaWdodDogbm9ybWFsOyBsZXR0ZXIt c3BhY2luZzogbm9ybWFsOyBvcnBoYW5zOiBhdXRvOyB0ZXh0LWFsaWduOiBzdGFydDsgdGV4dC1p bmRlbnQ6IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNlOiBub3JtYWw7IHdp ZG93czogYXV0bzsgd29yZC1zcGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zaXplLWFkanVzdDog YXV0bzsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4OyB0ZXh0LWRlY29yYXRpb246IG5v bmU7Ij48c3BhbiBzdHlsZT0iZm9udC1zaXplOiAxMnB4Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1p bHk6IG1lbmxvLCBjb25zb2xhcywgY291cmllciBuZXcsIG1vbm9zcGFjZSwgc2Fucy1zZXJpZjsi PiZuYnNwOyZuYnNwOyBJbiB0aGUgY29udGV4dCBvZiBleGlzdGluZywgcHJvcG9zZWQgYW5kIG5l d2x5IHB1Ymxpc2hlZCBwcm90b2NvbHMsPC9zcGFuPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTog bWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+PGJy Pjwvc3Bhbj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0iY2FyZXQtY29sb3I6IHJnYigwLCAwLCAw KTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1pbHk6IC13ZWJraXQtc3RhbmRhcmQ7IGZv bnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6 IG5vcm1hbDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFuczogYXV0bzsgdGV4dC1hbGln bjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3aGl0ZS1z cGFjZTogbm9ybWFsOyB3aWRvd3M6IGF1dG87IHdvcmQtc3BhY2luZzogMHB4OyAtd2Via2l0LXRl eHQtc2l6ZS1hZGp1c3Q6IGF1dG87IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6IDBweDsgdGV4 dC1kZWNvcmF0aW9uOiBub25lOyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTJweCI+PHNwYW4g c3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJpZXIgbmV3LCBtb25vc3Bh Y2UsIHNhbnMtc2VyaWY7Ij4mbmJzcDsmbmJzcDsgdGhpcyBkcmFmdCBSRkMgaXMgdG8gZXN0YWJs aXNoIHRoZSBjYXBhYmlsaXRpZXMgYW5kIGxpbWl0YXRpb25zIG9mPC9zcGFuPjxzcGFuIHN0eWxl PSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBz YW5zLXNlcmlmOyI+PGJyPjwvc3Bhbj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0iY2FyZXQtY29s b3I6IHJnYigwLCAwLCAwKTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1pbHk6IC13ZWJr aXQtc3RhbmRhcmQ7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1h bDsgZm9udC13ZWlnaHQ6IG5vcm1hbDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFuczog YXV0bzsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNmb3Jt OiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IGF1dG87IHdvcmQtc3BhY2luZzog MHB4OyAtd2Via2l0LXRleHQtc2l6ZS1hZGp1c3Q6IGF1dG87IC13ZWJraXQtdGV4dC1zdHJva2Ut d2lkdGg6IDBweDsgdGV4dC1kZWNvcmF0aW9uOiBub25lOyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6 ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMsIGNvdXJp ZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij4mbmJzcDsmbmJzcDsgZW5kcG9pbnQtb25s eSBzZWN1cml0eSBzb2x1dGlvbnMgYW5kIGV4cGxvcmUgYmVuZWZpdHMgYW5kPC9zcGFuPjxzcGFu IHN0eWxlPSJmb250LWZhbWlseTogbWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3Nw YWNlLCBzYW5zLXNlcmlmOyI+PGJyPjwvc3Bhbj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0iY2Fy ZXQtY29sb3I6IHJnYigwLCAwLCAwKTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1pbHk6 IC13ZWJraXQtc3RhbmRhcmQ7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6 IG5vcm1hbDsgZm9udC13ZWlnaHQ6IG5vcm1hbDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3Jw aGFuczogYXV0bzsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJh bnNmb3JtOiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IGF1dG87IHdvcmQtc3Bh Y2luZzogMHB4OyAtd2Via2l0LXRleHQtc2l6ZS1hZGp1c3Q6IGF1dG87IC13ZWJraXQtdGV4dC1z dHJva2Utd2lkdGg6IDBweDsgdGV4dC1kZWNvcmF0aW9uOiBub25lOyI+PHNwYW4gc3R5bGU9ImZv bnQtc2l6ZTogMTJweCI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBtZW5sbywgY29uc29sYXMs IGNvdXJpZXIgbmV3LCBtb25vc3BhY2UsIHNhbnMtc2VyaWY7Ij4mbmJzcDsmbmJzcDsgYWx0ZXJu YXRpdmVzIHRvIG1pdGlnYXRlIHRob3NlIGxpbWl0cyB3aXRoIHRoZSBzdXBwb3J0IG9mIHJlYWwg Y2FzZTwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IG1lbmxvLCBjb25zb2xhcywgY291 cmllciBuZXcsIG1vbm9zcGFjZSwgc2Fucy1zZXJpZjsiPjxicj48L3NwYW4+PC9zcGFuPjwvZGl2 PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwg MCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZv bnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFj aW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVu dDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dz OiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRv OyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsi PjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDEycHgiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTog bWVubG8sIGNvbnNvbGFzLCBjb3VyaWVyIG5ldywgbW9ub3NwYWNlLCBzYW5zLXNlcmlmOyI+Jm5i c3A7Jm5ic3A7IHN0dWRpZXMuPC9zcGFuPjwvc3Bhbj48YnI+PC9kaXY+PGRpdj48YnI+PC9kaXY+ PGRpdiBjbGFzcz0icHJvdG9ubWFpbF9zaWduYXR1cmVfYmxvY2siPjxkaXYgY2xhc3M9InByb3Rv bm1haWxfc2lnbmF0dXJlX2Jsb2NrLXVzZXIgcHJvdG9ubWFpbF9zaWduYXR1cmVfYmxvY2stZW1w dHkiPjxicj48L2Rpdj48ZGl2IGNsYXNzPSJwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jay1wcm90 b24iPlNlbnQgd2l0aCA8YSBocmVmPSJodHRwczovL3Byb3Rvbm1haWwuY29tIiB0YXJnZXQ9Il9i bGFuayI+UHJvdG9uTWFpbDwvYT4gU2VjdXJlIEVtYWlsLjxicj48L2Rpdj48L2Rpdj48ZGl2Pjxi cj48L2Rpdj4= --b1_382d5756352c40c7a0e7e2b44733ccfd-- From nobody Tue Jul 9 09:31:35 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8555A12017A for ; Tue, 9 Jul 2019 09:31:34 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.437 X-Spam-Level: X-Spam-Status: No, score=-0.437 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_WORDY=2.261, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JG5xoOQIe0ar for ; Tue, 9 Jul 2019 09:31:33 -0700 (PDT) Received: from mail4.protonmail.ch (mail4.protonmail.ch [185.70.40.27]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D67BF1206FA for ; Tue, 9 Jul 2019 09:31:24 -0700 (PDT) Date: Tue, 09 Jul 2019 16:31:18 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1562689882; bh=Gb9sp05vEnrgQErqKdW7j62sgf2f5QS5y3L/P5NF3L4=; h=Date:To:From:Reply-To:Subject:Feedback-ID:From; b=D/4iNWWCqS9NapFEOg6xLNimuADVX+mXbFmZr0MBRZKfvkO3amjc9NR5G4ZHQih5j OAapCakDZVQ/KhB/d7N/56umPThC7pzLveGwxt0LR9vcmQ9MZfzMSrZ5MyDgXlB3qD JYTyqMpBvz80S+nEERv8GryQ4qr4zioLPWi5gkus= To: "smart@irtf.org" From: "Arnaud.Taddei.IETF" Reply-To: "Arnaud.Taddei.IETF" Message-ID: Feedback-ID: kou6vaSHQeY5dgFN9dCIYKo4z6hnnNmKuV4IBJw2wx4vSVPtftyhWUTBigri6zMJ3K1hxYJjI-3RAIGaizMt5g==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_46c01da8da1a1e745ad5add6a412f114" Archived-At: Subject: [Smart] CLESS Update X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 09 Jul 2019 16:31:34 -0000 This is a multi-part message in MIME format. --b1_46c01da8da1a1e745ad5add6a412f114 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: base64 RGVhciBhbGwsIGEgcXVpY2sgdXBkYXRlIG9uIENMRVNTLAoKQXMgYWdyZWVkIGluIG91ciBvcGVu IGNhbGwgb24gdGhlIDR0aCBvZiBKdW5lIChzZWUgbXkgZW1haWwgYmVsb3cgZnJvbSA4dGggb2Yg SnVuZSksIHdlIHdvcmtlZCBhbmQgZXhlY3V0ZSBvbiBvdXIgYWdyZWVkIHByb2dyYW0uCi0gVGhh bmsgeW91IHRvIE1hcmMgd2hvIGlzc3VlZCBodHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2Rv Yy9kcmFmdC1tY2ZhZGRlbi1zbWFydC1lbmRwb2ludC10YXhvbm9teS1mb3ItY2xlc3MvIHRoaXMg c2hvdWxkIGhlbHAgdXMgdG8gZGVmaW5lIHVuaWZvcm1hbGx5IGEgZ29vZCBhdHRhY2sgc3VyZmFj ZQotIEkgbWFkZSBjaGFuZ2VzIGluIENMRVNTIGFzIGEgdmVyc2lvbiAwMSB0byByZWZsZWN0IE1h cmMncyB3b3JrCi0gSSBuZWVkIHRvIHdvcmsgd2l0aCBTaW1vbiBFZHdhcmRzIG5vdyBvbiB0aGUg b3RoZXIgSS1EIGZvciB0aGUgdGhyZWF0IHBhcnQKLSBJIG1hbmFnZWQgdG8gZ2V0IGEgc2lkZSBt ZWV0aW5nIGZvciBDTEVTUyBvbiB0aGUgVGh1cnNkYXkgMjV0aCBvZiBKdWx5IGF0IDEwOjAwIHNl ZSBiZWxvdyBwbGVhc2UgbGV0IG1lIGtub3cKLSBJIHBsYW4gdG8gZG8gbW9yZSB3b3JrIG9uIENM RVNTIHdoaWNoIHdlIHdpbGwgcmVsZWFzZSBvbiBNb25kYXkgMjJuZCB3aGVuIHdlIGFyZSBhbGxv d2VkCi0gSSBhbSBoYXBweSB0byBoYXZlIGNvbnRyaWJ1dG9ycyBhbmQgcmV2aWV3ZXJzIHRvIHdv cmsgb24gb3VyIGdvb2dsZSBkb2MgdmVyc2lvbiAoTGV0IG1lIGtub3cgaWYgaW50ZXJlc3RlZCkK LSBJbiBwYXJ0aWN1bGFyIEkgaGFkIGFuIGV4Y2VsbGVudCBjYWxsIHdpdGggRGF2aWQgTWNHcmV3 IGFuZCBob3BlZnVsbHkgd2UgY2FuIGNvZGlmeSBoaXMgZXhjZWxsZW50IHdvcmsgZnJvbSBoaXMg cHJlc2VudGF0aW9uIGluIFByYWd1ZQotIEkgbmVlZCB0byBnZXQgS2V2aW4gdG8gd29yayB3aXRo IEpKIG9uIGRhdGFzZXRzCi0gSSBhbSBhY3R1YWxseSBzdXJwcmlzZWQgYnkgQ0xFU1MgdHJhY3Rp b24gb3V0c2lkZSBvZiBJRVRGIGFuZCBoYWQgdG8gdGFrZSBjYWxscyB3aXRoIG9yZ2FuaXphdGlv bnMgd2hvIHdvdWxkIGxpa2UgdG8gaGF2ZSBzZXBhcmF0ZSB3b3Jrc2hvcHMgd2l0aCB0aGVpciB0 ZWFtcwotIEkgcmVjZW50bHkgaGFkIGFuIHVsdHJhIGRlbnNlIDIgd2Vla3MgdHJpcCBpbiBDaGlu YSBmb3IgbXkgb3RoZXIgcm9sZSBhbmQgY291bGQgc2VlIHdoeSBDTEVTUyBtYXR0ZXJzIGluIG90 aGVyIGFyZWFzIEkgZGlkbid0IHRoaW5rIG9mCgpJIGhvcGUgdGhpcyBoZWxwcwoKQmVzdCBSZWdh cmRzCgpTaWRlIG1lZXRpbmcgZGV0YWlscwoKRGF0ZSBSZXF1ZXN0ZWQ6CgpUaHVyc2RheSAyNXRo IG9mIEp1bHkgYWZ0ZXIgMTBhbQoKUm9vbSBSZXF1ZXN0ZWQ6CgpDMiAoMjFzdCBmbG9vcikKClRp bWUgUmVxdWVzdGVkOgoKMTBhbQoKUG9pbnQgb2YgQ29udGFjdDoKCkFybmF1ZCBUYWRkZWkgQXJu YXVkLlRhZGRlaS5JRVRGQHByb3Rvbm1haWwuY29tCgpUb3BpYzoKQ0xFU1MgZGV2ZWxvcG1lbnQg Y29vcmRpbmF0aW9uCgpBYnN0cmFjdDoKClRoZSBDTEVTUyBvcGVuZWQgY2FsbCBvZiA0dGggb2Yg SnVuZSBhZ3JlZWQgYSBudW1iZXIgb2YgYWN0aW9ucyB0byBiZSB0YWtlbi4gQXMgbmVhcmx5IGFs bCB0aGUgYWN0aW9uIHBvaW50cyBhcmUgaW4gcHJvZ3Jlc3MgaXQgcmVxdWlyZXMgbW9yZSBjb29y ZGluYXRpb24gZm9yIENMRVNTIGRldmVsb3BtZW50IGFuZCB0aGlzIHNpZGUgbWVldGluZyB3aWxs IGhlbHAgaW46CgotIE1ha2luZyBhIHN0YXR1cyBvbiB3aGVyZSB3ZSBhcmUgb24gYWxsIHRoZSBh Y3Rpb24gcG9pbnRzCgotIFRha2UgZmVlZGJhY2sgZnJvbSB0aGUgdGVhbSBhbmQgYW4gb3Bwb3J0 dW5pdHkgdG8gaW5mbHVlbmNlIGRpcmVjdGlvbnMgZm9yIElFVEYgMTA2CgotIEFncmVlIHdoYXQg d2UgY2FuIHJlYWxpc3RpY2FsbHkgYWNoaWV2ZSBieSBJRVRGIDEwNgoKTXkgZW1haWwgc3VtbWFy aXppbmcgdGhlIG9wZW4gY2FsbCBvZiB0aGUgNHRoIG9mIEp1bmUKCkFzIGFubm91bmNlZCBJIHBy b3Bvc2VkIHRvIGhhdmUgYW4gb3BlbiBjYWxsIHRvIGRpc2N1c3MgdGhlIGZ1dHVyZSBvZiBDTEVT UyBJLUQgYW5kIEkgcHJlcGFyZWQgc2xpZGVzIHRvIHN1cHBvcnQgYW5kIGZhY2lsaXRhdGUgdGhp cyBjYWxsLCBzZWUgYXR0YWNoZWQgKEkgd2lsbCBsb29rIHRvIHdoZXJlIHRvIHBsYWNlIHRoZW0g aW4gcmVwb3NpdG9yaWVzKQoKVGhlIGhpZ2hsaWdodHMgYXJlIGFzIGJlbG93Ci0gMTYgcGVvcGxl IHJlZ2lzdGVyZWQgYW5kIGpvaW5lZCBhbmQgYW5vdGhlciA5IGNvdWxkbid0IG1ha2UgdGhlIGNh bGwgYnV0IGV4cHJlc3NlZCB0aGVpciBpbnRlcmVzdC4KLSBBbGwgdGhlIHByb3Bvc2FscyB3ZXJl IGFncmVlZCBpbiBwYXJ0aWN1bGFyIHRvIGRldGFjaCBzZWN0aW9uIDUgLSBFbmRwb2ludCBNb2Rl bCBpbiBvcmRlciB0byBkZWxpdmVyIGEgdW5pZm9ybSBBdHRhY2sgU3VyZmFjZSBkZWZpbml0aW9u IGFjcm9zcyBhbGwgZW5kcG9pbnRzIGFuZCBzZWN0aW9uIDYgLSBUaHJlYXQgTGFuZHNjYXBlIGlu IG9yZGVyIHRvIGNvbWUgb3ZlciB0aGUgbGltaXRzIG9mIHRoZSBNSVRSRSBBVFQmQ0sgbW9kZWwg YXMgMiBzZXBhcmF0ZSBJLURzIHRvIHN1cHBvcnQgQ0xFU1MKLSBXZSBmb3VuZCBhbHJlYWR5IG9u ZSBhdXRob3IgZm9yIHRoZSBmaXJzdCBvbmUgYXMgTWFyayBNYWNGYWRkZW4gYW5kIG9uZSBhdXRo b3IgZm9yIHRoZSBzZWNvbmQgb25lIGFzIFNpbW9uIEVkd2FyZHMgYW5kIHRoZW4gb2ZmbGluZSBz b21lIHBlb3BsZSBhc2tlZCB0byBqb2luIG9uZSBvciB0aGUgb3RoZXIgd29yawotIFdlIGRpc2N1 c3NlZCBzZXZlcmFsIGFjdGlvbnMgKG5ldyBzZWN0aW9ucywgY29tbXVuaWNhdGlvbiwgbmV3IHBy b2R1Y3Rpb24gZGF0YSB3b3JrLCBob3cgdG8gaW5jb3Jwb3JhdGUgRGF2aWQgTWNHcmV3J3MgZ3Jl YXQgc2V0IG9mIGV4YW1wbGVzIG9uIEh1bWFuIFJpZ2h0cyBhdHRhY2tzLCBvciBzdGFydCBhbiBl Y29ub21pYyBzZWN0aW9uLCBldGMuKQotIFdlIGJlbGlldmUgaXQgd2lsbCBnaXZlIHByb2JhYmx5 IGEgc2lnbmlmaWNhbnQgZnJhbWV3b3JrIGZvciBtb3JlIHJlc2VhcmNoZXJzIHRvIGpvaW4gd2l0 aCB0aGVpciBzcGVjaWZpYyBrbm93bGVkZ2Ugb24gc3BlY2lmaWMgJ2NlbGxzJyBpbiB0aGUgbWF0 cml4IChzcGVjaWZpYyB0aHJlYXQgbGFuZHNjYXBlCi0gV2UgaGVhcmQgdGhlIHNob2NraW5nIG5l d3Mgb24gU01BUlQgYW5kIGRpc2N1c3NlZCBmb3Igc29tZSB0aW1lIHRoYXQgd2Ugd2lsbCBzZWVr IGd1aWRhbmNlIGZvciBob3cgdG8gY29udGludWUgdGhpcyB3b3JrIGluIElFVEYgb3IgcG9zc2li bHkgb3V0c2lkZSBhbmQgYSBmZXcgYWx0ZXJuYXRpdmVzIHdlcmUgZXhwcmVzc2VkCi0gV2UgKGFu ZCBJKSBoYXZlIGEgbnVtYmVyIG9mIGZvbGxvd3VwIGFjdGlvbnMgYXMgSSBuZWVkIHRvIGNvbnRp bnVlIHNwZWNpZmljIGNvbnN1bHRhdGlvbnMgdGhhdCBhcmUgc2NoZWR1bGVkCgpTbyBib3R0b20g bGluZQotIFdlIGhhZCBhIGdvb2QgZmlyc3QgY2FsbCBpbiBhIGdvb2QgYXRtb3NwaGVyZSB3aXRo IGEgZ29vZCBncm91cCBvZiBwZW9wbGUKLSBXZSBhcmUgY29tbWl0dGVkIHRvIGNvbnRpbnVlCi0g V2UgaGF2ZSBhIGRldGFpbGVkIHBsYW4KLSBXZSB3aWxsIGhhdmUgYXQgbWluaW11bSBhIHNpZGUg bWVldGluZyBpbiBNb250cmVhbAotIFdlIHdpbGwgZGlzY3VzcyBvdXIgbG9uZyB0ZXJtIGZ1dHVy ZSBhdCBNb250cmVhbCBhbmQgbG9vayBhdCBBTEwgYWx0ZXJuYXRpdmVzCgpBZ2FpbiBUSEFOSyBZ T1UgQUxMIGZvciB5b3VyIHN1cHBvcnQsIHdvcmsgYW5kIGNvbW1pdG1lbnQKCkhvcGUgdGhpcyBo ZWxwcwoKQmVzdCBSZWdhcmRzCgpTZW50IHdpdGggW1Byb3Rvbk1haWxdKGh0dHBzOi8vcHJvdG9u bWFpbC5jb20pIFNlY3VyZSBFbWFpbC4= --b1_46c01da8da1a1e745ad5add6a412f114 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: base64 PGRpdj5EZWFyIGFsbCwgYSBxdWljayB1cGRhdGUgb24gQ0xFU1MsPGJyPjwvZGl2PjxkaXY+PGJy PjwvZGl2PjxkaXY+QXMgYWdyZWVkIGluIG91ciBvcGVuIGNhbGwgb24gdGhlIDR0aCBvZiBKdW5l IChzZWUgbXkgZW1haWwgYmVsb3cgZnJvbSA4dGggb2YgSnVuZSksIHdlIHdvcmtlZCBhbmQgZXhl Y3V0ZSBvbiBvdXIgYWdyZWVkIHByb2dyYW0uPGJyPjwvZGl2PjxkaXY+LSBUaGFuayB5b3UgdG8g TWFyYyB3aG8gaXNzdWVkJm5ic3A7PGEgaHJlZj0iaHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9y Zy9kb2MvZHJhZnQtbWNmYWRkZW4tc21hcnQtZW5kcG9pbnQtdGF4b25vbXktZm9yLWNsZXNzLyI+ aHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2MvZHJhZnQtbWNmYWRkZW4tc21hcnQtZW5k cG9pbnQtdGF4b25vbXktZm9yLWNsZXNzLzwvYT4mbmJzcDt0aGlzIHNob3VsZCBoZWxwIHVzIHRv IGRlZmluZSB1bmlmb3JtYWxseSBhIGdvb2QgYXR0YWNrIHN1cmZhY2U8YnI+PC9kaXY+PGRpdj4t IEkgbWFkZSBjaGFuZ2VzIGluIENMRVNTIGFzIGEgdmVyc2lvbiAwMSB0byByZWZsZWN0IE1hcmMn cyB3b3JrJm5ic3A7PGJyPjwvZGl2PjxkaXY+LSBJIG5lZWQgdG8gd29yayB3aXRoIFNpbW9uIEVk d2FyZHMgbm93IG9uIHRoZSBvdGhlciBJLUQgZm9yIHRoZSB0aHJlYXQgcGFydDxicj48L2Rpdj48 ZGl2Pi0gSSBtYW5hZ2VkIHRvIGdldCBhIDxiPnNpZGUgbWVldGluZyBmb3IgQ0xFU1Mgb24gdGhl IFRodXJzZGF5IDI1dGggb2YgSnVseSBhdCAxMDowMCBzZWUgYmVsb3cgcGxlYXNlIGxldCBtZSBr bm93PC9iPjxicj48L2Rpdj48ZGl2Pi0gSSBwbGFuIHRvIGRvIG1vcmUgd29yayBvbiBDTEVTUyB3 aGljaCB3ZSB3aWxsIHJlbGVhc2Ugb24gTW9uZGF5IDIybmQgd2hlbiB3ZSBhcmUgYWxsb3dlZDxi cj48L2Rpdj48ZGl2Pi0gSSBhbSBoYXBweSB0byBoYXZlIGNvbnRyaWJ1dG9ycyBhbmQgcmV2aWV3 ZXJzIHRvIHdvcmsgb24gb3VyIGdvb2dsZSBkb2MgdmVyc2lvbiAoTGV0IG1lIGtub3cgaWYgaW50 ZXJlc3RlZCk8YnI+PC9kaXY+PGRpdj4tIEluIHBhcnRpY3VsYXIgSSBoYWQgYW4gZXhjZWxsZW50 IGNhbGwgd2l0aCBEYXZpZCBNY0dyZXcgYW5kIGhvcGVmdWxseSB3ZSBjYW4gY29kaWZ5IGhpcyBl eGNlbGxlbnQgd29yayBmcm9tIGhpcyBwcmVzZW50YXRpb24gaW4gUHJhZ3VlPGJyPjwvZGl2Pjxk aXY+LSBJIG5lZWQgdG8gZ2V0IEtldmluIHRvIHdvcmsgd2l0aCBKSiBvbiBkYXRhc2V0czwvZGl2 PjxkaXY+LSBJIGFtIGFjdHVhbGx5IHN1cnByaXNlZCBieSBDTEVTUyB0cmFjdGlvbiBvdXRzaWRl IG9mIElFVEYgYW5kIGhhZCB0byB0YWtlIGNhbGxzIHdpdGggb3JnYW5pemF0aW9ucyB3aG8gd291 bGQgbGlrZSB0byBoYXZlIHNlcGFyYXRlIHdvcmtzaG9wcyB3aXRoIHRoZWlyIHRlYW1zPGJyPjwv ZGl2PjxkaXY+LSBJIHJlY2VudGx5IGhhZCBhbiB1bHRyYSBkZW5zZSAyIHdlZWtzIHRyaXAgaW4g Q2hpbmEgZm9yIG15IG90aGVyIHJvbGUgYW5kIGNvdWxkIHNlZSB3aHkgQ0xFU1MgbWF0dGVycyBp biBvdGhlciBhcmVhcyBJIGRpZG4ndCB0aGluayBvZjxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48 ZGl2PkkgaG9wZSB0aGlzIGhlbHBzPGJyPjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+QmVzdCBS ZWdhcmRzPGJyPjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+PGI+PHNwYW4gc3R5bGU9ImZvbnQt c2l6ZTogMTZweCI+PGJyPjwvc3Bhbj48L2I+PC9kaXY+PGRpdj48Yj48c3BhbiBzdHlsZT0iZm9u dC1zaXplOiAxNnB4Ij5TaWRlIG1lZXRpbmcgZGV0YWlsczwvc3Bhbj48L2I+PGJyPjwvZGl2Pjxk aXY+PGJyPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9y OiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxl OiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7 IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0 OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5v cm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUt YWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3Jh dGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogYXJpYWwsIHNhbnMtc2VyaWY7 Ij48aT5EYXRlIFJlcXVlc3RlZDo8L2k+PC9zcGFuPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTog YXJpYWwsIHNhbnMtc2VyaWY7Ij48YnI+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNv bG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Vi a2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3Jt YWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6 IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9y bTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6 IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tl LXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250LWZh bWlseTogYXJpYWwsIHNhbnMtc2VyaWY7Ij5UaHVyc2RheSAyNXRoIG9mIEp1bHkgYWZ0ZXIgMTBh bTwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IGFyaWFsLCBzYW5zLXNlcmlmOyI+PGJy Pjwvc3Bhbj48L2Rpdj48ZGl2IHN0eWxlPSJjYXJldC1jb2xvcjogcmdiKDAsIDAsIDApOyBjb2xv cjogcmdiKDAsIDAsIDApOyBmb250LWZhbWlseTogLXdlYmtpdC1zdGFuZGFyZDsgZm9udC1zdHls ZTogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyBmb250LXdlaWdodDogbm9ybWFs OyBsZXR0ZXItc3BhY2luZzogbm9ybWFsOyBvcnBoYW5zOiBhdXRvOyB0ZXh0LWFsaWduOiBzdGFy dDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNlOiBu b3JtYWw7IHdpZG93czogYXV0bzsgd29yZC1zcGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zaXpl LWFkanVzdDogYXV0bzsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4OyB0ZXh0LWRlY29y YXRpb246IG5vbmU7Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IGFyaWFsLCBzYW5zLXNlcmlm OyI+PGJyPjwvc3Bhbj48L2Rpdj48ZGl2IHN0eWxlPSJjYXJldC1jb2xvcjogcmdiKDAsIDAsIDAp OyBjb2xvcjogcmdiKDAsIDAsIDApOyBmb250LWZhbWlseTogLXdlYmtpdC1zdGFuZGFyZDsgZm9u dC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyBmb250LXdlaWdodDog bm9ybWFsOyBsZXR0ZXItc3BhY2luZzogbm9ybWFsOyBvcnBoYW5zOiBhdXRvOyB0ZXh0LWFsaWdu OiBzdGFydDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNw YWNlOiBub3JtYWw7IHdpZG93czogYXV0bzsgd29yZC1zcGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4 dC1zaXplLWFkanVzdDogYXV0bzsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4OyB0ZXh0 LWRlY29yYXRpb246IG5vbmU7Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IGFyaWFsLCBzYW5z LXNlcmlmOyI+PGk+Um9vbSBSZXF1ZXN0ZWQ6PC9pPjwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1m YW1pbHk6IGFyaWFsLCBzYW5zLXNlcmlmOyI+PGJyPjwvc3Bhbj48L2Rpdj48ZGl2IHN0eWxlPSJj YXJldC1jb2xvcjogcmdiKDAsIDAsIDApOyBjb2xvcjogcmdiKDAsIDAsIDApOyBmb250LWZhbWls eTogLXdlYmtpdC1zdGFuZGFyZDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fw czogbm9ybWFsOyBmb250LXdlaWdodDogbm9ybWFsOyBsZXR0ZXItc3BhY2luZzogbm9ybWFsOyBv cnBoYW5zOiBhdXRvOyB0ZXh0LWFsaWduOiBzdGFydDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10 cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNlOiBub3JtYWw7IHdpZG93czogYXV0bzsgd29yZC1z cGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zaXplLWFkanVzdDogYXV0bzsgLXdlYmtpdC10ZXh0 LXN0cm9rZS13aWR0aDogMHB4OyB0ZXh0LWRlY29yYXRpb246IG5vbmU7Ij48c3BhbiBzdHlsZT0i Zm9udC1mYW1pbHk6IGFyaWFsLCBzYW5zLXNlcmlmOyI+QzIgKDIxc3QgZmxvb3IpPC9zcGFuPjxz cGFuIHN0eWxlPSJmb250LWZhbWlseTogYXJpYWwsIHNhbnMtc2VyaWY7Ij48YnI+PC9zcGFuPjwv ZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwg MCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7 IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1z cGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWlu ZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lk b3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBh dXRvOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9u ZTsiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogYXJpYWwsIHNhbnMtc2VyaWY7Ij48YnI+PC9z cGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiBy Z2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBu b3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxl dHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0 ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1h bDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRq dXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlv bjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogYXJpYWwsIHNhbnMtc2VyaWY7Ij48 aT5UaW1lIFJlcXVlc3RlZDo8L2k+PC9zcGFuPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogYXJp YWwsIHNhbnMtc2VyaWY7Ij48YnI+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9y OiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0 LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7 IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1 dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTog bm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBw eDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdp ZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250LWZhbWls eTogYXJpYWwsIHNhbnMtc2VyaWY7Ij4xMGFtPC9zcGFuPjxzcGFuIHN0eWxlPSJmb250LWZhbWls eTogYXJpYWwsIHNhbnMtc2VyaWY7Ij48YnI+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0 LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAt d2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBu b3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhh bnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5z Zm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNp bmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ry b2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250 LWZhbWlseTogYXJpYWwsIHNhbnMtc2VyaWY7Ij48YnI+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9 ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFt aWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1j YXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7 IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0 LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3Jk LXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRl eHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxl PSJmb250LWZhbWlseTogYXJpYWwsIHNhbnMtc2VyaWY7Ij48aT5Qb2ludCBvZiBDb250YWN0Ojwv aT48L3NwYW4+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBhcmlhbCwgc2Fucy1zZXJpZjsiPjxi cj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0iY2FyZXQtY29sb3I6IHJnYigwLCAwLCAwKTsgY29s b3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1pbHk6IC13ZWJraXQtc3RhbmRhcmQ7IGZvbnQtc3R5 bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6IG5vcm1h bDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFuczogYXV0bzsgdGV4dC1hbGlnbjogc3Rh cnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3aGl0ZS1zcGFjZTog bm9ybWFsOyB3aWRvd3M6IGF1dG87IHdvcmQtc3BhY2luZzogMHB4OyAtd2Via2l0LXRleHQtc2l6 ZS1hZGp1c3Q6IGF1dG87IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6IDBweDsgdGV4dC1kZWNv cmF0aW9uOiBub25lOyI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBhcmlhbCwgc2Fucy1zZXJp ZjsiPkFybmF1ZCBUYWRkZWk8L3NwYW4+PHNwYW4+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBh cmlhbCwgc2Fucy1zZXJpZjsiPiZuYnNwOzwvc3Bhbj48L3NwYW4+PGEgaHJlZj0ibWFpbHRvOkFy bmF1ZC5UYWRkZWkuSUVURkBwcm90b25tYWlsLmNvbSI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5 OiBhcmlhbCwgc2Fucy1zZXJpZjsiPkFybmF1ZC5UYWRkZWkuSUVURkBwcm90b25tYWlsLmNvbTwv c3Bhbj48L2E+PHNwYW4+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBhcmlhbCwgc2Fucy1zZXJp ZjsiPiZuYnNwOzwvc3Bhbj48L3NwYW4+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBhcmlhbCwg c2Fucy1zZXJpZjsiPjxicj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0iY2FyZXQtY29sb3I6IHJn YigwLCAwLCAwKTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1pbHk6IC13ZWJraXQtc3Rh bmRhcmQ7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgZm9u dC13ZWlnaHQ6IG5vcm1hbDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFuczogYXV0bzsg dGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25l OyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IGF1dG87IHdvcmQtc3BhY2luZzogMHB4OyAt d2Via2l0LXRleHQtc2l6ZS1hZGp1c3Q6IGF1dG87IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6 IDBweDsgdGV4dC1kZWNvcmF0aW9uOiBub25lOyI+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OiBh cmlhbCwgc2Fucy1zZXJpZjsiPjxicj48L3NwYW4+PC9kaXY+PGRpdiBzdHlsZT0iY2FyZXQtY29s b3I6IHJnYigwLCAwLCAwKTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1pbHk6IC13ZWJr aXQtc3RhbmRhcmQ7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1h bDsgZm9udC13ZWlnaHQ6IG5vcm1hbDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFuczog YXV0bzsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNmb3Jt OiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IGF1dG87IHdvcmQtc3BhY2luZzog MHB4OyAtd2Via2l0LXRleHQtc2l6ZS1hZGp1c3Q6IGF1dG87IC13ZWJraXQtdGV4dC1zdHJva2Ut d2lkdGg6IDBweDsgdGV4dC1kZWNvcmF0aW9uOiBub25lOyI+PHNwYW4gc3R5bGU9ImZvbnQtZmFt aWx5OiBhcmlhbCwgc2Fucy1zZXJpZjsiPjxpPlRvcGljOiA8L2k+PC9zcGFuPjxicj48L2Rpdj48 ZGl2IHN0eWxlPSJjYXJldC1jb2xvcjogcmdiKDAsIDAsIDApOyBjb2xvcjogcmdiKDAsIDAsIDAp OyBmb250LWZhbWlseTogLXdlYmtpdC1zdGFuZGFyZDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250 LXZhcmlhbnQtY2Fwczogbm9ybWFsOyBmb250LXdlaWdodDogbm9ybWFsOyBsZXR0ZXItc3BhY2lu Zzogbm9ybWFsOyBvcnBoYW5zOiBhdXRvOyB0ZXh0LWFsaWduOiBzdGFydDsgdGV4dC1pbmRlbnQ6 IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNlOiBub3JtYWw7IHdpZG93czog YXV0bzsgd29yZC1zcGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zaXplLWFkanVzdDogYXV0bzsg LXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4OyB0ZXh0LWRlY29yYXRpb246IG5vbmU7Ij48 c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IGFyaWFsLCBzYW5zLXNlcmlmOyI+Q0xFU1MgZGV2ZWxv cG1lbnQgY29vcmRpbmF0aW9uPC9zcGFuPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTogYXJpYWws IHNhbnMtc2VyaWY7Ij48YnI+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNvbG9yOiBy Z2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0 YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZv bnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IGF1dG87 IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9u ZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6IDBweDsg LXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRo OiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250LWZhbWlseTog YXJpYWwsIHNhbnMtc2VyaWY7Ij48YnI+PC9zcGFuPjwvZGl2PjxkaXYgc3R5bGU9ImNhcmV0LWNv bG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7IGZvbnQtZmFtaWx5OiAtd2Vi a2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3Jt YWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6 IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9y bTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBhdXRvOyB3b3JkLXNwYWNpbmc6 IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAtd2Via2l0LXRleHQtc3Ryb2tl LXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxzcGFuIHN0eWxlPSJmb250LWZh bWlseTogYXJpYWwsIHNhbnMtc2VyaWY7Ij48aT5BYnN0cmFjdDo8L2k+PC9zcGFuPjxzcGFuIHN0 eWxlPSJmb250LWZhbWlseTogYXJpYWwsIHNhbnMtc2VyaWY7Ij48YnI+PC9zcGFuPjwvZGl2Pjxk aXYgc3R5bGU9ImNhcmV0LWNvbG9yOiByZ2IoMCwgMCwgMCk7IGNvbG9yOiByZ2IoMCwgMCwgMCk7 IGZvbnQtZmFtaWx5OiAtd2Via2l0LXN0YW5kYXJkOyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQt dmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5n OiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDog MHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBh dXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAt d2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxz cGFuIHN0eWxlPSJmb250LWZhbWlseTogYXJpYWwsIHNhbnMtc2VyaWY7Ij5UaGUgQ0xFU1Mgb3Bl bmVkIGNhbGwgb2YgNHRoIG9mIEp1bmUgYWdyZWVkIGEgbnVtYmVyIG9mIGFjdGlvbnMgdG8gYmUg dGFrZW4uIEFzIG5lYXJseSBhbGwgdGhlIGFjdGlvbiBwb2ludHMgYXJlIGluIHByb2dyZXNzIGl0 IHJlcXVpcmVzIG1vcmUgY29vcmRpbmF0aW9uIGZvciBDTEVTUyBkZXZlbG9wbWVudCBhbmQgdGhp cyBzaWRlIG1lZXRpbmcgd2lsbCBoZWxwIGluOjwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1mYW1p bHk6IGFyaWFsLCBzYW5zLXNlcmlmOyI+PGJyPjwvc3Bhbj48L2Rpdj48ZGl2IHN0eWxlPSJjYXJl dC1jb2xvcjogcmdiKDAsIDAsIDApOyBjb2xvcjogcmdiKDAsIDAsIDApOyBmb250LWZhbWlseTog LXdlYmtpdC1zdGFuZGFyZDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczog bm9ybWFsOyBmb250LXdlaWdodDogbm9ybWFsOyBsZXR0ZXItc3BhY2luZzogbm9ybWFsOyBvcnBo YW5zOiBhdXRvOyB0ZXh0LWFsaWduOiBzdGFydDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10cmFu c2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNlOiBub3JtYWw7IHdpZG93czogYXV0bzsgd29yZC1zcGFj aW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zaXplLWFkanVzdDogYXV0bzsgLXdlYmtpdC10ZXh0LXN0 cm9rZS13aWR0aDogMHB4OyB0ZXh0LWRlY29yYXRpb246IG5vbmU7Ij48c3BhbiBzdHlsZT0iZm9u dC1mYW1pbHk6IGFyaWFsLCBzYW5zLXNlcmlmOyI+LSBNYWtpbmcgYSBzdGF0dXMgb24gd2hlcmUg d2UgYXJlIG9uIGFsbCB0aGUgYWN0aW9uIHBvaW50czwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1m YW1pbHk6IGFyaWFsLCBzYW5zLXNlcmlmOyI+PGJyPjwvc3Bhbj48L2Rpdj48ZGl2IHN0eWxlPSJj YXJldC1jb2xvcjogcmdiKDAsIDAsIDApOyBjb2xvcjogcmdiKDAsIDAsIDApOyBmb250LWZhbWls eTogLXdlYmtpdC1zdGFuZGFyZDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fw czogbm9ybWFsOyBmb250LXdlaWdodDogbm9ybWFsOyBsZXR0ZXItc3BhY2luZzogbm9ybWFsOyBv cnBoYW5zOiBhdXRvOyB0ZXh0LWFsaWduOiBzdGFydDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10 cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNlOiBub3JtYWw7IHdpZG93czogYXV0bzsgd29yZC1z cGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zaXplLWFkanVzdDogYXV0bzsgLXdlYmtpdC10ZXh0 LXN0cm9rZS13aWR0aDogMHB4OyB0ZXh0LWRlY29yYXRpb246IG5vbmU7Ij48c3BhbiBzdHlsZT0i Zm9udC1mYW1pbHk6IGFyaWFsLCBzYW5zLXNlcmlmOyI+LSBUYWtlIGZlZWRiYWNrIGZyb20gdGhl IHRlYW0gYW5kIGFuIG9wcG9ydHVuaXR5IHRvIGluZmx1ZW5jZSBkaXJlY3Rpb25zIGZvciBJRVRG IDEwNjwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IGFyaWFsLCBzYW5zLXNlcmlmOyI+ PGJyPjwvc3Bhbj48L2Rpdj48ZGl2IHN0eWxlPSJjYXJldC1jb2xvcjogcmdiKDAsIDAsIDApOyBj b2xvcjogcmdiKDAsIDAsIDApOyBmb250LWZhbWlseTogLXdlYmtpdC1zdGFuZGFyZDsgZm9udC1z dHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyBmb250LXdlaWdodDogbm9y bWFsOyBsZXR0ZXItc3BhY2luZzogbm9ybWFsOyBvcnBoYW5zOiBhdXRvOyB0ZXh0LWFsaWduOiBz dGFydDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNl OiBub3JtYWw7IHdpZG93czogYXV0bzsgd29yZC1zcGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4dC1z aXplLWFkanVzdDogYXV0bzsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4OyB0ZXh0LWRl Y29yYXRpb246IG5vbmU7Ij48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6IGFyaWFsLCBzYW5zLXNl cmlmOyI+LSBBZ3JlZSB3aGF0IHdlIGNhbiByZWFsaXN0aWNhbGx5IGFjaGlldmUgYnkgSUVURiAx MDY8L3NwYW4+PGJyPjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+PGJy PjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+PHNwYW4gc3R5bGU9ImZv bnQtc2l6ZTogMTZweCI+PGI+TXkgZW1haWwgc3VtbWFyaXppbmcgdGhlIG9wZW4gY2FsbCBvZiB0 aGUgNHRoIG9mIEp1bmU8L2I+PC9zcGFuPjxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2PkFz IGFubm91bmNlZCBJIHByb3Bvc2VkIHRvIGhhdmUgYW4gb3BlbiBjYWxsIHRvIGRpc2N1c3MgdGhl IGZ1dHVyZSBvZiBDTEVTUyBJLUQgYW5kIEkgcHJlcGFyZWQgc2xpZGVzIHRvIHN1cHBvcnQgYW5k IGZhY2lsaXRhdGUgdGhpcyBjYWxsLCBzZWUgYXR0YWNoZWQgKEkgd2lsbCBsb29rIHRvIHdoZXJl IHRvIHBsYWNlIHRoZW0gaW4gcmVwb3NpdG9yaWVzKTxicj48L2Rpdj48ZGl2IHN0eWxlPSJib3gt c2l6aW5nOiBpbmhlcml0OyBjb2xvcjogcmdiKDg1LCA4NSwgODUpOyBmb250LWZhbWlseTogQXJp YWwsICZxdW90O0hlbHZldGljYSBOZXVlJnF1b3Q7LCBIZWx2ZXRpY2EsIHNhbnMtc2VyaWY7IGZv bnQtc2l6ZTogMTRweDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtbGlnYXR1cmVz OiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiA0MDA7IGxl dHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IDI7IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0 LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsg d2lkb3dzOiAyOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDog MHB4OyBiYWNrZ3JvdW5kLWNvbG9yOiByZ2IoMjU1LCAyNTUsIDI1NSk7IHRleHQtZGVjb3JhdGlv bi1zdHlsZTogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0aWFsOyI+PGJyPjwv ZGl2PjxkaXYgc3R5bGU9ImJveC1zaXppbmc6IGluaGVyaXQ7IGNvbG9yOiByZ2IoODUsIDg1LCA4 NSk7IGZvbnQtZmFtaWx5OiBBcmlhbCwgJnF1b3Q7SGVsdmV0aWNhIE5ldWUmcXVvdDssIEhlbHZl dGljYSwgc2Fucy1zZXJpZjsgZm9udC1zaXplOiAxNHB4OyBmb250LXN0eWxlOiBub3JtYWw7IGZv bnQtdmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsg Zm9udC13ZWlnaHQ6IDQwMDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFuczogMjsgdGV4 dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3 aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IDI7IHdvcmQtc3BhY2luZzogMHB4OyAtd2Via2l0 LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IGJhY2tncm91bmQtY29sb3I6IHJnYigyNTUsIDI1NSwg MjU1KTsgdGV4dC1kZWNvcmF0aW9uLXN0eWxlOiBpbml0aWFsOyB0ZXh0LWRlY29yYXRpb24tY29s b3I6IGluaXRpYWw7Ij5UaGUgaGlnaGxpZ2h0cyBhcmUgYXMgYmVsb3c8YnI+PC9kaXY+PGRpdiBz dHlsZT0iYm94LXNpemluZzogaW5oZXJpdDsgY29sb3I6IHJnYig4NSwgODUsIDg1KTsgZm9udC1m YW1pbHk6IEFyaWFsLCAmcXVvdDtIZWx2ZXRpY2EgTmV1ZSZxdW90OywgSGVsdmV0aWNhLCBzYW5z LXNlcmlmOyBmb250LXNpemU6IDE0cHg7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50 LWxpZ2F0dXJlczogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyBmb250LXdlaWdo dDogNDAwOyBsZXR0ZXItc3BhY2luZzogbm9ybWFsOyBvcnBoYW5zOiAyOyB0ZXh0LWFsaWduOiBz dGFydDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNl OiBub3JtYWw7IHdpZG93czogMjsgd29yZC1zcGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zdHJv a2Utd2lkdGg6IDBweDsgYmFja2dyb3VuZC1jb2xvcjogcmdiKDI1NSwgMjU1LCAyNTUpOyB0ZXh0 LWRlY29yYXRpb24tc3R5bGU6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1jb2xvcjogaW5pdGlh bDsiPi0gMTYgcGVvcGxlJm5ic3A7cmVnaXN0ZXJlZCBhbmQgam9pbmVkIGFuZCBhbm90aGVyIDkg Y291bGRuJ3QgbWFrZSB0aGUgY2FsbCBidXQgZXhwcmVzc2VkIHRoZWlyIGludGVyZXN0Ljxicj48 L2Rpdj48ZGl2IHN0eWxlPSJib3gtc2l6aW5nOiBpbmhlcml0OyBjb2xvcjogcmdiKDg1LCA4NSwg ODUpOyBmb250LWZhbWlseTogQXJpYWwsICZxdW90O0hlbHZldGljYSBOZXVlJnF1b3Q7LCBIZWx2 ZXRpY2EsIHNhbnMtc2VyaWY7IGZvbnQtc2l6ZTogMTRweDsgZm9udC1zdHlsZTogbm9ybWFsOyBm b250LXZhcmlhbnQtbGlnYXR1cmVzOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7 IGZvbnQtd2VpZ2h0OiA0MDA7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IDI7IHRl eHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsg d2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiAyOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtp dC10ZXh0LXN0cm9rZS13aWR0aDogMHB4OyBiYWNrZ3JvdW5kLWNvbG9yOiByZ2IoMjU1LCAyNTUs IDI1NSk7IHRleHQtZGVjb3JhdGlvbi1zdHlsZTogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLWNv bG9yOiBpbml0aWFsOyI+LSBBbGwgdGhlIHByb3Bvc2FscyB3ZXJlIGFncmVlZCBpbiBwYXJ0aWN1 bGFyIHRvIGRldGFjaCBzZWN0aW9uIDUgLSBFbmRwb2ludCBNb2RlbCBpbiBvcmRlciB0byBkZWxp dmVyIGEgdW5pZm9ybSBBdHRhY2sgU3VyZmFjZSBkZWZpbml0aW9uIGFjcm9zcyBhbGwgZW5kcG9p bnRzIGFuZCBzZWN0aW9uIDYgLSBUaHJlYXQgTGFuZHNjYXBlIGluIG9yZGVyIHRvIGNvbWUgb3Zl ciB0aGUgbGltaXRzIG9mIHRoZSBNSVRSRSBBVFQmYW1wO0NLIG1vZGVsIGFzIDIgc2VwYXJhdGUg SS1EcyB0byBzdXBwb3J0IENMRVNTPGJyPjwvZGl2PjxkaXYgc3R5bGU9ImJveC1zaXppbmc6IGlu aGVyaXQ7IGNvbG9yOiByZ2IoODUsIDg1LCA4NSk7IGZvbnQtZmFtaWx5OiBBcmlhbCwgJnF1b3Q7 SGVsdmV0aWNhIE5ldWUmcXVvdDssIEhlbHZldGljYSwgc2Fucy1zZXJpZjsgZm9udC1zaXplOiAx NHB4OyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsg Zm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6IDQwMDsgbGV0dGVyLXNwYWNp bmc6IG5vcm1hbDsgb3JwaGFuczogMjsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAw cHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IDI7 IHdvcmQtc3BhY2luZzogMHB4OyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IGJhY2tn cm91bmQtY29sb3I6IHJnYigyNTUsIDI1NSwgMjU1KTsgdGV4dC1kZWNvcmF0aW9uLXN0eWxlOiBp bml0aWFsOyB0ZXh0LWRlY29yYXRpb24tY29sb3I6IGluaXRpYWw7Ij4tIFdlIGZvdW5kIGFscmVh ZHkgb25lIGF1dGhvciBmb3IgdGhlIGZpcnN0IG9uZSBhcyBNYXJrIE1hY0ZhZGRlbiBhbmQgb25l IGF1dGhvciBmb3IgdGhlIHNlY29uZCBvbmUgYXMgU2ltb24gRWR3YXJkcyBhbmQgdGhlbiBvZmZs aW5lIHNvbWUgcGVvcGxlIGFza2VkIHRvIGpvaW4gb25lIG9yIHRoZSBvdGhlciB3b3JrPGJyPjwv ZGl2PjxkaXYgc3R5bGU9ImJveC1zaXppbmc6IGluaGVyaXQ7IGNvbG9yOiByZ2IoODUsIDg1LCA4 NSk7IGZvbnQtZmFtaWx5OiBBcmlhbCwgJnF1b3Q7SGVsdmV0aWNhIE5ldWUmcXVvdDssIEhlbHZl dGljYSwgc2Fucy1zZXJpZjsgZm9udC1zaXplOiAxNHB4OyBmb250LXN0eWxlOiBub3JtYWw7IGZv bnQtdmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsg Zm9udC13ZWlnaHQ6IDQwMDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFuczogMjsgdGV4 dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3 aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IDI7IHdvcmQtc3BhY2luZzogMHB4OyAtd2Via2l0 LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IGJhY2tncm91bmQtY29sb3I6IHJnYigyNTUsIDI1NSwg MjU1KTsgdGV4dC1kZWNvcmF0aW9uLXN0eWxlOiBpbml0aWFsOyB0ZXh0LWRlY29yYXRpb24tY29s b3I6IGluaXRpYWw7Ij4tIFdlIGRpc2N1c3NlZCBzZXZlcmFsIGFjdGlvbnMgKG5ldyBzZWN0aW9u cywgY29tbXVuaWNhdGlvbiwgbmV3IHByb2R1Y3Rpb24gZGF0YSB3b3JrLCBob3cgdG8gaW5jb3Jw b3JhdGUgRGF2aWQgTWNHcmV3J3MgZ3JlYXQgc2V0IG9mIGV4YW1wbGVzIG9uIEh1bWFuIFJpZ2h0 cyBhdHRhY2tzLCBvciBzdGFydCBhbiBlY29ub21pYyBzZWN0aW9uLCBldGMuKTxicj48L2Rpdj48 ZGl2IHN0eWxlPSJib3gtc2l6aW5nOiBpbmhlcml0OyBjb2xvcjogcmdiKDg1LCA4NSwgODUpOyBm b250LWZhbWlseTogQXJpYWwsICZxdW90O0hlbHZldGljYSBOZXVlJnF1b3Q7LCBIZWx2ZXRpY2Es IHNhbnMtc2VyaWY7IGZvbnQtc2l6ZTogMTRweDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZh cmlhbnQtbGlnYXR1cmVzOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQt d2VpZ2h0OiA0MDA7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IDI7IHRleHQtYWxp Z246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUt c3BhY2U6IG5vcm1hbDsgd2lkb3dzOiAyOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0 LXN0cm9rZS13aWR0aDogMHB4OyBiYWNrZ3JvdW5kLWNvbG9yOiByZ2IoMjU1LCAyNTUsIDI1NSk7 IHRleHQtZGVjb3JhdGlvbi1zdHlsZTogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBp bml0aWFsOyI+LSBXZSBiZWxpZXZlIGl0IHdpbGwgZ2l2ZSBwcm9iYWJseSBhIHNpZ25pZmljYW50 IGZyYW1ld29yayBmb3IgbW9yZSByZXNlYXJjaGVycyB0byBqb2luIHdpdGggdGhlaXIgc3BlY2lm aWMga25vd2xlZGdlIG9uIHNwZWNpZmljICdjZWxscycgaW4gdGhlIG1hdHJpeCAoc3BlY2lmaWMg dGhyZWF0IGxhbmRzY2FwZTxicj48L2Rpdj48ZGl2IHN0eWxlPSJib3gtc2l6aW5nOiBpbmhlcml0 OyBjb2xvcjogcmdiKDg1LCA4NSwgODUpOyBmb250LWZhbWlseTogQXJpYWwsICZxdW90O0hlbHZl dGljYSBOZXVlJnF1b3Q7LCBIZWx2ZXRpY2EsIHNhbnMtc2VyaWY7IGZvbnQtc2l6ZTogMTRweDsg Zm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtbGlnYXR1cmVzOiBub3JtYWw7IGZvbnQt dmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiA0MDA7IGxldHRlci1zcGFjaW5nOiBu b3JtYWw7IG9ycGhhbnM6IDI7IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0 ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiAyOyB3b3Jk LXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4OyBiYWNrZ3JvdW5k LWNvbG9yOiByZ2IoMjU1LCAyNTUsIDI1NSk7IHRleHQtZGVjb3JhdGlvbi1zdHlsZTogaW5pdGlh bDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0aWFsOyI+LSBXZSBoZWFyZCB0aGUgc2hvY2tp bmcgbmV3cyBvbiBTTUFSVCBhbmQgZGlzY3Vzc2VkIGZvciBzb21lIHRpbWUgdGhhdCB3ZSB3aWxs IHNlZWsgZ3VpZGFuY2UgZm9yIGhvdyB0byBjb250aW51ZSB0aGlzIHdvcmsgaW4gSUVURiBvciBw b3NzaWJseSBvdXRzaWRlIGFuZCBhIGZldyBhbHRlcm5hdGl2ZXMgd2VyZSBleHByZXNzZWQ8YnI+ PC9kaXY+PGRpdiBzdHlsZT0iYm94LXNpemluZzogaW5oZXJpdDsgY29sb3I6IHJnYig4NSwgODUs IDg1KTsgZm9udC1mYW1pbHk6IEFyaWFsLCAmcXVvdDtIZWx2ZXRpY2EgTmV1ZSZxdW90OywgSGVs dmV0aWNhLCBzYW5zLXNlcmlmOyBmb250LXNpemU6IDE0cHg7IGZvbnQtc3R5bGU6IG5vcm1hbDsg Zm9udC12YXJpYW50LWxpZ2F0dXJlczogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFs OyBmb250LXdlaWdodDogNDAwOyBsZXR0ZXItc3BhY2luZzogbm9ybWFsOyBvcnBoYW5zOiAyOyB0 ZXh0LWFsaWduOiBzdGFydDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7 IHdoaXRlLXNwYWNlOiBub3JtYWw7IHdpZG93czogMjsgd29yZC1zcGFjaW5nOiAwcHg7IC13ZWJr aXQtdGV4dC1zdHJva2Utd2lkdGg6IDBweDsgYmFja2dyb3VuZC1jb2xvcjogcmdiKDI1NSwgMjU1 LCAyNTUpOyB0ZXh0LWRlY29yYXRpb24tc3R5bGU6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1j b2xvcjogaW5pdGlhbDsiPi0gV2UgKGFuZCBJKSBoYXZlIGEgbnVtYmVyIG9mIGZvbGxvd3VwIGFj dGlvbnMgYXMgSSBuZWVkIHRvIGNvbnRpbnVlIHNwZWNpZmljIGNvbnN1bHRhdGlvbnMgdGhhdCBh cmUgc2NoZWR1bGVkPGJyPjwvZGl2PjxkaXYgc3R5bGU9ImJveC1zaXppbmc6IGluaGVyaXQ7IGNv bG9yOiByZ2IoODUsIDg1LCA4NSk7IGZvbnQtZmFtaWx5OiBBcmlhbCwgJnF1b3Q7SGVsdmV0aWNh IE5ldWUmcXVvdDssIEhlbHZldGljYSwgc2Fucy1zZXJpZjsgZm9udC1zaXplOiAxNHB4OyBmb250 LXN0eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsgZm9udC12YXJp YW50LWNhcHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6IDQwMDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1h bDsgb3JwaGFuczogMjsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQt dHJhbnNmb3JtOiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IDI7IHdvcmQtc3Bh Y2luZzogMHB4OyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IGJhY2tncm91bmQtY29s b3I6IHJnYigyNTUsIDI1NSwgMjU1KTsgdGV4dC1kZWNvcmF0aW9uLXN0eWxlOiBpbml0aWFsOyB0 ZXh0LWRlY29yYXRpb24tY29sb3I6IGluaXRpYWw7Ij48YnI+PC9kaXY+PGRpdiBzdHlsZT0iYm94 LXNpemluZzogaW5oZXJpdDsgY29sb3I6IHJnYig4NSwgODUsIDg1KTsgZm9udC1mYW1pbHk6IEFy aWFsLCAmcXVvdDtIZWx2ZXRpY2EgTmV1ZSZxdW90OywgSGVsdmV0aWNhLCBzYW5zLXNlcmlmOyBm b250LXNpemU6IDE0cHg7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWxpZ2F0dXJl czogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyBmb250LXdlaWdodDogNDAwOyBs ZXR0ZXItc3BhY2luZzogbm9ybWFsOyBvcnBoYW5zOiAyOyB0ZXh0LWFsaWduOiBzdGFydDsgdGV4 dC1pbmRlbnQ6IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNlOiBub3JtYWw7 IHdpZG93czogMjsgd29yZC1zcGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6 IDBweDsgYmFja2dyb3VuZC1jb2xvcjogcmdiKDI1NSwgMjU1LCAyNTUpOyB0ZXh0LWRlY29yYXRp b24tc3R5bGU6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1jb2xvcjogaW5pdGlhbDsiPlNvIGJv dHRvbSBsaW5lPGJyPjwvZGl2PjxkaXYgc3R5bGU9ImJveC1zaXppbmc6IGluaGVyaXQ7IGNvbG9y OiByZ2IoODUsIDg1LCA4NSk7IGZvbnQtZmFtaWx5OiBBcmlhbCwgJnF1b3Q7SGVsdmV0aWNhIE5l dWUmcXVvdDssIEhlbHZldGljYSwgc2Fucy1zZXJpZjsgZm9udC1zaXplOiAxNHB4OyBmb250LXN0 eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsgZm9udC12YXJpYW50 LWNhcHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6IDQwMDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsg b3JwaGFuczogMjsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJh bnNmb3JtOiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IDI7IHdvcmQtc3BhY2lu ZzogMHB4OyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IGJhY2tncm91bmQtY29sb3I6 IHJnYigyNTUsIDI1NSwgMjU1KTsgdGV4dC1kZWNvcmF0aW9uLXN0eWxlOiBpbml0aWFsOyB0ZXh0 LWRlY29yYXRpb24tY29sb3I6IGluaXRpYWw7Ij4tIFdlIGhhZCBhIGdvb2QgZmlyc3QgY2FsbCBp biBhIGdvb2QgYXRtb3NwaGVyZSB3aXRoIGEgZ29vZCBncm91cCBvZiBwZW9wbGU8YnI+PC9kaXY+ PGRpdiBzdHlsZT0iYm94LXNpemluZzogaW5oZXJpdDsgY29sb3I6IHJnYig4NSwgODUsIDg1KTsg Zm9udC1mYW1pbHk6IEFyaWFsLCAmcXVvdDtIZWx2ZXRpY2EgTmV1ZSZxdW90OywgSGVsdmV0aWNh LCBzYW5zLXNlcmlmOyBmb250LXNpemU6IDE0cHg7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12 YXJpYW50LWxpZ2F0dXJlczogbm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyBmb250 LXdlaWdodDogNDAwOyBsZXR0ZXItc3BhY2luZzogbm9ybWFsOyBvcnBoYW5zOiAyOyB0ZXh0LWFs aWduOiBzdGFydDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7IHdoaXRl LXNwYWNlOiBub3JtYWw7IHdpZG93czogMjsgd29yZC1zcGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4 dC1zdHJva2Utd2lkdGg6IDBweDsgYmFja2dyb3VuZC1jb2xvcjogcmdiKDI1NSwgMjU1LCAyNTUp OyB0ZXh0LWRlY29yYXRpb24tc3R5bGU6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1jb2xvcjog aW5pdGlhbDsiPi0gV2UgYXJlIGNvbW1pdHRlZCB0byBjb250aW51ZTxicj48L2Rpdj48ZGl2IHN0 eWxlPSJib3gtc2l6aW5nOiBpbmhlcml0OyBjb2xvcjogcmdiKDg1LCA4NSwgODUpOyBmb250LWZh bWlseTogQXJpYWwsICZxdW90O0hlbHZldGljYSBOZXVlJnF1b3Q7LCBIZWx2ZXRpY2EsIHNhbnMt c2VyaWY7IGZvbnQtc2l6ZTogMTRweDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQt bGlnYXR1cmVzOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0 OiA0MDA7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IDI7IHRleHQtYWxpZ246IHN0 YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6 IG5vcm1hbDsgd2lkb3dzOiAyOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXN0cm9r ZS13aWR0aDogMHB4OyBiYWNrZ3JvdW5kLWNvbG9yOiByZ2IoMjU1LCAyNTUsIDI1NSk7IHRleHQt ZGVjb3JhdGlvbi1zdHlsZTogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0aWFs OyI+LSBXZSBoYXZlIGEgZGV0YWlsZWQgcGxhbjxicj48L2Rpdj48ZGl2IHN0eWxlPSJib3gtc2l6 aW5nOiBpbmhlcml0OyBjb2xvcjogcmdiKDg1LCA4NSwgODUpOyBmb250LWZhbWlseTogQXJpYWws ICZxdW90O0hlbHZldGljYSBOZXVlJnF1b3Q7LCBIZWx2ZXRpY2EsIHNhbnMtc2VyaWY7IGZvbnQt c2l6ZTogMTRweDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtbGlnYXR1cmVzOiBu b3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiA0MDA7IGxldHRl ci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IDI7IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWlu ZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lk b3dzOiAyOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4 OyBiYWNrZ3JvdW5kLWNvbG9yOiByZ2IoMjU1LCAyNTUsIDI1NSk7IHRleHQtZGVjb3JhdGlvbi1z dHlsZTogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0aWFsOyI+LSBXZSB3aWxs IGhhdmUgYXQgbWluaW11bSBhIHNpZGUgbWVldGluZyBpbiBNb250cmVhbDxicj48L2Rpdj48ZGl2 IHN0eWxlPSJib3gtc2l6aW5nOiBpbmhlcml0OyBjb2xvcjogcmdiKDg1LCA4NSwgODUpOyBmb250 LWZhbWlseTogQXJpYWwsICZxdW90O0hlbHZldGljYSBOZXVlJnF1b3Q7LCBIZWx2ZXRpY2EsIHNh bnMtc2VyaWY7IGZvbnQtc2l6ZTogMTRweDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlh bnQtbGlnYXR1cmVzOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2Vp Z2h0OiA0MDA7IGxldHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IDI7IHRleHQtYWxpZ246 IHN0YXJ0OyB0ZXh0LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3Bh Y2U6IG5vcm1hbDsgd2lkb3dzOiAyOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXN0 cm9rZS13aWR0aDogMHB4OyBiYWNrZ3JvdW5kLWNvbG9yOiByZ2IoMjU1LCAyNTUsIDI1NSk7IHRl eHQtZGVjb3JhdGlvbi1zdHlsZTogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0 aWFsOyI+LSBXZSB3aWxsIGRpc2N1c3Mgb3VyIGxvbmcgdGVybSBmdXR1cmUgYXQgTW9udHJlYWwg YW5kIGxvb2sgYXQgQUxMIGFsdGVybmF0aXZlczxicj48L2Rpdj48ZGl2IHN0eWxlPSJib3gtc2l6 aW5nOiBpbmhlcml0OyBjb2xvcjogcmdiKDg1LCA4NSwgODUpOyBmb250LWZhbWlseTogQXJpYWws ICZxdW90O0hlbHZldGljYSBOZXVlJnF1b3Q7LCBIZWx2ZXRpY2EsIHNhbnMtc2VyaWY7IGZvbnQt c2l6ZTogMTRweDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtbGlnYXR1cmVzOiBu b3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiA0MDA7IGxldHRl ci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IDI7IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWlu ZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lk b3dzOiAyOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4 OyBiYWNrZ3JvdW5kLWNvbG9yOiByZ2IoMjU1LCAyNTUsIDI1NSk7IHRleHQtZGVjb3JhdGlvbi1z dHlsZTogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0aWFsOyI+PGJyPjwvZGl2 PjxkaXYgc3R5bGU9ImJveC1zaXppbmc6IGluaGVyaXQ7IGNvbG9yOiByZ2IoODUsIDg1LCA4NSk7 IGZvbnQtZmFtaWx5OiBBcmlhbCwgJnF1b3Q7SGVsdmV0aWNhIE5ldWUmcXVvdDssIEhlbHZldGlj YSwgc2Fucy1zZXJpZjsgZm9udC1zaXplOiAxNHB4OyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQt dmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgZm9u dC13ZWlnaHQ6IDQwMDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsgb3JwaGFuczogMjsgdGV4dC1h bGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJhbnNmb3JtOiBub25lOyB3aGl0 ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IDI7IHdvcmQtc3BhY2luZzogMHB4OyAtd2Via2l0LXRl eHQtc3Ryb2tlLXdpZHRoOiAwcHg7IGJhY2tncm91bmQtY29sb3I6IHJnYigyNTUsIDI1NSwgMjU1 KTsgdGV4dC1kZWNvcmF0aW9uLXN0eWxlOiBpbml0aWFsOyB0ZXh0LWRlY29yYXRpb24tY29sb3I6 IGluaXRpYWw7Ij5BZ2FpbiBUSEFOSyBZT1UgQUxMIGZvciB5b3VyIHN1cHBvcnQsIHdvcmsgYW5k IGNvbW1pdG1lbnQ8YnI+PC9kaXY+PGRpdiBzdHlsZT0iYm94LXNpemluZzogaW5oZXJpdDsgY29s b3I6IHJnYig4NSwgODUsIDg1KTsgZm9udC1mYW1pbHk6IEFyaWFsLCAmcXVvdDtIZWx2ZXRpY2Eg TmV1ZSZxdW90OywgSGVsdmV0aWNhLCBzYW5zLXNlcmlmOyBmb250LXNpemU6IDE0cHg7IGZvbnQt c3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWxpZ2F0dXJlczogbm9ybWFsOyBmb250LXZhcmlh bnQtY2Fwczogbm9ybWFsOyBmb250LXdlaWdodDogNDAwOyBsZXR0ZXItc3BhY2luZzogbm9ybWFs OyBvcnBoYW5zOiAyOyB0ZXh0LWFsaWduOiBzdGFydDsgdGV4dC1pbmRlbnQ6IDBweDsgdGV4dC10 cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNlOiBub3JtYWw7IHdpZG93czogMjsgd29yZC1zcGFj aW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6IDBweDsgYmFja2dyb3VuZC1jb2xv cjogcmdiKDI1NSwgMjU1LCAyNTUpOyB0ZXh0LWRlY29yYXRpb24tc3R5bGU6IGluaXRpYWw7IHRl eHQtZGVjb3JhdGlvbi1jb2xvcjogaW5pdGlhbDsiPjxicj48L2Rpdj48ZGl2IHN0eWxlPSJib3gt c2l6aW5nOiBpbmhlcml0OyBjb2xvcjogcmdiKDg1LCA4NSwgODUpOyBmb250LWZhbWlseTogQXJp YWwsICZxdW90O0hlbHZldGljYSBOZXVlJnF1b3Q7LCBIZWx2ZXRpY2EsIHNhbnMtc2VyaWY7IGZv bnQtc2l6ZTogMTRweDsgZm9udC1zdHlsZTogbm9ybWFsOyBmb250LXZhcmlhbnQtbGlnYXR1cmVz OiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiA0MDA7IGxl dHRlci1zcGFjaW5nOiBub3JtYWw7IG9ycGhhbnM6IDI7IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0 LWluZGVudDogMHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsg d2lkb3dzOiAyOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDog MHB4OyBiYWNrZ3JvdW5kLWNvbG9yOiByZ2IoMjU1LCAyNTUsIDI1NSk7IHRleHQtZGVjb3JhdGlv bi1zdHlsZTogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0aWFsOyI+SG9wZSB0 aGlzIGhlbHBzPGJyPjwvZGl2PjxkaXYgc3R5bGU9ImJveC1zaXppbmc6IGluaGVyaXQ7IGNvbG9y OiByZ2IoODUsIDg1LCA4NSk7IGZvbnQtZmFtaWx5OiBBcmlhbCwgJnF1b3Q7SGVsdmV0aWNhIE5l dWUmcXVvdDssIEhlbHZldGljYSwgc2Fucy1zZXJpZjsgZm9udC1zaXplOiAxNHB4OyBmb250LXN0 eWxlOiBub3JtYWw7IGZvbnQtdmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsgZm9udC12YXJpYW50 LWNhcHM6IG5vcm1hbDsgZm9udC13ZWlnaHQ6IDQwMDsgbGV0dGVyLXNwYWNpbmc6IG5vcm1hbDsg b3JwaGFuczogMjsgdGV4dC1hbGlnbjogc3RhcnQ7IHRleHQtaW5kZW50OiAwcHg7IHRleHQtdHJh bnNmb3JtOiBub25lOyB3aGl0ZS1zcGFjZTogbm9ybWFsOyB3aWRvd3M6IDI7IHdvcmQtc3BhY2lu ZzogMHB4OyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IGJhY2tncm91bmQtY29sb3I6 IHJnYigyNTUsIDI1NSwgMjU1KTsgdGV4dC1kZWNvcmF0aW9uLXN0eWxlOiBpbml0aWFsOyB0ZXh0 LWRlY29yYXRpb24tY29sb3I6IGluaXRpYWw7Ij48YnI+PC9kaXY+PGRpdiBzdHlsZT0iYm94LXNp emluZzogaW5oZXJpdDsgY29sb3I6IHJnYig4NSwgODUsIDg1KTsgZm9udC1mYW1pbHk6IEFyaWFs LCAmcXVvdDtIZWx2ZXRpY2EgTmV1ZSZxdW90OywgSGVsdmV0aWNhLCBzYW5zLXNlcmlmOyBmb250 LXNpemU6IDE0cHg7IGZvbnQtc3R5bGU6IG5vcm1hbDsgZm9udC12YXJpYW50LWxpZ2F0dXJlczog bm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyBmb250LXdlaWdodDogNDAwOyBsZXR0 ZXItc3BhY2luZzogbm9ybWFsOyBvcnBoYW5zOiAyOyB0ZXh0LWFsaWduOiBzdGFydDsgdGV4dC1p bmRlbnQ6IDBweDsgdGV4dC10cmFuc2Zvcm06IG5vbmU7IHdoaXRlLXNwYWNlOiBub3JtYWw7IHdp ZG93czogMjsgd29yZC1zcGFjaW5nOiAwcHg7IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6IDBw eDsgYmFja2dyb3VuZC1jb2xvcjogcmdiKDI1NSwgMjU1LCAyNTUpOyB0ZXh0LWRlY29yYXRpb24t c3R5bGU6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1jb2xvcjogaW5pdGlhbDsiPkJlc3QgUmVn YXJkczxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2Pjxicj48L2Rp dj48ZGl2Pjxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2IGNsYXNz PSJwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jayI+PGRpdiBjbGFzcz0icHJvdG9ubWFpbF9zaWdu YXR1cmVfYmxvY2stdXNlciBwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jay1lbXB0eSI+PGJyPjwv ZGl2PjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2lnbmF0dXJlX2Jsb2NrLXByb3RvbiI+U2VudCB3 aXRoIDxhIHRhcmdldD0iX2JsYW5rIiBocmVmPSJodHRwczovL3Byb3Rvbm1haWwuY29tIj5Qcm90 b25NYWlsPC9hPiBTZWN1cmUgRW1haWwuPGJyPjwvZGl2PjwvZGl2PjxkaXY+PGJyPjwvZGl2Pg== --b1_46c01da8da1a1e745ad5add6a412f114-- From nobody Wed Jul 10 08:29:39 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 59DA7120428 for ; Wed, 10 Jul 2019 08:29:37 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.702 X-Spam-Level: X-Spam-Status: No, score=-0.702 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, PDS_NO_HELO_DNS=1.295, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id slK9evW2I0Ht for ; Wed, 10 Jul 2019 08:29:35 -0700 (PDT) Received: from mail-pg1-x52f.google.com (mail-pg1-x52f.google.com [IPv6:2607:f8b0:4864:20::52f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 27B111202FA for ; Wed, 10 Jul 2019 08:29:09 -0700 (PDT) Received: by mail-pg1-x52f.google.com with SMTP id i8so1412655pgm.13 for ; Wed, 10 Jul 2019 08:29:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=DEkiuGDIlfYrkeKeYohZZKsyDQB4u1JGyIGHqXI7WNk=; b=RSjO2+VtZ9sgqYm1BE1vv75mLDpVnhOp6qL/T9Upu1qplSdZK5qEYXrYrJDuDoOzAt Aj8M1pH1AKHXtTTUEpwfOCcQ9YXCiruI1LlVbOUFRy33Pmkg1TxJ5rDN/MIn51doT3/Y FvQNPDGSSNffRfXiTlURH9pCDTAge/kffV06Hyf7rgReVJFQrXSxpfEFTxGWlVCQMMM7 Lx92/gQSt+dzaWZLYdzDLcbIM7K6qG5Z9MDQ1oAfay57pz+F5DDwuMAcyVcb+8Rz3y9j Zvqt5OkH2HCc2JlXEVLo0eoNemxpHaD3+/V5U3MtiRmTCrzDgwWonmI9cV2Js1FLn47Y pp4Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=DEkiuGDIlfYrkeKeYohZZKsyDQB4u1JGyIGHqXI7WNk=; b=pwCGLug5YsyD6eq62PHxx134xf1xSzZtbxEJj7RhNtc3Jr2h7NBryVYZwJ+nCMBRvH l3dcPx1tZuA4g4EhofQQM0r47UwnBmVwLw1edw8XI3+p7dYdgzlIMOMYHwZh96mYTCoE 4FL7X+ndz7WWpFxOHWJV9iFSJyliPFEuNqFbZznmDhVrvPbTupbcegLR46GlFXYxndlv DVdRavNoTqpPu7DovCZeg30lr1oflAZKmOX5vJ1WHw4pzeZF0BQE5yQR6EawZ0tERJ20 sBsdOFCKhK7dzYtjtIussBUgqy2FD5OMcImbo9ZHEv70Q7KsF/7UjR1Kjf6JT0aygwiI GgWg== X-Gm-Message-State: APjAAAXfGyH3XtOmmP7NsSUxJ0+odLynq1iV0uhAg2OVPfsF7mHZWdiL tR4zeZqFlyJlBBDPiQzf51c= X-Google-Smtp-Source: APXvYqyQaFX0LVe2EdoksMB+gueRt0XSJmIiVnCGuJjgy77Cmvxd1R2og14/ONllD3e2xpZH5XTpnw== X-Received: by 2002:a63:1658:: with SMTP id 24mr38872675pgw.167.1562772548505; Wed, 10 Jul 2019 08:29:08 -0700 (PDT) Received: from ?IPv6:2605:a601:a990:4d00:89e2:ec6d:a366:d501? ([2605:a601:a990:4d00:89e2:ec6d:a366:d501]) by smtp.gmail.com with ESMTPSA id v22sm2381652pgk.69.2019.07.10.08.29.06 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 10 Jul 2019 08:29:07 -0700 (PDT) From: Bret Jordan Message-Id: <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> Content-Type: multipart/alternative; boundary="Apple-Mail=_73CBA443-9D1A-4E86-9E67-C5565A0AA455" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Wed, 10 Jul 2019 09:29:04 -0600 In-Reply-To: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> Cc: smart@irtf.org, Secdispatch@ietf.org To: Dominique Lazanski References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: Re: [Smart] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Jul 2019 15:29:37 -0000 --Apple-Mail=_73CBA443-9D1A-4E86-9E67-C5565A0AA455 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii Dominique, I have read over your draft, and I think it highlights some very key = things we all need to look at and address. Thanks for putting these = ideas down on paper. Hopefully this I-D can help us all start a broader = discussion to improve things. SMART / SecDispatch, If you have not yet read this I-D, I would encourage you to look at it. = It is a very fast read.=20 Thanks, Bret PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 "Without cryptography vihv vivc ce xhrnrw, however, the only thing that = can not be unscrambled is an egg." > On Jul 8, 2019, at 12:54 PM, Dominique Lazanski = wrote: >=20 > Cross posting to this mailing list. >=20 > Dominique=20 >=20 > A new version of I-D, draft-lazanski-smart-users-internet-00.txt > has been successfully submitted by Dominique Lazanski and posted to = the > IETF repository. >=20 > Name: draft-lazanski-smart-users-internet > Revision: 00 > Title: An Internet for Users Again > Document date: 2019-07-08 > Group: Individual Submission > Pages: 12 > URL: = https://www.ietf.org/internet-drafts/draft-lazanski-smart-users-internet-0= 0.txt = > Status: = https://datatracker.ietf.org/doc/draft-lazanski-smart-users-internet/ = > Htmlized: = https://tools.ietf.org/html/draft-lazanski-smart-users-internet-00 = > Htmlized: = https://datatracker.ietf.org/doc/html/draft-lazanski-smart-users-internet = >=20 >=20 > Abstract: > RFC 3552 introduces a threat model that does not include endpoint > security. In the fifteen years since RFC 3552 security issues and > cyber attacks have increased, especially on the endpoint. This > document proposes a new approach to Internet cyber security protocol > development that focuses on the user of the Internet, namely those > who use the endpoint and are the most vulnerable to attacks.=20 > --=20 > Smart mailing list > Smart@irtf.org > https://www.irtf.org/mailman/listinfo/smart --Apple-Mail=_73CBA443-9D1A-4E86-9E67-C5565A0AA455 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=us-ascii Dominique,

I have read over your draft, and I think it highlights some = very key things we all need to look at and address. Thanks for putting = these ideas down on paper.  Hopefully this I-D can help us all = start a broader discussion to improve things.

SMART / SecDispatch,

If you have not yet read = this I-D, I would encourage you to look at it.  It is a very fast = read. 

Thanks,
Bret
PGP = Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 = 0050
"Without = cryptography vihv vivc ce xhrnrw, however, the only thing that can not = be unscrambled is an = egg."

On Jul 8, 2019, at 12:54 PM, Dominique Lazanski <dml@lastpresslabel.com> wrote:

Cross posting to this mailing list.

Dominique 

A new version of I-D, = draft-lazanski-smart-users-internet-00.txt
has been = successfully submitted by Dominique Lazanski and posted to the
IETF repository.

Name:   =      draft-lazanski-smart-users-internet
Revision:    00
Title:     =    An Internet for Users Again
Document date: =    2019-07-08
Group:       =  Individual Submission
Pages:       =  12
URL: =            https://www.ietf.org/internet-drafts/draft-lazanski-smart-users= -internet-00.txt
Status: =         https://datatracker.ietf.org/doc/draft-lazanski-smart-users-int= ernet/
Htmlized: =       https://tools.ietf.org/html/draft-lazanski-smart-users-internet= -00
Htmlized:       https://datatracker.ietf.org/doc/html/draft-lazanski-smart-user= s-internet


Abstract:
  RFC 3552 introduces a threat model that does not = include endpoint
  security. In the fifteen = years since RFC 3552 security issues and
  cyber = attacks have increased, especially on the endpoint. This
  document proposes a new approach to Internet = cyber security protocol
  development that = focuses on the user of the Internet, namely those
  who use the endpoint and are the most vulnerable = to attacks. 
--
Smart mailing list
Smart@irtf.org
https://www.irtf.org/mailman/listinfo/smart

= --Apple-Mail=_73CBA443-9D1A-4E86-9E67-C5565A0AA455-- From nobody Thu Jul 11 00:28:01 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3C1CF120297 for ; Thu, 11 Jul 2019 00:27:49 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.437 X-Spam-Level: X-Spam-Status: No, score=-0.437 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_WORDY=2.261, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bPFVem5dDCAv for ; Thu, 11 Jul 2019 00:27:45 -0700 (PDT) Received: from mail-40132.protonmail.ch (mail-40132.protonmail.ch [185.70.40.132]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7023E120416 for ; Thu, 11 Jul 2019 00:27:44 -0700 (PDT) Date: Thu, 11 Jul 2019 07:27:35 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1562830060; bh=1FH1MyomDcjYblAAuRq/9glAkHWYlGXXWITs34ehVHE=; h=Date:To:From:Cc:Reply-To:Subject:In-Reply-To:References: Feedback-ID:From; b=pfwqHhxuz2KYsQTUbZw0aDrM0RIevZi++mAZtLk3ibNe+ICnRmGeYv02kHRAvOdV3 42YYqVDyKL+gs8ZQXzK1aemt013SSStneq6eoCxlB+7oMkEirvs5cLWzXTxdemuft+ jpkFlN0vxbRzTkUh1dKX+NSQef1v+JMHxdbQ0BGA= To: Bret Jordan From: "Arnaud.Taddei.IETF" Cc: Dominique Lazanski , "smart@irtf.org" , "Secdispatch@ietf.org" Reply-To: "Arnaud.Taddei.IETF" Message-ID: In-Reply-To: <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> Feedback-ID: kou6vaSHQeY5dgFN9dCIYKo4z6hnnNmKuV4IBJw2wx4vSVPtftyhWUTBigri6zMJ3K1hxYJjI-3RAIGaizMt5g==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_4ee483934c814a7546b5f65a04ac0a52" Archived-At: Subject: Re: [Smart] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Jul 2019 07:27:54 -0000 This is a multi-part message in MIME format. --b1_4ee483934c814a7546b5f65a04ac0a52 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: base64 TGlrZXdpc2UsIEkgcmVhZCB0aGlzIEktRCBhbmQgaXQgcHV0cyB0aGUgZmluZ2VyIG9uIHRoZSBy aWdodCBuZXJ2ZXMuIFRoYW5rIHlvdSBmb3IgcHV0dGluZyB0aGlzIG9uZSBpbiBwbGFjZS4KCklu ZGVlZCBpdCBpcyB2ZXJ5IHN0cmFpZ2h0Zm9yd2FyZCByZWFkCgpTZW50IHdpdGggW1Byb3Rvbk1h aWxdKGh0dHBzOi8vcHJvdG9ubWFpbC5jb20pIFNlY3VyZSBFbWFpbC4KCuKAkOKAkOKAkOKAkOKA kOKAkOKAkCBPcmlnaW5hbCBNZXNzYWdlIOKAkOKAkOKAkOKAkOKAkOKAkOKAkApPbiBXZWRuZXNk YXkgMTAgSnVseSAyMDE5IDE3OjI5LCBCcmV0IEpvcmRhbiA8am9yZGFuLmlldGZAZ21haWwuY29t PiB3cm90ZToKCj4gRG9taW5pcXVlLAo+Cj4gSSBoYXZlIHJlYWQgb3ZlciB5b3VyIGRyYWZ0LCBh bmQgSSB0aGluayBpdCBoaWdobGlnaHRzIHNvbWUgdmVyeSBrZXkgdGhpbmdzIHdlIGFsbCBuZWVk IHRvIGxvb2sgYXQgYW5kIGFkZHJlc3MuIFRoYW5rcyBmb3IgcHV0dGluZyB0aGVzZSBpZGVhcyBk b3duIG9uIHBhcGVyLiAgSG9wZWZ1bGx5IHRoaXMgSS1EIGNhbiBoZWxwIHVzIGFsbCBzdGFydCBh IGJyb2FkZXIgZGlzY3Vzc2lvbiB0byBpbXByb3ZlIHRoaW5ncy4KPgo+IFNNQVJUIC8gU2VjRGlz cGF0Y2gsCj4KPiBJZiB5b3UgaGF2ZSBub3QgeWV0IHJlYWQgdGhpcyBJLUQsIEkgd291bGQgZW5j b3VyYWdlIHlvdSB0byBsb29rIGF0IGl0LiAgSXQgaXMgYSB2ZXJ5IGZhc3QgcmVhZC4KPgo+IFRo YW5rcywKPiBCcmV0Cj4gUEdQIEZpbmdlcnByaW50OiA2M0I0IEZDNTMgNjgwQSA2QjdEIDE0NDcg IEYyQzAgNzRGOCBBQ0FFIDc0MTUgMDA1MAo+ICJXaXRob3V0IGNyeXB0b2dyYXBoeSB2aWh2IHZp dmMgY2UgeGhybnJ3LCBob3dldmVyLCB0aGUgb25seSB0aGluZyB0aGF0IGNhbiBub3QgYmUgdW5z Y3JhbWJsZWQgaXMgYW4gZWdnLiIKPgo+PiBPbiBKdWwgOCwgMjAxOSwgYXQgMTI6NTQgUE0sIERv bWluaXF1ZSBMYXphbnNraSA8ZG1sQGxhc3RwcmVzc2xhYmVsLmNvbT4gd3JvdGU6Cj4+Cj4+IENy b3NzIHBvc3RpbmcgdG8gdGhpcyBtYWlsaW5nIGxpc3QuCj4+Cj4+IERvbWluaXF1ZQo+Pgo+PiBB IG5ldyB2ZXJzaW9uIG9mIEktRCwgZHJhZnQtbGF6YW5za2ktc21hcnQtdXNlcnMtaW50ZXJuZXQt MDAudHh0Cj4+IGhhcyBiZWVuIHN1Y2Nlc3NmdWxseSBzdWJtaXR0ZWQgYnkgRG9taW5pcXVlIExh emFuc2tpIGFuZCBwb3N0ZWQgdG8gdGhlCj4+IElFVEYgcmVwb3NpdG9yeS4KPj4KPj4gTmFtZTog ICAgICAgIGRyYWZ0LWxhemFuc2tpLXNtYXJ0LXVzZXJzLWludGVybmV0Cj4+IFJldmlzaW9uOiAg ICAwMAo+PiBUaXRsZTogICAgICAgIEFuIEludGVybmV0IGZvciBVc2VycyBBZ2Fpbgo+PiBEb2N1 bWVudCBkYXRlOiAgICAyMDE5LTA3LTA4Cj4+IEdyb3VwOiAgICAgICAgSW5kaXZpZHVhbCBTdWJt aXNzaW9uCj4+IFBhZ2VzOiAgICAgICAgMTIKPj4gVVJMOiAgICAgICAgICAgIGh0dHBzOi8vd3d3 LmlldGYub3JnL2ludGVybmV0LWRyYWZ0cy9kcmFmdC1sYXphbnNraS1zbWFydC11c2Vycy1pbnRl cm5ldC0wMC50eHQKPj4gU3RhdHVzOiAgICAgICAgIGh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5v cmcvZG9jL2RyYWZ0LWxhemFuc2tpLXNtYXJ0LXVzZXJzLWludGVybmV0Lwo+PiBIdG1saXplZDog ICAgICAgaHR0cHM6Ly90b29scy5pZXRmLm9yZy9odG1sL2RyYWZ0LWxhemFuc2tpLXNtYXJ0LXVz ZXJzLWludGVybmV0LTAwCj4+IEh0bWxpemVkOiAgICAgICBodHRwczovL2RhdGF0cmFja2VyLmll dGYub3JnL2RvYy9odG1sL2RyYWZ0LWxhemFuc2tpLXNtYXJ0LXVzZXJzLWludGVybmV0Cj4+Cj4+ IEFic3RyYWN0Ogo+PiAgIFJGQyAzNTUyIGludHJvZHVjZXMgYSB0aHJlYXQgbW9kZWwgdGhhdCBk b2VzIG5vdCBpbmNsdWRlIGVuZHBvaW50Cj4+ICAgc2VjdXJpdHkuIEluIHRoZSBmaWZ0ZWVuIHll YXJzIHNpbmNlIFJGQyAzNTUyIHNlY3VyaXR5IGlzc3VlcyBhbmQKPj4gICBjeWJlciBhdHRhY2tz IGhhdmUgaW5jcmVhc2VkLCBlc3BlY2lhbGx5IG9uIHRoZSBlbmRwb2ludC4gVGhpcwo+PiAgIGRv Y3VtZW50IHByb3Bvc2VzIGEgbmV3IGFwcHJvYWNoIHRvIEludGVybmV0IGN5YmVyIHNlY3VyaXR5 IHByb3RvY29sCj4+ICAgZGV2ZWxvcG1lbnQgdGhhdCBmb2N1c2VzIG9uIHRoZSB1c2VyIG9mIHRo ZSBJbnRlcm5ldCwgbmFtZWx5IHRob3NlCj4+ICAgd2hvIHVzZSB0aGUgZW5kcG9pbnQgYW5kIGFy ZSB0aGUgbW9zdCB2dWxuZXJhYmxlIHRvIGF0dGFja3MuCj4+IC0tCj4+IFNtYXJ0IG1haWxpbmcg bGlzdAo+PiBTbWFydEBpcnRmLm9yZwo+PiBodHRwczovL3d3dy5pcnRmLm9yZy9tYWlsbWFuL2xp c3RpbmZvL3NtYXJ0 --b1_4ee483934c814a7546b5f65a04ac0a52 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: base64 PGRpdj5MaWtld2lzZSwgSSByZWFkIHRoaXMgSS1EIGFuZCBpdCBwdXRzIHRoZSBmaW5nZXIgb24g dGhlIHJpZ2h0IG5lcnZlcy4gVGhhbmsgeW91IGZvciBwdXR0aW5nIHRoaXMgb25lIGluIHBsYWNl Ljxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2PkluZGVlZCBpdCBpcyB2ZXJ5IHN0cmFpZ2h0 Zm9yd2FyZCByZWFkJm5ic3A7PC9kaXY+PGRpdj48YnI+PC9kaXY+PGRpdiBjbGFzcz0icHJvdG9u bWFpbF9zaWduYXR1cmVfYmxvY2siPjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2lnbmF0dXJlX2Js b2NrLXVzZXIgcHJvdG9ubWFpbF9zaWduYXR1cmVfYmxvY2stZW1wdHkiPjxicj48L2Rpdj48ZGl2 IGNsYXNzPSJwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jay1wcm90b24iPlNlbnQgd2l0aCA8YSBo cmVmPSJodHRwczovL3Byb3Rvbm1haWwuY29tIiB0YXJnZXQ9Il9ibGFuayI+UHJvdG9uTWFpbDwv YT4gU2VjdXJlIEVtYWlsLjxicj48L2Rpdj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2PuKAkOKA kOKAkOKAkOKAkOKAkOKAkCBPcmlnaW5hbCBNZXNzYWdlIOKAkOKAkOKAkOKAkOKAkOKAkOKAkDxi cj48L2Rpdj48ZGl2PiBPbiBXZWRuZXNkYXkgMTAgSnVseSAyMDE5IDE3OjI5LCBCcmV0IEpvcmRh biAmbHQ7am9yZGFuLmlldGZAZ21haWwuY29tJmd0OyB3cm90ZTo8YnI+PC9kaXY+PGRpdj4gPGJy PjwvZGl2PjxibG9ja3F1b3RlIGNsYXNzPSJwcm90b25tYWlsX3F1b3RlIiB0eXBlPSJjaXRlIj48 ZGl2PkRvbWluaXF1ZSw8YnI+PC9kaXY+PGRpdiBjbGFzcz48YnI+PC9kaXY+PGRpdiBjbGFzcz5J IGhhdmUgcmVhZCBvdmVyIHlvdXIgZHJhZnQsIGFuZCBJIHRoaW5rIGl0IGhpZ2hsaWdodHMgc29t ZSB2ZXJ5IGtleSB0aGluZ3Mgd2UgYWxsIG5lZWQgdG8gbG9vayBhdCBhbmQgYWRkcmVzcy4gVGhh bmtzIGZvciBwdXR0aW5nIHRoZXNlIGlkZWFzIGRvd24gb24gcGFwZXIuICZuYnNwO0hvcGVmdWxs eSB0aGlzIEktRCBjYW4gaGVscCB1cyBhbGwgc3RhcnQgYSBicm9hZGVyIGRpc2N1c3Npb24gdG8g aW1wcm92ZSB0aGluZ3MuPGJyPjwvZGl2PjxkaXYgY2xhc3M+PGJyPjwvZGl2PjxkaXYgY2xhc3M+ U01BUlQgLyBTZWNEaXNwYXRjaCw8YnI+PC9kaXY+PGRpdiBjbGFzcz48YnI+PC9kaXY+PGRpdiBj bGFzcz5JZiB5b3UgaGF2ZSBub3QgeWV0IHJlYWQgdGhpcyBJLUQsIEkgd291bGQgZW5jb3VyYWdl IHlvdSB0byBsb29rIGF0IGl0LiAmbmJzcDtJdCBpcyBhIHZlcnkgZmFzdCByZWFkLiZuYnNwOzxi cj48L2Rpdj48ZGl2IGNsYXNzPjxkaXY+PGJyPjwvZGl2PjxkaXYgY2xhc3M+PGRpdiBzdHlsZT0i Y2FyZXQtY29sb3I6IHJnYigwLCAwLCAwKTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1mYW1p bHk6IEhlbHZldGljYTsgZm9udC1zaXplOiAxNHB4OyBmb250LXN0eWxlOiBub3JtYWw7IGZvbnQt dmFyaWFudC1jYXBzOiBub3JtYWw7IGZvbnQtd2VpZ2h0OiBub3JtYWw7IGxldHRlci1zcGFjaW5n OiBub3JtYWw7IG9ycGhhbnM6IGF1dG87IHRleHQtYWxpZ246IHN0YXJ0OyB0ZXh0LWluZGVudDog MHB4OyB0ZXh0LXRyYW5zZm9ybTogbm9uZTsgd2hpdGUtc3BhY2U6IG5vcm1hbDsgd2lkb3dzOiBh dXRvOyB3b3JkLXNwYWNpbmc6IDBweDsgLXdlYmtpdC10ZXh0LXNpemUtYWRqdXN0OiBhdXRvOyAt d2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbjogbm9uZTsiPjxk aXYgY2xhc3Mgc3R5bGU9Im9ycGhhbnM6IDI7IHdpZG93czogMjsgZm9udC12YXJpYW50LWxpZ2F0 dXJlczogbm9ybWFsOyBmb250LXZhcmlhbnQtZWFzdC1hc2lhbjogbm9ybWFsOyBmb250LXZhcmlh bnQtcG9zaXRpb246IG5vcm1hbDsgbGluZS1oZWlnaHQ6IG5vcm1hbDsgLXdlYmtpdC10ZXh0LWRl Y29yYXRpb25zLWluLWVmZmVjdDogbm9uZTsiPjxzcGFuIHN0eWxlPSJib3JkZXItY29sbGFwc2U6 IHNlcGFyYXRlOyBmb250LXZhcmlhbnQtbGlnYXR1cmVzOiBub3JtYWw7IGZvbnQtdmFyaWFudC1l YXN0LWFzaWFuOiBub3JtYWw7IGZvbnQtdmFyaWFudC1wb3NpdGlvbjogbm9ybWFsOyBsaW5lLWhl aWdodDogbm9ybWFsOyBib3JkZXItc3BhY2luZzogMHB4OyAtd2Via2l0LXRleHQtZGVjb3JhdGlv bnMtaW4tZWZmZWN0OiBub25lOyI+VGhhbmtzLDwvc3Bhbj48YnI+PC9kaXY+PGRpdiBjbGFzcyBz dHlsZT0ib3JwaGFuczogMjsgd2lkb3dzOiAyOyBmb250LXZhcmlhbnQtbGlnYXR1cmVzOiBub3Jt YWw7IGZvbnQtdmFyaWFudC1lYXN0LWFzaWFuOiBub3JtYWw7IGZvbnQtdmFyaWFudC1wb3NpdGlv bjogbm9ybWFsOyBsaW5lLWhlaWdodDogbm9ybWFsOyAtd2Via2l0LXRleHQtZGVjb3JhdGlvbnMt aW4tZWZmZWN0OiBub25lOyI+PHNwYW4gc3R5bGU9ImJvcmRlci1jb2xsYXBzZTogc2VwYXJhdGU7 IGZvbnQtdmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsgZm9udC12YXJpYW50LWVhc3QtYXNpYW46 IG5vcm1hbDsgZm9udC12YXJpYW50LXBvc2l0aW9uOiBub3JtYWw7IGxpbmUtaGVpZ2h0OiBub3Jt YWw7IHRleHQtYWxpZ246IC13ZWJraXQtYXV0bzsgYm9yZGVyLXNwYWNpbmc6IDBweDsgLXdlYmtp dC10ZXh0LWRlY29yYXRpb25zLWluLWVmZmVjdDogbm9uZTsiPkJyZXQ8L3NwYW4+PGJyPjwvZGl2 PjxkaXYgY2xhc3Mgc3R5bGU9Im9ycGhhbnM6IDI7IHdpZG93czogMjsiPjxzcGFuIHN0eWxlPSJi b3JkZXItY29sbGFwc2U6IHNlcGFyYXRlOyB0ZXh0LWFsaWduOiAtd2Via2l0LWF1dG87IGJvcmRl ci1zcGFjaW5nOiAwcHg7Ij48c3BhbiBzdHlsZT0iYm9yZGVyLWNvbGxhcHNlOiBzZXBhcmF0ZTsg dGV4dC1hbGlnbjogLXdlYmtpdC1hdXRvOyBib3JkZXItc3BhY2luZzogMHB4OyI+PGRpdiBjbGFz cyBzdHlsZT0id29yZC13cmFwOiBicmVhay13b3JkOyAtd2Via2l0LW5ic3AtbW9kZTogc3BhY2U7 IGxpbmUtYnJlYWs6IGFmdGVyLXdoaXRlLXNwYWNlOyI+PHNwYW4gc3R5bGU9ImJvcmRlci1jb2xs YXBzZTogc2VwYXJhdGU7IHRleHQtYWxpZ246IC13ZWJraXQtYXV0bzsgYm9yZGVyLXNwYWNpbmc6 IDBweDsiPjxkaXYgY2xhc3Mgc3R5bGU9IndvcmQtd3JhcDogYnJlYWstd29yZDsgLXdlYmtpdC1u YnNwLW1vZGU6IHNwYWNlOyBsaW5lLWJyZWFrOiBhZnRlci13aGl0ZS1zcGFjZTsiPjxzcGFuIHN0 eWxlPSJib3JkZXItY29sbGFwc2U6IHNlcGFyYXRlOyB0ZXh0LWFsaWduOiAtd2Via2l0LWF1dG87 IGJvcmRlci1zcGFjaW5nOiAwcHg7Ij48ZGl2IGNsYXNzIHN0eWxlPSJ3b3JkLXdyYXA6IGJyZWFr LXdvcmQ7IC13ZWJraXQtbmJzcC1tb2RlOiBzcGFjZTsgbGluZS1icmVhazogYWZ0ZXItd2hpdGUt c3BhY2U7Ij48c3BhbiBzdHlsZT0iYm9yZGVyLWNvbGxhcHNlOiBzZXBhcmF0ZTsgdGV4dC1hbGln bjogLXdlYmtpdC1hdXRvOyBib3JkZXItc3BhY2luZzogMHB4OyI+PGRpdiBjbGFzcz48c3BhbiBz dHlsZT0iZm9udC1mYW1pbHk6Q2FsaWJyZSwgVmVyZGFuYSI+PHNwYW4gc3R5bGU9ImNvbG9yOiM3 YzdjN2MiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFweCI+UEdQIEZpbmdlcnByaW50OiZuYnNw Ozwvc3Bhbj48L3NwYW4+PC9zcGFuPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFweCI+PHNwYW4g c3R5bGU9ImZvbnQtZmFtaWx5OkNhbGlicmUsIFZlcmRhbmEiPjxzcGFuIHN0eWxlPSJjb2xvcjoj N2M3YzdjIj42M0I0IEZDNTMgNjgwQSA2QjdEIDE0NDcgJm5ic3A7RjJDMCA3NEY4IEFDQUUgNzQx NSAwMDUwPC9zcGFuPjwvc3Bhbj48L3NwYW4+PGJyPjwvZGl2PjxkaXYgY2xhc3Mgc3R5bGU9ImZv bnQtdmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsgZm9udC12YXJpYW50LWVhc3QtYXNpYW46IG5v cm1hbDsgZm9udC12YXJpYW50LXBvc2l0aW9uOiBub3JtYWw7IGxpbmUtaGVpZ2h0OiBub3JtYWw7 IC13ZWJraXQtdGV4dC1kZWNvcmF0aW9ucy1pbi1lZmZlY3Q6IG5vbmU7Ij48c3BhbiBzdHlsZT0i Y29sb3I6cmdiKDEyNCwgMTI0LCAxMjQpIj48c3BhbiBzdHlsZT0iZm9udC1mYW1pbHk6Q2FsaWJy ZSwgVmVyZGFuYSI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTo4cHQiPiJXaXRob3V0IGNyeXB0b2dy YXBoeSB2aWh2IHZpdmMgY2UgeGhybnJ3LCBob3dldmVyLCB0aGUgb25seSB0aGluZyB0aGF0IGNh biBub3QgYmUgdW5zY3JhbWJsZWQgaXMgYW4gZWdnLiI8L3NwYW4+PC9zcGFuPjwvc3Bhbj48YnI+ PC9kaXY+PC9zcGFuPjwvZGl2Pjwvc3Bhbj48L2Rpdj48L3NwYW4+PC9kaXY+PC9zcGFuPjwvc3Bh bj48L2Rpdj48L2Rpdj48L2Rpdj48ZGl2PjxkaXY+PGJyPjwvZGl2PjxibG9ja3F1b3RlIHR5cGU9 ImNpdGUiIGNsYXNzPjxkaXYgY2xhc3M+T24gSnVsIDgsIDIwMTksIGF0IDEyOjU0IFBNLCBEb21p bmlxdWUgTGF6YW5za2kgJmx0OzxhIGhyZWY9Im1haWx0bzpkbWxAbGFzdHByZXNzbGFiZWwuY29t IiBjbGFzcz5kbWxAbGFzdHByZXNzbGFiZWwuY29tPC9hPiZndDsgd3JvdGU6PGJyPjwvZGl2Pjxk aXY+PGJyPjwvZGl2PjxkaXYgY2xhc3M+PGRpdiBkaXI9ImF1dG8iIGNsYXNzPjxkaXYgZGlyPSJs dHIiIGNsYXNzPjxzcGFuIGNsYXNzPjwvc3Bhbj48YnI+PC9kaXY+PGRpdiBkaXI9Imx0ciIgY2xh c3M+PGRpdiBkaXI9Imx0ciIgY2xhc3M+PHNwYW4gY2xhc3M+PC9zcGFuPjxicj48L2Rpdj48ZGl2 IGRpcj0ibHRyIiBjbGFzcz48ZGl2IGRpcj0ibHRyIiBjbGFzcz48c3BhbiBzdHlsZT0iYmFja2dy b3VuZC1jb2xvcjpyZ2JhKDI1NSwgMjU1LCAyNTUsIDApIj5Dcm9zcyBwb3N0aW5nIHRvIHRoaXMg bWFpbGluZyBsaXN0Ljwvc3Bhbj48YnI+PC9kaXY+PGRpdiBkaXI9Imx0ciIgY2xhc3M+PHNwYW4g c3R5bGU9ImJhY2tncm91bmQtY29sb3I6cmdiYSgyNTUsIDI1NSwgMjU1LCAwKSI+PC9zcGFuPjxi cj48L2Rpdj48ZGl2IGRpcj0ibHRyIiBjbGFzcz48c3BhbiBzdHlsZT0iYmFja2dyb3VuZC1jb2xv cjpyZ2JhKDI1NSwgMjU1LCAyNTUsIDApIj5Eb21pbmlxdWUmbmJzcDs8L3NwYW4+PGJyPjwvZGl2 PjxkaXYgZGlyPSJsdHIiIGNsYXNzPjxzcGFuIHN0eWxlPSJiYWNrZ3JvdW5kLWNvbG9yOnJnYmEo MjU1LCAyNTUsIDI1NSwgMCkiPjxiciBjbGFzcz5BIG5ldyB2ZXJzaW9uIG9mIEktRCwgZHJhZnQt bGF6YW5za2ktc21hcnQtdXNlcnMtaW50ZXJuZXQtMDAudHh0PGJyIGNsYXNzPmhhcyBiZWVuIHN1 Y2Nlc3NmdWxseSBzdWJtaXR0ZWQgYnkgRG9taW5pcXVlIExhemFuc2tpIGFuZCBwb3N0ZWQgdG8g dGhlPGJyIGNsYXNzPklFVEYgcmVwb3NpdG9yeS48YnIgY2xhc3M+PGJyIGNsYXNzPk5hbWU6ICZu YnNwOyAmbmJzcDsgJm5ic3A7ICZuYnNwO2RyYWZ0LWxhemFuc2tpLXNtYXJ0LXVzZXJzLWludGVy bmV0PGJyIGNsYXNzPlJldmlzaW9uOiAmbmJzcDsgJm5ic3A7MDA8YnIgY2xhc3M+VGl0bGU6ICZu YnNwOyAmbmJzcDsgJm5ic3A7ICZuYnNwO0FuIEludGVybmV0IGZvciBVc2VycyBBZ2FpbjxiciBj bGFzcz5Eb2N1bWVudCBkYXRlOiAmbmJzcDsgJm5ic3A7MjAxOS0wNy0wODxiciBjbGFzcz5Hcm91 cDogJm5ic3A7ICZuYnNwOyAmbmJzcDsgJm5ic3A7SW5kaXZpZHVhbCBTdWJtaXNzaW9uPGJyIGNs YXNzPlBhZ2VzOiAmbmJzcDsgJm5ic3A7ICZuYnNwOyAmbmJzcDsxMjxiciBjbGFzcz5VUkw6ICZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyZuYnNwOzxhIGhyZWY9Imh0dHBzOi8vd3d3LmlldGYub3JnL2ludGVybmV0LWRyYWZ0cy9kcmFm dC1sYXphbnNraS1zbWFydC11c2Vycy1pbnRlcm5ldC0wMC50eHQiIGRpcj0ibHRyIiBjbGFzcz5o dHRwczovL3d3dy5pZXRmLm9yZy9pbnRlcm5ldC1kcmFmdHMvZHJhZnQtbGF6YW5za2ktc21hcnQt dXNlcnMtaW50ZXJuZXQtMDAudHh0PC9hPjxiciBjbGFzcz5TdGF0dXM6ICZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOzxhIGhyZWY9Imh0dHBzOi8vZGF0YXRy YWNrZXIuaWV0Zi5vcmcvZG9jL2RyYWZ0LWxhemFuc2tpLXNtYXJ0LXVzZXJzLWludGVybmV0LyIg ZGlyPSJsdHIiIGNsYXNzPmh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2RyYWZ0LWxh emFuc2tpLXNtYXJ0LXVzZXJzLWludGVybmV0LzwvYT48YnIgY2xhc3M+SHRtbGl6ZWQ6ICZuYnNw OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOzxhIGhyZWY9Imh0dHBzOi8vdG9vbHMuaWV0 Zi5vcmcvaHRtbC9kcmFmdC1sYXphbnNraS1zbWFydC11c2Vycy1pbnRlcm5ldC0wMCIgZGlyPSJs dHIiIGNsYXNzPmh0dHBzOi8vdG9vbHMuaWV0Zi5vcmcvaHRtbC9kcmFmdC1sYXphbnNraS1zbWFy dC11c2Vycy1pbnRlcm5ldC0wMDwvYT48YnIgY2xhc3M+SHRtbGl6ZWQ6ICZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOzxhIGhyZWY9Imh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5v cmcvZG9jL2h0bWwvZHJhZnQtbGF6YW5za2ktc21hcnQtdXNlcnMtaW50ZXJuZXQiIGRpcj0ibHRy IiBjbGFzcz5odHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9odG1sL2RyYWZ0LWxhemFu c2tpLXNtYXJ0LXVzZXJzLWludGVybmV0PC9hPjxiciBjbGFzcz48YnIgY2xhc3M+PGJyIGNsYXNz PkFic3RyYWN0OjxiciBjbGFzcz4mbmJzcDsmbmJzcDtSRkMgMzU1MiBpbnRyb2R1Y2VzIGEgdGhy ZWF0IG1vZGVsIHRoYXQgZG9lcyBub3QgaW5jbHVkZSBlbmRwb2ludDxiciBjbGFzcz4mbmJzcDsm bmJzcDtzZWN1cml0eS4gSW4gdGhlIGZpZnRlZW4geWVhcnMgc2luY2UgUkZDIDM1NTIgc2VjdXJp dHkgaXNzdWVzIGFuZDxiciBjbGFzcz4mbmJzcDsmbmJzcDtjeWJlciBhdHRhY2tzIGhhdmUgaW5j cmVhc2VkLCBlc3BlY2lhbGx5IG9uIHRoZSBlbmRwb2ludC4gVGhpczxiciBjbGFzcz4mbmJzcDsm bmJzcDtkb2N1bWVudCBwcm9wb3NlcyBhIG5ldyBhcHByb2FjaCB0byBJbnRlcm5ldCBjeWJlciBz ZWN1cml0eSBwcm90b2NvbDxiciBjbGFzcz4mbmJzcDsmbmJzcDtkZXZlbG9wbWVudCB0aGF0IGZv Y3VzZXMgb24gdGhlIHVzZXIgb2YgdGhlIEludGVybmV0LCBuYW1lbHkgdGhvc2U8YnIgY2xhc3M+ Jm5ic3A7Jm5ic3A7d2hvIHVzZSB0aGUgZW5kcG9pbnQgYW5kIGFyZSB0aGUgbW9zdCB2dWxuZXJh YmxlIHRvIGF0dGFja3MuJm5ic3A7PC9zcGFuPjwvZGl2PjwvZGl2PjwvZGl2PjwvZGl2PjxkaXY+ LS0gPGJyPjwvZGl2PjxkaXY+U21hcnQgbWFpbGluZyBsaXN0PGJyPjwvZGl2PjxkaXY+PGEgaHJl Zj0ibWFpbHRvOlNtYXJ0QGlydGYub3JnIiBjbGFzcz5TbWFydEBpcnRmLm9yZzwvYT48YnI+PC9k aXY+PGRpdj5odHRwczovL3d3dy5pcnRmLm9yZy9tYWlsbWFuL2xpc3RpbmZvL3NtYXJ0PGJyPjwv ZGl2PjwvZGl2PjwvYmxvY2txdW90ZT48L2Rpdj48L2Rpdj48L2Jsb2NrcXVvdGU+PGRpdj48YnI+ PC9kaXY+ --b1_4ee483934c814a7546b5f65a04ac0a52-- From nobody Fri Jul 12 00:55:29 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 30DAC120128 for ; Fri, 12 Jul 2019 00:55:27 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.598 X-Spam-Level: X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id r3JMtMksVE2q for ; Fri, 12 Jul 2019 00:55:24 -0700 (PDT) Received: from relay2-d.mail.gandi.net (relay2-d.mail.gandi.net [217.70.183.194]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6BAA8120096 for ; Fri, 12 Jul 2019 00:55:22 -0700 (PDT) X-Originating-IP: 95.91.252.197 Received: from [192.168.0.12] (ip5f5bfcc5.dynamic.kabel-deutschland.de [95.91.252.197]) (Authenticated sender: henry.story@co-operating.systems) by relay2-d.mail.gandi.net (Postfix) with ESMTPSA id 7507D40005 for ; Fri, 12 Jul 2019 07:55:17 +0000 (UTC) From: Henry Story Content-Type: multipart/mixed; boundary="Apple-Mail=_B291E1EF-AAF9-45E8-BCF5-E52D447CB525" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Message-Id: <42C8C6D3-FF92-4968-8329-E3DF3B6A4722@co-operating.systems> Date: Fri, 12 Jul 2019 09:55:17 +0200 To: smart@irtf.org X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: [Smart] Rebuilding Trust on the Web X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Jul 2019 07:55:28 -0000 --Apple-Mail=_B291E1EF-AAF9-45E8-BCF5-E52D447CB525 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=us-ascii Hi, I would be very interested in feedback from this group on a proposal which I first discussed a year ago and which I have summarized in this pdf on how to both stop Phishing, as well as increase trust on the internet. I think this addresses a import missing piece of security infrastructure needed on the web if we are to get back to sanity. --Apple-Mail=_B291E1EF-AAF9-45E8-BCF5-E52D447CB525 Content-Disposition: inline; filename="Web of Nations.pdf" Content-Type: application/pdf; x-unix-mode=0644; name="Web of Nations.pdf" Content-Transfer-Encoding: base64 JVBERi0xLjMKJcTl8uXrp/Og0MTGCjQgMCBvYmoKPDwgL0xlbmd0aCA1IDAgUiAvRmlsdGVyIC9G bGF0ZURlY29kZSA+PgpzdHJlYW0KeAGNWsmS47gRvfMrYF/MimixSErU4suEp23HjJewJ7occ3DM gaJQEt0UqRaplst/6R/wtzgzXwKEVFJ1RR2KiSUB5PIykdAX85P5YlL6K1ZFki/NcpYly5U5WvOz ac3jxz4zVW8y+esrGqcD9jRh7oiGiWiSJlm6Wi2LmWlo4AW5M8+yUpEmy/liVZhinsxX+So3s9U0 KWazzCyms2SarzJaOwrX5s2lhtb+Qpvgz8wUC7OYz021N98/mRwD9N/T3jw+PfF+n57NP0388WVt jw9RUZh48slWp2M9vJjn7mhK89dTM9SHrimP5twdm82D+cU8/Ymn55ge/+rBPP3L/OGJtk6SyFkS afRqJwV1yE5k4OUuZ2nY58TpjhRdDibxg1GmB8W/6yP90J3Ng5lks0WyMPGm80QUn60nqMeWTUCe 62EXkMMuHNvU+3rofXcUd8+eMHFjtxesymqouzYYUIdEGXRsm25dNnVvN+YhclsWaQeDzjtSkcmW Jg63VLekpn15tVLZhpx6Prxo7YbsM2chb4kzivd1f71UtkhmJv7cdmeIBHQLSYNYd7rljT3238lh uCOKnXYwTLUDQrUDwp34XDpGnomJD6c1CY3EQuuT2DBj2JVDMGYoP0Nc6FV9XDLvD13b1+u6Yasf ObH935dbOvumGUbkWWfdTi7CInOiFcwEVF++iExAPcHUQOy7UzvU7dYNjuLeuaWfXnVtxSYxYZto RQeYjEPiWw0YRN0O7OaYYEVM6HDSpVXJcNz+nlV2GNPac/9h7NxYe2BhoZOHhr0lb+eOyRGi3RJd dO3BZ9uIZ06zZGVi4TjBtx4KhCU5dPu64q2hpep6OlukVL0/dOJZrnstKsDQw44MSOWMFggP38E6 Ubypt/UAB0cvFn55MAtyA5HMaw7nXV0JnqBr93LwOFu3m1M/HGtheU9US4eMd7wzAn73XVXboba9 cZq0pm4r5z0l+e62eTEbe7DtxrbDB7Nn3Q50eoL4g4yLYtvzOFP3/Yn6OlNuNo5D3yfvA34JQVEQ guZzh9cuQkisdOB+Ga/mxU00emUaf3FQm6cpw3v/0g92DxdAS1W2bQcLR4McmO0VZN14uNYWwHXI 47B76euqbEhy7BM6kc2J0KKxpHLPTgDXj9mTYuEqmEN25ARJoKIgHg4gpxRgv1hJLPGeYczehB9S gBpG2UoUkmNl80WSmZg0y6ABotqV7RYIqb0a8bSbXOlxbVv7P/EonWS/ls1JYk7IV4MhJh66gewM xu3Wasrz2p2ezO/YJ+KllNHkJg729COiKhghTuJ7XQo66S5IYYLQjj2pnPjdE9j0JuiYa9Cx5CvQ QraiOLWrNxDOinz8WTff7WWz3OSNiEabmJCot19OlnAZguFGwI1w04CleCNTbvDEiXlqb49fLQeh iYxtuqocNEcQzvalA15Lt6KVfLeinTehhVLBah9RangHWtSC1s5gOYSrzS5ZYbSc5DN5KuSO8y32 B6FEF+wPQpWtehD6OLYdw5bDqSUY5nPqhFqsTQlOybqT+rJwONb9ZxWijiGRO+WUlQN07WM/8hsr CRXIG4O1IKrfsMLu2U7qIOxCVK9Qqe9IW+rd9bYdNLpT5hs/MdLy+ZhgKBopyxkc/L+ye3IaPw64 bOKOwIZTvIr8RVn8OM5XtQtn8uaOeui0vI5LhYQ4E+L56c9d0yA/Rp9TJc/qBzIyZs/SiF5njHyj eU8CXg4EyQc5TZEn00hxh79NjKDM+wFNh6hFKSDJkYZjuanZw8VQ0EwAIqcDtfbmf5PHOjTccaW6 tV8pjpNIKfeiVCidcQAZ+/9GGqQEBQEdjMeY6veLJBXdCulRXLFv+hO9kXQXy/ehd1lVViWYscsJ MhTySR6DSxkvKC3+vqCkXGQi7exagTF04bohW5WZ/YmykkN3hltgjLMdx/vUyI0CZGv1pDId8QQ9 gV6lT69L6DyeGtg9k1GMbTRBAnXH/4rFm9iNYBdzCKabDvvgkVGb0bIxAGgxJr4j9d/JZfX+7TXi 2+ure3Qxd3nYO5KYYqZwEV3AxatQ8/MDX9H1Npeu2AzZ0uh+G28pASPFUqGAW6ELtlUlPcoEg4Av OgQhBMMPx3Ir6OEHkyvaatdyauPbaO22Vwtw6yBPcIteLLCpCZL2JQGS39aN42gUUH678mt4qnCP +7HIcDeCF9P34Y73g+limiyi2CFyf7DV8HySI0sXAaskGkoojiq1qa/z3Sj+tbOdsXDiNQHY1sk+ K3CsGcvE/Fje0hiJvTqKpO8A2U3Z2V6k5WhRhhJVZ/9d8x3HM0NpQbv3digJxQniaMQ9n8pvQtCr mLapD003mg/ZppNnEySA1OwLJ/QtaINrZhBvOcPVZIi+KAi6PIgoFT4PYdgWH6CpTbeFlYIZXZdO 1XByOxDj5RnIFy/Z1G0/1MPJS51ZqyPdE0n2Jsz4YlnVyY1SVqf8npCMdo+UkEkTf6VaCYRPList mnIroRk2KCo7NAxMATs9D/pPlASOnQQX7bbcOslhiNaVQFRcyusPZUXKZ9+U9S2BosRRpTeloq5k FNr4fTiC7n7hInxGAYB7sksdQL6NeU35wlGGNpbNkrlXHYhXBSYZ8l+RDEZwhk+w6IZ7DTOQeZ5n uw5GqTAxhewHbqMshHeer/wFBMM4unt2DsTQtaf4EnBXxaIPiKYsuFbqB1LNcbwC+lZyBzVlKqFJ 8L0j3dnyfQnolQDzqSi/3FJSKSakDT4VRP9aTusGq+EqifMpEWSNyvk0ABv8HZnbKRHaleR+fE6d CSUo0dTt57BzeHG5PLiq/mQ01b1qZKOO1cWOyPHuItwtoc2WXLef5VSgvrj4cf7natgo9WdU6J9m +cpV/PNFniwLAk1X8/+7PXJydiqb6FhTFUNfBriukS+ofs9jqQq/moMNZcyPP+4z8/uOyuS8hC/t 00eRToul8ZvLcmqK3EL6uHCjYDKnODSmRhiQ4Z+crkKc4jLk78ToplP2OTY6dj26qRBYqeVNMnRS 5t1SnHS+j0aROdvm9XXgzg6yNKdXEnqtSJH06EZMvBuGQ//bx8eqm3SUc1IEabeJFm8eHyKngrHg f2eBnJxsmr1egE7qD0o+10nWSoCBY7CzpYSgla2/igjgyeiE8+KbLZT4eG8MXiDubGhKJ16EG3KP I1k5Wtb1sSK9RnnNkcElU37luZJbeCyKYsjLVDUaTJhCriMnlLsPVRAAQXpCSRi8nveHsqWKIV2t e5ts2RrIKEguC3oESk50/igviFcoh6BYx3LwSbEa3Q3b48clrYESoM4SCsK1RGvCXFpHlIVWbE6+ +fbnAARzoBzphG4cs3VZXWjq2zvM8iLJlvSA5mSc6/0hW9/T1I1zZtMiWaQBl9HVxjON9ueOxQGL 8Gwc4vIeHiDm9vhUTSXTiPRdjRrAm0V51OgVSIKsWyj3uMQiDrkCjCWeyTguKqj3s76do0ufu/SB 4wWXje2rY33AO5OTvsZWnRsci1MkFH28D11pZrwjeevnjxC3+MC4dCyWcjlaaxUIpG4PhF8wmqBh bakKJNZ/Y/QZ3i9pAro5ykguJKTXhJqGS/wDTchhMdfFszePKoU2f9Q8y5Lpajb3J3Zwkd+FCycw hjD+o395niVpzlwQzYLtsYVhd1xgZH1Lgoomp2ZQHhWBGfTQMU4G1GDcLYhwi2j527H3wolihVKn lbfd9cYZZ2mRpMVq6s/oJXXXXW9xyYqkWDAXZ2G+Qn77sB/FgPlBJQgDVybs7qPRqJFbJvwDKoIM s7zW8pYXwh5psUj71bgx2GloS3e+I73Dey7wDgzS1w4QhJeOk3vEQwfdzMTMQf3xwdAh6MY1svzH n8fvisDqP7Q1ehlCNodZznxAeZADycmkO+TFIejhadwUgMOxC6ZoXD6Ot2+FQ3MNh5zVUDlcX9jB ymEbFeLkksih8O3jcmD5JaLfM1zVOTm8jTdk73G39KtCFCWxpPDely/5qcVJkK9tLBe0cjl7u/sQ NogI0OvTsyhMz9Anqfw4z8seva4sp6tImoBvEkwUgD7MbeSjisJYKS3wE8bYr+m7HElMCyOdb4O6 ABo03YYM9GkeTzzl/jwuNpAkJxTE9KaG0eWJhCa/SvFSlE3dw9wsf5VcfUt3rCPoLpte6048E83b 7uSSpGfxGzQrAoLgrETUq318OHz67EWW0Jgt36oDDLuqusiAg0V9FiNcEsjiu+wJgxvGapjGMpfS xYC1HXgWWS/MFK14GMGbD1r8a7aSY37NAmvqz1afzmipKBYouKegsV7wpnNV9JqDF69c3g0I9MmO 8XaEBjqPWrZeZnC1lE78gmOCqU1HD51SewBN94+62wSj1cpl5lDvgRwy1ucD+ounMR/wYQRQDM4D /XAh4Ou8685+xfKpj90AP11RLsjsQQi68NXlIrFHXzgJeVCY1kfXab2ZzGYu9waDi72Hq7o6piox 4nure9onhByrEm/qUN8espwUhDRyLVknZZHc5Ayfv2/dC8V5uPPCsLmBkza4WU5Fh9E4uS9E5cCz uYtekUae+iomO3HPLbox9U6Z4n5vIOPGMGO5SMbP2OTfNO61nfCV9iKDh6yFzVF/GoK19SFXVguu p95/Lu+gC18Lf1P0VwWhLJ3y41sFv6VjgiYNSHRSEiFciU3dH6hoh4iB2yQmWTaOdlCH57YodoVI WcXpFcN9VLssOqATv7nBinzgyN+CXoX98BaEySU99/hrjDbhMsmEDy56ngsjwujRjHS2qgIUP0WT dsFLJac0lVIkSCpr27JG5WXMa81IqYeCHP2KMzPzPEmp1LMyM8qUpQ5FP1p7X6Fn7sv1byg8ip85 7+HoSdI/GoeWoRmMYfqGi7gwy4kv3dM5obCbJHySeU/pytXIUoKZM34d+/GTXFrS6NNHjyET+omq +31rtpyyaMSqs3SO6hFVQ+jHDHOzN3m2RL3HNTXmE6HRT/8HmC40JAplbmRzdHJlYW0KZW5kb2Jq CjUgMCBvYmoKMzcyNAplbmRvYmoKMiAwIG9iago8PCAvVHlwZSAvUGFnZSAvUGFyZW50IDMgMCBS IC9SZXNvdXJjZXMgNiAwIFIgL0NvbnRlbnRzIDQgMCBSIC9NZWRpYUJveCBbMCAwIDU5NS4yOCA4 NDEuODldCi9Bbm5vdHMgMTYgMCBSID4+CmVuZG9iago2IDAgb2JqCjw8IC9Qcm9jU2V0IFsgL1BE RiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSSBdIC9Db2xvclNwYWNlIDw8IC9DczEgNyAw IFIKL0NzMiAxMCAwIFIgPj4gL0ZvbnQgPDwgL1RjMiAxNCAwIFIgL1RUMSA4IDAgUiAvVFQyIDkg MCBSIC9UYzEgMTMgMCBSIC9UYzMKMTUgMCBSID4+IC9YT2JqZWN0IDw8IC9JbTEgMTEgMCBSID4+ ID4+CmVuZG9iagoxNiAwIG9iagpbIDE3IDAgUiAxOCAwIFIgXQplbmRvYmoKMTEgMCBvYmoKPDwg L0xlbmd0aCAxMiAwIFIgL1R5cGUgL1hPYmplY3QgL1N1YnR5cGUgL0ltYWdlIC9XaWR0aCAyMDAw IC9IZWlnaHQgOTEwIC9JbnRlcnBvbGF0ZQp0cnVlIC9Db2xvclNwYWNlIDcgMCBSIC9JbnRlbnQg L1BlcmNlcHR1YWwgL0JpdHNQZXJDb21wb25lbnQgOCAvRmlsdGVyIC9GbGF0ZURlY29kZQo+Pgpz dHJlYW0KeAHsnQWcFdX7h7Hzp38LAWkBRQEFVCxMUFREAQkJMWikJCUUURAQpLu7u2PpkF4alu7u Luf/3D0yjvfu3s179+7d7/3s53LmzHvqmTuHme+88x7L0kcEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAE REAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEREAEkgqBPXv2NG/evJU+AU+g devWjRs33rlzZ1L5aWqcIiACIiACIiACIiACIiACIiACIiACIiACIiACIpB4CFy4cKFo0aKJp79J uqcTJ07Mly/fvHnzkjQFDV4EREAEREAEREAEREAEREAEREAEREAEREAEREAEAo/A6dOna9asuWPH Drr2999/B14H1aN/CUybNq1FixZHjx6dNWvWv7lKiYAIiIAIiIAIiIAIiIAIiIAIiIAIiIAIiIAI iIAIJDSBS5cuFSxY8OzZs3REYntCH40o2g8JCalYsSJG27dvl94eBSztFgEREAEREAEREAEREAER EAEREAEREAEREAEREAE/Erh8+TKRwLds2UKbEtv9CD42TRFAplatWqak9PbYEFQZERABERABERAB ERABERABERABERABERABERABEfANgevXr3/66acKI+MbuvFc64oVK77//vsbN25QL09GpLfHM19V JwIiIAIiIAIiIAIiIAIiIAIiIAIiIAIiIAIiIAKxJYDY/ttvv4WGhlKBPNtjS9FP5ZYvX16qVCln Y9LbnTSUFgEREAEREAEREAEREAEREAEREAEREAEREAEREIEEJIB+u2TJEjogsT0Bj0J0mt60aVOd OnV4PuI8WNLbo4NONiIgAiIgAiIgAiIgAiIgAiIgAiIgAiIgAiIgAiLgUwI3b95s3br1okWLaEVi u09Rx7Fyjg5i+4cffuhZj/R2TybKEQEREAEREAEREAEREAEREAEREAEREAEREAEREAE/E/jhhx8m TZpEoxLb/Uw+ps2FhYXVr1/fzbPdVCK9PaYwZS8CIiACIiACIiACIiACIiACIiACIiACIiACIiAC 8UgAgb1du3ajR4+mTont8QjWF1UdOHDgjTfeMAuketYvvd2TiXJEQAREQAREQAREQAREQAREQARE QAREQAREQAREwG8EOnToMGjQIJqT2O435rFraOfOnXXr1r169WpkB0t6e+zAqpQIiIAIiIAIiIAI iIAIiIAIiIAIiIAIiIAIiIAIxJ1A9+7d27RpQz0S2+MO06c1nD9//s0337x48aKXIyW93aeHQJWL gAiIgAiIgAiIgAiIgAiIgAiIgAiIgAiIgAiIQGQEiCHTpUsX9nqRcCMrq3x/Eti9e3f16tUvXLjg vVHp7d75aK8IiIAIiIAIiIAIiIAIiIAIiIAIiIAIiIAIiIAI+IIAYnu1atWoWWK7L/DGY50coPz5 8585cybKgyW9PR6xqyoREAEREAEREAEREAEREAEREAEREAEREAEREAERiA6BkJCQ5s2bYymxPTq4 EtBm//7933333fHjx6PTB+nt0aEkGxEQAb8RuHTpkv6X8RttNSQCIuAjAqdPn/ZRzapWBERABERA BERABERABEQgOAgsWLCgXLlyjAUZREpIgB/T4sWLnzhxwhysKLsqvT1KRDLwKYE1a9a88847efUR gVsEnnjiCSR3n/7qVLkIJDiBQoUKscDKrV+9/g02Ai+88ELmzJkT/GemDoiACIiACIiACIiACIiA CAQygRw5cjRs2LCqPomBwDfffBP935L09uizkmW8E5g5c2aNGjXivVpVmEgJXLlypVmzZjwxvHz5 ciIdgrotAlESCAsL++qrr3bu3BmlpQwSKYH58+ez1FGuXLkSaf/VbREQAREQAREQAREQAREQAf8Q +OSTT/zTkFqJOwHzJkI065HeHk1QMot3Aj179hw0aJDel4l3sIm0wvPnz5tAWJ07d5benkgPorod JYGFCxeWLFny3LlzWGr2ixJXojO4ceNGnTp1xo0bR89z5syZ6PqvDouACIiACIiACIiACIiACPiT gPR2f9KOY1vS2+MIUMV9TeDatWsDBw5s0aIFDUlx8jXtRFH/vn37SpQocfDgQXrboUMH6e2J4qip kzElMHnyZB4qxbSU7BMLAR4atm3bdsKECabD0tsTy4FTP0VABERABERABERABEQgoQhIb08o8rFo V3p7LKCpiN8I3Lx5s0GDBiwJ4bcW1VCAE9i6dWu9evXOnj1r+im9PcCPl7oXOwLVqlUbMGAAZXnI qOeMsWMYyKVYpP7bb79lNjOHmG/p7YF8vNQ3ERABERABERABERABEQgEAtLbA+EoRLMP0tujCUpm /idAgO66devi5EnTUpz8zz/QWuQ3sHnzZv5/uXr1qv17kN4eaIdJ/YkjgQsXLvz4449z5syhHvt3 Hsc6VTygCBw5coQwQUjuzkMsvT2gjpE6IwIiIAIiIAIiIAIiIAIBSEB6ewAelMi6JL09MjLKT1gC Z86cqV69+oYNGxK2G2o9cAjMmDGjVatWRDx2dkl6u5OG0omdwO7du8uWLRsaGspAJLYn9qMZYf95 ksJCz6dPn3Y7xNLbI8SlTBHwHYGRI0dWrVq1hj6JnMD333/PofTd70Q1i4AIiIAIiEBAEUgsevuJ EyfM/Wz9+vW//vrrBGFIAE90xQRp2jQqvT0B4avpyAiwPuC777574MABKU6RIUpq+YhUZcqUYdRu Pwnp7UntlxDE4z169GjRokXNL9ztdx7Eo05SQ5s3b95XX33FkD2Pr/T2JPVL0GATnMDcuXPLly+f 4N1QB+JOgMcFrHVy/fr1uFelGkRABERABEQg8AkkFr39wQcfRNaD57hx4wYNGpQgYCtXrpw/f/4E ado0Kr09AeGr6QgJ4NP+ww8/nDx5MsK9ykyCBPr06dOtW7cIBy69PUIsykxcBFBfR40a1ahRI0+3 58Q1EPXWC4E///yzd+/ekRlIb4+MjPJFIN4JhISEtGjRIt6rVYV+JsAaT82bN1+6dOmHH3546NAh P7eu5kRABERABEQgQQg49XbuIvHfnjp1KstC2f48BATYsmULVzvEKbUznV0l8+LFizg0rl69+tq1 a2YXwZx5eE3k3r/++ou9dkESly5dWrFiBeI5//NiTA43rRgj2e3YsYMc0ocPH16+fDnFseHDcnt3 3333vn376Ax7TStkYkBtK1eudPYNe5zhCblpOsCmW2/Jp1emflqnNttr3XTPrO5HW/Rz2bJljIV8 SuHplDdvXtNnU3DTpk04ubHLZFIQYzNAimNDT6gEA9LGho7NnDmTAdIxk+nsnve09HbvfLTXzwSY Gd555x375+3n1tVcABJoHf6hYxFObtLbA/CQqUsxJTBt2jRijET2I49pbbIPKAJm4uJib+zYsV4O sfT2gDpq6kwQEzh27FixYsXMLVUQDzMpDK179+7GX+69996T3p4UjrjGKAIiIAIiAAFbb0c0+/nn nx955JHPP/88VapUvCiNmr1z586sWbO+/fbbX3zxRcqUKXFc9IRGJvZcDqG8ZcuWjTXysLn33nvz 5MlDzkcffUTaFERh/uOPP1KkSFG4cOFcuXLRhNG6kyVL9uWXX2bKlGngwIHI0dmzZ6ds8eLF06RJ wwqMaOkFChS47bbb3nrrLcKlUvbll1+mCfbSedI0QQ3Dhw8nE2PiGNBVnp7T7XvuuWfChAnOPqMQ moJ0+KmnnloT/qG40fDpIX2uWbPmwYMH06dPT810g9rQzGfPnv3EE0/Ah6fz3JFNmTKF4nTg9ddf z5079/79+y9fvswQPv300zfffPOFF15ImzYtfr/Qe/XVVx999FHGxeUiNVMtPXzppZeIihOhJOXs rVtaersbEG0mIIFJkyY1btw4ATugpgOKAJNny5YtTVjOyGY26e0BdcjUmZgS4GE6P/LOnTtTMLIf eUzrlH1AEUDcq1OnDpd83g+x9PaAOmrqTLAS4A3KChUqmBu0YB1jUhgX14eI7XzMYKW3J4WDrjGK gAiIgAgYArbeTvhlZGdkYfJRhtG38fpGEybMGjncWnLZgwG7nOjwOb/vvvtGjx5tMkuVKvXMM8+Q fuyxx1C8jeP3kCFDHn/8cdzXcZunBjRzDLhvRVdHYEemRhUvVKgQ8j75v//++7PPPkuCDy/z4tbO f9OksTFe6CjzSOLkZM6cGe3dZWdZyPJFihTBcsSIEUSeMQ63GzdupDlUQWNjvhH8X3zxRZOmY02b NsUjPUOGDH379iWTgrfffjsNcVXw/PPPG7MxY8YQNJ40wQOJU20yEd7x+TdpECGtgwjxP0eOHGRy cYjkzgMCY5AuXTpiD+IJ/7///Y+3AMhk+OjwZmjGJjrf0tujQ0k2fiDACVKvXj3TkHQnPwAP/CZ4 UDt//nz6ye8hsp+E9PbAP47qoRcCpUuXXrVqlRcD7UrUBHC5xBciOmGCpLcn6gOtzicKAlxI8KYJ t0v0NrKLikQxEHWSW+AuXbrYHKS32yiUEAEREAERCHoCtt7OS14I4IzXXNUgpJN++OGHFy5caDK5 B0E2X7BgwdChQ/H/YcUTfLwJI+MU4ZG7kd+RkbFEWrFrwwYPcAr+3//9H6XwgeSDdo0rOMZ33nkn u2xjQs3glN6rVy/c2pHZjQ5PwsRvt/V2nMmJ5W56y5u/aN1UValSJTpmqiKOTcaMGd309hkzZqCo Y0ZXt2/fjiWfKlWqGHWdBwc43vNMAeGIXuFWgdv8tm3bjBmbRm8n7g0jos9UwkCI45o6dWpsAGhG TU+w7NmzpykI5B49ejCQfPnyoe3jHce1BzbsjdE1pPR2w1PfCUiAX2zX8E9Mf70J2Gc17VMCzMw8 8TQ6pPcJTXq7Tw+EKvcdgV27dnHZEJ0fue/6oJp9SoBrXXP1SCve5zEMpLf79FiochHgTRPeBd6z Z49QJGoCzKXchteuXZtR2POq9PZEfUzVeREQAREQgRgRsPX23377zU7b/yfi5c5tptlEb3/yySeJ PT548GDiolSrVo3/QxHGH3roIVo0NriCo7cjLBN6Bd91Ox8b/OfbtGlDLBd8xfEGR7GvVasWObiX 33HHHbaveL9+/e6//37c3du2bdu+ffu77rorMr09S5YsdMC0SzfwSiJN3BujeNO0p96OASo3fuY/ /fQTPudUjrs7lqGhoYjwXN3hnc7b4qbbx48f/+WXX5DH8bEHDpm23s5TBsoCgYHw4ULCBNYgnI4Z Na3ghG+v68qDAx4fUAODnTVr1scff0yd1GzcNsiP5kd6ezRBycx3BAjExCRA/ZxNfHzXkGpOFASY xIjcZW6Ko/w9SG9PFMdUnXQjwKt5vExn3rCL8kfuVlabiYIAvpc4TpiuRucQS29PFIdVnUykBHjX uHLlyppyE+nhc3ab+2vu9J05pKW3uwHRpgiIgAiIQBATsDV2HL+JkWJGioM3d5fnz59/+umnbdGY ODA4dbMAqJPGokWLjO+6yUSEJ245aeLJNGnSxNy2sDYoMV6Qr1lljIRdnIjoa9euJeK6rbdjjyBP XHdjgx84urR3vd1YGr2dbnPHVLJkSZNJhxH/jX87u4w/OXK3ieiCDfFqzMMC0njC//rrr4yFAO9s 4n9uAniSJuzMAw88QMLW24GAJXo+mXxwgMeeGDJuervR3jEwejs88XIPL2ERRYdXAPDPN5vR/Jbe Hk1QMvMFAdyYGzZsyFrDVB4dRcIXfVCdAUWAt5aIphWd8Aum29LbA+rwqTPRIcDjxRj9zxudOmUT OARY5h43j06dOtGl6P+/Jr09cI6gehJkBLjp4/7RDk8XZKNLUsNZv3592bJlTYhX58CltztpKC0C IiACIhDcBGy9nZsOPK4RzJcvX16iRAniq+CMjVc2IjyXPcRCJxaKkbKdtyTo2MR1YReaM8o2uvSw YcMght5OLBqCsVAbgda5XaUUMjVrjxK8ZdeuXdzgsI4qCVRoW2+nICul4mTOoqsDBgygIG7kBG8h H6d35GsuwwgRb+K3G/92c3SM3s7/6WjpaOzNmjUjwkzevHlRxY3ezqqmPGGnD3/++SdPBBgOS8Ey HHv4dBtjVj41FRIKhuVQ161bh2hP/MAPPviAfIK9My7i2JOmIG7qjHr69Oko5+PHj49Sbz916hRu //jP8+iBXvEoIaZvSsborp9oOTxcMMPRtwjEkQDrL/DYiLOGepwzQByrVfHESwCnX2K2M61F/ych vT3xHu6k2XNe2eN/7c8++wwPBH2CjwDr/nCdGYuHyNLbk+aEoFH7mgA3lYR1MvdZvm5L9fuUADfI DRo04IB6tiK93ZOJckRABERABIKVgC04M0Bcu1lLlFDkr732GlqKGTLxUshBfP70008JHeApteHm TaxyQs3gIm5HLOcWlYgxrBmaIkUKgsMg3ZvaEIFpInny5FmffdZ4L6C3I4avXLnSGBA3nhuZVKlS Iarv3bsXodsV9u3vv1u3apUhfXp6SCgYFHuMiWuxiNjy4REtiCrP0q7mv/WFCxa88sorNN2uXTue BeB5jnHBggV5X5jO05PSpUqloLvJkyPII32Tyef8uXPo7UagZhNh/+ty5eg8XaV7hw8dohLExvff f79ixYoY4NL5Qf78GADHxIoxzwLw4ccSX/qqVauaNJtEzuGJAImpU6fyygD6PI82jK87VZEfzY/0 9miCkln8EiAY1DfffKNVq+KXaqKubdOmTTz6jOkQpLfHlJjsE4oA/zXzBJ/H/VwCJVQf1K4fCCC5 00qMrsSwl97uh0OjJpIgAQKWjho1ioHH9JRMgqwCeci46HDXwA1+hMdRensgHzv1TQREQAREIH4J 2Hq7/X8ioU5ME3YOGnVkkcZtG2JNcHNKQZNjx2+/SLyYG38vP3py1dFT/K05fmbNibPzduxdfvj4 2pNnVx07terY6Q1nLpJvDFaTOHZq0d6D689cIDP01Lnlh0+wi8TKIydXHz8deur8utPnVx495TI4 4TJ2VXvizLrTF0j3nzL9hyY/bb18ff3pC7M3bbvn3nvn79q/+thpjENPnjPNUcOC3fvpA/lUSCaN jlu64qkMGf+pMLxXmC3cfWDujr300NWroy6zdafOh1dC2tWTBbv2Lz1whASZRy+6czM0bEQmwUMB tHr7AUSMjqb09hjhknG8EMD3j5ghXDxTm/1jjpeaVUkiJcDrPIiQ5n+KGP0kpLcn0iOeNLvNf9O8 VVe9evWkOfwkMmo8SWIxUuntsYCmIiLgnUDz5s3NK9Ixuq7wXqf2+p8ALjq4wJlIgxG2Lr09QizK FAEREAERCEoCtt4ev6NDb+/fv7+pc+nRk+lHzMw+NsQPf0//3iXZXXc/XODzVN/XvzPLc49/WOiF iQu9t/v88OlPflf9thSpUpevmX3sXO/GEe8dE/Lc6JBBYXtvxMRZPRbApbfHApqKxJEA0aWYJXiH hStkfUQAAmYZjljcEUtvj+PJqOL+JIALwdChQ6W3+5O5/9uS3u5/5mpRBDwJ8MpzTJdR8KxEOQlO gOfUNWvWZK1bLhEju0rkMvJQ+GvjCd5bdUAEREAEREAEfE3AR3o78cmJfG46v/jIiZRDZzwzak4W 3/89M2Zuhvb9UtZo9MRXlVM3aZ1lxKyoGx0+M2WtJqnqN88ybHrUxpEMIdPIOf237mFNVp8eL+nt PsWryiMkQAClCPOVmWQJGIUqsjspL1ikt3uBo12BRkB6e6AdEV/0R3q7L6iqThGIEYHRo0ezRiqh OGNxXRGjhmTsUwK86s6NKkuk0YqXQym93adHQZWLgAiIgAgEFAEf6e3OMaK3pxo249nRIX7+Q+GP UYsxtbcrp+A/erv8250HXunET4ALZoLJJP5xJMAIvNxrmN54N2BvHA2ivHWNtQFLRccOqPT22HFT qQQhIL09QbD7uVHp7X4GruZEwI0Aq6NWqlSJTO/XPG6ltBloBAiXWq9evYMHD0Z5KKW3B9qxU39E QAREQAR8RyCI9XZbD/d1Qnq7736fqjlhCXD7I709FofA3DZ6uXn0bmAXtBNufbDz7YSbAZuxltPt qiKrQXq7jUiJICbg1NtZD50lzlk+NXbjJZ5tnz59rl27Frvivi7Vu3fvJPt2v/R2X/+6VL8IeCGw ZcuWKlWqEITEy8WMl+LaFSAEOHz169efNWsW/YnyUEpvD5Cjpm6IgAiIgAj4gUAg6O3PjA7hj1gu z4zCB97llO7KCY/c8o/PeQw91X0tsLvVL73dDz9UNZEgBLhsNnp7lNfPCdI9NeqFAIfMfNxsyDQ5 t/b/s2mbuRnY+XZCeruNQokgJuDU28+fP58iRYoJEyZEf7xI9JwpixcvpsiiRYsyZszI6vHRL+5P y7Rp07Iutj9bDJy2pLcHzrFQT5IagWPHjr3xxhtJbdTBN14uGhs3brxs2TKGZl9Aehmm9HYvcLRL BERABEQgyAgkuN5upPW3pyyqtWxDiZAVWUfPeWa0K9L7yxPmV14cWmlhaK5x8/5R3f0ekcZNV49s U3p7kJ0UGo5NgCtn6e02jcSVwDs9Qgd1+24omgaeo5be7slEOcFHwKm3c9ZcvHiRHIbJN+eOGS8J Ns05RWL//v2sE2d2oa4/++yz06ZNYxMDnNvtU+/kyZN79+7l7XtjadufPn3ameNMU5bQuHYN9i6K sFaO6Zhpxe4bNs5G2TQGdiWUMn1Ily6drbebTNvGbihYE9Lbg/XIalwBTuDs2bOsRm0mzKQz4QT4 QYld93r16jV48GDKRvM4Sm+PHWeVEgEREAERSIwEElxvR1rPMSZk4aET127ePHLp8rcLVqceSrD3 Of227SHn0vUbXTftyjhidtZwp/fIFO+EzZfenhh/+epzdAhw8RyY8WQQrLhi37x5c3RGYWzWr18f lJ5UnTt3HjlypCcHZDfPex+TY76jaeBZifR2T9rKCT4CKM9Dhw5FEWJo+LdnyJBh8uTJpJ977rkR I0aY8fbt2zd//vxYErSW/Lvuuuv222+vWbMme3PlypUsWbK77767U6dOS5cuZS+KPWcTFd5xxx1Y vvDCC0ePHjX1/Prrr+Rg/Pnnn2NmMp3fn332GTVnypSpdevW2bJlM7vatWt3zz33UAphn4AwdPK+ ++4jOIzZyyTJLmcMHJT5e++9l5nQGNDDBg0akLb19hUrVlAhaxd6nvWmSPB9S28PvmOqEQU+AWaY PHnyHDlyhK4mndkm8I9LLHrYvn37nj17xqig9PYY4ZKxCIiACIhAoiaQsHo7zu2ZR85+Z8qiazdd jl6Xb9zos2VPhUVray/bsOjwCa7B+Kw8dvrpEf8EmUlYXT2y1qW3J+pTQJ33QoATMDD19lOnTqGT bNu2zUvn3XYtWbIEmcstMwg2v//+eyQ4z4FEKKc7zWJtIL3diVHpYCXgprcnT57cxJMhMgw6vBk1 OsPbb7/NPPn111+XLl36+PHjGzduNOFZeBr49NNPo34jgxNPBrn+0qVL+AFSD+/dr169msd/Rsxv 2bLlY489hoc5RQoWLOh2VcZ5WqZMGcR5DGbPnk3l//d//0frHTt2RDxnWkOzIgDyQw89RGbRokWZ GI3XOlr6iy++6Awav2vXLh4BhIaGms7zCOCHH34gjd6+cuVKHgo89dRT9NDsTSLf0tuTyIHWMAOH ABMm0xfPJZl/aumTyAnkzp2bnxbHNPo/MOnt0WclSxEQAREQgcROwO3OzhfDWXzkRKphuKwTm939 j4Dt+LdnGxMy78DRGzeurz1+KuTgMV7VPnft+swDR/eeO3/56vVOG3fi305ZxHnPGuwcE5cG9T7T iNmZR87JNHIOaf5cYviIWZhlCk9nGekKVhO+d06W8Byj+ZucZ2MVKF56uy9+NqozEAh46u1oUMgy Tp9J+ongQyYrXpk+U+ry5cvIREg9YWFhJhNny61bt7oNCk9OnC2xdObjqMnygvbVOy3yYZN1tex4 C2w65WI2N23aRMBkZz3Ec0DXOnHihMmkh3h7kj58+LBbTyhImGWcP+1G6b8d7YHWMbB30dCGDRvs TSokjXcroSScrTvTGDAiZ45J79y5E7nMFsRolLZsMxp1bpIPYTvH9IpMblr/+OMPU4pMKjFpGuVj 0hF+x9pAenuEPJUZZAQ4m5z+7U8++WRkejsDR+jOmTOnWXWUaYpTlfP3+eefRyFnr9HbmbKyZMky aNAgA4ppc8yYMbSCgG87zK9btw5J3PZ7xxK5Hl2dWcuUokuPPvoo6fTp0xu5njTNUWrSpEko6ri4 M/VRbcqUKXGtN6XMd2R6O88Cfv/9d1rBsx3LKGcGZ52JPS29PbEfQfU/0RFghmnRooV9rZLo+q8O Owng8uHcjE5aent0KMlGBERABEQgOAgktN4+J/OoOe9NWfLHuu3bTp8bsn3foYuXDNj1J8/N3H90 +bGTNZeuc4VwHznHixiO4o10X3lR6NS9R3pv3fPF7OU9Nu0esn3/72u35h4/v/maLUO37+uwccer ExY0WbV56PYDHTbs+HjG0sYrN+caNz/rmJBGKzaP2XWwTej2PBMXoNXbGn40E9LbA/NcwJkQ3cMW MwOzkwHeK26LnPHbp0+fjpiDOoRw/cUXXyDyIJgXK1bs8ccff+aZZx544IFhw4ZRBGkd8adSpUq4 d5L50UcfEfPkiSeeQCbKly8fBvilY4BTD1Xh7WnrVNu3b8chM1WqVOSjJqGQwwcPqHLlyr311lvk EFHBKEjo29SAWI0BcSPpAG09/PDDbdu25YjTBJkPPvhg1qxZ2VW5cmXUJ2qjM/Xr10+dOjWZH3zw gYFPgGX6QEAGMhkUQZLJp6yJHUEa73HuDtDKWNsLL9M0adIgmuEIah4loIwVKFAALY5qX3vtNSR0 U639jb8rPWf4RIEoUqQIbbEL/3zmXirJnDkzZWfNmkUmyg+s7IL0NiQkxN4kQQ/79OljckBKZ+iV rbfjtkq3CTFhDNjFBxTOGkjbOdE0cCvOpvR2TybKCT4C0dHbOQ3xb8eS2eDdd9/FyZyZpHnz5pzg TI/o7ebUNno7iJjBTDgX+zREdGLiwkWQ6C58mAyZAO2QLxThfzFKkTBFZs6cyRzCLIeXu5mjTD4z s3FNZ/JkrmM2IMftvz83vZ3Jp06dOtTMRIQxwWp+/vlnNpPUR3p7kjrcGmwgEGDK+u233yIMnBUI 3VMfYkSgWrVqMbLHWHp7TInJXgREQAREIPESSEC93Xik55+2eO+5i6hCMNxx9sKonftv/P33qStX h+/Yf/KKy1v16s2/Z+w/mm3MXGTtyARwdhHg/cflm+r8tbHIrOWDt+8bsn3vu1MWPztqdoUFa35a tSXzyFk1lq5rsWZri7Vb809fUn7hmsYrNnfcsPPl8QueGxPSfM22MvNWZRk12yXpI917daT37IP0 9gD8/XM9X758efQEhI4A7F5i6RIY7XgyaErIuchHPMhAUccZEjdv9G2iIuCBiTMnCg86PEITAhEK UqFChfAtx13TpFkbCw9wIroQcgH3eKIEly1blkxWy+LaG6UaJl999VXdunXJRAomXjEuo2QiASE3 oRTR7pw5cxCjyMSPFL2dGAhI9/SEppGtcAFFo164cCH3cXhsjhs3jnrozKuvvkqH8XWnCHI9ivqe PXv+97//Eb0Bn/Y777wTr076T09y5MhRqlQp6kc8nzFjBgk+HTp0YCxU1a1bN35R5KBiUY/RplDI +aCtUW2jRo0I0RBe6J8vyKC/NW7cmC7hzvrOO+8gbbGPIoyaIrTbr18/wAKHMRphDYMFCxZgSXEj ppnqeKZgFqViE20tb9687EVv5yisXbuWSiZOnMguU4QOO8uaGkxOjAw8K5HebmDqO7gJRKa3cxoO GTLEjJ3p8f333+ddGM5fpgXmJQLFMPkwObDpqbc/8sgj9oM8HhoOHDgQM56j4ejOHMXDO16EIYg6 84nNlvmQ2dLexD3exJPhOR0nvslnlmNyM+73hIJHQ+7SpQtPPNnrPH+Z7jBbs2YN+cwPPABlviXN dEdZ3vph/mEuNXUmkW/p7UnkQGuYgUOASUl6e+Acjjj2RHp7HAGquAiIgAiIQHATSGi9fXaz1VuM 2M7SqOjqPTbvwrP9r6On2m/csezIiRs3XTr8wYuXC834K0q9vdHyTSN27u+1ZRfh36fuO0JtrULD 6q/YUHbeamLIfD57Rbctuzpv2tk6NKz7pl2l563uuHHnK+MXINS3X79zyZETyO8vjZ+Pv72nou49 R3p7AJ4jqBYIs0ipeAMGYPcSS5e4LbL1dhRg9BlkbSPgIM4gCuHpbRzOyUTAQYnCBx6V+P777zeL eCIEcSDGjx/PkNGWsZ83bx6yD8I7CcMBuRsFCbmJTSRo4sagWeHwieRODmI1/u0kaAJFnWNK2ujt iPlc6mfPnh13UEqhouO1jtKFUIaajcs9faYt7PkYvd2kke6RwlCu0LqRmOiYySeoAk6epCPU28eO HYtaxeJQCPWIYJjx7ADdftSoUXi30gGCQmBgYkqYCukSOSbNd9euXamZBM8ISNv52MyfPx+eADRy HJo2EaFtA5OIUG+vXbs20ZsZhRHfzNHBPkK93VlhrA2ktzsxKh2sBCLT21nSFLdwZgA0dqRyXm+B QIoUKXgWyUxCKR71YkCCN1B45Ye9xr8dab1ChQq8EMTTNyZJ5jckcU5Y82yRssSB4QUWJgeKMBPi po4lUy7PAXnLhiJMgDxlM3o77b700ktkYkApHreZKDSrVq1iknzllVeYpsyhoZ9MlaQ55W+77bb+ /fvTeSZqGjJ6O/HbCQ7PXmZaotDQT1MwKXxLb08KR1ljDCgCTHrS2wPqiMSlM9Lb40JPZUVABERA BIKeQMLq7TiTt1233XhhTtt3ZOWxUzbwazdvzj10fPFhV+zlI5euFJ29Ikq9veHyTX9u2P7axAUE hB+yY98bExdkGDGryuLQJis3pxgyncTvodvahIZVWRSaa/z81ycu7LJxZ/Yxrrjuv6zeWnLuivTD ZxLdXf7t9iFIvAn8BnkxHw1TenscDyK3Rbbe3rdvX5RtI03boi5RCHiiYTZx8iQYAp6fqEbk44tO 6+jtCDgmTVnUbIRlNHBkH6LHmO4hK6FaIwERCwUZvHDhwmjsJUqUMEoITuO4cBtLN70dB3tEJ/zA kYnwjefDkoXGAxxLljLE956FCIlFY/zb77rrLuqht0bCQndCYDcO82YILG7IcoTYOPV2BHwUNsQo BDQEfGRw9hIiBq2eCDPUSet2B4oXL+4M1Y77PY8eTKN8I4tRllcA+GWaYDhk8uG3ah4MscQhDxro Hs8jcHM1e+1vp96O/sa46Ha9evUo3qRJE0aKRmcbx1pOj7IG6e02IiWCmADne4Tx2/EPJzwUkyGR ZJgceGmFqY/HZEjur7/+OhGxeKpIXCnOTc5KnlEyIxm9nYmRV3543YZHgUwgJMxcwffLL79M8CsT T8YEk2Gq4bw2OjkxqUy1TLCI+WbKYhrJnz8/bVEWwZx5lWNh5jFew2EipTmzSSdR7M2R4m0dlHli WzFlURtP68g3ejsJJmH2/vTTT6agKRLc39Lbg/v4anQBSIDpRXp7AB6X2HVJenvsuKmUCIiACIhA EiGQ4Ho7WveFa9dZm3DCnkPnrl63sXM9tuvs+dG7Dly/cXPX2YuFZi2PUm+vtWxDjaUb0M/R20ft Ojhq54H2G3a8M3kxYeF7bNk9MGxv3smLGq3cVGD6MnT4VyYsGLZj/7AdB5qv2YrZlL2HO27c8fbk hSyx6t2b3XOv/Nvto5awieXLlyP2orgiU5iP9PY4HhFOQ1tvZ0VRorWg4Zg6kcH37duHbmPHNMAr krgHCESINlHq7ejJdsAWVG4UJNQtjpq9mCCydsGCBWmLhoj0bhp109tpCz9SBGpbHcLJHA2cnthx hBD50cHQxnH7NOulUhWCNnIZejtSGI3iRGrqRy3HZZQ0AtSUKVNMJvIykW2Qr/EXtbV0vNyJk0Pl fBulC2PqwYueBP0xcvfevXsZqamHTLRxE08GUcvmZqLZ0z3MiJBDf3hlAFne1GNXxSYyHQMxtRFq Hh9+9taoUcNUhTOtUwmX3m5A6VsEYkfAqbfzJIuo6SZek6nNflxoV85bMwSz4t0ck8O5SYKpxl55 2bbEER2fc6cZaeYB+xGbKWsbmHd/zObw4cPNHGVseLPGrUVnWYrYmyRMmvdo0OpNbREa2LuSQkJ6 e1I4yhpjQBFgIgocvZ3LNucEG1CgEkVnpLcnisOkToqACIiACCQUgYTU28Mjt7wwdt7ns/76ZsFq wrzg025z4Hps3/kL1ZesK79w7UfTlz03OsS73k7Q9RfHzaM2Y5ZnwoJ3Jy95a9JiwsXkGDsv/9Ql OcfNI0J7znFzTSh48l+duPDdKUvemLjopfEL3pmy5K3Ji3B399KKp9JucqS320ctYROokUZmt7+j 1NvRJIn+QcRa3BFRSxK2/wHYOqehrbejGuE2iaskkWT++OMPtHfQIf4gIBOLAPkIp3Tkd8wQc6LU 21Hm8Q7FUxTndvTwVq1aMXyCorDUIFXhS08mgZE5KFQbmd6OPEUfWKMQlZ4EoRtwJkd9IsYCwY2J cI53PYHN0a6RxHkc46m3Y4n0jVc570QQDoJum8jMuMqj9qPnd+/enZDLONuDokWLFniZEiKGtn78 8Ud8WekzUegRumHCB2d784yARsnHlxVp680330TSoXWkcrOsKqVYwhXHVIaPqz/RJPBr5adofgDE e6efxKhhk0bR04gej/THZtWqVYFG5fBB/SN4Dgbo7RwO9uIWyy/fjg4tvd3w1LcIxI6AU28fMGAA D86M5zknnamQhDPtbMXkR7jXeyaV2AamQp4estwD8zDTEY8RmYKIW+VsK3Zpt1ZiV0kQlJLeHgQH UUNIXASYfAJHb8d3wqwflLgYBk5vpbcHzrFQT0RABERABAKQQALq7S6xelQI30jlGYbPqrpk3flr 16/fvEnMdpZMJRF2+uwH05dmGIHDuSumuhclPHyFU0LBhNfGd3jCFsNNwjR0K/M/NraBy0bx2wPw Zxq9LuGujGxLnA0+yMI4HnvR2xFakU9tZd4k0DPJ92ztwjWLv2OXrM0nrUWHrPE7rd6brN9XW3WX WF/PsYpOtwpNsz6ZYn0wyXp/gvX2eOv1sVaeMVbuUVaOEdbzw61nhlpPD7GyDrNeHm29M8FlWWyG 9U2IVW2B1WCp9csKq12o1X2DNWirq+Zlh63dZ6xzV62L16xL163L160rN6yrN6xrN63rNy0WNLgl 9nh2MwY5e85aSw65avP+4bbI6O0k+OCBSSAFQsEgthtdF3UdaOQAkF1o0VSIyk1sExOenUVIiYJi 0niDE9YAF1BEZqR1HNdR3SlbpkwZ0w0CpHPI2IVwvSt88VCWEeQw1a9f3xiw5CiHlTSO7vQBb3DS s2fPJhwNHWCX7ZQ+adIkIr2QSW3ETEY6Q/FGOTf14HSaJ08eE3kGP1WCMGNJT1gR1Rggv6dJk4bO oGmjbhFyGfma3wb3ZVjy4XEAq74aY9QwcmjIuMGTSXAY6jTO8Dwy4MEBe4neQKAGEx8eGxZmNdzI t8V28hH8GQ49BDibdJvKQUcasMBE90N1h0y+fPmwwWeeGBHs5dO0aVOzoitp1wEL/4Tv+feLPLPx z+5bm7aFm4GdbyecXvR2ZnQS9JNxRcdSNiKQ4AScejthYexpyv8dY+IldAwnPs8Tf/nlF3Pm+r8b Qdmi9PagPKwaVCATYAZz09vJ4WLSvhAyUxzfZhRm03NE5Hv6FZBJVXzs4nZBZz12uk2bNrhMOBvy LGjXoIQnAentnkyUIwIiIAIiIAI2gQTW28PFduTxZ1DUR4W8OWlh6bkrayxdV2vphq/mr35j0sJ/ 1O9oa+DhwrtLdY/sD4MobSIrG1m+/Nvtn1MCJtyukJFG8WqOTG/HFRmvbJdsmiwZyjDSK9F0w7eS EUTXrDrnHEuyjpbrr0P4n0l3spLx1/m/f12sZNH8swuaesy3qdluqKv1QC8rRX8r0xDrxZFW3nFW walWuTlW7cXWb6us7hutUTuskP1W6HHrwHmXIB+jT+s1rhFRW9hpb+Wgauvtth2qr0nbzHkhl5VD 3TLZtA3c0kjcSM3EWuFeybzJi6UxJl5NhI88zF4vTdiRXsJrct2mUTkRb+zeepZ19ori5l7PLs7e CHtCvBrUeLfacOmPkABiO4+B7CA8rE5YsmRJu136Zr/IbAboHKZpwv62dzmDtDv32gYmwXD42JlO S5OOpoFd0E5Ib7dRKBHEBJx6uxkmZ5PnCeVrAnaLnLC+bisJ1i+9PQkedA05YQkwpzn1di6TWLvn yy+/5Jkm/gZI5cx1vFpox9xjcWfs3fqMSwZv9vEiIe8nTp06lVIYMGlTimh75DvDf5my48aNszN5 /ZD1Nch36u28KUlP3BrSpncC0tu989FeERABERCBJE4gwfX2f0Rsl+Tu8i0PF9jnuCTxf9KRKueR qd/+z5feHoAnEdfSKOoR6u1cliOqo67jaUwkGZeAEu5Fg8OwkdxZZ9NtRC6xvauVrJsf/2jOy59n T7paGQdbhadbzVZY43dZu85G4bv+4eTwRwNdrTu6W8PD3Ib77yZk7Hgy5BpQZredthNuBv/W4pEy ejuRUjz2/JMRozojNHZmRtaKl3y7uJ3A2Jn23IywNvzSWc2QDyvGcv9477332l7xEdpHM9OtJxGW ilBsN5amuBcDYxaZgfT2CIErM8gIuOnt0Tnp/EAgQLrhh5H6pwnp7f7hrFZEwCbAJObU23lHD4+X kJAQs54OgQGxNBfkvA6JMa8HTps2zS5Ogihb7777Lq4yvEvIe3NcuhPlj3yUdt5F4vXGH374gUx7 mQxTluB7+DyYNHI9r2SStvV2wvQRUdD2pjBm+o6SgPT2KBHJQAREQAREICkTCBS93eGRbvzP490L 3Xc6vPT2ADyDvOjtu3fvJtYHkUyIg03PjXxhvomkzSW6Z9wApO9H+lgpB1gZh7jiw7w02npzvJV/ klVoqlVipvXVHKtciPXNXOu7uVaFeVbF+Vbl+VbVBdb3C63qi6yai1we6XWWWLUWuwLIVJzniiRT ZrarYJHp1qdTrQKTrXwT/4lCQ82EnUk7yHq8n3Vfz3B5P/o6P5a4zeMqz9OB9q7EY32tnCNdInz9 pVa3DdaEXdbyo9b+8Hg5d6DYm5r57mghvy89HMFhBItTb4/AIlZZuIITkh1H8ViVTmSFGCYeU0WK FKlUqZK9mqofxhCZWm43HWsD6e02QyWCmICb3h7EI03KQ5PenpSPvsaeIAS4sLT1dt4i5KrbXn6a lWtY2sb06ptvvsmdOzcr4Hz++ef4yZirdLMLTwY7zCA5RP9jjR6u7Qm6xZJAxgZpfeTIkSZtviPT 24lziNhOvEE8cLB0NuQsrnSEBKS3R4hFmSIgAiIgAiJgCASg3u47YdxHNUtvD8CzyYvezi5eGiUo N1E+3K6rERK58kd1dxvR2avWufAQ7hev/xtT/doNV0D1G+Ex1U1Yddzk7T+3GuxNDDDmj4IU54/A 7ESD4Y847URrJ2Y7seLPX7No9ORla8spa8EBa+R2q/N6V7h4JPqco6z/63NLLfd0dLdzENKdf91c ruz39LDu72U96lY83OyuHlaNha7OOD/w8YXebjfhxt/OD5qEPUDEbT8Piqbt1iNsOtYG0tsj5KnM ICMgvT3IDmiEw5HeHiEWZYqA7whw7WHr7axTT1BHfDDM5QpL86CZm6a5anruuefYjHDZF9YGwjGe 9eXN8j0sErRixQou4O1uI9HzsTdJRKi3E38G9xtc6OmG01jpaBKQ3h5NUDITAREQARFImgT8obcf PpF8yPRMI2cH69/TI2anHzG739bdrPTq019RuXLlol8/7iJcx0bfPlFYolHjnr3iqDVpt/XzCm9d 9qK3O4sRNxKXGJbdJD5k5cqVuVbn46m3O4sETvr4JVfw9ml7rD6brabLrTJzrI+mWK+NdXnI44rv co9HSLfld2cisvyOVrYR1pz9rqcA5sMdkGf8dnNb5ORAjjPTmbbrcWY6054G7A0Cgwi9x51Di8zA AGFvgBg4D7RJS2/3ZKKc4CMgvT34jqnniKS3ezJRjgj4lAAXQrbezrU3L5zay9/w2in6uWl948aN 7OKafMaMGW794Qr/7rvv/vrrr8ePH08kGRaynzt37l9//YWxsaSJnTt3ugWHqVmzZp06dYzB6tWr TUPo7SQWLVqUPHnyH3/80fPi061pbboRkN7uBkSbIiACIiACIuAk4Ae9fcPJc8Vmryg3b3UQ/5We u3r6viOsTehkG+/pJKu3n7lijdvpisSSZagr0Aoe2rehHntd1ChKvX39+vVEeiTGO8Ee77//fpbv 5EKdRCLS2z1/YDf+drnHn75iHb3kejCBGj8szKq31HpvgvWwm0+7U353psMjun802YI5H2493Pzb zc2Il1uSuBuYcXlpwnPggZDj1mG3Tc8eehqYHPs7jgZe5HpTczQNPLshvd3zaCon+AhIbw++Y+o5 IuntnkyUIwI+JcBFha234/TCVfeGDRtMi7isFy5cmDTvnyK2/xT+SZUqlVlZnjAy2LN38eLFtjs6 mdSAf/vevXtZIgcB3xTPli3b2LFjSV+8eNE4urdq1cp2pyGkIQFk2Ev8duLJkEByp559+/aR1if6 BKS3R5+VLEVABERABJIgAZ/r7T6WoJPUIUsiejvO1YcuWOtOWGN2WFUWWJmHhkcjJyY5wcmdjtl/ ejv4XvR2VJTq1atzXc0nc+bMBIckSiQrLm3bto14j2TaF+TeGgj4fZ5n3rmr1oKD1p+hrmcWEfu9 28J7F5d7/NgdRLZx19sDftyB0kFPmdqtZ94N2BtHgwjldGcfYm0gvd2JUelgJSC9PViPrHNc0tud NJQWAT8Q4NrG6O3mIqdp06YZMmTo2bNnkyZNHnzwQZa54eKE2C8pU6ZkEqY/BI1hkwRnKwYkTp8+ jbTOoqhcuhPjPWvWrKyPg/COBztu6n/++We+fPmIRYPlli1buKofPnw46SVLluBaQ6kqVapkzJgx Xbp0ZNrrpZIuXrz4G2+8QUKf6BOQ3h59VrIUAREQARFIggR8rrdb1uUr1/cfPHHw8Mlg/Ttw+OSB QyfPnb/kXR+L+68ruPV2ApjPPeByxs4zxkozyLqXcCgI7F1uBSG3pWASXa07u7sin3j5eNHbJ0yY wOU31+qDBw8+deqUs5KqVasGjd7uHBdpW34nJjzrsUaht4dDhvP7E63PylRwq0qb0SEQ5Wzg3YC9 cTSItZxujy6yGqS324iUCGIC0tuD+ODaQ5PebqNQQgT8Q4BrG9u/nTTO5yjhxHUZOnTo7t276QOZ LF26f/9+05+jR48SK4b0jh077CVN8ZDp2LHjuHHjCBrDBf/AgQON6/uqVat69OgxefJkNHmKEPud uO7mUp9qiVEzZMiQ5cuXE/593bp1GBCOhkwS7MWM5VbR7dnUJ5oEpLdHE5TMREAEREAEkiYBP+jt 6zft/7Rs95KV+gTtX8U+X1ToPW32+hs+XhIxyPR2grGj/e46aw3eahHAxCWtezqxhwu/LOX5aF+X SvzWeKvFKmvNsX9OVltD9jx5vejt+MkgqhvXFy6wnWV5jzVY9XZ7mJtPWQ/0ctfbeboB4acGWk8P sQpMdsXGn7rHIj48tyDlv/vWLqtE9Am4/bQ8C3o3YG8cDSJTy+2exNpAervNUIkgJiC9PYgPrj00 6e02CiVEwD8EuLax9XZadF7qONNeOhOZmTPfmTZVkeOZ6dnKtevXT545rz9PAqfPXfAEKL3d8yek HBEQAREQARGwCfhBb1+zft87hf/8pEyXIP77qFTnCdPW3kBB9uUnSPT2v11xxVuvcem6xGO/o7uV rNMtP/b/OrGnHmiVmm11Xm/NO2BtO21dvPYfuP9Vyv+ziw0versR1XkF1a0Myyfdfvvt6O2FChVy 2xVMm7P2uWgTLib3aKvsbOv31db4ndaSwy7CPP5w+3Bp7Ra/3c1Am5ER8LwrcbP0bsDeOBrEWk63 +xlZDdLbbURKBDEB6e1BfHDtoUlvt1EoIQL+IcC1jVNv90+j0W9l8dqtGT+umaXQD/pzI5D3m1/O X3S/T5DeHv2flixFQAREQASSIAF/6O0b9r1bpP2nX3UL1r+CZbt+UrrLhOlr5d8e2RnEg4jz11yu 7E3+sh7rG5HA3tW1BCpe1izrmWOE9etKa+eZfytDWveurv9reivlRW9v2bIlovoDDzzAikvnz59n VSZeOx0/fjxiu9Hb33vvvXPnzt2qKdj+3X3WdSDcPpHh5bbI6O1O7deZNvWQ48x0pmNhEF7Zf947 oBJnpjNtD8SZ6UwnOgMnMQZi99/OtxORDTN+Ddw6wKb0dk8mygk+AtLbg++Yeo5IersnE+WIgE8J cOkSmd5++PjpZOk+TfZ04YT8y1I0WY4v9edJ4Kl81c6ed7346vxIb3fSUFoEREAEREAE3AgEmt6O dv1x6S58JyJxXnq724/KubnnnNV7k8tNHVd2Vzx2tzVPw8PFsKvCPKvPJpeX9SmH64SH1uisOIq0 F72dCJAsqITkzodVlrJly/boo4+adL169UjceeedTz31VBQNJM7dNlJkXDvtZSjcFklvt/k49W1n On4NTG3UH6F7OfnGgL1+MLCbs8dIQnq7k4bSwUpAenuwHlnnuKS3O2koLQJ+IMB1RWR6+5ETZ5Jl Le6p9ConEAhIb/fD2aEmREAEREAEgoxAQOntCNdFvulRse5Q6e0R/swSRTwZ5EC82Vn8lCglr4+9 FSim662A4eEJXNlv7249NcBqutw6cP7fsd6SEv/NiXUKvT1Dhgz333//7NmzPStBcn/jjTfwZr/j jjtQ1x9//PFGjRphtnv3bpR2MlHdPUslwRxuixRPJnbHPUKl2lmVdwP2xtEgQjXe2YFYG0hvd2JU OlgJSG8P1iPrHJf0dicNpUXADwS4tpHeHgj6eUz7IL3dD2eHmhABERABEQgyAgGlt39Stmvx8r3H Tw+tXG8owd4Ti4u7/NvNSUF89QUHrZarrA8nW/f0CF/8lCVQHUr7nd2tV8ZYtRZZI7db+3wjs0fn 9LRlTILGbNu27cwZR+Sa8PKo7vzrkjvj8QFAdHoWeDYQkN4eu8MS5Y/HuwF742gQazndHm9kNUhv txEpEcQEpLcH8cG1hya93UahhAj4hwDXNtLbY6p1B4K99Hb/nCBqRQREQAREIJgIBJbeXqbrByU6 t+85e8K00PeLtv+0bOII+S69fccZq/pC6+HeLq/1ZOEhYlwyu0NpT9Hfar7SOnbJ5fru1LCd6YQ9 rYy26VQ4nemE7VsCtg4E6e2x4x/l78e7AXsD1kB6e+x+EiqVuAhIb09cxyt2vZXeHjtuKiUCsSbA tY309kDQz2PaB+ntsf7Nq6AIiIAIiECSJRA4ejuqdakq/Tr0DKn/y7j1mw82+HX8R6U6x8jFnRrC /7q5BPAyXT4pYza7flymS8HwNP7zrnR8B4d3NZf01kvFm33RIavlauvFkeGu7J3+I7Ajtj810Ppo imvl09Dj/55egSOw/9snpSInwG2R4rfbeFwK+K1fsDMdoUGEzuHOUpEZmNrYGyAG9ujshPR2G4US QUxAensQH1x7aNLbbRRKiIB/CHAhJL09plp3INhLb/fPCaJWREAEREAEgolAwurtKNUflOiUr1hH /gp82blLvwVnL1xu3XlmnyGLQjfuL/xNj/zhe/MX7+RdJDd7v6jQ+8vKfZHZi1XoVbPJqEr1hyKz l67Wv/ZPo0tW6vtxqS5fVR9Qp9nYEpX7eq8tRiI/xtSWpPT2k5ethsus5P3Cg8YYP3aHKztBY4rN sOYdsM5csa7dDKZzJSmOhdsiN/92cgBhviMkEneDCKsN/Ew3Jm6bnv33NHCiI202nQVNjv3t3cCL XG8KRtPAsxXp7c6DonSwEpDeHqxH1jku6e1OGkqLgB8IcFEhvT0Q9POY9kF6ux/ODjUhAiIgAiIQ ZAQSUG9Hpv78m+5/dJ7db+iS3oMWNW09aff+4yvW7vqxxYQ/e4QcPHS6+4CF7XvMGTB8afseIWjv XkTy8Kp6jJm8ZuLMdQVKdf6l3dSRE1f2H7GsTedZA0YuHTBy2cQZG1p2mD5xRmiHnnMr1h2Co/un 8eflnhT09pt/WzvPWGN2WB9MspJ1sJL915v9rh5W1uFWsZnWiDBXxBh9goYAt0VuenvQDM3XA/GU qd1a9G7A3jgaRCinO/sQawPp7U6MSgcrAentwXpkneOS3u6kobQI+IEA1zbS22OqdQeCvfR2P5wd akIEREAERCDICCSs3l68Yu9NWw/dvPn37n0nlq7adeLUhY69Q44eO7sydPeYSavDdh6ZMns9wPfs O/llFW9O6Sje39UaPGXWhm79F5b9vv8vbac2+2NyzaajB474q/fgxdUbjxw1aXXvIYvmLNxavfEo Qs0U/KpbPAaHD269/cbf1rS91jsTrEf7hkeM+W9g9gd7WbUXW+tPWKev/Htm3Aq58W+OUomUALdF 0ttjd+y8q+XU6d2AvXE0iLWcbo83shqkt9uIlAhiAtLbg/jg2kOT3m6jUEIE/EOAaxvp7YGgn8e0 D9Lb/XOCqBUREAEREIFgIpCwejuBXxYsC9t38NTUORtOnTk/a/7m/iOWHj1+btuOIx17zz105Mz0 kI2bww6tXLunRKU+yNqRRXrBX71VpxlTZ28YPWl1sz+mNP190pyFW4aNW1GlwYjh41dOn7up1+DF Rb7t1aTVRPJ/aj354/Bw7pHVFtP8oNTbr9ywwk5bnddbaQaFO7Q7Isbc1s1KOcB6c5w1ZFswnQoa SwQEuC2KTG9n142bN89fvHLuwuUrV697F4cjqDomWc7KnemY1OFv2yj76d2AvXE0iEwtt0HE2kB6 u81QiSAmIL09iA+uPTTp7TYKJUTAPwS4tpHeHlOtOxDspbf75wRRKyIgAiIgAsFEIGH1dpTtQuW6 Ffm2B0r73gMny9ceXKhc98+/7sEfAWTa9wzpOWRRsfK9Pvu6O+FfItPbEdsxHjp2Rd2fxzRrM3lq yIaf20z+rf30D0t2KlS229CxK2s1Hf1x6S5Fv+tVsnLfX9tPHTBiWaHwoOsx1dUjsw8yvZ2AMH03 W6+Otf7X20rW2bEKajcLpf2zadaMvdb+8/+eBPJm/5dF0KW4LYpMb2esB4+eadxu8neNh0+cv/Ha teu+Gz3duHbt2vFjx48cPkLCS0PeNWovBeN9V5Q98W7A3jgaxFpOt1FEVoP0dhuREkFMQHp7EB9c e2jS220USoiAfwhwbSO9PRD085j2QXq7f04QtSICIiACIhBMBBJQbzfyNUo4evjVazc6952bv0RH W9Nm2VOizazZsL99zzmkyY9Uby/T9YsKvX7vNAMVvci3PbsPmN+45cQajUd9WKozOS07zPi21iAW Tq3ReOS0kM2TZq6rWHfYR6XCQ8oQVSY+/oJBb//bunbDOnTR6rrBuq+ne3j2e3pYqQZaVRdYrJRq PtLYg2kS8DIWbouM3u7Ufu30tt1Hc3z+x10vNWrZN+Ty1X9lcNvArpkcZ6bbJmbOHGfarmHvnj2t f2/zY4NGYdvCjL29yyQQh69cuXLjxg1TnG83A2e1zrRt5sx0pv1sYJozHeDbbt3OtxORdTJ+Ddw6 wKb0dk8mygk+AtLbg++Yeo5IersnE+WIgE8JcOkivT2mWncg2Etv9+l5ocpFQAREQASCkkDC6u0o 1Z+V6z526ppxU9YU/bYnkdWNAF6wrEtdR4qv02zM3MVbytXo//GtXW4KuS3Cf1y6M2n+Pird+ZPS XW2JnkqMDZWT+VHpLq4cxW93/Jqv37SGh1kfT7Ee7uOutCfv7wrPPveAde7qPwU89D9HRUoGHQFu i7zo7WF7juYq2fGBt5q1G7TgSsz19suXLx8+fPg0n1OnjU5u+EUoI+/du7dW9dqVy1fesX0HZti4 waaGPXv27N69G5UsQgNntc60XY8z05n2s4Fpjg5E6F5OvjFgb5QGkY3CriE6Bvbw7YT0dhuFEkFM QHp7EB9ce2jS220USoiAfwhw4SG9PRD085j2QXq7f04QtSICIiACIhBMBBJcby9WsXfIwi3VGg5H DLfFcyOqo5CXrNR3xtwNP7ed8kGJTm5Ke4SbzhoQ1dHtjZkz/9OvIo0DH2GdUWZS+Selu0yYvpZw 1j79bZQrVy769W/fvn3WrFle7NHtCNI+fY+Vsv9/48Z0te7sbj3S1/oz1Etp7UoSBLgt8hJPxqG3 z3fq7VGioVrrb2t72PZOHTqvXbN25cpVpI1Obpc1UrBRlcncvXt3w/oNW7VshfDOLpPvFJzJPHbs 2IRxEzas32DK2lUlSII+eG/Xu0GUQ4jSwAknwp7E2kB6e4Q8lRlkBKS3B9kBjXA40tsjxKJMEfAd Aa5epLfHVOsOBHvp7b47KVSzCIiACIhAsBJIWL0d6Zv47QRg/+jLzm6ytlHIXSJ8ma5Fv+v5X8E8 fuLAuLUY683Ep7f/ba09btVdYmUY/N+1ULtZT/SzqiywZu4L1t+7xhUzAtwWxbveTp34op85fWbT xk2jRozaumXr9GkzenTvefHCRaMhm286eujQoRXLVyxfvhwJfcb0GeW/LV+tcrWQkLlsrl+/YcH8 Bfv37beNsSe9ZcvWPr36rl612qj3zr0xG3mcrWnaex3eDaLseZQGsZbT7W5HVoP0dhuREkFMQHp7 EB9ce2jS220USoiAfwhw9SK9PRD085j2QXq7f04QtSICIiACIhBMBBJab0c59xab3fZFl97Ory5e /NtPXbYKTw9fBbWrlaxb+F944sHe1h9rLBZL5ROVUhhMZ4DG4o0At0Ve4sls33OMeDIP5m3WdtB/ /Nsp5Vapmzh89erVHTt2TJs6fcLYCW1+/6NRw8Z/tmu/auWqnTt3onEZ48MHD48cMWr+vPmLFi7u 3av3wAGDG9Rt0KBewzGjx/bp1QcdftLESQP7D9y1axeyMM2ZUnzjMN/699aha0PPnz9/7tw5O98k TMecaburzkxn2s8Gzh7SDbt1O99ORNbJ+DVw6wCb0ts9mSgn+AhIbw++Y+o5IuntnkyUIwI+JcCl i/T2mGrdgWAvvd2n54UqFwEREAERCEoCAaC3B5azeiy83BOFf/ul69ak3VbxmeGhYzqH6+2I7V0t 1kL9ZIo1cKtFFHfz8VD4gvKHr0FFiwC3RV70dlc8mRIdTPz2GK2XipCFtN6/X//ffv2tZvVan3z0 abGixd7J+x7LoZ49exb9/MyZM4MHDVm8aPGVy1euXb1GiPd169a1bdOuf9/+WzZvOXXqFIo94d8X Llw4oN8AjBmMEZ/5pvi0adMb1v+xa+eugwYOOnzo8LVr14yrNnvNsI2xGwJnpjNtmzkznekIDUyL 9i6TcJaKzMC29G7AXv8YuA2BTentnkyUE3wE/Km3O2cGm2SEmfbeRJ1gaBFOX/4flPR2/zNXi0mc AKe/9PZA0M9j2gfp7Un8zNXwRUAEREAEYkFAenssBHa3IoGvty89bGUeat3R/T9u7bd1s0rOtA5f tG64u9DG4nekIsFJgNsit3gy5DBU8x1h/HazyzsObNDA54XMK1v6q9fzvJ79uRzVqnz/6ceF3n3r vaWLl6KlE4l9zKgxJ46foB7WVEVgR11v3arNoAGDiEVz8sTJI0eOUMmpkycnT56Ksd0cmcg4W7du LVWi9HNZnn855ysVvq04beo0fN1tGx8l3AbutunZaGQGJp9vk3AWNDn2t3eDCOUsuyzVRtPAsxXp 7c6DonSwEvCb3k5Du3fvZqJzO9euXLkSl4mLqZK5lEo40wPqGDHeZcuWzZgx4+LFiwneMentCX4I 1IGkRoCJTnp7TLXuQLCX3p7UTlWNVwREQAREIO4E/Ka3I0oH8d/HAble6ripsybust6dYCVrf8uh PdynnbDt1Rdau87+8/O55fMb91+Tagg2AtwWuentzhFGqLc7DSJMUyfi+ZjRY4p/UbJS+UqlS5Z5 9aVXWQi1UMHPM6bNWL1ajQMHDiCn9+zec8/uPUhGI4ePHDNm7IkTJ3r26DlwwCBCxEydMpWoMkhJ GPTs0evQwYM0RLV8EHDmhsxt06pNrRq1s2TM8tSTaVI/mSb3iy/RHAo/BhF2yReZUbbl3YC9cTSI UE53jjTWBtLbnRiVDlYC8aK3cxYfPXr05MmTvKTDbBYhq7CwsIceeqhAgQJo406DPXv2/Pzzz8eP H3dmRj+NoM0F3vvvv79mzZrol/KD5aBBg5KFfypWrOiH5rw3Ib3dOx/tFYF4J8CsKL09EPTzmPZB enu8nwuqUAREQAREIOgJ+EFv37D5YLHyvb+qMTBo/6oPLFNtwIx5G33tRRaj+O3jN5/7X7tD//i0 mzjt3azk/azB26zz1/75XftRfQz6Myk4B8htUbzr7ZC6fOly2zZtM6TO+GG+AmVKfdWzZ+/ePXvl zJErbap0r770Wp8+fY8cPjJnTsiE8RMXLlz0y8+/dOrYeWD/QUjx5cp+M33a9D69+9Sv22DN6jXI 75hdv3bd0L906RIxal57+bVXcuXJ//4H6VNnfP2VN7JnzZ46ZdqPC3yybMmyyPQuXxw872o5LXo3 YG8cDWItp9s0IqtBeruNSIkgJhAvejvPFhs3bpw3b96CBQtu2rTJiYvzi720MmbMmHTp0v3www/o 7eQ4LyQmTZpUqFAhomw5C0Yz3adPHyNrz5w5M5pF4suMuctE8YqwQh4BmI6lSpUqQgN/Zkpv9ydt tSUCEGB+kN4eU607EOylt+v8FQEREAEREIGYEvC93u4/h9KYjj3R2UdTb993zhWS3eXTfms5VELH PDPU+n31PyOWzJ7oDn1CdZjbIl/o7Qxn0cJFObPnSvF4yheyvdirZy/81XPlyJ0+TcZMGTKXKFoC h08kJmKz9+/br8VvLVv+9nvb1m3r1q5b/tvyhGRHq29Yv+Ho0aM7deh0/Ni/zp+4gzZt1PSDfB9m zpDliyLFinz2RZ3adV5/5fXUKdPQUKsWra5eueo3kt7Vcrrh3YC9cTSITC23CcTaQHq7zVCJICYQ L3p72bJlEcw5Zd58802c1XF0N07sVD58+HDE3p9++qlRo0ZNmzZt1apVhw4d3nrrre7du/M6j336 16lTp1q1akyJngFnvMPv27evkbVnzZrl3TJ+99L5iRMn1qhRY/v27W41m0ExwAcffPD+++8HjpuB /zelt/ufuVpM4gSYB6S3B4J+HtM+SG9P4meuhi8CIiACIhALAr7W283tFf7UeKAG8R8DdAVI9bGQ HU29/a8j1p2Ear8ltmcdZk3ba527JTT6uI+x+A2qSOAS4PyNd72dOlkFdfy48Z8UKPh02kzpUqXH F33tmrVVK1Z78vGUaVOl//zTwuvXrQfKX38tr12r9nvvvJf92eyFPvn8zdfffPPVvJ8V/DzHcy++ nfedihUrIdobX1AzzxBMZnvY9p+a/PxT05+pYeCAgYU/K/pspqzp02RI/mgK9HZcLv3G2nTJS3Pe DdgbR4NYy+l2nyOrQXq7jUiJICYQL3p7zZo1UXTTp0+fIUOGd955p3jx4osXLwZa//7977vvvnz5 8pUoUSJlypSvvvpq2rRp33vvvcKFCz/88MN8o8wbtsxazZs3z507d+XKlbds2RL9l3QSSm/v3Lkz Ov8dd9zBItcR/jwY0fTp00eMGBE7v/0I64x1pvT2WKNTQRGIHQGubaS3x1TrDgR76e2x+8GrlAiI gAiIQFIm4Gu9HbY39h48377XhW79g/mvS7+roZtYqdGnv6Vo6u03/7beHGcl63IzeZ/rbW7FbZXM 7tNDE6yVc1tk9Han9munt+85lqtkxwfzNms7aP6Vq/9K2baBjYUcZybxZAioXuiTz7JkfCZd6gyE f+nWpVupEmVSPp4yQ5qMxYoUC10bij0Lodau9UOlipWbN/u1S5duI4aNGDliZI/uPX775beqVao1 qNuASO+mWvONPszygsv/Wr5k0eLu3Xu8+9b7aVKmTfdU+gxpnk7xWIqWv7Yk5LvpEvamiN1DEs5M Z9q2cWY60/FrYGoz9fNtV27n24nI+hC/Bm4dYFN6uycT5QQfgXjR21nr+cMPP8ySJcujjz6aOnXq nDlz9uvXj8hXyLxZs2ZlZee6detOmzYtTZo0RDWvXbv21KlTS5UqRfwZor6DlHMct3bkd9R4ZPnk yZO3a9cums8NE0pvb9u2LXr7Pffcs36967Gp58dzWvO08VuO9Ha/oVZDImAIMANIbw8E/TymfZDe rlNYBERABERABGJKwA96+7WNYSfLVD9VsV7Q/lWod6p8ncuzFwWI3s5vYP0J64fJe6fPXxbT34Ps RcBJgNsiL3q7a73UEh0eeKtZu0ELYqS308TKlau+/frbt15/i9gvGdJmJJIMSnuGtE8jvz+bOeuo kaNpmrgELPlHCHfixlQsX6lS+cqVy1ep8F3FP1r9sXDhwpkzZu3auQsz44aN2+emjRtnzZw9f/78 8WPHt/+zwwf5Cjz/TLY0KdOlTZX21ZdfGzZ0+JkzZ8zoKMXHOVLSzkxn2jZzZjrT8WtgaqP+CN3L yTcGZq+96exD/BrYNdsJ6e02CiWCmEC86O0Eb3/xxReLFSuGKzsCO37sjzzyCIHcW7ZsiQg/YMCA xx9/HMk9U6ZMRYoUQVEndAyriGbPnn337t2wxRk+T548xDnHPZ4Y73wjuROIJjrYI9PbmToYGh/P 2YNqyTR7MfNshWmWCPMXLlxg+VeeGvAE0zYzBSli6+34t5uqzLfdnPcmTKPYUDlN4ANPc25h7Z0d M7UZS9MluyGnWWRp6e2RkVG+CPiIAGdoEtDbSybLYf6+9JC1yffMTAQ50tt9dEaoWhEQAREQgSAm 4A+9fVPYqa9rna7SMGj/Kjc4Van+5TmLA0RvN4Lcrh3b/Ry1NYhPkyQ7NG6L4iWeDPUg1BC4eNu2 bZMmTd6yeQt/o0eOrlWj9gfvf5gxXaaMaZ9GbOeP9JOPpezauSv2R48crVmj1muvvoEb/KMPPf7o Q4899vDj/GH8Su48VSpX2b17z969e8eNG7940RLE+f59+3fu2Ll+3frNf/kNN/jGjRrX/L7mu3nf w77gJ5+GbQuLpl9ovBzuKDUf7wbsjaOBEeS9jCXWBtLbvVDVrqAhgEo8dOjQ6tWrx25E5vwdOXLk s88+i8b+7bffvvbaa7ly5br77rtJrFy5EgX+5ZdfRkJHaceGbzzhs2XLhjE6PI0yBxLaPWPGjKjx RYsWJbR7ihQp/ve//xGdJjpdilBvp1cEpWGFVj68QORZDxMpfWZ1DMzc9uJyP2HChGbNmpUvX57A OPXr1+/SpcuKFSvQw7FkLw8CiNz+1Vdf4d9+1113/fnnn6YhvilIvC9TIU2QQxO497s1wSY9xHL1 6tVUzpMIGuIZxK+//sr1DLO9Le+bghjv3LmTw1SvXj0s+e7WrdvmzZtNkHzPyj1zpLd7MlGOCPiU AKdtUOjt4XJ69pLJ+Mv2Zfhfyduzlbwje4m7spe4O8eX9+QoFf5H4su7c7gy73gegxIu+3/+vnQl XLJ8IhDb6aT0dp+eF6pcBERABEQgKAlIb4+HpwABprebHypLlUlvD8pz1p+D4rYoXvR2RJJly5Y1 qNewwrcV+/Xp17/vgDWr1xw+dHjokGFEYred2xHG+UudIk2VClVQe7p06pItaw4T1P31PG/kezc/ IWLefO2ttE+lf/KxFFkzP/dz02YL5i9o+evvn35SqFu37jOmz+jds3eel159Lc/rNb6v2alj5xa/ tmjTqs1HH37co3vPM6fPhIVtp1EGZT4+JUkT3uv3bhBlD6M0iLWcbnc7shqkt9uIlAhiAnHU2w2Z 1q1b33nnnUSDQSTPnz9/5syZEaLZ3LFjBy/pPPfcc88//zzRY1544YU33njjpZdeQl2vWrWq88lg lSpV0Ka+/vprlHaz/ukTTzwRHeyR6e241tMlujF37lzPev766y9aue2225C4nXsXLVr0yiuv3H77 7aYP9jdR6FHOsQwJCSETA8qavaTtD07+uMSbCpcuXUrrBHhniVhnE6SZ1tasWYNy/tBDD9lNmARF oITkbhfBAX7gwIEQc7PklQEeCtjyvm0fYUJ6e4RYlCkCviPAaR4MejtS+XPFkz1f4v5cpdO9UyHn 53XeLf9r2fod6rXu/1vXER37Teg5YkavETN6jpjO35/9J5BZv82Asg075SvfPGfhOunerfRA7jLJ ni+e7Llit1R3I7wHrvwuvd13J4VqFgEREAERCFYCAaK3n6rc4HSl+qerNDj9fePTNZuertH4dOWG rhzySQS4b7z09mA9PZL8uLgt8hJPJvrx2/E2/KnpTw89+PCL2V/E+XDokKEsdQrdefPmZX8uR9pU 6dI9lYEo6+lTZ2S9VPT2n5r81LN7r+xZX3jqyTTPZX6+/HcVR48avWrlygnjJwwZPKRK5WovPJ8z 9ZNpMmd8pkO7DgcPHmz0Y6OvvvoaJb/ZT83Spk5H2PZM6TKz7mrbNm27de0xfeq0Awf2z5k954/W f6Dh0/S5c+c8j61TwXambUtnpjMdvwamNlM/33bldr6diKwP8Wvg1gE2pbd7MlFO8BGIo95uTl6i sj/22GP333//008/TVQZFGO0biTisLAwHMLJwdedmDMsq4ore40aNfBvZ71RmkZyx7/90KFDSMpk EmoG7doIy08++WR0aHvR29G66QbTr2c9PBg1rSCI2XuZMHPkyEE+feAZAfHkWeaVeeCZZ55BBu/d uzeWhL7hiQD9tJ8LoHvjkM+HBCK/PV/RBK1Tm6fevnHjxqeeeopdiPZEvMf/n4cU7777Ls8pEPYf fPBB5xqsc+bMeeCBBzBmF88CUOnffPNN0uRQv3lHwB5CZAnp7ZGRUb4I+IgAU0Ei1NvDZfDspcJd 00vcjsz+ctnchX9AYG/Tb8LU+StCt+zcc/DY3kPHtu06tHbT9kUrN81esmbK3OVT5q6YvSR04YoN azbtCNt1aM+h43sPHl+3Zee0Bava9B9ftkGHl4rUfeDlMrc/VwLpPlk2XN8D19dderuPzghVKwIi IAIiEMQEAkBvJxhLgzPVG18YPPbq2o1X9x64fuzE1X0Hr67fcmn0lDP1fztVMVx1D2TJXXp7EJ8h SXto3BZ50dud8dsvR7JeqhGdWDivauVquV58qUG9BsQl7tu7b+jadYTkxeM9dcq0+Le7lPaU6XBN J7zMF4WLde/WA4f2FI+nJG5Muz/ajRs7ftLESRs3bBo5ctTECRNnz5o9aMCgd954J/mjT35SoODi xUvmzZv/ZfEvCQWPP3z6tK5Q8Gj4uMHnyPZChz874Fe5LnRdt67dUNo//eSz3DlfGjZkmNOD1Bxk Ww5i05m2fwLOTGc6QoMIncOdpZxpZw0mzd7IajAG7PWPgd03OyG93UahRBATiLXezslLiBWitRAU hUpef/11ArCjHuOzTQh3hPeHH3549uzZOHK//fbbKMmI8Li449xOPn7go0aNQoxCfh8yZMhnn32G vl2oUCEu1fCEJ+wM9aDh89QSDZyGvPCPR70dZR4FGw28UqVKPN+0G8XbfOzYsQyTHIbMPM9zhB9/ /BHFGx2e2DJEqudDvvMRZ2R6O+tr8PTBlP3mm2/wtGfqBiCPa/fs2UNttWrVskPQ0BCvDGDMUrPE kzHO86yXzeMJNH/yeSoBJburkSWkt0dGRvki4CMCTFyJUG//MtnzxIoplfatCu992+yXzsMmzl25 atOOlevDpi9c3W34jHqt+her0ea1Uo0zF6yR7t2KqfJ+9+Rr3z6ep9xjeco9+fo3KfN+l+69SpkL 1ny1dCPM6rXq13XotKkLV1N81cbtk+atbN5l+Hvf/ZLmre/uwG0e4T0g48xIb/fRGaFqRUAEREAE gphAwurtp3Bor1T/TN1frm7ceuPU6etHjl/sMeTG5jDX96EjN8+eu3b42PlWXQPdxV16exCfIUl7 aNwWxT2eDLr6oIGDKles0qF9x127dk+bNm3smLG87I8YUuCDj1I88RQx21HIWSn1+Weyf/dN+YH9 B9Wv2yDlE0/h8d7yt5ZEnmnb5o8e3XoQgH3M6LFtfm/D3imTp7Zv2x5FveQXX3Zs3/Hnpj+j5Od/ L3+uHC8RkcYsvUrxF7K9OGvWbI7h6lWrJ06aRA2FPyucO8dLuMEfO3o0fo+tm/bltmm3ZefbCXuX M8HeyAxMfvh+b2pbhGq8acLU4MXAmEVmIL3deaSUDlYCsdbb0Y1LliyJ7zd+6QQqHzZsGGHbkc0R k1kjlUwUeGT2999/H+0dgR0XbhLI6bh2s6AqcdoJ7Y4lft2dOnViFyulcqlGJHn0eWK8FyhQAOGd Ou0ILREegnjU24mKg4KN67inS7znRGSvl4rM7uyYmXbIiUxvb9GiBa3wYYbhfw1nWdKmIfs5KaHd jTHDNJZ2/UAzuwj87laJ56b0dk8myhEBnxLgVE1kenv2EkR9Sf9e5YpNu06dt3L/kZMbw/YOHB/y TeOueb6o9+irX7P33uwlb3s+XCrHR/2fv/Cg7vir/5sTvgtX9qzFiCTzf3nKvVKkzrdNuvQfP2fD tj37j5yYHPJXhaZdM7xXKVnWL5IR6d0V1z2AwstIb/fpeaHKRUAEREAEgpJAAurtp3BZr1z/bJ3m V7ftvDR74ZW1Gy8OG3+6WqPrW7afadDyXKuuV9dtujRw9NVtu87+1uFUhXqBq7pLbw/Kc0ODCpc4 4qi3I4/gVT5q5GjUdZbJI8T6oEGDjx8/TujdP9q0TZ8mg1kmNU3KdPi3E0nm+WezN2nctG7tusjv xYoWX7F8RacOnf5s++eggYN37do1ZOCQVi1b1aldp2ePnlRbssSXKPYtf23Zq2evZUuXjRg+ouBH hYhIY+pEb8/9wkurVq7iSKK3Dx44GB/LlStWVqlUFb96ctDTfHeQbfEnsia8G7A3jgaRqeV2f2Jt IL3dZqhEEBOItd4+efJkvNBR1AlpjrM38jLiefbs2VHRUdfxdUc2z5kzJwo8mzi3s8onEVoIh4IC j95OdHfCjxOABT9tlPncuXOTg7c2wjsGtWvXXrBgQalSpZCUianuhX886u1EjMG5nWAyHTp0IMqN l0bZFZnebpeKUG8/deqU8UtH1ceb3TZ2JuwpkSca8IQAZDyXRuU/HSCzl6cSZ8+eddbgmZbe7slE OSLgUwKcyIlDbw+Xyu/PVSpH4R+adRq2ZO3m9WF7Rk5bXKlJ16yf1Hwod5nbni+WLEvRZM8UzV2k Xq8xs11O6Ujr/y5+Str8eYSIyVbyzhxfps5bPsP7VZK/9vVDuUpl/ahGxSZdRk1bsiFsz+I1m3/q OPT5wrXvy0mA9wCKMCO93afnhSoXAREQAREISgIJqbdXbnCm6o9XZi64ef785aWrb547f3XZ6qvL Vt08c+bqytCrS1fdPHX62qZtN/YfvBa260z1Jq4Y74EZVUZ6e1CeGxpUfOjtaFbEHyDUAAI7Ynu/ vv2PHzvO3dbcufPeevPt9KldevszmbJ++nGhUiVKF8j/Ear7M5me/bFBo48//KRt23Yzp89s3qw5 0WNat2qzZfPWcWPGTZs6rU+vPu3btV+6ZGn7dh1Sp0zToH7DhvV/bNmi5bgx4xvUbfBi9pwEonEF hHc5umdoWK/hhvUbQ0NDCWIzb+68K1ev7N2zd8niJdRz9kwUUkxcfgK2NBRZJd4N2BtHg1jL6XaH I6tBeruNSIkgJhBrvR3xnLjiyM54pBMFZdWqVejthD0hkLvR4dGK8WYnegyWhCgnNDqBx4mIjj6M us7eRx55hCJ888GMBVKTJ09+zz33rF27tk6dOuj5I0aMYBdFvDw0jEe9nYgxJi76vffei/buKXE7 fwax09tZvPXuu+9GJG/QoIGztgjTBJMBCMYffPAB/7PwINX+EFKGNIHx2Qvwbdu2RViDnSm93Uah hAj4hwDXNolAb0c8f/aLTB9Ua951xOYd+7bu3N+674S8JRre/ULp27Li7v7F2+V+rtt2wEMvfZks w2dN2g1Ys2F7skyfhUd3v6WuUwMLqmYtfkuE/1d+v+/FLyv81D1k6dolodumzF9VrHprPN5ve67Y /bnKvlXqx1Z9JmzdeWDj9r0/dxqZKX9VRw23av5X0vdrjvR2/5wgakUEREAERCCYCCSY3l654anK 9c/U+eXqrr1XpoVc27Lj2uawK9PmXpm3FJn96uKVV2YvvLpuM0FmLk+ff3XnnnOd+hHm3ejtLuG9 asOzDVueqdbozA/NztRv6dps0NLlFf9757O/djj7w/+zdxZgUWx9GF/jeu/19v3sFpXG7u5rF7EL ghigiN2iXrsTxFbAJgUFlU4JRUnplpDuDp3vnR0ZV0ovUuLZZ5/17Mx/zpx5d2fd/c3Lew7kHtbK OXIea1FM72jdXjzNOXYha+O+zPV7cg6eyzmqnbXzKGZozdpAr8o9qp2tcYw/PeuOrG2HsCp760H+ Jto5hzRRk737eDa/tyqYP+HtzemUIMcioAB+Fn2lv52BxniEz1zzrFZMNG1cfJvwdpnS8s7tOvfu 2Qc+9iEDhyGhHTMDenv7rF29buK4yaNHjsH8qo/MzDGzKtJjLmpf3Lxhs7+fn7GhCfLbH5k9MjIy BjO/cV1noMSgqZOmwRKvtHjJhfPa6B9J71s3bx07ahx4OyZOHTJwqAJXUee6Ljz2ly5copF7UTEs mlmZWWw0gcAR11mTOfAauqu5AGu/sqA6Ws4OqdYFhLezGpJGM1agdrwdwez4WmVmZnbjxo2lS5fC X3327Nk///wTxnXY2uG77tatGzJhkNaOp4ynHe3JkyePGDECa2FoB3uH6V1NTQ2x7fj4BXjv3bs3 ImUA2P/99189PT0EziCq5eXLl8hLwZXE6l6CuuLt+CBCuou0tDQINnND+8mTJ5jvtUqve+14+7Vr 15gJYXE1obojYpe7u7szs7LCEo9rFnMEbuDnuEExDJW5QsFuVWUDxVUur3kh/jyh5gKylihAFKhO AXykNFHeDkM7c5eU6zB6qcpubRevwNDot1o3H42Q3tZGitt+9DLJeZuRHgMGPlXlQHR8stYd898l ZR7auOvB395vEW1oRw/8x7aDFdUPXF2x+2Kbj7EwfOQuwV2xW/ttSsYVA6ulO7WvG1jFvk2ZqXqQ IypL43oRmdZS3JFy27VvmYdExbu8Climod1h1HI6XgaxNv0VGjFhhvD26t7SZDlRgChAFCAKEAWq U6DReDs/uT3niFZxYFjGkvUFJk/ybtxL563OQJ5MUBhwd/qyjbmaN0pDIjOWbcw3siiwdMhctZPl 7Vlrd2OTnD0nC24bF1o7gqIXmlrmG5gX2bvmXr4Nlg57fL6OPszzGSu3ISK+0MK20PhJofHjwse2 SKoB1c+/ZZx9WCtTZWvOmatFDm55V+4UO7rlal7LUttR8Mi66NmLnH1nCgwelXi/ztMzQLv4pQ82 qdpjT3h7dW8vsvwbVwA/i76Gt7PEuLio+O6du25u7tADdkSdG7rA4EzqCyzuwkIimPbUxNgEVMfH y2furLlYcvrk6efPX0RFRj9zfoYQGBgs4W+3trYJCAhADHt4WDhuVpaWUyZM7dyuCyJizEzNYHeP j4/HTpE2YG1lPWn8ZMyaislYhYWE92jswSaxsbHXr91ACAODidjh1cer9NnOay7A2q8sqDVOZ9Wo rgfC21mJSKMZK1A73g4Mjs8f0GNEuCNBCylYmCMVtnbG2Y75T2G6hl/9119/PXjwIL6AqaioALyj oa6ujoB33JAVA5c7/PCYRBVkGywZYTJMD3jE8r179yLCHdOt4nOsYfzteJVxLBgYfPsMcofdHZcJ rK2tK1+1rB1vZ2ZZhSyenp6ffVOxvB2DAaWv8taqVSvM2frZ3ghv/6zapIAoULcK4LtNU+XtoOUK LSW4o7g7Hli7xb5N1TOxGSG3o4247N/Dl8huOW3r5nvnkRNHmA5XbynFW7TuZEx88olrJmFRcav3 X6E5/Ee0zhWZopaYmhEVm9ht9LJySE5PhPr7IPnQyPiL9560EpNB5DvCZBw8/B2e+7dmA9slFTji vB8lZUZyt+uZ2MW8TXlg5TqCt6MV4msk+TCf+Nvr9h1JeiMKEAWIAkQBokC9KdBYvJ22natuybt8 511efnFUXFlWdmlyWlFkTHFs/LuCwpK4xKLo2JK3ye9hRY2OK01JAxLPXLmd5e2Ic8+/oQ9IXvjQ mmbsR7ULDM3z9YzzbhlnbdqXs+dEkd0zmNiLntiDt2ftPAK3fKbKlvSlmwpMn+bfNi4wtMjatB9Z 8RkqW3LOXMu/Z5rBU4ebvdDeFW72ggdPi6ycsncdy1z3b6GZFXz1uWevFpnbAtqD88MDTyfPC94J b6+39yfpuHEVwM8ihrcLsl+2HR6TMpir9eu4/advOxUVl7BDZQvYJTm5OcZGxkBPWAIT+4Z1G4cM GIbomD69+o0YMhLTpLb7q8P4MRMA1V+8eIHGhLETt2zeihwGQwNDGysbWxtbWNPxCLv7pfOX7Ozs Hhg/cHF5ZmttN27UhP/92X7u7HkpKSlIrcnLzXN1db1xXRcTrU6ZNI3Oq+kuhCB36YUykZH03kND Qi9fvJycVMVkqRg2O3LBNnsUggsF23VbwPTG9I9HtnN2Oduobgx1W1BhAHhKeHtlTciS5qdALXg7 c8LC046ck7i4OGiCYBMEwsC4Djp98eJFLHzw4AFwOhzvcL9j+fDhw5H0Dls7stwxBSoaSJjp1asX sDw+e0HjMQw/Pz98VevUqRNAPZzb6AqfpTDJ1xyWUlf+dhwF+0EE9z785OD/oNkMeN+4cSMmvxZ8 9WvH25GTgw5///33zxJy7Au8HZWoRywPPP9g9VXedu3axbwKgsOr0Ca8vYIg5ClRoL4VwOdJk+Pt tCkd5nbuzwMVlu/U8g+JRo664g6t3wcpthkoP2flobuPnVMzs02sng2X2f4hUx14XFhaacd5uNOz 8/ImKf1L+8+l4D//4G//c9iSs3qPjlwxbjvw40KOGHfYok1FxaV9Z67hG9oVMDXqxVsW0fFJfwxR ZMbwQ3+esob2orVHfxrA/WOI0lINbcym6hMcuUJD65fBSnyjezWx8PXM4Ym/vb5PDdI/UYAoQBQg CjQ/BRqRt2eu3JZ76nJxaETWjsOFNs4FBuZg4NkHzpVGxOSeuYq4mHw9w7KYuByNY0WP7VBAh73w KTeNu1W35cGmbuUI3l5gZlloapV36VbeLRNg9rzzOjkHzxa7v8y/fq/Y3jVDXSPr31OF5jaZqzUy Vm0vuP+w4K5poZNb/u0HcK3TvP3stXxD84wVW2C2L7R2KrhpXPLcu9jlef4dk6wtB4ueOGRtPgDS XuTsXvLSN+fExQzVrZ/AdgyG8Pbmd2KQI+IrgJ9FNfD2sJjkwVzNX8bvP3PbuWbenpSUDAAOSO7k 5HT16rU9u/YgpB1JMkI9+vyLKBiFJf/7s4O4sASCYuCixMSmJ46eOHnylOVTy1s3b+3eudvgvgHK bK1t79+9v5indPvW7ZPHT5o/NDd9YDpAYiBCYzZt2JyVnYUhI7Vm+pR/EOreo3MvOsK9u1DXjt3X rF67fOmKG9d0CgoKcrJzLl64FMVn7xVeZBwsbsxCwTZbJrhQsC24ydf0gH4qbM4+FRwD02bM5w1Q wO6abRDezkpBGs1YgVrwdkYNXDTcuXMnUsSRKoMJPdu2bYvYk0mTJiFJZvny5ZjtFLwa/vALFy7g VMJkqQiTgbl94sSJiJFBGQLMYYkHpQ8ODsZlRBcXF1VVVaTNiIiIwF7erl071GNHGzZsALOqQf86 5O2Ce8GnKHC3vLw843UHeEfEjWBB7Xj7mTNnMCUrbubm5oK9VdlGig6s/uDt8PmjAB+G1d0qf0JW 6JDw9gqCkKdEgfpWAGdlU+TtErxOE1Qu3Xsan5x+4e5j0RlrOBJyHHHuwrXHfYKiL96zSM3KPnrF iDa3s1hbSr6VpPz6g1cLioonKOwoD28HDGdyaXg/DZD/aUB5wgyzUERm1sq9OfkFvwxV5JvV5VtJ cR/ZPvcOiv6ZzoqRR+T7kEWbYJv3D4m6/dBpLG/XT1I8sVlrtO4+iU9Ku6xv1WuyGkZVbpjnXyZg x1PPDcLb6/vUIP0TBYgCRAGiQPNToNF4Ox9TZ209VAKivu90gZkVwtuztx/OOapVFhmTp3k9598T SIwpCYnM+fdU0SvfPD19Pm8vR+6rtmfvPFLsG1Sg/zDv8q2SiOjsPSfy7pjkXbyVuWIr/O3InwFd RywMwtgz1+4ucfXM2XsKGezFVk55Wrr5dx6kL92YqbqVz9uvFhpbAKHn339YeN+swMgi/9pdQPsi S4fsPSeLLOyy95wCh889cQnxMrhnrtpWMVWG8Pbmd2KQI+IrgJ9FX5Mnw6oIvo0ZTteqr58/b77+ ff3Nm7Z2bt+lV/feUmL94WBfq77u79//ByqeEJ+ATZAeM3P6LHFhybOnzyJS5txZTSMDI40dGphu FZntp46fOnPqzMH9hwJeB5w8cQr9iPYTQxbNu7IybGtoYNyzay/EwkuK9h83alyfnv0QKTNv9vzV qqsvnL/g4+2DwJkzJ89UydvZ0dZJ47Ocp+YCrP3KAgComnuodQHh7XXyDiGdNHEFas3bb926hegV uNlhBcdcqDCrg7ovWrRISEgIBvUjR44oKyuDqJ84cQKh7pj3E351+NgB2xHn3rVrVzzCAA/ADm82 eDsM7cghRz26QpY7bO0ID0fIuYyMzOXLl2vQsJ54O7vHzZs3A48DesOQzy5Eo3a8Hbb/1q1bozf4 1QV7q7KdmJiIQHsUQ9LKgTZVblLdQsLbq1OGLCcK1JMC+GbStHg7UtMluH2nqBlZuqRl5W4/qQeX O0dUjjarS/F6TVszVfVAaxHpczcfRSektB+zlHaYM2QbG0py/xqmmJKZs/7wNY4INqky74W1o2MG VVnJeRvy8gtG8XbA395Ckicxc+3b5IwzOg8xPSt29+NABaMnLi/9w2erHLRw8nzuGywxZwNHRPrn IYo7TurFJaU+sPGQgDdego6maWDqTnh7PZ0RpFuiAFGAKEAUaMYKNBZvB9+mqbW6RqGT+7vsnBLf oPd5+aU+gSU+ge9y80oDQkt8At5l5ZRGvilLSCyNTYD1na5XE4xw35V3Q5+exnTH0fx7DxAOk3v6 aqGVY4HxYyS0A+AjrZ22oyOFZtV2ON4LTZ8WmjzN2X8Gznnkw2DXtE9+5bbsf08VPLQqMLbI0byB HHiQdqzCTKy0T37f6Twtnex9Z3JPX4EBHrk09Nq1uwhvb8ZnBDk0QQXws+jreTs6AbnKyMiwsbax BDN3cx8zcizM7d06defK8Ozs7KdNnr5ogTTyXlCJvfv6+GK2007tu8yaMdvJwenpY0vMjrp1y3bw dg8PD53rOiD2jy0eA57LLJLr2qn7sEEjvF55McP2fOE5cfykIQOG6unexGyqE8dN2rVj10CpgXo6 etg1XO4aO3YdPHAIuEbwMOujzRxLDT3XXIC1X1lQa5zOjrm6HghvZyUijWasQK15e2BgIKY6BT+/ evUq7Ogg6iDDmpqaaCM0Jjo6+vr16wDFwNTwqC9ZsgQ0Hn542NeRLSMuLg78jhtWYQAhISEg8PBy IxoFBSDtU6dOvXfvHhb27dsXU1HUoH91vB2cH6Z03GxsbCpvjj4xWtxqMM8zH02Y4ZqxuCPoRjBS pha8HR0iIYexrCNIBz1XHpjgkqKiInByDBLA38TERHDVf20T3v5fFSP1RIGvVADne1Ph7cDjgOqi 0uPkNTz9w/yCo+eoHmohJis8c63sxtOtAbRRALouDqO7XMcxy6Liko5fM+H0XcDn6tgWBTxOn/n6 j10Mnrhw+izk58l89Ld/KKPhPH8hHOxS3B8lufqPnT39QpfsPK+w9ay9h6+rT0iPCSuwi5aS8opb zxYWl2jdsfhtgPz/RiyVWX/yr1HK9BgkeT9Iys5QPYhxer4On7r0X9rlTiP3hrO4E97+le98sjlR gChAFCAKfIcKNBpv54fDZKhtz951vDgxNe+CbuHrkNxTVzJUtpYGhmRtOpC59WChb1Duce2iwFBk xWQs38zC9g+pMnCVL98MnA4fO+ZUBQNH0kuG0rr0JevBxulH3NnId9Qob0hfsgFh7Eh0h62dT+/p JHa6hyXr05VQTBvXsS39qLaTbqzcSj+q0vX0BQJU8tcyA/j4iHpMyWrn+v7du3p9C8EU9+X9YzbJ Kn9Nf3kPpJIogJ9FNeTJ0PntvC/Kb4eScCHm5uWi4frMFdEx3Tv3HCg5yNDQ6NHDR3179ZOT5rK8 HSnsuzV2g7f36iZ04vhJzHN65eLlmdNn29rYmT+yUFu5+qL2xRfPX1y8cBkbwt++Wm0NXKDMi4UZ V5FXI7tQLiQ45PXr1xvXbwJdHz1qjJeXN4D/of2Hr16+FhcXD5BV+cXFweLGLBdss5WCCwXbdVsg OAB2PIK7aOACdtdsg/B2VgrSaMYK1I63M+dscnJyamoq5k6Fob1NmzYIZgdRR4bM2bNnoRhWjR07 VkpKSk1Nbe3atcDsyJYBn4etHUAeyB0E+/jx47jghWLga8TR4CMOc6ciiAaUHsQe6Stw0dcsfnW8 HcsxkShg9cmTJwV7wMjpz97du2na/ilvhxTMYATrQcUxvSkqcb1A0GR+6tQpLIQn38fHh6lHz5ja lf00w2VTxsqOYxTskEHo2BbXIJBaw9ajBm0MAMH47EL26PCHABERERWGh6fI86nyc15wj2gT3l5B EPKUKFDfCuAsbgK8nW8OB04XlRkpvcU/NMY3OHI0T4MjIgsL+uZjugkpGSNktpZPgUoz7RbisnvP 309Jy+o7fTVHUvajlV1MdpTCzkXrT/Lz2HktpLitJLmtpbg/SHHb9Of9ICX/g6R8aym5VuJymB2V zniX4Paepn7noZN/KJ0S/8jec8iirfS2EnIdRi118w5Ckox3YPi5mxZ9pvMz3iX5QwVXB10XlxvB 3eHpHxoQ9mbC4t2MJb7BkDvh7fV9apD+iQJEAaIAUaD5KdBovJ3Ok9mZsXoHkthzjl8oDg4vjX2L bJlcrRulIRE5F3SL/YPLEpOLA0JzdQ1BvPlw+0OYzEfQjU4+3um1zEymgo80pQcPLy9jGx82pMcg 2AnbrrSv8vR4ekPBNv8p4e3N79QgRwQF8LOoBt4umN8OQw6rGItEBJdgYXp6OrzryFpHePui+dKY QTU7KysqMnqJ4hJJ8QEqK1SeezwPCQkNCgyysrSeNnlalw7dpk6epqerZ6BvYGJkEhYahmBka0tr Q33DQwcODe4/tHP7riOGjnRwcATtSUpKAmNHFs3xI8e5cjxQfcCWJ4+fzJk1V7ivCLzuoENA7skp KdFR0WiD/7DDYxoYIW6V22xZwxSwAwAyYscjOAamjbUNUFB5ANg74e3sy0EazViB2vF2CMKcNciT QfYLkw8DIAwK/ddffyFvHBM6IygG+B1cHWb1CRMmIEBm9erVioqKc+bMAbtGgAxmWQWrx1ZwwmNa 1XHjxuEjC8Xbt2/HDKG4ZWVlYRVizGvQnyXSFa6841MUIwHWxmytSJgHyUdvuEDg4OCAkcD3jlW4 HThwgD39Yc6HqT4hIQHEG9c0c3Nz0cZgmDwZZLkLDgPXFLA5+oG9PzMzE1NyYL5XjLa4uJgpq463 R0ZGYupYbAsaj/93IBQzNlyewCUGHA5SelDDdAJHPcLw6YFyOOPHjzcwMMCQsDt8yEPep0+fKikp VThwwUGybcLbWSlIgyjQMArgg6XxeTvtDOcBoXPXn4yKTTS0dOs7Yy1HTJpm15LcjmOW3zd38g6M lJiznibhjEFdSr7L+BWhUXG3Hzq2keRHx6AT8HNxxMJwu09Qmbj4X4Ud5zXO3QMq1zGyvWfubPzU zeipKxq6xraatyx2nbu7eMf5iYp7uk9U+WOEYt9p6v1mb/x71DJ+OAyi4LkwzwdHxvWfu36Mwq5T Og+nrjhAO9sZ0k5b8RnkLtv3n7V3HjpGvHmruO1cS3jvsZweYb3fCW9vmBOE7IUoQBQgChAFmpMC jcnb+aAbuBsudwS5FD33eped966wsDS3oDQn911efrFvIKZPhaU8E1i+PElGALCzbLyxG8Tf3pxO CXIsAgrgZxHD2wWWfWzSvJ2nxZ8v1UlwvtSPFQItIHFw8gljJ4wcNur40eNASYzjEckALs4uJ0+c HDl05JRJU5AAM3nilDOnziKkvb/EwKuXrp4/rz1n9jwEy2D2QN0bumDyWzdvFekrhmD2Xt16Hz9y Ijw8wtbG9ujRo7NmzFJXUz925BioPmgM8L69nf2Na9eRDy+9QPrUiTNYCBRz/brOQ7NHWCswurpv sqiquq5rLsDaryyoksYLDqbWBYS3C8pI2s1VgVrzdggC8Aty/vvvv+vr66ONJchLAU7HLKiIcx81 ahQAO0gvHuFph7MdATJo4BGx5Ah1t7a2RiINPPAwbyNY5s2bN/iDNSxHJ1ZWVgioAf0G7tbS0qpB /Op4Oz5YFixYwJBqgHfY5rELwHwEuWAhQm+YlJj169czFyXxUfnnn3/+9NNPjEsfofFA8bgEwJB5 1Ht6egoOAwEvTOdw469bt47H43Xv3h2dY+4MpqxK3s583AGbY1/M5jD5z5w5EynxwOyIr2c8+biK gU6Y4tjYWIjGFONvB/BnAvhjAcwti9Qd6IzlyMyv+VMUXRHeLvjakTZRoAEUwFnZJHi7sMwYua2p mTm2rl5/DFOirexi5a51WNAnrQyJind64f/nkMXlKJuHyVJVd18wtnJrOxBYntdCVKbtUMWFakcu 6T99FRgZ9zYtNSM7IibBzSvI1Mb1hqH1pXuPL919jMYDKzd3r8Aw5L9nZMclpoHkXzKwlF5z7Neh SuiEhuoSXKF/1N+mZK4/eh1p7bCyt+mv0GYAvRf+3hEUz78zaF2C+/cI5Qe27snp2f8s28vpt6hh gmUIb2+As4PsgihAFCAKEAWamQKNztsZrzg/qmUzQtqzD2tln76Sc0w7a+tBfpbL1qYI2CtY4glv b2ZnBTmccgXws6hOePt76n1qSiri00HI79y+i6yA8j1Q795jptOymJg3drZ2u3buxkypq1TVzB+Z R0VEnTl9VldHT2mx0rDBw/fu2bd8qYqigpLuDb15cxdIikgNGzQSs6aGhoQic2bFchUT4wfIdQ8M CARUZzpH9LG1lbXpA1PMjnrjho7Gzt2gVY6OTo72jpZPrZA2w46hPhqf5Tw1F2DtVxbUGqezalTX A+HtrESk0YwV+BreDiwMbjxt2jT24whCAThjMlDQdfBnoHV4y5ERB5e7pKRkt27d8Igbplh1c3OD cxs1mzZtcnFxYXrAYNCbhoaGrq4uQDQKgNNhNa9B/xs3bjAsWtDmzXyq4LIjeD4YOAOxUYb4F2B8 sHe43OFXxyqAa8aRDne6qKgowtVRw3SIR1jQcYAItzE2NsYYBD+sYGifPHkyomZatmyJSmB50G/k 5AQEBDCjhcEeMTvYBZOuwx4COsH/BZg4FRcamBweZndw0bdt2xaCYIpYmN6ZfTGPYWFhXC4Xq7A7 xmyPTXBpAMeCPxyARPgQY/uvskF4e5WykIVEgfpTACdv4/F2fiQ7fOkS3GGyW6Pjkp66vPpzxJJf Bios33Vedf/Vloh8YYziEnJTlPcmp2WeumHKD4qBtxzp6/I/DJb/beiSXwYvHr9492mdB5jYNDQ6 wcHD97Teo6Vbz43i7ew+ZdWvw5e0HaT04wD5H/tzcf9pgHzbgQq/DVvSdYraaLmdS7ZpntB96ODu A57vFRiBmVInKu7+bYhi6/7yE5V2txu9nIbn4Or8zHZ+m9dygLzoP+v+GrGUwwwPa8Xl2o9eYWrj Hv4mAVtxJPhXCurZ6E54e/2dFKRnogBRgChAFGiuCjQ+b2fiWYCsq7pXEd5SgXU3haeEtzfX0+O7 Py78LKoT3g4hY2JiJk2YJCwkgllTWWDCNLAWDYARGCkRJmNtZePv/xq+d9gXYVBfvlwFs6lu3bS1 Vw+hlSqrVq5QBX5fp74OnnYYRzMzMm/dRJLxbTSYTpgXDW3AKIQkBLwOQBaB1VNMlrr88uUrd2/f fWDyANOtMqbT+nuF2UOrbhc1F2DtVxZUR8vZ8dS6gPB2VkPSaMYKfA1vB0sfM2YMDN7A1/7+/phB FdHoYMVYCEs2eDLwNbA2QmOwFq5sZLmDaSN/Bn/4A0c3UDbM5CDzyJZZs2YN8Dg+Dby8vKZMmQJO jjh3UHfGfF7DpwQzbyn4syBvx+vFbIJMGJjk8fEODzl84AcPHsRMqfjUxVr8JZGFhYW7uzu7C3yQ Pnz4ELQfe8fpj0eM2dDQEGi9whuA6Ryf9uBpKEPnqLx//z6mqGaHisgX9G9ubg7TfoXNmeFBqydP nsB1DxiO3SFpB8cCrfCKsJ2wG+KiwKtXrxDXAxqP3SGKZ//+/ba2thUS4Nn6Cg3C2ysIQp4SBepb AZzFjc3bub8PUcKso2FvEoWmqnH6yJzVNU1IzdA4e7uVhAw9tymNu3lIR1/574XsvAKlbWc5wvCc 8xm48MKBCzffeeQIq3rYm7fHrhiN5O7sNGp5a5qBy/IhOZsAg34E7ugWfUogf4bbqr9Cx1FLR8hs P3zJIDw6ISE5w9DSdShS3PstoAs+JMPwY9vRrYTcuMW7w2MSTuuYcfosKl+L5Vyhqep+wVEvXoe2 HwMUzw+cqc9UGcLb6/vUIP0TBYgCRAGiQPNToIF4u/JGfo46ndneHO+Yg5XMl9r8Tg5yRFTpu/ey y1ZXJ8R/ypNJT0tXX7WmW6fu69dufJvwFpG8SCQGEscvL+YGA/wTiyf79uyfM3Pu7H/mYFJUQJ6y 0rK01FTY0TU1tbiyPMx/ikcF3mJTUzNMh5eWmnbpwuUFcxfMmDZz53aNByamSHFnDY3oFnwGOAsp 7lcuX5k7a979e/qREZEIKwZrYnZa3aF9/XL0X3MnNRd8dnifLag1TmeHXV0PhLezEpFGM1bga3g7 ZAHBhtEageSwak+aNGnbtm1ImAFmR0QMTOwIP0GYzJUrV4C49+7dC+I9ffp0wHZ44AHYgcEnTpwI LI9N4GZHEA24PcaDq4SYzxRecWdn588qjywXxh/u6OhYXTH6BJfGGKorqPA5g09s1ONR8GO2wrbs JxtTzEB71DDL2bXMVhWeCnaFXTA9CE7GKljA9sksxFHUfCwVtmWeEt5epSxkIVGg/hTAWd+YvF1S /gdxab0HtknpWSNlt3H6LBCZppaZmz9DeU9rUZk/hykJT13decxyGMiBx9sOUrhl6vDA1qMl3Obi sn3+WXv6xoPI2MSXARHbTt7pPk2dDnJHCg0gOcA4y7qB2dk226hQICGHXWDznlNXbTmm6+kfFh6b ePyKcb/pa/ncng/qsS2N8eVmLN+flpmjZ2rPEVrwoWdmF5iqVWZbRGwi0ubb0uEzLKsXGAw7gK9u EN5efycF6ZkoQBQgChAFmqsCDcDbS4PDMpdtzFTf2ZzvajsK7V3ZX6D19G7B355/ec9wjlVwtX35 tqSSKMAo4BBHcY6kPI6pWo8v5+0MVLEwtxgsNURKfIDGjl0IWl+zeg1mNS0pLQEn8fP127l9J1YB yPfs0qtbpx49u/fS0dFlSQsi2WUXyUovkDU2NMa8eFiOPlHQu4dQ9y49e3br1a1jdwkRSQD55x4v GHxE7/Q9hQn+7O3sVJaq7NqxKzQ0jIU/VR9S3S2l917jreYCrP3KgupoOTuoWhfUjrfvfUENOh+k YF22woFa60xpeFDHvakrAZRBGGUTS/mlUsn5VNlnsh/YsZMGUaDeFag1b2fOXPx5DlguElf69OkD 3g7MDrs7JiQNCgpCjoqenh4eb9++jcuOSESBdXzZsmUINsf1QRUVFfzffejQIbjikZQOi7uIiIiw sDCIPRg+YljYTJUaJMAlxdGjR4O3I9gcGL9yZeWPl8pLBLeqcm2VC7FVdcsFO6y5XbmHykvYHiqv qryELa7QILy9giDkKVGgvhXA6dk4vB3sGndR2c3HdQuLShZvO8cRkUH4+XTFXQXFJeNktyhuPm3u 6BkUEevyMmAMbyefe8t1Gqfac+IqVHI3nPAPjYlNTNt8QqfXpFW0WR13JvuFRtlofyHl5tN4ZjB8 A3wLSV738Su3ntCNTkj2DY6RW3+SnrkV8Bw1khgzr80ghaEy27tOVPngfsdW9HL63kJcTmHzqZy8 /D3n7rYQY2Zx/cJh/Ocywtvr+9Qg/RMFiAJEAaJA81OgAXj7+4LCsui4sjcJzfoeX5ZNO2br9R1C eHu9yks6r6AA+OfPV99zLlEcrfcnvIBQPqxn3+fhMSmDuZq/jtt/+vYn86WyBWyHzBKkImxav1lS rL+EiFSfXn2BmPx8/OJi4+7euTd96j89uvXq0qFb317CWNuvt3CXDl0XzFsYEhzCdIIp+c5rnd+z aw8i2ZklMdExXBlel470JpKi/elNOnbr3rknZlzV070JmyiD1pF4sGXTVpmFMuHhEezA0GDbgoNk F/LXlx9weYXgQsF2+XqaMuHGPBVs/6cCwc3Z3gR7aOACdtdso3a8fZDRe84FiqNdfj9PcXDX4t81 Kc45inOW/3iR6qRHDTWi5j2lVjtRh15SukHUkxjKKYHyTqHCs2gsX1j68d3Ijoo0iAJ1q0CteTsz DGweFRWF/7WRzY5ZUMF1Mb0p/gAHax89egQCv3PnTh8fH3wqgr1jStDz588DsEdGRiLjHXD+woUL THw6YlswmSl4O/pBJjm2hYsbnVT+cMC1RUB+/FkQrkgC5iPzHLwdCTZMP3UrTrPpjfD2ZvNSkgP5 VhTAZ1ej8XZxOanZGzBp6T0L59ZwmANZS/B+G7rY3Sc4Ki4Jce7OL4NPXTMJjohz8nxNO8ZBtsVk /xq65IC2AbLcLZ29hspsawnrO21oZ7F5VW72LzGTMz0wlRKyrSXlhsltf+r8Kj4pbZ/2/XYjlJAk Q4+QIfkIq/m4U/B2uZb95ZFLg0ab/vLXjWzik9KHLNpGXyNAzjw2+ZIB/Mcawtu/lVOMjJMoQBQg ChAFmo4C9c3bK/8kbDrH/s2NhPD2b+4l+3YHnFdCjXpAcS5S4O2tLlMmER8JJ3tSC/jbnYuKS9iD ZQsqLAGAgsUd2emYGtXJ0Qnzmdra2q1SWQUCD1t7147dBkoOQizM3Tt3x4+Z0LNrr17dhA4eOJyf XwCvJsBUeFi4t5eXs7NLSkoKHOw3ruv07S3cs2vvwQOGXr18bd+/+7F5107dgdzF+kksVVpmb+eI +AWgpwN7D1y5dIWBVMyQMMIqB8ku5K//b7yd2eRresDYKmzOPq2gJFPJ7JFdxTTYTRj7OvuULWOX fGEBuyHbqB1vH25M0bwdl29quOP9JnhHffkdb8JfrlH/06W63qKE7lIjTCglO+rwK8oimorPZYdG GkSBOlPga3g7e5bhwwqhMSdOnIDJnP1rHSwcNGjQ/PnzkSqD72AbN27ETKnq6urg6jClA6q3a9cO ceXMkeC6IZj85cuXgdCjo6OZhWz/7NFiCULdEQ6PDHN0+8svvwC24xG4nq0hjcoKEN5eWROyhChQ rwrgw6oReDvgNkB0v0XWLq+CouL+N0KRToyhLeJYzhWatmbOuuOISW8/ehlHZNHJa8bR8Un/G7IY JvPek1eZ2T1/m5K58diN/41Q/gC9aQzOOMwB3rn86UpZfzs9rSoHJJyG3mjz90vvSMBPTi/kZ7nT DT5RR2+SCoD/HUYt3XJSLyE53dTWo9eUlQh75w8Sm6NDfqUk96eBCtJrj53QfXTqpvkC9aOtxLld xy5/+TrMzs2nTX/E1GC/hLfX61uYdE4UIAoQBYgCRIEvVaC+eTvGkVlc5p6U5pmS3ozvL5LTk/KR RP2lsteujvD22ulGtqqFAgc8+T5koFHt9wueVt2BAG//xN9edTVFAfBiIjw4MN3d3E2MTQ7tPzx2 5LiuHUHIewj16DN7xlz9e/qwaDo6OEqJ9hfq0Ve0n9ipk6fByXNzcl94vMBW3t7efr7+SGAoKi7S 1dETF5Xo1V1IpI/YpYuXYBw1NDCUXSQn1L0POgS9Hz54xL+79xoYGFjb2Pj7+TewybMyEKsgS80F WPuVBbWOi2HHWV0PtePtirZUJ+0UKf13/Q0oCQNK9D7V7x7V+w7V4zbV+SbVTpf64wb18zWq9eUP V3lqwvJ4WwLLA8UzDnl44y9Sg4yo5Q7UeT/KOYEKTKdic6nsYupdPX8ms1qRRvNT4Gt4O6NGlacw FqJnNTU1cPX+/fuDtPft2xcToUpISKAxcuRImNsR2I4ZLqqUtMo+UQksD2L/448/ArO3bt0apB0d gvMjAh1rq9uqyl18VwsJb/+uXm5ysE1BAXwcNTRvZ5i2iOzynZpl794tWnOUI7yIToOh5xjl83Cw d8Swi8r+PGjx5GV7w2ISruhbckSle09Zbevmk5iSIb/1TGsJOMwR6s7gcT4wl+K1G7H0soFV//kb MLnqB6IObE5HzTA983E6vQsuvZAB5niUkBOeue6aoU2HEUv4oet8Qk4zeQxJrrUUV2HLWczHau3q 022SGh+5I5idD/CleF3Gq942s49PSvUNiXLzDo58k6ChebelqMyc1Yczc/LWHbyKYdeHuR19En97 Uzh9yBiIAkQBogBR4NtSoAF4u1tietf71qLG9s31LmJs38/Q7mZITFk9A3fC27+tk+vbHe3hl3zY zje3c9bZMcyy8rv7P/F2BvgA4cLbef3aDSnx/p3adUZOOxzpQwcN262xOzg4mPF/wvou2lds4thJ iGpHGgxkxFYIPT5z6uyh/YeCg4LxFAvT0tJv3bw1bvT4Pj37GRsZYyFukRERB/YdHD18DLqFZx67 wI4w9WpUVDSmXm3IV+SzgKvmAqz9ygKoUXMPtS6oBW+n30LvKS1NzcKCQjDwkndUQSnNw9MLqaR8 mo0jKAaQHIkxHomU1RtKL5j2rq9xpnCtZ7gJ7WlvCQ7/WWM8CDw/r6bNFZrhS+hTEx9SG59Rd0Ko 4HQSDt+Qb//msK+v5+01qADL+pMnT44ePQrwjsD2VatWYfrUtWvXgpAjMQbTr9R88lbuGaczUt+P Hz++fv36ffv26ejoIAqe+UT9r11V7rwZLyG8vRm/uOTQmqYC+ERqaN4Ov7ekfJcxy6Pjki0cPX/s L99aijdVec/8VUf/pIk3n4QDdwtLz12xLyI26ayeWfvhysJT1Tx8gwMjYscp7kZOS0tx7oL1J9uN UubQMel8kC6y6OhFQ3z2evgEdxq9tNyIzvt5AE9hx/kOY1X4Gey89uNWKO26yJ/PVI4h4X8PU3Lw 8Md10GsGli3EpeneAOHFuR3GLpu/7jiy4ltIcKco7Q0Ii3HxChSdsYa14v8+VNHw6bPIuESlree6 T1D936il0uuPIwln8MKNP0vxDJ64hL9523Oy2gfyT+P9urwT3t40TygyKqIAUYAoQBRoygo0AG93 TUpr3rxd1Ijw9qb8Hidj+28KYPJK2mPMtxC306MmyKzA9oLEhm3T+e08rS/Mb2e3Qm9pqWna2hdm TJsxdtR49VXqjy2eZGVlsaOMjY2T5ypMGj/59q07FhaPA14HYG1mZhbc7w/NHmZkZObk5ADOP338 FMHvs2bMnjltVmhoKDvInNwcGxvbdWvWTxg3aeqkaee1tFNTaWjPFjANwfHwV9LHyC4UbDNrK2xV fwWCg2HHIziGBi5gd802asHbmW01wdv5blu2q8qNypd12JrobApT9570ppba0xC+2y2qox715w3q p6tUS8bxXhnIszZ4RMRfpKY9os77UyEZdAh8bglVhssAxADP6ksanypQf7ydPa8BarAX/OkNwDjz yK5iG58O6vPPBK+joZNa9/P5PTWLCsLbm8XLSA7iW1IAH0oNzdsBtPvJbDhyvbi0dKTsVk6veWp7 L8UkJMe+TTGwcG4hKY0gF5qNi8u1G7dilMKunwby2g1fYvPMOzE1c/xiDfjeQbBbiUlfNbSydPEa umhLKyB6cbkZy/YV0lGK78vK3p3RNWsBh7wk769RS7VumvuHvfkR0S600Z330yD5wPD4K/pP/xq9 tIUkt4WEnPqBq6X09PDvSkpLV+2/whGTaSHFG7xgo6XzS+07jzn9FtLAXExu6pLdb5Mznjq9ajdc me5KnNt/4ea0zOzFW0/T/nzEuUtwfxLjunoFbDhwmdNz3tBFmzOz82B3x8HykXsdB7kT3v4tnWZk rEQBogBRgCjQNBRoGN7e5b7VZ83tcImLGNsNNnMabe4y7KGzOJ4a2X12q6ZQgHH2NbTTI/72pvGW JqP4GgWsY6m21/hhHRepH65Qz96+V1Ndjg4FoQ3bpv3tXM1fxu8/c/vz+e3sVmjghkCYoMCgFy9e ZGRkvKN/d3zYBVYhGOHk8ZOd2nUR6tlXtK/ozOmzVixTWau+bp36uvXqG9apr1+5YtWcmXPFRSSR QtPhrw6HDhxmMxOwOboCcQKif/XK6/Xr1yzgpfdaDnMF26xcggsF2w1cwOwOAxDkZoJjYNpY+9mC 6o6C7eFLCthds4165e3sXgQb5a+b4DK6nVFEhWZSrm8p00jqrC+l5kRNeUR1v/XhDVzRD8+y9/PU /3SowUbUIkt6PlbrN1RWUcWeyXOiQP3xdmiLU69uFa7cYeUldbvH5tEb4e3N43UkR/ENKYCPpobm 7eJyfw6Rxzyk2ncsOD1nD5felJKevWq3lrTKwfSsXOn1J0ZJb5Was6HX5JWtBigApLeRktN7YPs2 OX3q8r0cUSbmHfnqPO6GkyDkUXHJs1cd4ggvPHLJAN9XoTwyahw9fP8csbT7eFX75/5Yck7XjNNj Dg29gfr7LDh1wxgLYYMXmbn+BzHZu4/s8P2NBvXvyvSMrX/tLz+Yuz00Kj4nr2AuegZIhy8dG0rI zVI5EPc2Vc/Uvu0AHnzv89ccRbA8R0yaxu+okeB2GqkcGhm3arc2R2hBSzHZE1dNYhNTe0xWoeNx PmTI15nFnfD2b+gsI0MlChAFiAJEgSaiQBPh7UDWYg8cljl5PUtISy4sCs3MO+gTMtjUUcTIFkQd KL4pcPXqxkB4exN5M5NhfKUC3qk0Y2ec7TAMm0Whv/crVtD+9ipv/ylPpsoeKixkABEen1g8GSg1 qHunnpgylR8L06XDX506/P3h3vHvTl06duvVrTfmVJUQkTAxeVCBPFcATRWeVthpPT397E5rLsDa ryyooEnlw6x1QcPz9sqDr3lJbjFlHkVteEZJGtDXj2CAb13+xv4EwjMEHhE0WpSUAbX3BRWQTuWX 0nE3dU1Dax4vWdsUFahX3t4UD/i7HBPh7d/ly04OujEVwHebBuTtCH5RAPHWOHMrv7Coz3T11uKy Txxf+IdE/zGA+3O/BWFRsfGJqVGxSWHR8c6eAX+MVgZv33xCJ6+gaPkubSTM0HOP0nkvNN8Wmrwq PTMnIztnjIIGpl5V2HCSryPtEjmrY9pSRLr9SGUv//DSstKRvB18VzwTFCM3hLu1pLQsMi5JaPJK ZK0fuqT/7h3+wI62VSzbockRke4/b31qemZUXGKPccs/wHY6Aweedpnley5m5eRvPqGHwQyR2Rqf nNZ/zlrExbcUl0MuzUV9SywRmraatuhLyEnOWp+Umnn0siGGVx41T3h7Y77byb6JAkQBogBR4DtX oCnwduD0vkZ2e18FP09Kd36bdiM4xiAy3jkx7WZozIAHjsJN3uVOePt3fhI1j8N/kUS11y03Bl+g TvnQh4WfRQ3J2xklsVPMkfrI7JG8rDxS3EcMGSUhKtm7u1CPLj16dOmJeVThbB8+ePikcZNlFsqa mZrl5+XXjKYb5QX67JBqLsDaryyoNU5n5aquh6bP29lDQAN/PBGWSeEPNy69plY7U2NMqd+v89/n FcJnymdfxVnwjwWl4UE9iqKSCwh4F9Ty+2oT3v49vN6Et38PrzI5xialAL7bNCBvp43i7Ucoxyam GVo+ayUp9/NABa3bFm/eplg6ee06rRce85andkRG/diK3Rfkt51rJS47jrcjNSvnqr7lj/25fNIO Xs3n7ZgIVWyRmbU7xHwZGC6/+bRPUCQtLH15/j0M89IbTt40sy8qKfELifp1IN+gztjU+8v/b6hi YHgMvPEmVm4L1A+npCNBEZvRf+XkGxwls+7kc98QyHLP3OnjbKfwxtOon9t2oMKle08xZ+tYnsYv A+XvmDt6B0VtP3lr7/n7LhjHm7dLNc4j752m9JK8HwfI3zS1i4xN7DFepXzwhLfTrxK5EQWIAkQB ogBRoFEUaCK8fbCZo296tk9a9qPoRJOoBL3QN6HZOaGZuds9Anrq21RnLG8iywlvb5S3LtlpHSoQ nFGe2Q4Iqc3C9sbh7Tgu/O5AoHF8fHxIcIjlU8tzZzS3bdqqpqK2SnX1ti3bNM9qIvIdEe5Iekfo cc1cug5V+k9dfXZUNRdg7VcWVEfL2aOodcG3xduZ4xX0q6ONq0vb3Kg+d6kWLHVnZgcWfIolF2k+ j8lbC0v5v43rOAKEfSlIoykqQHh7U3xV6npMhLfXtaKkP6LAZxTAd5uG4u38WU0luPPVj2BMs1ce hHcdFPrXQQqjFffYuHrheybCWEYu3MDps5BeBWrde46dm3dAeOxvwxbTT2lnO59XMw1hGcVNp9AV ct2fvQy0dPE2s3G/ZWZr/NTlqcsrOzcfzGRaXFJ2zdC6JeZUpWH7B9bdSop33cS2tPRdRFySjYuP pcsrbHLL1N7U1t3a2evZy9eJaZnYUH7DcdqXXr4Vn7eDonM7jVb2Doq0dvPliC7qOFZF85Z5YERM SGTC/cdOw+R3/oDkecaBLyGH9Jt/lv1bUFS6eNsZ5L1/GDxzCF/9SPJkPvPOJquJAkQBogBRgChQ SYGmwNuFje2nPHYLzMh5GP32sHeoTkjMvlfBLonpnskZt8Pe9NK3AdBuImi9ymEQ3l7pbUUWfEsK OMVTHRhnO2DjBWoHbd6h6SL/sXH87fS+y2/4g9uioqK8vPzcvNy8vNz8/Hw8BSsuX0//WzOaFqxs sPZnh1RzAdZ+ZUGtcTorUXU9fIu8nT2oCg0kz7gkUFp+lKojNdaUnn0VjP2TzBn43rUoznk6cEbd mbobSkV+nNq3QmfkabNSgPD2ZvVyVnMwhLdXIwxZTBSoLwXw3aaheDsfd/ddYGrjHhAWA1j9gZ8D UIvJ/jJUafHmU1bPvGISU6/cf/rTUEVOP2nVPRfzC4pmLt9HJ8l85N7lyF2S9/sIZZn1JyYo7p6o tAvh6nNXHZ6nfmyO6uHZqgenLds7VnHXTJUDknM30bOvCvJtCW7/eRtnrTwwdrHGNOW9KJ6z8sA8 9RNzVx6epXJw8pLdY5Q05q8+8vuIJR/C2z9uy7fWi8vOVj2UkZ276egN5Mb/KMXrOEG1y6RVPw/C RQH6CgKG2lqKq7hDc5LS3pZiMs4vXz928MTh0IdQ4Sg+9vzhWsAn46xxLeHt9XVKkH6JAkQBogBR oPkq0ER4+6THz7xTM2+EvNnkEXDQO3iZs5dlbIp7Uvr14Bj426vj7QiiETay72doL2r0MeCdnncV fN7IjlkLQg6e38+IrhQpL2NW0UuYtfx8eDxlltA98JegHndsjjvdwL7KawTBO+Htzff8aP5HZh5N tbpczhi1qX2enxwyfhY1fJ7MJyOo8UnNRLrGTet95WfHVnMB1n5lQXW0nD3yWhc0G95ewfReUkbl llBPYihZKzry/RPqzve6A8XDD485DgYaUvphuMzDakkazVABwtub4Yta6ZAIb68kCVlAFKhfBfDd puF4uyTvjyEKeQUF6w9dxYyiHDEmjJ0f9iIl30KC127k0sXbTpvbe/w0SL79iGUxCcnGNh5tpJgZ SysRabBrERmFLee8AiIQ+Z6UmpGWkY0ZV1MzspPTMt8kpASGvTmmZ44aPgMv98YDYkvKwz9/5rZ5 YHgsypLTMz9smJmTlJKBrjwDwrgbT3JEFlYzySmv7SBFE2u3kKiEHhMQFIOZUmUR4U5nttM4nU5u H8HdjpCc9Yevw6K/dJd2RnZe72krP0z2WiNFJ7y9ft/upHeiAFGAKEAU+L4VaAq8HXBb0tjeNj7J Ny3raWzS/fC4e+FxPqlZr1IzFRxf9jaoOk8GW0k9cFByfLXGzW+ChWtfQ/7Mqkb2Eib286yf93/g gII51s8nPXFFzWpXv8WOrwabOjHofq61xzp3/zlWHtMtPda6+S139h5v4aLs5KX2zHe+zfNZlh6T Hrv2M7Kb8sRtgY0HZnHF5tMt3eXsPbEvBYdXFVLlCW//vs+hb/joTSKoNgLzSCJhA7dPIeQH3i7I ftl2eEzKYK7mr+P2n77tVFRcwgrBFgguEVwo2GZqsIRdKNiusofmXSAoCKuJoA4NXMDumm00G97O HlGVDde31J4X1MzHVL97AtekmMAZmN416atUMlbUnVDKL40qLquyD7LwG1aA8PZv+MX74qET3v7F UpFCokDdKIAvNg3H2/ssXKGhVVhS2nHccjjAuZtPtZ+4kjafg1djNlI4w4Gsxbm/DVfmCMuo/nsB s5qOktvOEZdlTOP85HYB6k6DbrmhMtvP6T56aO+J+HTvwEgv/t3VO/ipi9dVQxvuplMchMkw+TMM 6MZWeCopJ7/xzDUj26fOr9y9g70Co/jbRqCTh/bPz+g+Giy9Da77qug3n9uLy43lbacnTj0Gi7u0 8D9rthy/OXHp3n7T1P8YtqTf9LUefsGGli5ooxOhKWoJKenbT+hyhBYSf3vdvGtJL0QBogBRgChA FKiVAk2CtxvZ9TG0XWDz3CMp3TMl83xAhEFEfGBmzh7PIKFqYDvtWjeyU3LwMoxMmPrUdeQjF0Dv 8eYuw8ycBjxwuBQQSS8xtpe28wRaRxr8LCuPQ94hZ/zDxYztx5i7wDYvbftitLnL7pdBJ/xC/7H0 mPzE9XpQ9CJbz4uBUaf9Iw56BfcxtDnuF4rGSb+wBbYvsNXV4OhVz3w0/SNUXLx7GdB4n7kT3l6r tx7ZqDEVePee2upGtWSc7fDuatMh1ZVv+FnE+NsFwS/bDotJHszT+mX8/jOEt/MzbaAMK45gmxVW cKFgW7CAaTNr8ciuYpezjZp7YOzrNfTwhQUVBoCnzZ63C6pe+o7KKqKis6lzvpTY/fK/BGGoe7np /ddrVM/b1N4X9Pyq5NZsFCC8vdm8lDUcCOHtNYhDVhEF6kMBfC1pIN4Oyi003/6Fv4d3cBtRuT6T Vmbk5A2X2QwivVDt8G9A0yhAbDttepfn9FsYEBptZuPGEZpXTssFDOqsRVyK10KS22qgwq/DlDqO XtFzwsqeE1R7TFDtPG75nyOUfxi4mJ66lAbsApS+fFvY6VHwxwjlLuNW9Jiwir/tSnTy61CllgPo 2U75+61qp+hBkoe5XHVNrALC37SV5HUcu/yps3dYTAImTLVwfOX5OjQ0On4AguhB7EVlfx+kYPPM x9EzoIWYDN1t+QC+skHyZOrjdCB9EgWIAkQBokDzVqBJ8HY+uAZyH//YRSc4OjI71y4+FZ5zPmy3 Y0NgWL7NNISN7eZZv8DkqovsXogZO2h4Bt0Ji70VFrvIzvPs64iRD11Eje2O+YSucvE9FxCBzoea Od0Ji4PdfYiZ06XAKPVnfpImjjteBGoHRsnavQRvvxwUKW334oRvGM/hpebriLlW7ihb4vAKj8ud fSY8fnYhMAq9HfUJVXB4KUR4e/M+MZr10WUXU5tc6UhqOjHjIvXjVUrbnz5gQczICICfRU05T6Yp v0qVQXeF0dZcgLVfWVDruBh2nNX10Ox5O6sA0xA8L8Iz6QkOhhpT7dkpD1j2jhPqHDXrMfU4mnqT Q+GSFrl90woQ3v5Nv3xfOHjC279QKFJGFKgrBfDdpv55Ox8yS/E6j1qam1949NoDjqj0fPWjsW+T OcILRKavSs7M6Td1dUsJudX7rkxfuofTa+70ZXtwgKN52z+kwdCMms/hPzrV0Wf5ErjiEZwOHzuA 9oe7LEcMtnk52jzPkHPG1o5N6K3gb8dyFHDpaUxRKUrPbUrjcXQC5o+FH+r5+6W3EiD2NL2nLw2M ltfIyslT2HiK03fB3yOXD5TerLbvAg4qNTM7NCrO1Sv4/mOXBauPwAC/X9sAc7AKT1XjIBvn4yEI 9CnY/5e1CW+vq1OA9EMUIAoQBYgC348CjcvbYUGHORyxMMMfOY80d8HjWItn10Kilji9QqLL1Kdu /1i64xFpMygT5O0ixnQ8OxbCdn72dbjm6/DjfmGg7nCeawdEHfcNpXm7kf1Z/4i1rr5aARGoHGfx 7FbYmwkWz2CMH2TqtO1FwIXAyP1eIbCvz7B0B07XDYnZ8ypIOyAS2e+HfUKvBsegRsbWE4Z22gz/ yOVKUPQRnzCdkDfjzF2Y+Brib/9+zpRmc6Rv82haiHlR6XkhL1K/XqecE6o9OPwsIry9WnVqXFEz LcemNRdg7VcWVEfL2VHXuuB74+2sYix4R9J7bC5lEU0teEonutOnEkvd+WdWRz1q9hPKJraKa1hs b6TRxBUgvL2Jv0B1MjzC2+tERtIJUeDLFcB3mwbi7ZJyM5fue0+9x7SknF5z9IytH9l6tBJZuO24 bmRcUtuB8j+JywJTK28+xek887ETTOLRbaUQBaPwAVADUwN0A62LMBOtItRdAUnsXSepocO5qgfn rjxU6X4Yc6cOXbTlh4F0YDvNzNGJhDyeDpfeOgdbVbEJOjk8U+Xg70OVP7jimf1+Asn5+F2S+/dw ZTfvYKtn3i2ReCMh10qCt1frbnR80gzV/QPnbFy48eSRS4aHLuhz+i6auWx/flHxPPWjNOSvQO+/ jK5/Avz5mxDe/uVvclJJFCAKEAWIAkQBRoHG5e1A34DtNnFJfunZL5OzXiZneiZnxuUW+KVlP09O R7zMs7dp/mlZp/zDe9y3rozcRz1ynm3lscHd/3rwGzB22NQPeIVsef5a0z+cZ/9yylN3rdcRSFy/ EhSF9HWsOugdgk76mzpOf+rGc/AEWscS3Cc/dp38xO2UbygwPug6vO4rn/m6JaVhq0W2L477hM60 8hhj/kzrdSTmdd3zMmjlM59e+h9T5dFnX0M7vZCYMhbH1M/bS1lZ+cs7Do96o3HfHQHd1m8o90TK L5UKSKeCMqjQTCoii4rKph2Y8bkU6GtyPpVaSMHzTG7NWwEYbn1Tqb9u8GE7HxJ2u0V5JdMHXd07 Fz+LasiTofPbeVokv51929CIvFxKwfZ/KmCKmc3Z3gR7aOACdtds47vl7awCaJS/zrSP/YI/NcSI 6qD3KXsHeNeihO5QukE0nCcB74LqfRNtwtu/iZfpKwdJePtXCkg2Jwr8VwXwxab+eTvfyC0hu+W4 XklpaY9xqpxe8569DExMy7D38IuMTbRz9+k4emmvqWpZObntRi/tMmppTn7BKZ2HdLYMY0fno/IW Ugqj5Lat2X+p/eilvw1Sbj9yKfC10rYzaZk56fQ9l//INNDmP83IiXmbamj5THTWOtrNLskVmqqm /9glNiklPYvZSvAxOz0zOyMrB1Omik9f06I/7+8Rin/RQTdg/p960fkWdxQcvmiUlJopMl0dncts PIX2xqM6fKe9HELpf6Tnh1WCp73bRNW0zNx/Ne/Tq2oL2CtsSHj7f32rk3qiAFGAKEAUIAo0Im9n +Lms3YvA9JyFti9gYpc0cZhq6fYgKh5MGzHswoa2mOH0tH/4i5SMfyzdKvJ2I7uxFi7r3f1VXXwG mzrCc77OzR+TmUqa2MvZv1R39Vvi5IVM+PEWz5SdvPFU1s5T3IROfR9g6rjU2Xudux9toX/iBiAP fj7tidssS3dxY3t43WFlR/iMnN1LPEUgPJJtMKcq5mCdY+0xxMwRDnkUox92PE2Tt0dERBy5b9/2 Gj82BEEHuIP/XKJ+uEz9fJX6/Tr1tw4FE2bXW1SvO1Tfu9TGZ+RsaOYK7HlOv/ofvLgXqZkWVEIe fcgsOax8/PhZVANvp/PbuZr8/HZnMl8qX0kakzMy0q3yNius4ELBtmABu3mV/nO2T2Yt+7RyD3VV wPbMNghvZ6UQfIVxBfNBJD2/aiucZazdnT85wp83qLGm1OUAqohMq8pq1+QbhLc3+ZeoDgZIeHsd iEi6IAr8FwXwvaVheHtLUVmDx87BkbEc4UUccZ7U3PWL1p8+du2Bg5tvdHzK67A3z32Dn/uGcPrM n7/6KI5gktIeOteFodN83P3bwMUOHn6FRcXGlq53Hzk+exnw8yB5VY3zAt+bKyTHffwG6Pjc/4+h in8NXWLj6gOPfblCTKO8jHrHX/4+MztXaua6v4coGls63zZz4IjKVAqBYSzuvPEKO/ILinibz/0g KX38mikM7a0lEWLDX4sxo0Gn2cgjKsfdK9DUyq2lsHQFbF7rp4S3l7+I5F+iAFGAKEAUIAp8qQKN xduRBiNsZDvd0jW9sPAdVZaQXzju8bOhZs6eyengf8XvSk/7hfU2sN37KpB6h28j7+BylzR2YCNl 6DAZY/t+RnY99W1669NTlwKA99C3Qaw6lgsZ2vY0sOmlb4vY9n6GtkKGNij7kABDc3J7bNJD3xab oIdeBlhri7XwqGPbvkZ24PxA6H0MbOi90AW22Bw9owb12AqVCIf/OJim6W8PD7eztQFQrZgzzICg Tx8RiXA75OPXwS9995C6b0SBrGJqqvnHwPaWl6hZFhQmghSkhVUeCn4W1W2eDDpkbsXFxfn5+dFR 0W6ubrY2ts89nickJBQUFIBxYSRMTZVD+lYW4hBqHmrNBRUUADwvKiqCPnhE+0skYnh7DWOodQHh 7VWqyr7g+Luh5Q5UOx3qhyvll7eYz9vzVNur9MTEGUUk3b1KCZvWQsLbm9brUT+jIby9fnQlvRIF qlUAX2/qnbfzaXmrfotevQ4zeuLM6T6bhswIVxeXbSPF6zBCeYDM1q1Hr1s4eO46d4fTe/7Ra6YZ 2Xm/DubzatYNLiXfpj/vjN7D0Ji3fsFR+YXF8KL/MnSxisZ58PPnXkEuL1/n5BfCLf/SNyQyPtH2 mTfC1e3dXr3wC3nlF1RYXDKMu73//E0FRcUhUXFwsMfEJ4VExz574RcekxAZ+zYoLDqvsCjyzdvS slJY3CVnru0wVCkgJMrdO4QjIl2Jt/PnYJXi/TpscUxcstZN8xYii4T+Wfsb3OxIvOEfL/1I3/lx 8SKLLt2x8AoIb4Wu2CP6ugbh7dW+p8kKogBRgChAFCAKVKNA4/F2OxBsOM+ZcRWXvVtg82L4Q+fk giJmiUFEHOZLPe0XzjyNyc0fYurIWspp1i2Q6P7Jcv7sqywMr9AAQhfcsMLaiqsEdvGhsnyJ4Cyu 2HtTzJMJD7exsYF6YZlUv7vlESKfYnbWhAm7e07x5+kr81qQx29LgetBVPdbH98AsNreDP7SI8DP orrl7dgxiHFwUPCF8xfUVq6WXiAzZuTYQVKDx44aLy+noK6mfvfO3dg3sSBdNePoLz2Axqv77Phr LsBawYK8vDzNc5oqK1SPHTuenZWFw6pQUPlAa43T2a6q64Hwdlaiyg2WumcWUY9jqFVO/AQnwYD3 81SXW5SKA/WSH+VUuQeypIkoQHh7E3kh6nUYhLfXq7ykc6JAZQXw7aXeeTsfLLeRkE1Nz9x5XIfT ewFIO53uAhZNO8AxbymvlQT358GL2w5TbiG0wMnD19bVm9Nz7ieUm5+jPlxuB5i8+HQ1IwvH7Jy8 X4Yo0v526r2c2v7jVww0TuocvnDP1Tvk0MX7UvPW7z53u9vEFY/tPcyeuuDAlbZrzlp1GA1L55e8 TafU9120sPc4eeG260v/easO6Bha+YVGy689hOlO+bx9HXj76+AoN6+gqnk7DgpDEpHWt3By9Qzk CC+kSTsz1yo9cyv/Li7bQgpx8QooU997MSkt42fEwvMd719P3Qlvr/xmJkuIAkQBogBRgChQswKN xtuNaCf5fOvnpe/fgaxlF5fOtPQYauoUkJGNFPSisnfXg6N769vsehlYUlYKQ6dPemZ/k4/+9oqc vEbGXt/FTZm3M/CnqJTqfac84qAyctem3Zi4saSo5vcMWfttKPCeKiileNYfSTuSZP64Tqf34/aF rzV+FtUhb0dvgO1mZg8XzF3Ut7dwuz/ad/irU+f2Xbt06Na5fZf2f3Vs92cHkX5iS5cs8/f3/yxP buKvAsZf8whrLqhw+BkZGYvmL/r5h7ZTJk5NTk7hv4J0SQ27qI6Ws5vUuoDwdlbDL2yc96P+p0Ph 70o+XOJEAwT+PDXlERXFPx+/sB9S1pAKEN7ekGo31r4Ib28s5cl+v1sF8NWlIXi7FO+3oYvL3r+b s/IAp8/CFbsviMxY0wpQGoyankIU6eh8W7iUfAthmYSk1EPad2nezjrAQbb7y/80QP6BnUd2TsED Kxe3l68zs3J/GbJYZRfyZKiFK/dr3nykuOHklsOXgyPidp29veOU7kzVA6Iz1z1x9Hxq/wKv7/Kd WgvWHEPD+VXAuMUaW4/ddHD1PnfVwPt16B7NO1MVd2neMueuPwoTPvJkJGes6zCE4e2BNfJ2WTjz 45PSWvfnAa2LzV43Vn7nvJWHVTS0tp/QPXHV5LqRzb4rhi1EZaco/4tQ+h5TVnNEcaHh0zR49jD/ S4Pw9u/2nCUHThQgChAFiAK1VqCxeDsYODC15AOHta6+CI1Rd/ORoCNi7OZZPd/+IgDh6sPNHJHf MtjMEfHpas98p1fKb69viv7l/Tdl3o43BsPkECwz8oEAehUkP/w24oWPvqKnVa2R4dX6jUY2bFAF kBVzN5RO5qdz+0H2+HdYbXP5s+J++UuMn0V1wtsZMpybm3tT9+ZAqcGd23UZIDlw7ep19+7eNzIw MjIwNDI0unr5KuzuwkKindp1kVko6/XKC0C4QVWr053VDMOxq5oLsFawICsrS3XFKtF+4ot5immp aczmggWVx15rnM52VV0PhLezEn22IXiuWURTi22p364LhMxgTo0zn+2DFDSOAoS3N47uDbtXwtsb Vm+yN6IA/eWnIXi7uKzw9NWQW3zmWuS3m9q+CI2OhzNcbtPp3pPV6GwZ3KVox/tvQxa/Kyubq3qA 0w8pLiyXpnl7Gyn54zdMA8Pf2Lh4xSem0HkyQxar7qLzZHaf0t16XCc0Ku7l61AP72BrF69TV40c X7yWWXdi+0m9Q9p3sOsVGufnr6GT4fXN7Uyt3UytXO8/sl+/R9vM2sXM+tl+bQPV3ecf2rrbPXuZ nZsnwNsDquXtwONictOW783OL+gzbfXfQ5c4vQwKiojzC46OiElITE574vjCOzD8dWjsLwPlxeas R9zN+MUaHGGZj9cR/gtgr7AV4e3k7CUKEAWIAkQBosB/VaAxeTsfuSMOHXcga1EjOukFDSY1nW58 euevtf9yDN5glRhnU86TEXxLjAJyZ5MNBJE7g2T5rsshxpRdHIkXFpTtW2u/p2Ss+NdWyl9rID6P xA9HIQgAP3tg+FlUJ7wdOwK8emT2CNExMLT/M3WG+SPz1NTUsjL8OcuHGxLdIyMjTx4/KdJHrOP/ OisrLo2Pi8e6zw6yaRZ8duQ1FzCisIeGvwtwcnTCVQk7W/vCwkIsr1DAVrKN6mj51xcQ3s5q+IUN 9l2MRlohtcSO4miXe93PfmEfpKyhFSC8vaEVb4z9Ed7eGKqTfX7XCuDbS0PwdhHpiQo7IXT7cSs4 YjLdxq2Q3XjK3N7jbWqGT0j0nrN3e09dzem3gCMmKzFrDcrE52zgiMoKEGZmflJu90kqiltOtZfi 6uk/yc7Np/3tyG/H32Xn5ufkFTDWiXfvyoqKixHeXlJWlp6VgzvyYdDn8nLenpdfUFxcUlBYlFtQ mJkFCl6UV1BYUFSSnplTUFhcWFSYkZ1D8/YPeTI18nZxrujcDbn5BTg6jpj0cPldg2S2ic1Yu+7o dddXgb+JSi/bfi4uKa3jiCVdJ63CBQKZNUdg7/8kJ6e2yJ3w9u/6vCUHTxQgChAFiAK1UqAReTvN w8vj0NFmSHuDQfI63NG3wtuBehDSPvPxJy73Vpf5LuhyMEvHHcByqUl1vUVtdqOs3lBZHwL1a/X2 Ihs1rAIZhdQFfzq54gPNu0i1uUIp2lJJ+fQ4WOj35YPCbwqGt6PBbsW2w2JSBnM1fx23//Rtp6Li ksoFgkuio6KlF8ohNGbU8NF2tnasd53pje0zPT19+9Yd3Tp1791DSP++vmAZW8N2yzSwvMKtwvLq 6issx9MK/eCpYFfV1bPLBTdnemNXMQ2mgFlVQ+fMKraYqYcUzI1ZLvhYYS+C+2K6qlwguJzpiq1h V1VYzhYQ3s5KUetGYj61+zk1wJDiVMXbw8PDzczMzp07t2PHjsuXLz958gSTC9d6X2TD2ilAeHvt dPu2tiK8/dt6vchom4EC+GrRELy97yLplQeLS0t/pGcURWC7LEec23aAwkiZbYcuGPiFREXGJWne fszpu2jqYhrL/zVmGR018ymLxnypF/WfJqdnGj128QkIy6DzZBSQ3/6e/uvL9yWlpe7eQV4BYYnJ GfDAB4RGOz73c37hV1KC78P0t0eWtzPF0fGJgaFREW/i/YMjQyPj4UW3d/Phv6Dv6Pz2L+Ttktzu 41XSMrLk1h6jQTqd3y6LqwYzVh56FRDO6TF7qtKelLSsXhNUOo1c+jYpZfmOcxyh+YS3N4MThxwC UYAoQBQgCnyLCjQMb+9834p2rTfTO/z534q/HW/Rd+8pZbgrAdX5/vauN6n8EsormZph8an1ne94 b32Z+luHWuVIT7pKbk1cAYd4qvNNqgX/jxToF/ci9fNVyqH8TxXKyfF/Owj8LKqRtycP5mn9Mn7/ mc/xdpArnWs6fXr27d1N6NiRY7l5uSzUZQbEoF1mobOzs5RY/z9/+3u3xh5E0LAjxlr0Exoa6mjv aG/n4GDv6OjgGBERwZjkUcb2mZaW7uPjExUVjXow6qioKFSiHuZwX1/fcn84BUtSWFi4gz3dlYOd g6fny9zcPKYfpivAf9QHBQXn5OSin8iISKYfbOLi7PI24a3gTrEJc8NC7AIbMoNkOnd398jMpM8i 1OARN1jWQ0NC/fz9cnJy8LfJSIzxcPMo38QhJDikpOTjpLE4kPCwCB9vn9DQcP5PObofDInZY3p6 hpubG3sgoaFhZaVl7Frsiyl79/7dm5g3Tk5O9JDou4PnC8+cbNqFJXhjR8j0ILiKaRPeXlmT/7Sk /C1AFZZShh+mBP/YgYWFxR9//NGqVStO+Q1tKSkpvNU/FpFW/SuAk+7evXvr1q2r/12RPTSaAoS3 N5r0ZMffqwL4jtEQvL3PIuUNxwsKC1th8lCEsSO5XUTm71FL5qkcOHXjQVB4THFZmaNnAKfv/LnL /i0uKflxIGYj5Ye6s8gdE49K8a4YWuUWFFm7vIp8kwA7Op0nw+ft7yk68PDYZf35ageCI+O2HLt+ 64HVGV3TLcduwMeOL3VYy/J2fF8re1f25m2ygZntm7dJN/WfrNh+1vH563+W74HRHd/R/hNv7zZq eUJiqupubU6fBR/GLCU3YP7m83ceA7/3naZ2+f7jTmOWdxqmnPA2ec3+K5ze8whv/17PNnLcRAGi AFGAKNDICjQAbw/KyF7m7K3u5teM72qufvbxSYBf9fpyKisrf3n/cEja2NhUrscYy95RPBs+XT9P nfX9WJKYR+3zpEY/+DRhGOAd0QealIQ+dcKbck+kYKImtyalgHcKJYd5Uc+VXzG5SLW9Si/J/Wg5 r+V48bOoTvJksrOzN6zbCHP7yGGj/Hz8ah5NSkqKwX2DC9oXnz55ms2nwRgGoDrSZi5oaS9aIC3S V6xfHxHhPqLiIhLyXIVLFy6Hh0cADrPdWlvbTB4/5eD+g8DLN/VucWV52AT1/fqITps0XVtLOzkp GbRcR0dXZoGsML8rkT6iY0eOO3TgkL+fPzgb05WNje20ydNXLFVxcHDU1dGVk5YT7SvO9CMlJqWy XPWh2UMcGoaHGzbBI1JxXnq+PHHsJDZkekY9Oh85ZOTWLVufP39Bd87/nEhMTFy9Sn3WP7P9/PzB vTV27ho6eHjf3v2E+4qK9RNbOG+hno5eSnIK0zOo+NbN28aPmbhm9VrQdWZfWFVYUGhlZb1l45ah g4bj6Jh9ySyUu3blelJSMgqYG+qTk5N1b+guUVAWF5FCGXMfM3Lszu0aHu4eYPioZI6afSS8nZWi nhqM5ILC37lzh6HsgwYNUldXP3r0qLS09F9//YWFv/zyS3z8N5ywVE8a1l+3hLfXn7ZNp2fC25vO a0FG8p0ogC8bDcLbFy7ddALou+UghTb95Zft1NIxsfV8HR4SFe/qFaR567HM2mOdJqzkCC2QX3cM ZT/CA8/MoPqBt2M2VQUY4/vOXLN23+Vuw5V0DZ/y82R4rL8dyTD2Hr7TFDWSUjMWbzkVEB737OVr 1Z1nEfTO8Hbkty/g57czr2x0XOKFm6ap6VknLxkc1r5n+Nhx3V5teCPghPovvF2u66glcW9TNh6+ zuk9v9yQz23VX/6XQUpIpG8hxWs7QB5zwnYYtiQ6LmHt/suEt38nZxY5TKIAUYAoQBRoggo0AG/H Nyt4TJv9nXaa1vMLXCe8nRkjXO77Pakfr3wcMTv6glIqOps65kV11Cvnt4xlGuD9AvXjVdpEjYiS V8kftyWtxlIAl0gQ1f7T1U9eqfGmVGgmhZcYN/Zlrd0I8aauE94O6/i4MeO7dOi2ZdOWjAwaF1d3 wx5xA11nbmgzlUGBQcuUlvfo2hNRMxPGTlJUUMJ99IgxSIPv0aUX2gGvA1jkbmJk0qldZ56c/L+7 9/bo2mvE0JGK8kqLuYsHDxiKMfTuLrT33/07d+zq1qnHyKEjleSVlixWnjhuEnrGXWWZamxsHLPT ByamWIK9cGW4Qj36gFEDZS9VWiYrzZUUk+r4v04DpQZdvniZNeFjAM5Ozv9Mndm1Y7d+QiIL5i5E Cj3uM6bOwE47t+88d9a81/6vmYPCXmZMm4XlVy5dmTVjdvcuPefMnKusqCwvpzBQchCOS0xY/Ma1 66UlNPyHNx5j+Pv3djP/mY3rEViCTuCiv6V3CwfV/m/6QsZieSUlhSVg8th77+69NXbsAtJnNIFR H1cfevfog8OfMHYiyjCq+bMX9OnVr9P/Os+YOhP2e1Zq5tjxSHg7K0XDNHBNBFAdaH3ZsmXsRR/s +vXr1wxyx/LKL1PDjO073Avh7d/Di054+/fwKpNjbFIK4H+xBuLtG+FvB2+X7z56mV9ojMETZ9V9 l0fI7ug8TqXVAF4LespULqffogUqe4tLSn8awLfBs+Z2usH7QZJ78oZZVFziQ1uPsGjG3/6Rt2OS 05j4t2HRcfhzxcg38QhvT0xJRXHpuxL8OSE0r8DbMZ+pb1BESkbWy4BQhL2HRMUmpWTwyfx/4+3d RinHw9++RwsXC/7P3nnARY20YXzVa9+dd2fF3qUXsYu990JfmgqIvffee0cFRBALioiKCqggKqBY EAsqoogKCKKCdJCmXr5nEgjrAgsq4gIT81tnJ28mM2+SJfnnzfMS3o7ofSUhEZ/HJ0L08RWzirBe J2D5d9NX0/h2qTr8aWeoB6gHqAeoByqXB8qAt0PYIDH5Q1JKRsWes7PzxR9+0DFUirwdFBPztRjS 0zyiWUivz4Yzw88zLY4QGfAvEq1CjmYn09SR2RrEPHxP5MElNFJIu7Tq+zyANxReJBP9Z7JT8qSB oCTTzJHZ/Si36VLZI7gtkqAn8xz67Qa7SqLf7uXp2bI5gb32++zRv4LMEDV8pWiZG8y7N29nTJsF jNyqmez0qTP8r16LZyfow8yZOVdRTlmmVn0Lc4uYGPaAZphTJ0+1aNJKUVZZTVndYtyEy96XYY5Y ccS69+jas1G9JkDZKgoqBroGCA7HIjwCuHnjpoGeUdOGzRRkla76XuW2e9r1TPPGLVs3l8MqiFc/ ePDwq1evgL6jo6IdDx9B1ldQcWzC9aQrp/0CHZtJEyYjjL9n1542NrZ4xwTGmB7cD1q2ZIWinArs 165ZxwnaREe/HjZoOAaFIHMg/Q3rNoY8eZKclPzu3TtEtnfp2BU8H2Af20JnUC/UNajzr8ywwSPi 4t6jBs8j3M66qau2g0rPlIlTvDy9kH82IT7R399/6qRp6HPTBs23bdmWnk4UciAdgyHj2QF4/rVr /gmJCUlJyVDm2bppa1u19jI168+aOSc9T7pHwo7g3EL1ZDg/lPqnpaUlYDvQOo4Qfi9wW5kxYwYW qaioiNVzS1EJgXccxtAmwoFR6h2rnA1S3l4Z9jvl7ZVhL9MxloEHskv8lwd/sMqCt7fW1p20Bq8c /tbe+Lc2hi2GTv+nnYkAjF1RDyyaxdQg6oYCOd0BJguZ/z7/rWFO8PuXvB367YfdfJAXNfDRi/Do N6yeTK5+OyRioEKD1EVIhAq6jv8/fvqYmZWDePWPuO9lL8F53s4Zwx5hDJlZWCkHKVOhSJOZnU0C G0oe3w6criJs2mP8+4QkwxmbBK2RCFVYr/u4vqYrjOfu6D1mef0eFlUxOvB2Zf36Xca+eRtrsWQ3 wfKo+WJo7Ni/sobmSy2D84hugnqAeoB6gHqggnmgDHj749AYo8kO42Yfqbizo9ksR2+/J1wo6Y87 QkqRt/OdLAmVfZ/B3IllFgcw9Q99Sd1ZqRlovAPz9jvL2AQzcRl8w7TwozwA9Rgkvf3bniXt2AXs 2wd4IGL5gEkobakf3BZJ4O1hkbHIl8rqt1+VnC8VNLh1c9mGdRvb2zmgTUxi3hGtFCsjcMhqt3XL Jq0Qnr1y+ap3b9/xq+OMS0pM2rR+M+K0ZVvIHXNy5qLBwdtB5oGXQZ6joqL4ExN3XpY7djVp0Kx5 oxbGhiZhYc/5RXgIcOXylU7tOzdv3OK483EOWp52PY3toqZfr/43b94UJZkQYPG/5j9k4NB6tRsM HzwiJCQEI3r0KLhLxy4NZBrt37efg+rcMNHhsLCwfr371/yn9pQJUz+kk9yXAOlDB4/Ak4I2KupH Dh8BGOfHhX4edDgE1K/QWsHF2YUMMynJQM+gTg0ZxMBzvD3s2bORQ0fJ1Kw3a8ZsPGiANii/rTdv 3ixetLRZo+bdNXo8eEBSdznYOyCQvlvnbtevX+eHjM0B0m7dvLV+7foanbpBVYbrAN8NWPJlrnHu k/J2UW+UVhmunj9/PqA6ACCONDHPHz9+HIswidXjUDl06JCGhgYE3mVlZZWUlLp164YUq/xeLq3u VcJ2KG+vDDud8vbKsJfpGMvAA07PGL2L5NXXAtd34hvHX7Gy4O1yOn1MlmDbtXuMYwO/WQpNYr9Z nXaVvJhwBT3lYSRJh/zQ6QTF5yNoFlCrED2Z6WvtZLqMPXzCk9WTydVvx0Wjj/89V8+rpy9cRXj8 yu2Hw6PebLM7gcSp4VGvC+jJfA4IerLC8sjF6/e22bu6Xb554JRnXGLKSsvDWR/xoKLE8e3ovLIB upqalt5v9GLot/c3XRnw8Bki5R+HvYp4HRcYHDZ2gaVAXgdDbtjL4n1ikt7U9QTLQyonf2jfAtux OuXt4ocy/U49QD1APUA9QD1QnAfKgLffD47qq2M5YoxNRZ2Hj7YeZmJ91jOIVeErzuPfsfxH8Pav 7c7laJJZFVIz4hHvAL+7icw75N8PPWVepTLJWbmSJl+7CWpfqAc4nZ+xyHULP+dhdhRq7GeGejAp WWSlYm9zCm1ZQiVui0pFT8bLywvK5Dxvl7BF0UUcWkxMSIRcTK1/aiOePDw8HAZcPT65wtOnTyHY gqhyA32juFiic8TGt7dUllf1cPPgwCNniUVHHY82qd8U0e8njp8Q3RbK797Gjhqu1Uim0aEDhzhu D94OS/D5LZu2AfvDhm+HW9dh/0HQ+JZNWrqecsWi0NBQ4OsN6zdFR+cq0vCrREa+0hyuVfvfulMn 5fN2BKsDmBsJjePfk5B10cYRui/XUg4h7nt2WYG+srzdEGPkefuZ02chcQPZdu+L3lhRdEJTDx8+ 7NS+CwRzdm63hMY7dGlaNm2NUHZ3N3cudhr23BAeBD1YuXLVqpWr79+7z1dyiyhv5/xQNp9wPoLY ZWRk8Flwi7t37wZsR+i76D7CMQnSzmJ4wW+//YYsq3/88Qf31dzcvGAjtOarPEB5+1e5q5waU95e Tncc7ba0eWDPIzYIxJLp4sp4vSLhN5yqYcF+4q9YWfB2RX35IVOxdbnBUwQK+gIVg6qqBohX/6uN cY32Y+r3maimNUd3xtaancZW72iM+PPBZssFctpiULqaiv7C7UcehEYcO3f1Vcw70XypaPn8lVtH Xb2OnfZOTfvQadSs5xFvzZbu3nnoTPqHDDHejtiFG/ef9huzxHTBDoOZW53dfKat2ONz66Gq1ky/ 2+St1K/Qb1c0GGCyLO1DpsKgKTKdxz4MjfAJeNRr9PKWQ6b1NV1+9KxP1LuEbsIFgtY68kOnpqZ/ 6DN6qUBWh8a3FzwOaQ31APUA9QD1APVAGXigbHh7H+2dFRW2Y1yEtxtbVRLezh2T8ZnM1Rhm2W1G zimP/SLKmpN5h7zJbuZXW5JfVXiROfiUqM3Q6Xs8gPcLkKm28ykGrxKQ3LV5sP0vO2bFbSYkIbft PID6PZsSXxe3RT+Rt3O9uR1wu3d3okm+c/vOjAzxNyjQQ2hoTJs8DSy6f58BSJCKtU6ddIUCjPZI bfB5GGDiBwYdmCYNCG8HiucrucL79/HaI3Ua1G3oeNARqA2V4O0IMpdroXDG9YxoI1jEfb17526f nv2gk7N963b07dOnz4g3xsSRatgggDwyIjLoXpC93X51lXZ1a9TL5+3R0UMHDQcS37PbioP5ov1B yle5lvJQoUdsf0HejiStSxcvq1+3ob6O8Lr/daDy+3dF5nv3ISCjryvE5mbPmJOdle1/7XrHtp3g w369+m3ZuCXgVsCjh8HQn0E/MVKuzwVjqilvF90jP7qMowXSRsiIimcrYtvCrtHW1gZI7969O38c otC3b19UNm7c2MrKysfH5/HjxwEBAbNnz+aQu7u7u1g79OtXeYDy9q9yVzk1pry9nO442m1p88CO B3lXp7gL2EMEJw0uMt5RhXQTf7zKgrerCP/taALQPcRiFfKKdjVavHTXMVsXL48rgTfvPw15ER0a EfMwNFxt+Kwq8jpvYxMQfC5oPkKMt/+uanTCC28F/ufpd+f+o9DE5LS/2ufGt2MUp8752Tq6WR12 87oWOGb21tNe13cd9jh69grGDIkYfObryXz+7HPz3l7nC2usjo1bsvPQqYvLLR3X7nFatttp+fZD 0J8hvH3IdJkOo4Ofht+495gEqBeqAINKBd1Zq23fxCb+1kY42HRlbEJymxGzckVylIW1Opp4Xrvv 6O6H0HeE96d+yGw5cBJ53FBoa18Z8U7j2ws5mmkV9QD1APUA9QD1gEQPSBVvB7j+ci4fIfGVkLfj mOIR5oskZoY/I3OA+Z8dU5VD7hx758rgw7uZ9icYXIpHpjKp2Qw0Hvl1JR6b37UQV8KQ0QCnKtgK 6oFGwRgLLpKqmqxPTHQaM9OfDRnKE2nnYHt1e8b0CpOnIPIDew03lg5vh54MiW9vBOyMNiX0GEsx gXQhDBsTLJ2OOEGiHLHcly9dLnRF7NDDBw5DT6Zrp65IzAobwttlGhvoGSJhKFoTXYvn7e5nxWkk +DN4e0PC2w/zvL1R/WaIq0cQuFg7XJvJycnjTC2Atc3HjkOyS1TikAM8R8g9WP0JlxN79libjTXX 6NRVWV4Fii7g51/w9oHDER7v7n5OtIdc2fviJfB2wP9CeXt4eET/PgPRVUV55c7tNTq379K5HTu3 79KpXSd87dReQ1lBtX6dRtj6+7j3yOhqtcdaWUEN2VGxxQ7qHfv27LdqxSrnY85XrlzBGwSFovVC K9E9qidTcH/90Bq8rVClShVQdHB1/jiMiIioUaNG1apVg4KCsHWunvvs1KkTjBcvXvxDe1XhG6e8 vcLvYgyQ8vbKsJfpGL/HA7iGwoxgdVxzfvzM5Hwml/GYcY3KzZns1w338ni76C3AbqbpYcY9nEnL YT7lXYvh79SP5+1EN+ZXZYPEpJS56+0EMgOXbj/0Lj75zqPnp7xubN53avxyqz6my2WHTf+9rVGV 1prXAoM9rwYKmo0Q4dKsAIuqUH3UzMVbHZt1HnPo+IV8PRmM4fPHhOTkd/FJsfGJSIEah0JCclp6 ekYmbi6IJDt8zvP2z/99Sk5NTUr7kJyS+jYuEcbvySrJ6ZlZ7+IS8LemZPHtrBiOvPZh10sB958K ZLU0J61/HZvQoJspUaQnUjnGVZSFVkfO+QQEC1qOMF+8Iz4ppXqH0USXnvL27zkH6LrUA9QD1APU A9QD3+oB6eHtoNaaprajTPdqm+1DQQuz2b6Ro22Gj7GW8tj4ysnbuSNOlGU+TmAcQ5nxvkzro+xV NxeGzVF3Nugd4L3xYWagBzP3OnPyBYHJP24C8Ozfv/+uXbsKbmL9+vXt2rVbsGBBwUVSUvMkgdl6 n+l9lkEK1PyAdtaTrY4yG+8xL1Nyeyrq/x/RedxSlApvv3z5spKcMgTVV69cw2XwLKq35Cbm8+ez Z92mTZm2eOHi8PBwqLtgRSD3K5fYqKECY8YqXp4XAbTbqrVDWDhaZuPbGyPBKJTMsVR0W1/L2xG7 rqetH/EyQqwdrk1ItUyeMAUqMVojtJH/FD1H3tUli5YOHTSseZMWygoqvXr0GtB30IB+AydYTOjf dyDU2gvydg+P86I95MqSeXvYszDIxdSv01C+lSJSpn4xq7TF17aq7QDV26m1Nx9j/vLFS3Q+LTXt /PkL06fMGNBnEGTqIZLTUKZRo/pN2ql1QJcgSoNQfLExUt5ecL+UcQ12wcGDB6tXrw5+juB20aeE yMY7efLkefPm4aGP6I7DE5/BgwfDXsKZW8ajKKebo7y9nO64r+o25e1f5S5qXGE8AInC2A/M82QG KYGuxTCer5jTL5mjzxi7EGbXQ3Kdufw2M/cGM/UaM8GXMfNhTC4xQm9Gx4sZeYGkEBrgzvRzY/qc ZXqdYXqcZrqdJgHtuW9f8rydK+BewJKpf5AZfYk5E85kfiRPh388bycS5b/I6jwIee7k7itoPEym h4UCUqZqmP7R1uRXVWFVIGglPWihQ2dGoKCz1d41Pin1f+rC3FSqJPCbwO1qqoYz1u2/fPPhWe8b gOoJiSlsfPseDIFTjClwPOCCkyzkeLv5YkvNqRtgQyoQ8547i67EXqD+919iSprq4Oky7YuPb6/e 3jg0PHqv83mBnJb8oKlRMXF7jp5r2XdiVTWDaqrCjppzg8Mi11ufEDQdZungGvws4hcEt39lHHtR 9jS+XXTP0TL1APUA9QD1APVASTwgJbydDWu3WbnZfcVmDysHn9Xbz++wuWzl4KdtsQ/S6JS3c7tS GvTbS3JQwQbEeJIfU52LeGdBMVGb4WdcfmO2YuSdGITERKaQmBmEvnxJRku4qcLNIF8M4mRmZlZw MTAUFmlpaRVc9LNqyKX5fyRqCDc7SsfyEqHyDyxsCHhHUtozL3M7WIqOkjxk3CNIoHYkX6rBLjZf qp9ovtSCbb54/kJXSw/selC/QcgcWtBAtAaqGhMsJtb4u2Z3je7IQ4r4doi6QH4c+UxFzfgysJjL MRe5lgqI60bST9R/J28/LBrfXq/J0IFDgx89Zm+X+G3mFqDrYmE2HmlMjQyM3755C3mZIQOGQtlG TVl9xvRZ+/buQ01kZGRUVHTo01AT4zGwLIS3f318e0R4BKLusSF41e2Mm4f7OX5GtDzK+Dznfs7N zcPP92piYiLXeXzCt+iPn6/fmlVrZs2YM7DfoKYNmyGKvlf3Pkj/KjZGytvF93cZfuf2xZw5c/Bj hQk67di42A7iu4N67CycCKixt7dH0DtWsbCw4A1o4Rs8QHn7Nzit3K1CeXu522W0w2Ie4C4g+fhz LgQ95xNRUAdLdwtnrIOZxbcIMB/ozqi7MA0Pse+iIgxGdOYuywv95C/dv7PANl73AGMf8t/adevw iF9sIPiKEHSBYmnwYRLObVRVXs/V63rw80hB65EkxhtB4KDrHHxGQVkIJZn/dRyDgs60zdh6T8OF AqUvtv5nGyOf28H4C3vz7pNbgY+SUtKqdzDWnrbpyfNI5Cd9UmBGstTnEa8j38R9yMpBg+aLdo2a uhF/ujOzP756ExcW8RprhRS21u2gUNl+k1g9mZeS9GRUhBq6cz5k5pgs3EUU6VX0p6+0eZ+Ucj/k +f5Tl/af8n7yPCrw0bP63cwE8ro+Nx6e871dVZ4Tpc8b+Hewd8rbCx6xtIZ6gHqAeoB6gHpAsgek ibdb77S7stve59S5u9YH/JxO3Tnhdlc4cf9QY6vho6VaWKYyx7dLPrqw9G4sudS38GU6nmT+t69A 9AsX927J1DlAQmVm+TP7QogyPJF8Z4M+im2/oAHURbjcgiBO0s/bEerj/4bZdI8EC5Fo9l3sHRB/ U2PNKDkz824wN9/mDrTMSDu3PdxlcLxdFPTx5bDIuHZCy+o9Vm1z/IK38wb83snOykJke73aDRRa Kx53dgHIErPBV27CKgC/HdQ7ASavWr4640PGjes3unXp0UimifVua05hhreEMcrQb58zc45M7fr9 ew8ATEYl8qVCu0Ysvh2WWHT4kCPypTaDikthejKaI7Uh0gJ1Gg5dnj51plmjFvKtFd3OunHwmWuE 2y4+Hzx4OKDvQMSZb1y3MT0tfd2a9chw2ka5LXRacC/5UUTOCDTeQN+g9r91pkzMy5caHT1k4LBm DVsAj6MpbuLbR8C5bAt5eMxqN8mXmpyUjOEgkB4pVuPi4qAPs3L5qnq16k8YNzGFDW+GvqjojP4T MfDo19CK4crv3r2DMHhe+//lZOdkZmYEPwpGn1UUVIHcF85fhEhpdCPPhhT4cl4Hyf9UT0bUGz+o fObMGVlZWfyI/fnnn1CGgUhRobsjKirKwcFh1qxZ2CkKCgqwx/Trr7/ik/L279w1OHGcnJymT5/+ ne3Q1aXZA5S3S/PeoX0T9QAuYVKyyeuNd2KZi1GMy3Nm72MSiD7/Bok/H3Ge0XAlQSz1DjK/2xIh R8FOElhOripRxgx1Rw6wc1Cdv84ss4I1kZ0c5M6sufOfxeJNP5a3IzpdzUigJFy47XBmdk7jnuMI bwdqBmZX0vtfO6N2WnMmrbE96el/8+GzX9sYNOlhAa2YzftdCW9XJbHxZEZBxaDX2OWb7F376M0/ f+lmcmp69Q4mv7U1rtHVvGZX0xoaZjW/nGt0NZPpOb5pv4k9DBYdO3+N1ZPZeMr7Rk+DRc36TZHp OQ4GNbt9sRbbiDnqq6oJZdqbPHpaNG9XNaiiKly561hcQrLy4GkCVajEGP6qatjdaOk621PO5/yd PK4t2Xmk5cCpGGP97max75PW7nWposgOnDgkb1zfWqC8XfR8pGXqAeoB6gHqAeqBknjgp/N2lqVb Qz1G29x28bqz63Z4btp9cd1Ozw2Wnht3XRw7/dAoU5uRY0lOUqmNcqe8vdAjTZQMI/AGITcZOeR9 VW1PphryfuKCn7/IF4moAXPGUqRbRSZW3ERcjiIqkSWZIL598+bNPXv2tG7dmmVO5ENqeTswO1yh 68X8acd6A64QuwOyYlScmUtRDIKUeE/yhZI4pFRsgPgk8vbC49vFIC2+AlZ7XvBqo9wOaHrUcK3H j0MK2nA16R/S16/b0LRhc+ixg8xjxYT4BESP1/i71vDBwyPZdKiw5Iy5MT4Pez5s8LA6NerqaemD KqOS028X4+2ccbF6MiDPovHtyKyKlKY7tu2AdAxaEN0uvoKrt24miwSsLsdP4OZx7ux5eExgOtos JiaG2xy/SvjL8H69+9f6u7bk+Ha+fcl6Mmj29EnXJg2b9dDoed3/Br8Wv1H4Yf3aDcaGJvvtD8TG xiFH6oxpMw7sP8A9sODM4FsUQPInTZiC/YLkra9ekWyzfGvcIwa+Tb5AeTvvih9RAOblsqPiF6xl y5bQjeH3iNjmtm3bBhtO2h0x7crKynivx8vLy8TEBPWUt4u562u/Ut7+tR4rj/aUt5fHvVYZ+oxL 36eJ5K1GxGMgX08XV6a2A7k2/mUvuWisupeN0OCuokUuoXOvJMWuJ/mL7ZIXrMkLqlCARMhHh5NE MWawB6PtRYLkIS8z259ZcotZcRvknNl4l9kaxFg+IEEjX1zYi27LmvnHntlwl0nPZlXcy0JPhsXL KvqDxi7HH9AR49cS6RhFvb87mZgv2n7xetD7xBSkHMWiy7eCqijqClqMPOcTGPI88k8VlreDtBPq blBNxWjeZgfkV336Mjo752NcQlJ1BMm31BS00kJC0txZli3gE3PrvMrWWqpDpuvP3DzAbIXqsBkC 2VFkLbIUK2qRAmfMFbgWWmnWVdZ/+OT5jXshhedLVTGo2dH4VtBT7xsPBcr6JAuqEkHuJNBd1fBP dcP/tTGqysXwq+gPMFmamZWjNW2TiEIO5e2V4ZeDjpF6gHqAeoB6QLo8IAW83Vp7nN3la09tHa/d exCBd+Jz8I9MOenpWcfP3L1wOXi3nc9gwz0FkTtqRo7Zqz1uHymM3aszzg4FKMDrjbcfMRqUfq/B xP2GkxxGjd2rbb7PaLKD/sT9KGtCIt58H+i9zrh9sEENhOLxidVROXKMjXDCfsPJDjBDU2jBYNJ+ bTPbglvn+T8WDTO2OusZ9InlVz9uB5cjPZmCThBjxXfjmG1BjPAi0+4EuQ4Xv0rnbhYQkIPgnJ1M o8PMEA9m0U3mUChzKZoJSWDiM4kAi+g0ZswYICaxqYS8HYIbEPpGBKlog6VYxtihkxnwjsjFIP+p +gk20AhDQ7gRRipyxwQBzOHniGci8hTaS7Eb39AUbkZKRU8Gm0Zw9cL5C5s1ag4BEyTxDA4Oxoku KoCJbYH9gnWrqajXr1PfxGj06+hoVGK/7NxhiYh0EHgk/YSECz8QLEWz27Zsk2shh6VHHI9wAtff qScjmi+1RdNWULNBctLbt28jzhxb5LYOFo0cAaONRoNUI/do0P0ghNnPmDYTEemg3K/yngtwxuiz rY2tgqxSnZoy0yblx7cPZfOlisa380MrlrcHB4dADQZPByB0j8cQHDzH6ughfj0RHq8sr9q0UTMH ewew9zEmYxEMD/GZqFdRnM/5gcCBk8ZPxijMx5q/e0dSvvIT5e28K8qsgN0xcuRI/I7VqVMHmSa4 7fI7S7Qb3t7eMEMoO87QBw8eiC4yMjLCIsrbRX3yDWWcRzS+/Rv8Vr5Woby9fO2vitFbXEdAPxCX hSDq198w7hHMoacERwNlI8MRok3+QIA6otO5AHU+NJ2/XBRF2QXL1kQu5m97pv4hBhl/2rgwXV0J DNf0ZAy9GXMf8ibpykBmxwPmwBPG9QVzOZoEzKMnUalMQiaTRWTJvmWCZE3+BS3bKzwXUD1Okjp5 R+U3iLHjL1qZ6LcTbfb6GqZpH7I22J0SyOv3Gr0kNOL188g3Lp7XJyy0PON9IyL6beuBk0lMu6x2 /7HL0UsN4XyBgi4L2wlv/6eNEfg2+nz64g3PKwFZOTnHPfyOuvsedSt6dveFYvw+J8963cYgrl5G w7xOh9G7Drsf8/A74uZT9Io+R8/6unj4xSck+98pyNvZTKlKQg3hwqTUdKO5O4D6p66xG7tgV6Me 5oS6k3ypAO/sYwJVQ2RNXbL9CMLgFQZN4cLgvz+4HS3Q+Pb845iWqAeoB6gHqAeoB0rmAWng7cDa c1a5Tl/qEhRMoiv5CYrQNgevTlviMn7O0WHG1gWJN6RmTGcehsw7NN4nzT92yPnGAOGuxetO+15/ Bn5uMe+oj3+ou9fDDZZe2/deRtnD+9F228uL1p/eZntZz8LumGvgtMXHZy4/sW7nhdnLT5w5H6Q7 3s5s5uHzl4O9fEJ27/eZv+b0levPXM8HzV1xaqiJFQ/YxQqUt/O7rCSFPGBJbMHMP+QQeI5sTbhW b3Nc/HKdsGiOved9IrwHUTf/7mecvlQBd3V1nT17NrIHYlqyZAknxVAsb4dQg5qaWs2aNf/99996 9eqtXbsWjKUkoyjWBsMMimOsHjEG3kxzR6bGflZOR3Q4/F0SOzS9i8yNt+RlYbwIID0TbotKhbdz wPBh0MNhg4Y3kmnctFFz7VG6Lsdd7ty58/btO+DoiIiIa1evrV+3UV2lHRgyRFqgxP75c+67DS9f vtTXNUC9qrLa9q07AgMD42LjMN+6FbBu9fr26h1BuQGTIyNyf0Ak83bEqyNqvVA9Ge2ROtCTEeXt gO2yLWSRrdVA1/C065nQp89ARIHTfa74mI41h8oNgPyeXVZZmVmg8ciUWr9OA+QqtbO1e8paItA9 MCBwx/Yd0GzBqBvUbWQ6xhRy7jCOjo7+at5eQ2b4kOFxce9xhEA3CVIzLZu3Rt9mTpsFSfboqGgI wrx48QKK7vp6wsb1GxvoG2IrwOYnjp9o3UIWjySQghaW8DYs37GC89u3bid9a9jM3m4/2hQ99ihv F/VG2ZR79uwJVP7XX39x7xpgo4XCdtRD5wSW6urqfBJVzhJ7jSP2lLd/5y6jvP07HVguVqe8vVzs pgrQyU+fmUfxhKsj6ALh4lB9wWVhdXvmj315r3zmXeXmX/TyV4lFFMDVmxxmep4hqUiXBTD7n5CX IpE+CZKMuK5OzCKXlOk5DFKjIloeHRC9/C7WpV9ljNZmX8+/gP/NljG7wgTHk63zE98g/lSVEW+H invLkb63HoKZ/6ag07jfZP0Zmxv1NK/aWmv66r0JyenttebAoFpb4787jRW0GvXw6UsPnwBB85F5 dNqgiorBsAmrdx4827DHOA2DhVNW2kxYtmfCsl1Fz7snLtkzf4N9UmqG++Xb4xdbjl+8+9SFaymp 6Ys2209cakVWX4oWdhfWAur3TFxmNXLyBoGynoBI0PMR6Xh2YFhFTvvgae/Hz1/9qqpftY3BftfL CSnpj59HLdxyuHbXMQI5baKWA90YFeFfbU0u+N27+SC0ihKeHYi2wzf4LQXK2/mDmRaoB6gHqAeo B6gHSugBaeDtCFC/4h+K+Pb7jyJEu52RmeN0OtDLN2TP/quDDHYXytst5h5xcbuLwPVF686c9Xo4 xGjPsTN3EC0/cb7T5AXH0CZC2U+639176OrcVa6A9oecb1ru8znkEjB7xYkbt19ssbq43fbS0g1u Vgf8Lvo+mb/69IS5Rx2cboydfvjY6buwtHLwHWpEoujB2At2gAPvlLeL7rXvLf/H+L5mVgcyQ88x bU+QW4lCVN9Zau3wJH9TBZGUjo4OYJQE3t63b9+OHTvCBjoMDRs2BOBCGRO0Ml6/fp3fdNElaMK8 z2AiUpnHCSR2/Uo04/qSvFdr7M0oIOcpNDMRm4RP0SB27qbJmrwRjKF1PkVeEz4eln8TxN+PFL3Z Ml0Cx/J6MiiLTugHyZcqtPyrx8rtjlfx4qro0kLL4FdX/a4a6BnItpQHeZZrKd+zW28EVy+Yt8DY YHR79Q6QkWlUv/Hg/kOQGhXGoo3cuXsXQjTg24jZ1ujcbcqkqVMnTu3epQe+QmJ9UL/BAOB8/PnJ E6ego66nrY/XFvhGOMdBvx1pW4GXIcmOGn4pCpAk0hyhJVO73qEDh7jHLq6nTjdp0KxLp64GeoYq iqrosPZI7Tmz5iJcXF21LR4cyLVSWLt6XUJCAlZHa9DM6dKxK9pH/chhI+fOmmthNqFDu45yreR1 NfXGmY5v2rBpW7X2c+fMj3kdg8Ns8MDBaN/d3ePLjpCmLl70btmsdd0aMrt37cG4APkxnBrVaw0Z NIzj7dgiFNpXr1wNZzau36Stavuxo03nzVkAMwTSN27QBJlbr/pd4wbyJiYGuvF4yoDNqau1xbsD 82bPnzhhUtfO3Zo3adG8cQsTw9GQ5RH1Bsocb+crOQfik+rJ8K4oxQL8fOHCBfwE/fPPP1waAtRI aL9fv34wLkgLcVzVrl0biyhvl+C9kizCuUPj20viqHJtU/AMKslw2rZtWxIzalPZPACsDdb9LIm5 /Y5IrO97zMy4xvR3IylKubc1c68JoaMOul4ERcciKCsiQL3BIUbWiVwJd2flXMb5MGvvMEeeMX4x zItkotAoVdP0a6TDfc4yNsH5QfKF/hHDn7Yy4e0I9gZvHzVx2e7M7Ox6Xc1IHLiSnkBRd/j4Nclp GZNXWCn0nTh34/67IS+mbjwgkNUat3TPZ+ZzV735bNZUhJQbkRaU9KrI6xKUjTB4+eJmBT0BZjlt 3akbr90PeRH5BvOtB2EGc7YRHo7VIQKDWVI76KEeweasoE0+clfWb687OyUtY86mg4jGB1T/VVnY 23ixx5XbSHf1JDx6ueVR5SHT/lA3hFJ9854WUW/jVlkexdMEMorSEG+n8e1SdbrRzlAPUA9QD1AP lBcPSANv1zLf53QqcIu19/2HJNchP2Vm5hw6HnDo+K112y8MMULWVHEJd8S3m88+Eng/0sM7+Oqt MI+LwSZTD17xf7rVynunnY/5LMcbt1+6X3y0ec9FqwNXF284O1C4e9W2c7vsrtgfvW539Pohl1to /ODxWwvWuLqeCwKERw0oPSLhva8+sT18fcm6s7fuvHR2uztlofMwGt/O75gfVhC7MkdgzNsPzPNk 5uIr8vYr3ofFDUjuTYo1I8rbC/ZIU1MTxEkCb+dSChoYGDx58gRUNiIi4siRI2DvWKtTp07IRyna pn0Is/MhsyqQvIeLoB3NC0QGBy/qgpnLHCTB9ohQIrdOormoCruZqmZD0sLuekjCnDC0LBFperGx i279J5ZxW1Qq8e3cENAaEBZY4j7bfUb6RkDWoO6IJ69XpwH0TFo1kx0xdMSKZSshjgEzHjaigAnM +eGDh0uXLBsxdCS4NwLaMSvKKo0argm990ePgj9+zPemr4+v5gjN5ctWxr1/j3VFHeh5wVNbSxfB 8MjKKlqPMtRslixeOmqk1oXzFzhMfdr1NILh+/bu5+Xp5eTopKcjVFFQq1cLvW2gLK+CRvZa74W8 PLcJfCLS+JzHOSOhcRtlSOI0RA8RUj5syPDNG7cg7NzP7ypoPCo1OnV9FvoMeH/+3Pl6Onr+/tfF eoKvt28HGggNMVjkfv386TPEapYvWzFs8PAF8xYmJSbBgNsopJD22zkYCU3aqXVoUKeRTK36Teo3 69en/7y584KCgrjIZ84SbrfcYSnUNVRTVsebAvVrN8DcVq0danZu34k3CJBuVawbNL5dzCE/9Cu8 raenh98fU1NT7DJur0nY4tSpU2GMZ4X4+eLNbty40bx5c9RjMjY2LrYRfkVaKOgBytsL+qTi1VDe XvH2aRmPKCGDuRBJlMyHn2daOxH9w1oO7DUhLgKLuybkkbvMARL0buFLYjYgLwPVxPAUJiadhKmn 5RDxmaKmLy9wirIqi3qoIKLDiKLnJgkdwx+msuPtysK/2xtnZGZNW2tL4LOSUHHorJjYhAdPn1+4 di/mXXzgw9AFmxwa9Z8MtF6r0+iXr2PdLgf8rqpP0q0S3s5Ce1B3Qr/5MvuVqyQG/Ix6ftb/t8PY lr0mtOg5vlYnU1bUhV/EF/gV+QK3CF/ZSPX8+HZDhKyfungD9L5Jz3FV1YxkeprV6zmuWc9xe53O 3Q95vmKnY8jzV1ExscbzLDFMwznbktMzZAdPIWyfNFI6Ie40vr0sTiS6DeoB6gHqAeqBiuUBKeHt x84EbrfxDnr0hZ4MImYdWQa+cbfXEMPCefu4OUcOON/oPmr7uFlHT7nfX7bJ3evKY/sj/hCEmbLI 2fHE7YVrzlofvLrHwXfpRjfNMXshULNo7dltNpcQUT9/zRmPiw+PnLy9Zvv5K9dCj52+g1h6tHD0 ZODqbecPHw9YscUDTwG6j9wKsE/j23/WgS920f46jQhOLg0gET4SpmJ5O3gUcgtyLRC2xW7G3d39 l19+waJLly6JNi7Yzgg4CU0Eq/M3UEXFJqGejWCv6cBAj13ZmcTqI2IfuV9FJ7FxiS6SnjLcUoq8 HePi/Azdkrdv37o4u2zauHnrpq1bN28Fkbaxsgl5HMKlJRX1ALcKPjFlZGTg+Yjdvv2wx3zQ4WDY szA+Byhng3VTUlLDw8PBIbEhVIq2Bh0VLAqPiExNSxWtRxl4DWHnSGyKYHJuLZa3N+vTsx90b7A0 OirqmNOxzRs3b9ywGXlX8ZVvn98KngsgwNjZyXnThs2Y7e3s+R5CiP6cuwfSmB51PApOjnVfR7+O iIjAwx1+db5LqIwIj3j5MjwxiaT0QrMxb2JAxdFD7lkAKjHBHu28e/sWofhbNm3dvGkroPqtmwFc m5wB1ybK6AA0Z1ycT8B1MN6yaYvrSdc3b2LEBEn4PlDezruiDArYrfLy8vjx+f333/8obEI9ZLL4 fXr+/HnuoWG1atUg2A66rqCggNVr1KihoaGBwt9//z1q1Kgy6HlF3QT2CI1vr6g7lx8X5e28K2hB ggfwxxYBEu8zCQZHvMS5CKLfMtCd+RdBIDvYNxlxiYiLw6IuC60ZSKzgmhAZSOWPMe1PMKMvMxvv MWdfMqGJhW/2yyuXwm2kp5brbQn7jL9iZcXbWUjecpTbpRvBYZECuVGCJsORLPXjp88xb+NPXw7Q m77xr7aGVQClEb4OxC2nNWnp3szsnO4mSwSKSJz6zZgarYGZC/9uN+afdqO/PmMpv12uQGLs+41d kZSSvmDrIeRdHTlpfcTr2Bev3kW8jsvIzFxlfRJiOINMV7yLT2wzYmY1Oe0LV+/6BDwkSVpLibRz YfaUt0vPGUd7Qj1APUA9QD1QXjwgDbwdejKQTLc64Hv3YdTHT59ycj7lfCSfqemZTq6BZz0fICJ9 SGH5UqGpbjrzELRiho22njzf+ciJW5utvcfPOTLCxIZExe+8sG3v5eHG1nZHrkPj3c3z4fGzd3bZ +UAcZt7qUyfd7+la7DvofGun7eXNVhcXrD2DnKdQldmx77Klva9wgsNuex/A9vOXHyMAHvZUv/2n H9K4kv+CnErsULG8vVatWlBIxmU/Jq4lrtCjRw+gqlatWok2T14BLuo2iqu3Zv7cR26jEIQPcU5I dEKMHbdRsRnieux5WxNtXnrL8Ekp8nbe1dyAwZDBivkJdIs34AsFXYNFsOTWQoE34FbBJzdx9aJl 1OArb1+wUHAZz9sDb9/m1uX7LBpOL9qsiFk2Osn3UKQelSTvKlfD91O0P9xS/njnvvIG3IpilSId gxtJhJmogWiZt8zJzkGZb7ZggfL2gj75cTV4bIRfHslTkyZN+L2Pnhw7dgy/VPwqf/75p4mJCdL4 BgQE8AJZP67DFb5lnLyUt1f4vUx5e4Xfxd8zQMSW+71mNt9n9L2YjieJukttB5KNNDcAA4C9sDcZ yeWiNUHxnGbgpnuMWzhRmME1IV5shJp6wUnitUlB8/Jdg79iZcTbOdqsoq83YzMuqIaOXyVoNmLe 5kPmK6yUBk3/rY2RQBlCMcg0akAkXBS0yaeslufVe4gVr91ptECZCw4vidQ5yc2ai+g5Sq9qUF3d wNnj6qEzPmy0fF4j4PDQpVEpIcxnebuKsK7GmHuPX3hff/AHdN2V9NVGzdObvVNrxrbB49ee9w28 cf/pCPOVZy7f3O9yEeLzPQwWfsjMMl+2h6jWfPsjg7wOi8TYU95evk882nvqAeoB6gHqgZ/hAWng 7QgdHz/3qOmMI7aHr3pcfAD2jrDzc5eCkep03mpXi9lHoRKDjKjDR9tweum8ajpX0DLbN2I0kVjX MdunZQqhdevhY6w1TffqmNtpme4bbmINCXddc7ux0w5pmdkOYuPkR46xQZJWCNQgreqoMbaaZrYj RxN5dqylbWY7ytQW20IZ9sKJ+40mO6AFLEWzoh3gy1gEVn/WM+jT57wXKX/Mrhw7dmzJG378+LFY kHbJ160AlsXydqRJLXSYZ8+e5fiV6NI/7YhuTP1D5E1haMi0OELe/DW/wmy4x5x6wTx8X/gNlGgL 5bSM26JS5O3lzgkFeXvJh8BxUQn2kg2w9DsNiqLlfJe+2YDqt/M+LK2C5H1d6Fb4VZ4/f45Yd7y0 wZnx9X5+flyZ+0ROamgL06nkHqC8veS+Kr+WlLeX331Xmj3/jwihQMMQSXmi0wgehxp5biKeQrPw 5AVaAK3/bsv8s59cIjZ3ZLQuEDiPpKVJWeK9q1REXXzwX37Hn6Qy5e2qhjJdxrx7n+zi6V9NWb+q sgEB6apCViMdZeG/7Y0mrrCyP3FRd+bmX5SFHbTnJiWn73XxqkLAuBESlXLR3ZI+lYVaM7cYzdxS DTycY+mKQoulexBdkZaROdBitUAe+U8NweTR/rBJq3Vmbcd2S6D0QuLkf1E1sHY6F5+U2sVgvkBR +Av6A4qOIaB7CroawoUvomMTk1ODn0W0Hji5qrLQ2ukCovdb952YG9xeesid8vYvD2T6jXqAeoB6 gHqAeqB4D/x03s5R68GGe4YYW23c5bXB0vPg8Rubrbz3OfofdL6hY2GHTKmcnAvPt0ULBIObEAxO oLcJmUnNaJvcMruILVtBAZ4sHUOgPWcMfo7A+NwyKw7PrcWakUUoYNOYUSAb/RL4890gLUgZb4+L i0OyvNjY2OKPgApqUSxv19XVLXToCHrneHtYWBhvAFHKxEzmQ06+NCW/qGIXcFtEeTv0ZPj49pLv bg5ySrCXbICl32nwzTid73NRLVDezrtIqgr8MSN65PDlTqeYwR6EJtGphB6gvL2EjirXZpS3l+vd 952dBwMPS2JOPGeWBDBankyHkySsgsjCcPqBhYavWzNV9zLyTsQewoZHQhmf18yTBHKJSKcSegB/ lcqKtwOVI/LcUNBaa+Uup8zMLNlBkwmm5hC0ikFVRd0Rk9ffDX7+IurNMTef6DdxS5FjtMWoeZsc PmRmj1uyR9BKi8XyxSF3FWFf4yUfsrIPnfZRHjwVqVGHTVqXmo4/t8iL89/zVzHNeo1HHtVmvcfb HvdMTEnvP2Y5wfKA+ZL1XlQNqijpjV+yG00t2HKwipx2Z/35m/efrttlLEn8ishzFrw37zu5j+GS Vv2nIsBedsCk6Dfvdx/2EMjrlIDnFzcukeB2tEZ5ewmPcGpGPUA9QD1APUA9wHtASng7C8mtt+29 tGPvJaczgVB9gSCMk+tt/QkOSFQqFtnOg24pKUgbb09JSenfvz+0LPi9XAkLxfL20aNHF+oW6Ipz vD0wMLBQg0pViduiyszbIYresF7j3j363A7I1ZMp+d7nOWdRq0g2wFKpNaC8vah9Ks31vc4QiYMu p5gcGuVesv1EeXvJ/FS+rShvL9/772t6D7qOxKMfPjJxGYxzGJGIQWg6QescVy9MGQbSMdBd/58d U8eBGXGe2RbEBL4T3yQNXBf3SHHfcW1TdrwdUeWAxsrCX9UNk5LTbJzPCZoOJ5ha1aiqsv46K5cP GVn+90KUBk/9XUFXb/bWjOzsht3NQLaPufskp2VAm0Ugp0NC0wncLoJOk9YMfmlj+CKC5C73vfv0 NzV9s4W7XkRGQ9gP0n5PX0SqjpwpaDXymMd1GLyMfvunOjKxsmI1RbXJsXRF3e6Gi94npjh7+Ala j6rZZcz9xy8RM3/pZhAB+EpC8ihB1Zhwe0TLQxhHXnvZjiMJKR9kB0z8Pv35wkdKeXtxhzZdTj1A PUA9QD1APSDuASnh7SDnoNbQddE026sNHRgzaLns0xnHqriQqPLChVwobxffnQyDPIzTpk1DxkYs kszrCq5bkWqK5e0dOnQodLwQ4eF4O59EslCzSlKJQ4jj7aLHEl8Oi4xrJ7Ss3mPVNkc/ZJjifcIb iNaIVoqWORvU8JWi5UJbKBsDbNrnis/QwcMszMY/evSI22gZdFLUIfzmRP1Qxgb8pvkC5e28K8pR gfB2aCDsIRLED96Xo47/tK5S3v7TXF+GG6a8vQyd/XM2BZUYaKfbP2Fm+JMMO5AEJIy9KJUYa+ZX W0blOKPrxSy7zTiGMjffEj4vNlHGLuaQr/qKC5uy4+18hLas1vzNB7Oyc9prz4G6S6O+E6/fC4l+ Gz9r/f7/tTURKOoSXfQhU/FaX7/Ry6DTUktjrPf1oKg3cf3GLM2LFS8auSNMvbXm2j3O8MOZizf+ aWeoNmz6u/eJ/zFEZTQmNl51+PS/1Axsjp7D1+37XQXNR7D0ns+LWoBvk8h23YFjV0ZEv/Xyv1en q9mfbQyd3H39AoNHTdl4N/gF0r8OnrCaQHXoxhPqjmcK+kpDp795n7jZ3pWE5asWFzzPe6bEBcrb v+o4p8bUA9QD1APUA9QD8IBU8fbC+Lm4bHthNl/oupe9gfTEt2dkZGhoaKSmptJju1je3qhRo/fv C6FOEMkHb69WrRp8WJB2VjbHwgNi8e2cT7jPsMjYdga7/uq5arujH+5iOOeIGhTqrmINCl2r7CvR z/T09OjX0e/evEMuS67bJe9GsfYFDbga/vM7DQpVg+Ebx0BKaFCwG5S3l/wwkB7Lge5saj/EcFoz f9szb9Klp2tS2hPK26V0x5RqtyhvL1V3/vzGQMI5GP42nbF6xPQ5y1Tbm//T90Xie5GA9io2jOpx ZuEtkh0VQu78VDCLOr+IFr7ZA7ioKHPeToTQG3c3exuffMHvzq/KOnW7Wpz0ui43ZFoVIGtouSvo /dnewMMnICM7p0H3cURzRkUo093iQciLqLfxbUdNFcjq5Mq/cBybKNJwM1A5W1DUVxo+/SOizz9/ OuN1/WZQKPyDkWJC4fajZ8fcfXM+fsr++LHNqJkCed1cTZtCWDeJlgf/b681G7T/3pPnjXuR/rQd NQvcXkNvLsRqENzude0eFN0nr7KpKq/NBd5XVTE4cPLym7hE+YFT2AB+juEXjfQL2XQB7P+lDeXt 33zM0xWpB6gHqAeoByqtB6SHt5c9Jy+tLUoJb4eMzJw5c2JiYnAwcxd4lfaoxsCL5e2A6lZWVmIu Cg8P/+OPP7Bo5cqVYosq51ccSGK8XdQPhfJ2UYPyW/7+M6jYFiQbYOl3GhSK00X3yDcbUN4u6sby UkayVENvNsQdUe7WzC97SU5AGqUpYfdR3i7BORVmEeXtFWNXQiYrJIHkr19xm8GzxRr7GcFONoi9 oAa7NfPHPhLBru3JLL7FHA9jHieI+4D+MIp7pFS/49rmZ/B2I5Dqqav2AoiPmLgO0itEgAUq6MqG VVSFulM3P3kZHRr+eoj5CoEcYDhLnhX1G/ex8AkIfh2boD99EzFWRNpTIYvKsS4ylqKM2HKWt6sa /qEsBLFHVLyti/cKqxOzN9jPXL9/5nqHWRsOrLA+buty0ftG0DnfO1UUtFll9cLgNlpDTlVVocGM bRFv4i7fDGrVfwKB80r6AyasfREZI1DVJdIxysLancZscjgTG5+867DHH+qIzxcOGLs8KTV9xa6j CM7PlYUnHStsK99aSXl7qZ4HtDHqAeoB6gHqgUrhgbLh7b21dyJRaUWdkVl1iPGeMxeCPomGxfyA wweh10W1CvGTrl27vntHlCUlY7qiWqhg9SXh7eDqGzdu5AeOtwPk5ORQWa9ePc6T/KJKW8Cx9P28 HY1g+pQ3oVyUP7EIEBgTSBc+JVgW1YL01BfbeckGWPqdBsU68JsNKG+XnsOshD3hzrmPn5lJfmyo J4vcQd0vRZWwgcpoRnl7Zdjr38Dbnz171r1798rgHOkfI7JRXolmLHwYmQNEjB2ZTPGzljvjV050 tmYaHGQm+DHnI5m0HCbr0xdx7Bhp0Rcm0u+GctZDXNv8DN4OlG0oaKnpfeNBREzsX20JtUbI+p9t hFZHPLJyPp65dLNR7wlVlIm0O8vbAauNsAqEZbAoJS1jvfWJxVscD7tfdb7gf/DMlUVbDnbUmQMV F1YpnVV0URHW7jimUd8Jw8avnr7GduUu5/U2J9bbuKze7TR1je2wiaua9hkHTk5WAfHmkP4X6BvK MPrVVPRXWh5DgtQz3jfrdzUjDwXU0E/9zvoLE5NSB5qtFLRGQLsB4H9NdYOb9x5fCnjwq4rwf20M b9wPuRX09FfIwiuDsbOPAL5ovBTAO+Xt5exMo92lHqAeoB6gHpACD5QBbw8JfWM0+cD4OUcq6mwx 54j5rCOXrj4Bv/qhu7Qo3g7VCxrZLub5Ynl727ZtObr+559/Ir2sqqoqSDsH2w8fPizWWqX9itsi jrcT+PvlBJ+Q+Hah5V89Vm53vJqZlfPl8vxvsHz/Pv6gw8Gli5fa2zvEx8ejJn/xl6XHjx9v2bRl xbKVENLHU6QvF9JvX+EBDqdLWOFrDfizgPJ23hXlsbA0gPl9H0uiAKZ2MSdfMGBWdCroAcrbC/qk 4tV8LW+/cuXK4MGDk5OTK54rysWI0rKZ4HjGI4JZFcj0RE4KhK9bkrQUhLF/Sdf/3U8kYoadY+bd YM68ZN5/qcFO6fpP3N24LClz3p7Ht5WEKiOmJ6emHz5zBWS7qqK+tbMnhNYXbjv8C/A7ItgJqc5D 08DaKoY1O5pMWGmdkZGZmJIWEhbpF/jY8+o9/3tPn4VD3yX50vV7I6dt/BsK8KDoKgYqQ2fcC3mZ npH1CREjuNDNmz99/i89M/vOo+fKw6aTCHmxrZCwdqOqKvrtNeec9LyekJK23eHMb22NSfw81xlV g1qdRl+4ejcsMmaQ+Yq6XUyb9bTYddjtQWh4834Tf1XU3+JwOjn1Q2+TxZCmZ0Pu84bAj6U0CpS3 /8Szhm6aeoB6gHqAeqCceqAMeHtOzqf4hLSExPQKPadlZmb/6GOgUN4OJgBcHB4ejq3jIvZH96G8 tF8sb9fS0oLQvZGRUZUqVTjSjs8+ffpwqWbLyzB/dD9xRH1/fDs6Gf4yXEdLr9Y/dTRHakWERxTV bRDg8+cuqCqr1q/TANQdbxwUZSn99cWejJINsPQ7DTicLsFR32xAebsEr0rzIv7vw8GneXjKmqlq Q4Rl6FTQA5S3F/RJxav5Kt6+YcMGXDmcO3cuKyur4rlCmkeEcPQz4SSHacNDJP0EfrUKj2O3Zpo6 MjP9Gf8YJjaDSc0WD2KX5jFWnr7h2uYn8HYAZy6kXFEHoen4azhmrqVAflRn4QI1nXkQPyfy7JwA C8xIlLsh1GMa9Zt45dbD1LQMh5PeHYWLGnYe928bw7+U9Gq0MWjS3WLQuNXu3reSUj6c9LpZT2Ms Voe0i/KouSbztq/Y6bj7kPveI+eQI3WPo/vynUdN5lmqaM7+oy1i5jmkz24CW8FGFfT/6mC02urY u7jER6GRgyas/g2V3Ey6zdqrGDTuPfHitTuQbX8UGvE8MubR88guevMA2EdOXg8lmXU2J6uoQIte 5HlBaTD2/KcPaoaUt1eek5SOlHqAeoB6gHqgtDzwo3m7ZGRUWqOQknZ+9GAL8vYPHz5Mnz49KoqI AvzorUuJk0vSDVFXiJbFvMQtwo3z7du3b968WWj61JJsrgLbwEWlw9vDIwz0DRvKNNbT1o+MiCzK YyDAnhe82qu1b9aoxY5tOzIpby/KU+z5LnZsi9l+M07n2ymqBcrbeReVxwJH3a2Dmd9s85iVJXP6 JY1yF9+ZlLeLe6Qifi8hb8d1grW1NWC7l5dXYmIiPCH557ciuqpMx4Tg4HcfmLtxzIEnzNBzeXHs YmLs1gzynNY9wKi5MJoXmL3BTHRafif5x4v5VbQkHR7AufNzeDvHrkGkZTVPXwqIS0hGvlSBnA5L 1zm+TZh8NXWjjoZLqqsbtRg0+WFo+Mvod1pTN8KsfmfTXqYrFmw9uNbaedHWQwPHrWrYxfQvVYPJ y23eJ6ac9w2s3RFR7kT7BdlXkfC0ioJOVcxsoQo01aH9jqWE+XOk3QBfq6oaNuxuMXr+jjsPn72L T7I97gVNGyLALobNCZYnivF/tzcxXbhr1xGPJduPNOs7XiCnJTtwUmh4tJf//f+pkwZz2y9t0s5R d8rbpeMEor2gHqAeoB6gHihPHvjRvL08+ULq+yrG23HJqqOjExISgo7TW79v23tifhP7+m1tVqS1 4JBS4+16hg3qNtLV0iuOt3u2U23XtFHz7Vu3U94u4VjCrsEkwaAoWs6v8s0GlLfzPiyPBRw13IFz 7BlTDXLHbKQo0qc6h5XH0fzAPlPe/gOdKzVNl4S3Ixm9gYHBzJkz/fz8IN+Hvkv+7ZWawZXLjoCZ 73hAtGKaHCaJTYlWTAHMjuD29idIatSbb5nIVCY9p1yOtNJ2GqfPT+PtBEQjlN2gvobpg6fhoeEx zftaEN7O1bMkHFHiE1fanPC6CQb+NPy1+oiZ1eS1URMS9io2IeXeo+eX/O/dfRz27n3y05fRuxw9 ehgu7D1m8eu38Wcv3/oD8ukkfD0vOh3YnORXBYTPY+woKBogBWo1dYPexkssD58Li0A61pSDp7w7 6sz7tQ1C62HP9ucL5J7XQ1QiTytE3SFfoyxs1mtSwMPQx2GvWvUZz8rIcyv+EDEZuIjy9kp7ztKB Uw9QD1APUA98swcob/9m15X9iqK8PTMz08LCIiyMIBJ661f2+6KSbBGHllTxdvRHbOKOf1Tye4Q3 4GtEC9xSvob/yq8lWoAZvvLGol9FzcRsOPtCKwttSrSSL3Pt818LFoo1+Gaczm+rqBYob+ddVN4L 1o9Y5M5lGNzJXHxV3gdUmv2nvL00vSmtbRXL25FwRFtbe/ny5f7+/rjuwjiK/W2X1rFKab9yPjFv PzDBCcz6u4z8MUawgxHszhO8ypNkRxx7jf1MiyOMjifj9IxkO+WnL/9E89W0IL0ewBn0U3k7CWKH NHo3/fmQYTnnd6d6GzZ3Khd5DvAOmt1qpMu5a/DgVruT/1PUXmV1PD0j083nTm/jxf9rb/Srst7v bYXdDRe6XQ5M/5CZkp5x9e7jwIdPcz59NF9mXbu9yd/qRn+oGf6KUHkVg2oqpPC7muHf6sa1O5Bs qv1MV67adfTG/Sfvk1Jj3iU4nLnSWW9BFQXwc1YNhu+G5Bh1Ff2a7U2OuvvEJSYPHLc6P2er5LW+ bynl7dJ7UtGeUQ9QD1APUA9Iqwcob5fWPVNIv0R5+/jx4+/fvw8jeutXiKdoVSl5AEeXlPB29AQT stQFBQUFYLp1O+BWAF7ugKQSt4gfMbKsRkdHv4p8lZaWhkV8PVeAaP+rSDJhKWpgwFFltPwg6OEt 0ixp+d69e/Fx8QWBM7ctUJfQp6G3bpFu3LoZ8PTJ08wMwmFEp4KbFl2KsmQDbkNiq4h+LdagYOdF V0f5mw0obxfzZDn9yp0cLs/z06cimvRKdDkdTel3m/L20vep9LUombffunVr+PDh27ZtQyLvnBwS RS35d1v6xifVPQpNJIy991mm8WE2iL1g2lMbpulhZrIfEbwKSWAyPuYPp8Df9vxFtCTlHsBJ9DN5 OwHarCi6rHbP0UsSklM9fAPrdh6TL6uubCDTxQxB515+t1+9ib/9KPRDRtbCLYdI7DoSqhJpd3ZW 1vufuvFg85U+AY/gcAwqPSMjJi4RYfO+AQ9dPP33n7q8++iFPcc8HVyvnLx4E2YPQl5Gvo5NTs/4 9OnzyYv+oyZtbNV3QhUuWJ1rk/BwNhJeEhgnW6/V0cTxjM/b94kjJq8RyOuwXWKfI0ha8Xvj3ilv l/Izi3aPeoB6gHqAekAKPUB5uxTulKK6xPF23PQZGxs/ePCgKDNaTz1QWh7AHcRP5+3oAybI5/r5 Xl2zem2fHn3VVNTbqGJuN2LoyJ3bLe/fDwIZ44ccExMzf+6CKROn3Lt7D0iZr+cKN/xvTBw/ydzU HCAFNWj506dPtwNur1mzrk9PvmX1bp27L5y/yMfHF9uFDd8IGnz27Nk+WzvN4dptVNqSbii3QRLY /fYO7969Ix3NM+YL/LpiBckGpKG8psRW5L7+RAPK2wvdI+W30iY4T8jdmoGwzBsimEEnhvL2ynAQ SODteOqqrKxsb2//9OlT7k+J5N/kyuCu7xwjVNmh/QJhdtvHjAJC2XcVohUDkStkRG18iJl9nQmO z9+gxL+H+Wa0JP0ewHn0M3k7R6SJWosQYeFG87ZlZX88fv4qlNhJZDuWKuhNXm79IStLbchU7Rkb cz5+xFXiKS9/tZFzfiPy7KzeC8HjLN9W0ftfO8PlO4+8i09OTftw4pzvpn3HPa4EYJ3M7JxXb+Ie P48Kehzud/fxCc/rm/a5TFm6Jy4h6aL//eqqegIlKK6zgJ10iVOMKQ6JY6Mqwn/aGlkfPZ+c9mHq atsq0IpXNcmVoPmRsJ3qyUj/mUV7SD1APUA9QD0ghR6gvF0Kd0pRXeJ4+4IFC5DfEzb01q8oR9H6 0vIAjjGOt4sebHw5LDKundCyeo9V2xz9MrPyFVR5A74b4eHhQj2DerUbEP32yELypXKrgGl4XvBs C/32Bs2g356Rly8V8eROR491at8ZCvCyLeT69ekP0t6rW+9mjZo3lGk0oP/gS5cuAY5xjbx48UKj c1cFWSXvi96ivJ1b6nrKtXULuUb1GrudcUP38PTqwvkLvXv0aSDTUFFWaVD/ISOHjhzYd6BCa8V6 tet37tD55ImTHHLH6tiEzxVf0PWmDZvLtZIf2G/Q8KEju3Xp3rh+kxZNWk2bPA1B79xW0DIKfJn3 g2ilaFnUgCtjKTpfaAulaFBsHwp2AFunvJ3fXxWgwFEs22DmV6RPZbXc6x1kniRUgJF97xAob/9e D5aH9Yvi7ZaWlpqams7OznhbivsZLPTHsDwMUSr6GJ/JHH/OjPNh1E+QJKdEMUZUld2aqbqX0XBl lgQwbuHMi+T8PuMHipL2fHdUiBJOpZ/N20HLjXLD1BV09GdtiUfCU5/bTXtNgM4MAs7PXAqAKPpf Svr60zcmp6bffvAUjk9MTodCu+Gc7XU1zJEOVUSkXVhFSU9p6MxN9q7hUW/vPQ7zuRWEyHPdKesb dTX7t7Ppn+1HV4UwO8Lj5bXHL9nzITO7u9Gi3NymHLcvHrZzeN8Ia6GTx8/5vY1LNFuyuwq6kdtC caC+NFA8jW+vEOcfHQT1APUA9QD1QJl6gPL2MnX3923M1NTU0NDw5s2b39cMXZt6oKQewG2RWHy7 KHkIi4xtZ7Drr56rtjv6ZWXn8nZRA34z4eERBmy+VD1t/YjwCIAsqL6ITuDe3FfP817t2nTg86Wi NRifdT3Trk17APBe3fvs3L4T+i3v378PvB24fOmKdm3aydSq36/3AJwXiEHCFl++eNmtSw9lBdVL 3pdFeTvXmdOup8HVmzVq4X7WHTUIhh8xbETtmnU1OnXdt9c2PCI8Li7uedhzG6u93TV61q/TcGD/ wegwt+6jh4+GDByGbiD6fZflboD9uLj3N67fnDltZhtl9Ub1mi5dsgy6NJwx5weuXGhNUQa8A7/T QAKu51ouoUHBblDeLrpbK0CZw1kWvnkEzJpROsYgErWST5S3V4YDQIy3cz93kyZN0tXVdXFxiY2N RQ1XWRm8Ubpj/PSZyf7E+L5mRl5g36ARBezsoz2Ad7xQ09yR2R6UrxVD6Xrp7gUpbA0n1M/m7Xnx 5ARWIwOpnubUjZlZ2QEPQmtrjK2uZvDw2auzVwIETUfsP34hKPh5bXVDr2t32evJ/zKysu+GhBvN 3iaQQ2A5gtJZEo5PFeGvqkLFoVOPnPWF2HtKWvpmuxNN+02sKq9FlGpUgPcNf1fVdbsSeC/kpYCr BAMnLRSHyrlAelgqCxv2ML1y80FCcprhvG1VkTg1d3W2G8W2890GlLdL4dlEu0Q9QD1APUA9IOUe oLxdyneQaPeaN2/OwXZ69yfqFlr+cR7AkSbG20W3VShvFzXgy+HhEYhvb1SvSXv1juPHTZw1ffbM 6bPE52mkRqhrINdSoWXTVohvz2Tj25+FPhsxdETdmjID+w2+dvUasDzXLPoG8XaX4y6d2nWqW7Pe pImTAeGxCLy9a0l4uxvh7ZBqR9h888Yt7fbZ8y2jHuVTJ13lWyu2at76xPETIPnY1rrV6xrJNOnd vbeXp1dO3vMFGCckJFjttlJopagsr+Lh5vHpM8H+xZ6kkg2w9DsNCsXp6Bg/fbMB5e28DytYYerV vDSFu5lOp5jErAo2vq8bDuXtX+ev8mktxtsTExPxIuHUqVMvX76clJRUPsf083uNF2SsHjHansy/ +1nRGFFhdjY7M8RkEOt+8Cnz8stQ9p/fddqDH+8BXNtIAW9nKTeHskHL5XX6jl765GV0aESMcMam qJg4u1OXBI2GnPcJ8LhyC+C9RkeT5buOxSXgeCWPojOzP/YwXAjlmXxaTpoi6B5ze625G/e5PgqN eB2XeNb7lsUK67YjZv7e1ugfVX0EwG+ydRE0H0FW5Gg5ViQknAfveQUs5dpUJLo3/3YcO3Ly+gdP wkNeRA2wWCNQgGY710Ke/Xfj9PyxFNEU5e0//uSgW6AeoB6gHqAeqFAeAEQaMGBAp06dOtJJ6j2g pKTk4+OD408yhatQBygdzM/2AA42jrdzbJb/hNIJukZ4u9Dyrx4rtztehZ4MjHkDlLkJNbAMZ3k7 dFeaNWqGcPTa/9apU6NuoTMUY5o1bi7K252OOrVs1hJI/OiRoyBgaA0tcxtCGZozq5avbijTWF21 bUAA0Vl6wcW3y6uQ+PZPRJKFs8ciTGx8uyIf3+7r44tHAGjcxso6OyebM+YsX79+vWLFyqmTp7me Ov3586c7gXe6a/SQqVVv6+Zt0LeBDYw5S3QmOiraSGhcr2Z92KenkzytP33iXCShGyU34Cy5weKT 8nbeFRWmwB3LCEbt75aH3K0Z8yuVOsqd8vYKc3hLGIgob4+Pj2/duvWqVatwrcVl4saK+AmVsDpd JOYB1xdMGxdWMYaNYBewdJ0IVbFf/7ePmeTHPEsiPyzUr2KuqzxfcU5JHW+HvIyKULbvxFsPQiHD np2d43TeX9B4hPO5q9cCgwXNRgBuV1PR7z1m6dPnJKd4ds6nDlqzBYo8b8+D3hwkVxFWUzOo18V8 zPwdvgGPUj9kxr5P9rr+YNX2w2kZmTrTVgsaDxPI6YCiE1UZFUOi4s7TdeRjRSVi1+X1BHLav7QR dtKZt8Ly6PX7oSlpHwIfPFUcNIVN7Yot5m20CDxeLD//WgPK2yvPSUpHSj1APUA9QD1APVA5PUBv /Srnfv9Zo8bxxuu3oyw6oUvg7W1Z3r4tj7eLGvBlWIazvB1a6+3bdJw0fuLsmXNmzZgtOs8mX2fN mTlHqCtEfHuLJi23Ib49E2/uZm/asEmmdv2+PftBzgVN8c1yBdS4u7mrKbWBlvvJE6dQyerJdFeS h57MJVGkDEtM4O3QZud5e2REBKTg8QgAejKbN24Ouh8EeXnEq+NZJHJkgauD52dnkYj6cx7nsVYb JfXjx45HRUHTNxqMPXeOjn4d/dpqt3XDug1HDtOMCI8Q6+RP+So69kI78LUGrP/IB+XtvCsqXgHI vfvpPGGZ3czOBxVviCUdUTni7RRdlnSnFrDjefu1a9cGDx4M2fa7d+8iZ0cBQ1pRpAeeJjKOoYyh N/M7ckBYsr8eHGBnGXvdA0x/d2bJLeZaTH4L9IjN90XlK+GCRFp4OxdYTiLMWXytqPdPe6Odh91S 0zPuPHr2h5zOjHX7EpJSa3Q0FgCDqyLOXE+mq9nE5TZDLVYJFDjt9C+hN7C5MifzgoIBbH5VNeio PWfu5kMevneePI+CGvyziJizl27uOHB2yup9mjO39DVf2U24sKvegq76C7sJF/QZu2LkjM0TV9tu czjtfikg+DlyriYi++rHT59Pet+o12UsCaonke2iIfFchPwP/6S8vfKdrHTE1APUA9QD1APUA9QD 1APUAz/KA7gtKi09GU6/XWuUzqOHDwG0of1S6OR60rWdajvAc+jJAHrEvI4xNx1Xt0a9mdNmpaSk FDrOyIjIkcNGQWt91crV6Wnp4S8L15NBPB1WF9Nvh27M6VOnu3fu0aBOw+aNW3Tr3G1g30GL5i9y dT192ftyXGwcVoITIC9vv88OYfBKckpDBw/T0dTT0dRlZxTIrKut369X/yYNm6kpqZ8/d0EsILzQ bqPZQuu5Siz9ToNi+/DNBpS3S9hx5XoRd0hCRqa1U248KqJSncPK9Zi+vfPlhbcjVHiyH3P73beP tDKvyfF2a2vrvn372tjYPHnyhH+LSvIvcGV2Gjd2/FwcCWVUnRlErZMUqKKh7PhqxXQ8yZx6wSRn ERV3fpL4d4+3ooWK7AGcWdLE2zlMzfJ2wrGFv6jor7dyTkxJa9l7UuuBE5NTP6zb6yJoOYqNKjck n4Dq3CcKubHlbEHVoEEvC80pG//XFtHynBoMC8ZVhFVUhdXbmjTsPq6z4aLpa/YeOnXp5v0n4a9j YxNTE1LSgfTj+TklPTYhOeJ17M17T/a7eE1cuuvwaa+cj59Oe9+q18WMhL5zYe2Ut1fkU4SOjXqA eoB6gHqAeoB6gHqAeqDiewC3RaXL25EvNepVVFGOw+Yuel1sp9aey5eanZUVFhY2dNDw2v/UWbp4 OafiIrYuoHFScrKh0AgaNRMtJiYkxIe/DC+RfjubLxWtgepfvnRl2uRpXTpoKMurQvQGMwRt1FXa Tp009cL5C+D8GR8yNm7YBCDfsllr+dYKiJCXb4VPUsibFZTklFUUVBVkFY86Hi0WZWO7kmEOln6n QbF9+GYDytvFDsKK9/VqDPOnXa6wDMJTof9QCadywdtzPpPIYcFupqoNcx+PByU9xKuE+7D4IY8a NcrR0XH48OFOTk74c4NfRawj+be3+EYrrgUOsOg05nwkM+Yy+0gO0ezA7F9Gs+MFmdV3mFepFdcL dGTf5wGcX9LH2/OoOzi2sn6rvhMR4o6g9KottfYeu5CSnjlq0jqiHoMQd17FRZR4s+D9F0Vd2+Ng 4x/Hr7QlWjGcAc/kOUqPqHg53Sryur+0MazbzUx52IxexouHWqzWmbJRZ/KGYRarexktUR0xq153 s19UhY01zHY7ugHI2xy7UKO9ERGZge4NF4rPd6OsxGTwZIHGt3/fgU/Xph6gHqAeoB6gHqAeoB6g HqAeyPcAbotKl7fraukhHD1/A1+WwDo8L3givp3n7dBmAaKv/a/MgnkLIaj7pXnut9jYWISXy9SU mTNrXlJSsmTefurkKfmWCryeDMdVsN349/FPnz718fFdtWK1hfmEYYNHQNOmYb3GHdp2dDx8JDMj 087WDuHrkHC33mPtfOz4sWPOorNz3tcjjk5PQp6gWa7lQjvMVUo2YBuQxM6KNfhmnM73uagWKG/n XVQhC9xhdzmKEXBZDq2Y+geZtJwKOVZJg8IpNmPGDKQp79+/fz/pnAYMVNhwOzeu2Jqpsz2qn9R2 tXAH9u0zRLNfv76FL/zxtdizLVu2nDJliouLS0xMDH7xcEBI/mWWdMRU6GUg7TffMqMuMLUdCo9m 73GagXj72w9fRLNXaJfQwX2jB3CKSStvB3Vn49LlNLfvd32fmKIwaPLfbY28rt1NTPkwc539b6q6 AiUgd165hYtvZyPe1QyrKAsnrrF9EBrZ33QVCUQnvD1vZsu/tzFcuO3QtLX2ueheldVvJ5ZCokID nM6Jt6NGXmfYxLV3H7+MjU+cuNz6D3XE1bMNQuz9Z5B2biCUt3/jEU9Xox6gHqAeoB6gHqAeoB6g HqAeKOAB3Bb9RN6elZmJ2PKli5fVr9NAX1s/IiICHRSFIVz5uv/1bp27N2nQ7MD+AwhJfSlRT8bp yLFmDVs0b9LSnY1vR8w8NpGWlsaTlg/pH1JTU4ODg7ds2oJUqjI16unpCBGT7+Hm0bRh8z49+ty9 ew/yMtiQ2ASl9/j4hKSkJCxFx7i+FfBofoVkA7YBytvz3UVLZekBLkx6MQKnuchVa2aIB4NQ6ko1 4UQGht20adNGqZw2bVivufOSAIrZ1v9hN1W3Sp2w3l4qe1pkp9Zu3NzK5u3WDWuLtPjxC3bu3Onm 5hYXF1epju2SDzbzI3m9xT6EUTzGCHaKa7PXcmBUjzNLA5jYjNwmuZ+OkrdPLSuhB3B5I8W8nSXk KsKmPceFRbz2v/ekXmfT6u2Nndx9E1NSL1y709loyT+QiwESB/oGReehOhvHXkVN+HtnkyqKHGxn 0T2P3JWFdXqMS05NS0hJa9JrPBGlESfnRPK9moqwVd9JW+1dE1PTb9wP7Wm4SCCryRrnkXZ+i3zL ZVWgvL0Snq10yNQD1APUA9QD1APUA9QD1AM/yAO4LfqJvB3JSjEuO1v7xvWaKMoqQhddjELjK6C3 5XZLxKtD4OWq71XYs/lSeyjKKnm4eyDtqahnANURnY4w9RZNWoG34+vZM2cXL1y8c/vOt2/filqi ZaD4nTssmzVsrqak5n3R28/vqqpimyYNmu63cxBrFisil5X3xUvTJs/Ys8sqOTkZNWhBtMGCZckG WPqdBhid5Ba+2YDGtxfcmxW1Zvg5NsqdFWe2Ca6ooyxkXDh38Avg7u5uK5WTve1ebauruVIe1kwt m7TNds52tjZS2dnCO7XP1naCjReGsMjmVOEWP77W3t7e19cXj1y5I0DyD2YhR0mFrkrJZnY8YDqc ZP7dn5dAWUQ3RsOVZHZ4kZz/GK64v3gV2ll0cF/jAZxo0s7bAcOVDXqZLI6JTfANDG43Yubvijp9 zVd737ofn5x66UbQuEWWdTTGCOS0SUQ6j7sJfgdjB2wXqcxfavBbG+PF2w7OWG9XVYXLqcoidLIK NicUKOgoDJ621eH088i3YZFvpq/ZV0fDjNWQQWvGueo0fGs/o0B5+9cc5tSWeoB6gHqAeoB6gHqA eoB6gHpAkgdwW1TmvN2L15PhePu1a/4aHbs1qNtoxtQZb968RZcwcWlMUQgJCdEcoYVkqZrDNUHa MZgXz1920+jWQKbRmlVr0tPTiHEe/YY8r56WftOGzbj4dmDz9Ws3QK29g3rHO3fucma8PQqOhxyb NmjWuYPGNb9rb9+8nTBuokzNeuZjzMPDI7AUE79KdHS0sdC41j91YJOaRoRruaUoFDVJNiCtS+QX P9GA8vai9mkFq+cOwOZH8iSaLZmniRVsiJKGg1MML62kS9/0IT39+quMP+3x9sF/4NX/2P93NTxN +rpZfI/MLn9E/6f75RRv+sMs8MQWB4HkH1tJR0nFWoZTPjmbnOaT/NgHbZyiVN5LLr/ZMg0OMYbe TGje74DEv1EVyzV0NKXnAZxu0s3bubh0A4GiTg+jBS+j3ryOjZ+1zr5O1zE12xqMXbTz9sOw5LQP D8Mil+88rDBs+j9tTX6BrDqJeGeD3hH3zs35gehsgyyNr6Koh5ll8rmpVKupGv7Tzkjx/+ydB3gU VffGI4iIBTuKBRQLKk2xfepnwcJnRVAQULF3USwooH+xF0Bakg29F+m99yZFaiB0SOg1QAqEVM7/ vXN3J8MmWZLNZsvsOw9PuDtz55bfvTO7894z59Rv0bnf+F37Dh9ITO4+bGqVuh+WUtkMG3hnOflp +P5V3am3++4iYEkkQAIkQAIkQAIkQALhTgCPRVpvt8oRZnrLjkO1G3c5/+Ef/xo472R6rn9nM4OJ Lz4+vnGjJldeVhH+2xMSEsz9ZgKnYIPF9dTJU++A//aKlTt26AixCzshtPz0409QxeFQveWXXy9c sHDPnr3wAIMyp02Z3uy116+58tqbKt/St0+/jIwMFLh3777GLze98tKrHrj3gaFDhu7ZvSclJXXn zp3z5s575813q1Wtftst1WCmPn78BGReumTpvXf9p+IVVyM0KizYExJ2QKKHP5ltW7fBgcwz/3vm 8osrvPfO+/DujsyjR49BQFVU9/67HyyYNx9OZtCMA/sPrPh3xf99+3/XX1vlzhq1Ee8VvUBmo0Pu Ju7WndY08usNO81Evvbn/s/galru/9Tbc1nYOqUn49L9cm4Pw7GMQ24aLIdcjiNs3fWgFmCT0qXS QGMRBKEqHTKzwADUQT1EaVlSfZhyhnN5X8kIqKsi86Ya1LxKuHG42JcfVDL77X8b1uynK+3wG/Px fJmxSxJPOtvh+qYq4WaxeDsSwBUX1Hq70rcNcdswO7/xyY869Bkbv/vA9t0Hpi5YGTN0av9RMzdu VXGIMrOy9xw8smzNpuihU95o1fWuF1pceG8zJbxXfSni1kYR8Cpzu2G4Dht4JPDvtiYRVV9WR29v dN5dr9V8rsVrLTt2HjRpyaqN+w8nLVq1oWX7vtWe/VSVAC/xSmzX/moM1d2/0nqu0b6lXurtdrwc 2ScSIAESIAESIAESIIHAEMBjkZt9u5Ym9N8tOw7WbtIVenvHgfPSM5x6uzWD2Who400Mvf2l+meK lzp5KlRr6OEd2/+l7dtRyO5duz94/6NrK1a6/urr773z3haffQE1/p2336sJBy9XV65S+aaff/zl 6FGnyd2pnFPDhw2veuNtcLdeq9odnzVv0fGvTh998NEdNe6sdXutVl+3fvKxunAIr/23Q1pv+90P la6+ofK1199Z86733n6vc6fOHdt3fLVps+q314RP+JrVao0YNgI2kOgXqvjh+x8h+6NSZP74/Y87 dejU+uvWDz/48A3X3YD937b+TjuTQZs1B5NA3j0FZTABFjODB7lel1zIDHmbQb3dOqzhkIZ/Zmfs 1Cj5YlE49Dio+3jPSJcbbYd0j1NNDUXxc/9xVy+6Sp8NQQ3cxo3DzMHCx7ID8vBYiejqepPF8B+F oABle8h1A8QRTo6kbDzWwdM1/KgIar3dqTBro/QmsFo/u1rj65/44Os/+0yZv3rd1l0b4/et2hA/ YurCd9p0ef79H/uPmbV990FYvB8+lrRi/fYh4+d912lAo8/+eKDpN9Xqf37TM5/e8HTzas9/dveL X9Vp9t0rX3Zo22ngoHFz/l23bT9OSDkOJR8lPP3+z/ASXxp+ZlREVJfgb9G68xXA/byTenvwXERs CQmQAAmQAAmQAAmQQKgTwGORm95u7ZHS22Hf/t8f/how76RLb7dmMNMwMv/6q28ee+Txr75ouXfP XnO/WwIK8MKFi15u9PL/nnhqQL8BJ9OVLZ3We3fu3NXhzw4vPPtCjdtqXndVpWuvqlT5muvhB6Zp o6b9+vQ7cuSILkpnPnTo8F/t/3r6yWdurlL1miuvgzx+e9Vqzzz17KgRo9esif3wvY8ef/SJuXPm 6lMQKa+bo3vDBg2h80Oih8YOtf/Gyjc//MDDH7z70ZTJU06kndA58ffIkURU16Rh09o17zIyV0L+ Grff0bB+w549eu3ftw82+jqzbol5Yt6E5ww4WswM+crp1mZ4nYF6uxWj7dNay2083aXFdZWwcuQe bOPbJdYVxDZaMCjZ8K3l/hpNsDU5//b8slwiIp3vTVzUS7IDauKefxPtvnf1IWn5j1SDQTsGIto1 rwyxHWs6f6xUFu/cSMDnBPDbJhT0dovoDVNz+Iq5teFZNRpfcPfrF//nzXJ3vxZR7WXsiYDXl2qN rnjgjftf+urHroPAatai1QtXxG2K371jz6Edew8n7Dkcv+fgzn2J8XsPbt+1/1jq8ZTUE6OnLmzX e8yb3zkebNy6woPvKCfttzVUVTht2gPvOiZfJZ96u8+vBRZIAiRAAiRAAiRAAiQQtgTwWKT1dmiz esMeMwE/k7/2nPVp+/EzFm/KyMwy9zuzuv7DKfD0AlctGzdsTEhIQNosxJVFRfbU6aSk5M2bt2zY sOHgwYPwr27uRwLuZXbu2Dlk0ODv2nzX+ps2P7b9ERFRDxw4oAu05tSZN67f0KVTF4RDhdl5927d 4SImMzMThWzbtn3jhk3HjiXpU/A3PT19z949Y8eOa/t/P3zb+ts237SBXA+P7seOHXNrAzKjOriR R9Wwdf+21bf/1+b/hg39e/euXdiPeWL2KG8C52LLu9/c49sM+dZlraJIGZDZvAqot5sowiSBwd+T KhX6OiX38r1kq4oJzM3fBBLTDF3UcCNzeR9/1+7b+q7q51rBMQTeAZt8WzxLy58AruWcUxKXKA+O cb20Av7GEOBv6W7yzCS6Z88fHff6igB+ToSI3q5NzQ3h3eqMHSboyhm7a7+ySG8cccMLHfuO3X/o yKW1Xy1/R9PLHnir0hMf12749X+atsa/+5q0rvpci6sfes8xZOK+w0lX3tvs7Oo6TCqcvTd2uq8J Mmv2vJI79XZfXQIshwRIgARIgARIgARIgATwWGT6b0fabYNQDJkdnmSyspQw7mFzI1nInG7ZdCEQ wKFsQyFPz0hHA7DTLZv+qDNDYFc509MzM51B8XJV49NPRP7cklG2IZ57KFz1XTcjPR0nFpQz37b5 Zyda6LmiombQSPGXeruJIqwSU3cYAqkh9tafElZdD4rOnsySqkOddsgX9pJYFVMiVI3b1yYa3ku0 0mv8fXScZKj7KLcSJBB7WH5fKXeOkIguFoN2h5zdTeqMk05rZM9xZ+2W9dUSbA+LDk8C+GUSanq7 m/CuHaqbUVCVZn77058cSUr5o+fIiJvrKykeKrp2ww7bdf0P9vBVGz7/zk/pGdn1PvjF8NBuKPaQ 2XPFfLOiYExQbw/PC5a9JgESIAESIAESIAESKAkCeCzy4E/GyxqtkreXRYTAaUDnuZWeM+BoMTNo Od1DG7zOQL3dA1V7H/oJPkB0IMVI+tz261DjdtJhlcvjR7R884+q/Uz3GL+2sEiVtVps0Xu16h6t 3qHgVkIEYND+yFilq5um7CqBf9HSYKrEJ0uWy59P6E6qEkLHYn1OAL9tQlZvzyuDK98vZ1dv3H3Y VJheDB43uyYCnt7S0PAM45LlEX0VNvC3NqzzeqsBY2ZmZWf3GjG91K2GXK8Cs+p/eUsOuj3U231+ LbBAEiABEiABEiABEiCBsCWAxyLf6+3hQdOzWg4GnjPgaDEzeC2nm+NTUAne6e2bNm1q3rw53jgw y2citAhAiEvOkFthYg0T9xgp01220auMv4Zw33GBGx9FPlqq/+2vWkumHtix34uQr1rvNf9GySsz Sqa+cC0VF+yOFOm9QVSA3c7GAodx5eqL995R8v1SQdRavVFmD9dpEoB+47eNjfR2ZZ1eunqTFr/1 Wbpm87rN8fsPJz337k/KuF07Yze8xJSq1uTD/3OknkhbtX7bv2u3fPVnv7NubxQqZu2mYxnq7QG4 WlglCZAACZAACZAACZCATQngsYh6u3dj61ktR5meM+BoMTMUpJab3fE6gxd6+5IlS+6777758+d7 7pTZNiaClsC8vblhLl+aGrTNtFvDHoa3bSOi5bk9JCFZ9S50BVLYsV/UO4/eDik4Snal2G3gAtWf Iyfl/Xkuzi6ZXa9xNJou645ImnKxprbQnUi6/fwbcgTwM+D7flNbzFMhb9y2A4lJEbe9bAq8IZBQ orqyVD+7VtPytV+pcN/razfvmPXPmrKIo2rR2y+585XYTQkzF685r1aTi2u/co7yIaPt24POiN0D c+rtbtOVH0mABEiABEiABEiABEjAawJ4LKLe7h29MwrLnjPgaDEzeC2nm/0tqISi6u2LFy+uW7fu 2LFjEX/Wc6fMqpkITgJamvt0gVP7hRfocfHB2VJbtWp8vOHGB6bgDgF8jEJIa6QTE1xLNqZxu044 5JP5tho4/3cGKvryg2qSKL9P+OcCi0Cot/2t9ptOe0J6CvkfLGv0CQHMOrxz8c3iU2pmdpWlB9xL DUG9XSnnpWs1KX9Pswho7De+MHzi3NiN8efBZ3tu/NMmV9zdbMfegx16DI+o/BzcuV9y3xtnGSq9 JU8ICO/U293nKz+TAAmQAAmQAAmQAAmQgLcEoI5Sb/cO3hmFZc8ZcLSYGQpSy83ueJ2hSHp79+7d n3/++TFjxiQmGvEdzeqZCFkC8CpT7W9DynNIuR6ym263S3IoESZV+QOBibJDYNx+IvQdMj05wbVe 46a3x0jlgZJ4siRp2rdsKJlDNkvNYVK2x2muY86KkWcmKREely03EggggZxTyoXRxXi3Ba/qqBva qQfH5L5noRsWeno7RPVqjSs+9t7Y2cueffenD9s6Uo6f6DliZino7blRUJuUq/nKhNn/Hkg8+mrL Ti998uvkeSsuuPs1qwF8SAjv1NsDePmwahIgARIgARIgARIgAZsRgORLvd27MfWslqNMzxlwNGgz FF5vHz9+/NNPPz1lypSjR4+escveceZZASEwaptTAYaZ4sfzBEIKtxIiMHePMgRV8lSUDNuqKglp y+ScHMFrEao7ecR2tSdSJieUEEh7FovJcPCEjN0uNwxyzRMN1iGX9ZGnJsnKQ86Oh/S0sefghU2v 8NrFwn1yw0DLiy3Rp67sd+r7ZZLpCtSrYYSk3n57k6rPtcjKzkrPyISH9uVrt976v49VgFSLP5mI 6o3vqv9l3JZdx0+czMjISk49fvH9b0RUhy+aEDBrNxtJvT1sLll2lARIgARIgARIgARIoMQJQPLV ertV+7WmdQuwx7rTmvYig1GYu35n3WlNmwisO63pkMtgEsvX/hxd83MGE6CZKIzejsa3adOmadOm M2bMSElRTpnNlpvlMBHSBF6fZTiscEipGNlyLKS7EtSNh2pq2ILKf8eodQ3XDSCo2+yhcT3WC3yb XNNfbh8ql6BrEIcdUnmQfLdUfl8hUWtl/l4PZ/PQaQQ2H5W358g1A5xXonMVwyEV+0vkWtlu+PnH CaE+Z07rMz+EGoEl++Whsc4r3bXKduqmVuM3H07P25XQ09thxF69ScVH3obS3rXXmOrPfnYpHMtU M4zbTft2JKC9V3v58vveuKPeF4NGz4Sh+/l3nC7Ih4LwTr0974zlHhIgARIgARIgARIgARLwjgA0 Ujf7dq2aetBOi59BN9VDFd71xc9n5W2/2x63j2ie3mP+LWYGD3K9LrmQGfI244x6e3Z2dlRU1Guv vTZz5szUVOVtJG8hfh4OVudbAlDw0jKlPDwDQC+NllrDfVs8S3MS6Bqb63pl0OaQx+Im/DacZsyf KMHajXVzy2Y9xDQIwCQYbtihtCsP7UYUXb1sUaa7XDtAOq1xQiJGzpYAEsD0w5sXH86XiM6u91kc aq0NC21xiac6/vHLiRMn8jYv9PR26OQ1ml5Y49V/125evHpjxG0vRtRobPEkYzVfR4DUJufd2XTL jr1T568oc+tLETVfMU3HQyJBvT3vjOUeEiABEiABEiABEiABEvCOAGRSN73du3LC8KwzKsyeM+Bo MTPkK6dbB8LrDJ719uPHj3/00UfvvffeokWL0tLSUKPnjlibxHSoEICWgn9/rnIJKVHKnpabbwnA 4XbVoc4VDSRstmVky6PjjN5Fyv8ttVnnSqo7eMFh6k55bpKU6eayaTe8x8BJe6PpMmVnrnt/iu0l NQYstxAEDpyQFgvlir7GLHU5OKo5XEZvlyzlQObUr7/+aiO9vclZ1Zu+/nWXrOyc1n/1P+uWl5Te 7nQmY/UY06TMbY3a9xqZlpH59Ls/RVTDISjwVkE+2NPU2wsx95mFBEiABEiABEiABEiABApFAEqp 1tuhzeoNe1zJ3P+tO61pM4d1pzVt4wxm16yJfPtuZsBRH2bItyijBucIFikDMpszxoPejr58+OGH rVq1WrBgQXq6elvceqJZAhM2IXBKyvdySu43DpZj+bgHsElHA9KNf/a5NNWusnh/QJpQgpXCpfOd Iwy9vav02VCCFdmj6OwcSUiWR+CXAzbt2vu98RfRUetOkL3H7dFL9iK0CeBnApaERm9TkZ2ds9QQ 2+FzrM1iZ9eQB78K7KO3a10df29rOGLygrT0rPof/RZxY4OI6q9E1MA/SOiGrg537jc3eO/byOyc U1GDJkZUaaAEeefRYJfZTdt76u2hfX2y9SRAAiRAAiRAAiRAAsFEAI9Fpv92pLmFEAFI355bW9QM 5sQsSG/fvXv3q6++2rJlyxUrVmRkZCA/GmCexYTNCOixhW9e5dEC0l+k/PivzboY4O7AS49m+/BY 1RKbXUypmUaIT8hxXWTengCjDubq07NVnNynJhqxJi3eY+A6BlfcBhWJWm02mx66U/wbQgROZqmF s9pYRNPxnXFpO+T8nvLFItmhQrjkbvhhYB+93fS7Xq3xhXe9NnjivONp6b/FjLj8vtcjbm2oIqJC V7+14dUPvxs5YBIs2x1DppSu/nJEtYJ8zgS19k69PXcSM0UCJEACJEACJEACJEACxSOAxyL6k/EO 4RmlZs8ZcLSYGbSc7qHxXmfIV29Ha+vUqfPXX3+tXLkyMzMT9Xpuv4eG8VCoEIDEh3+vzHSZMnaV IydDpe3B3s6FMG6HbBUjcBUyYGOwt9aL9iVliAoFa+jtO0+X47wozX6naP18+UG5cZDr+jIETBA7 p7v8tNzZY8rs9hv60OqRnoEImX3T4NMnqkPuGSmHlEs598Ug/Dawm96uLdVrNDmnZtPoIRNh5L9q Y8LT7/5Q6pYGZ9/2UqPP2m/csS8zJ+fXmOER1RpFwNZdGb0HtbSeb/Oot4fWtcnWkgAJkAAJkAAJ kAAJBDMBPBZRb/dugM6oNnvOgKPFzOC1nG72t6AS3PR2tDM2Nvbxxx9v165dXFwcgqWiBM+NN6tg wgYE1hwWBGrUERtfmqr8CXArJgFIWI+PN8QrhxKl4ajHfrIqlmbgZUK/GQFf7vbrYHHmAEZ84CZ5 cIwl1qTB6va/5dcVkmisaoEYoRUHMs/1CYG5e0QFPu5yWujex8bL+Hhn8XlnKX4e2E1vN8Xz6o0j qjZ4/oOf5y5dl3w8bemaTavWb0s5njZt4aon3mgbcdOLyuI91Ny2m9o79XafXDIshARIgARIgARI gARIgARAAI9F1Nu9mwlnFJw9Z8DRYmYoSC03u+N1Bje9fc+ePQ8++GBMTMyGDRu02G5WwUSYEHhl hjMuXrmesiUpTDpdgt2Ep26n7XekfGvTWKL7jzv9TpTrIdTbrZNp0Cap0M+1GAGZ3fh3eV8ZvlXg xV1veTVMawlMk4AfCMB2vc44KY3QvfAn5oopcM0Awbs55qprvhMVv21sq7fDe4zyIdP4vFpNHnmj 7ehpiwaPn3NPk9bl4EMGZu0h6LPdFNuRoN7uh8uKVZAACZAACZAACZAACYQJATwWUW/3bqw9q+Uo 03MGHC1mBq/ldLO/BZVg6u1o4fz58++8886ePXtu2bIF+c/YL7NwJuxEAJ57z9MB8qKk8XQ79Sww fRm82RUW0yGZ6n0RG24TE5x6e5XBkumSkW3Yz0J3KSldRmyT24YapsJavTS8CSGqbMfVTlP2fNXL QtfAjCTgGwIbj0qbJYbGbgYUiJFbhsjvK53le56o+OVgT70dcrpp6K7ctr8UccuLETe/qBy5q/36 qA6TGnrOZHyit+NX4p9//vnWW2/t27fPN3ORpZAACZAACZAACZAACZBAaBLAYxH1du+GzrNajjI9 Z8DRYmYoSC03u+N1BlNvnzFjBtJ9+/bdsWMHxXYTbLgltLTScY3LyjFSFu8PNwY+7u8diJRqmIzi xQFsnsUrH9ftr+I+X+RcU0Ak0Oyw90E0ZrtUGiiltKmwtml3SPVhMn+vpGU5h8SW08Bf0431+IYA 3EC9NlPO6+m62xtujs7tId3iBBGQ9XbGiYrfNvbU261iu04rg3YtsFukeDNbqCWKad+OcW/fvj2e KYYOHZqUxBfhfHNJshQSIAESIAESIAESIIEQJYCfx1pvt2q/1rTuF/ZYd1rTXmQwCnPXX6w7rWkT rHWnNR1yGazE0BGz/eZ+M1FQN32bwa0B+Kj19hEjRtx1111DhgzZtWtX3nbmPYt7bEwA83TfcYHL C60S/2eUjfta4l3bliQRnZyRUqfsKPHqAlWBWlOAcaxDPl1gzwWFwoDFiyFQ1B8aa4y4yyMHoiHU Gq78t+stz5dAYQpmHhLwJQFMwr3HJXqtlMV7TFFOH0e4eOH4qNksSc1QdRV+ouIHg8319lAT0nPN 8j22vJh6+5QpU5544glYaCQkJPBHoy+vT5ZFAiRAAiRAAiRAAiQQggTwk5h6uzluoIFNf7SmrXs8 ZEA261nWtLWKfEsLYAazajNRv379bt26vfrqq5Dc8VKw7rLZcTMbE+FGoO0yiYhUUsw53WXZgXDr vc/6++pMZ+TBK/sJPCS7bjk+Kz9IClKqnaEwQ8QLww3DOmOXYNHh7NNt2u8ZqRT4dJs6EQrDgbZB l2G43vIfuQLLqcYCmQ6NjYv368WCSBN6K9JtCr8WqLcXUuIOqmzF0dsHDRr07LPP9urVKz4+nj8a bXBbYBdIgARIgARIgARIgASKSQC/it9++214C4F3bm4eCWzdtGPflq1bPeYpwsHNmzd7zh2oDJgM DzzwwAsvvDB69OiDBw9igulHp2LONJ5uDwJwLKBE1Gjlc4CbFwQgtF7V3zAfjZZnJnlRQGicsvWY c2mmVIxM3xUabfZVK7NyZMsxeXHqaX7aEXQSgSa7xzkrKZJ66auGsRwSsBLAJIT3mJHb5AJ4j7HY tF/YS54Yr15o8nrDbwbq7UElpBeyMV7r7Zs2bYJle0xMTFxcHMV2ry8cnkgCJEACJEACJEACJGAn AnDKjXc/33zzzTe4eSTwzhvNbmg55tzPptT4oEuDt5p7zBuSB1+3bC1atJg8efKRI0fsNNXZl2IS 0AphjziXDWSkrD1czCLD8fTlB6Uc1izgFbmrzLSvED1ok1PBg868MyWMBnrJAXl6onoBRJkKaz/t 0SrQ5N9bJMXl/jqMcLCrwUrgeKb88K/cONhYF9Oejozp+s4cWeW6sXu9KkS9vZD6drBl805vX7ly 5SOPPNKpU6d169ZlZ6tXd2ikEazXPdtFAiRAAiRAAiRAAiTgPwLQ2+fMmfP777//xs0jAQD66fc/ z3ZkaQnlqsj9z3SY2vK3Lt//1v6X3/7weGqIHWzXrt2ECRN0rCs+NPnvUgyFmiC/wMevMs82TNwf HhsKjQ6yNvZc71qwcARZy3zanDdnG5PEIXghIhy2nFOSlC4fzHWGiNUeOc6KkYt7y8/LnQC8Vi/D ASD76B8CmIRQ2hG9V636mUtCDrVCdOcI2XTUN62g3h5sQnoh2+OF3n7o0KHHHnssMjLy33//pdju m+uHpZAACZAACZAACZAACdiCAB6L4DMkNjZ2DbdCEPht7v5SMaecVouGMdiV3VPu7LHzjb839ZgV t3J1IYoI+iwbNmxITU21xexmJ0qEwOcLnUJN2e6yxmUJWSI12bHQOuOcqxVvz1Hds6UGeyJTxQNV 98koaWb4HbJlN83pefCEfLFIyvc6TWyv2F86rZEDJ8xcTJBAgAmkZMjvK+W2v9XLNTq2Ai5SvIHy 0lSZtdvZNp9cqtTbC6lvB1u2ourtx44dq1ev3o8//rh06dKMDBVVl0YaAb7IWT0JkAAJkAAJkAAJ kEDQEOBv46IORTU8q1pevo7Q8rth7lumm7wzV5YekKxTIS+jcWIUdWKET/60LJdc4xBEUOVWJALO KKJRMtMlcBXp9JDIvDtVLupt3Ce7yLw9IdFkLxsJV+0wFc6NiGp8NcBU+NMFzgJ9ol562TieRgIG AUzCjGwZsdVwc2T+enEI3r+oOkRWqiAtPv7F4kFvz87J2Xv42D7+C0oCB48k5eBdndO3Tz755PQd zk8Q2OFG5ueff54/f356enq+ebiTBEiABEiABEiABEiABEiABM5IQD+EJKbJZX3dJHeXn148ySLo WBe5rE94uSw+IzpmsA0BrR9+vdhpygub3vQs23SuxDsyf68RQ9NwMxKf7GONq8RbX+gKpu5wOoW2 sTOZnBwVaPKB0ZagqA5l4g5D961JTlIU2ws9ZZixpAgcSpOOq6X66TbtZbpLvSkyIcFZqc8nqge9 vaT6yXJLjEBBevvHH3/85Zdfzpo16/hxFVuXRholNgIsmARIgARIgARIgARIgATsT0A/lqpQgDoQ Xr5/HfLhPNsqafYfY/awEASgFZ8H979YYIqU31YU4gRmMQh8Clc8WJKLUQE04dvBrtvrs5w+6p+d pLroczUv4Nz2pErtEcb8N62Fo+XRsXLkpLNp9utywJmzAUUlgJcvusYqdzHq54plouLms/pQyV6V 1NuLOljBnD9fvb1hw4YffvjhpEmTtPtBiu3BPIJsGwmQAAmQAAmQAAmQAAmEBAEIKdk58gicMJux xqyqe7TcNlTSs0OiK2wkCXhJAJfA0xOdeuMFPeUkTdwLB7LyQCe0pyYW7oTQzAXH/krfc0jnNaHZ gQJajZv/xqPS8h+jd677f6kYQeDgcfHOc6i0FwCPu/1HYGeKih1QCXcb+GnXv0+MiKhPTpBR2/wx Uam3+2+wS76mvHp7x44d33rrrQkTJsB/e8nXzxpIgARIgARIgARIgARIgATCiMDxTIvPXlNvN8x9 u69THKi6hNFsCMuuTobPEMNUG06A/94SlgiK2Ol9x+W8nob8FaXUMLtugzcbzmRilLPoRftsdSf8 fpmcjxE0lhK0zTA+TojnAqtd53Lo9Qu/TODRSC14nW7Tfs9IiT2svLj7Z6Pe7h/O/qnFTW+PiopC jNRhw4YlJiZqs3Yat/tnIFgLCZAACZAACZAACZAACdiegNbSoTFCaXQaj1kTXQTuFHak2B4DOxju BCr2d2qPDaZInhhr4Q4nb/9n7TYW6XCv6KrMpO26KZfmhiJ97QD1KpANthNZMnq7XDfAFSbYUDIx +b9chIVV1T+urtpglEO6C5iBW45Jh9VyYS/nape5HvT4eJmyw9k5v01U6u0hPZ3cGm/V22HT/vjj j48YMWL//v1u2fiRBEiABEiABEiABEiABEiABIpPAM+tEBgfGWsoS1axXacdckkf6b+ROkzxSbOE YCSgdZsR25xhMaGvJqUHYzuDqk2dY51CNAy/7bptS5JLehurkJHSbpUdehmbKDWGCZzGqEUE4/Ze qpt8vlAOnHD2zm8aph1osg8lQGB7smDFUynt8HHkmqVIN5gq649IprHm5edZSr29BMY5YEWaevvq 1ashtvft23fPnj20bA/YeLBiEiABEiABEiABEiABEggDApBcyrg8FcNXKjyjKhtIU36PlBYL5WBa GIBgF8OPAASc1Ey5sp9TXP16cfghKGKP359rqGHR8vzkIp4ZOtkHIpY0vAxB9IsKbeN2TO/DafLL CteKkqG3425/7yhZflCNh58FzNCZAmypnwjAOczGI/LJAuOKc0UTwKV3UW+pM05WHfJTM/Kthnp7 vlhCdKfW2zdt2nTrrbf26dMnISEhRDvCZpMACZAACZAACZAACZAACYQEAa23jNuuxCW4S4WzCGxH TirTR6eZmSE6QYcf7YpQFhL9YiNJoJAEcAm8NdsQVx1Sppv/nAMXsnnBlg1RNbUQ3X51sDXNZ+1B tGjVx2h5c7YqM3RF6ai1cjXcJZkGww6pNVwW7JWsQFgL+2x4WJAtCODdOriIgeOmc3ucNkVx6X0y X9YlOq+7AF591NttMdGcnWjevHlycnLdunUdDsfWrVtzctRNUNu326mb7AsJkAAJkAAJkAAJkAAJ kEDwEMDzLF7WhlcZqI7Y8FE/4cLZr7L7he6k/3WW9+bK0ZPB03C2hAR8Q2D6LkPwMax/GTXVM1On u/tImWOszXnOHIpH0a+Izup9BwS2mBmafcw+JQnJhqMwIxawdoJdvpd6U0lv+g4fiqPDNtuAwIlM WXlIHhpzWigBzFL4r6s/RS33B8lGvT1IBsInzfjqq6/uuuuudu3axcXFabHdJ8WyEBIgARIgARIg ARIgARIgARLwTAD6jDUsoBZkdqfKh/MEnn6d7mWiBYbuPdd7LolHSSD0CFzlWlqCu2DrhRB6PSnJ FoMMwqTqBTgEUzbCbJZkfX4vOzNbnMbtDqk8UFIynIuPfm+I9xVCrsTC6Hk9XUtIxioS1lJtHNzW e1g8078EjmdKZKzUHmFMTov3mAr9VJhUBEvVW5CsB0Fv79Sp0wcffPAxtxAnAGcy999//x9//BEb G5udnY1pRst2/176rI0ESIAESIAESIAESIAESOA0AvqxF96MERvRKblDvYmWpjOU1+sgeSg+rcX8 QAJeEei8xunj+vK+jJpaIMHVhyWii7oVXNFXDrpCbRaYOwQPwKGWM5hFpHQItUipWA3BmxrwiaQc yBgyO/5iIQkOZLiRQAAJ4KdCerbgjbnL+rgmpzE/EcD34t7y/TJn04LtFwUkWdhCd+7c+U9uoU+g a9eu//zzT2ZmJpX2AN4KWDUJkAAJkAAJkAAJkAAJkIBJQD8C7z0u7+o4idq3TKRcPUC6xwkcF3Aj ARsQwPpRObgRxvTuKsO22KBDJdKFrrGGfXuMVPtb2X7bb3tqotN6HzGjQ2ubt1fqTnCFeTXETGUz vEqSjWEKNiUztNiytV4TwMTbdFRaL5YbB1uC9hqr9gjai3flEl3eY4JwikKYhcfvtWvXrly5chW3 ECewbds2iO1ez2SeSAIkQAIkQAIkQAIkQAIkQAIlQUA/C8/fK3AC7LSchDIZpVwEp/EJpiSIs0z/ EsDK0QtTDK01Wrk74JYvgSbTDUU3Rh4d54y5mW+2EN254ajTczvubMO3hkYn9J35l+WW94+MJdF7 RzqVzCCUMUODLFtZPAKYeMfS5W1XKGr1s8FYBkJYBMSFmbazeKXzbBLwigCN273CxpNIgARIgARI gARIgARIgARKkIDWbQ6ckPfnyrmwBNaPz9FyaR+JXitpWSVYNYsmAT8Q6BHnmtVdBc7JueUlUHWo 4Q7CIU1m5D0Y2ntOZsktQ4wFlxipMkhJhSGhVE/eIbWGG05+ILPjnhwtd4+UUdtCeyzY+pAmgEtp fLxyOqdeF0LEXj0zHXJ2N3l+soxwrWSFxPUV0gPBxpMACZAACZAACZAACZAACZAACYQEAf2AjL+L 98v5iMfneo6GznPrUNmTGhKdYCNJIH8C0NhL69DA0fLjv/nnCfO9ZbXLHYd8uchuJGLM1ZZo+Xl5 CPQOoV0bTTNuwvo+HKP0TIQhMGVMMxECnWET7UIATtqvGSAwYlc/D1wzE78Qnp6ofiHkuBzQcXLa ZcDZDxIgARIgARIgARIgARIgARIgAd8Q0E/KWdnywTzD0F0/UyNCn0P+WJnrjtU3lbEUEvALAT2r 74SpsBFr8r5RkpHtl4pDp5KcHENGM4yoO64OnXYXoqVHT0qFvoY8GC23Dy3ECQHNgpk5ZrtUHuj0 7QMxE0r7kxMk9rBqFpXMgA5OmFa+PVli1klVvCHS1SKzO+T6gep3wrpEJxZOzjCdH+w2CZAACZAA CZAACZAACZAACZBAIQjop2b83XJMbv/b9Xxt2LPBNeucPYUogllIIJgI6Ck9drszHijiFPB9Dbfx gS8pZbZq6O1/2yuk7DMIkwrHF4ZwjfCO2IJWGExKlzrjjBcxtP0w3HTEyMhtTnf6Qdtst7nEj7Yh gFjqr86U8/T7bnpOGsbtl/aWAZtUuF49J/HXZdtum66zIyRAAiRAAiRAAiRAAiRAAiRAAiTgewKm ttNioVyurUONB+2ISPl8keykB2zfI2eJJUhAy0HndDfWjyJl0o4SrCsUi153xKW3RwlCJ9tjw01s UoLzpQa8odNslnJ5Yd7ZgqqPiJExbIuUxfw0lgbQ2jKGQ2y4mscWnG0OKoBsjA8JHM+UZQfk/XnG taMnpPHtj/mJCAII6aI3TksfMmdRJEACJEACJEACJEACJEACJEAC4UZga5JyaKB9cSivrdFyVT/p to4qULhNhBDur5aGXprq9CsCh8PcrATw3orTvj1ScL3bY0vNlOsGGCPuECy1wBw3OLeNR+XOEc52 qlcMHFJpoCzaJ9k5qr1UNYNz1GzZqvRsiYyVmwZLGSz9GH7k1IQ05mTDacqp0QlX8HROS1tOAHaK BEiABEiABEiABEiABEiABEjAzwRg1VahnyEKGU/fEV3k2UkCz65mlDQ/t4fVkUBRCXRH3EztFSGy qKfaPP+IrYaqhks7UmDdao+t3mSXuXi0DN+q+hRsIiFWBHpvcM1J475aroe8MFlOGqpmsLXWHrOC vchLICtHEFG66xq5qLfT6ZbW2PEXsQ9wHW1zrcFxTualxz0kQAIkQAIkQAIkQAIkQAIkQAIk4AUB PGLrp2x4c4UzGacdLNShaLmgp3w4T1KD1XDUi87yFLsSwBxefdiIAmyoykM227Wj3vSrB1YigAX/ unpzerCdg7H+4V+X2O6Qt2arBuqbWPA0ddUhuWek0UisAYG8Q6r9rcza9RZsrQ0ebmyJbwlM3SF1 J8glfSxT0ZiNeMkCYVLjk521cUL6FjtLIwESIAESIAESIAESIAESIAESIAFNQD9xT96hPLor1V3L RNHKBG75QcnIJicSCGoCmMBX6GAEDnl+clA31c+N6xrrlHyxiIYt1LU1xEUt28PZo0v7BJfFPthm 5sigTRZ50yEwa/90gZ/HnNWFLwFMQoQGmLVLbh0qeFXN+VVufKef20NuGCT9NoYvHPacBEiABEiA BEiABEiABEiABEiABAJCAJ6Q261SGpHzOR3Ce7TUmyIbjgSkOayUBApL4L25TrPnKoMlhe9luLD9 ucqpTp/Xw7UrZP+H74ur+ju9T1/QS6C9YwueFYS1ifLI2NPE9ifGy4qDRiODqZ0hO/5s+BkIxB1R izs3D1HOo5STdsjshtJevpd8tkAW7HVeLLhkgueqOUOXeJgESIAESIAESIAESIAESIAESIAEQp/A KaMLMJC7a4TF0B2qe6RErXWG+Qv9XrIHNiSwcK/TnvPCXrLhqGRmS1qWiqSZmGbDzha+Sz8td2pu eFclpDcMpTLZNfRDvIOD4I+4WQWJbAgv2QM2nqa0l4qRzxYq3tQ2Q3rWBX/jMcHwVsXOFPVej5LZ 9btpxmWCSVi2u3z1j2B+ciMBEiABEiABEiABEiABEiABEiABEgggAVPCGrxZqg+zPL9Hyt0jZdQ2 xlEN4OCwak8EoC8pucmhAv4+Ok6uGaAkUMzYcN7aLDGYRMuNg0MYA1xaPTXR+f4CxvTtOUHUlzWH 5TlInVG55sQPjM711h5EDWVTbEcAb3x0WC0PjjGUdssMPKe7mpMDNuU6XDK/1m3HgB0iARIgARIg ARIgARIgARIgARIggVAioAznspW0ZZWSYF/63CS1nxsJBJwApuieVOm5XhpMFfhL0WK7NoHWaZh3 IpRqOG+wblUooqXWMBWIYctRWXJAth4LMSRYQFH+MYzFlGcmBVHjp+9UJsSqYVjrwb9o+fofZ/P0 u0JB1FY2xUYEDqVJ0xmiVhhdi4zOGRgluEASkvlihY0Gm10hARIgARIgARIgARIgARIgARKwI4El +6XuBJeYCWUpShB57c+VcuSkHXvLPoUQgVMyfKvLttPUPLUGZfw9v6eKHhhu21+rpfrfUmWQ8nYO S1enGgy9urPhcqezTN0ZMkiwpOJcMjB0xdoj1IAGg7Hu3uPy1mwDqbEKAKX93pEye7cCi+YFQwtD ZozZ0MIRwKSC35je6+UJfB13NdbBXTc9CO93DJdvl0h8srMszsDCQWUuEiABEiABEiABEiABEiAB EiABEggAAf3YnnNKJiYIwq45jeiMx3x8nLwjAE1ilSRgJaAcF5u+FCxiO3Tmy/tYM4ZLetsxQ47T OrBLkXNeuTFKhIdWHCpyXMNpuZbtV/aT9KygGMSF+wQBW02zdviTb7VY0vnWT1AMjj0bAaW92Uz1 MgUmm5p45nXtkP+OkcX7c186C5VL257jxF6RAAmQAAmQAAmQAAmQAAmQAAmQQKEJ6Ef4oyeVSefF vV0P+3jk7yqvzBB4MIYgz40EAkIAOuelfVxz0qq3RysnxuG26Uv1f7CAhUG7lYZOO+SRsaGBBN5v mi9w9cKhvPFvMdzgBFZOhHW9CkGL9R2X4AnH+CONGAGBbVhoDCpbWUQC+47LmO2uWKjmqqKht1cd Ku/PldhEZ4mcfkVEy+wkQAIkQAIkQAIkQAIkQAIkQAIkEHgC5uM83livMy5XB4PuBPcy78+TLJp3 Bn6Uwq4Felr2WW+YfbrJy5HSflXYAdEd3nDEdYW6MYmSbnEhwARrKI+ONTRtQ1rEGt+uFNVs8y4U kD7EJUqVwa5WAWy0NJrmdFgU2IYFhAYrLVECmPBvzJZL+uRj0I6AvAv2SnJGidbPwkmABEiABEiA BEiABEiABEiABEiABPxEwJSV4EX2piEW6SlKLusjExIkNdNPLWE1JKAJYE5m5chtQ3NNjp123V0E oQfCcAOQtCy5Z2QeINCuo+R40F+hcHdjXdGrNFC5rcZm3nz8P6bQ/2HE7nTlAaUdror6Ssw6/zeE NdqZAGY4AkBP2alezFHRFiwG7Zh7lQdK4+my8pCTQAAvBzuPAftGAiRAAiRAAiRAAiRAAiRAAiRA AgElkHhSOq8xAjJqG1qoeTFSc5jM3RPQZrHysCQQn3Salw/l7qMzJNqwZGF0uuPqPHp7tDw9SR0L ZqVu6QHlOkY5w8EIOlTU112pAW7ziUxD/zTao5ZyouWpibI70EsAxiDzj30ILNonL041Jj9mmp7/ +os1Wh4creKnHDjh7Cyu32C+hO0zJOwJCZAACZAACZAACZAACZAACZAACfidgH7khz0eXm8v090l 7hk653tzQykmo9/JsUIfE9BT8bulrkloWCBX6KtqCVthKjXDYo+thbsomRDvY/I+LA4vKUzfKWW6 udzOO+TukZJhBEgN1CCi3tjDyqeH09LYIef1lM8XOedVoFrlQ+YsKrAEMOf3n5Bx2+V2vJ7T5TSZ vVSMXNFXnhyvwqPojfMtsIPF2kmABEiABEiABEiABEiABEiABEjAPwScCsApmb1b7htlUTujVQhL hDs8ctI/DWEt4U4AUxGT7er+rknokLoTwpeJvjBbL5GISJd8HaM8Ph1MC9IFCHi5eX2WS2/Eml2U fDTf6fomYDLjKWmzVAWnUJb2xgoOfBYtDksPReF7IZVYzxEOeMRWeWaSVOhnXKR6jhnrYqW6qRco hm91ulFCEwJ2CZRY91kwCZAACZAACZAACZAACZAACZAACZCAZwKmGvDLcjm/Z66+B53qot4yb49A W+BGAn4gMGCTy6uMQ778xw8VBnUVELGtLscfHhuMVyLuHjtSlN8Y5UPDkLXP6S5YKcBm3lj8TxnO spQPee1A26Ew3j9KMnkf8/9I2KtGfBUmpknUWrUerdbCTJndIaW7yYW9pOkM2ZHs7HMA57+9qLM3 JEACJEACJEACJEACJEACJEACJBDaBHanSpslUtbqXiZSIPRN2hHa/WLrg5+AlqcaTXOaSfffGPxN LsEWgkbOKWky3aXpRcuvK0qwOu+Khmv0lv8YPmRcYvtNg2XqTu8K89lZo7fL9dD/XWI7fMh0j3MW TgnUZ5TDrKDDadJtnTJovwBL0qcr7eV6yKszZdQ2wSqP3sI47kSYTQt2lwRIgARIgARIgARIgARI gARIgAQKQUDrUfDsAd/L8EBrumKAeFVvshxLD6TNaiGazyyhTQDTLz5ZvVUBY9FZuznZZMx2p9E4 LsAtx4JocLEWEHdEroQzDZe3FiRuHuL0QBVAWbtH3Glv6FTsr0JRYAtgk4Jo2NiUohDAnMnOEYQ4 eWu2xVeS4TQGr3Lg+/GCXmp5Wr83AY2dc6wodJmXBEiABEiABEiABEiABEiABEiABMKIgCkajNwm 9482PFpohSFKvS/fanGuW9owgsKu+pHAt4bbbci53EDg2gFK66s6RMEIErvZlYfkTVOBNFbl4F6j 4+oADxfezVEvRyBsJZYAjH8fzpPkDINbkIALMCFWX1gCCIS6aJ98v0xqj5CIri4nV/p70CHXDJB3 58i4eEE2vZlfmoWtgPlIgARIgARIgARIgARIgARIgARIgATCjIBVPei5/nRDd8NRLRzYciOBkiNQ c5iKDRrmm74MlU/7jgKzbWzWCzMgcFIy8tj6OgSDddT0pBEgZRtOsxFP1mlsHyNluqtwlnoLOLSA jBQr9Y4AjNX7bpTKA11vSei1G5fSflU/GbBR0rNzr0TOLu848ywSIAESIAESIAESIAESIAESIAES CFsCWkyAW9qP58nlfXPlLDiwrTFMhm8VhHTkZhsCcXFxL7300p0B3+6oVevhp++4656ANyQYGnDv 3bUjft5xxwOPBrQxd9R+okHlVlMi2idHRJ1ScVH1vx82X1S/7YP331e72I276667Ro4c6cWlBM82 3eBDxtRFHVJruDJOxkYt1Aue4XkKXo7A+1xvzBI4Y1cG7ZhOLo0dfmPuHC6fLpB/jEkVnnzYaxII BgKHDx8OhmawDSRAAiRAAiRAAiRAAiRAAiRQfAJas8LffSek/hTDjS2ECEPdghBx61BZc6j4lbCE wBOYO3du2bJlI7gFIYGqj0eULhPgdl18bQSkSC1C4m83iXj+14hzy/uwVf/73/+KehngvvTspNPE 9hemCIzwsVFsLyrM8My/LlEaTJHyvaQUprS5amPMc0SReGO2iptwMiuXDedVLosQSTkcjgceeOCx xx6rwy1kCWD47rnnnho1aoTIpGMzSYAESIAESIAESIAESIAESKBoBBDF8qGxKpyl0wIQAkUn5cx5 9WEKXEUjGVS5x4wZc84550A7vfnmm3v16tWHW1AR6Nm9T5/egW3R4F7R/xmYCE/ycKlRb9zxdr3+ 7tstsphN6tatG8zaTcX+ySefLNJFsTVJHhyduwKI6BI/LS9SAcwcpgTwWhZiEMArWvVhEtHZ3T17 hX7y2HiJjM2V2amxh+5EmTBhws8//xy67WfLNYGkpKQ///yTejvnAwmQAAmQAAmQAAmQAAmQgP0I QHPQsgO81+LN+luGuCR3mAJGywW9VLBC042z/bpv1x7l5OS0bNmyVKlSkD1r1qx56BBfV7DrUBe3 X7tTpMOqU/uO+2xl7f3339cT74orrsD0K5LePj5eLu5tiO2GTfKlvWWN4WnAvE0Vt7c8344EdqXI V/9IpYFyXk/X5DFf2YiWO4bLwE2y57hkMhCqLUZ/zpw5rVu3PuXabNGncOzEwYMHn3rqKfT8tttu C8f+s88kQAIkQAIkQAIkQAIkQALhQcA09vvhX7mqv8XFRJScFSN9NoQHBVv0Mi0t7bvvvoPUedZZ Z9WtW9cWfWInSoSAedX7pPSUlJRGjRrpiffxxx+3bdsWaXgMKEzhiGg5CDFkIbNrpdQh/xklJ4xA Er5tZGEawzzBTwDeYLYlqfi5D41Rb2NFRLlmDuaPQ4XWvX6QNJkhq7jSGPxjWegWQmJfsWIFbjKF PoMZg5RAcnJys2bNsrOz0T7q7UE6SGwWCZAACZAACZAACZAACZCAjwiYutahNOmw2rAV1PKXQ277 20d1sJgSJoDQY48++ih0TmytWrXKylJOiiFTlHC1LD7cCSQmJtauXRuzDsbtffv2BY4ffvgBH+Fb 5oxo4Jv9xakuy2Tcc6Lk+2VOvx+cuWekF1YZMB/2pMqvK+SuEXIJXoWAzB59mtJ+US9psVCWHpAj J8MKTFh0Nj4+/ssvv9QiLb/UQnrIX3vttW3btukuUG8P6aFk40mABEiABEiABEiABEiABApPQGtc h9Okzjin6l5jWIFn47E3IyMDDkzyzYFDx44dg+Frvke507cEjh49qjXPs88+u3PnziicooRvCbO0 vAQwx3bu3HnJJZdAXS9Xrhzcv+s8Wm+HO6O8p1j3JKUbDtu1fbJDzu8p3dap41TarZTCPA1XMAfT BHFGnkEg3Uh33+wIinppH7lnpAzbksuJ8yeXhS1S+/fvR4BUfqOF+mBiueTNN99cu3at2RHq7SYK JkiABEiABEiABEiABEiABGxPwBQrlh+UZjOlWn727fv27evSpQseneAy4sUXX4TD8E2bNrmRGTly 5A033FCnTh23/fzocwILFiy45pproHmed955EydORPmUJnwOmQXmJTBr1qzLLrsME++6665btGiR mUHr7Z5j4S3aJ9cNdDkDwXs0Q2XZAbMAJkhA9h6X6HVKZq8IL2famt3idKh8L3ljloyNlx2WFV3z y4v4bEPgyJEjLVq0OHHiBHrE77WQHtbff/99/vz51nGk3h7SA8rGkwAJkAAJkAAJkAAJkAAJFIcA PMy4bdu3b7/yyishsmGDNTVcheu0w+Gw5uzRowf2V6xY0bqTaZ8TgFdbzf/SSy/Vqx4UJXwOmQXm JTB+/PiCJt4Z9fa5ewxbZcinxj8Eaz6arszaqZfm5RxWe2DNfjxTZu2S/03MR2NHPJFyPeTmIdJz PbRXJxjOGRvPEHyXwUnagQMH+KUW6qOM1+46derk1gvq7W5A+JEESIAESIAESIAESIAESCBMCGgp wypowDxJi2z3338/BPbJkyf36tXroYce0jutkjv19pKeJPDkg2dYTf6+++7bvHkzaqQuUdLYWT4I /Prrr3qh7YknnsDbLm4Tz4PejpsJPLQrz9uGrTL8gXw8XzJU6DxuYU0gNlGFDnl+svIPE9E1d4ao KLoOuaCXvDBFusXJ+iO5lKxfTLl7mbILATij+/TTT3fs2GGXDoVvP/C2Y8+ePdF/t98n1NvDd06w 5yRAAiRAAiRAAiRAAiRAAhYCcL9Zr149CLxwFZ6eno4j5tOTltzhz2T37t36DOrtFnIlkmzTpo0W 2+HbFsOBsTCHo0TqY6EkYBCAIyk98e69916Eacg76zzo7RBUlW8QQ0SF6t5miSqRwmkYziwMes4p ycyWfhuVybp+00GvwjinByZJjFToK3+tlhMq+LPaOFU0h3D4+/77769bty7v7SUc+m6nPq5evfrt t99Gj/IOJfV2Ow00+0ICJEACJEACJEACJEACJOA1AfhQ1TrbqFGjrIXgMQoyexljmz17tj6UV29P Tk6GLxpGULWi8y6dlJTUuHFjPRbvvfdeZmamd+XwLBIoEgFEQNYTD46kmjdvXtC5+ert+4/LE+MN u2VDbL+ir4zcpgqggloQRrvuT88WeO9vt0qenGDI7Nqa3VDXtdJ+WR95dpL8uVJWHbIrA/bLE4G0 tLRvvvlm5syZnjLxWCgQWLx4MdzvF9RS6u0FkeF+EiABEiABEiABEiABEiCBsCIAtVxrvHgctnYc ejuCmlWuXBlH+/btqw9Z9faYmJh77rmnXLly55xzDlR5hFjVPiishTBdSAKAf9NNN+mBgFsPvHSA E/NajhWyNGYjgUISwDV+44036on3yy+/6LPynXh59fbdqYafEJfD9gt6SkKyKgBiO/X2QvK3QbaD J9QbDfAYc3Y31zsOhlshJbPjX7TcPUKGb5UTmZKVY4PusgteEvjrr7+g0+LkfG8vXhbK0/xOIDU1 FS9D4R2ogoaServfx4QVkgAJkAAJkAAJkAAJkAAJBCOBZcuW1axZE67C8zZu79695cuXL1269MSJ E/VRrbdfe+21MFTTGh3SCLSq3T5fffXVpiV83tK4pyACsbGxN9xwA3hedNFF0dHRBWXjfhLwLYG1 a9fefvvtmHi4zPv374/CPUhhbnr7wn1yVT+nw3Y4DPnPaBUd1SjBt21kacFIYFeKTNspbZdJzeES 0dkVJ1cL7Mb6S6WBypq90xrZkxqM7Web/EkAy8ddu3aNiopCpR7uMP5sEuvyjsDOnTtffvllz+8z Um/3ji3PIgESIAESIAESIAESIAESsBmBrKwsuJTRxu1uz8KjR4+GFnfuuefC4arutdbbS5Uqhf3/ +c9/tm3bBmcUMJFdsWLFJZdcgp0wdEfaZohKtDvTpk3DCwJABz/5S5Yoz9cYBbeBKNEGsPAwJIAJ BscOkNkx8bCgtnz5cj3xPKCw6u3wzl2mu0tsj1JRL7XpMs3aPQC0waGTWdJ/o9w/Wi7ubVizu15t cJqyO+SsGGk8XTmWOZZOa3YbDLhvutCvX78pU6b4piyWEjgCWDf5+OOPtdju4ScK9fbADRFrJgES IAESIAESIAESIAESCAECCQkJ8OcMOe6ZZ54xm6v1duy84447tINxJQ0bKhuewq6//nocevXVV3Ny 6DjAZOYpMWzYMP1qQJUqVTZv3uwpK4+RgI8I4IKdPHmyvrox8eLj41Gwvoo91KD1dlz4f29Tsqp2 yl0qRj6cp07CPYBiuwd6oXsoKV1iE2XwZnlushEVN49jdqy83DhYnpqopPhTrhs/J0PojrhvW45b DYKAo8wz3mF8Wy9L8y0BmGR89NFHa9asOWOx1NvPiIgZSIAESIAESIAESIAESIAEwpbAwoULK1So APEcvp1PnjxpcjD19rFjx2Kn+QStE3hnHKfATtvz68ZmaeGcADGYimmxHW8KHDqkggiaPMOZDPte ogSwFgblHDbtuFTvvvvuxMTEQk48rbdf8l7/0j0My3bYNkcLDN2prJboeAWqcLywMHOXvD5Laenw zI+xhtcg9U8vteCvQx366V9ZmyiHLaE/OB8CNWRBWC+CsHfr1i0IG8YmFYkAjCs+++wzxPrBWWf8 lUK9vUhsmZkESIAESIAESIAESIAESCBMCEAqb9++PbQ4bLfeeuuePXvweGU+YZl6e740tmzZogXk 3bt355uBOzUBOPDB0ysIA9dTTz1FLCTgHwIIcodovMbFHVG3bl1dqXl1e27Dd21/jHjsmwjExHSc gtZ6Xk8ZaryQQX3VM7dQOYpxPJ4pCSlKZn9rtpSFvyBtym5q7Ia7mMv6SNWh0mKhrD+S2zPOgVwW TLkIbNy48dNPP8WnQt5hXOfx/6Aj0L1790mTJhVyKKm3B934sUEkQAIkQAIkQAIkQAIkQAKBJjB1 6tSqVatCjoOvie+++w6O2dEi68Oy1tsrVarktl83PD09Xbt2h+P3QHcleOvft2/fgw8+qDXP77// Hj5R84UZvB1gy0KTAJbSnnvuOT3xWrduDe298BPveJbUcMQrsd0wbL6ot/LRbZwemizYaguB9GyZ slPenyt3DpdL+xhOY7Q1u8WUHQ7b35wt4+Jl8zE6ZrewY7IAAvPmzWvZsiWiwxRwnLtDgwB+/rVt 23b8+PForvWnoIfWU2/3AIeHSIAESIAESIAESIAESIAEwo0Anot///13aHGwuK5YseKcOXNAIO/j ldbbb7755nz5QMHTenvfvn3zzcCdhw8frlatGjgDFGzG8oVMSiTgcwLwvnvfffdh4mEpDSbuRZ14 jacrm3Zt2X5Zn1NrDqsG0qrZ58PktwLTspQTmIV7pdkswxt/pOExxiKwY2GlXA+BNTscs09KyG0X Bz2XBVMFEMAvgcaNG8NX1f79+w9wC1kCsLjo2LEjwt1inPP+Gixg8IV6e0FkuJ8ESIAESIAESIAE SIAESCDcCMAuvVmzZlqLa9eunXbYnu/jlWd/MvHx8dqfzIYNG8KN4Rn7C54zZ8686qqrwBlb/fr1 +/fv35sbCZQ8AYfDccstt2DWIbYCQvRiruZ7dRc0hyGxvjDF6bu7dNu42IPaML6g7NwfvASOnJRR 26T5AnlwjFzS2/AYE+UcWadjdofg5YX6UyV6rfyzX5LVUHMjgaIRSE5Oxi8KOG/nFtIE8MJj7dq1 MfZF+r6g3l60q4W5SYAESIAESIAESIAESIAE7EsAGju0OBi+xsbGopcenq1MvX3RokV5eQwaNEhJ yRERSUlJHgrJe2I47MGiRs2aNTUf/iUB/xM4//zz9WVb1GsTevuJTLm2d1rED1tq3v9oOFyttulj zinJyJaUDBm0SR4aIxHajt10ye4yaD+7m3LI/+QE5TGGGwkUkwB8pnXo0KGYhfD0YCDw5JNPFrUZ 1NuLSoz5SYAESIAESIAESIAESIAEbEng2LFjV1xxBdS/AQMGoIOetThTb3/kkUe0GbzJBHryQw89 hHIef/xx7RraPMQECADXTTfdBD6wNIZnD24k4B8C999/f/ny5THx4LMd89DzBe7hUv365w4R5SrU qF7NQx4eChICWTkCnz/d4+SdOVJruOErRgc/dQns2g8/vLU/P1l+Xylz9qglFW4k4BMC1Nt9gjEY CqHeHgyjwDaQAAmQAAmQAAmQAAmQAAmEIgH4WocWB9vXwjTe1NtxSoMGDaynPPbYY9iJDS9QW/cj /dlCZWMZ5hv0dvi9B59x48ZB8+RGAv4hgOtOX5u//PJLca7BH374AbO3Ro0axSmE55YoAbyJsPGo fPmPXNHXiGyr1XXleN/yMUbOckj9KTJtp2oLTsE/vZkJ52f+RwJeEaDe7hW2YDyJenswjgrbRAIk QAIkQAIkQAIkQAIkEAoE6tWrBxmtdOnScL2e71amTJlp06bprmi9/eqrr37jjTdwFja497z77rt1 +sILL/zxxx/zdjqig1zeV378VzYdzXswXPaY9u3jx48Plz6zn8FBgHp7cIyD71sBhXx7skxMkN9X yLOTlev1iM6G0xirwO6QUjFyyxB5aZr8tkL+2ZfbDKvYnruXKRIoHgHq7cXjF0RnU28PosFgU0iA BEiABEiABEiABEiABEKKAOR0rZYX9Bd+3d309ooVK6KL7du3P/fcc82zqlSpsmTJEpjs4pD+a2JQ EpBhYwkvwW/PlqR080gYJVJTU6+77jrgot4eRqMeHF2l3h4c4+C7VpyStYel9WK5fqCU6yGluzlv sG527PhYdaiS4nekSFqWZOfkNoCm7LksmPI1AertviYasPKotwcMPSsmARIgARIgARIgARIgARII WQJQxXNyLBLMmTpiVdHNEzdu3Lh06dK9e/fqs615zPIgs+cKQVFSprv8sEzWHxHE8guf7fDhw1de eSX19vAZ8eDpKfX24BkL71qCW+XOFFmwV3rESaPpcnG+duyG95hL+kjtEdJkhvRaL/uO59ZGgT2X BVMlTMA7vT0xMXHOnDkl3LRCFY+WVK5cOS4urlC5bZ2Jeruth5edIwESIAESIAESIAESIAESCEYC btK620drixNS5K3ZRsw+059wtJzXU/kQhogUJtuhQ4eot4fJWAdbN6m3B9uIFLI9sEifu0c+X6S8 wVzWR8r2sNixn+4x5vI+8sE8mblLDp6QVEY+LSRfZisZAt7p7XPnzr3++utLpkVFKxWL42XLll2z Zk3RTrNjburtdhxV9okESIAESIAESIAESIAESMBWBLYmSb3JSjXKtXWPlogoafmPivGXWQRD+5DE 4me9PTMz884778zKygpJWGy0TwlQb/cpzhIsDFL59iT5Z790WiNPjDfWKLuom2TuPVMvWcZI+V5y 8xCpM07+XHlaXAzasZfg8LDowhGw6u34Dpo3b16HDh2GDh26Y8cOXUB6ejrU9T///BM7d+/ejZ1J SUm///57hQoVli1blpGRkZaWNnv2bGQYNmzYnj179FmbN29OSEhYt25dz549J02adOzYMbfm4LU7 vHAHj21DhgxZtWoVCtEZ0B5UhPKnT5+Owq1nIa4Kduo9sBlA7QcPHoR9O3zlab0dDUMG7LGeFT5p 6u3hM9bsKQmQQMAJfPjhh69xsx2BZs2aNWjQoFOnTgGfYGwACZAACZCAXQmYKtC2JGm9REq7VCOl I0XL+T3lsXEy3+mTxp4M/Ky3Q1W4/PLLobrbkyZ7VRQC1NuLQisAeXelSO/10nCacreO0NIRuD1i LRL/rEbs2OmQK/upEBijtymN/aglEAZcc5n32AB0gFWSgIWAVW//+uuvb7zxxl69en3zzTeXXXaZ 1sCfeuqp++67DzvxVH3VVVdt2LABLumaNm160UUXRUdHQ/d+4okn/vvf//bu3btJkybXXHMNlHYU jxJuueWWBx98ELFjqlat+sorr1jqVElo+FDsP/7447/++gsZvvvuO+zcvn07SnjppZegtyP0DAqx nrVz5044edN7INf/5z//GT16NDR2rbdnZ2djzzvvvHPixAnrWeGTpt4ePmPNnpIACQSQAL5uoMrC QWsA28CqS4gAfvngF07eHy0lVB2LJQESIAESIIFj6UpcgqthJShpTQl/u8r/JkpcopzIsqF2lFdv P378+MqVKxcvXgypAWZ7KSnKtw6kBpjzjRkzZuDAgRAKoADAFBDZTFM9JNzec0c5sbGxpik7jkIu gN4O5UHr7cnJyVZjP06/cCNAvT2oRjw9Ww6lCVYeJyTI+3Plqn4SASP2SENgNxciDXX9LMOO/doB cu9I+W2FbDyS249win2R22umQoKAVW+/+OKLTYn7gw8+gK07DNchceMrT/cFgnbDhg2RXrhwIbym IwHb9dKlS5tm7XhR680338T+Nm3aXHrppUhgw+mXXHKJTpt/u3fv3rZtW/1x7NixNWvWRPrtt9+G 9q53Tp069dprrzXzI7Fr1y7Upffg2/ahhx7CiVpvR3vuueceCM6QQTy4y7OWZr809Xb7jSl7RAIk EGwE8O3TqlUr/XAXtl83wTYovmoPnu7x2gKeyuvVq+erMlkOCZAACZAACXggcMolFW05pkQkFfvP lNwNk857RqqwgBnZHsoIvUNuejue6B999NFq1ap99tlnEBxKlSoFjR29QsC4q6+++ssvv2zdujWs ATt27IidUCcgFOg+d+7c+f7777f2f9GiRRdccIH5wvvZZ58NxcDU2w8cOHD33Xc3atQIsrz1LKbD hwD19sCP9SnZniwDNymB/b9j5PpBKmy0U2PXdz+L0o4A07gHfr1YxsVLbKJgddK6mfdP606mSSB4 CFj1dnxhwRc6bkFQwrdt24ZGtmzZEqFMkNCqAjJAUYdfF3z3VapUCfthoK6Fd50B1uwPPPAA5AiY yn/yySf6RHihwTcd0uamM69YsaJFixb169e/6aabateujaP4+vvhhx+QQAYo5/DNrnPqEwvS28uX Lw9benzzzpw5U+cMz7/U28Nz3NlrEiABfxL49ddf8WqVP2tkXX4ggB8bsJHDDxj9hP7888/7oVJW QQIkQAIkQAImAadwdEpaLJSLeguMOZ3COxJRUrGfzNglaXaxdXfT2+FO1jTP279/P57rIZKDDJzA wGmtRjRx4kTkwcp48+bNX3/9db0Tr8b36NHDZIgELORxlqm3X3jhhRMmTNB6e2pq6sMPPwyvcdb8 TIcbAertfh5x3NmwXJiSoezYp+9UGnsFeInpmp8ndojtDoHAfkFPubSPNJgqw7fabanRz/BZXcAJ mHq7VraPHDny7bffwrAcX3PwhQ45/fbbbzcb+dNPP8GMHK9xmXr7q6++qqVynQduYfAtpvV2aPV6 Z169HfvhMQYr1x999NGoUaPgW6Z69erYibpiYmL0WdDb9Xtk+iP+uuntNWrU0Pbt8GyDV7/x1Vml ShWsBZj5wy1BvT3cRpz9JQES8CcBfCv99ttv+gHQuhbszzawrhIiALEdBgD4RaTLp95eQpxZLAmQ AAmQgAcCpq3m/hPSPU5qDrNI7oaHmVuHyg/LZHeqhzJC45Cb3g5NAN/CaDp+X+Fx/rbbbhs3bhye /aFIzJ8/3+wSPsbHx69evRruZLHz33//Peuss/Ddbf1VVpDefsUVV0C1QAmw6NMVmcUyEVYEqLf7 Z7ixOLj0gLqPfTxfnpwgVQYbdzNTZj/djh3LizcOlsbTpf0qmZggm0+P/WjeGP3TctZCAj4kYOrt WPBt3LhxXFycLhwu2Z999tm///67TJkyWGXWO6GHw0E60tDbr7vuOiQgj5933nn4xtQZYKmuvyth 355Xb8dXIbR6qPHIfP3118MPmz4Ly9banwyc1UDP1ztHjhwJc3ek4WkNS9JIoKmQ6LXjNQRgxder 1tthk79+/Xp4acMCNwzs9elh+Jd6exgOOrtMAiTgNwIjRozo168fqrM+1vmtdlZUogTwGrt+rU/X Qr29RGmzcBIgARIgAc8ETH3p7y3KFvQ0W3eHlO4mvy6X7Bz8IPFcTPAeddPbYTuHmG66uVgBx6vr 0NvXrl0LeXzjxo1mN7TeDgfsMA6E1frnn3+Or2/zqE646e04BYbxEBPOOecc+MtFiJbnnnvO7RR+ DCsC1Nt9Pty4EeWckqwc9Q+hSzuskofGWoKcni6tq/inMeqehvsY3MhAioe/LJi+m1vo3tbMLjBB AiYBU2/HnrvuugvW6Vu2bMH3F/ye9ezZEzvhrQUyOL7vvv/+e3xhQdnGTriCQRrfg5AdoLcjlOq6 devg+x16uI6Xmq/eDjFff+WhBDhHRRhWrEr/+OOP5cqVg/yOlvzzzz9Q0WH6DikezuThvgY5H3nk EW39ju/WW2+9tW7dujCJr1WrFurSeruOl4qc2ts8TPSRDsONensYDjq7TAIk4AcCWCZGzBH9JEix 3Q/A/VkF7Oi++uor/ThvDi71dn8OAesiARIgARLISwCik9adIGQN3SJPT5RSpk9jw9b9wl7K88yy AyGpurvp7e3atXv88cc1BCx/QxvHYz6s7BC7rU+fPno/lAfTUQz81sLJLUwBYeuOo/j6hukdNqQ3 bdoEHUObCyLajqm341x9FHvMMnXJ/BtWBKi3+2q4Ecp5baKM2iZ/rJQ3Zysv6+V6WKKdusnsDnUH u3mw1JsibZaoe9r600U7yuy+GheWE1QErHo7/LcgFsnTTz8NgV1b8aGpsCSHeP7MM88giJj5QIp1 Z6jxsGBHqBG4R8OzKjLgRTBo9bp3cKU+Y8YMnYZO/ssvvyCNL1Z4pNF5UO+nn36Kiv744w+UBrft DocDeZYuXfruu+82a9asb9+++nRo76ZbNnxpYiEbXm6mTJkC1R3twZMyXvBH6BNkxsp1165dhw8f rk8Mt7/U28NtxNlfEiAB/xCA0zPza8g/NbIWvxFo0qSJ+bRuVkq93UTBBAmQAAmQQAAJWDUo+Fi4 f9TpHmYMW3dI8YdOBLCN3lTtprfDYA8mfLA/HzBgAFR0SOLQ21EufNVWrFhxwYIFiIIKYzyoDboy aPLIg5z6I/R2hIQznbrj0BdffDF+/PiqVasiyqrpv12/Jo9AdRUqVNBeZbxpOs8JcQLU24s5gKsO qcjOiHNatoeyUVdv3+Af1HXzn7kyaOy/rI+8OlOGb5HkdPVWDhYQrbc1a7qYDePpJBCEBEy9XZt1 4S8M+bAhoTe0GQm9R6fNXmC/TrtlsO7Pm9ksRJ9llmA9y5p2y4BD5lGzcLNMM7P1UJikqbeHyUCz myRAAv4koF9YRo35fvX4syWsy7cE4OCuVatW8+bNy1ss9fa8TLiHBEiABEgggARcj90yb6/ycnxx b5fwDo0rSgUffGWGTNspJzID2MYiVO2mt+NMvESvje6GDBmCV9ph6qCLg+k73navU6cOEnqP/j0G G7wxY8aYe2C5Z1qtw34Pkd0aNWq0bNkyGPvBYA+m7zAURCAefS4c5OK1en0u/4YbAerthRxxCOMI JLHioIyNl46r5fVZUh0RJaIlorNERBqJPBbsEN4r9JN7R0mj6dJ2mfLEjhKsm3kfs+5kmgRsTMDU 223cxzDpGvX2MBlodpMESMBvBOAF1HQo6rdKWZF/CODRG+OLuvKupFBv988QsBYSIAESIAEvCEAH O3pSvlgkZ3czLEtdxqVwhnzDIBm+1Ysi/X2Km94Or7AwbteNgDqB6GxYEzfbZLiKUb5isOErW2/m R50wP+Io0qatoPUo0vqomdntKD+GAwHq7Z5HeXuS9N4gr82UygOlfG/lIgZG7Lm2624au3HzKddd npkondZI3BE5li6IlIp7FDcSIAEQoN5um2lAvd02Q8mOkAAJBAMBGETBAgpPedans2BoGNtQTAJ4 oxwGb4MHDy6oHOrtBZHhfhIgARIggYATMG1E9x2XD+YqWUypYdqHAxJdlOo+YJMkpEBeDnhj82+A m96+YcOGSpUqNW7cGM5e7r33XoSNw2n89ZU/O+4tHgHq7ZpferbsPS6xiTJ7t/TbKJ8ukPtHG0Ei Oqn3ZdRbM+ZdRd9bDGkd2vtV/aTmcBXnFPEjENB5R0rxxoNnk4CtCVBvt83wUm+3zVCyIyRAAgEn sGrVKtg/wz4q4C1hA3xOoH379nPmzEGxBT3LU2/3OXMWSAIkQAIk4FsCppZ+NF0GbpKr+1v0MQhl Drm8r7wxS0lqQbi56e1oIULCxcbGTp8+PSEhwXT8EoQtZ5NCnUA46+1J6TJrt/K+/vxkuWmwUs4R dlmZr8NLDP4Z9w3nyp2psRsJLOG9NVv6b5SNR9UtJTnD3YLdvB2F+vRg+0nAtwSot/uWZwBLo94e QPismgRIwE4EEIP77bffhhV0QXqsnTobVn3BAgpcvEJvR689DC719rCaFewsCZAACYQ0AVPpioyV W4fKOd0twjs0tK7y8XxZf0Q5eTBzBry/efV2s0kevp3NPEyQgNcEwkFvP5klh9Jke7KsOaycqMOV +jOT5Iq+huv1LgV4XzfM1xH8FD5krhso1f8WBGL+ebmyfkdp1i14biPWVjFNAsFJgHp7cI6LF62i 3u4FNJ5CAiRAAm4EtmzZ8tprryUnJ7vt50cbEOjevfv48ePREc+P89TbbTDW7AIJkAAJhA8BUwGD qL70gAqoqmxWtYUqbFajpGx3uW+UDN7sbpUaKEQe9PZANYn1hgkBW+rtmdmyNlGGbJE2S5Tteu0R UmWwXNrH8A8DzzBnMl+/bai8OlM6r5F5e9TaHIKcZmSfNh3MO8xpe/mBBEjgTASot5+JUMgcp94e MkPFhpIACQQrgdTU1Pfee0+/yOxZkg3WHrBdBRIYPXr0t99+i8NnHFnq7QVC5AESIAESIIEgJmDK YpuPyVMTpXwvi48ICO+Rytn79F0CtxJmzoD0hnp7QLCzUhDwp96Oq+zgCRm1zTfgs0/JiSyB/yjo 4TtTZOFeFaK06Qy5cZCK2qCcrke63MKc7g3GdBGDl19gvn5lPxXi4YUp8tdqWXbAvW2BvTO4t4af SSDECVBvD/EBzG0+9fZcFkyRAAmQQNEJHD58+JVXXomPj8epZ5Rki148zwgkgQEDBvTp06eQLaDe XkhQzEYCJEACJBCEBEzFbMsx6bRaKrkFVI2UGwfL54tka1LA2k69PWDow75iv+nt25Pk/blyVX/l I927DY5cNhyVSTuka6w0XyD1psgDo+WWIcpwXZmsQ13XtusF+V13yNndpOoQaTBVvl2qojzAOUzc EUk86d4c847hfoCfSYAEikeAenvx+AXR2dTbg2gw2BQSIIFQI5Ceng6f7SdOnEDDKbaH2uidob2L Fy/++uuvCz+y1NvPAJSHSYAESIAEQoGAKaN1iZXL+xhOZiDNmX5mouWTBXIsXbL8HhyeensoTB97 trGk9facU8oEveU/hh6ulfDI/Eni8szOUZ5b4AYqNVMFIY1PltHb5Pul8twkuQYRkKGon1FUNy7n UjEqcEO5HnJBL7W+1nCacg6z/KB7veYNwf0AP5MACZQMAertJcM1AKVSbw8AdFZJAiRgCwIQ25s3 b758+XL0hmK7LYbU2QmM5siRI3/99dcidYp6e5FwMTMJkAAJkEDQEjAVNtjKjtgm9SYbLp1NyT1K ifAvTlUuL9yiIpZoj6i3lyheFu6BQMnp7bjWIHG/O0cu6m1YnptOXTpJuhFyFIblcYkya5cM2iTt V0mLhcobzOPjpcYwqdDPWAhzcwtjro6ZRbmu3HO7y81D5MkJyoT+j5UqNANcr+ONlbxXsXkH8MCE h0iABEqIAPX2EgLr/2Kpt/ufOWskARKwAQF4a3/99de3bVPeFXO42YgABnTz5s3ffPMNVHdshZ+r 1NsLz4o5SYAESIAEQoWA/iZMSJZHx8pZLuHONHe/boBMSFBdKcoXppddp97uJTieVmwCJaG345I5 clJZlSsHL3lF8mi5dahAIVeH3P65CenmR0shuFTxT4c8/nSB0uoRnUFO/1Xrh2u22OBZAAmEIwHq 7bYZdertthlKdoQESMCfBFavXt2oUaM///zzN272ItCxY8err77ai7lEvd0LaDyFBEiABEgg+AmY utzqw8q89jo31+5dVSDFX1bIusSSVd2ptwf/VLFrC32rtyOG6by98tYcYwELYrspmLsl4G7dIqHn k80hZbrL1f2l9gh5ZpIqsM0SiVknkxIkNlEFOOZGAiQQigSot4fiqOXbZurt+WLhThIgARLwTGDt 2rXDhw/3nIdHQ5TA3XffjZYXybgd+am3h+hws9kkQAIkQAKFJwDtHe6ju62T8r1cOqE2vo1RTmae nywI+FhCG/X2EgLLYs9IwId6e7U6DR6aYCjtrgsnHyHdTXg3PzqkymB5YYp8t1SGbVVhTI9nKm8w cOeOeApwAp93MxfL8h7iHhIggeAkQL09OMfFi1ZRb/cCGk8hARIggXXr1g0bNowcbElA6+1F7Rr1 9qISY34SIAESIIGQIwD5zqngnZIeccrJTNkeFitcGOtGynOTZWy8wO+0bzfq7b7lCbuCM7oDLKrt gW9bGDyl+UZvb9s24tKbz2uz5IbBcnY313KVqaW7JRxyyxBpvUSi18r4eFl1SBLTgocHW0ICJFCC BKi3lyBc/xZNvd2/vFkbCZCATQjExcVRb7fJWObpBvX2PEi4gwRIgARIgARyCZhGszCs3ZEsr850 uXaHZmhY7ZaKkUv6KO8WKRm5ZxUzRb29mADdTk9JSVm0aNH8ArZ58+bBtgSCvNtZ4fnRN3r7Dz9E RETUqHVHcqaKUtpuldz+t2Wtyk1vj5ZG0/OBbV56+RzjLhIgAVsQoN5ui2FUnaDebpuhZEdIgAT8 SYB6uz9p+7ku6u1+Bs7qSIAESIAEQpSAqf7tSpV35yhnF8o5hul0OlI5mWm1WOD4PT27uF2k3l5c gqeff/To0S+++OKVV155Nb/ttddeGzp0aHZ2sYft9EpD9JMv9fYaNawQDqZJ9zh5dpLS3pWPJvPa ccg9I60ZmSYBEggXAtTbbTPS1NttM5TsCAmQgD8JUG/3J20/10W93c/AWR0JkAAJkEBIEzBV98Np KlZjreGnyYYR0VKuh1QfJgM2CSJFer1Rb/caXUEn9uvX77nnnquX39awYcPVq1fDnwxdyoBeSejt uGrMCwdVJGXItiQZvV0aT5fze6orCIGJuZEACYQhAertthl06u22GUp2hARIwJ8EqLf7k7af66Le 7mfgrI4ESIAESMAeBEz9cOYuuX+0XNz7dOG9q1ToK303yO5UFXS1qBv19qISO2P+7du3v/zyy5Db X7Bs+AgR/vPPPz9x4sQZSwiTDCWht+dFZ14+ODRrt3yzWDKLfpnkLZZ7SIAEQosA9fbQGi8PraXe 7gEOD5EACZBAQQSotxdExgb7qbfbYBDZBRIgARIggYAQsFrtrj8if6xQGrvVS0ZElFToJ/Umy+zd RWsg9fai8SpEbrhn/+mnn/Lq7c8+++y4ceMKUUC4ZPGP3q5pWlX3cOHLfpIACVgIUG+3wAjtJPX2 0B4/tp4ESCBABNz0djywpKenw8ul21u3GRkZbqGmkAE5MzMzC2p4VlaWWyHIqc8yvWjiIzazBLeP 5n4mvCNAvd07bjyLBEiABEiABPIl0HmNXNVPzulueHfXcSHhp7qr8lk9b68kZ0hO7o+afAtQO6m3 F4jGqwP6l+TEiRNffPFF7VFGG7kjDYfue/fu9apUe57kT73dngTZKxIggUIToN5eaFTBnpF6e7CP ENtHAiQQlASsevuxY8c+/PDDOnXq1K9ff+bMmbq9KSkpX3/99VNPPYWAU8uXL9c7jxw58sknn+BH O/YPGzYsb8969uyJx5yPPvpo5cqVX331lX6Td+fOna+//jrKxwORLn/IkCFt2rTRp0PPb926da9e vfKWxj3eEaDe7h03nkUCJEACJEACbgRM64CsHJm5W8VU1b6pVVhV/IuWiEi5eYg0XyArD7md6v6R ers7EV983rFjx5tvvummt//222/aMsRq3eGL2kK1DOrtoTpybDcJhCAB6u0hOGj5N5l6e/5cuJcE SIAEPBKw6u2PPPLIo48+ij0xMTERERFaJH/wwQehkC9atOiLL77AzjVr1qC8Ro0a1ahRA5p58+bN zz333E2bNlkrQdSqMmXKREZGdurU6eKLL65SpcrRo0dTU1NvvvlmONKMjY3t2LEjisLz5oQJE5DQ D0EHDhy46KKLli5dai2K6eIQoN5eHHo8lwRIgARIgATyJaC195QM+XC+nN1NzoLeDit309w9SuqM k83HBMq8qdJby6HebqXhRRqmINhgp2G+F4kE3sT85ptvoLebxu2w7pg2bZqptCOBU/D2ZWJiIjJ7 Ua8NTqHeboNBZBdIIFQIUG8PlZE6Yzupt58RETOQAAmQQF4CVr29bNmysG8/efIksg0ePHjXrl2T J08+++yz9+/fr0+sW7fuZ599tmfPHojkhw8f1juxZ/Xq1WbJ8BVzzjnn9O7dW+/p0KHDNddck5yc DHH+ggsuMLO98soriGyFpx7s1DbtM2bMgCCPDOaTkZmZCe8IUG/3jhvPIgESIAESIAHPBEwhHT5k +myQZyZZnMxAe4e5e1e5e6T8tkI2HXVX3am3e2Z7xqP4Sdm2bVtYd8yfPz8hIQE/MrWjwtGjR0Ns 1ybu+NusWTOoPSgNJu741QrjkEmTJjkcjlatWun9Z6zIfhmot9tvTNkjEghaAtTbg3Zoitow6u1F Jcb8JEACJAACVr197NixENJLly6Np5VVq1bh6JdffnnWWWfVNLZatWpVrFixYcOGo0aNqly58vHj x7Uwjr86oXlu3boVhaxYsUJ/XL9+/RVXXAFT+V9//bVBgwbYqTO3a9euUqVK+Ni0adPHH38cCcjv 0dHR+iz+9QkB6u0+wchCSIAESIAESCBfAqbqjqM7UuTFqacburuM3htMVUfNjXq7icK7BN6OhJwO 54dNmjRp0aJF165dZ82aBeEd+7HTlNzfeuutLVu2rFu3bsyY/2fvPOCiOBYwvqKAYsfeUVGkqukm een1qXkxRU3UxCTG2BVjF2OvsSNNkQ6CSgdp0otYEVRsKNhFqdIRnffNDa7LUUSkM/u7XOb2ZmZn v125u/9++40LgmX+/PNPfIlFQzw32VB3zturdsrVSavCInI/h8Snkoi7xOM6sblETM6RbWfJmpNk 8TEyO4z8HkjG+5PRXuQTdzLCmbx1mLx+kAxzInqORPsAGeJABtmRAXaknw3pa03U7YimA33rtYPk 7cPkPy7kEzfyhQcZ6UX/cE0+SjtcFk02niZ74oj1ReJyjQTcJNH3ycU08jC3UjNT1IlKfKP1WQHO 2+vz0XmpsXHe/lJy8cpcAa4AV4ApIPJ2WIMQ+ZKbmwucPnXqVDBzW1tbBKp37NgRdiA/2eLu7o4I d1To3bs3KrMekDAjet2x5tq1a2gbFxfH3kXb7t27g7dv2LBh5MiRbCWQO1zxI0aMwMuEhARVVVV8 HLdu3RqsXoruWWX+XGUFOG+vsnS8IVeAK8AV4ApwBSqvgAjeb2aRVSco+KIhM+LDkKa7f+hK9l4g iY/4fKmV17XsmvhuKYbGjB49GlmFAO+YMwiGdgbb2TNsHlj5xx9/IFgGX0FRk63nvH3t2rVlK1u5 tStXrsRXfQRLVq56k66FCZQzCsiNRyQuhYTdId5JxOkqsbhIDOPozS8LIulMED/4ks88KCrHBBA9 rEi7fUQBfzp2EWGH7LGTCHjgJXvspn9Mih/4w8IeuKGmzAcu+UkfZdYROxG7FbfFNs2Ggec9RGUv nTAa48RokZr1jTeZeJTMDaeXAAxjidVF4nyN+N8kx+6T86l0r9PzOahv0uc/5+2N5vBz3t5oDiXf Ea4AV6A2FRB5O9xWiHY5ceIE2/rw4cPxCyU4OBhJ7GI8Owg5DELIzMTXbHyAsppIoUHoOjg5WD3L w1RRUUFCO3v3s88+U1NTy8jIiIqKQiu2Emz/tddeMzU1ZS/ffPNNTHGlpaXFXvLn6lKA8/bqUpL3 wxXgCnAFuAJcgcorAGPq+RTymbsEuTPqZUxjZ750zumsNQJfimBjqHyfvKaogJS3i+kxKDCczgrS svQtlDlv57xdPJeqsZBfRC6nEd8kYnyOLIwk3/uQ15yI6n7SZh/F1C3N6L99TPegIM74ICXh5ZXF a3Z1XihvhJL1uMjY3IQomtI9xf5ir7HvqubkzUNkQgBZfZI4XCGnkglmvuBLE1GA8/ZGc6A5b280 h5LvCFeAK1CbCoi8HRtFtAswO5ItMQsqTOmMvWMlMDti2PELZdiwYewOXMRmYhZUAwODIUOGfP31 18iWgYMdITMwxqOfI0eOICvmr7/+gpsIf5yxPj09HTQeN/nCDAMUj+lW0RVqMjc7wt7xq3P//v21 ueNNYVuctzeFo8z3kSvAFeAKcAXqmwKi3R1RDDPDiNYB6ZyqT6kTdR8R5gSudImB/bVJLfjih7l7 4Lt4lfsZpbwdXF1cRNIurkFBbuWr83aMHON/xV2oq4PO82SqpnzRE5KSRxIyyKkH5OgtcjiB7DhL A1gQFYVslj7WlDML25/Z0eEPh1ccvnH8SweOfilULqsPZN1mL2X1MJP3taFRMPgbgqAYTAmBzb3n Qj5wpRkySIP52ouM9ibf+pDvfalP/kc/Ms6P/ORP+fako+TXo+T3IDIlmD5+C6Rr8NZYP1oTGTIY /P+O0OaIlPnCk3aIbpFLAzyObek4Eg0HMtCODqCbJWlvThF6ibmhK7lf2CPoADWgCZSBTx5CGVHR 3nOmeTgLo4jROeJ2nYTeoXcB3MoiOYVVO0q8Vb1TgPP2endIqjogzturqhxvxxXgCjRpBRhvZ796 4E4/duwYYjAPHDggJlviZxGmQzU2NobXnWXIsB8ayH5xcnJCzDtAOhR88uQJ5lFNSUlhaiJhBm+h E19fX7B3AHmsx0ysx48f37t3L/zw4PNYg66wYD1SaDCbFWvLn6tLAc7bq0tJ3g9XgCvAFeAKcAVe VgGRumNO1ah7FGdR7gRIZfSUIbhR3uRxkwHuANSY0weZhLi9EVOd+vv7p6Wl4Uvgy6qK+mXydoB0 LFLSXhq2szVV9rdjtEhBxF0J+CoLrwiGId7sWYW9qJMmnLdXRnaclQhOD7pNOTCulyHnHBHo3a0o AG+9l3rUKUVnLB0F6aMyCNqIsvQBtpRsA3dPDSYG0TRe5uBVusWYB5TqI4kF2PluNh0GstNT80hG PrWFZxeSnMck7zGBlx430Tx+QtNaqvRv6LkMaI5OcEEBHaLb3Md0K9gW/mohDQabxgAwjDvZBGFZ 1zNJ7EMSeJuO1vQ8jcSZF07G+tJLAP1tibKpTI3KiVBCN5mYcMUjS6eLBellTYY7kV+Okn9jiN8N uulX3Mfne8tLtasA5+21q3cNbo3z9hoUl3fNFeAKNF4FpP72Mn/1SFeKZbEAYaRlptNbb72FtHb8 jEpNTcVPG/yuYeulNaXlxqtuHe8Z5+11fAD45rkCXAGuAFeAK0C/KRWrgLgJ+E77WRcJho+B3NcG FUfzNXqR4McwMzNDeCC+EyJNHcnq48aNW7BgAWwe8HW87O5LeTsYO/qcNm2anZ0d7tDErZSMuuN5 woQJYOO4Q/PXX3/FFsX1VePt8JzgYgEmXcVNmmwXxo4dO2PGDExwxJwnL7sXdVKf83ZRdvyrBFW+ nUUupNK88QNXqNEal8AwxyhFwfBgI728kjZ1I+pvR3ZKZwvSx4YMtid6TtSIjkQpuMr/OU7M4yk3 xt0uWZWLUhH/YoijbUCFe9nkzAOaVL8/nmbITA6kSe9w5mMKVzB5WOUB1YuvWVRA5nEImCUeRwGW eCM62Suc+ZvPEL+bJOYhuZZJ7zjAFQe+1GcFOG+vz0fnpcbGeftLycUrcwW4AlwBpoCUt7+6Joyi Y07V119/XV1dvX///vhR04B+hry6AvWqB87b69Xh4IPhCnAFuAJcgaasgMjQLt1OUX13rPCX6wEX z6YgCGYIWrFiBRi11HAO+o0FM5y6ubnB+v5SOoi8HR0uWbIEL2/cuIGvoLgTU9wKOsc8RDB+4Fto fHy8tbU1Mg+r7G/H1EXg9vhOW3oXcOEAdveG8l23ifP2rEISeZeYnCPTQqgle4gDtVK3RbgTo7tw WYuu9QpRcFcL8r4LZemYJ9Qins4QevoB5faAwDClp+VTl7j47/2lzu0GXbmCXYZ/HuI/yCVJj+h1 BwB5XIAwO0+WRZOf/ekE04Dw9CiUJzvewoMdIENqpIcNHlk3ryMZ3p9siyFBt6jsfKlvCnDeXt+O SJXHw3l7laXjDbkCXIGmrED18nYoKRrXkdnOyuKapqxznew75+11IjvfKFeAK8AV4ApwBSpQAPy5 W9cuTWS+VLB04OjRo0dLSTXKbAEVBwZHIGEFcpV+y9PTE+h77ty5IO1wziPSEHXwvHnzZrYhdI6e wd4RYMiaIzIxMTERHntAeBjUXyoHBt9jsSGR5D8b+/NdgNEdeYmlx1kP1zQF3g7qC9szAliQQ3I1 g9qhQcWRUt7NQuaUZuHqjKuXSXdlZnXM9Yn0mB5WRM2W6DrSwPOVx4nTVQrVy1wqQM1l1ucrSysA 83/4XZrhMzWEvHOYDLAjPWUZPjgWmGS2bBrPIDyc8DisO0nn/eQbb7I1hs7KikweGODziprihY/S 2tbVGs7b60r5at8u5+3VLinvkCvAFWgKClQ7b2eiiYxdLNSJmNg6fn/htx7C4fPz8xEaD4cSLgQg 6wYLCngJSxLeQgVUQ+W6HXD1qsR5e/XqyXvjCnAFuAJcAa7AqytAeXu3bk2Et9+7dw9EHfRbDlOL L/EWLO6lVcXUP/iOGhERgcwZzPIDYC7WOX36NKzskJGRdrb+/v37YOlyG9q5c6fUPI/smqSkpEOH DmGaIbE3cUOA89evXy89nRA2vXLlSjZguf7FldhQFYJxxDHUWqER8/bCJzRmBBkms8JokAum+0S6 C4W0L8yEMaJ+6aFOBHN3rjxBrC5Sv/rx++RyOknOJQVl3XvB6XotnLFIlQcwxxWT48nUDG9+gcyP JF96Ughftg1e9MDLgmiQtI95ZnEbAiaN3RVLIu7yaVhr4aDJb4LzdnlFGuxrztsb7KHjA+cKcAXq UoEa4u11sktA5Vjw4wu/jDIzM5OTk2/evInJXn18fCwtLTZu3IDUzWHDhrVp0xo/crF0aN/+7bff mjVr5r//brGysvL394uLi7t16xZ+haE5IDzD7+izTnbn1TfKefura8h74ApwBbgCXAGuQPUq0KR4 +6VLl5CjDi5dJqnG+pEjRxoaGkoVBrg+c+bM6tWrkbv+888/ozlA+u7du/ENjX0lQwVWkH5DCwsL K533MmXKFJgrxM5ZfRB1BurRDyIQkXWDYHm2IdQ3NjaG317aM74Tzp49u4JdwK4tXry4QUTKNA7e DhIL3zLS18Fjw+4Qg+PUDl0c9w3WyrirnHcdK41pbHhLMxog08Gczsg5I5TYXqLzk8otDfaLv9x+ NJKXOBxyRwSTxuK2BQTjf+RGg2XamZNWZrJMeLmDzl7i0ON2Blx22U30HMniKDovLc4c5Ntgili5 nhuJZPVmNzhvrzeH4lUHwnn7qyrI23MFuAJNUoFGwNvxowk/nTIyMvDrDPmcS5cu/eH7795/922N Qf17dG0/sEeLYQOFT4Y1++EDpd++Vpn9XfsFP6kuntAJj79/6jhzTLvJX7Ya877ih3rC0P5C/+6K Pbt10NQY+MF/3v1p/Nh//vnH0dEREmGSLPHXWQM6TThvb0AHiw+VK8AV4ApwBZqIAk2Kt1+9ehUh 7RXAavB2U1NT8dCDgdva2k6cOBEznyIcBiibLXiJyUnhdZeScLEVVm7cuBE1pRvCy1GjRvn7+4vV pAV8r3NycgLML70hzL6KfBjG5NEEXwLnzZsn7Rll6YINGRgYwKch7b9+lhs0b7+VRTwSyfpT5Jej 5ANX0tdGhtYRJALGXmY+jMy4ruVAw2T0I8ieOOJ2nZxIJrez6+fB4aOqlAKlCXlyDs3Px7mBQzwn nHziRrpalpU/w8A7C58xou73/3pRz7z9ZXIpjeAiDl+qXQHO26td0rrqkPP2ulKeb5crwBVo0Ao0 UN6OH1ZY8vLyEAsTFBQ0c+bMAf37K7UQ2rQU1Lo3n/h5qz36XcKM1G45D8kN0iGReuT4UPqIlj2O DSXiA2vE9RF62Ud1Eg9rBO7qt21Wpx8+bNWrS/PWyoKyoqClqblo0aKoqCjme2dbr//HnfP2+n+M +Ai5AlwBrgBXoKkp0Jh4O74RIbAFeS+BgYEeHh7g4Wz6HqzHYcUzZiydM2eOGKsuxdQog1SPGTMm NDSUnQOoD5s64tCxni3S+liDaBoAnNInDFJrfvrpJ9ahtAl4+8KFC4HWSzc5evRomRti2wXbx22S bBewg1u2bMH60v2zNXjL3Nxc5PPYCywwyYeEhCD4HXuE4eFdrCw9jFpe01B4O6QC/0QMe3YhzRKZ Hkq6g6CKXF1mVi8RKiJbo2BMmpvQcJh3ncnqkyT6vry69eAIyA+Jv64uBeQOLq7OmJ4n/ztCb2fA fQ00AR529zLPHBmHxy0PkwOJVyLJL6InHk4/uQ6ra5xNqh/O2xvN4ea8vdEcSr4jXAGuQG0q0OB4 O36wIIYd9//u2L7j2/+N7te3h3oP4fsPlNdN7Xx0V99bbhpPwnXJ8WHkxDBA9acRekVheoUhuuzx OET3cajsgUKI3uNQ+hDfRQGVSYSMyaP58WGPQ3QSXTR8tvb5Z7LqqHcU1boK6gP7jR/3o4mJyblz 50D7xd9WtXnIKr8tztsrrxWvyRXgCnAFuAJcgdpRoNHwdgBkBPHBWP7bb78hywXL+PHjQddxbyAw OxMTdcDhMdko49VSGM5gNZJYxMqIZMFdimXWFBvClF4aXMMSz8zwYjVWQFeA6viuK9cEG8J2y9sQ 1qM3Z2dncRcQ7Q4nPNZjKb0J7P7FixfFTSAi3sjICBmGmJgVmmAAuEyASWORh1M7J1gFW6nnvB35 HpiQ9OBVGhUyxoc6kCljZw72skgp6DrqINMbyTA7zpIjN8j1TPm959RUXpEm8FruoN/LphkymIkV 7nd42nHO4NKMPHvHCcZOtt1ksD350ZesPUXcr5Objzh4r/oZw3l71bWrZy05b69nB4QPhyvAFWgY CjQg3g64jVt6XVxc3nv//ZbKzbp3bD77u7aRpv1zA3WeROkBszN+Lnsu5upFYUMLwvUKZVw9P1jv pvOQaweHJDgOzvTXfuitddZy0AVbdRjgC2XsnfH2fFQOY1097/BJmC42keWvc3Rnv8lftlZt01yl VYuvvv46ICCAxbzXz4PNeXv9PC58VFwBrgBXgCvQlBVoNLwdk5kiWR38GZEsIt9GGZB506ZNmJKe HWXMqmNhYfH999/LwWowbdjI4+PjRVKNmxZ/+eUXdCVXU0TcaIJcd7E+6x+JgrjPscwmbKWDg4Oc QQKGc2S2411WQexfLGBDmCNVPEuRcuPn58cs9GIdFNAcwe/wsYuzsmLmIH19fYjAFrF/XHHA+jpH 7vWTt+c/pkkvEwJorDoQejPGQsE/2YOlcEuedQ6Q+RHE5wZ1v8OKXFTKiiyHW8XjyAtNTQG5MwEv cbbgnEnPJzaXqPsdwe9lgPdnJx6wPB5DHCh7B3jny8sqwHn7yypWb+tz3l5vDw0fGFeAK1CfFaj/ vJ0Z2nGH8j8rVmgOGdS3kzDh89Yem3pnHdUmJ4fDxP7coy7j6nlBuvH2g7229HNc1cv+n56Lf1Zd MkEV1QpCdLfO6NaimfDmEKUH3tpJzkPe01VGdAwc7zLerhu9b+Cc71WXT+posbR7jLX6dSeNwlDd /GDdPAB59Cxj8jSR5uTw1COaB1b1/O79Vj1VhWHDhm7ZvPns2bMA73I/AOv8uHPeXueHgA+AK8AV 4ApwBbgCcgo0Dt4OdDx9+nRwaYadRbCMAhbQ5oMHDwJTs33HLYHg1cuWLQOfRzY7JkIFITczM7tx 44ZUHExYX/Hkqtjc8uXL5eD5qVOnxGQYKQwXy0uWLMnOLpHZjcFjDBinWEeugA2hFRsb+3aHfTl9 +vS6detgXEciPa4L/PXXX/D244u0OB7sJvz55WmCTWzYsKFuY97rBW9/Sh7kksh7xOoi+SuEIF+d Oth3ytzF4JwSrg4QqmhKBtqRT93JlCDqT0b6OimZyiMHVKWnEy9zBcpUQO6cuZhGLC/SzKLPPejJ hvCZMgg8plvdTmPhx/nRlPjAWwR5NTzyvUx5pSs5b5eq0aDLnLc36MPHB88V4ArUlQL1nLcjchNT ViF+s2P71kPVlQ6s7JHur12ElBgZWhejYCTOdj0Q8lDD/oIg6I/tmBuue8dDc+a3bbESddJ9tbX7 K3Xp0CzebnCiyxDX9b3Bz1knwYb9O7Rp9s/kLlkhOim+2j9+pEIpfeTQ+55am6Z28dna74G3Fnqg 26WhNLIsmnC9ZC8ts4Xd1Hspde7UHr8Q4dGCwan+UHfO2+vqnxXfLleAK8AV4ApwBcpToHHwdpjG Eb0OhlwmtcbKOXPmgJ9DBPa9CFA6JSXlypUrmN0eXz5BvEGn2VviFydQcbQqr0+2Hpl+Yn2msKWl Jd5i77KC9BkjQa7LhQsXpIcD0/HgYkGZI2dt8c0TlwPEJuI44aW/fv16TExMbGxsYmIiPPziWyhg 1+Dtl25dWsbm4HLHBLJit7VfqEPeDsgJRLkjlow4TH3sLZmvuEwTuxFR3U/DtA8mkPs55FEBKSgq IZUcLy3xHn/BFaiqAjjNcLLdzSZ2l8mPfjT4vQzwLjtjlUxJu31E15GsPkESMnjgTLmKc95erjQN 7Q3O2xvaEePj5QpwBeqFAvWTt+M3C0LacZ/yr7/+0kFF+PQ1JbeNvRDGjlT2IgSwy4h3XqBOmo/2 I3+YzykAZ5kwDImDrmv0VvjuA5Wnx4be99C8fGDwA29NvPUkQs9zcx+g+BnfdvDa3BuRMoDtWJ/u pzNCu+WQfor5oTq0h3C9GEt1k7+7grcXBOt+/U7b5grCviU9broO8djcN8ZKPeUIbYgHBoMh5Qfr WC3v8Y5m807tlGfPng37Uz3xunPeXi/+jfFBcAW4AlwBrgBXQKJA4+Dt69evB0yuAFkjaAXzqLL9 ZlBaokFxUW49mLy9vT288VJMLZaxLXjjMYGOtB8kDc6dO5fVKXMwWDly5EhQemkrbMjGxqaCVHls CJHs0iYoy42WvSuuRMHV1bXiaxBfffUVogjluq3Nl7XM20Evz6UQj+s0N1vNhgg7ZFb2PSUxphF1 FPe1Ie8cJhMDiHk8SSyZwc7pem2eIU18W3In2+kHZO1JOkGApgNpUyZ+h+99B+lvS/6WBRxdSqPT rfJFVIDzdlGKhl7gvL2hH0E+fq4AV6BOFKiHvB0WcfzGwQ+Wrp3a/PChykmLgQWhuk/Ci+c2Ra5L uq+O345+BpM6jnxL5S1N5YNrerN3gcqLH2F63/6nlU7/Fnmhut7/9n0ahcyZYlN6foju2I/aKjUX rA26kyiY2/WehuuFGA4AhF83tRPgOSPwGX46VxwHo9t7nppD+iq9MbglyrnBumM/adddVeHwup5I rcFI0JzVp+8G6Ybs6f/FGy27de2ImbMQ4CneX1wnRxYb5by9rpTn2+UKcAW4AlwBrkB5CjQO3o5o FFDuMhE3o9/g7QkJCVIRRDQtXSlXhsV97dq1rFtp5yjDpg6gzTJqxK4wkynj89LKbADiMwJeEP/C zPbi5uDr2LZtG6sjbYsyOLybmxtusURlcUNiw/IKjLejLfqUdigOAyvB2wMDA8vroRbW1w5vB3LE nKc/+JI+NtQGTE3CjLFL42KQFWNC/utJzC6Qy2nUx55XHD5UCzLwTXAFXqBACfD+lOa9Jz0irtfI pADS0bzkBSM23QDOcGPScT9NpJkVRqLvv6D/JvI25+2N5kBz3t5oDiXfEa4AV6A2FahXvB2A+v79 +9u2bUV6zGsDFY5s7UtODCURssiXUL38IPjJ9RIcNQDhgcf9t/fLDtKZ8EU7lM2X9MAkpwx9A7k/ iRi6dIJqW2XBeW2fWd+1Q3g7ewvPT8L0AnaqtVISvnm3DbzrlLdHDt0+qxs6ObpTTYyXKQqjHB7P J/YOaK0MFN+RHB+W6qOt21/xfR1lcmbYc7Yvs9YX0q50SRR607Nd0XNwL6Fnj66WlhapqamV/6VW 7ced8/Zql5R3yBXgCnAFuAJcgVdUoHHwdjs7u4q93LNmzcKeQqvKfxFiNRE7Y2xsDOsCADvwNZbx 48djZlUkwDMGLtUfNZH9UibfloJuIHfkE4oN2YYQDgPfu7ghzOiKDU2bNs3Dw0OO6osNKyigT9zh iDFXwNuhWKPMkwGcTM0jl9KJwxXyXy8iwPSLSHYZgZTmsSNDprc1Ge5E7e5Bt0toWQJvlniHv+AK 1AsFpKfomQfE4Dh5+zC9L4MmI5WcdEAwpKZ3+OGRCR98m1zPpBP7Ns2lofP2lKzcpNRHRbKk/qIn T+5kZOUVPsaauxnZT4pPiKf3H+Vk5Rem5eQlpmRmFxQmPMhIy85jhxsfCvcyszNz868+SL+cnH7p flryoxz0gJcJD9PRT27hYzYhxaO8AlQ4fzctLSf/cdGThIeZmXkFiamPrjxIv5SMtml493Z69s20 rBupWezzK6eg8F5mDiuzzWGEN1IfnbuTgjFgK1iZW1CIhuxx/WEmKlT5POS8vcrS8YZcAa5AU1ag /vB2ZLA4OjrqaGnpqDV3WNUrJ1AHATLA2uDYAOPHzAaa/t0Nc54iPeb4PmpHXzKhE/D4Ay+tQT2b d+/Y/IazBlg6TZUJ0X0aMXT/kl6oY7m0h8GvHZEPQyNoZBOeonzk376fvaasotwM4B1Q/UmknsEv nVA5zkYdATLPyDya6GEAW2ZQFB9iqPb0mB7GgLLZou6iDZ7NtRptNiDxsAYs7qwtWiEo3ujvbgO6 N3/7rbfw81CcL6yWzzTO22tZcL45rgBXgCvAFeAKvFCBxsHbEcAOBg7QXZp1s5WiF/2FgogVgA4Y PcB3QsSkBwcHu7i4uLu7w8QOboP7H1GTVRCbGBgYsPlJRbpeZgF1fHx8xFZiP8iQx4ZCQkKwIWB2 tqEqwHbWc0FBwYoVK0oLIg5p06ZNjWy+1JxC4iSzsmvYk1YAjyCNzMouIZDwsX/tSYziCNI5EI4t 5ZbSsvTo8DJXoEEokJxDz+pdseRDV6IgOecpgWe3dRjSyQiGya4xHW96pveGztutjl+aciAoK78A Z+Oj/AIDz2PXUzL1XSI11tmfv5vCPow2+58+mZTsHJPw6W6XjJz8H8yP7AiMYWcv8Dvejb314INd blbH4lEn+PLthAfpn+xyDU+4s9H31DgLP3B1YPCFrhGhV+54xl3fF3k+NSdv+JbDUdfue55L8j6f +KWx9xK3KK/zSZ7nEm2OXxq++eCjvHz07x6X6HshSfrPxMArentgTMyth3bHL009EASGfzs9S32t g1V0vGdc4sEzVxmElzapfJnz9sprxWtyBbgCXAFRgfrA2/FpBVv7ooUL27YSxn3cNs1Hi/nMKWyH b5zOc6qFgPR/futUFEZjYZCX/p62krZai8dwoUcO3beoOzD41hldGAZnETEBO9QUBMF5Q69z9oPT fDRvOA/JCtABkL/jpmmxtDvi2dHk2/dbI1IGjnSTv3vgZazVc97O7OsIn/l4WMuenRRmfddmze+d fv+6HYLcrzoNZpZ7VueCg4ZGb8WH3ppA93TANNNG5nWPHoqNfv5aqw7tlLZs2ZKeni73C1E8BDVX 4Ly95rTlPXMFuAJcAa4AV6BqCjQC3s6+0mCeHZjDRZiMAkPNcHFv3rwZc4lCnyp8+ZE2AfquOJ1v 69atL+TtGBU88KGhoXLH66U2JNe29EvWG+IE9fX1oQCTAs+sAHHmzZuXmJiIhtLtlu6nRtdUS56M wcrVgoLKoK8mTwqS0XW42UsGxTQzpnNN9rAi/ztCIzjEhdN1UQpeaBwK4JQWz2pMt2p2npreu1g8 mw5YSuBxHWoX6WZJNpyijncE1MhM041DhnL3oqHzdouoC7/bBwKbYw9hYl/pHZ2UkrknNPaT3W7j rfyYj31LwJlTMt7+wU7nrLwCl7PXf7TwT8+hFnefC0m2xy/BrI76t9OymExJKY++3OOeW/AYlbsZ 2EQk3L2dkfXVHvf0XErR03Py03PzNNY5gOHjJT7+xlr62Ry/LLPBP4WnfejmQ7uCYvG5OPtgaIas Cev28JmEj3e5PXl2Vo239F3gHHE3M6vfKtvrDzNkdZ7iucqfPpy3M535M1eAK8AVeCkF6py349Zg b2/voUN1dfopBOzoh0gWZhSHVzzebtDaPzpHmg4AJ0cmTJTJgERnDUTKwEDO7OsBO/uR6GF33DW7 dWj2tqYSKD0l3iE0B+aC7SDVts1W/NoBRB3J6vb/9MQkp9lHddf+0Qnmcxjg9cd2BGN3Wt0Trc7Z DG6vItj90xOhMWiOTaehTvjQS/aDUWfpJFWQ/GuHNLq1b/a+nnK+zHJPjfShevEOg15TV+rXVQG2 eQyMEfhMHy00B3WnOxKme2ht7wHdFf7z/nv4WcqsWS91gF6lMuftr6Ieb8sV4ApwBbgCXIGaUKAR 8HYmC365x8bGwlQwZcoUJLEgSmXChAmLFi2Csx1RLTUhXek+EYcuZdpS+C+WUWHcuHG3b5dMMCnd V3WsgSZw/pubm8P8jwR7aIJnlLGGDaDKuKM6RkdenbfHppBBO68K628LpnCzPxWMnj4P0zCicTG/ BxGHywTVgB/FRWSS4hpe4Ao0JgWkZ3hKHom4SwzjyChv2U0fJa9G0XtAjMgQBzLWl1heJA9zG5MM 8vvS8Hl7vMjbs/ML1/qcQAiMYUjs6RvJY8x95h4KR6qMlLeDlqdm57237XDo1TvQYr5LOEJmrqVk vLHZyTzyguf5RHjX0cPnhm6o5hZ77d0dbgicyS8s+tTQ/fv9vmDv8LqDooO3g+GjB7wEvbc6dklU 9szNB8M3OS1wjQi6dEuGzylFZ9X2R8VjDat59OJN7Y0HrySn9VhuZRp+ziX22v3MHLGTKhQ4b6+C aLwJV4ArwBWoQ96OXxy4jXfXrl1KLYRJn6lkBQKDF0eygHhfsFP/UE8ZuBvLxqmd0vy0Hx7ROrSm F/A48PtVxyFd2gsTP2sN3p4TrDtqROveqi3gfqfQG9ExYXo3XIf0797iv2+r5AbpIH/mLQ2lex7a +5f0eEdT6YGH5pNQvZ1zu3ds2/x1jZa3XYYUhOnO/l71NXXFu56aGYE6Qbv6Hd3ZlxwfundRj2aC 4L6pL7zrsdaDMJLZ33dE/gzLjbnpqmms3/WLN1u9r6NYbMiXof5brpozvm17220IsD9qYqfueGh+ 9YZy27ZtEJgD5F5rP7U4b+f/wLkCXAGuAFeAK1DfFGhMvB1faeBjRyZ5ZGQk0HdMTExycnKV81iq cKQyMzPhJ8eUqeVRd6yHAR64u3a+fbGtIDQGRnckxgcFBZ04cQIEnsXI1M4YKpDxFXk7oCImgnwe WC0DiUqm1M0+wZ+conyoeJHix2fr+P+5Ak1FAen5j8Cltw/RfzXNTeTvBKHhS4ZkpBedziD3MXlc 9XTteipsJXk7/jACXAMa40H/SErlq8U9Y8OQ/pW2iCrB2zf4nkxKzdwZFHMlOePy/VSNDU4Wxy5u 9D996gbNk4G/Hbwdzee7RMw7FH4iKRn1EeFyLSVz2CbH7UExdicvI78dGexa6+y/MfXWXO+QlFJ8 YRoh8D9b+rdZbLHl6BlEwZfH2xlM13eNGmvhX/j4+RXNwqInH+5yd4m7Lqp1/l7KoHWOsbcfdl9m iUwby+OXbqbSO86qvHDeXmXpeEOuAFegKStQV7wdH0Y3btz46afx3TsI+5f2eBJRbGtnFnHqUQ/V w3Sos79vP0JbCaB7+GBluxW9PTb3ibUciMrZR3W+fLN1N9XmN12HFIbpTRnd8V0tZXjgWXO0PW4+ YPLX7eb80BGudcdVPcOM1HIDdW64aNx203zgrQkMft9LM91fK91PK+uoDqLa84J1HFf3Xv17J7MF Xf139kU/F+0GvafTUq1b8+vOGqgPPt9KWXDZ0AcUHe9eOzzEZnmPh0e0B/ZUmPBFW3ISxniadQNP +6n9g5RbCF+80RLXAuByx0ogd/S/eUaXTm0VZs6ciYnAaueU47y9dnTmW+EKcAW4AlwBrkDlFWg0 vF26y/heh0W6ptbKwNqItSmPt8PlvnLlyrS0tFobj6gDCkgDkL6stTGUt6FX5O3otrCI9LIsop72 7VlfexRtiyFR9+CuLG+DfD1XoOkqIP2L+CCXuF0nCyLpfMHF6e4sbYbFvO+iMe/f+pDdseRKeuNR 7IW8HX8ekY5+5MKNpZ7Rv9gGTrYLWul13Cc+CVkrtakCclrgSDeLOL/U/djNtOdc2vKYhLfLwtgx IamMt9ODFJ5w993tLiONPc/cTHZ5xtux/uyth69tOrDMPSo68R5egrd/utv9bno22yPkyXyB9Jic /NmHw0aZemHT+JBgbwVdvq26eP+Zmw+11juW6W9nnybG4ecWu0WKrdAWM7pOtD263vck6wfPiHYf tvkQsuLVVtkhA4etFz+MxGqVL3DeXnmteE2uAFeAKyAqUCe8HX/tL1++PHiwhmafZhcd1MHJKawO 0S2i06HCE06BtiwIXQ8ZMledNFb+3rlNKzjNhW/fU1k7tTN9N0R3j343YG3HVX1yw3QnftHOxqCH LA0GfBvx6ch410W39BFJ/fBYic5hawctL34gAQZluoZumm49lKbW4CGrr/fQW8trS585P7SP3jvg wRGdz99s3aVD81uuQx6HDn3grfXb1yq75nS75DColSJmblWFGZ7x9kx/7dW/qSLy/fM3lcmJocnu mlccB6FnDAlB8ZEmA3p3Ft59913k1b/KR554+CoucN5esT78Xa4AV4ArwBXgCtS+Ao2At+M7DBb4 2JEKyMp4rn0lsUVsF3cOnj59eu7cudIAGbH877//IsiFDbKuRsgGCa0Yfq8rrbD7r87b0cnXhseE /8zWe+0NpmcdHfk6OZh8o1yBqisg/ku5nUX0w0nrvTLwzmZWFZPeZfj9zUPE9wbdkNik6lut05Yv 5O2IW/nS2EtRf98YM2+4wcdb+LZbbCHMMZ3mGIKE81ob++OiJ385hijM29tqvik84eJ2veISR5t4 pOXQZHXYzhEdcy8jW+TtWOlw8nLzOcanbj6Q8nasn2jl98Uej4fZNC0IvB357bdkGB9//BNlvB2Y HdZ3tVW2mAIV+epA4ngLyTLqq21B78vj7egNy57QuIWuJXg7VvpcuKG2wgqTurJEme/2eq85cgJh Nf1W2l4rzm+XNa7qE+ftVVWOt+MKcAWatAK1z9vxW+PIkSMD+vcb84HKHTcN5KszUp1zVMdtY2+a fE5jWGTIPUT3kb8OQmBItN4Zy4HjP26n2ELo1E7hlIU6kHiCk4ZCM+HzN1WslnXfNbeLrBUl7aDx eBSE6GX56dx21TxjNch3Wz8bg57bZnRfPrHz3B86/fW/TlNGq/75jer0bzvNH9t5zW9djfW7H1zT K2RP/wv2g5M9teCEL4BTHaHx0UPhUc/y1z5rNXDl5C6Tvm53+cCgGBt1zM2a4a990WEQ/PC4CmA4 DyOkewHIf2Rr3wv26j07YTLWljC9p/tp//KFCgaPRBpUAPyPt1f/YKiyrq5edHR0TZ95nLfXtMK8 f64AV4ArwBXgCrysAg2dt+fm5p45c8bCwmLt2rUrVqzAjKVubm5JSUn4gveyUlRjfajq4eEBur54 8eL58+cvX758z549SLnBaKtxKy/bFRh7XFycnZ3dhg0boNWmTZsOHTp05cqVWp7QRxx2tfD2NSuW 4duvrq6u2C0vcAW4ApVUQIrQkc609iT5rxc1t5eYdBg5MztJG8Q0BdCM92u1NBtGJffgJapVzNvj 76W9tuVgdwPrgIuyqwuyjm+nZ43Z5zN6nw+bjfQlNlbVquwCqNPpq8rzTFvpg7cX34eO9bmFj5d5 HAO4RlzMjqCzRy/dBJnfFRx75T69YUrW8OkKr+jYWw/cYq+PNPYQxxx1/a555HnW8+Xk9I93u+0I jLGKjt8eGIPwGVxcAFpHDycS739l4n0i6f5853CP2Os7Q84C5sP6/v5Od6xEBcyLOuVAKJi8dOeM w88v9YgWp0YV37I6dnHe4fCDp69sDzq7zucE7q+6nf7ozW0unLeLEvECV4ArwBWoZQVqmbfjt5iT k5OyYoup/+uA1HSZ8ZsmroCTA0fPHNPuHa2WN12GgHXjJSzusKCftR4YvFuNetHD9TChqmafFlNH t4OV/byt+nfvtfTc0geW8qIIythRJz9M7567ps+2fkt+7vD2EMXWLZsrKrVooaSkoNimWeseQsdB Qg9doc/rQr83hb5vCL2GCV11hPZqzZQ7N1ds1UJJUUmpRdf2zUe903LHnK4nzQc+8tcukNng0TmC Yh5H6KX6aG2a1mnl5E6PMfjwoX7b1fCLw2ltHxIxFPty/dDgoF1qd1w1O7QWJn3empwa7r2lT7T5 ADjbC2Wue+qiD9PLDND+7oM2qh06INWzRg835+01Ki/vnCvAFeAKcAW4AlVQoEHz9pycHDMzs19/ /RUGcqSms+WHH36YNWvWsWPHGF6ovCYXL1589WlM2UbxjCU7Ozs1NRUZ8giQQWQ61rDBiIXKj02u Jr4wP3z48KX6AVR3cXH5/fffn+lE///dd99NnTrVy8tLrv/aeVktvB35PJy3187x4ltprAo8+8tE 9w+x7TmPif1loulAaKK71OtuRJoZ0+D3D11JOJ2Bs4EtFfD2wqKi5Z7HhblmM51C2d9V2TP9i30r PWuhawSizmtzb+1OXJbj7WzrwNrwomMweYV0CjYs+Y+LkDMvjg1ZLniJ3cF6MeMFBbxidfAW2qKT nILHtG3RU0yQyi5PozfY+HMLkMX+5EFWbmZuPhrigfqsOdtcgSSqHX2iE1QQB4ACqrFnvJWclZuT X5xRg82gJoYlrVy1Mve3V0033oorwBVo4grUJm/HBwwcPl06qiz6udOTSBrhItrRkaAOEA2HOb7A D+rV/PC6PtmBOqDcFMWH6rqs750XTCvDRp7hr7Xil05JhzXSfbVB3WmGTKjeAy+tcOP+m6Z1Gzmi dfs2ykLzLkJ7daHnW4L2SOHtCcIHU4VPZgqfzhE+nSt8Vtbj09nCxzOE9/4QXh8rDPpU6KortO4n KHRQ76X02387Wi7rGWc7KCsApnddano/MSzNR6sgWBfsfcmETsi0CdndH+vTfHUslvZATnvioSEq ysK0b9tigleX9b3ElBt45gtkGe8g81lHtX/5sl2v7l19fX1r7gzkvL3mtOU9cwW4AlwBrgBXoGoK NFzeDre2iYkJiDHC0sHbWWS6+Dx58mTMl1p5lztQzOzZs5csWQK/N8MFVdNTbFW6k9JrxMqVLxQU FBw9ehR7Z2xszKY9rUxb6ADYLmolJ9ePP/4YGhpaea0qs8XK1OG8vTIq8TpcgbpS4Go6WXmCfORG OpV2vG8nfazJ8mg6uWpqHhhrXY3xJbZbAW+HwftrE0+FeWYb/E+X7jH+XmpOfk3lyaRk53nGXS94 XKL/8ni7dGzSDxSxLBakNcUye1dShx22YjwurhcLYkMUpCvFslwh+VGuX/wNKf9nPaCaWFPaZ5XL nLdXWTrekCvAFWjKCtQabwdsNzTc006l+a65XYsiZSBdBp8ZVGfP6X46f45qq9lXsaWiMGVUh0w/ LXja8VastfrxvQOeROnRoHVAeJn7HWHsQPFXD2is+r2Tes8WrVSUhPb9Bc0vhBG/CB9OEz6aIXw0 vcTjw+l0fZkPuZp4+fF0SunfGC/0f1dBpVO7Norv6yo7rOyV6kPjbgDMMQzM2eqxue+nrysGbFfL j9BzXtf7vucQEql35cBgpebCwp/aB+xQe4TJWIHZQ/XO2Qwy1O+2YWrnY6YD0ANW5oXorvi1k2qH tjD819AZyHl7DQnLu+UKcAW4AlwBrkCVFWigvB0/3k+dOvXTTz+xaHSG3MUye2lgYAADfCWV2bx5 M5rD8j1hwoTg4ODqhQOVHMMLq+Hr6969e4HHMdQxY8YgoOaFTViFxMRE3AXAZGGXJKRaYQ3uCKjN WVzZqDhvr+Th49W4ArWvgGh6LygiKXnE8Sp57WDJnBmkuxsRJVPSzZJMD20AOTMV8HZMk/qpoZsw x+RnK384sOXUprBYlEPuvVd7mZGbP9LU+ycL34KSFvHK8PZX23L1t0YC/Ee73PSdI0rz9mrfGOft 1S4p75ArwBVoCgrUDm+HgcfR0VG1vfK6PzuzqHOKzUs/wvUOru51yWnQN++2htH9PR3FY3sHFgTD Oq7944etIoz705AZWc5Mhq92iFH/v/7XsWUrJUG5u6D2vvDeb9S7Dqe6lKuXBumVWSMyeUD7z+YI n8wS3hhHk2eaq6r3Vtoyo/slh8F5QZT8Y1+QM3POTt1yaXfThd3pyzC987aDFAThqzeVz1qpPw3T S/bQ+ntcJ0TN9+rcYuzH7WaMab9vcff8UGrvR6LOrO86dOvSCb6pmjjZOG+vCVV5n1wBrgBXgCvA FXgVBRoob8d3ue3bt4vQmBWkz2DI48ePv3HjeRJvBSoh1Rz4Gs0Zi/75559PnjxZQf06eQvOdsB2 jJMNcvTo0X/++WclITnmKhJ3UKqStFxDX/8q0Irz9grE4W9xBeqPAiJsvpJOZoUSPUfZ/Krg7Sxt BgVDIuwin3kQt2sk8RG80PVn7M9HUgFvByv+80CwMGtPq/lmK7yO383IFsNYnrd/VsJb9zJzMCfp Us/o3+0C/3aNPHDqSlLKI/EWIcw36ht/A/OZ+l+8KQX1KVm5IVdu7wyOtT1+iWW2AO8Ls40/2unq dOoKOnQ5m3AvIwvbEXl73J2HMMAfuXBjoXvU7w7BmMX1RFJyfmGxGV52HeDpvUc5cJWv9zv9p0Pw jENhu0Niz95OYakv2Mr5O6kHT1/d6H8aWfQp2bkIVJ/jHPHHgeBdQXEX76VRNv70aXpuvue56wvc jk22C9rkfwaTtCJjBsPAu+fupLjGXtsYEIP09bg7KTuCY/84EDLrUPiBk1fQoRjbnpyZM9LUS5hp NNrU69CZq9gX17PXHjzKYbsP9/7JG8k7gmIxD+xUx5DNAWeirt1D2gw7URBuE3X9nnnkhbVHTmDX bqRlWR6L/8sxbMbBMIeTV+5mZEk1ZAeB8/ZnJyP/P1eAK8AVeAkFaoG346PQ2samfWtFw3ldn8Kj XpzWXpq307SWGMuBmA7VZGG3hT91aN1Sob1KM/2x7aPMBlywU88N1ikK1c0O1HXb2GeEpnIrlVZC 79eFN38SPpomfDyTWtkZJ8fLykD1ytQpBu+wu8MtP0P4z5+C7jdCh/6dO7T4/eu25+0GMac6knDu uGuGGKo9idB7Gj40xkIdFwsM53VDkkymn87o9+i1gzHvt77lrklQIULPa0sf7AIzyQO8/zO5U5fO qjURLMN5+0v8S+BVuQJcAa4AV4ArUCsKNFDeDqf30qVLGSGXQmOxDCj9/fffI5L9hSqiK8TIoD7r jdHsadOmAc68sG1tVkAiPXO2s33EOIHcnZ2dS7OI0qOyt7eHdZ/toCiRtDBy5EjMOVu6YY2u4by9 RuXlnXMFqlcBkaJnFZJLaWT9KdLbWuJ4l9ndEfnexYJ84k6OJFXvxquhtwp4O/6K+l5I6rLMQphp qDDXRG+jk83xywg2L/Ova0TCnde3Oquvtt8aeMY97tpi92NdllsPWG3vce46qx957V7nxfuF2Sab /E5JuT1C0XU3HBCm75locxQx6Rv9TnVcbC7M3NN9mcWIrYfe3noI6fFA4thV8Haleaat/za1jIr/ YKdrj2UWPZdaYg2uCHRYbLErJFYMVMdGNdc7DlnnsNbn5OGYa6uPnOyy1KLtov3/BpxBDjuAOda3 mGeiumS/xbH4j3e5Dlhl02eFlZL+XmGWUeellphZNf5uKjbRd4X1gJU2rf7eCwU6LLbcH3WB7csi tyiFOSatF5j/ahPQd5X9kDV2qKYw17TZHBPtjY4nk5LZgVnjc6KNrG1fA6sR2w69/e/haQeC2TSs yIGf7hTSZbnNZNtA19jrmG71jS2HVBaa/2JzNC0nD1vBpYGvjD3A6gestD1w8pLWBqeeyy07LtrX DPs7x1hzneP5OylsMOJJwHm7KAUvcAW4AlyByitQ07wdf6uDg0PatW0z5wdVwHa40+Hrvn9Ey2l1 bwSeU4u7mCoTQgn8XU/NP0e1DjNSIzHDT+0fOKRPi2UTO4C0Pw3XywnUPWMxaOzHbQWFVkJnzWJD O8Ps1cjYy+PwjL0D7H8yRxg+RlDpoaKiuGFql7semiyFnkQNxd6Bt0fvVX9riBKi2hEsv25KF8D2 0SNUiiJ14YRHTcB5BLyPfFv5nI06iaRNcoJ1x37UtkePnrGxsZU/cJWpyXl7ZVTidbgCXAGuAFeA K1CbCjRQ3g77xK5du8CQGSeXomNWxnokw1Rm/tOrV6+OHTtW2g/Ko0aNQv9A8ZU8FnI0oNpbZWZm zp07lw1SHCoKuFJQmcwcf3//F/rbg4KCKjns6qrGeXt1KSn2AyKK+S4RAJL3mOQUEnDRjAKSlk/z QB7kkvs55E42uZVFbjwiiZk0AORqBrmSQS6n08eldHIxjcSnkQt4pJLzqeQcHikkLoXEppCzD+kz HniJlXgLFVANDzRBQzzQA+sK3V7LpD7nm1nkdja5m003/TCXBn2n55PMApJdSHIfk/wiOlqR4op7 wQv1XAHpIQNX/9yDdLciCvC6Sx3vO2nOjMk5cj2THuj6sFTA2zE8/A3fExpHkfusPfQxw2iCdcCJ G/dz8wulf97P3HrQ28Cm1wobGL/FndoXeV5lwd6Oi/eHX8U8sk+z8gsHr7EX5ppu8T8t8vansoz7 r4woWP7VNhAzk6I5wmSEOab6h8PFrliB8fYWc4x0NjhYHb+IuBv0E3nt7mtbDoHPt11gDt87asJe ru8cPmC17aX76WIP+49daKlv0t3A8uK9VKx0PHWl9YK9CrONtdY5eJ5LZP/efOITAbeB3PH89r+H dofGsQB5uNA11ztgE81mG199QPv0iLuuMNtImL0HlwNO3yym6wdOXlZbbSfMMIQON1MfQR9cm3h3 hyt2bXPJAHwMe4FrpDDLBOOEMmyQMLSP2O6M6xHTHUPzCguxcu6hUPj8W+mbvrb5oP8lmgCfXfB4 W2BMmwVmWD/Owh83ILC27JnzdqkavMwV4ApwBSqpQE3z9rNnz/bp3XPe2A50glTQ9WDdwF1qe+Z1 RfrKHv2uyZ6adKXkkROoY2vQA3OSwv6d4a+N5HZ4wpHifu2QxpTRHdq1VRJ6vS6MmETnP4XhvNjQ XjKnvTxgXi3rsUVqp5dtetgYoW2/Qb3g2+9OZ3eVpbLDoo8YmcBd/YrCht520+zZqfnwQUq4iADM zq4sgLpHGA1Y80cnhM9jDXW5h2H6VJ2fP2urra1769atSh64ylTjvL0yKvE6XAGuAFeAK8AVqE0F Gihvxw98GAMQ/CLC59LIff369bm51CsopSVy2uItsGhMJIrm0q5QRueVjKNBn9hQYGAgkHUlF4S3 IH9ezB+QG1Xplx4eHmx4coP87bffcARL15dbc+fOHUyxirbS5qJiWDlv3rz09OfERq55Db3kvL3y woJwZuZTSH76AZ2h0u06sb1EjM+RTWfonJWzw8jkQPKdD/nCg85u+b4LeceZvHGIDD9IdB2JpgMZ ZE8G2JK+NqSnFaWgmP6yvTmNBGllRlqa0QhuRVPSwoQi02aMmgKc7pE9kBOCx+5nD/YSz+xdZmk2 pg2bm9AeFE1ob+i27T7SwZx0tiDdLakLup8NGWhHNByI9gGi50STwN86TN51Jh+40jH/4EumBJO/ I8nak2R3HLG5RNyvk9A7JPYhScokGfmcyVf+TKmbmriIg0P27ZFn54+YM7ObnmkfuhHzeHoNqG6X Cng7+4wA5g2+cvszQw9lfTMZct/TbtH+8Rb+F0GzZagYkPx/+3yEuSYwjbMoFfHDZQKSYWYZj9h6 OCUrLz0nbxBwdEnezvb9iz1ujLcDICOz5UtjT2DnGU4h2LRUHJYn01LfLOJaiduskBvTftE+Ydru fVEXip48xRjW+pzwi39+LwHGc+Fuaq8VVm0W7ve9QOPU7E9eVvl7b5sF+45dL9HV/qh4pbnGLfTN AOSlmz52/Z7SPBMQ8r2R57HeOSZBYZZR+yUWZ29Twi8uZ289VKXmfKOpDoHYEQTRv7XNGS9Xex8X LzGgsnvstebzzPr+Y4MKeInhYUHB69z1Vn/vA9UPunwTL2cdpLy9y5L9COrBS3GBMR4HYuAah7uZ 2eJKFDhvl6rBy1wBrgBXoJIK1Chvv3fvno6OzmdvKOcE6zDajPlDl01qT04PQ9YKiRr2wFsL2JmS Z4bcZZ7w/Yt7eGzu89BbC+wa6Sv5QbpH/u3XrX1zQaWb8NZ4Gqhe7GmvRcxemtVT8D6DRrsP/kQQ VEaOaHnFSeOxbEeA0AHVH4cNPWOl3rmdwsE1PWF9R957dgD18wO8h+xWy5e5+jP9tCNN1J5GDEWT +96awwe1+Pjjj7OzS3y6VfI4llmN8/YyZeEruQJcAa4AV4ArUIcKNFDeDsVgPt+2bRuzbYvomGFz AGRMpQqXBftpX4G8qICZ4lkourQTlGGex8SpFbSVvpWXl7dlyxYkxiPEpjILhlf5zrGnK1asKBOV 46JAUtJz2CIdklhmIjg4OOCyQulOsAbrcbGg8vBf7PkVC02Ttz95Sv3ncHcz8zks33Ce38uhVvAT 9ylI3xNHDKLJn8Hkf0fIO4cpJwcYRzi2sFP2jAKj3+Wg7+JIbQY8G8Qzg/ZlEn7sLNvxnZTha9iT z9zJb4Hkn+PE/ALxu0kuppK7OSQ5lxr44Zx/JLPNQ16I/MxL+4onKW9eKQVExzsujkwLIar76RWc EnZ3Q3oEt5+l9ziUnBq0Uv1XS6UKeLu0/4KiIpPwc0PWOSrMMUK4CszeSGu5eJ96xc/cfNBhobmi vmlYwh25DxdEr7ecZ9J64f7AS7czcvKrhbfD740odenYQK37/2MlTDfcHngWiB4PONIz8wpYHQwJ y6kbyT1XWKksMPeCm/0Zb++4ZL/UkI/1iEzvsHCfyoJ94Qnw5D9fkFTTa7kV6PfWozFYy3h7x6WW 5+4+9/NjK3gLqThwyKuvdUCQO8ZQJm//D3zs0w0xiarc50teYVH/lTbCNMMJVgHoivF2tRU2NNRd suyLuKCob8Zc9JLVnLdLxeBlrgBXgCtQWQVqjrfjZtuJEye+odHirocG0mBY6Er2UZ2fPmvruaXv pQMaftv77ZrbdfUfnY9s7ZsbDLM3HOB6YO+A7WYLe+QEIa0dtvYhk75op9SmnTDoo+Kc9tr3tJeG 7WwNGwmc9iN+Ebrp9urcEgH11OhOA+p14Vq/YD94YE/FwlAdMPaHPtr6Y1WvH9ZA+UkYtbXjcc5m kFa/FofX9gafl020qq7eS1Ff/2+5z8fKHstS9ThvLyUJX8EV4ApwBbgCXIE6VqDh8nYIh5QVGxub X375hWF2BszByRctWnT69Gn2BYaRgfJUxrsuLi7l5dJYW1tX3Jx1y+rgqyYiaICvX7j88MMPPj4+ jx9Tu2dl+s/Kypo9ezbrVu6iQCUzc7ChwsJCzJqKKVbl+pk+fbqfn1/lB1OeklVY37h5O+YbRIgK 0lcCbxHHq9S2veI4RZFj/chXntSCPsyJqNtR+3ebfbJ5JxlblrJ0qYccOLom4bkCrOmmpKUpZfvM mg4PfFeZO72XNTXGq9lSjzqc6swhj4xuVICDvd0+On6gVGWY5GUO+eeUtRoHzJi8nOWeKWZIHfWd LOgIYeaHZx7y/uxP9CPIvzHE/jK9HQBBN4+KkWQVzlPepLIKiNQdWUb+N+ltFziFnp+3OIi76amC A7TvQh0ckcrwdvEP8sOs3E0BZxC30myWkTBjz0e7XB/lFaz3Pdl8nimy2W+kZoo1mTpXktN7GVgh 2HxXcExmbkH18fbnlBsbQhKLxmpbjGd7EOXtGAP9TxaBnplXGHProXHouU93uyOIpvXCF/D240n3 O8p4O64dSA8wPjcpCZ9tvK183s7qG4bGImqm3SLz0zeSIU5p3p7wIKO7AaD6LrsTl6SbYOXvzX2A 6+FpR858ebyd5urom/VeYYvUGmkP3N8uVYOXuQJcAa5AJRWoId6OD47du3ertBDiEAgjCzan/nbZ 4+DqXs0VEGpeYtkyoxuJHso88CDSCDYHjo63G6ytpii0VBXemURnRKWW8jr1tJe5dZG6a33RTEHx z1Ht4eHHLuD6Qpa/9n/fbnXfYwh2x3F1nxbNBd3+Ssh7Zy73C/bq2v1aKCsKX77Z6tpByuFJpF7A TrWWigKm4qrk4au4GuftFevD3+UKcAW4AlwBrkDtK9BweTsgA+QCKL506ZKZmdmCBQvmzJmzevVq RK+kpJRgFBWrGhERAUe6lNgzpg0ubWpqWknXARsMUmUwgNJdSSE5Jjk9ePAgq1/xwMR3MzIyMH8r xiPth20F/DwtLU2sWV6BbQ77AjM8LiIsW7YMAH/58uWOjo64/ZPt40sNqbwNvdT6WubtCJH2pfkK r7rgvIN9GsHjsOmiTzjVcx6TK+nEI5FsjSFTQ8hHrqSHlSyGhVnQ5bB5lcg5Yl6AxIszW0wpYcZD WZYGA4CJBwA40lpAm0d5UdoMe/z8CEr4t5whRudoQovLNWoIj7pLM9gRqZ2cQ3IRnEz/DVX/AonA txHbfjmNBuAgGcY7kThdJfvjyc5Ysu4UWXKMzAqlGTjUw+9MrzsgdQR7gXAb7BTbOxZxg13GjtOU GzwqLx3j83iWIPo2e8mbh8ikADrRJ9RA7DyOHUJO4IfH0cQxFXFx9SvSxHqEkkxMPO84Szrvp6cu PXziEdxDVMzIrlg6ywC9GaFWlsrwdnEg7O8hctF1MMPpTMP2SyxP3Uz+3f4oQLTaCuvkzBzpH0zs JjzeWusdESlj4BFdXXkyMn97ic+y7JK8HaOFHR2bNo+ic6F2WmwxfJPTQpeIrsssX+hvr4C3q1WO tx84eUVxroniPNOIhLtl8nZE03RYYoGYd4/Ya6KwYmGRWyTEBLFPfpTDebsoCy9wBbgCXIGaU6Am eDs+DeHb6dCulfHf3Z9GUrM3Jg91WNkT7P0xjNwReu6b+o79pO3Id1r/Mar9+j+7rpvadWDPFlGm /ZEegzlGgaOzA3XNl/Tsoqok9Hxd+PCv+gvbRQIP6o5smbcnCK17fzhU5fT+geDneCQ4DV4/VXXb rK5tWgn/Gdoq4eDgDD+tvGCo0buHqkKvLs0Pr++V5qf997j2zPpeEKq78rdO3bp1hUlM+qWiaicA 5+1V04234gpwBbgCXAGuQM0p0HB5OzQRv5ygANb96NEj4He2Es/A1KmpqWKd8jSEAnCJy7m+Gdm2 t7d/YXOxW1bz5s2bQNmA6qXxOOvT2Ng4P784yVZsW3EB4X64lFC6Q6zZvHlzQcGLnbvIb2dR9tgQ xon0G2iFZ3HvxELFI6ned2uNtwOowueMMHPQ15ddQNKQgBGfSoJvkwNXKC5eeoz8HkRGetGAdFi+ VaRhL3Cns2xzKVp8oc3biHJmGN2Rl4JUc5ZnDhYNe/CyaLLhFPXGW14khxLo9YKIu3TqUuD921l0 YNWSic3Q6MsqUxP1ESaBWBjsGuZdPfOAhN8hPjfI4QRifYkYxtF09/mRVHwk1X/sRg8oPO3w2BfT +EroTPE7DhAOE4upMaTXKXCjwUhv8lcwWX2SXhGAyOdTeGh8NRxe6XkFVaeH0JP8OXLHv5Hd9P4I BAR5J9FLHjW9VMDbYRWXpo6zkbC/iogxV5xr3PLvfUfOJ021DxbmmPRYtv9ORrbc38y7Gdm6G53A 2//xiq7WPJmKeDtmKd0TGjtgtcPA1fYb/U8jUx17kfAwo98q21rg7fYnLoG3t5xvBq5eHm/vuBS8 ffehM1dLH9wVnseQXd9izh4k3nPeXlofvoYrwBXgClS7AjXB2+FxeuvNtyZ81oocHwp4jmQV3+39 hg5oMe+H9metBiI4BSD66TG9J7IHGPvTyKHum/qsm6IKHzgNYwnT+3dmN0FQELS+pBAbTLt+OttF 2M5GyAaJqwNdh/Tt0uy0xUDsFxz7WYE6O+Z0/urNloDtRWG62Duj+T1g7u/SoXmM5QCk02cEaG+f 1fXj4a2RuoME+Nwg3U+HK33x5X9xG/IrHm7O219RQN6cK8AV4ApwBbgC1a5Ag+btUINBDzyLC9za mOfU3d0dc4DCcYH1LxRt7969IORy7nGEumPy0wqaM8JfuvMrV64gnr00Hh81apS+vj6uAsj1iQEn JyfLrZR2i4sIBgYGZXZ44sQJac3yyhs2bFi7di0S42GGZxvCMyugiVgor3kNra8d3p6WR0Y4P/PW 7iDpeS/YG7jWTyfTePBZYTT1pe1einPZo0QyBiPq4vMLYa/Mnt3Hms4QCpa+Egnk8dRwfiGVZBVQ i6/4wAkrfVTWgv7i0/wFO17/35bKIsqFAg4ZplWFi97mIll7ijrY3zgoC73H0an4uIiHjxWeVWYA v5sl+a8XvUfAK5FOVsuXV1SA/SXGFQ0kERVTd4n+PSyJ67Wa9bpXwNsRP56QXPaE0QHxN1rPN221 YJ/3haR1vqdazDNtPd8MWehyfzaTUjMHrrFD2szeiPPobdBqe8yXutn/tBzGf6n5Uiv2t+MvN2Z3 bbfQHLZ2pLiL44m/l9p3pU0t8PZdQWebzTbqutwKM7SWmd+OjJ0eK2yEv3ZtD6RR8HLLVIdgerPA P9ZYz3m7nDj8JVeAK8AVqAkFqp234xfK3LlzB/cUUny0EUuOWJiLDoMpS48emn1U954sTQWOd6x/ 6KUdado/2VPr4REti2U9IozVSIRemo/23LGqgtBGGPY/4dPZlLTXf9gugnc2VETf9Hu7Y7sWB9f0 gV8de0pODCPH9HKP6iZ7aM39EXsnfPGWyuwx7dZP7eK1pfddT80dszsnOtNIGaTQgLpfcRrSu4sC ZgF7xSPOefsrCsibcwW4AlwBrgBXoNoVaOi8nQkCVwCs7LGxsXZ2dkuXLsUsoohkR0w60DercPv2 7QsXLohEQpSRrUHbqVOnygHtcePGJSQkoGbpVqw5Wq1ZswZpNpjPVOyQFfz9/X/88UcW+cIwPjr/ 448/bt26JVcT7nRPT0/k4citl3uJSV3RAxaxN9D7nTt3lt40a4gvwGFhYaJZArkxEATL77//DvCO LUIZWNxZkozctmrtZU3z9muZZHHUs0QRhlJ3Ec9Eun+YovRcCgm4Rewu05TvGaGUrGofIIgcEXY8 m5kULmjYoStmtrJ34dGF0X2oE/nIjYzxIb8FkQVRNFsGKS6wZyNQ5VYWTZ6pYGEosoIK/K3yFKhI OqR8YBbaZDoLrfE5Ogvt1GDygy/51J1643HIkGBT0fHFwWVmeMxUu4M6sXH3wS9H6R0HOG1CbpOr GTQOpaIBlDfoJrkeQolauV8n4/3pzQXP9YfaO+kNC5D3PJ2btPqXCnj7g6xcZLOnZpdxWeXgmavK c026LLPCZKnHEu+pLjJXmGeKXHG5z4Xgy7faLdjbZZklpitFyvqwzU7CXJP5zuHIe5HuiRxv/8rE C9WmO4YgjF1aDf0rzzN9EW8nv9lixlLjb8y88wofi81rjbdPsAkAMP/E0B159Xi8vd0Fc8uu8o7G zQJsMI+fPHkf86XOMPzSyLOg5ESouIz4OiSabmjgGY3KnLeLh48XuAJcAa5AzSlQvbwdn4Nubu5t WzV33dgb9Jglw3z3QZsFP6kiUibORt3WoBcM3uDtj/y1c4/qwPfev3vzKaPaHt83ADHvsHb/9U0H oUV74d16HNgu0vUyC8VXB2YImp+2UW52eF0fcmwo9hePg2t6DR+opNBMmPylSmaQjsEvHawMehZF 6GUF6CBhhhr7ab49Re5wuZsu6KbaoUNUVNSrHHrO219FPd6WK8AV4ApwBbgCNaFA4+DtsHkjxQWY HaZ00aaOeVThG2eiBQQEgGlXgJfhhAeflwJtTCSKIJfyNMeXTEyQClPH5MmT4aWXprWgCRJjkI4u 9oYhYWCYrpQNQAQ1EB9TrGK7CK4pb0NsPcg/QualHSK5HfiovFYYD647iDn2oaGhLKMeIwF1R3nS pEmLFy+G2b68Hmphfc3xdmC93bEyeA6IJ0PixT5nI9LfloarY4pPRLggIZw6mVkd6fMzn7O8O9qI 1le3J994U5JvdZFE3aOTomYWkOxCGgbOksBFqFhawwreKl2Zr3kVBcqW+ikB/sRhwsHCIcvIJ+dS ie0l8nck+cSNdBR916VPAOnpITsNEDKPKCFAeGTCz4ugoTf3yv1r8Sr70djaiscFBwL6Y34BzNL7 /B+pTGdo+6UnSSoxQ2Y16FABb0/NyftghzMmIS39GTHJGpntpt/t887OLwBIH2V6RJi1Z5yF36O8 EnB+llOIMNfsD7sgoG+w5e/3+6Lam1sOJaUV7wb7s/+Zoasw0+hX20BUA44eZ+mPTJVxFr65BSVu JK8kbx+zzxu8/cMdLhm5+ax/2Oljbj2oBX87ZoxVRTb7bGOXs9fop2FB4ce73YHWZx8MK5RcYjh0 +qqi/l5w+OOJ+Cx+fhNO1PW7bRft77bM8tpD+hnEeXs1nN+8C64AV4Ar8CIFqpe3P3z48J133vn5 s7Z08lOaxK7rvaXvG0NawdE9ckSri4c0ECmz8KeO9z21Mv11LJZ2g93dd1ufqwcHoz6c7dO/7SgI HYW3fxY+qa+zo5bJ2EuvBHVHEo7Gp4otFA+u6c1C6fOCdaDMpC/aImYnyVnjmKkafO9g7DDAQyiZ XPQKBXvkBOl+PKzV1/8dJf6cfNGRLON9ztvLEIWv4gpwBbgCXAGuQJ0q0Dh4e3p6OmzbDEfjmS0z ZsyAhRvqggasWrUKDnaRP8tJjgowhJubm3/33Xcg0mg+cuTIw4cPI30FpNrS0hJvIVsGhnZpQ0B1 MG0E0YBgY7ZWeNoR3g5Ej65QDb73iRMnspGgzsKFC/ElCjAHnnNQ7qtXr8KKD8c7qwAUz2gJ6x9l dIUJ63GNACg+Li4O3a5fv55VxjMC548dOyZtIh0Y2zp2xMfHh60/e/Ys7Pps11gn2FOY3kUDvFzz 2nlZE7wdKdCBt8jbh2UedbC78sBp6fVYI6vfdh/pa0P0nGjwyzdHqPUdTnXna9SmjmgavjRuBQqf UHM1DvfG0/Q+ha+9nk/nWnxdRu7MwTmDmyBwK4TMA9/RnDZBDjwc9dH3yY1HlO2LhLlxS/cqe7cn jv5za427S8R/s1B1Jw3qR/A7sHy1LBXw9kd5hf818eqy3GZLwJnrDzOQjoLHnfTsLQGn2y/e/9Fu N4SiszFEXLursfaA8nyzf4+effAoNzu/MC0nzyr6YudlVp8aumPqUlTDX2an01e6ILp8ltGYvUeO XEhC3ovT6asm4XFfGnkAsMORnikj5GYR59v8vbfXCmvv84lg5khBv52ejfa28Lfrm8n87Q+l+47N DV5lK8zYsz3wLNabhp9X+Xuvkr7ZRr/Tp288wBSoO4NjdwadHbjGHoHzzjF0llK7E5dUFuzruGQ/ MnCkXUUn3eu40ByxM2EJd6Tr4bTvR+dLNdl69AzWO8ckKMwyUl1qGXTldlp2HgYAZWD1f3ubMzJ2 /vE+IZ7fG3xPKOnv7bPSNuzqbep4lwmIHmYeDFH+2+zNrYdjbz/Myi9EDxfvpX1h5KG61MLyWDwz wzPe3m+FtdSoj7a2xy8qzTfrtcLmZhoVVlw+//xzsVzJgqamZiVr8mpcAa4AV6CxKlC9vH3btm39 uwmpvlpIkmFu7dxA3Zwgne2zuykoNOvcrvl3/2kdZzM4xFAt3U87zGjAJ8Nb5dPEFd38EL3541UF xQ7Cu78IH81oSBkypWE7W8OM7pqfq7ZudmRrX7j3kWOf6qe98a/O2Pf8cMwhS53toOswtMs87c9h O/g8BLzsOLhHJ0UHhwNVPvc4b6+ydLwhV4ArwBXgCnAFakiBxsHbIQ52BOnogMmgygwsY47RrCz6 Ix1JMmPHjsVKBJiXyahRDSgedB0IGjkwwOMwroOf4xnmc1l//8N6dIhkePFAgKsjbY9tEcgdNZHW AvC+Y8cOa2trZLbMnz+fwW10iJouLi7g9iigH9jL0YT1DPQdHh4udotCSEgIumJefVRDGvy6devQ IZg5OoSz/eTJk4D/GDObelXalpVNTExwyQCXGHAlAmsuXrwojZTHW//++y8zUZQpSOkOa2JNtfN2 BMi860yam0ionRwdLfUSlYc4kHF+dC5Ol2t0XlRkvyBtBpb18hJgOD6tiZOhzvvEYS19ZBGMASc8 5qW9nU1iHhKz83S2VuQOPcfC0jMKrJg9ZDFECKvpbEHvp/jRlxido6cWX0orIGqOf26X0qm8z0Oc ZGK2MCG9rWkckFizdCeVXFMBby968hSTfsJ2Pnido96GA9/t9Z5g6f/GloP9V9vPcAq9kVrCah96 9faHu9y7G9h8bug+91DYaBOv/mvsJ9kGJjx4frsQqDW4t9pqe8V5pm0Xmvf8x3b4VmefCzeWex5r vcBcc/0BbA7DBmP/60Bwp6VW3ZbuH23i/adDsMPJy0DQu0NigbgRYhOWUOImpqTUrMFr7JUXmK86 cgIuejQfbxXQesFe8P8uS/cPXOswzjLg5I377+9yB4ff4HcKdYzD4jots+y6zCq8ZFc+55O6LbPq tNwalwOkzvN7mdl9V1i3XmwBlo5PB8bbcTXBOjp+jLkv9vcnS7/+q+36r7H7NyAGtnbsBTs0AOm4 F6D9YouuS8zH7DsyzSkEbSEsrkfou0T2/sd2yFqHqQ6BUw8Ea69zGLbl0CG8+8wJ/4t1QOuF+/v8 Y538KEc8mtj6ntC4jkss+66yQ0iOuB4FztulavAyV4ArwBWopALVyNsvX77cvq2KoX63p1F6yEXJ OaobbdafOrdDdMnxYb7b+mr0aaHSUtj0VxekqTyNHOa6vo/BL50RO5MbrLt1ZndBaCW8OV74eFZj gO0icofLXf0/3Ts1P2ulTqdDDdOLtxv07fstN0/varei530vTdHQzmJkil/K8mdQ2eDXTmpq/eTM XZU8sqjGeXvlteI1uQJcAa4AV4ArUDsKNBreDrmio6NFqgwuPW3aNDjJEZDOnOEs8JyZz5m2+DmP XHfY1wHqwbdnzpyJRPRff/0VbZFFM378eBQYEkeBlRH/InrCYVaH/5ytl71PK6MAQg5UjgUF8V28 BFfHM6sprkcB1wKQPI8hMfR9//59DAaInvUm1sfAWCbMihUrAO3B0qdMmQKDPdJscL2AtWX7hZd4 izV0dXXFOM+cOYOtiBuFMixpR9qKta3N52rk7drvfLL73DPaKUWgpcoA7KO9yfpTxCORJGaWsbuv jvXK6JSvauAKlD4rYIO3uEimh5L3XCiBx0y4NPy/1PlGCTwzwO8gCsbkYzc6oyumdr2cTm+XKN1t A9epGoaPgKZJR0kfG1nWE9MTGu4kmFAVsfl3yg/tgZjPgsPLHkYFvF1sAIv4poAz4N6TbI6u9D4R fq0Yd4t/KlkhOSvHOvoSXNkTrAP0ncM9zyWyEBX2Lp5ZAYh7mUfUdMfgLUdPn5fZyxNTH20OOBN4 6VZGbgHbaP7jogMnr8w9HD7FPggxMsh7R1t0CO863O8wxotx6Kh/7m7Kvsh4k/Bzrmev5xbQG6nu ZeTsCIqZfiBkkVuUy9kEFhd/+EyCUVhcYsqjwqKigIu3TMLOGYefA+FH3+KeRly/axZxwTT8XHTS fekmYm4+MI04j627nr1W+LhI9Lefv5u23u/kROuAybZHN/ufOXu72HjP9pQ9FxQ9sT5+cfbB0Cn2 gQ6nEHEvbo3ARb/qSDRU/dUmACZ88RIGGgLaHzh9BYM0Cjt/OTlN/FcBIXwv3MAIjcPOUXO+pDfO 258ry0tcAa4AV6DSClQXb8/Ly5s4cZLeAMWso9oA7EXhelZLe76v1zLBSQNlrIFh+6bLkAmft0W2 zDtarQ6s6rXmj46Pw+j6A6t6t1RWEoaNkTnbpwsUVk+TPbNyw32WTfYKo3vv17X7NU84qAGcDup+ 3naw15a+yGyXTZCqS9NmANjD9B54ap61GhRnMyjNVxuwHZVvuw7p3VlxwYKF+OFW6UP6vCLn7c+1 4CWuAFeAK8AV4ArUDwUaB28v/rFfUGBoaMgoN9gygPmdO3e8vb1hTWfwGUQdYYNMeDSB7/2vv/5i FJpxdbRlBfGZNWQvUZ41axZzjKMT9HDw4EGxJgpyldkasa10Q9KauEZw7Rq98Z/1ieAaMdamzLZs pfiMysjSycx8zo4jIyPFHn777Td0jrwaoH40wXYB7RGSwzZXt8/VyNt7j135kXvJPIrS5FO2Bpnb iOyWLlIoJF3Py1yBMhUofcIgCh4c+EIqOZJEDI6TT9yJSpkzsTL2Dvy+h3QwJ+p2FL+vO0WTZ5CD xBcoIGoL6n7gCtFxlF2tEKn7HtLLmk56iztQSi/wSiMNXkKU5atUzNvZhwhrgzJgr9heUhTXFVeU znNasofnNaU0+/la2SeI2AQFaVlaDWX2lljh2bvPm0hH++xd2f+f70TxatoGS4lK9AVbXfodxts7 LrU8f5fG0WBD0m1J64tl1hXbAr1rRLI1tJW+ZGXJ+6xRuc9iW87by9WIv8EV4ApwBcpXoLp4O2Iq u3dV9dzcmyW3I5j9jUHKcLN3adcMc6Sm+9PgFOBlsPdlE1VbtxQG9WqRFahNIobG22l079xCGPxZ s/f/6DFQrdsALeXXvhHenyJ82HAx+3Q6eGD296coIB7nP1PptYMOaj9+1CY/jOa0PwnTQ7wMzdth pD0EVyI0V0zu1ENVARcjmgnCWxqKvlv74WLE0wg9swXde/VWQ6Zo+cew3Hc4by9XGv4GV4ArwBXg CnAF6kiBxsHbRfFg24bxm9FsEGZjY2N4xUVqDQIfExPDKsPovnHjRtQU+TxrhWexPisDUKMh85Yj cR3QRtycr68v49hiE4BuIG446hFNY2BgwPrEu7gQgJAZ2NExqavoe2etkC0j9gme4OHhwWg5LhMg QAZlNgyxK7RiZfEZHYaFhbFRwRRhamrKemY1EWuzevVqtga2eUTZl5dCI+5X7RSqkbfraQ9hY76Y RrM7xviQgXakmyWdF7V4RtRn+F3BhPg8zwSqnR3lW2kSCshhQ+D3nbFkpBcZYEu6WtKLQXKnIjXD g8AbEmEXtb7jtov98dT3DtScQ53LTXoRxXS4QgbaEmVcv3j2T5jdL7DyOA35kdL1NSeJsJ3mvZe3 VMzby2vVxNeLvB3W+vojBeft9edY8JFwBbgCDUiBauHtRUVFuAt49AhlmlIum/Ez9YhWmp+W3w61 D4YqKTQT3tJs5bWlD3V0g7pH6u2Y0y1gpxrY+//ZOwvwKK63i0+y7psAIRB33xAsLiR4cIIkARLi jrtri0Nwp2hxt+JaSimV/0cLNSiUAsXdud+ZnTAsSQgECSG98+yzz93ZO3funJmN/Obsef9e56Zz kDBmnnC2G1dr3rWRdHlX5eC2ioialaTuYXmk+pPzugO2+8fJXAMaBVdMa6RmKnkztTKZwHhGVq5H WxMgdJB2/QMOdljcvfdMtnWyFIK0+3uIp3evdGSm/f4pdpnNtcfm2pOvvW/u8AzylPbq1fstLirK 299CNLoJVYAqQBWgClAFPqgCZYy3QyuEtPNRMByp5rAznkGbwaI5Pe/evQu7O/cW342D0vwzImgA q3ft2oWKpfDJw9wOP7xhsB6KlvKWeAyOnBbQctgSOKCNpBqs5AY/duwY9oukF0Spz5492zD3BncE DF3327dvB2MHsT948CByZlC2lT8cfmL5GpgnAtu540KJWMyZ68ABebS5Bp4RSsO5JnijILfVR3l+ j7zdy8ur4CFcuEOO/0s2n2ZrX7bcRmy5hIqpbBY0XagCJaYAmPDft8nRS2yBgAHfsJ52RLvnT4Dn Y2emksoL2IK/SDL/8rfCjdwlNvNSsiMY1/f8Tdp+ZXDDQn+fotxcEvMV+fkaO83fbrD3LKAqnlf9 XvjEKW8vXJci11LeXqQ89E2qAFWAKvApKfBeePv33/8gFTFbx9ogHAbJ7Zc3eyI65tEer6cHWUP7 yJQKFbRGsG3ntNRe2Oh+d5fXySVOeuys6xNryshN8gLbg5IqVqo4O1Ozob/J+r4mQ1uLzK1tBL7R eUZ3rvwol4teCp8xvTxPe4rcq25Nd82MJMn2weVGxEiZitWYWhmsxV3XTC0X7J5k+2Rfnrkddx8u bfJwtjRWypiB8aZP9nvpvx3A5sz8tcZ1aIIp+bYKJJ3fx6KcqfbCBbbIS7EWytuLJRftTBWgClAF qAJUgRJQoOzxdoQKIuGco9x4Bg8HvuYs5aDf6enpHAwHbwc/B4vGW/BpIMIdmef5zOqg4oYFUoFr EJwOZs6fl59//pmj2Rhk0KBB+OvIMHMPhVM53o7nHTt28FvBGXL06FE+Yh3Y3zAN5ptvvsFeuGKm 3CbIYDd0uWOPqM2akZGRk5MDAzxegrfz9xF+/fVXTJufFTbk2njGAtc9P42P3vjQvB0HyLtkuYO9 +YCs/J1NbqcLVeDjKrD3PMnaT6wXEtVsIp6hN2+DIfMWbt76nsuyd9Rp/ecOuf2IjZ3Jd0l/3KMo mb3zhwyoDjUknFycVhBtEsncRxJ2vbiFYTKX/PVSgdO8aVLe/hbni+ftXJ7MW4zwITah/vYPoSod kypAFSjzCrw7b8f/UK1btwnwEN/f7cnatvfperTV9GlnenC63UN9RDlM778sdUptqpWJGRszQb/2 5WB0B2/fNs5WJFMwNaJZ+zd4dUiawMyxta9gbLxqVW+T+TnqWWmyjhEqlYOO8e1Q2kPdAduDU2Re 9cP9K4/tINvQV7Ohn+kXOWpHJ0sm+HkWPQ7TLqCqo+jqNndEykAr3IyYkG2mVRjtmGBDvvHOi3PX a/jrl86NAmRXt3rAA39pk7urlTgnp1Nxr0bK24urGO1PFaAKUAWoAlSBD61AGePtnG0b4SpceVDw dsTLbN26de7cud27d0cmTGRkJGc15/JkwMlR8/TcuXPA71euXAHZNqwrihCYfD5wwHbQcv6kIB8e 6BvDzps3786dvEp+/CY9evTABLA0bNgQHfituAZI/sCBA8HA+/XrZ0jXMRPcMjDsfO3aNT5nHqPh NsF3330HHzsWRNAjowaD8HkySK0Bfgdyx+Cg61j4+Hrca8AxYmR+hoZ7Kfl2CfB2w4PiqZ1eAcN3 aJsqUHIKGF6H2OuFuwTsfcb/sbHkVVcQ4fQX3DgvcIYrtzqFOC0hLbaSkd+x5VYf/PcCZ3jdjl8m XQ4S9WwDoZDJgwd/t0If8/77jfznlPL2/Iq8wes5h06IOk037bPgyOlie+3eYPi37EJ5+1sKRzej ClAF/tsKvDtv//nnXypXqrh8aCU2k3yf149fOA5LKkd+8EEWClsG9PkDL3dOtLMoZ7x2hBVqhl7Z 5G5rJmSsqulrpOqJdEiasLzDpARZlK94VAcVXO5TUtTT01TTUuRO1ipG15QJ1bvES53RHc72DATI mNs7DW8rXN1LMytdvb6v6YpeJvWqiBj3ekxEdp6BH0w+JIVRV+4ZrSVHqujDZHSJkYqcFibkEB/n zpZJxX2K0WnlB8SbXtvqjpd6LF/e1s6luBZ3ytv/2x9uevRUAaoAVYAqUBoVKGO8nZMYLB0QW4+6 2fKgR44cwRrwcES1IIB94sSJcKGDOSP7BVDakHU/evRo7NixfAjMxo0bDdG0YZvb0Y0bN2JjY5EP w3nmDTuAzCOYHSQc08CASFA3PP1cT6TNd+7cGdExmB73Lj8C38B64HfcLOAPB9VODd8FRILXHeSf 6wkyDwJ//PhxHBduDcyZMwf3FDANQHigeGxouK3hlEq+XcK8veQPkO6RKvAmCvAkGZ3hYEccStMt LHhHrYE85M6TZM73PoVNVmmznRw4zwaY42E4wpvs8ZPuwx3s7Yek+RYDxm4okb7tsYzcevjSgVLe /pIcb/Zizfd/9N9wZOCmb46f/bf0XGeUt7/Z2aO9qAJUAarASwq8I2/HfxBjxozR2Rsj9gT27Ad7 vLq2MXW1EgyML//TQie8BFV+tJcNKgd7B3Lfk2tza4fHg71e/ePKMQozlj9z4TBg0WhUa1vdSbWk iyatjiS1jnRRZ+3MDFWflvIOIeIoP7GFswtTvU1e/1ISKYNpBySInfxbBWsWZMnnZKnnZWnW9NZO SlK19BXV8hQbV4tiw2Ty7hHoM2d0TWVS472TkSrDgvTZvczHZJYnbKg7S9qRxoPnG9s9Ti1zIt9U ybPB70fsjLuNufiLhYteOnmve0F5++sUou9TBagCVAGqAFWgpBUoe7yd48kwfqMyKce6gaBxmJyy aACzc/kt8Ifz6/Eut+Hvv//OGcLBqGEOL5pOY5wFCxbAkc5vzp+/nTt3YgQsHCePj4/nQ9q5PtzI cLljL+D8/IYFGxgfcTfcsYDPc4E2hhPDIByx/+2331DClb+DAOrOBc4A+CNbHj75goN/xDWUt39E 8emuS6EC+bD50Ysk90cSt5PoviQihKgYBs7oA8yZiUQ5iy20Ouo4a3q/958xvfNCoT5ynQ0vK8OD 98mk2Rby6MW3kQjl7cW75vW/Y548farf6tkT9h71s+KN8MF6U97+waSlA1MFqAJlWYF35O1wLjk5 OU7tbKYPHtchnr1zlKqGk0ggYCRiJr2Z5o+VLo8P6knyPjZB5el+PHR/LnepaGrMVI1iwrOes2jw drjcM5iqLUM95Kt6mQyLVvg7Gg9pK5+ZrokPk27obzovS+VhKTRyqMV2Kx1FVI2qRVvbmkXVNJ6b qR7aVr6yp3ZdX5O+UYp63oIlXTV+7hrGP4E9QENPPlJlLLybB8oe4Q6FHq1nt1T9s9Ht0f4XKgG5 P93v/fgAnkHgcc9C9/Sg98C48n5+gcW6FilvL5ZctDNVgCpAFaAKUAVKQIGyyttBsIcPH86xbkDv qVOn8iEtcH1zKessPigAEACuwca5Dfv372+Yx17wdGCohw9ZD2W+cbB3OOcxiJ64s8gdyfAg8Pm6 cRtihILrDfeFCqewymMQhOHAWGL4FrchnrkGf2joA+89AmS4OYC34y6D4YaloU15e2k4C3QOpVAB wx9LsK/D9P7vPTLlJ1JtRQFHN8C7nsPDDC+bQRJ3kx8vl8IDev9TgkR4PHpKwte/grdDlimsB55f KG/npXiTBsvWDS9E/TbcL5o32fyD9qG8/YPKSwenClAFyqoC78jbV65cVV7F/LnKFQ52WNzn9jJf M9z66QGv9Z9bNQ1WqmSMWs6kNNLuzrUDir+wwRUA+eFer6RGGkbj/DJs1/vbQ9ON/GI97JUNvAXT UtSzMtRtAkTNaggDnIVLu2mRiL6qt7ZdoFjpUO2FMf5jGd0DE028gmKDZWt6qpLrSNPqSpE5PyFR GRcqzqgvW9xZ06CqiKlU08Dczh2gPjknIF4kU20ba40EHoh2do3L9G4Vt42zRgD+w726M6tdlw6y 7BFdPqO56eepFY/Pd9Tjd93ROQ7lteLDhw+/+aVIefuba0V7UgWoAlQBqgBVoGQUKHu8Hbrp8fOz AwcO8CnusKzD+A0c/VpVYSaPi4sDpuZI9d69e1+F3HnywDf4wb/++mvOWM7xds7ljvKmFy9e5Ptw 8zR8WWgb6H7cuHHcOODtuIlQcHfchobrcXNh0qRJXJIMDiQ5ORnZNW+4x0Kn8SFWUt7+IVSlY5Y9 BQypJ3JU1v1JOh0gtdaRCvNeRs2c6X0CMZvPgvelv5Ifr7BEugwvX19ko3VeJLcXbE8ln32XJwDl 7WXmSqC8vcycSnogVAGqQEkq8C68He6gOnXr1a8pe3KAzWlHngyg8eCOprd2sib2Rwe8Tix2Smqk FAmNpGLG00788xInoGPUUWWEYqZaazYZxtD4zb5MN6rWsmMt6Red1bXchMNiFMu6aVsHiMI8hAm1 RCt7aZd21cxIU4+MlaosHJjg1Pyblxh7921vZ1tpSpIcJvZl3bUdgsULOmmaVRc1rCJc2Fk7pqOy SQ1hXW8R4xmlt+LrSfuLuent7ja+nrYSiAZB8GArpR5gy6d+OcTSorxAKGDEQqac2ri6k8jJUrTh M0tg+ZtfeVRzksTFxb/55UF5+5trRXtSBagCVAGqAFWgZBQok7ydkw65K5mZmRw2xzOC3JHfbgil C1UYYe8cHscmWBBK89VXX70KuRc6wo8//sjZ0blxOFSOoWAy79atG7j3a+fAD4tkGENsjhGQP58P 2vOdDRvw8/OwHVuhJiwfEW/Y7eO2KW//uPrTvX9yChiC9wdPyI2HZPtfbGoKa3HXu9zzyLP+JUC0 fBaxW0RGf58/yfyTO/BXTdh5CWtiL5q3o8Pkn9gBKG9/lYyf3HrK2z+5U0YnTBWgCpQGBd6Ft/9y 8mRFs3JfDqmsL/epu77VAwntt3Z4/r3OBXwYMPnZQR351ud/ixxa1VI1DVIAy9/b5dmutooxtWer iL5A0HnmdjYlJiTNyEKXWV82LVVVw14YHSge3FbRqKpoVoYmra7ki84scp+XpZ6cKLN3dWAC4vXQ Ph/Q/mAv2YKnaUZVmns5llvYSTElRbUgR9OrubymvcDHxrhtgHhcR0V2Q2lCLcnUZKW1deW8Aq+F HGY66quKpLLFAyuzpF1fUhY1Umf3qswwjKOFMKGhds9k2N09yFHvu7s8JuSY3d7lifCZcZnlbWwd 3+SfPu7Sory9NHzE6ByoAlQBqgBVgCpgqEAZ5u04zCVLliDIhSfe0dHRKDZaRFg6Et0HDBgAQM1t wgFzjDB9+nRkpPOJNIYC8m2Y569cuYLYFjjbQde5bflx+JdA7t999x3uBRRN3ZGR+MMPP/Tt27fg ZNatW1cE/8choH4rPwGugVx3zLPoPfIHUmINyttLTGq6ozKpgCF+X/k7W0HV60uiml2AvecSZhJp sJEs+5WcuEoA6svGggNBbVncTUjYzaa4+64irktJpQVEPrMAgZ9KvjpHeXvZOO3sUVDeXnbOJT0S qgBVoAQVeBfevmjRosrlRbd3eAAa39/lNbNHxds7PGHS1jNk2LZZ0zseYO8X1rsemWUHLP/zYudy WiFTM5ZBjHk+czu4NFc1NSzd2DXC31U2KVmd01BmaWqsVTApdSRwknesJRnVXoFUmZnp6sx6YpnG 1KhGtH4rfU5LPrL93l+GpAlca0V4SVv5iQa3lcHc3qelLLO+JNxd0D9KHhcmyqwvXthZM66jysnC hPHFMfKVUgvcAsBbtn51qorv7WElgsX99GpXJ0th73amFza64T4FRIOMrPv9gG56N7Pza9konj+W u6iUcpi+3vACobz9DYWi3agCVAGqAFWAKlBiCpRV3s6xZZQoTUhI4KA3yDMWJMxMnDgxX+lSTm0g brwFWzi68ZxcvxH7EiEzQPGrV6/++eefUSYVznN8sxIEHludO3du165dEyZMQGFWuOgNN+fHMZxD 27ZtUfZ0/vz533zzDXwLSLB58OABRsOYV69e/fbbb+fNm9e1a1d04/fOj4kG1m/atKlgNg4OGXPr 2bNnixYt+N01atSod+/eRfD5ErvSCu6I8vaCmtA1VIHiKmBI3W89JH/eJAtPsmkzL5neOQP8FKKZ Q1yWkEFHycU7xd1P6epveNTczO4/JtcekPN3yB83yTcXyYJfSI/DJHITsV3ISiGbRfafujh+7Ev1 L0rXIdHZvLEClLe/sVS0I1WAKkAVeKHAW/N2WJVQ3CqpoZwc8wEWvrDJ3dla5GUrGJVe8bu5jpe3 esCw/UgfloJ30QBAfnpQNyShAqN2Ys3tBWE7j8fxVngm41i3oobp0lg6Ll4V4ChIqyNFe0UPbXyY OK2efH6Ouo6XCMi9hms5Bsgd+Jrf/AM1QtPEHuEdw0TTU1XVbAVLu5kMaiPv1kTSvYmink7YuLqg R1PphARVYriEkVdkfNsXBdu52wqB8Uq55Pt5DhxdPzjVrneMlnzvwzneOdFu7/TaOMom0FN4Zas7 sDws7k0CZN179Hpx/opsUd5epDz0TaoAVYAqQBWgCnwEBcoqb4eUHHIHBgd85ng1h6/xDDC+Zs2a X3/9FeAdpnR41wHMka8OOs335JA1D665beE2Rx+EzGRnZ8Op3qlTJ3B4IHqsx8Jty+/OcAS+zY2D l9wm4PMIVwd+x2iYFXLmufV8N35MbgTuJZ4///zz77//HgkJmD+g/U8//YTQGG5z9DTcaseOHR/h wnqDXVLe/gYi0S5UgeIpwIPou4/I+B9I1RVsnDsbcs4HzqABx/sEEraWrP6d5fMPy4rjnVOKV8BQ uN9vkqXHL0+gvN1QlE+2TXn7J3vq6MSpAlSBj6nAW/N2/K9haVlp8xgrtujnPq/v5zv07VAurIpY JGC0SsbdRtw5SrNvit3N7R43dnpe3+oOjPzPejetQsR4RBaS3F4Qkvu0RBz63ExN50bSMHdBtyay uVmapAjJmHhFvyhFuKewloegUVXhqA5ynZ2S8Wym5+2vdrkDcQPjs88G2TUFd/qqNcFpYgff1Dqi RZ006fXEk5LU7UMlPZtKshpIJ3RUBjgJ2geL4G8f2lbRp4XUyD6Uqd2pqBsK3F4wk8peiZFKcrQK QDrC7Td8bvXsiDeEerjf69pWj42jrRv6ytVyo6GJ5TkI/+yQbm6fym7uXm94xVDe/oZC0W5UAaoA VYAqQBUoMQXKMG+HhkDuhw4d4qqmFiTewOZwvyclJSFuHaExPKPmG/wmHMHm1uPZcDF8K1/bcPN8 bYzAd+ZH4/pwL/l2vg25rfAMLA+63rFjR8wfnpNCSTu6paSkwDNfYpdTsXZEeXux5KKdqQJvroAh cz59k2w+Q2J2EPGMl6k7ks9ziXYOm8Qy6Udy/cGbD/8p9eSluPjP+TFjqL/9Uzp3r5or5e2vUoau pwpQBagCRSjw1rx99+7dZmrm/Dq3x4hD2au7vt2dHNGRb6r8tNCxa2uNc2WxUmaENHIfR0G3Ntpz a11BjL/oV4kRqZng5NezaBDp0DSJ2hwOdmSkj41T+FgbZzWQTEpWhboKs+rLcpNULX1Fvg6C0fHK Aa1kDhZaxr9DIRifA+wg7cEpJkHx1sExDqExDkEtrf1ba4PiEMZeyCYFkXtohti7QXwtMVg64D94 O3Y9LFqZUV8yM0OV1UDu62A8sp18U3/TNb21zXwVTI2YwtNyDEfmsL9XE6VCeGmDG8RB7n1Wc9Wi AZYrh1kN7ljB3UYA9WQSo6RINTB73ncE9ut+WOBY0VRy8uTJIs4p/xbl7bwUtEEVoApQBagCVIFS okDZ5u0QGQcI5mxoPucINke8uTb/XOhK/l3DBg/JDfG4YYc3b7/dUPx+0eD3ZdjGSrwEX0JSTSm5 2PJNg/L2fILQl1SBD6EAD5wx+PT/EfelLGM3NnS8oz2ZLTyatpcNeL/5EHcqP8REPvKYtF7qRz4B 72/3lLe/Py3pSFQBqsB/SIG34+0wL2Vn5wR7Cu7t9eRC2kGMYdJGZjs56A3H+62dHkdn249MNavh IqpXU/Fonxei3WtXkzOVvZnwLLYuqiF8LrQdkOBsJZmSrOwUKUFsu72Z8bh4RfemUqS49G0pjwkS RfmJ6+gEnRvJc5OVWfVEphXMmKCkl4dlDe1GoWlGfh2sq4Zu3rxl1Yrlu3Zsv3Th/L8XL+zZt88p om3hJU0N5xOaJtBFxofLPm8nn5utCfcQxYeKO0XK6usEI2IVCG9Pqi1LryeZk6kZHiOPDpRoK9uy B1hEWo7h4EFJApkqt5MZImVA1M+vd+sUZeJmI6yoNfK2F2Y21+6caJsX5L5Xh3we9EFQj7ejZNSo UW9yjVLe/iYq0T5UAaoAVYAqQBUoSQXKPG/HX4m5ubk8kTZscMja8Nnw3U+ibTh5tA3nzL3cs2cP l6tTkhfVG+6L8vY3FIp2owq8uwKGCB0J56ivGreLqA2LqyJnBtR9Klt0NWMfOfAPviD07rstRSNQ 3l6KTsa7TYXy9nfTj25NFaAK/EcVeDvefv/+Ay+dV2YzzbODKPepg8X95g7PP1a4Xtro/pCt/plX KZUcqXJ9m/vq4Zbgyb+vdLEyE+Z5vw2Z8yvbGTI7n8FR4nnZGpD2vs0liRGSZd20g1srYoNEEzoq BrSSW5oYd2ooX9e33Jg4RVZDIVOxChNmUKI0JF1avVlgLe/QqiYWWmMbG1sXFxcPD4/09HTOd7Rq 1QrGPrxoL7qRf4fmQSZw0c/KVHUIFtf3Frf0E9ewNR7fURUXKpqUpKpqY9zQR9AhRDSgtXxBjrqi 9RvzdtbinsFYVKtXQ/rwhWLezw5639vl8ewAvizgDdjOVlPd43V/n9ex2fZ3dnk+2OPVMkRRt169 N7leKW9/E5VoH6oAVYAqQBWgCpSkAmWbt3Oo+fjx44iLAYvOR6QN6XTZa+NgUVkViYsleTkVa1+U txdLLtqZKvC+FDBk75N/IpUX6KNm4HLnH3r27rCYxfIPnpAnZQK8U97+vq6fjz4O5e0f/RTQCVAF qAKfogJvx9tPnTpV3lS9ZqQFgDBM1z8tdKrqJFbLGFtz4+HJZvC6P9ynu/mVJ8JPYN6+8ZUHTO8r hlozsvL6Sqn6BPVXYvbn+er+cRUqmkcHiZCRPjxGMSZOWcdL2KmRDDbyz9vLuzSSJoWLo3yF3tbG 4zoq1/Q26d5YUquKmvHTp8ro/fNGuuaTs8uRbzzOb3IdFGcSHa4YMHAoilvduXPn6dOnOFlPnzxJ SMthqka/0o4enOri6TCkjfizWOWcLHV1e4FzJaMm1YRtAyVR/oi1kWTWlwY6CzClCYmKfi3lLWoI FfbeRQP8lx34GUz1NvZmDPJ2cJMCSt7a7nF7lycEvLfL88J6t/8tdNw31W7LWJthSeUiqsoubnZD n6ldzKys7fDf+muvN8rbXysR7UAVoApQBagCVIESVqBs83ZOzFu3biFSBlVN/zu8HUcaGRk5duxY 7o/MEr6o3nB3lLe/oVC0G1XgQyhgSN2/uUiGHWOD3NmcGf6BgPdJbPhM7A6y5g9y//GHmEXJjUl5 e8lp/YH3RHn7BxaYDk8VoAqUTQXejrdv3brNVCv9Y6ULyPCjPV5ZzdV92mnn9qnULEgmFhntmWyb 28kcSTJIII/0k5Bvqzw5qMtooWUsa+h5+xuEyYDG14zxshBvG2S6vKdJv5ZSoHUvK+PuTRUb+mo/ 66Do2kTcubEoO1LcpJqoexPpxgEmY+OU0YEiuXs4Uzub5eeIf3cL/G2JzcbPLcekm+R2qrB4QOXh g7rBdsU5r7jTefyHn2TVm78qxV3g3mBQlFHXRtLNA8sNbKOQCBmdlbGPtVF8mKhZDeH4BCUqt1bW Mm0ChDFBwpGx8hW9tM4ezsXIk8FhBqcI5OW3jbMmh9hKqSeXOQ9LLDevt/nEnAoL+pgfnO7wx0rn MRlmKrmRRXmj3750Bm8/PNNepTY9duzYa69IyttfKxHtQBWgClAFqAJUgRJWoMzzdu4PrdGjR7+7 v70grjdcY9h+E7d8cfu/yZh8HwwO3n748OESvpyKtbsS5u2gi3cfESRp0IUqQBXIpwDP3n++Sppv eV5WFS53nr1PJaZzyOwT5PHTTzXdnfL2fCf9031Jefune+7ozKkCVIGPqMBb8Hb8G5WbO9nZUvT0 gBcy2y9vcR+dVo5870OOeiNAplsbU2B2sZDxdRenNjE5ON0Oce43t3vamYsYryavItsvu771FveQ NLGVZ11P417N5ZOTVRMSVF0aSQKcBYiOmZCgmJqimpSoQqRMbLAItvO5WepFnTTNahhbODoyEZ04 v7qRrpGJvStjFc5UDjaxdtBZC4cOHcLDdq5x8eIFj9CWhRPyoGT/6lYz0xVj41Sre5k0qia20hrX 1Qnia4myG0jGd1QObauobicY3EY2IlY+LVW1sLOmY7jC2CWiGMfImvwzGKsqvaK1uCsBln5ps/vi AZW4bwRc2e45vUclnb3+tkWAYtNoq/v6CPdLG93Ka6QrVqx87WVDeftrJaIdqAJUAaoAVYAqUMIK lHnezum5c+fOVq1aFQu58zy8ZcuWbdq0iY2NjY+PT0xMTE1NzcrKysnJ6dKlS7du3Xr27NmnT5/+ /fsPHDhw8ODBQ/XLyJEjPytsGTFiBN4fMmTIoEGDBgwY0K9fv969e2OErl27du7cOTs7OzMzMzk5 OSEhIS4uLiYmBvtt0aIFNxN+PjxUL6KBzu3bt798+XIJX07F2l2J8fYzN8n8X0iLrYTJJZN+LNYc aWeqwH9IAZ66X3tAZp1gPzKmc5+zd4B34He93T19H9n616dnd6e8vcxcypS3l5lTSQ+EKkAVKEkF 3oK3P3r0KDMrq00tGfnW5/F+3anlzh42ojbh8tk9K/0w33FcZoVpXSr+vtz1AQJSUAZ0r+7Jfu9j 8xwZRsH4x70yuaVgvEyN9nW9RCt7aodGy9uHiFr6CZNri3WWxv2i5F/20I6IUSTUEkUHiJDl7ucg mJqq+rKbtpWfMLCqOROS/Zx4GxjpAxJMy1cCXc+nLYLckzM6M37xTC2D4HduMr7tc5pq+7SQIUB+ dS9tXJikfYgYaB0FW5MiUDJVMidDHeIqGNhKPrStHE57hMnEhkgZzwaF3DsoeHR5a9iKroxrnRrO IvK1N3g70toRgH93j9fakVY2ZgKhMeNsIdw81vrhfq8n+9nAGX0fXai3ePCQ4fmOpeBLytsLakLX UAWoAlQBqgBV4OMq8B/h7WfOnAEtB4XGwmFqvoGXiJoBjUfaOXB6jx49hg8fPnXq1IULF65fv37H jh2HDh36/vvvT548iUHOnz8Pxa5du3bjxo3bt2/fvXv33r17958vD54v+IvuVcvzLg+4jbA5FqQL 3rx58/r161evXr1w4QL28scff5w4ceLo0aP79+/funXrqlWr5s6dO378eCD9Tp06dejQgUPxmDx3 IAXTcnALAHPA1cW7Oz7ulVZw7yXA23+8TBpsJMLpxIijhblk+v8VnAhdQxWgChSiwJOnLFQf+z1R znqZuk8lgumk3Fwy9X8EfT6VhfL2T+VMvXaelLe/ViLagSpAFaAKFFTgLXg7/tNp2LDh6IzybFDM ft3BaXa1fGQuVkKRAMZ2przaKK6+ZmiS2cqh1mtHWl7e4vbkgG5G94qMuAIX8/JGOBoUOji1ooPT 0Lay5T1MlnbVzkpX920p9bYRjGqvAPTOTVbNSFcNaC0DAw9zF67rY7KkqzY+TOjhXokJ0/N2AG19 qox+d2lMSIpcbXbwwH5DBbj/hg4f3M9Y+hYSdOPbLjZcjV1MS1UjH76Fr6S2p6CVnwilUQe1ls9M V8UGS+p4CeB1791MNj1VubG/Sb8oJeMcwSJ0fYD864+U7ZnOVG8rlUn+We/GheH/tcolu6VaK2dM lEY9Y0wubHRFNdX7u8DhdY/0vP3JIe+urU1i2sUbHkuhbcrbC5WFrqQKUAWoAlQBqsD7VeDmQzLm e7bO3ZGL5Pyd15S6+4/wdgBt8GekuMNGjsaoUaOmT5++bNmyLVu2IHQFf3+eO3cOxBsujvd7Lj7E aIhkB7THiQOTx40AAPm1a9fi7kBubi7887169YL3HkeKoyvN4e1Q5gPxdhDCo5fIuO+J5zLCTCAM Mqj5TIxcMpPy9g9xUdIxy6ICsLvzjveFJ0nDTaT8vJfB+0Qin0m6HyKHLpCHT0q7BJS3l/Yz9Mbz o7z9jaWiHakCVAGqwAsF3oK3wwvk4e6+cZQVOeKNPJm/1rjc2Olx/SuPX5Y4Lx9imR2lrmInkoqN 5BKjiGqyO7s9EfAeV1fBqB2YWllv7G/XW9ODU6Tm9o5mxi1qino0l37WTh4fJvZ1EMLNvqy7Fsgd vvcq1oKGPqLVvU0mJCozG0gVVeq/ai8Ky+pHDh18ceT6FpD7wwf3Qxq2YvwS8uPx4FS1hf2EjtI+ LaXr+pok15bqrI3gbM+oK+7aWDItXY2gm9hA0WftEW6jnpiobB8s0mrkjH/H/OO80tyuh+14N6Cj UK7cqo9wh7/9/m6vK1vd/1rl+t08p31T7FYPt0SQ+6ye5lO7VFwy0AI3OJDPM7Nn5Zp+wfmOpeBL ytsLakLXUAWoAlQBqgBV4L0rAN7uspRljLKZrAXRdSnJ3Ec2nSb3C2PJ/xHeDvJ85coV5KugdiqM 5TB+P3nypBQav996SjhA3CzAccEtD+/9pUuXcKRvPdp7vyYLHfC983aQ9gk/EKclRM7ZcQ3Tpznk Ppl0OkBOXSO3WOM/XagCVIHXK8AjdyS3X7hLxv/AVlBls2W4zxQaU4l0JnFfStb9+frRPmIPyts/ ovjvd9eUt79fPeloVAGqwH9Egbfg7RcvXjQrr/1xgSM56A0+/AS5MfoglGcHdGyE+zEfRKOcXeOy eFDlfu3KPT7gdesrTx97CWMXyJLw18JnvkNounHN6Pa1Ncu7ayYkKHs1kyZGiKvbGbcJFI+MVWTW l/RoKhnQWpkUIenUULKyp0nnSLGPRwUmKLkwpJ8Gt7zWzPHsX6f506r/MvG9H3/88ffffpsxaw7j EvnS3DjnuX+cg7Xp4NYyBMhnR8pA/lv6ClPriMfpw9sb+gjDPYTtQkRtA0Ug/1gZFyFnqkS/NA5/ OK9qYEchKUaK8iOTTQHSoeTlze6XNrrf3ul5fpPb/y1z3pNrP62bRXJjra25Mb4+gPB2dNs2ztba xv61/9NR3s6fbtqgClAFqAJUAarAh1Pg0VMSuOY5DOFiNCYTZiL7ABLJ2s9a34/9S/66RR48If8R 3v7h1C4NI7/2b7DSMMmCc3g/vH3gQFRqcq4fl3lQzwBzDUggb2s3bKADTO/jCTOZVJxPAlaT9jvJ 4KNk0Umy52/y7SVy6joLFe8+fuHsLThzuoYq8B9XYN4v7GfHBOnu/IcL4H0CsV9MlpwiZ26Vxo8P 5e1l5qKlvL3MnEp6IFQBqkBJKlBc3o7/L078/LOZljm/3g1ea4Sc7JpogzqeD4Hc93s92q+D4/0p HgfYx4UNrgDI5ze42ZiLGe/mTK3M4rDoDGGVxu0CBQiKWdPbdFVP7fIe2gkdVbW9UDJVOT9HgxKl 3ZvK/J2MM+pJ5mSqmlYTMGZubPlRxMjkg9tY496wTevWhsIiEfTYsWN//fXXl19+efLUKblnXXYr w225ds2YIE/FkGj5ql4m7pWN6uqESIxHpPzirtrsBrK0uhK0P2+vmJOlRglXTUULJqTA3vNNpuBL 7MjUtW2YnCDufp/uzCqXak7iqs4SywrCcmojuZQRCRlkuTcLlqY2Ve+aaIvbGT/Md6pkpsW3sA2P qGCb8vaCmtA1VAGqAFWAKkAV+BAKsKUhef+hIQ/BSsRrTCGSGcR8AWt9b7L+rkZXG/fQkVX+IWZC x6QKvEqB98bbBcpyGcvEhhHT/DX/qobelMt+Rp5/IvjPBQpEWn3BfjRC1pL0vWTa/9hcpnuPX3UQ dD1V4L+lAG93R3L7nzfJZ98VqKk6hb2ThdtYZ2+XLmUoby9d5+MdZkN5+zuIRzelClAF/rsKFJe3 48uzu3fvti7P3NzuATgM0t6+rmJMRoVF/SuvGma5dYz1vim2qJp6erXr/V2ecLyjoOovS53MTMWM X3sWhhekzYWu4ezleDZztzY1alZDkFJbnBgujvIThbsLB7aSdm4k7RgmivIT1LQXzEhTg7ejA+MY UWAXevodlKq2cjt79i+cZt6PhJJbixcvPnv2bHZ29qVLF8MbxTBhmS/xdm5i/nEu1soeTaXLupvU 8hAiPX5SompulgZrglyEU5JVwOxwv/dqJncwM2K8mhWSA1/oAeZbaRsQ6CF+hG8K7PW6s9PTzUrg UFkU5CXr2kqzfEjlX5c5P97nibR8cqTK7yucoOrplS6WFcSnT58u+sKlvL1ofei7VAGqAFWAKkAV eDsFEJx7/QH5+zZrzYVHd8xx4o7kaoDEV8FG/XpUkLT4ggw7cN2yciXK299OebrVuyjwfnj7oEG4 er3dnTGTUceJ02KinP3qi38qUc1m0zAQOCOaXuQHhEfx8MPrvxtit4hEf0Um/kgO/UN+v0Eu3iV3 HpVGE++7nBG6LVWgWArw7H34MWKzkIhmGHz0cGN3Ihtl9ut1cr90RLtT3l6sk1uaO1PeXprPDp0b VYAqUGoVKC5vf/z48ZIlSz2tmbt7PNmw8V1ePy10vLfL8+ZXHkgd/2ej219rXX9b7rI713Z8VoX7 uz1hdz8yy16tlDChqa+B7RxjN6w0Gprq5WU3J0MzL1szJ0szPU09M1WF1PTkCMn4BAXyW0bEKFr5 iYfHyBfkqHMiZYyuTX7ejjGDU5X2AePHjUNqqOFZYI36J07069dv3rx5Y0aPDg0JFfm2YR34hhZ3 UPHABJ2TtlOkdGUvE+cKRqiXml5XMixanpukCvcUDGorHxatHN1BOStDkxwuZhzC34q3ZzAeDX0c BDd2eEBS3MVY3L/yla0on+pFDunIIe9nB3X4KgFQPB5P9d8gwFcGnCyFR48eNTyigm3K2wtqQtdQ BagCVAGqAFXg7RS4dJds+4uMPs7aCIPXsoAdlkIhECLwINJjiobtU4nZfDL7BLnxkFy/8m9FMzPK 29/uLNCt3kWB98jbvby8uJnAc/vTFRa8Oy4uDKfnsnejAACRG7PvPFl/muT+SLodIi23keorSXnD cIx896p4/I4PVy6RzCTWC0m1laTJZjaLZuNpNoKGZ4/vogndlirwiSqACCZ8pnBPiqXu3McHn5rJ bLR72Dqy6vePf1iUt3/8c/CeZkB5+3sSkg5DFaAK/LcUKC5vR1moiRMn+rsx9/d6AQ4/2O11b5fX Iza/HUAYz+xKPJB5smKYJWp9ghhvH2sjkaqYCBRLfV4hNJ+7m3sZnMLUjNET7+e5LqFp5Vy8ezSX TUlWT09TTUhQ9Wwua+0nHBqtmNBRmRMpbV5TiER3FDMd3UHRpKaU8WmXH+mHpMhdwkePHI6TCsCO BZWtkNyOBtbg3gHaM2bM2LVr1/p16+ISkhm3xvlTZYKS7OwrZTeULO6i9XUw7hwpA10fHqMMdRXE BElyk5VzMtQLO2kmJistLcrn3VPIR+xxdFhT1LFnMFVaulowFze7QTq2BO0ql9s72Dqz7OO5pGxj n+7KFg9E9/y7xd3bQbx9+/aiL1bK24vWh75LFaAKUAWoAlSBggo8fUZQBRJg/N975H9XyOQfScut xBTl6uC5BVqHh5Ajgfnw4Ktfoohqq20EGe/cQvPbC2pO15SMAh+Ct2PmPPfefJrUXMka2vFVjrw7 UJPI/F/yDo7vZniw+KzBvg4IH7+LeH7J3pbizPCCV5nh8enDZ1DvgUdAU+JusuYPcuEO+30TDFXo Lgx3R9tUgTKjAH+1n75J6m14XrOYB++57Afq+3/ZaCa+ZwkfO+XtJSz4h9sd5e0fTls6MlWAKlCG FSgubwegTktLr1NV+GA/68Q+v9Z1ZGr54/MdTy51Obva9d9N7siZubvDE88D40zn9DZHJvmKwZbG cvPXGL9D01W+ze0dLZnQLKOQVIFXwzx27d9RrpB2rCVGYEuflnI8d24oTa0rGR+vhMN8RKy8UVVR v5ZyEO+chhJze0cmOFmP3PNC1KXeTcaPZZ3tN27cwMwPHz586uSpDRs2Hj9+HOd07bp1wO+nTp2K j49fs2ZNp06dGkR10I+g3xyEPCRN7R7asJqsd3MZPPY+1qiXKooNFvWLksWFiuLDRN2bSrMbSDIb iGMCJUJ7P/09hcLy2zFUUJKeuhf2LoB8jRi7CsyZNS6A6k8P6hb0qzwssfymUVYbP7fC8+bRVlvG WOMxr2+lPrHlUKD26jaPmm7i6dOnF31lUt5etD70XaoAVYAqQBWgCnAKwKOLZBgYAoccJbE72Bxp h8VEDNOgIWMvjKgbTydIvai/kbXssi53wz56LJ+0m/xw+SWZKW9/SQ76ogQV+EC8HUdgCPTwUZp1 gtTeoP84TCJfnHzlERpuxXXC3a6/75Cjl8i6P8mkH0nGPhKxnk1heumTxX/K9G5e7i6Y5Rfst07i dpLxP5D9/9D491dqTt8oYwrwH6KT19hod3wN5MWHBXemJhP/1WT6/7Glukt+oby95DX/QHukvP0D CUuHpQpQBcq2AsXl7bdu3QoICGgSIEN1VDixf1vuii9Ec4vQmKmoNvKwEYR6Cb1sheU1xieXOoK3 z+1pwaismIic/FEtnK0d3m/UGA1ODwxw6N5YxOha1YgIiY0wZQL0aLpqm1a+4p3Dyq/tY7K6j3ZV T5N5OZqGVUXdm0gmJ6uHxSqQox7lK9o22BQG+ChfobKcJWuSZy3l6Yxvh9DQiAsXzk+dMnnfvr0b 1q7s0b3z8sWz2zaLSO4Y/cMPxxNjmu7cueOr7Vt79uiWk5kU2aDOgQMHpO712VsDGCEwSWXrkRIu 6NtCuqG/adfGMvvyxvG1RN2aiEHd3cyNkWkzJ1P9RWfNl901ExNUEtvqhfP20HRRQHuppTMTlMwq EIJcnQLU3a+9hQnz23In1t9+QLdzku2VzW6IjkGi+8M9uuvbPA5Oc+jSRquQGtWtoYCk17/yCPSU 4AZB0Rcn5e1F60PfpQpQBagCVIH/oAKgE6DrCGAHfwCgQDp0g416tA5a/irvOrDeNGI8jU2PQdlT kzmk7gYy/Fuy//wL1zqUZPm8viee0dlpCRujUXChvL2gJnRNySjw4Xi74fx5APjPHdJ0M1n4at5u uFW+Nj8It/7KfbLsV9JxF1tZFR80fBLxEXvBFfm2/iYX+0GeTGqtY0uvnr/DftIfP33pjkC+fdGX VIEyoAD/kRn9HVHMMviOCT4UU9ivjXx1tqQ/CJS3l4HrijsEytvLzKmkB0IVoAqUpALF5e0wipub m0eFKR8d8EKo+I8LHOMbaPrHVejc2jSpkbZNhLqBnyK8qrRNhOqrCdbksPezA95TOlditA5MnU6F 83bAdodgsWfk4Cjh9DSlo73ZoGhV92hzxj+Fhd5BSeUcPFr4y1PqSBPCJdGBwnAPQaiHsFOkbEwc LO7K/lHS+lWE/VoqAOQnJCiHtBIHuClFbhFG9kGMxsLK0rJ2dStXc+NagT4taxjrbLWouBodYNTK 18jeqnJihNzb3iTAs7xjRWlT/wota4q8XWyEchNG19jYL87azbVbpHGPprJVvbS5yWpnM6PECDHq pS7pqh0brwpxE3RrIu3TXNa7hSyzvtTGUs3UaKcPjXmZpYema/1bxNcr5+TuwIRkKGs2MffwYUPm 82XO+MeZq5lfljiCt+NbA8DsyJM5sdh5bp/K7eppPG1Fxgyjkhs19JfP622Beqk3d3oG6STNmzcv +lKhvL1ofei7VAGqAFWAKvDfUQDp64i6nXOC9PqaNN9KPJbpo9eLsK/rwZ3FAtbr3nE3QXE64D5k UF+7n18znnKgJwv6prGRGotP5XXj3+U3o7ydl4I2SliBkuHt3EEZXvmG7bc45Hybo2rqd/+Spb+S gd+wSU2eywxudRmCd3wYETsziZjPJ3U2sN9AAflHQhRut9GFKlAmFeA/KfiMwNPut1pP3bkPBX6j TWSLJsz4P7bucMkslLeXjM4lsBfK20tAZLoLqgBVoOwpUFzefv36dblc3iZc/fgAynfqbmxzv7/H 69khHfv4mn08Pcw+nh1mS3wi1B1weGIOeLvTK3l7aJqrh02gi3B0B/nMdHVMkGhYtLRnKxOmRvzz ZJhMJw+npV00q3uZfJGtXtxVu6Kntl2waEqKan1/ky86a7MaSJDiPiNNAxf6sq6awW3lo9tJHSzU jGcjpmoU490S6eiMd3NG14zxbsZ4cY+mjK4p49GE8cKjMftAZ/dIxqMR49lArlRHVpdm1BWOi1dt GlDuy27aZjWEHcPFWfXF6fUkaXUkPjbGg1rLu0SKOzcWj+qgGBkjk2grMqEFKHpourF3s9S68sQw oZFNddsq1Ya1FTlU9SnEBh/Q0Uxl9H+LHCEpdDux2KlONalYyBgZMXIpE6qTzO9b+cIG16d6nVE1 9dZOr2CduG7dukVfkJS3F60PfZcqQBWgClAFyrYCj56wjr6cA8R+EeuGZTOlefLA+WD5NXxjKnFZ QjL3k9W/k2sPCNIt8ADE4DlGEYp1Ocjy9pknXnQpdCvK218IRFslq0BJ8nbuyLiPQKEfhHc/dAyL Bz6hSKjefIak7iGV5j//jonBJzqv4AI+8vofAurZbOr7nr/ZDelCFSh7Chh+3DadYWsi5H3xCh8K /S8+fARQasGw2wcSgfL2DyRsyQ9LeXvJa073SBWgCpQBBd6Ct2s0mtbhKvjb2fATtlKq172dnnd2 eoKuo43Hwz1e/250h0mb4+2TwNtNXs3bw9J9a9rNzlBk1hdPTlYhHX1IG0UTfwVTrYOetyNEPaVq NbspKcqpqSiZqhzYWtbKX1jXS9guRPJZrHxMnGJSkhJlTL2sjMZ3VK7oabKsm3ZtH01QtYpMSCZb fTXvkcXUev5A5dZXPpAkk1nVrcLMVMWiLtoN/U2mpcLKLqzlLmgbiCQZ2ZgOys/aK4NdBB1C2fD2 3i0Uw2MUDaorGNsgdkd8UAzSbNhHqrFjaG0fTZC3CVPRPTFCmlxXxngimh51Y1+2wet5+wk9b4e/ /f5urz9WuMzrY57eTLtqmMX59a5PDuqeHcyrSIsOt3Z6gLdHRkYWfQVS3l60PvRdqgBVgCpAFShL CsDBfuQi+fI3MuwYW+EUseqwtuYFsBek61NZ/F5pAesAbL2d9P6atcv+72p+PYpFJJDTfvEuOwK2 KmJDytvzq0xfl5QCJc/bS+rIXuzn6n2y5QwZdJREbSNVlrPFW/PHzuCnAcKj8N2WqSRgNel5mP3q yk9X2IwpulAFypIC/K+hL34hoWv1X+ni7kPhIzCR/d234rcPW+mA8vYyczlR3l5mTiU9EKoAVaAk FSgub0eejL29fctQBXg7wC+wcJfWquwWmkPT7ThDO1aCt3/Rv/K28dbka29ywHta18qM2v6V/vaw dHcfrwVZypyGsk6Rko4RYtRCLa9VMgGJebw9NM0osKNMUzEpXIiipYhMx2NGhqqanfGsDM2sdBW2 AoQf0lbhYm5UVydMDBcvyFFX9TBjAtPY2JZiPdgEm5Tq7uXW9zFBbkznRjKtjPF1FAS5Iq1dubiz ZmQ7hamSSY4Q924myWgg7d9K1jpAzDiGMuFZL0XEBCaynvlaWeY1avkFuDMu9S3trWMCBA6WSsY/ 7qWe2CMe/nGVNMyppchvh7/d+/v59g/26Z4c9H54SHdju+feybbTu1bcOMry302uD/froPDNnR6B XuLY2NiiLxXK24vWh75LFaAKUAWoAp+6AkBkO86SzgfYsHQk1kpm6lOdObpekLHr3X2oqxi/i02W OHeb3HpE7j/Ony/BM4piicNvxTdetXlZ5e0oTH/mzJmjR4/u2bNn//79+AsTsAWF6Z+9VhG9Urdv 3z59+vS33367e/fuQ4cO/e9//7t8+fLTp4Vkfzx58gQjY7l69eprB0fhofPnz589exbTK7QzVmLX 586d+/vvv+/e1d8vedWZIwSDYL/ojGG50XCAGB/LpUuXCh2fny3mgL+iXz12SbxTtnk7LjTDaw25 MfC933jA/ojI3EcqGrp8eeqo/ymBL79IZ5JycwmqGx84XxIngu6DKlAyCvCfCPyuPPgPWwfc0OuO m86or4rvenygBT8tx4wZ84EGp8OWpAKUt5ek2nRfVAGqQJlRoLi8/c6dO5GRjSJ9JQ/3s3kyd3Z4 pjRW/rXGhRzxRs4JUDD87Xh+dsi7d4z21DJnFPf8oo8Fo7R4db3UdIWuFozrQ6NlWQ1EmfUkA1rJ mHLuRrUy1NXqMwFxLI4OSVNWslvaST4/RzO2IwC7DIbz5jXEtT0FwN3zszUTElXxYZL+UfLIqsI2 AaJwN2NLa3MmBA7zl23kHNwu+jk4xcW+XFK4xNPS2FTOwG/f0lfYt7kkvZ50YGt5sxqilNpiZLZn NxCPiFUOaKXwcUX0TcxLlvXgZDtPF6Wjtyg0KcTHtJKbe00HYYdgwYAoWU0XqZGdP+u0zzcx33ZW pswfK51Z3n7Q+7PUCvH11d3blusVW75/h/IjUyuOSKnYvq7a2144MasiOeiNeqn+7pJBgwYVfR1S 3l60PvRdqgBVgCpAFfi0FAA9++MGOfAPm46esY/ovtTnM3MZ7OBmHEPjn6eyqc42C4nvKtJyGxlx jOw+R+4+fumIeRbx0toP/KKM8XYgaLDx3NzcxMTEJk2a1NMviLyrX79+VFRURkbGrFmzvvvuOzDt QnXF5sePH580aRI2b9SoETbEANzmrVu37tmz5/r16y9evMijbDQePHjQu3fvFi1apKenI+ew0GG5 lQ8fPuzVq1ezZs1gUQBOL7QnBsQusC9MHncKCu3Dr9y2bRtGQwGdL7/8krsXgGFbtmzZtGnTbt26 YWL8PLlN7t+/P336dPTHVp07d/7rr7/4oT5Ko2zz9tdKevYWW8Eh5iv2ZwK+25K/4ip+hsD3PoEI ppGmW9iYa/DJv2/T2JnX6ko7fAIK8L/s5v5Maq7Se925X5p4nsR+I+zrCwQJbO93obz9/er5EUej vP0jik93TRWgCny6ChSXt+NfiUGDBofpjB/sY+ulHp/rMLmrGeqi6pNkWOs1+0DOzEHv9Z9Zze1t Dt6+doSVUFaeicjOD5nBvTns7NehuotqUqIqJkjYpbGkQagVE5harVZg3zZyxqc153I30jU2qVCh mp3g8/aKOZmaZd21Y+OULubGHhbGtb0Ey7trZ6Zp4HKfm6XKaACHvMK/mgUT9Hz8ogF7vneDU4zl plF+wghPIbh6dKB4YpIqubY4ta6kWXWhR2WjvlGyKSnqBTnasR0VjuZCxqcVU+t5cjuCYoLTLDx1 GXWMRK5Btr4BqbVFg9rIHSsIPC0EnSLFHcJlbIw8f+D8rqu3dazInFvnChmfHtT1bmdqzCa3G8kk RhJR3gNtqYhJjFSRr6tc2epezVmyYsWKoi88ytuL1oe+SxWgClAFqAKfhAKnb5IZ/2OLnNouYj2o khn6sqSgBNyDB+z6Bgx77stI1n6y5g9y5ib5917+78vz2OFjHXtZ4u0wdY8YMaJVq1YAzuDVYOAd O3bMzMxMS0tr164dx5nxFtYvWrQoH4uG/pBi2LBh4NXYFgugNBB9hw4dgMexFb/ExcVt3rwZTnL+ lO3duxeDN2zYENybX1mwAZ88dl10N463oxtoP6z1BQcxXLNjx47GjRuj5/Lly7nDAW/HtLGma9eu wPuGxwggP3fuXO4o+vXrx90aMOxgOHLJtP+zvB2fesMPPu7cIfoJRVeHfku8lxdyq4792TKF/VGD 7OtqK9m7dX/efGmEkjlfdC9UgfeoAP8RuPuI7DrH3ozO87rrf5Pi9nTEeoJ7Uu9xobz9PYr5cYei vP3j6k/3ThWgCnyiChSXt+OfndmzZ1d3ZO7t9QRvPzbXPrGhCgEyjzjSDn878mT2el3c6BYdoVw7 0hK8ffckG5lMzoQj3lyfnWL4zIW9hGUwTnWCnZlQN8GUZI1nRH2L6mFjO0iGxSoY1/p5dBqe8MCk NmHa9X1NkSrTp7m8tqfx4DbyYdGK6nYCUPHuTWUb+5kMjZaPiFWAupuYV2JC9Bic28WbPiNPJllT 3rSNn6hflHx0nHJcvLJflGJ8vKq6g6BeFeGkRAUm2a2RDKVdJyYozSubs7Cd5ef6QwtOVTgHxPgb tfCVyK3do8M0A1vJY4IlEpfQqgE+fZqLteXKwav/khmeVSOD8W7qYW10eas7++2A/bhDYYHqqNe3 u13Z4nZpoxvaZ9e5nF7l/MMXjnN7VUKQ+8XNbh62IvyzWfRVR3l70frQd6kCVAGqAFWgtCkAIHDn ETlzixz/l8z/hbTZTrRzCDNe72Of8hwO8IB9KmvSM5tHXJeSsLWk/xGy89xLDj2UQ+QJQ+k50jLD 2+HWzsnJAWoGcE5ISJg5c+bPP/+ML0I+1i8Iezlx4sTSpUu7dOnStm1bkOd8p+C3337DVtgcRBqM fezYsV9//TWiWsClr1y58scff6xbtw4Qm3Oeg3JjKB65w/6BYbESKB565huZe4nOQ4YMweBJSUmv 6oOePG/HaK/l7Tt37sR9AcwZnod8vB3+dkPejhlOnTq1QYMG6N+jRw9k43D7KnSqJbbyP8vbCyps +JPh+gMy52fScCNxWUpM8AMn3408vMxlfe/4OQM+jyIRZ2+TR4UEHRXcCV1DFSjVCnz+HbFHwgx+ peIixzN+yU4mn33Hhq29l4Xy9vciY2kYhPL20nAW6ByoAlSBT06B4vJ2pFDiW7eO5sztXZ7Ik7m3 2zMqVNGurnLTaOvj8xyPznbYMMq6X4dyHrbias7ie7s9WA/8fAcTlZgJSWbBsiFs59p+HRj3esa+ HSK8JFkNxP3bajObVUqtLZmdoRoRK2fswvM20QNziVddCzsbJMaM66icm6UeGatEpExihDi5tjS9 niQxXGpTzii7gdTOzIgRyRlLH8YCj6rPn9HgH9x6/qVBo7K3j6OsZU1Rx3Bp/SqiHs1kdbyEPjbG vZpL0+tKOjWSTUtVI7jG39FYbu7E+MfnTS8klQlOEXvVC3Ay9qhsnFZX3Ky6AAk5tXUSqbWPZbWQ 0AArlbmVkU1No9BUJoiLpjfIunGuU8NZeGe3B3j7vV1e3862R/T9swO6p/t1T/F8wFv/zLbv72Lj euCEtzEX4dwVfb1R3l60PvRdqgBVgCpAFSg9Cvx2g0z/P9JqG/FcxiYts1EPyHYoyNj1ZKDiPLbI 6dT/kW8usr7TWw9fOg5DkvbSG6XjRdng7QDjWVlZgMmo3o40GES+vEpdkOdff/312LFjhmHs165d S05OBgwHq8fmcIkXavxGHgsgPGg8doTOgPb4Q5TbEdZjWywrV640HJmfxsmTJ+GWR4d58+ZxWxW6 iw/B2wHeR48ejV1j2iNHjiwNznZOFsrb+cuDbxj+uLj5kPx6nWw+TdL2EosFzyEkfubof+ywTHJy Xp3lGivJwG/I/xWosMwPSxtUgdKsAH/ZX75PFvxCTOc+v9r1F3nlBWTAN/krm7zF4VDe/hailc5N KG8vneeFzooqQBUo5QoUl7fjv5IjR45UNmGubXGHlR04/Y8VztVdJUbMi0VozNRwlfy23Bk5M4DD v69wrlRezNSIZmoVsLjDFh6U6GKjCK1a3q68kaOZUYSHcZSvMCdStqizJr2+lHFsyLrBAzoywNRA 7rWyZf5thsWqZ2dqciKlrXzFc7M0KGMa6i6M8hfHhUnreAla+IoaVhVWd1Ta29rZqST2FUwc7Wzs 1GhoHR3s7TRS+3IqR3s7exOVnVbu4GBvb6K0R8PG2k4hsC+ntrezlUokSiljpjIKchFYaIwSaolS 6ohRKXVioqptgDg7UjorQx3lJ2Hcmz0/ogyRTyOZta6Zr9SlslHXRpK4MDGQe0o9udAlTBMUHVjF jPFqUcHaqYqXpZVVRaZm7IsIGu6mg2WN8CqSJyhBu1d3fYtHvZqSBf0s9+Ta/bzE+dxaV/jeb+30 fLjb6/Z2z0ubXEHdf1sGSWUXLlwo+uqivL1ofei7VAGqAFWAKvBRFMB/+g+esEkvQOUrfycddhLN bNY+yppIOZcdB7ieYy6UMiw/jw2TabaFzPw/NlH5k17KBm+fOHEix8DRKIJm40wZUm6+DcYOlzhG GDx4MOh0vm78+eX6I+Cdc7kjuAYWeu5dYPzs7GxAeBjLCw2HHz9+PCzrCIrh/An8rvnBuQbWw0mC bu/F344xcY9g8uTJCLHB3Lp3787N7VV7zzeZD/2S8vbXKsxzSPT8+Srp8zXxWEYqzCMixFgZ/nTS Y0n81OLI5Imr7A+09x5//drZ0g5UgXdUgLvgnz4j7XcS5aznFzku71yC2uL4NgcKrb71Qnn7W0tX 2jakvL20nRE6H6oAVeCTUKC4vB0Hdfr06QpayR8rXAB+2bzx/bobOzy2jbMZkWLWPdp0REqFrWNt UNCTHPJGNAoA8uUt7o4WEsajQSGRMkFJTGCidTXfacny4THyXs3lLX1FsK+3CxHNSlO526oZv0RF UKsaVSyYwOdO8oCOGldfU1u32FDF5gEmU1NVscHi9LrS2Vma6vaCxV01SRGSoW0lo7s1unLl6l9p dS/MGXn177/OZjf6Z9rQazdunO3S8u/Ps6/9e+n84OQzvdtdu3r172Gp5/p2uPbHr6ejq/4zoef5 v88FBAYkRIjS64rHxivT6kmGRSu/6KSNC5OMT1Ct7qWNDRLJtBUZ14g8u35ousC3XVSwuo2/cZdG EmtToyrWxjUdjFMiRBXddGKfxq62aqFrWHm3GsPaiGGYF7mGsJQe9w54qz+88RrbjCZKcohNv/9z pauREYOHWMiYqo1sKgq87CR+HrLmQaoWIcrv5zvA+n54hkPlSub4h67oa4zy9qL1oe9SBagCVAGq QAkrgMzk5b+x4eoha9nwWGSts4y9oIldz7VgdE/ZQxacJIcukL9uvVS10JCJlfAhvPvuygBv//33 3xERA1reqVMnZL9Ak2LxZDjPQc7Bt2Fc58wDRWzOvbVlyxYu5v3zzz/nTgHWI3AGKe7A2vv37893 XhBlA3M7oDeoexGDczN/X7wdCTZ3794dM2YMlMECZztCdYorTr4Deb8vKW9/Oz0RIIO86yFH2UKT xtNfznvnwPtkFk6GryfDjxGwd7pQBT4hBfjfp79cI+n79KVUn9/sxu/ouhvIt5fe8mgob39L4Urf ZpS3l75zQmdEFaAKfAIKFIu3c/+w4H8Hi8qVDs+w58ukgrrD6E6+8eYe93fpTi5x2jbOeu8U+8f7 vO7u9Az2kDAW1RhksPOQmWt4NtFolXYOlZtUF47pIO/dTDKwtTy1nrhpNWFcqFhg4ycMTuzXtvyg aI0goAO7bWi6MrCVyKsOUyu9mkeFtHrSxtWEa/uYLuumbe0vxLbzczSt/cVLOit6ZUQ9ffLkaqcm txePe3r39tVerW7MG4XzcbVf7I3xXZ89fHhtYPzlwQnPnj69MTrn2pDEJxf/vtSh+q1p/e/dudOo Qb3kcOGQtgqQ9lHt5c1qCFf21M7N1FRQMHEhksrlVIxfHBOelcfMg1P8A9yGtRE1qCJMqSPydxQE Ogvq6mCzFwudg2o6SdoFCV0dTOvXMG3lL7a2f54qb6hDcJKxwmR6N7bsLHj7Twsd9022+WWJ09qR FiNTTGNqy30cJRYVhOXUxmq50dWtbui2eriNk4snDqfofyEpb/8EPoF0ilQBqgBVoOwqAMvc/ccE EQ0/XWGzF5yXEGaSPiVGj9PZiIbn/9TDOAr7qGIW6yNtsZUsOUXuvaiNiV92ZUqjMsDblyxZgrAU GNS5KqhF/zWS7+ShM4qNgpMj23zZsmX53i30JTZBJEt6ejogNsqw3rhxg+uGUJr4+HhMAxVa+Wh3 vAW/PTA7ODxc68iBL3RMfiUGf1+8HZb74cOHI2AHu0aBVLB37KVY4vCz+kANytvfXdhr98mY4+xP M5iBUT/iJdM7fqDh7uEkYr+ITPmJXLnPFmvGj0G6UAU+CQW4X7XfXSLWC/WRbtxvajxPIUh6h9G9 uL+LKW//JM77m0yS8vY3UYn2oQpQBagC+RQoFm/ntr1165afn9/C/pVB10Ha2QKp+3S3v/K8u4uN H2dD3Xd6nVruPKtXpTbhirt7PMGQe0ZrGIVV/hCVsDQmKMW/msXSzpLcZNXoOMVn7RSodoo8dmcz pLKIA2rYBId6Lu6k6t9KKfJpzoRlmvlFftZebe3hzdTOZqpGM84NPV0qpNaRtwkQT01RLcjRpNSR LOykGd1ein/iyONHV7Ijby2Z+PTenWv9Ym7OHoH5X+3f7saE7s8ePrjaI+rqsFQC3j4q69rQpMcX //63Q/Wb0wfcv3u3a1KT+t5GGK1jLfHsDM3n7ZU17YVpdWSmFSsxbs0ZBM6jRipvUK/Swtla3jpA 5OtgHB0kivAURHgI2gWLWtQUWZsJh0XLW9QUh7iJKnlVZzybML7tnkfQGJSO9Wsvksu/nWOPQqgQ 8+RS51NLXe7s8oSPnXxThRypgpqzt3d6nFnrMq27+b2dns8Oe49KM6tTr1G+U1nwJeXtBTWha6gC VAGqAFXgQyuAUIWjl8jUn0jibuK/mmhQfxCYnfOx84wdjamsU9RtKYndQcZ9T7acIX/kYdS8CRb3 X/sPfVzva/xPnbcj/mXgwIFA30DuSHoprizIWh81ahSINPzqv/zyy5tsDmSNEqxA2dgKC7zr/FZr 1qwBb8fy1Vdf8WQb2fLt27dHT+yo6KwbjPO+eHvnzp25BBvIgv1yNwX4KfET/rgNytvfUX/DH0qo KbnhNOl3hAStIYJ84B2IUv8Tz2cFSdlLlv3Kps3QhSpQ+hXgr/BFp4gLbpHj/pH+lzV+iTstYZPe i7VQ3l4suUpzZ8rbS/PZoXOjClAFSq0Cb8HbEWOCLxH3jFGTY1XA0v9e6zYk3mRsRvnLm9we7dfd 3e11cYPbX6tcnhzULR1U+cpm98cHdKuGWjJCU7ZkKo+p8wzeGUbV2zatIZ2VrpqZrundQtoxTJxc R4ws9+Y1hA18BCNiFKhP2quZQuDVSBAU37O1dn62upJHdSYimwlJY0LSGd8OjGNtP1dZbpIiOkA4 PkG9tKumRXXBqC4NH929dzm9zq1lufC3X+vf7ua0QTgLrL99Yg+Wt3dpdv2zLFigrn+WcW1Y8uOL 51nePmMgePuQLi3aBhh1ayxbkK3xthKMaq8wVasYp7p5dU7zHUJIioWnLqueMNJHiAKvPZvJUmqL +7SQVrMzTowQNfIR1nSSMk51mNo5nD+fwV0GQ3M72lVaaFWiOzs8kMwD3r5iuKWJkukUpTk4zRaJ PfjiwP19Xkjmwb0M1J+F4BC2Qz1lembOay8qyttfKxHtQBWgClAFqALvqsAz1vP25BmbXbzpNFvG lC11ykXEFPSxT2MZO6zstdaR2SfIjQcvds7/m/9iVRltfeq8/c6dO6iUijQYZKojWKbQs4TQchzm 5ecL2oid4aqaAoD3798fMBxIHGVSsfmbQGn0yc3NBeRHRMzhw4f5ncIEkpaWhtF69+6NiXHrp0+f jukhT+bbb7997fjvhbdjYnDsg7Rj4ffLT7L0NChvf7/ngv+p9eAxmfwTsVukz8ji+CSeuQd+DOof 9TeSnefg9GEd7/yG73c+dDSqwHtRgL8+Ox94fi+J+20+hfivYr+4wXcoeneUtxetzyf0LuXtn9DJ olOlClAFSo8Cb8Hb8e8S/lEK8xGTI96gwd/Nc4yprYAZG8bsL/pValBD+uUQiwub3K9u8ZjZvfL3 8xwQ5P7nCmdjgZQtmZoPVuMlwsx9osU2VaycnK3tLFr5iRp4CxtVE6LyaVJt8Wft5FNSVe1C5EzV 1n6hVaenKKYkq0xcaopDEx1qNa4RHsjoIpmIHKZKK8YxTFzJuWENlaOVtnE1ce/0xk9u37qcEnZ7 +RSWtw9of2NKf8h+tW/MjUk9nz58AOv79bFd4YG/NjwZj+e8fRB4e/e0qBoOQnWFihFVZEw5Z6aS D+PdnKndiQ1szzd/0PLgpICqZln1JWHuAmD2KD9RQpgoJlhUVyds6SuMrCq0NZcxPi2fb1sAtqMa rGNIY38J+Za9eQHRcnMqXN7mzmb17Ncdm+OQ1Ngk0k+R3szk+FwH4Hf0QT6Pu404d/LU115FlLe/ ViLagSpAFaAKUAXeWoHbj8jhC2TG/5HUvaTqirwgBWZygYCFqWy109C1JGMfmXWCfPcvAOuLfRo0 X6ws261PnbcjJqVLly4A2kUY1JEz08ZgAZmPi4u7ePEizix4+5AhQ0DIY2Jizpw584bnGn98jh49 GlvBys6b6jlQj3QaUG5M5scff8RoCITHnjE91FHlKrEWvQuOt4OWY5Pdu3cX3Xnnzp1A65jDihUr uL3jlgH2jgyZPn36bNu2DbtGBwyFWb3J3ove3Xt/l/L29y4pBjRkj2dukrk/k467iNuyPMz+grrj LuRENjWr2VYy6Uf2JyFuU9KFKlBqFeAu7OP/klbbDELdpxDVbDLiGLlmcLv8VYdAefurlPnk1lPe /smdMjphqgBVoDQo8Ba8HdNetGixmYkYlmzw9gsb3aZ0rUi+q3L/oO7KDo++7UwW9beIr69AoU8U /ZzXx4IcrfJgjy7QQ8y41H0piQWwGrQZBDs0VewXqwloXL5aqFpqHOJqXL+KAOb2wW0UWfXFuUnK YC+NoGrr/q1VU5OVQ6NVVZzLjYgrvzBH3q6WjPFqlWcXZ4dKZYISBD7NtCppZlzkM/D2hKDbK6fr /e2xN+Bvf0au9mp9I7c3/O3g7Tcm9ULj2uC4a8NTXvD2e3fbRLVASVQmOIXxj9MPnsGa0rmp5rOm h6UL/WMiayrqVxG2CcBDhEajKkLAdlMFM6iNtGl1gczCkQktDNTnDZXBVHSZmGVGjnrD335qmdNX E2yfwdZ+QLd/ir2ZxohhGHdb4YB400g/6d/rXMHbUalWJlfie9OvvX4ob3+tRLQDVYAqQBWgChRX ATg5EY8QuYlIZrDON7bm6XMDZx5Zeu7qtFxAuh5is2UePCGPn75EpQwJVXEn8Kn3/9R5O6JdULSU w867du0q9HQsWLAAFBp4HAt6YkFpVBw4OoOcT5kyBetBrTn/eaEj5FvJQ34UWuVc8ejAEe8///wz NjYWo6FQKQafP38+dgcAzsFzrk++0QxfosOmTZuQ9I4R9u7da/hWwTbP21euXGnI27Ft165dsfc9 e/bg5oL+uJtCBKwpOMhHXEN5+4cTHz/TeHwOBzt+4iEgq9NBIp/58i1I7qflNPaHp8UXbJTWXYNa FR9uenRkqsBbKMD/pt59ji1YkFetQO91R8Xz31+OgCs4PuXtBTX5RNdQ3v6Jnjg6baoAVeDjKvB2 vP3Q4cPltPKjesc1EsW7t9UOSajYIkTpYmksFoIQM9ZmgrCq8ug6ms9TyyHm/ekh3bDECkwFdzYH Jp9F3DfW3NpqTHvZ0mzJ3HTx+ARFj6bS5jWFIa4CRzOjqnbGI9spIqqoTN2qzc8QI5sdueiDWktn piky60sZK192QA5cg4cHp4g9amfWk/ZsYjyiW4snt29fTg69s2oGWy+1b1vW3/706dXuLW5O6cPm yXRuemPqgGf3710dEHttRNrjS/o8mZlD7t292y2lCeqf2ttVkPu20GN2g6z1fLw9NF1TvUGgszEy 25MiRO1DRK384WkXtAkU1vcWBruJzCzMmcBk1tyeb0P+ZUCCUin/djYb3g6WfmGje3YLzYbR1qPT KyokrJLNQ5TXtrmR4z6Hptvtn2pLDnpvGGVVrrz5qVOnXnvlUN7+WoloB6oAVYAqQBV4rQK3HpJj /5Klv5KcA0T3JWvRLKTsKcLYpxHbRaT2BpKzn6z6nVxka0XSpRAFPnXejkPavn07DOGAzCNGjECR 0IIHifRyeNfPnj17+vRpJL3A783zdmDqffv2wY6OzQcNGsTlqxccId8aZLbDDw+QDqxd0DeOqBns ArV7vv7669TUVHTr2bNnwW75xuReYj47duwAbwei37x5c6F9+JWorIppY0HPfLydt9PDfo+IG8wB 8/nss89Q1JXf/KM3KG8vsVPAg0rs8dAF0vtrEr6emM1/Tiyf35TkaluErWMd7+iGLw3RhSpQ2hTg Lmbcas/eT7QoyMJly+B5EunzNbn06toElLeXtlP51vOhvP2tpaMbUgWoAv9lBd6Ot1+4cLGyeYXJ nc24hJOhiabGxsz/s3ceYFEcbRxfuAZH7yBI79wdYEcs2HvvXbH3EnuLXaMxKsUuir1j70hRbDFq TKImfmrsvaACgmW+d3a55UA0iJS7492HB5a9vd2Z/8zt3v7mnf/rZC3oVEcf0qSC88nzg35p8XII 0n68zyc9QQ6R2wkRrnr6BjQEnUfN3ErVvrryBt720v71xRNa6U3vKAVXFkg/2risoElZQW25EHzU A50FzSobz+8hnd/DoFctydL+JnUUQl0Hf6bmQHo0DuBX72ft7ltbLojsbTS0gWBUv5bA0p/2q/N2 x/KPb18/H9vuVfh4yLb1bFjT5MjxnzLSn//Q6tWyqR9T37wY1+7FzP6Z8e3A29++HdClXr/awt61 RV1r6As9q1PknsN0nYt1h6j1kAGWfgGBDkw9f0HLCsKu1cRQgIYBwireYrFzOca9OlOps9JJJjdo D3lX5Y0DXHWeH/JlU83KYb7A2eVuZdxF+mIdUwPdKaEWqZBw9oR/8lHZ4uE2d2Mgvl0+vrOpj68f uOj/Z79F3v6fEuEOqAAqgAqgAl9SIO092XmDtDpIrKKIFALbvhDHDvHt5beReRfI9ZfkVTpJ/5B1 PIj2VIVOWS+U7DUt4O3gmt6nTx+I4oaEPr/99htHnvlWVf0Xvq4AVFfl7bAbGK336tULiDQsMTEx qvvzB1FdgYh6gPZwOoD8Bw8e/Hx/8ImHEHfYAWLLIa4edoPg9s93Uz2m6jpUAfg/8PbIyP8w61uw YAHUBTzkeU8bzk8GCDzH27mTQnkgfSqUByo4cuRIzkhH9YzFtY68vYiVV70AwrURLDj23SK1disz XPDUnQ1611tGLKJIv3hyTY2GaIpYMDydmirA9WT4ffs1veNnIfdIYr6KHL2Te7GRt+euiwZuRd6u gY2GRUYFUIHiVyB/vB2CkWrXrtMmxODDCZrK89hCp5hZ9p9OyiGDKrjHgGF7Sqz8wmqPrdMcEyNc Xhz2g30e7PXxdhQDXmZqDsqG3Kv3k1Rs06GO9ZK+Bsv6Gf/Sw3BUM8mgBpIOwaKa1BFdf1RzvXZB ount9Yc0kjQqI25aUSoysWGcQihs50Plq/cXe1Qf3URnSENJlxDxrE6S4b0afEhNezao/tudwNuT n49unbx85qf0tGeDGyQvngC8/dnYdskrZ1IUP7r1i1n9ufj21yumvn37plPz6nO66LcNEnWtJhrb QmymqE5N5vlzsYRfGty5SvPe7nV7eLhal3fRKeuk62OnW8Vbt7KnwN3NlvFpSv3eawBjZ71ocgwx 8P8Ct7dw61bXEIYtgLenHVdsmWr/62qPt8f8bmzzfLTXm5wNeH1UvmdO6dCGBgsGW5NTijdH5TUC pGCCmpeug7w9LyrhPqgAKoAKoAKcAmCA8O9rcuIBWXCJ5jOlTuwQys5lPuW4EIvchUuI41oStIP0 jiMxN0jq+yz9VOFS1lZcy66ApvN2Dinv2rULEoMCfO7Zs+cff/wBSDx7LTP/+5y3c28/d+4cvB2I dIcOHSD/aUbGF+N6IT4cnNsBccO5gGkD6odDq7J0bn3lypWcgw0g7t69ez9//jzHblyBIOgdaL/q 22E75HKFWsDxwX0dvhjnagIDb7lx4wZ8AYPd4Dcftf45b+cODgUAR3fO2n3gwIHXr1/nClC8vwuO t+v4lq9avHXRxLPzV8jkdBrQXnMXvZZmWnLx7B0uvAuI5wby0wVqxpUXl2xNlALLrIkK8B142q8q kzVgtCicTD6bS6A78nZNbOVcy4y8PVdZcCMqgAqgAl9XIB+8nXuOCAsL93NkXh31A1AMGTzT4mhs 9vt4aooCbu0Tu1iaGepUD9CLHGEztafZ2+Oy9Dh570ZGjHFpyq5Vw8UrdpFIDesqxMMaS4C0dw8R VXATtgkSNwyklix960iW9jPuGCxqVUnYMkjKuFRmyrZlqkGQvIpDS/X+ugFN6/pDVLywTSVhv7ri uZ31J/etnvrm7bNBDd7GrPz4Jvn5yOavN4Z9SnnzbGDd5MWTPmVkPJ/Q5fXqOfDSs5EtXs4awPH2 NyumvXn9um2Dcr1qCheGGs7sZDCskbisp5Sp3F31jDpl2o+eMPnB/Xtr1qxuXs1Tbs/IS+sGOukG OotFENZelTWQyeTznyVI5WE7rAR1FevrHfy5NGcmc32zZ7NgvZ8HWh342fH5QV9wcYdxClAVpEs+ JntzRAb/3o7xdisl3rFjx9eblXsVeXteVMJ9UAFUABVABU4/JCOTiO8mYh3FpkXjGDs3Z1xJgcAu BvwQgBH99Zx6xWSLY+dti1HKPCig6bydqyIQ8mXLlgEwB/4MzBxwN5DnHBwb9nz8+PGYMWNgH1U/ GdgOe27evBlcXACPQ2w5+NLAN1JVbxnYAZD1gQMHBg0axJ1l6NChkAuVey9XBu43d1JwcYdTwJ71 69f/ki0MQG9I1QqONGALk4PwQ6pTiG+Ht3fv3h1S5OTwooGdk5KSAOMDP4cCq34N+5y38yUEp50V K1ZwbwFEn3ezetXaFex6gfF2fStmwqWFF95/UC9/+oJVq7COxkNLWHmcQuDyC2OXudi8R9AcGQ7R pFssgZyVuKAC6qAA33sfvCUtDrLj8uxAPAzNu64nSQ+ylRF5ezY5NPkf5O2a3HpYdlQAFSg2BfLB 27myXrlyxdSAubLeA7xigLEDEwbv8d+j3V4c8ru4xkNXh9rLvI71gzyqieHO/9viCaw4dpEzo6vP VOqSFStOoXQ/CqgVbRjnuoxdMGNfnZG1cvNyGN9SPLShJLSGeGB9SYvyotYVhb0bmBpWbC+v182u WmemqoovTbW+pd1dl/Y1HN1cb0p7g2kdpWOa6/Vt6nnvzt2nA+ul7I76+ObVsxHN3+6O/vj61dMB tZKX/PjpfcaLH7tT3v761bMfmr+cPZDy9m7l3qyY/uL587a1XBb2kDYMFHQLEbWsKBjfQhxYQcZU U+Y8rdovsEbz387DY9O5+lXlQZ6GzjamlWWlfd1saFh7nSFs7b6K2Xnk7lHbxU6YHi8DqP72mGxm b/OUeBkoBnMEXh6WHZrvvGCI7a7ZTk8P+IKNDIxrfEpUxIW52FqZ8VFVX+83yNu/rg++igqgAqhA yVQAcvm9SCPXX5G9tyjJ0VvKxrFDUKUqYF9M/dgtVhGvDaTtIbLtf9mcYfgn7pIp4HfWWjt4OydC dHQ02KoDpob4c8hkOn36dEgkCu7ugKw3bdoEFB0YOABqWLp06QLsnZcOIDkssA/4wACRBj8WOAiQ 8PDw8PXr169atWrWrFnwEligw3sByIMf+1dcWeBQwOqBpQPYB2DOxcDz5+JWAKEPHz4cdoADQmj9 5cuX+R3g7bC+dOlSLuQeTgpuMFFRUUD7gcOvXbt21KhRUEF4I9Rx0aJFHKvn3pUrb+eOzJUKDgsu N1wtEhMTVccU+AIU2UqB8XaGEYw8yYSRgC2fzjzKNsmlyOqiHSdSvZbCZbb2blJ6LRHDNVn1agwD oAuI23oScZlazUBsvOq7tEMHrIVmKQA9kOuE0Cdt+KwE0GkXknkqKYCRt2tWs36ltMjbvyIOvoQK oAKowJcUyDdvT0lJqVixYsRwa/A8AVx8daNnuxCDP9a5Q2rUsZ3MINHn6A6mYC8DmD1qrN21jZ7A 5FOPy4P8xIxL1SxLc2qNzv6AkznEvdcYBLHrNorKENY+ua10egfpmiHGQxvpzekqDa2hJ3M1W7go /N7d25Bmq2LDzkxQD0q2q/eXuIc0LysGv/d2lUUtywt/aKo3rLF4agfjRbNnJA9rnLJ3DfD258Db D2z6+OrF034hyUungJH7i2m9k1dxfjItX80ZxPL28m+iZm3YuLmmJzO1vbRriHhOZ4MJrfV71RKP a23AeNUTlO+kW6GTQUDzCROmHDt2DB4Gh3Ws1LRejdlzfgKb0EURS5hKnbKqxkP1L61U68eYO4cN tQK6DvMCnh70ndGb5pbNSFT8FuVeM1BfoEvzpfo4CRsHSZ/uB+Su+HhSMbGbZf0GTb7Umjm2I2/P IQj+iwqgAqhASVYAno7/TSbhl0nj/cRrIzEES3Zg7DnsYthANZ+NZNQpcuQOtWRHu5gC7zPawds5 2gy/r127Bn4vEOIOSJlbgGlzC/cv0HIITQf/mVwzq0Ja1fnz5wNah50BuSvfSqk4/AsB8OAhEx8f z6WtgdPB8qUWgZyqgO6B4ee6Q2pq6oABA+CYcGTA5qrR5twxwUYGeDgweTgIFIMrPPzm1mEjRNqf OHFCFbbDiSAnLLwEuw0ZMgSQfq7Fg2+JnL08SLFu3brPDW1yLXBhbCxA3u7WYjgDWJi9gFTcTvb/ WxjlLSnHVO3UT1IJDGFMPEMj27NRd4CZ4QQ83mEi0oAE8utjpO4lpXuoeT3Bhq7DETbDCzcbLoKU 2UquUEMvgrxdzdsu78VD3p53rXBPVAAVQAV4BfLN2+GpZOLESTUDRcDbAQU/Pui7dZo9Oef/9ojc 11Gko8MkRjqT0/5nlrspnIVrJ9qDqfunJP/1k+wZfVsG6DpQaFVHdPpvf52gzgH+Dsv6iMHF/Yem kklt9ZYNMI7sY9StsWL92lVz5s6H+b8bNmzYsmXL9BkzjWR1jRUN3RRVwRXzh4FdulQTgZ/M4r5G HauK2gYJITS9nlywsKrH3+siHty4fnNQozsbFj+5ef1+ryqQJpXy9pn9XkROevn44Y0f2lwb3/32 5UtnmslXdqzr62o6t4seHG35AKPQGqL+9URjmwl7dm1z7PCh0aNGwlNYzI6tEF5+8+b/Boa2q161 auTixRCLBROc16yOkpZtRocMctQrd94+gCnftpQpczfGByYIQOx6erx8cCuzPo1NJvewNBBT0u5s K9w2vRQ5HbB1usOOGfagc8oRudxNFBYewTff11eQt39dH3wVFUAFUAGtVwAs2V++o67sC38n8k25 xbEDw4kk+suIZRSEqtK0p4/eZqmiSoGytuLa9ymgHbyd04DHy4DNwWVl9uzZEAoOweHwfQkynEKM OpjGwFdN3hGd3z+HhBAlvnXr1hkzZsDbAc4DY4csq2DGcvHiRS4gHN74pfeqlgSC0oHwwJZcdz59 +nTfvn0hxyvkRf087zz3FigqeMuHhYVNmDABigF1gYpATHtcXBxnMkPLofLBePnyJSRRnTdv3saN GwHFq76kWjCwo4F9YE+YAgC5Vj/fLYcghfRvAfL2KmXl5uuUQBguI2Gk6QFy9zWBaw4u36MAdC5+ SOn4PRrxDvOMRJ9HvC8k7uvJir/IvTck5T2y9++RHN/7XQpwl8OZ5+lgUOYIEfu94sBtcvf+A7ju fdfR8c3qoQDydvVoBywFKoAKaJgC+ebtUM9jx2ItTA2ubHAH+/FnB/0WDLa8v8d36ShbMJNpUtkg NV72cI/PqaUuTw74ckgZsDx4zsicxYxffZo1VZVLQ6B7mTaV/a3WD5GuG26ypJ/JxNb6zcuLf2yr 37Ki9MChY7GxxyGevEXzJp3bt4DIJYgv+vOPP5JOnnhwDwKL7sBTzLCO5btU0elYBSzfxT1rihoF Coc2EjuV0jdxC/L2cG0daNCwjEXjIK823iYLe7b559rV6G6NBwS5Va5UroanUQUnqZNdKQMrFy97 QSN/3XGt9LuFiMe00BtQTzy8sWRoQ3GrZg23b9sOc4qPxR6DwKT4Y4dqB9hWlDvOmj0bHiRhOziF lqlWlwnumcs4wue8HSoOwe1mLr0aGX1gM6VmxCnAcufNMb+poVZlPEQyF+EP7c1v7fAiZwIyTvjH RTjFhzvB+vFFzsYmlr///nseOxny9jwKhbuhAqgAKqB9Clx6SuZeoKHswGRoDGoY+5sLP+N+RxLb NaTdYbLkT3LyAXmamqWBCk3M2ohrBaWANvH2zzUBPA5cGpYcxilfIcyqL0HeVQiDzwGuVXf4/Izc FtiH341fUd2Z2wie8OD0zr9FdQdYV30jrEMtoDD8YEGOnXPs//mrX9oCR4blS68W6vYC5O1l/eUL /lC6N7PzYiD6GvzG2x8hfz4r1EqUiINT6q7sIxDxfvg2GZFEk6vmjHgPo6OllXeQSWfJZZBd+ZYS oRFWUm0U4Prqn89J1RjlNw0Wubfc9XrhstVqU0wsSP4VQN6ef+3wnagAKlCCFfge3g5Gmi4uztNC LchJ/w8J8oM/OwW4Cs2MdLvVNXy834f6n7DpPiF4G37g3wzWhHxiZzNGzzTTRkaVRfvUlTjJ7Rwd LcyNXMyZfvUkMztJF/U0kBiaT5gwCSKCIKx95qQRM7pZT50y+eXLV0+fPTtz5kx4RETbdu2aN2/V to6sbx3dPrXF1WT6RqYmjE0A41yTCerO1B6mr6gTGqI7P9RwbjeD8N6G3UN0y7roBnkyveqKOgQL x7bQH9JYT+IZzNQeygS0ZcxcA92lDQL0RjTV71xNNLebUYsKEpFYjxFIrV18GBM3IwNxq8omldx0 mzdrdjIp6dSpU3v27Ll/716foSOZypApVemQ85UV4O2BbY2kgtPLncGKB37+2ew5sr1JSqyMnAqA SQEA4ckZ/5eHwMLdcf4gq3GdTd+BdHHyfk2NypQtDxOi89hhkbfnUSjcDRVABVABLVAAwkrT3lPH mMlnabB6LoCdtWSHCDTr1aRfPLUj4Bce7PBbcKXwFNBu3l54uhXgkYsLdxdgFfJ3qALk7XK5/M4b IoGIVtVRPA68LyIjT6HNeP6aKJd3qbL3Y3dJtRiiv5zoLsmuPODNcFJhOzl0m94IMI9tLjripiJR YOgJtmdCh1z8CYaHKu4gbzNwHKhIpC/MkyBvL0x18dioACqgtQp8D2+HpxWYMaxw0U0+6gdEnZzy B6KeAjlST/t/5MK2WdKeEa/4kKBIPiyDlKBA3e/EeNlZCBmvWlmh4MCf4Qci3msMpn4sshYTWghW DjLZOtpU7m7BlO9UqVpt8Ev/448/Ro4aNW5Qu6njBvZpERDavZt7QLDQpxbj14Txb8N41WR8GzFe DZgK3ZjqA5hag+lPCBjX9GOq9DM1twzxEbSsKGroL+xbVw8Sqlb1FgS5Cyp7CuyMGamFM1N9IFuG gbQYlXoyZTow8tZS7yATn4pMQGtIz6pbtQ9TOdSpYuXQmuKu1QRVvQRlfUpDZDvMgB4/YaJVKWfT gLrUJwcq8hXSzr1UrS9j5dm9nhG4tYMg4CQzpDV1vK8s04sYbns3xhss3LntsL5ntsPlaHcYubi7 y9vFTgwWqXnvi8jb864V7okKoAKogIYq8O4DSXpIfWBaH2KjHxexpJ0+6mb9QObTwK1kUCJZ/zf5 +4WGVlR7io28XXvaUtNqUrC8Pf0jCd6ZPeKav+yE0ekzE86Qhyr+VJqmlnqVV5W6P0ohm6+TPvHE GSLeec3hsg9TmRYRqyjqpx11lTxOUa8qYGm0WwG+i+65RZz4uRjhxH7Np/t4HdDwtkferuENiMVH BVCB4lHge3g7lPjy5cuGEgZM2lnHGOpDzkezAzGmPyxsB2uUIB8hRLZD2DYk/YwcZsvo2zA1WAv3 zwG1T53BdXU3jDDtECxhXGrqBHdv1rzl0aNHwU8GkDv4ZG7auH5eb5cWZXWZwNZMzcEUcdMfpSE8 9y8l2+zGav2N5LWaV5RYG+v0qSUe3Egyooke/PSuLfYppetqrlvTTzfYx4CRNaOUHt4Cb8w8IKxD FlfYOMBUUatRkJW3u/WQ+sIu1cR1FYL2lUVOFrplypYDH85S5euzyV7zBtvhmOXbmhkIbm7zhnkB 7xPkj/f6HvjZacEgKxszXciRam+pu2yk7cvDfhD3DmLCxIFPJxSfEhV75jhZmhvDQ3reOwry9rxr hXuiAqgAKqApCnCPtPD78lOaNc9wBcu7gLTwjJ1fjySlo8ns38iztMzK8Y/DmlJZrSwn8natbFaN qFTB8nao8k8XlPYRPPXlV1j8O+O8RgijeYXMjBj+RA7eJuW3Ka//Oe4CkdQx7NYrWju4+OOCChSB AlxPe5POpoyBEPdw0mR/EZwWT1G4CiBvL1x98eioACqgpQp8J28Hc86mzZoNaGZIzgUAHM5k7Bxp 53l7oiI+3AWCtzf8aA8x8BDr/uKQb0UvMeNWJaeLOxf+7V6zWSDTsYYJ41SVw+kWgfVDatVftGgh NMLx48dHjhlv7uY/p7txw8rWTMXuX4gnZ2F7cC+3MgG/dJUs7Cmd3sHAVI8J8RW0LCduH6znZq1j Z6pTwV0wuKFkxUDD0DqGhvIa1FadKwP3G1K4BofKKvqPay7sX0c4rIGonr+gmregX12JwkHXz92M CWzH+LVgIPSdp/2qb891vWovganduE6mn5LY4Qmw2WGnBkCs+7ODvpEjbILlehDr7mEvmNTN6uRi l4ur3SDVbHqCvE2IYc9efUGBvE+CRt6upZ9arBYqgAqUUAVS35PTD0n4ZRrKbrkq9+Sn4OVbcTvp E0fWXiN332QJhbAlS4viXkPeXtwtUHLPX+C8/U2GcryPx+zcSiT1cl9wiUqNF58i6HC3kskvl0ij fcR0pZK9cw0RTpgFxHcTmXiGgBdNSkYRlAVPUdIV4D7yGR9J54MpFTe8BjlgC14HNLpbIG/X6ObD wqMCqEBxKfCdvB2KvXv3HlMj0YNdPhCGnQtvZ3nyxxP+KSfkb47JU+NYI/d4+bbpDgIwRa/YKRvf 5gC1dx2xjbtOhY40vDwzWH0gU6G9u6szwPbRo0aZ+9djQgb6lfHdMNzIyT8wc7cccBsAeNV+tt6y lf0NZnWWrhpk3Ku2nq+Dbqeq4soeAmN9HVOpTtMywkENJbM6Gf7QVLJyoNFPXfVMPctmkXMWtstl zoPqCQfUl4T1NmwfLGpbUVTdR7d1JWGjQF0XL1emGu/Wnh3U5ygM/y/wfNeqDpa69/d4g1Z0hCJR AT7t93b5vDoig3U6TSBBcXiBY0VvsUTEWBnr3truRZIUv61y19M3BL96EBx5e3F9WPC8qAAqgAoU iwLwlHrlORmYSMxWEdFS1j2Ai2DPHsoIKfNWX6Weyekfsh5s8SG3WJrs6ydF3v51ffDVwlOgwHk7 FLXrUZWsqUrqLlxCEu4VXj3wyLkrAFk8XqeTpX+SUmuyU3f2lgGNYraSTDlHXr3L/e24FRUoKAU4 un7v/oO58xfAMRG2F5SwxXUc5O3FpTyeFxVABTRage/h7Rz4ffjwkVwmG93RjPq35x7iLr+0xqNz HeMGFSSTupmdWeYK+UDfxctbBhswpi5Koq4E1wDYwdSl1pBsXuiwscYAoXdtO79KTOlgNp4cUo62 H9xQ3KeJBRMcmmkCw2NtWKnax843MDxUsqSvcWRvw5UDTTysdRaGGtaWCye2NhCBbYuZTusgIRi5 D2ogiR5qMq6l3vphJvO6Sm38ytEo9+r9heVauzpajGoiaBggmt5ROqShpHuIqEGgoFNVIUS5t6ss dPBwzVl41QLkul6xs56B4aYpduRsAPD25wf95va3Ku8J/J/xtBf0b2F6boXruzg5GOB/OqnYPM1+ aBuzDycVacflXesZBlep/vbt27zDduiWGN+u0Z9NLDwqgAqUZAUAm1x7SXbdJJB6zBF8UBfk4soO cYzlt5PusWTTPwSiTHHRFAWQt2tKS2lfOQuDt199kZulTASpt4fcVplio31iqnmNTj0kfeNp5g46 Sqs6OBtGx0daHSJbr5MbyQhC1bwZNbt4Dx48mDdvnmbXAUvPKoC8HTsCKoAKoAL5UOB7eDt3OiDA c+b85GDJ3NnlnStvv73T28NB5Gonur7D8/Ux2eIR1hmJckioCslAPe2FjHetTA92DlBT3q50UOeR debG/tn8Xqr1t/f0WNpbJPKuSfk8t0/mQQZI/etMaw9h7SaRvY22jzVrWUEc3sd4RieIdTfoWVuf GrZY6wJCh8D1SW30+9cVb/jBdERjvbVDTeb3MNB3LgNe7rquFSyNhCE+ugtCDUNriHvVErWtLGpS RhBaSwyWMt2ri+pXsWGqgJNM3iLbOcMZM+eejQw/JlFbe4hmjx5vd3q5GwS3751bulZZfR0dxsxQ J3yo7cckmkc19bgcgtth5VK0h5WZODo6+lvbF3n7tyqG+6MCqAAqUOwKQFqxab8Srw3EeCXRgWBR LpRdGTUKqfEgRhHcUGNukIcpaA5Q7M2VnwIgb8+PavieglCgMHg7+FwB1M3K2slfrNj8ETA3B5ci VkA1lvhtBrnxioxMIobLs1P3SHp/gTlTtXaR43eLuIB4upKiAPJ2rWlp5O1a05RYEVQAFShKBb6f t0Npnz596mBvt2CQdVaIOyROTVAkH/YDAr9zpiOQ5PoVDcAXJSNOPruP9dX1Hh9Z5L52kr1YLGLK tWddZf4LXAPZ5uE2rNQYaBDYeH5XSblAJ6baoCxfGiDbFTqF+BuC28ycztLdE8yGN5b2r6u3Y4xZ jxri7aPNmpUX6sM5nXXHttQf1lgyo6PBmJZ6I5vqbRttOr6VdOcY0771DXQCW8IogMjSdVxzccsK wmGN9XrVkrQJEo5uplfNRzC8iR5sdHB1yjKf4YcGvrQCBXat7FmKubHNE3KkAkVPPiob08k07YQc 2DukkQVxVoyycSklgrEAwO+gJOxDLXoSFWM7Wfj7+39TZDvXhZC3F+VHCc+FCqACqED+FAA2AuT8 3GMy/xLx30KYX3IJZZcuJ14bSdP9ZN3fBDxRcdFoBZC3a3TzaXThC4O3gyBjTmWODJbZSi49pSkk MgcKI2lwdexd8gGTdRZTv1Fl7xv+JrV3U6sZOpLL/0TQVCCQWTvsd/LHc5LyvpgKiqfVRgWQt2tN qyJv15qmxIqgAqhAUSpQILwdCrx8+XJHKx1IhAqB68DY0+Plx8Nclvxgk54oDxtqBwy5a20jckpx b7dPoyC9fXMdPp30ByAPrjJDWpkyUggU75nF0r+ErD/brhPco11NswGNTZhyPbN4e7W+ps5eUQOl S/oa7RoPsF2/VUXRvklmQxvq/9BEf8VAo+blhZZGTGiIqG8dcURvozHNJYt6Gf3QRAJZUDf9YDql rf764cZ2DnYQS6/jXcvNVm9YIwnA9s5VRXXkwp619IY1FvevKwE/GR2ncrlbx39WTlo2/+b6EvHR hU78kETyMb/KfpKECNdPSeDDQ63vIYPqjW3eIf5SL0fRm2N+sAXs3P/e6GlpKtm7dy+I/K3IHXl7 UX6U8FyoACqACnyrAmCiu+xPUiOGOETTqHWY458165+FIUBFgnaQyMsEHBteqDjuqiKUbz0p7l/s CiBvL/YmKLEFKCTefoW1lAFvKy4dJ0S8909QXs0iiWAJ+fFsiZVcLSquesu494ZOj6q9RzkmwoF3 mEgVTgyWE5+NdILVs1S1KDYWQtMVQN6u6S3Ilx95Oy8FrqACqAAqkHcFvp+3cxAY7qe+vn6Tuppz gdn/bvOq7Cv6Z4snSfKf1dcGePu4zmbA2HfMcPjfFs/Laz3m9LV+GysDnvw2Vl5dIWLsZBCvnsXM c0XWOTZSh5a+XnKPxuX1mPKQXFXpAF+xS/sQk00/mGwbYza9g2F5N8Hu8aaRfU28bHV3jTMDDxmA 527WOhPa6A2sJ1nU23BUM/2ZHQ1+6mo4qa0ewPk1Q00W9TLsXEXMyNowIYOs7e3aVRYHOID5jF6H KkIIbgcT+A7BwraVYYeW1GSeP++XVqCcFbuKDUxm97Ug5wJgMALoenqcPD1RMaC5qZ2ZTuJi6tkO dJ268SQqbu30disluLzOA7bA9tBGxhUqVf1W53auAyBvz/sHAfdEBVABVKBoFAAedecN2X2T1AHc sfCzUPZICt5tVpOALeSnC+RZWmahgJaoApOiKSqepZAUQN5eSMLiYf9TgcLg7dylafiJrJNzW/rH qziHLySdj9JUnngdy5KpmNb4Jrj9mvSKo6O9ElWDd8DvMPIbRtvrzCN6D+L3L6by4mk1WAHk7Rrc eNmLjrw9ux74HyqACqACeVLg+3k7d5qPHz9GREZaGutcjnYHUAwZUX8ZZHV3l09KorxDbSM9MXNx jRuEvqcdl2UkyCt4iXydRa+O+H1IVMDPlU2ezjZCxt6fsmveMeZL+DprO7WXMazYzNDEHAxkMrl3 9QHSwAY/dzeESHWIRa/vL1jSz2TLKNOKHoIp7QxgY4dg0cAG0nr+wh/bSn/pYTi8iWTFQOMRTfXm dTWc1oFu6VVTsqSf0bT2EsauMg1fD+rGuFZrECCsIxf0qCGp4ikAB/gW5QVVFKZM8H8Z4HBFDequ Y2zTvZ4BwHMg6lDfh7t9jy9ygrGGPzd42FoIDPV0RrQ1uxPj/f6E4kO84kOS/4Qupv9s8fiQoIgN czY10t+xY0ee2vKznZC3fyYJbkAFUAFUoNgUOPuIDD9Jym0jJitZzA6z+PkcdoA4IqljzPgzJO4e BfL8gqyDl0JrVpC3a01TalxFCom385cpfoVTBgYWIa1zpnVJBE1LceGJxmmm5QWGQRDIrDrqFLFY pXJLgnsT3KEiiMcG0iOW7oALKpAPBZC350M09XwL8nb1bBcsFSqACqi5AgXF26GaqampMpkstJHR x5MKQOuX1rgPbWP8QztTE6nOqrF25CwX2i0HjHx7p9fjvd6c8wx1TTmpSIh0logEjHdtJuQbo9wB iYf0ZUKU1u7VB1jKKo1vqd+6knBsC/1Vg0x3jDXrVEVc3Uuwa7z56GbSyW2lHauK+9aRTG6rN6+b FILVfwk1XDPYeFxLPUiuGtHHEOLby7noNAyEkPsAGr7OGsUz1vLKfsby0sKB9SUA6nvVEpq5uOdM 0po1EKCMtIct1fsyNt5V/ETvEmVQX6hs2nH5hM7m4zpbpsTJP51UnF7uam8pgPh/KxPdpSNtr27w OLnY9ecBVjBNICVW1iTYsG7devnuQsjb8y0dvhEVQAVQge9XANAT5Kp7+Jb8fJHYRBFmEUswuMn7 LGAHuxiYvw8vDU4k119mnTAHs8p6Ade0QgHk7VrRjBpZicLg7V8SgruO/f6UGK9QIne47oWRnTfI B0xC8SXVimM7f8eJvkbHROCulGXwziXsDiN+m8jhOyQ5HduuOFpIY8+JvF1jmy5nwb+VtwMX8vPz y3kU/B8VQAVQgRKmQAHydlDu1KlT1haGR+ZTl3LAy//b6hm7yOlOjBdnWg6G7aybCuXMEOV+bqXb vrmlr2/ygmB4sJ3ZN8/RwlTCeITQqHLg57ni6883cvHw4NnCv8WnLmPqPLOjeO8EM0Do3aqLwUNm ZieDjT+YdKgijh5qApHq09pLZ3XSn95Bun64Cby0rL8RxLSPbCpdPcRk8w+mchdDxrMhU4HN4pp5 /H5MQGvGraqzndTR1cnbxUTkWxsSqv5HND6Y0lu6V/AUQew6jClQu5gERWqsLPmI341tXpunlrq3 ywcq/mCPz5x+1rXKSBytdINlonkDrFLjZGDqHj3e3tbW7vr16yDstzq3c70YeXsJ+zRjdVEBVEBd FHiTQbb/j/Q6zuY/hSjBMJW4QZa0m6+is/XXXiOXn2WVmYceWZtwTRsVQN6uja2qGXUqSt4OinDX tCeppPUhlWtgJAGnd94sSzOE0/ZSqt59/nhGwi+TkF1EF7KK8APEcCNbROzWkA5HyI4bJA3Tqmp7 lyiQ+iFvLxAZ1eEg38TbU1JSWrZsGRYW9v49XinUofWwDKgAKlBsChQsb3/37l2P0J5udqLkI77A ljm6zv2Gf/mfN7HylWNsNk1xOL3CtVEF/aSlLuCyAv4q0RPtBEIR41efqf4tyJ2H8MDG4afmQIFv gxntBJNa65dx1gGH9j61xVtGmw5vrDenixR4e5CHYGFPw4U9jeB3RE/DcS2l64eZQIj7+FZSsGpf 1tfI3cmCqdKbZek89mdXqvVlqoQytYcwQd2Zar0YVcjPl4FfgZ3tZKWtdO/s8uQi21kdYKABZKGV TWFFeLoPTHXkMB5BzvinxyvISX9ubOLfHV4mUsG4cePBqCd/sB26FPL2Yvtc4YlRAVSg5Cnw8RPJ +EiuPCddj2XOxM9hF6O7mHqzV9hOdt3IUkeVcmRtxTWtVgB5u1Y3r1pXroh5u6oWk86qTPCJJM5r yf236A2uqpC6rPN3JZh11eIgTXdLw9159zPWagZsgsJ+JzCyjFMV1KXZ1LIcyNvVslnyU6hv4u21 atUaNmzY3r17MzIy8nMyfA8qgAqgAtqiQAHydg4L37x509XFCWxkMhIzI7p5zA6c+X2C/NZ271Vj bK5t8gDCTM76x0e4KNwkKeDrHk+x89Zp9lZmEogk/4/QcR5rf74CGDyoi8QxkHGo1CpIsrSf0aJQ 8GY3mNPFYP1w0zldDWv4ipcPNF41kMa0g9N7RB+jNkHiLSNNAcUbW1iJnAIZ50qUpXOR7fzxM/9l HWZoBL5KRD2/D79SuTtj5VbBU3h9q2dmbH+8/GKU+6H5Tn+s83iwy/fNUVl6guJVrGznrNLnV7lz EB6cdkCf9/HyN8fk3eoZlS1X7uVLFX+Bb+9yyNu/XTN8ByqACqAC36zA9Vdk5RXS5RhNPMcsYJPN 8WiCxRSyTWRAAtlynUCcJ7cA0OCZxjefD9+g4Qogb9fwBtTg4hcLb+cvd/v+JY5rleQ2goiXkl8u kbQPGqynFhf9k7JucNuCG1zzg0S6TNl2HH4PI3rLSKuDJOoqeZyi3Bv/ogIqCiBvVxFDs1fzyNvT 0tL69OkzaNCgPXv2vHr1SrPrjKVHBVABVOC7FShA3s6XZd++fWIBc3a5K4eaOd7OBXXf3+27aIjV OzbAG7akx8n7NTWB3Kkvj/hy4d8fEuR75jgKBbqMYwVqLJMDevNA+2srnJc7vLe/nbPj/K56o5tL 6spE28eYbRpp2rmquF1lSfRQU4hpn9FeuvEH040jTD1tdHrVFM/rbmDjE8jUGEh/vhS7zpUHfuda MLp9ABMcypiUDnQTPdjrDXH7UC9OgUd7fWsGiMCq3VCqU9lXNKiF0YrRpU4vc4Oo/oQI5/ST1Nod 9gSznV2zHfX0pOfPn+clzd8K8vb86YbvQgVQAVQgjwoAQvffokQQnM8tP/s+kkaz940nN5IpWufp Or+Sx1PgbtqnAPJ27WtTTalRsfB2VXHSP5CqO7NdM2vuIu/Rzl1VI7VchztXynsy8Qxl7FkmM8q7 HszeAv+0Z8oBZbWsARaqGBRA3l4MohfOKfPI28eNG9ezZ88NGzY8ffqUC8XM9zz9wqkHHhUVQAVQ gSJVoGB5O3dFBauuAQMG+jmL7sZ4c6g57bjsxQG/X1e6rRprC+7l4KAC218e9PuhvbmODjOmk/n7 RDnHpSHSG+LeEyNdvO0FOqV8GQgU/xL6/hpyZ6PTawzQLdvK2sWVca1t4+wS2cdw5UBjBzNBr1p6 m0earh9hUslLNKKpIdjOmJZyYtzqMzb+TEALGrhOWTrvJKOS/PTrZ+TeGNBCbGrZvobei0O+4M3O w3ZY+XSCEvVBrcwcLHV9nISGeoDe6WIoZqRipmcj47u7vCHEHfLMOliJf5wyFfrBd96hkLcX6WcJ T4YKoAIlQAEwjbnygqy5RtodISLwtl2o4pDAhvxJl5PgnWTYCXLsbpYcyNiztMA1QoC3Wzt5MHZ+ m/ceRT1QgaJUoHh5O38l/PEsAUOSTIuScGK2kmz6J2tQsigFwXPlUQG+7WB/GGhuf4Sdz6U6kyuc 3hDr7iFRVzJHmfN4ZNxNixVA3q41jfufvB34z4wZM5o3b7558+aHDx9qTcWxIqgAKoAKfI8CBcvb oSQcIn706JGbm3uLagapcWyS0OPy8Z3N5/W3/niKurgDVH96wK9pZX2gzb0aGYLzDN1I3Wa4aHD6 lpvbvaoqRIzUkqnYkamRv0B3IOdAy1nvl3LtTEykNva2jFMl8G/fMcZkbncTA/96ul61hFZ+TNWe 9BQcTs81cP2/STt7Iu9aQqFoSg8zZY1oRfgf5YCCfPuM0nFhzre3ex0Pd4kYZhPa0DDYT3R6pRtE tj876FfVX69y5cqQ1Pt7mpV7L/L279cQj4AKoAKoAKcAhGWuvkpkm2l0X6aZrSpqiCQe68mSP8nL NPJOxR5BlVGgkiVcgTfpZM9NMiiReK9/z/ySzCxMmXbsXgnXBKtfxAoUL29Xrexfz4nNaiVyj6QX 1Vq7yet01V1wXe0U4O9oYNuenE42/0Pc1isbkTOZYZvSYDlpfoBAE+NSwhVA3q41HeA/eXt0dHTn zp1XrVp1+/Ztrak1VgQVQAVQge9UoMB5O5SHQ+5nz561sjCLGG5LkhSQMPTxXt/L0W7kJOXP17d4 1S8vBc+YEe3NPp6kyUP5OHCOTsO/EBwOpu6DmhsbSESMT02mam9l5Pk3Bpxn8vMBDCQwDRnI1Boi cavUuKKxtV8gpfE1BzO1h2YembrBfHtYO0X6/ZmKXXRKyV2tmdXjS5FzAWDDnknXOTMZ9jeY59Da xcs/Jvnvn+d4CrLEJinIrwHkfCA5A5lSFe/i5BO7Wjg6udy6dYuX8XvaF3n796iH70UFUAFUAFwO /nlJdt4gnY6yjB2i2bMzduvVpHoM+fEcAQt3fuGJBL8FV0qgAqnvaa+Iv09W/kVT6LqsY2dDQBcK /8T2ok/gyTAs4X0JVAarXIwKqA9vBxGA2cKlVbJUeV2NIM7ryNE7NPE0LhqkwIkHpOMR4r6evUvy jmpsuDvM9oKZC5ypmgbVCItaUAogby8oJYv9OF/n7Vu3bg0KClq+fPm1a9cABHEsqNjLjAVABVAB VKDYFSgM3s5Xau3ateametum2YOVCgvS5f9s9kpa6upsLRQLmaWjbD8l8THtWXHgPHKHlfRE+f55 Tp72AsbYnqnQkQ1W/3Ykzjm9ZIavs3YxlTibGnY9f5g982is84xPXaFEv0VVg1s7vNgaAWxnqxOv SI2V/b3R82OC/MVh2aGfHclp1mEmXgG+7n+uc189zvbvTR6P9vhwNu/hw6zNzMwOHjwEAhbIfQp5 O98VcQUVQAVQgW9S4E0GWfYnKbeNmK1iWZDSpZb3rQ3ZRWJukMepWWgIMDuS9m8SWSt3fppKoq+R NocoOTRfRUTAEiNy70JM5KeWBwE58mkJtVIPrJR6KaA+vJ27WsLvpAfEgrvMsgHSkPai2QGSkqFe umFp/lOBl+9I3D0Cbvx0/hf3w903I6l3UO09tKHxFvmfMmrZDsjbtaZBv8LbIXNfq1atIiIi/vrr r48fcbhUa9ocK4IKoAIFoEDh8XYgxh8+fOjTp6+9leBitDsgZYhyP7vC1c5C18RAZ8WYUuQshc9K GxnFu+OyrCh3jlez9jLAqO/s8m4SJDUxFjMe1ZkqoaxLDESV5wu8c+z9exg7R9rhNwTMl++oa+dT 2kp3Zi/LjyepQ/s7mvNUyduh/ImKcZ3MVk8sNbilWdhQ20zeztUryX/vXMfejY0yEuUgTmyYi6Wp 3pQpP0KjFghsh+Mgby+ATwgeAhVABUqMAhDNfvs19V3vfJQFpIuUUZdKegBQKHArmXyWPE7JFAXp QYnpHV+o6Cfy4h35+yU5fpeMOkV8NrJB7NBzOMau7DmUPkUSyTJiu4b4bCKVtryTdopg/FtE70L/ 9i8Ii5sLRwH14e1c/bhLaNp70nAfTTDNO7obLieHbpMMFW+uwtEDj1pgCvB3Q7CR6XKMDjgK+AaF CyBcEheQgC003P3f13RqAy4lQQHk7VrTyl/i7RcvXgwMDJw/fz44GwD5gfoWFMfQGumwIqgAKlCS FShU3g7CpqSkdOvW3c1eeH2zJ/D294mKffOcJvcwV4XtEMcOju47Zzg83u+bFqc4t9w1jbNeYc3P AcJTw5lEeexCp2Afsa6BOeMRwlTrk/9Ydx6Y53MFbGf6M5W6MHYyfQP9/s0Mrm/14nxyLq523/Sj /cekTHscKPmnRAXE5+uLGX0Rs36yfUZmnD8X/S5/fsA35ZjswwnFqaVuVmbiUaNGF+wdCnl7Sf5o Y91RAVQg7wq8ekcW/0mqxVAcSrFAdlgK0KDeHnZS/Kts0ex5Pz7uqX0K/O8VCb9MGuwlnhuICWR+ 5LuNquMQi9nBSSb0OIm+Si48oQM6Ke/Jy6ePbSzNIYXN7t27tE8ZrJE6K6BuvB204jgtzPMAwG4P V2BulIq1Aa+9m9x5rc5yYtlyKsBTd5jpA6OQLQ4qx1CUzQqXSvBhg7Sq+/7N+V78X/sUQN6uNW2a K29PTEysX7/+vHnzzpw5k5FBZyUVLMrQGvWwIqgAKlBiFSg83g6Scpfcx48flytXvoy7+MEeH0Dr 5KT/v9u9MhJUcomCW/tJRdgwu+4NjKf3thzdwZSj8ZyxzNtY2a3tXmmxMmrVkqiYP9AKbNKFUgtG 0Yip0kvpuJ7fWPc8IncaD8+az0BMe6WujFtlQ4mgikwUF+EMBuzUDSZB8ed6j7Yh+lN6WkGUO43b T1B8oE71HnXKSsA8RyhgHKwES36wSaNh/JyLDnWVgTpe3eTlbCNq0KABjE0U7E0KeXuJ/VxjxVEB VOA/FQC88zyN/PaEdDoCltqECVPBAizqMV5BPDbQaHbYjVt4kvCfB8cdtEwBaHrg5A9TyPknZPxp 4riWjWOHbpODri+mBjLgQVQ6mjTZT53bnyk7j6ogT548sbGxYXn7btXtuI4KFLYCasjbuSpzV9e3 GSQkhnVh4j5ZkUS8lGYZhmwIuGiWAvztEsB7t1g6lp01f4EdiGQW0evkDtaWDcPdNatx815a5O15 10rN9/yct8M3mSpVqsyePfvYsWNpafS7TsFyDDUXBIuHCqACqEBeFChU3g4F4C68d+7cCQ4OrhEg eQhe5SeosQwl0lwuUTaI/eUhv4ldLeHZUyJkIJcoJFHlX02Pl//Yw7JTbePfotw/JtI8qg/3eAO4 LuchFhpbMKXLMuXbFyJ1zyTt/ZmqvRhFUx1rD6mJYbvqekd+cUo9LiOn/F8dlf22yo0l5/LXx2Rr x9tx8e3A2yFB6h/rPH5d5frzAGt/d8nTQz5PD/rCxkx3dwDyiYqrGzwD3CRNmzVPTk7OS3t90z7I 279JLtwZFUAFSogC4BsDz/htDxNXSGEJyFQ1mj2SiJaQBvvIqivk8jPCW2vz6KCESITV5BWAuQ/b /kf6xZNKO4hVFNthOMyuStojCdhfgCHGTxdotkfIsQt9jF8+7zzI23lxcKWIFVBb3g468J+U/f+y +YWVyB2u0lV2klMPi1gqPF0BKMC3KYw8HviXerXpLVMZpoQmDiO2q0nrQ/RV/oZbACfGQ6iHAsjb 1aMdCqAUOXj71atXa9WqNXXq1KNHj759+xZOgLC9AFTGQ6ACqIDWKVDYvB0E45G7l5d3NX/JswO+ 1EBGBbbDlr5NDS1NBBAEbqDHBLgJ/1znoUyxqngbJ+9ezxBQfKNKhjyoB+qeniBfP8kWdjbWY3TM 3Bj/pkxwT6YaG4gOUesQjp7H2PUv7Zbp8d6PBrR71RBJzS2MmObB+uejXCH8Hixu3sXJr2/xbF/D KHKELYB3OoIQJ98y1R4GFOg6jCOweVEhyv3+bu8f2ppAmel2ZcVhh5vbvX2dhJWCgl+9elUYNynk 7Vr3ecUKoQKoQD4VgKf+dx/Is1Qy/VcaMEkxO89L2RWAABCA9+M5kpyeeQoeFOTzlPg2zVQAmA8E 0wJm3/wPqbWbQBBmtt6idEUAlyHpcmIZRXrFkYT7WVXNS/ZT5O1ZeuFa0SqgzrydU4K/8ELSYZpu mKfui+hsI7iM46KJCvDN+jqdDE6kA5TZ3N2hlcOJ23qy/xa9/CJ418QmzrXMyNtzlUUTN6rydpiS 36xZsxkzZsTExHARg4XBMTRRJSwzKoAKoAI5FCgC3g5n5C7CMBJavnz5moF6t7Z7A5R+n0me5QCu Ier7TaxfkK9e9MRSd3Z7X9ngCVlHActDBPih+Y6DWxpLRMz0nhZgO8MFhz/cDU7vMkg/+i5edmaF 69Qe5tUVQkMjI6G1k45TRSagGVOpG81nyrH0TPb+Zc8ZQOscoq/BmsaATU2FjoxPfd1ScpGFXSlL SbsakhWjbW9s8wSuDj8vDvnt/qn0+kmlxnexgIGA0laC7TMdoKjA0vfPK/1wrzc1nGdrx1vHPN5L vXSyfhIVF9d4lPHUq1e/wcOHNGSnMO5TyNtz9Hb8FxVABUqgAh8+kXOPycQzpPIOFt1k943RXUxq 7iYLLlGfEH7hyQC/BVe0X4FP5NpLsuIv0iOWJvWjlI9Le8oBdiVmN1pOITx0p503yPVX2VTJe7dB 3p5NOPynCBVQf94OYvAfJZgtUjVG6egOn8FwmpJ49dVs80eKUDw81fcqwLcs2HPBJbTTUSKFcHfl 1ZXONVtE7KNJnzgSexdzqn6v2urwfuTt6tAKBVIGnrc/f/68ZcuWw4cP37Zt29OnT+HghQExCqTM eBBUABVABYpdgaLh7VBN7lIMbFkmU3iXFt3e6U2j3GmgO/dDA79/GWyZEivjwDWHpl8c9Js3wGJ6 bxuBgNk50+HTSYqsr230cLbSHdHW7NEeb25nkqSA6PEr692n9zILcBUa6jF6Ih1dqQ3jWJbxa8BU aMdU7sZU7c1U75st7p2zZK/ah6nSk+Y/LdMK4tgZaz+B2FhfwlgY6jSuJN4w2e7Jfh9yxh/i7T/E y9OOy08uca0ml9DyzHYA8/boifZSMWOkz2yb7vAhyf/8KrcEMHU/TUPZs+g6W01aX6gsjXuXX4p2 tzYRVK8eAjOwQBlOnALvDMjbC1xSPCAqgApoigIQIJf+gWy9Trw3ZneMgUd71p4dgusGJhCwluUW ngNoSgWxnN+rwCeK9aCfgNHB/IusuRDnLMTF0/IIaDHRWUznRDTaR3bdLBgEhLz9e9sO359fBTSC t3OVg48nd1medJa9hnMfSfYCXj2GvFFORMqvEvi+4lSAb1xox6EniAQmMrAtq8revTbQFLpg7c51 g+IsLp47vwogb8+vcmr3Po63Q1LU9u3bT5o0KTo6GjL0qV0psUCoACqACqiZAkXG26HeHFW+ffvf 2rXrejuKTyxx5U1jWBYtT80O28GP5eB8p3+2eHWtbyIR6Vzb5AEpU69t8hzV3kSgA+lHdXfOcnhx yDf5sAxylYIFTWqcHAA4sPe7MV5HFpb+ub9VvybGzStLKnrqutsKLU0N9I3NRabWInN7kYUD/TEr JTaxMjQytTPX83XQrSEXtK+hP6KN6arRNmdXuLw64gu+MeRcAKR2fX1E9mSfzy9DrIe0Mb2+zWvd ZAeRkGlexRBi7MFqftv00lAYoO6/DLa5T73lrYHP5+DtPHuH7Xt+cipto9ehQ8cXL17wshRGv0De Xhiq4jFRAVRAzRX49zVZc5V0OEIg4ennIcqA3/snkD23sh7h8VlezRu0wIsHAOfKc9pJwJXddxOb Kld11oOStEO23HaHybwL1DhatZOoruevbMjb86cbvuv7FdAg3q5a2SsvSKuD7KwTbjgsnLqRwDST x8oBU9WdcV1TFOCvpW8ySNQV0nQ/0Vd1d2fD3V3WkbGnSVL2i7CmVBDLibxda/pA3bp1oS5Dhw4N DQ2Nioq6ffs2B3YKKWhQa3TDiqACqEAJV6AoeTsvNTh9AW02MRRsn57pds7xdv43R6eTj8k2Ti6V HOdXwVtibqSbdlx2O8Z7Zi+LPk2MwMUlbJgthJFfWOMeLJNAQHuwXNy7kfHTA74ZcYr3iQog+WDq AqlLPyQpMk4oAJjf3+V9ZaPHrytp/HnsIqfYMKekJc4XV7v9b4vXk70+cPD3J+nOEEIPWVmpIcwJ BZD8hAiXIa1MLqx0BRuZk5GuP/W1+nhC/uqwn4e9yMpE568NnhBg/wnC2qPcnKx1RQJmQmeLRYOt coft8fJ38YqlI2309cRDhgxJT6ehOYV6k0Leznc5XEEFUIGSoMCvj0n9vTQUGQKSqR+ISqAybKm/ h5x9RMBehn/G51dKgjhYR1DgSQqZ9RsNZRcuUekkKv0E+ox1FBl/msCoTcZH2lv4pQB7C/J2XlVc KWIFCoS3jx8/Hr6Hy+Xyoik899GDz2LifWK+SsV+ZDHRW0p23YAv00VTEDxLoSjAX1phthEkzgB3 d90lKq3M3srB+c1rI4m7WygFwIMWngLI2wtP2yI+MsS39+3bd8CAAUuXLr158ybC9iLWH0+HCqAC GqpA0fN27vr87t27MWPG2lgZz+xt9fyQH0vaVezNWef2owuczq10e7jbx9yQqV1G8mSfL8DqS9Ee 1mYCr9Kix/t9EyJdLYx1y3uL/97kAZHtv0e7d6hpMLO35aze1gsG212IcufzqwIAhx9ykrqvA6XP /Dnlz9J1BXWPPyJ7sNsXgudfH/a7G+Mzo7f19J6WU0LN4YECln3znMCv5teVrkcXOkFRIaZ9zTg7 2D6qgxk5G8Ad+fxKV393MWys6CN+lN2tnXVxl9/b7QMeOLY21vPnzy+a3oK8vWh0xrOgAqhAMSoA udVOPiBTzhGIgmMWZreOYdlpg73Unp0Pg+Qf7YuxzHjqIlMAAM7NZLL3Fhl3msg3sz0kRyh7JB2g 8dtEWh0ii34n/7zMKlrhdRXk7Vkq41rRKvD9vH3dunUikQi+7gJ+4b7SF00NuM9jSga1H4E8xZnD qQBjF5Em++ld4P3HoikInqWwFOAvudDKcNeusYvmpM4aN4e2XkAN/Bf+Tv58njVuXlilweMWhAJ3 797t3LkzGH3jotEK7N+/387OrmvXrkuWLLly5crHj/RqW5TX/4LojHgMVAAVQAWKQYGi5+18JeFa vXv3bgtzs5AA/X93en88AR4sWcj96T6/uQMtAYyfWe4O3+p7NjSCVKqvjstGd6QpShcNs35ywNfG TGBmqHN9sxfAcMivCjlYJ3UxWzDYuk8TY9inV2NjMIShoebx8h0zHDrWlM7qYwHEfkoPi4ndzDdO tkuNk2360b5HAylYxDesJDU3FrStaZQKUegJ8iGtjPfNK/3xlGLxD3bgXWNponNkodOGyaX+t80L ePuHBMWrwzI/Z6GRvu793V5A9eEU8Pv+bp9guZ6Bvk5ipDPEvXNR+vDShxP+l9d6+LuJnZycTpw4 wd2eiuAmhbyd72y4ggqgAtqnwNsMMvs3YreGtX5lQ+AyrV8huD2CwtX1f1NrbohS5hb+WV77pMAa fa5A8jsSfplmPjVaQa0nKLTJ0UkiKWaff4mGsr9Op0buRbYgby8yqfFEORT4Tt4OZgLwBRsWYC+r V6+G4Jkcxy/Uf/lr+P23dL4STa+pnMoEM1Ya7ycvi7Q4hVrXkntwvpXffSC3X5Mhicq5SEqnL7iS Gy4nIbvIRZqqERe1VgAsvn/88cfRuGi+AmPGjFm4cOHly5c/fPgAfa4IOIZa92wsHCqACqACeVOg GHk7d6G+cOFCxUrB3k6SmFmOb2NlHKO+t5OapV/f7AHR42sn2sMX+zYhhq+P+V7b6CkRMZBuFYzT Z/axhu39mpsCk2ehuuL9CcWOmQ6XVruDo4ujlQ74zICPOhzwTay8bU1D2LlBJYNfV7lLJbDK7Pmp NLzx5jbv9jUMPpyQb57qIBbquNgKrmz0TDuumN7T7H0iJDyVg6vM2M6WujqMs41gcEtj2EJLCHT9 pGLBYFs4zvjO5kD7oQDwA4z9wR6fGgH6CwbZUEcadvjg5WG/VWPtwbC9Xv1Gt27dgmYpsjsU8va8 fQhwL1QAFdAYBeBJ/MFbcvQO6RHLwpZF2YLf9JZRzA6m3L8/05gaYUELUAEYXgFPoSV/kqoxbCi7 avdgWQ2EsrutJ3X2kJ8vkjuvC/DM33Yo5O3fphfuXXAK5Ju3v3nzBpwE4Huvjo6Ou7v7lClTIFyz iHk7JwPPYzf8TWQwaYVD7vA7goLZyD/Iw5SC0wuPpAYKAHiHKWwweJqZVpUD7zDa8gsJ2kF23iB3 32C4uxq0U25FePbsGUREz8NFwxWYO3fuggULzpw58/79+9zaGbehAqgAKoAK5K5AMfJ2vkBg5z75 xykmRvqd6xrejfEGjxfwhxnUwvjPde6AxIFy1y1v8OqIX3q8olNt6ty+dqLD6zhZsExqoKezf54j AHDK2wGDJyge7fV+uNcnZqZDvfL6lsY6b4/JIH3qqaWu/ZoaQYbTaT1pwHzYUGoFU7+iYXqi/NgC p1PLXGks+gnF5O6WsL2St+TyOvd9PzlwRjFwTNhtFsv2rUx1k5bQnSlIT1Rc3+pla06dbR7s9eEK ANvh1ZdH/OIjnIG3wz5/rfdsFCS1tDAPj4hIS0uDKhcZbIdzIW/n+xiuoAKogBYocP4xaX+Y2EcT sHKlkY0Qrsw9d0cSo+Vk4lny9wsaqIxLSVMA8p/G3CBNDxCHaAJjLpl9g+8ebCeBPLmzzpM/npGn qcVPZpC3l7Quqj71zR9vB2gWGBgIX5JhqVKlyuTJk6dOnbp169Zi4e2qYr5Kp4mPDXjXEfjUR5DS a8nyP1X3wnUNVoAfXoEZbZeeku6xyvlKyrs/fBOwWU06HSXXXmhwNbW16IBn79279y8umq/AnTt3 iiD3nLZ+ELBeqAAqUGIVUAfezol/5MgRH1+Fg5UIAt0hIp2cCbgb45UepxjWxuTxPh/g2BfXeJgY 6oIry/PDvndifJxtBbYWgvu7vTnSDr8BeoOpy60d3klLXIa0NoWHgr83eaYnKOb0tZzSwwoC4zdM soM8qnd2ebuVEkEC1gPznWb1Noc4dhqanqAAOF+rjJ6ODtMkSPJgry8Nbo/nYtTl6YmKXo3pAb0d hf9spgYyLGCXhzYw1mGYdRPtIWUqF82ewUa/g0v8s4N+q8fbmxtLIHr/119/hToWJWnnJEXeXmI/ 11hxVEBrFABL3jtvyPYbNLYtpz37YmKxipTbRqKuZFWXfzbP2oRr2qgARDxCx0i4T/ELHXmBUHbO XEIJYSDjHkAY/y00+en1InFlz7vMyNvzrhXuWbAK5IO3AyiSyWTwHVggEIBn++zZs8EgAnj7zp07 OfxSsCX8pqNxF3yw+259iHqMZA7CwgVhIY18Pv+EpFPnA1y0QQH+5v4klfSOo6OrmUZh3DUfrv+L 6Kjrr4+orRC/szbUXGPrUPRPvhorFRYcFUAFUAFUQDsVUAfezt+Onz59OuenuaXsrKr5S4+HOWew keSAwd/Fyf9c79G5Lg1uXzzCBmLUAarbmuv4OkrACobn7dzKlfUef633iBxBzV5iZpc+vdItIdyl fzNzsJFJWupCQ9kTwQrGBl71tBfe3UnD6TlWDy+dj3IHpG+or3NskQsw88yodZbkb51uP7AlTZ/q 4SCCxKywM/z8udYDeLtbKSGU9vURPy6+PSVWvmt26UBPfRdnx+XLV7x+Taes83Usym6EvL0o1cZz oQKoQMEqkPaeBi5Wj2FT44WzIIWPWI6kLCXqKrn+Kuuc+HydpYVWr115TiadJRW2EevVhIGOoTrT AcBLJLX0B8vfY3fJrddZ1EWtugfydq3uoWpduW/l7ZAmz8aGfmcWCoVdunQBzA6wHcxkwFvg0qVL xfLlNoe+/Ef7r+ek3WHlpCe4FEQQ0RJ6Bzn9MOs6kOO9+K/mKvA8jRy+QxrtIzC0ys90424HnhvI qFPUZAYXVAAVQAVQAVQAFUAFilEBdeDtXPXhSzv3vR2KFBJSQyLWH9HW9PpWbwhxB96+/+fSlXwk Nua6gLU/nfC/v8fHzV5YzV9CTmWmJaWB5ZDJNFFxbqXrv9u99s11hqeDKd3NwNE9NUHeKMjQRKoD 2yknT1C8PCxztdEV6jLnVjpT93X2vfD7U5JiXj8reKOfo/DFYRpUzxm2v4uTRU+wfX9K0a2+Cbzq 7y6GAHt4NfkI2NqIezcx+n2tO8TJvzsu/32tR5d6JmKxYYsWLSEnO1SNq1SxNDHy9mKRHU+KCqAC +VYAyEnKe5q/EsxaRUsJE6aMV2Q5KgSzma0kzQ+Q35VZ0njSku8z4hvVXwFo5TcZ1JMZjNk91iun OXAxjcrf0uU0mh1oW9KDrAqpbfdA3p7VSLhWtArknbfD19e4uDiIaYfvvVKpdNiwYdOmTQPSDgtk zTt79mxGRgaUvRi/5aoqBx927vO+6ya9FFDPMe4HRmnDyKBEAni2KHMiq5YN1wtDAf7y/vdL0mQ/ MVmZPa0qjMOGk/7xNOMqTIbCBRVABVABVAAVQAVQgaJXQH14u2rdwe0NImrq1G1Q2ka/ZyPTcyvd PpxUvEuQx4W7ANkGa/SUWFnbGkbeDqLU45kpVgHLp8XSjKVHFzg93OdzOdrDxICp6C1OjHR5edQv 0F1sZy5Ii/PjYuAhC+qgFtQfJsRfD1KvcnHs8BKA/Z8HWnaqTaF6h9pGqcep1Qxsf37Yb/MUe4h4 Bxv5NjVomH05Lwm41tze4QUMH+Lt38XLj4e7tK1h7GBj1Kp1u8TERK46xfsYgrxdtVPhOiqACqi5 AmD68eM5GrguhHC17KRdfxnpcowASHmMifDUvBULtHgwxwEavddxErCVBWiqvQJgWiRNn9d4P1ny B02TCjtzyyfKAAu0HAV9MOTtBa0oHi+vCuSRtwNLnzRpEnzdhcXBwWH48OEQ2Q6kHZD78uXLr169 +uEDhZjF+y33S3UGe5lVV4jLOuVwLSD3cGK6kvRPoCZUuGiTAvylHobpodErbVc2OnuDgHYXLCbV YsjiP8gbzO2iTQ2PdUEFUAFUABVABTRBAfXk7bxykIzJ09PLQE8CCU//XOuZliBnbV5oKDtEkpey 0F0zoVTyMdmTA75LR9re3uH5IUmxY4bDyyOy2zHeYPDu6SACQv5ot4+tOVPZT0xOszHwCYqLq93m DbAs46VnLGWOLnQGSs9x9etbvKLG2z046ONoI9QTMdtnOsLp4NWbm71XjrV9f5LGzy8dYdOhlsHJ Jc5vjvl9SlSA1fy5Fe5tQwwlEr0yZcoePXqUK7w6PIMgb+c7Eq6gAqiAeioAD8sZH8nNZBq1Do/G 1H2XN41ZTME7BLRPO5eFT/mHa/WsDpbq+xWAGFQIR4TBlz5xbGfgegUXqsoiFIhclSwjXhvIsr80 tWMgb//+foJHyJ8CeeTto0aN4mC7q6vr9OnT2ah2CttXrFhx8+bNjx8/wtnV4YturiLwt4kRJ9kE yhx6ZX/DJCmwKYObDr9PrkfAjRqnAN+gZx+RsluJGObH8e0OKxF0cDb8Mp0qhdMcNK5xscCoACqA CqACqICGKqC2vJ3/Gp+amrp9+46mzVrbWJs1qGi0ZKTt9c1eEIgOPjA3tnlNDbWc2cdi8Qjr31a7 kSTF21jZL4OsIGT9+SG/Cj56S0fakF8Df19DXdb7NDUivwa8jwczGb/5A63en5BHjS8FTxNNKks/ Ugt3ObwUM8vhXowPMPb9cx0FOoy9pe6vK1zBRh5MZjrWNry81g04/4tDvuSs/4cTir82ePw80CYk 0MjW1rZj526HDh2CsHy16gbI29WqObAwqAAqoKoAPB1ffkZ9YyDhKU12qYpVI4nXRjIyicRSU67M hX+aVm7Av9qmwJ3X1JO/6zHiCoGpC7N3CZacgCtvvwSy6R9qEcAvmtgxkLfzzYcrRazAf/L2hw8f NmzYkIPtQUFBkydP5gzbZ86cuWXLlgcPHnDfz/lv6UVc/m89HeT4AOqeI5Wq90Yy/yJ59e5bD4b7 q7sC/O3g0lPy41kCtwzq6A63D469hxHzVaTHcXL4Ng64qHtTYvlQAVQAFUAFUAEtUEBtefvn2l67 dq179+5GRkZSPUFoQ8NTS9xSY+Xgqf7pjD+wdyDhkFk1fIi1v4f4+hbP1DjZkFamacdlAM8heyk8 OCwYZE3OBYAXDQS0J0U6w3YwpZE7C+GlYwucwBPmVaxsVFuTF7F+YPD+cJePZ2ldRytBaAPDm9u9 /lrn8THJ/xOcJVHx+qjs2EKX1tX0BUKBpaXl0KFDOZ/2zwtc7FuQtxd7E2ABUAFUIFcFLj4hNXep PAhzj8PwO4KU2UqO3sFn4Vxl09qN0OIw5T8LjPD9gVuJJB2PkD+eaU/1kbdrT1tqWk2+ztvT09Mh oJ2D7U2aNOE8ZCC4HWD7tm3bXrx4oSmYPUezvE4ndfZkmzwFE6kMlpM9t3LsiP9qmwLb/kcZu+q8 OY69O68jx+/hNw1ta26sDyqACqACqAAqoFYKaARvh6/3/Df8+/fvw2zWJk1blrJ38nfT69PUfO34 UhdWuz874AdB76+P+0Fk+8M9PgDGH+3xgfyn17d6ju1oXt5HPL2XBXi/nI9yq1dWb/uM0oDiYU+w qfF2EjSvovdgt8/OGQ6d6phAZHtanBz+vRvj/emkgpzzB6uZZwf9zq50XzayVNcGZj5O+qUd3du2 67Rx48bnz59zrckXT60a91t5+7t370aPHj1nzhz1rI5aaYuFQQVQgW9VAALPfntCZv9GFFvYgHY+ 6gyYaiSNcp9whlzJvKZ+67Fxfw1TAGb0//mcrLxC2h8hhis+S4EKxuzLSOWdZPhJcuh2VtX42MWs TZq5hrxdM9tNG0r9Fd5+4sQJCCMB2K6vr9+yZUtwj+Ei2+fOnXvkyJE3bzTV+py/bhy5QxrtYzNx KwfyYB5N+W1k3TXylqZ+xUXbFOCbfu8tOmhrGaUC3sG5biHx2UjmXNCqwVxta0KsDyqACqACqAAq oMkKaARv5wRWhcDg3AJhNjt27IAnAmtrS0Op2KWUqE8Tw01THa5u9Hx9RPYuXvH+BLVbB+OXjJNy yLX64pDs1WG/J/t8H+/zhd+Q4RRsZ94claXGKgCwp8fJM07IISsrmLTDG9PiFa8OyyDp6poJ9p1r GzhYiQwNJPal7Lp06XL48OHXr19ziaKgYKqlUreO8K28fcaMGWPGjPnrr7/UuVLqJjKWBxVABfKi ADjDKDazoINzaFeatOssJg32kisvqKEuLiVBAchqCulNYZo/+OtC69OwQ2Vn4MIO7deQny+SF2kk neZjzFx4bKLcoNl/kbdrdvtpcum/xNv379/PhbUbGBgMGjQIYtoBtkN8+7x5806ePJmWlsZ9M9T0 74cfPhFwGpFtUplNE0kvRFZRZP+/GO2syT37C2Xn7x0fPpKX78jUcwQ8/LNuOuzdB25GMP3hRvIX DoGbUQFUABVABVABVAAVyJcCGsTbVeun+oX/1atXBw4cGD9hYp26jdw85eYWVj7O+k2CjQa3tpzd z27tRIeD85ySlrpejHa/usnzf9u9/t3pfXunz787fW7t8L6+1euvjR7nV7ufWOy6/yfHqHEOM3rb DGhp2aCSoaej1MzCxts3sFGT5tOmTY+NjQUneb4MqgXgN6rbSt55O6S+Cg8Pb9Omzfnz59XNhV7d VMXyoAKoQB4VAF4KAe3ATqkd94JsfAMebyGgfexp8q/SiJt/KM7jwXE3DVIA8p/+/oysvUaa7mdd 2cGuPztjt4iifjLQH35/mlUtLe4SyNuzmhnXilaBz3k7BJAsWrSIg+2QkGjIkCGA2TnYHhYW9ttv v2VkaE/wN39VWf83CdpBU3JnmXsvIrV2U2fvFO2pbtH2LQ05G8yu+vkCqbyDzaXL34lgwt0CUm8P 2XGDPErRkJpgMVEBVAAVQAVQAVRAvRXQUN7OiZoDeoPtJLD3e/fuxSckhIdH9Ordp3r1EE8PN1tr c0szAxsLqbW5npWZ2NJUaGEigB9YgX9tLPStLaSwg52Nhbe3Z81atQcMGLh02bKkpFOQNApC2XM8 aOQ4qTo3bx55O9QI4pcGDBhw7ty5HJVV59ph2VABVECdFdjwN5Fvpga52QKY4dk2knSPpb4x/Px9 HoCoc3WwbPlT4EkqmX6eeGxgTWPY1s9G2heTKjvJ9v+Rp6kEmDy/aH2XQN7OtzWuFLECn/P29u3b c7Ddy8tr3LhxXGQ7mMksXbr077//5mIw4IsiLEVc1MI+Hcy1ib9H3GA4mIOu7AUKgp9d15Od/yvs k+Pxi0cBvhenvqcT6zodVfmKwnYA3cXEdjUZlURgB1xQAVQAFUAFUAFUABX4HgU0mrd/XvFcHwfA c/L27dsXLlzYu3cvuFBC6E6PHj1CQ0OHDx++YMEC8If5/fff79y58/bt288PqNFb8sjbY2JiGjdu DL6dMGAB9c1VQ43WAQuPCqACRaMABLTDAywEtJutZB3aOYjBeoboLyOyzWTsKfJGGTrIP/YWTdnw LEWmQMp7cvUF2fgPqQ0JCiGUPUyJs1jPZLBuAJpRaQeZeZ48Vk4ag85QovoD8vYi6414ohwKqPJ2 SELUrFkzgO26urp+fn7Tp08H2A4LrERFRd26dUu7vxDy15zwy8R3EwHQmgXeF9H45/j7BBKt4qKV CvCtf/8tCY0lLuvYDsDepGg3gNtWBBkPU66eERiXwQUVQAVQAVQAFUAFUIF8KKBlvD0fCmjxW/6T t8OTFNjIQGhTQkICmHNqsRRYNVQAFShUBcB9HQLaIfEczX0ZrqQWLL4wXE6GnqA+IRjQXqhNoA4H v5lMJp6h8xpMYMAFpuez4YKZdg2LqWF7m0PkwL/k7hsCVrrcwkMPdSh/kZUBeXuRSY0nyqEAx9sh Xw/MBvXw8OAi2xs0aMClRgXYPnPmzK1btz569IiD7SUEub96R3bdJM7ZY93h2uW9kURdLVmjgTk6 jHb/y9+AnqVRA38YZMkcc+EGX8LpHL2K28nmf7RbBqwdKoAKoAKoACqAChSKAsjbC0VW9Tjof/L2 pKSkevXqQYQ/Z02v3U9V6tEmWApUQKsUAGr6MIWsvkpKrckloB1m5c/4NSsRKv9gq1USlPjKwKR7 4Ofb/keq7mT7gOpoy2Kiu4RYRpEyW0nYZZKhdIzBnoC8vcR/bopNAI639+zZ08HBAWC7QCBo0aLF rFmzON4OKzDn8cWLF8VWvmI6MX9RWniJUveslJpsqLPPRnLyIY1153crpmLiaQtLAb5lIbd7he3E GCIHVCbowUQtx7Vkzy0CDmlg/44LKoAKoAKoACqACqACeVEAeXteVNLQfb7O29euXduwYcNDhw5p n5GOhrYXFhsV0CAF4JHz4G3SeB+lqTkC2k1XknGnybnHBOxluIV/ktWgCmJR/1OBf16SKedI5Z0E Wpz2AS6gXTkfH0Lcu8XSkFEIeucX7AmcFMjb+S5RSCvvP5IFl7KmURTSWTTxsBxv58LaDQwMevfu DVbtHGyHVD7Hjx8HD0aoFwRgwKKJFcx3mfnqQqz7zhskYIuSuAJ3hYtbOPHfTBb9ni3TRL7PhW9U cwXAGQ8cz2xWK9PpcuHuYaR0NAk9ni2vt5pXBIuHCqACqAAqgAqgAsWoAPL2YhS/sE/9Fd7+xx9/ 1K1bFwztk5MpCilpT1WFrTweHxXQVgUAsyenU0sQyIBJrblVAsBES4ndGvqIyi08u9BWKUpmvSBG nesAQTDvnnW4Ve0DEM0OhkKKzSTqSpY82BOytFCu8bw9ODi4TZs2rdV4ad6+a5Mu/dW4gLkUrV37 Dr6jt0HPtPrxXPu2uexQYjeBf6CVlRUH242MjMaOHTt16lTWsn0KwPbExMR3795BJy3h3wn5S1Y0 O3UrK9YdoGs4MV9J9t6i9mj8bsqPNf7VHgX4xp19nlhFEeGSbN92oBu0Okj+TcbBF+1pcawJKoAK oAKoACpQGAogby8MVdXkmF/i7WAgA7B9586dL1++hKKW8AcrNWksLAYqoP4KnHpI+sbTtGKZoFUZ yQwGp72O03B3Pq0Y/6yq/pXCEuZRAQhTn3+RNNynTIabPZrdYhX5P3vnAV9Flf1xQBFFsQt2Wdva uy6uZS3r2ntb2+q6uquL+rfXVdeuKwJJ3gu999577713Qm8hlBAIIRAC5/+7987Mm4QAKa/MzPvd D5/w8jJv5tzvnTdz7plzf+elYdJ+iSzLieyPp0GERdFXiLefccYZJuzp9Z/n/bHSC628bmQx+x74 tlJTxMf2q4dBd31U7I/8FQRq1679ySefINKOzHbkt4fD4dmzZxcUqGrW9Ak1BCucDr2sLhlyK8Sy zP3O5DmnqCfOX0xWUlpsQSXg3L9wDvRdoYqPqKi77fYg5I5VD7f3kkbz1TNoNhIgARIgARIgARI4 kADj7QcyCcw7JcbbMzIy7rjjDgTbt27dip5yYhWY4WZHSCAWBDDlhDLDzE1yLRbXF5XmrqwrYL47 PqLLHQsDuM8EEsByBoz+2PVamx3Z7M5yBh10wgmAhHYoG6NUriSX8kRFxwT62A899NCpp55ap06d mzzc6lx/9SkfDETs+sYbb/CwmcVMu/GGP9x8ROouKzLWRK64+8k/+Mn+Yt2J8q9XXXUVMts//PBD k9aO/HYE2xcuXLhvn6phTJ+w2HfbCbpCuxtlSnDRi1wGw+rX76apiyQ1vYtxC9KvOAfMabBhpzwy 0I66O3fDsNRoJs0WKPUq52wJUvfZFxIgARIgARIggXITYLy93Oi8/8ED4+1z5sy5//77O3TogOQ6 2M+JlfcHkRaSQAIJzN0i305T8iCVGmoBWzuz65gmatbZepHkqXRI1TjNNBwC83PdTmmzWF4aLjWh z+8efR1uOqm5PDFIwvMkw5XNHpi+x6EjWFzWunVr1Kb83sPth++//+8Pv1TSKZ13Nxj/8/ffeNjY Iqb9+P13db9LOyaUp1Lc0+W4xgUf/ZRaZIsk/uWHH3746aefTLAdGNq1a7dq1SrjDdInLPG774Rb 8VcUhn5kgB1xNbH3FFVb8//GybSsEj/NNwNCwHFysIYLD1ku71TkyQvk9SA78+44mbyRD18CMuLs BgmQAAmQAAlUnADj7RVn6Nk9FIu3r1mz5uabb0awPTMz07M20zASIAEvEFizQ/7SV5RurQkpmFQu /AzJK8NlY15kRulMQr1gNm2oIAGM5vQseXiAiiRYmZxOFp8+E85vJ20Xq0Q+5nNWBDXi7c2aNTMx T8/+/PbrL+/9eZDJEq8e2vnVfy2hb88a7Bj29X//+83XX933izZeq8pc/ttcH9nvdCSmL7777js4 hBs3bmSYvazf5YxtWmHGuTbqF1js82B/2byrrDvj9v4jYNweLHk4q7WtMON4SmG5vacsVAuI2UiA BEiABEiABJKdAOPtAT4D3PH2devWoUAYJviIuqPLnF4FeNzZNRIoN4GsPOm4VO7tZ6c02/EE1EK9 paf8OF2y88u9b37QuwQQIxq4Wj6cILXbSqUGWjgI0QPzL6yyN+/uI99OlUXZVhf4kKWCY5mTk9O8 efOYRlMrvnMEqGulZJrToEq48KUf2kDtu+K7jc8eYOiPX3125W9zrNM4XZ76sSueIMTn6F4+CgTb Yd7PP//ct29fFvEpxxfZufqN2yB/HaLrWZgbJX5Cci1FnhmsCqrm2ou/ynEIfsT7BJzToOdyeWyg kpSJCA2huEmK3NVHOi6RTXz+4v2xpIUkQAIkQAIkEDMCjLfHDG3id+zE2zdv3nzjjTc2atRo9erV jLQnfmBoAQl4j8Duvar628ktpIqTpmWHW58cpAKtuwsto51ppvc6QYvKTABpeK+MUCEjVQkO8SL7 CYuKUoZVbdzG8yVnt+xxjT5PgDJTPuADO3fu7Nat2y+//IKwp2fbB/9rWi2820iy4Hyo03DGLz// 5FlrSzTs259/q5m2qVK6UpVBRz75Jb3EzZLtzXr16g0bNgwn4QEnJt8oGwEs89mSL2+P0/dN+46J Kycup2e30YUtyrY/bu0nAs6tEAL+W/PlnbH2kkB998RpgDViiMN/OVny9vqpX7SVBEiABEiABEgg WgQYbwdJuEyO1xQtsF7Yj4m3I4/uhRdeSE1NRaVUE2xnyN0Lo0MbSMALBBBFh37Ip5N0uKBoQcyL O8hbY2TVDsvMQF4kvTAE8bdhZ4FM3yQpc+Rq1MCFNnvRMrjHNpXrukrdMerEMA2lUDn60R0m3IUh 7DZ79uyZXm2zZ874YsDyyPOXsBzTeO+UaTO8au/B7JqRNmpFZcTb9bOkWzpkT51+sC2T6P1Fixbt 3r0bpzS9wQp+r50L49pceX2U1G5nLwsyEdeGcm5babFQVmznJbSCpD39cec0wMOXjybKZZ1sNTbz CCZVqjeRb6YKCuJAio2NBEiABEiABEggeQgw3o6xhv/zzjiBHmPAmom333rrraiNxWB7wAaX3SGB ihLYL92XyTVdBMVPocoeCaylq3DrsDWSs6eiR+DnvUYAwvt4toKgUPWm9qA7Ce1hlZD50wxZnhNR QmCkPRYj6Dz4xgvPNsRir+ysw9RW1u5+KCSE5+ozwrNGl2SYyL53x+2vhIeJiLqHZNAq/3WhpG5V 9L1YnNjcZ/ZuJch2HlS5XNdVvD61pfxtuGRRWiTQp4gTdYfvNGqdXIvH2e7TICR4lv3HHgIZImfL QPNg50iABEiABEiABITxdpwEo9dpxdqG8uUUKQhQ7sHVV19dt27dH3/8EaO8b5/qGGZoPOlJgASS mQCuARt2So/lclF7JTHqng9CVOT2XjJ4tYWHV4tgnCdY6o5FCgNWqgK4lja7KwgAZX6E3x8fJMPW RrrLoY+wSNZXK7dLpfquZF2dr3t6K//hMCczlJHUtS4sRzeRXRTW9t8w+sNi58oJGS4kOVdrbN9h ce5hGVFDeXusSnLO4xnoj/Esp5XOaTB0jfKpTmxunwb2qgdIu49ZJ9vUEhM2EiABEiABEiCBIBMY PXp0nTp1nk3i9tzzL5zUwpqIVf163hPPPh87GM8898LDHzR45q8xPIRjPDRkzj777C+++GLevHmF hUp7l8H2IH+T2TcSKAWBBVvlxeFyRmtbQsTEXcNKtv3nmZKRU4pdcBP/EEDBPoR9UOj2tJZ6xLGK weQq61k/Hq+8O14mZgqKpbKRQDECzw/TKyCcE0a/gBzxCNdzmWIf8eavJvbVe4UtrRyS54fCH/Km sbQqOASg1TZ1ozw31D7x9FUXUfdqTeSGbtJ8IaVFgjPWB/YElx1z5YHC/8Js+c9kNe5WegP8Lr2i 8ML28vUUVR6FjQRIgARIgARIIKgEsrKyGjdujNpJydl+q1fviZQRppAWfj5Tf8Bv9X6NHYpf6/12 XXhplWZyZXj5i/X7fv5r+rf1Uv9XD1bEpKWnp8+YMWPvXlWnh8H2oH6F2S8SOCwB1OpanC1/HSJK VMEJuoYFuc3ntJHvp1s7cJKyDrtDbuBZApjdI2sOKZRvjNZj7dbk1+Xb8Hz52q5K9ICNBA5GYMce 9Qwu8nTGibqHVU1An14obu9pXf2g6oAywWwkEFMCztcEN1+sLTq+mR1uNYH3VDmlhXRZqsqt4qLN FngCWGT81ljBEqEqpjS5uaimqdK6v80SSL0V8jQI/EnADpIACZAACSQfgV27dqFw0oJkbTPmLriw 1c5KYSVSenG7wqWxJzF9QUbNFvtMksMR6fvPaJxzbdN1r3Vb3mbs4jnzojkM0JBZsWIFg+3J951m j0kgQiB3j9SfLTd20zN9l0h75bA8M0SGrHYpdXOuF8Hmy1fQjRm0Wl4ZIZd01HFFdxXUsBzVWJ4a LF0zZPn2SO+ciFDkLb4iAZEha1QUqMR4e61WgjPNX82c5xBVPsEIO4Tktp7+6gGt9SsB5xq7dJsK qxYvqJoiZ7ZW0u6TN/q1g7S7NASc0wAa/p2WKhV3d+YDVj3g+SZu0JR2Lw1MbkMCJEACJEACfiHA nOfZW2wF45T9EzLjNG6zNiPL1F2GzIqNoIDdP0Yqd2tHgWAharSiXxzlOI0rD0MCniGAyR0UYlss tMtimkwqrR6D68yD/SUzzzO20pCKEdhTqBLaU+fYojFGI8hOSMYadgRIv5sWiZE6E/+KHZafDjKB /xvnysW1zyUr/N5QPdbxaas/y+5XCpd4+HQM/Wq2c+FNn6euyep5lnOtxos0uaevZGwTXM/ZkoHA mPVyUQf1HDzyWBOnQYpA2h36MzwNkuEcYB9JgARIgARIIPAEIKJoZPTqdFd9dfzh2HXcHOLjiS4X y5nMapcbBZWOaSJ/6C6vj1JF7thIgARIoPQEcIWZvVkVZTurjVaPcWb0Ibmqs9SbFRFpj8PlrvRm c8tyEIAmxk/T5e4+OnRjdGPs4T6ikdzcQ36aUSRtkiNeDsjJ+ZET3NoXjotiXoRUqWU/Npz/2/fI eW11nDMs57aVbCon+3EgfWuzcwUu3Cf9VsqLw1T13iKa3qkq8xm36fW58ZiP+Bak7w13zoSx6+Xf Y+R4d0FVrEMMqSqrqL2CCixsJEACJEACJEACJOBTAjM36XiUnkKmzIlrJyCnbK1rLjaTNb8iZhKS izvE1SQejARIwNcEMIND1jqWJCNTLpI4py8pZ7SSgauszjkTPV93NmmNx/Dh3/gN6pmseVhsZcfh rqHl2ZE2+dJwWW6XvuVwJ+2pUu6Oo35f56XSd6UMXSMNZ1tuEtIA+q6QRdnq1Fq9Q6BF7NPWc7m9 qjGkhB3YSCAhBMyVGUuTXhhmF1S1n5aaK/l74wVlFHgBT8joxPmgyGZ/c7SgGrW6m7tOA1x1sUoR +l08DeI8IjwcCZAACZAACZBABQnAe4F8sXJswirDZPOuCu6vDB83jtOMTUXXkxpHy3a3sNoURZTQ 6GWVgSw3JYGkJJC/V3ot15F2XNAQbLcvI5COwVUOcTPTeDHx79mBsduar0YZuXDQ+63UQAfbnbtG WH7XTv4+QrpkKB0hDrd/Bzrhlhe7SqDwLiQOcEnBxaRYjdFiWybc8tIYYGy+s4/l+53WkroNpcHG bWJCwPkGrc2VH6fL9V2LxFpVcXNdZqXrMhV4ZwsqAec02LRLLUm7zpwGJuqOnylydhv5corM2xJU AOwXCZAACZAACZBAAAmgFvzpiFogXpEm/xod7w4a/wqeVSSTwYmcpKskh1aLlEmOGxZv+3g8EiAB PxDAJaL7Mjm9lc6M0k8PnWD780Nlyy7ZZ9eB4MXED+NZso2IxiDMjoBnFSP5a2bi5pYRkpu6yYi1 KmzojHXJe+G7JFB2AijyCI07XFWQaYkkAb83cxlEbcqqkE3G9yhNoFTPRgIJJGDdoverC/jEDXJl Z9e8QN/TMSM4rpkSmUFdJ7agEjCXJvws2KcWFqmn6s6N3n7xyABZlxtUAOwXCZAACZAACZBAoAj0 WWGLG4dVsbn4N7hVkOa7opPLp7JD7vCuXxkuG3bG3ygekQRIwB8EUNwB8p6XdLS1EXD10HPzC9sr 8faV261emEmcP7pEK10EsIQcOvyorHdbLz3Ebo2gsBzXVOm7fj01UuODA+2Cx5dRI7B+pxVvR+Hd SRujttvE7giBzTt7W64XniPgeRYbCSScgHMNh1zYKyPkvHau2QFu7inqsv/hBBm3gYsyEj5WMTTA OQ26LZMH+qtHLZHAO9yANCVANGyNYFUjGwmQAAmQAAmQAAl4lsBNtvjt4wOVjY6HE2eDV23X+g92 9oKTmwr/6pQWMikzzubwcCRAAl4nAPGrV0fIsU2tALs1F9NXDMgRoyCgaYm6pnkdn+ftQzCw5UK5 tOMBQ6wfqUBq7NdZkpUXyXXkQHt+SH1s4PbdVrz9qMaC0n6BaUvsvH1cP3+ZGZhusSP+JuBczPHC lFEonucclmqNlXpYhyUJm7b4G7EfrHdOA+S6o1gGHr6oWi0mI0unVaBKC+o+91jORW1+GE7aSAIk QAIkQALJRwDpTEr/Viu3wGtNVDM+VcM5th+VLlUbKUfaCaBBPaDt4khcJVF28rgkQAIJJ2ASnt8f r68PLpF25J3e2E0lQpvmzNQSbjANKBMBaLdOyFTqFkdANAaK2c5D2LB654L28uRgGbQ6sksOdIQF X8WMQOE+y1mCAMvwtTE7THx3bL47qoIPolhhqdlSCqjUEd8h4NEOS8C5wiPP+a4+KgPHfVOAytOp LZXIDGS9ISbGFmwCkJF5ebiKsVtRd7OesaFc3UUpCmbFsQBZsDmzdyRAAiRAAiRAAlEh8M/RVrZA jWayPjeRWSLwqOEqW2WS0gTBNFS7e2m4Tnq3BSLu6yfIMWMjARJITgK4Soxaq2S6IX1gAkTWnCsk jw2UmZskz15Z7MzQkxOUH3uNIYNuzIvDlF6rirTrAKCTyYY0NvwJ8gLuit4cZT8OtH9tNskJODkH uh73+Lc7juULs/UVFY5WqvxnsvM2X5CAVwg4l3o89lqxXX6eISc0Lxp1D8nxzdQD985LvWIz7Yg6 Aec0QN2xNovkjFZFz4GwKkb20cTI2saoG8AdkgAJkAAJkAAJkEDpCews0DnkmGSF5E+9Sv+5GG6Z kaOSFlAmCc14Vj9MV1KNVjZLmspqyNiWyOcCMew8d00CJHAQAnj6Nj1L7u2nJR1cCc9Idbu3ryzc epCP8W3PE8BjVqwT75IhN3TV+cPOanH9mBUhFCjzfz+NGq2eH8hAG2i8ERVvD6tavah6E6SGGObd fSwvCw+2dthKXEHqI/sSPALIab+4gyqfXSTVOUWlu0OIDLcViJCwBZtA/dlyUQe76DN8BvxLU+uj cW5g+TYrpwd79Nk7EiABEiABEvA4gTlb5GikicI/aSgTPSCQbqa0/VcKDENzMhlmbJIrOtshd10g r8kCj6OleSRAAtEhgHhsswVyTRdB9WSV82ymVGE5qYVSG4b4sGnO5SI6R+VeYk8AD3xxJb+jtwqP YI4cGVwMcVhV0A7PkwVbBcFA0zjEsR8THuFQBMyaC1yIui471GZ+/NuEDSq53VxdG82PeF9+7Att DjwB514A9wATBNROPbFYunuqnNxC/txHPcmlRFIgzwfnHMgtUFVTVTKGyz+ER4FkjCcGyaxNvJoF cvzZKRIgARIgARLwAYGWi6wSpRBnQHO8lwSafqAN5h1kt9bprgNuJrW1oVL3hafNRgIkEFQCiMdC J1nVcbADQSq5NF2FZ7FkmM2XBPYLhhWZhx9M0I9QEWZ3rVaAUgeCJPf3U2sZTDvwjuDLXtPoQBCw ltqFpV3iit3EAqT5ll3WSQeswnJHL+aFxgIz9xl9Ajh19+u94rHst1MFRbRRzth9T4HzgDdbLJSt +YLKL2wBJjAtS6m4K7FBl1OBEjB/HSLLt3PCGOCRZ9dIgARIgARIwKMEbump3ZKQ/Gu0stD7kY3f ZgtKIloJriG5pYdyothIgAQCRWC/0uj+bppcjvgPIu3O1CmklKYwcc7Ks7rr/UtWoMalYp3BYEFg /4Pxch10Y5CHVjTSDt2Yvw2Xnsslc2dkcDm+FUPOT0eZwLko0ofLUVitywheG7fe/lamyly9xjB4 fWSPgk0ASTgj1sobYwQVqSKeA76zqSoB/uEB0nGp7LaLvAQbRbL1zvEWJm+Ud8YVjbqnqYowkMzC 6FNiKNlODPaXBEiABEiABBJFAM6JESOFUwoJF+83403Bl4bjZDnSYSXTh5QGx9Hyfi9oIQmQwMEI 4IuMpd9N5mudKyfMrgWTkdPe3s4p5ff9YAA9+H7hftm1V4asluu6FH16oscXYtGntZRfZkRyzzi4 HhxEmmQIXAVdOzwqCstvs4KGBN87yDKgVoJyrkKqKAYbCfiRgLmDIN39yykqxh6ZL2iZMjznPbap UipDkQJHqcyP3aTNhyaQX6DS2tViBzPuRocwTa2XHL1OR93NuohD74V/JQESIAESIAESIIHyEgjN tVQasH5/xXZ/hKyNI71yu6ruGgm5N5afZnChaHnPA36OBDxAAF/tRdny6SQ5s7UrKovIT1j+0lc6 LLG+4OYK4AF7acLhCWzbrbRzXxkhZ2BMU3Sg0sx59fwXocvPJ8vY9YffD7cgAY8QuLO3FW//eqpH LIqyGV9Mtj2rNFU6gY0E/EjA8ROQ7t57hbw6UlV7saYMJvqaohLgnxmihKFwn2ILGAHnBMDc9vvp qqhuEWn3VLm2q9SbKRvtlZIB6z67QwIkQAIkQAIk4AUC1yLbUGcY/r6DF8wprQ2OH/WPUXrts3Ge 05UWAZNVSguR25GAlwhgUlx3jBJmL5KJFBZcmuZuVoaabz3Tkbw0aIeyJXePenSiZFSLjam+XEMd erZrWPUAH2pv/BsJeITA44OsePv74z1iUZTNWJcbcauC2scoI+PuvErAOAxwHvACswNUV1dylHrW 4/Y0qjYWPGbazWpQXh3Hcttl+Y36PGi+UKqZXHczZ9S5HFhex2StcuPlB0mABEiABEiABA5BYMNO ne8BxyNNvvJbppbyn7UHlT5PTmiu/Wf4TilyV29Zsu0QneafSIAEPERg336ZlKmUNjHriei0h1Wc 9snBMmCVZar5snvIbppyEAJLt0nTBaraqdJmdwvvh9WF+oH+0mC2rHfJsx9kN3ybBDxK4DU85dd6 MngRvGautBBhUN/fdKndTpU2ZiMBvxNwuxDdl8nzw+R0LLlyB95xt0oTPE1rt1jW5vpjta/fByWe 9psTAD+hVYjF0Sq1w4w+fqaqEu144DJrM8c9nmPCY5EACZAACZBAwAmM32A/628oy3J83FmsFjy9 VSSL8pSWMp91vnw8njQ9WQhgJS8Cs0gtUxMfe+ZbOV1F2lEOFaLfprlnysmCxm/9xBhN2CC399Kj 6SSP4YV+DXn2X2fK1vxInTJsz2H12yDTXkXg44k6Fh2WZ4cEFgguvyrejmtyigxfE9husmPJRsC5 6cC7gHh7swVavM72PYwfAg8Ej/tfGqY0NtmCRMAZfdRLxapJZ3235X+Glc7//f0FaqVsJEACJEAC JEACJFBxAi0XWmEuVJNBs4NbFd9xXPdgPCiko9zSw47awXlOUzkqrEEf15HgwUigdAT27pMpWfLv MTr/GZmirqjs80NljpYZwZ6cyVHp9sqtEkAAVVCnbFSL9C+COGqDovqoYTm/nVLH7W8vUkiAfTwk CUSbAMQHTCwaizUC2XDhhfLGPX21QxWSW3sGspfsFAlYBAaukqcGy7lt9QlvvBH8xPOmFEGxhraL 1ZpZeiNBOl2c0Ry2Vh4ZoCrqOvkeau1Smrw0XMasl/y9Qeo0+0ICJEACJEACJBBvAqgfpHyMkDw+ UB3a8UDibUeFj2csR+Tn/8ZFYncI4r0+qsK75g5IgASiSmBJtvypt1RvamkymGD70U3km6kq/9l8 l/17LYoqKk/vbFeB/DpLLuyghxL3ESdFEJGKsApTjF4n2ShC59PnuJ5mT+MSSQByBCbeHuxANHSf zOIUdHbNjkQC57FJIOYE9quSqf1XqhqaVgKAvpGp+5pWQvtjDxnKhR4xH4b4HQBOpvEzkf6xNldP Hh0fRg861l2ixGqPZT6eGsePJo9EAiRAAiRAAiRQEgFVrh1+RZqSswtM+2qKHItQnnGcUuSePrJ5 V2A6x46QgF8JoBwqtDFfHWFnQZtvaFgpQf19hGzOV/1imN37o4vLKfT23xitH5cUlWfHQ5PLOknd sbLajs5xQL0/oLSwrAS6LrMKE1zdpawf9dP20Bi0qleH5NtpfrKctpJAOQg4dyus2IJU1O/aSRXU lDGOiom9N5Bz2kh4rizYyszncgD2+kfg28AXxRCrQbcdVKxxuKaLKiS0RfuoXu8D7SMBEiABEiAB EvAMASyUq9RQORXQKpxtCzh4xrryGOJ4y2M3yEnO8kBoGrSX5X5Wpy8PC36GBLxEABNYFKiyctox ddX/sIa3/mzJzLMMdb6/XjKctkRGBzo/fxuuFt3jlmHqRVp5gGF1vf1ogszapBRxTeNo8tQJKgEs 3DCFgBGZCXb7Qzfrm/6H7gwwBnuo2TtFALct586VtUtGrpUnBrmirybqnibHN5PrukrKnMj9jvj8 TsAZ9w07pdUiXRHMCbnjRUh5Pl9PlVzbw/F7f2k/CZAACZAACZBArAn0Wq7ECREwqdVK1u2M9dHi vf9NeSo7xQkHQaAeET82EiCBeBJATvvCbHkSM9b6dr6QjrSf3EL+MVIgAIXmTHPiaRiPVUoCWGqN ByJYZY+A24Hy7Cc0lys6S2PX8iiOZinBcjP/Epi3xYq3H9fUv50oleV9V2ovMawelTqLVkr1SW5E Aj4n4NzLsvOl7hg5u41UM4XdtQ+j8p/18q53xionJ4dhWJ8Pt2O+M+6Qy8Ms8kj3Goc0qdFMWi9S ue7OZs4H+YIESIAESIAESIAE3ARQDkZpkKartXK7C91/8f1r4wjl7JbHEegz1Rj1hBF6pGwkQALx ITBsjdzdR09RXRVRz2itssKglmka5yzxGYtyHAUFE7stk0cGypmt9Z3CGUSd44fsPqiQYVk9Gwkk FQFcslA8UT3K1wG3wPf9tJZWTxvSfQr8YLODBxBwXJTcAhm/Qd4bL8gWsDJ5zEUA06iweu781hiZ u+WAz/MNHxJwBh3r9aAk8+c+rnQRfdk/q42S1Fux3Yd9o8kkQAIkQAIkQALxImCJt4flgX7xOmR8 j2Ncpn+O0p4SfCT4xiH5fpoU7IuvHTwaCSQTgYJCWbpN7sIMRctVmZkpFEiOaSLIBEMUF82ZziQT GH/0FUsSUDYubY7UQBUMHUlwYgsQs8U6+r/0ldmbrL5wHP0xqLQyqgQQZkGpAvW9qC/7gu5OOB7U OW2jCpE7IwFfEcDNzrnfpc2V2m2VS6MuAmZyYV40lJu6KRWa7XuUq+Ns76uO0tgIAWcE8ajl0o6C hdJFhjssX0yW7bulkEXhI8z4igRIgARIgARIQBHYt19rKesQ9OeTg8nEcY8hd3CEWRIIxzhNnhks WB/KRgIkEF0CuKoMXCX397f1vXF50ZPQ89vJb7MiOu3RPSj3Fi0CG/MEYQSE06shjFC0ECrUJJ4e LB2XyHpbecyZh0br6NwPCfiFAJbnnGRyXBvIGrs0sF+ML5Od+JpDS0q5T7iSN5SpWWX6NDcmgaAR cN/4oFH50wy5pqu9itY4PFgIlqLEZ14YJl0yKPcdhBPAGfQRa1UJm4jCjM51P66ZenNiZhB6yj6Q AAmQAAmQAAlEiwCkOK0ErTTpuDRae/XifoynBMdY9dckooTl5u6ys8CL1tImEvAjAXzL1uXqnHbE ac2sU/9EWvt/p6qne2jOnMWPHQyqzRgUKLSvyVVy+uryaK6QZgTDUkWvSvhoosrWM42DGNQzgf0q PQE8mYIulglBTw56XZjs3YKAkroyhJSYBhsJkIAh4NwNZ22W23qp26VJMLBcIP2VwaPqr6cIxC2Z 7h6Y0wbX/zt7208hjcukx/rRgdR1D8wgsyMkQAIkQAIkUFEC4zZIVayMg3+YIouyK7o3j3/eeMUz NsnlnexElFQltwgnmY0ESKAiBLCQdvR6lcplAjLWTDOk1t7+PIMLSSqCNuafxQXwxxnyxx5aN8Yt HRNWmu2vjZLeKyz9n5ibwgOQgH8IbM2X89tb7lP3Zf6xu7yW3t7Lcpyu6kw5vvJC5OcCSsCJumPZ S3iePDxAjoUUm4m94ycisUhCCKlaNljlN58VT3x+GjjDPS1LVdFVYv5OyB1OVEieHiL9V/E66fNh pvkkQAIkQAIkUGECnTPsZIyGFd6Xf3aAsrA3dot4R1gSDqFpNhIggfIRgC7Tg/3tnC4z6UhXYjKp c9V0w0xMnOlJ+Q7BT8WCwJj1cm0XLftjAgL22GHmeF5bwd1BXFq1HMFYDAH36V8CKKKnnt3rdAVI MAW+tV+sEjPQ31NbyqpA6+cEfijZwRgRcO6SWM2HAihfTZEaZlWICbzjDmvfZG/oJqPXxcgK7jau BDDoe/bKW2PtXHfbm4IPjBvEHCZ0xXU0eDASIAESIAES8BABOAn/m6ndv7DUbKUMc3xFD1kZG1Mg I/PEIKvvcIAhxNdruaV3EZsDcq8kEDQCuFxMz5K3x9p50faM8nft5LPJkkulJk8O+K69MnaDigOc 21YqNbBX+ugZIgqhInMV00ZHgxRDnDw3BU8OF43yLoH8vYKgmYq3p8qnE71rZ7QsgxSGVTo5JMPX Rmuv3A8JBJCA+77ZZ4VS9r6ogz3jMJ4SBN4bqBVkH02QwavVGkD3RwJIJLhdcgYOVTzeHy9wgCO5 7nqU7+oj3Zap5y9sJEACJEACJEACSUUATsKbY7RjEFLpqcnTjHcEvWLMka31nmGVmdBsQfIwYE9J oEIEcvaoJ1bHmGoIdsrWUY3VWmmnJoIzDanQkfjhKBHAuh6sOECYHcOk5oP2qJnXEB2duUnyCiKz fg5flMBzN8EkgPjzrT21C5EmLw0PZh+dXpmrwZ8gKYPrRkjqjnX+whckQAIlE3DuoUh3RwbC+A1K TwZfH2veoR9z4wsFVU8IkkCWBBW12HxKwBlrPIfFXPLE5kVGGRNMPFtpu9innaPZJEACJEACJEAC 5SEA9+DJwXr2lKZSLJKtGe/o00lSzYk+1Zfvpkl+YbKRYH9JoAwEUOjhyyl2TruJ2Ybl9Nbyz9Gq ShSaM+8ow065acwIoNDh2PXyzlh9oYMchCvMjsclSND9fJJsyovZ4bljEggugfv6WfHnW3oGt5Ou nv02W0cLw3JaS9e7fEkCJHA4Ao5ftGGnYN4BTcvjIPDuuh2rxSMpgkdabRbLwq2U/j4cUE/+HaNs BrqgUL6ZKpd2svX6zLOVhnJ+O+mwRNbv9KT1NIoESIAESIAESCCqBOAVqFwL+Hup0mB2VHftq51h sefRSNM1azzDquYjGwmQwIEEsB4W3w6Vt4MELXueiO/Ot9Nks4604yPOpPLAj/OdOBPYmCfvjJOz 2kjVRkWGDNe6Gk3li8myYrtAXsY0DlycR4eHCwAByESoK2FYzmgdgN4cvgsTMu3VMQ1l/pbDb88t SIAE3ASc+yzuvCu3y88z1aXD8abMxQQ/T2guV3eRRvNkD/N/3Ph88toZZSxqGLpGl/mwHWYzxBj0 TyZxcH0ynDSTBEiABEiABMpLAC7BdV21p5cqnZaWdy8+/5zxi/qv1FFE4xGlyEP9I5oYPu8fzSeB KBBYlyv1ZumYLVKw7CdTJzWXxwdKpk6NduYXUTgYd1EBAli3jjA7CqGqtUuQZ3fGS6dXoTY00uoa zY8cgAMXYcFXJFBGAp9N0lfFdKUIkQxt0y5V60fdArAoMgkk65NhTNnHhBDAnXe/feD+q+T+fnJO G11w0x2YxXq0kJL9nLpRsnYxmcHm5Z//Hf+q5SK5rKP9sFI7Y8hzQ+Gw0FwlIuRs5p+e0VISIAES IAESIIHDE8At3irskqLiM0nbjKuD9Zu1UUDQ+LphubkHQ+5Je0aw4xEC2/fI/41TcjGRnPawmjUg 2LI8x9qMk4UIr4S+mpSpFiCcZ65jrjUIGDsUa8PMbnG2QHTaNI5aQseKBw8CgfC8SLx9x54g9Oiw fZiWJeM2qH9zmd9+WFjcgAQOScB9F4bOzLC18uIwV1TWBGb1rRy3dVTMQWVVPFJn8yMBFNDB+iBk c1kpK2Zw06RWK1X+A7VW2UiABEiABEiABAJGAJ4eMlRVhDlFxWHYkLt1BnK3TMg9pMJW0KN2+8NE RALJQwBlT3sulxrNiuRIV2+q9EXX5ioM+Grw25Hw8wHxc1ymBqySa7qoK7l6LIJ5nP5XOV0t27mp uwxbk3AzaQAJBJBAr+XW5RGZiqsYMAngCLNLJBBvApD+/mG6yv85Dt6Xk+5uwrMpcloLpf+Jqw08 NDpg8R6bChzPGSyUzb2qs1YxdQYXbltD+WC8rMmVvXZGRAUOxY+SAAmQAAmQAAl4ggDu/sqXw7+Q CqA5zoAnjIu7Eab7m3epcKLl4oZVaZsl2+JuCg9IAgklgDyctLlyWScdSjIzgrBUSZc3RsvMTQm1 jAd3EcC8rMdyJemjBGBTXQsQ0qVKI7mzt7ReJMu4BsFFjC9JILoEpmfpr166EoKYzmtjdOFybySQ fAQiE7H9Mmuz8sTq9LCnJOZJOlyyVFX9HE/SP5motol8JPlw+bfHUzYqj1rVDrN9bIh0Hd9MrWKY mOnfbtFyEiABEiABEiCBCAE4aUrgV6tDYCUjm0NAZYo6LlC6LGHyv4OGL4JLABcEhHDnb5WL2rvS pMNKZPLyTpZ6DGd2CR9/jFHObmm2QK9Ogjy7uVLp5DeE2bEAAcrtzlNCjlfCx4sGBJgAHKdqTdQq klNayKh1Ae4ou0YCJBBvAs7tG5VVnxuqFhvCGXPWr6kXOvaOCQuWIiLdvYCp0fEeonIeDyNrBhd3 kD/3VeU/IsOKMU2RRwYw172cbPkxEiABEiABEvAOge27dbw9XT1Sz9JFD71jW6IsMS4QBBJfHm4H ssJqNj18baIs4nFJIC4E9kvflfKXfnamtMmkCsn9/WXgKssAZ/YXF4N4kOIEEGZvs1iF04+HDhik Y1yRdmRJPTVY2i2OXMk5WMXx8XcSiCqBA79iB74T1QNyZyRAAklHwLmq5O6R/itVPZ0LkBFhPDQT cocaSYqc0FweGSgpcyKFdZKOlN867Iwsslw+nSSnO3KmGNY0tWYKzh4U+9lIgARIgARIgAR8SiA7 34q3w0/L2uXTTsTQbJSwgc9jBbVSmL0WQ9TcdQIJwOeHjNJtjoySmcGlS81WMjaJyygncESKHRoD lL9X/jNZqiK3DTF2J8yuZ9xIePt4otqAjQRIgARIgARIIKgEnAgtUoBu7iEo0WJluTsv4B6E5Pae MmGDYuBsH1QgweiXGaZde+XtcfbaUuPm6dG8vqtk5HAogzHU7AUJkAAJkEByEdjKePtBBhzOj/F/ vp6qZKtNJslRjaXbsoN8gG+TgD8JQI/9X6O0h49HS/apfnUXSZ8n+/TaZM7XEjWwII+yGi0XyaMD 9QBBod2JtIdVKtQLw6RrRmQWxpFK1EjxuCRAAiRAAiQQHwL77cOs2SHhuUrxu2ZLl3sAR07X30TK xOujpEuGZHL9sk3M+/9jsL6YLBdiCYPj72E00+SxgdJ3haCWLhsJkAAJkAAJkIBfCCCpVem3pyu9 FOa3Fxs1J3gVmqulG+DB6kyDlguLbchfScCXBHbskReG2slRxrEPyzFNpMVChnATP6DQa31xmOAZ n0pgw+g4M6+w1GolTeYrsVbIXpnmXKwSbzctIAESIAESIAESiBeBwn2St1c6L5VLO9rZ0XAbbM8B KUNQJkFd9Tmb42UQj1NeAsaXw0/kutefbbt/9lDCG7ygnYzjstPy4uXnSIAESIAESCDOBBhvPyxw 4/w0mqcCX07ICwFJNhLwL4E1ufK/mar2lpJLMvOydDm3rbw3XhCER8Npb858//bRp5Zj1XDrRXJn b/2MzzU6uPic11b+OjSipe/TDtJsEiABEiABEiCBWBBYlK2yoyEPqBw85zE93Dy4E/Xlwg7y1RQZ sVa25NPHiwX+KO9zN4QEp+jHKE7SBV6kqBKr/VYK9PzZSIAESIAESIAEvEwgr8DKbz+2qWzkesOD DJUJPPZaoetIGp8nrFxWNhLwIwFE2lEfWU3E8M+kzYTk80kCdSnTGGlPyLBO3ih39LbnyM7o6AG6 posKs+NRCIcmIUPDg5IACZAACZCAXwjkF6qiPKF5Ko+iSNRduxZIHzqlhfxtuMzaTKfCu0Pq+Hvb 90inpaoebsRpD0uVRmpw8T4bCZAACZAACZCANwmYW3mlhuoOjop763d600xPWGVY9VgmeDBhOTwh qTeLnqonRodGlIZAboEMXaPzZCADbnLaw0pICpqQEAlnSwiBgn2yOFsgUXV5J5V7pjRX7aHBGvAL 2iuF9ikbLdOcyVdCTOVBSYAEkpBAYWHh3LlzR44c2bRp0x49eowbNy4rKysJObDLJOAjAvAWHIdh Uqa8PEL5GEc3secvxs1AxnsD+X1H+XWWTMuSbDvjwkfdTDZTf5gul3YqKjKTItd2lUGr1fA5I55s WNhfEiABEiABEvAsAdydVfQY/0KMuR1mlIwnM2ad7epobnXHHOZT/DMJeIHA2PXKJy+iBB6W54bI km2WdXTU4zxMAN59mdzaU05qocPsuJ7YkXZcjR8eIKPXqfw007AxByjOA8TDkQAJ7Nix46GHHqpe vXolu1WpUuXMM8/86aef9ply2mREAiTgVQJuzwE50gu3yjfT5Kw2trPhcjkQij+/nfxjpAq8s3mQ gOMBbtstA1apZAwr9ctM4cPyu3bScI5AyZ+NBEiABEiABEjAOwRwB7cStlNk1Q7v2OVRS4zDMzHT luOAsxqS76ZLoV210KN206xkJYB6mtADR9lNVRbZRHT1YparOssYVlxKxFmxp1BW75AmC6RmS63Q 7gqzV22sVgdjwptpS3s5M6xEWMpjkgAJJDWB3bt333TTTQi016hR4/rrr3/zzTeffPLJs88+u3Ll ynhzwIABSU2HnScBXxFwuxPD1sojA5W/Uc1Vl8pkXmHJ80XtJX2eLMuxqvn4qpfBN9YZR5QVu6iD Wpzu+PaVUuWs1jJgpRKHdDYLPhH2kARIgARIgAQ8TAB35DNa65t1ikzf5GFDPWOa8WGmbrSfU+jU gv8b5xn7aAgJ2ASgEPXCUC356KiUpAsi7YNXS/5etREdchtVPP7ftVeaL1QJ7Uo8H+u4nUh7ulRv Kq+NVE9AkLlkGocmHkPCY5BA2QkgCr1y5cq9e/U19ICP408QXRk6dOgBf/HfG507d0Zc/cgjjxwz JrKQb9u2bbfeeiveP/744/3XJVpMAslNwO1aYAHd+A3y2aSiGu96UgMX5ZgmcnUXeWusTGfGu8fO GWcQUdNn8Cq5uYfLn8TwpcmF7eW/U2VngcfspjkkQAIkQAIkkHwEcNdG/E1FflKlS0by9b9cPTau zuJtcpxLy/0/k7mOr1w0+aEYEEAd5Cbzi6qUpMtxzeSbqdbBHHc9BgfnLosQ2F0oG3bKTzPU7BWX 2UiYPSyoWVarlZrt5tmhO45LEXb8hQQ8Q6CgoKBXr1433HADQs2mXXLJJSNGjNizZ4/bxtTUVPz1 1FNPdb/p09eXXXYZ+vLaa6/B/v2uaxPk3A2BzZs3H9g1bAlW+fn5IOP+1IFb8h0SIAGPEBi2Ru7p qwr6HOnOeNdreCulSO220nSBbNoV8VU8YnaSm+FclXsul/PbC9ZIRjzMkJLr75wh0BFyNktyXOw+ CZAACZAACcSfAO7C9/XTN+i0SCwu/mb47ojGe0ERIpWqavJUw/LhBN/1gwYHjQCSqOvPlos7uDKo w3JSc0GVpUy7IDJ97/iMOpLV0+bKn/uWEGnHiLw9VoavFYyXaRyU+AwKj0IC5SCwa9euhx9+2ASZ Ia5y1VVXnXDCCebXxx57zL3D9PR0vA/RFfebPn1tOrh06dJi9ufm5po/DRs2zP0nxNjbt2//3HPP 3X///bfffvu9996LWP2gQYPc2/A1CZCAZwlk7ZL+qwQrdiE1E4ncIuquk7IgXVKnu7w/XsZtwBM4 z3YiuQyD62i8x4J9MnCVPNhf12lylPlTlCw/kjo22iqFyUWHvSUBEiABEiCBRBPAbfqVEVa8/aXh ibbGV8c3Hs6K7SqFwCp0GFIhd/O+r7pCY31PAGcdpNoXZesiSi71mCqN5K7esl2rlPDMjMMwA/Le fZKdLx9M0OsLMBbmeZye/mC6ekoL+W2WZQhHJA4jwkOQQMUJ1K9f30SYU1JSzN6QuV23bl3z5ldf feUcIjDx9pycnPfee+/tt992uua8gHK76fiaNWucNyGzc/XVV5v3UVMVKjRG5h3v/Pbbb85mfEEC JOALAsgHuKWHSnevYuLtJoRrXqcpT6bBbCXwjjAvPRkvDKgzCsgE+31HgfMfcT7hhYZVNVUoSTqb ecFm2kACJEACJEACgSeAO+8Xk/VNOSQ3dA18d6PcQeO3oHzqyS1sxyasEgnYSCDOBEavl0cH6vqb JtiuvesnB8lYuygqfew4jAhKTqfOUYuyUUa5mHTMeW1VQvvQSHSKs544DAgPQQJRIIC07Ysuughx 42+++Qa7Q6Qdzez3+eefx/u1atVyDhOMeLvTQdMv968zZ84899xz0etiOjM333wz3jzvvPM+//xz ZLmPGjWqXbt2SHHHm4i9z58/30HEFyRAAn4hgLzojkvl9VHyu3b2NMcE3nXGO1ydW3qqWeTIdYJa 8GwJJ2DfmlSu+1ODlWihlQ+G8UpR9do+nSQZOQk3kwaQAAmQAAmQQLIQwKQRigfqIXhYVTlnKx+B 1Tts3TyQDMl748u3G36KBMpMAPkqLwyzvsJONsuZrWWmXf4Y33ErNlTmffMDpSWwPleNwhFIKDLZ X7gO2HPS01tJxyUq6d2ZB3E4SouV25GABwjs2LEDQWM0dzq3CUEPHjwY70NbZuPGjcbSA+Ptq1ev RvnU9evtZ58e6FE5TOjevfu77757xx13KBCVKv3tb38rLIzE12bNmoU3kdaelVWktmJmZuaZZ56J RPfevXuX46D8CAmQQAIJRJwW7bUguchKJzDujdvbCSt1za+nRmq+J9BsHtohkLFN/tBdZ4DYHqnx UbEAk89HHEp8QQIkQAIkQAIxJQCxPitM1FDJILCVlYDxSCdvlNNa2ukf4YhkRFn3xu1JoJQEtuRL /Vl6bQWqcNrTn8s6ScocawfOXKmUO+RmZSWwLEfVpb2zt15ZkGZ//fVYXNRB3hgtY/wdYysrD25P AgEksHjx4gsvvPCaa645sG9t2rRBnBnx9k2brAecTrx97dq1kDGvXr26Ck/rVrt27VatWh24E1+8 88ILL9j9qFS1atVGjRpt2AARZ6sNGTIEnYXADoLw7mT47du3o6osPujfjttd5P8kkNQEHH8SGjJt FwsESFWdINvzNFFctawvRer0kO+nyYi1qlInWwIJOEOG1QdPD5EaKDfmjFeqqo371RRZsi2BBvLQ JEACJEACJJAEBPbLvC32irNUGeKSO0iCzketi8arWblDrREwiwWQ5f7zjKjtnzsigWIEeixT3rI1 x4ELHVYam5BnRB61aY6nXeyD/LXiBMB2wVZVl6qqWaur1wdZE5mwXNdV6cYgd8gZAudFxQ/NPZAA CcSZAGLIqJcKVZkDj3vWWWchmHzPPfc4fzLx9nPOOefSSy/FnxCafuCBB6C1gtxvE69+5ZVXnI19 9GLJkiVIYu/fv/+rr75q+oLE9bw8qwjfvn37CgoK9u7d6w62o3e//vrrEUccgY63bt3aR52lqSRA AiUScJwZFAzKL5TZm+X5YVrg3QnkGncorLwjZLy/NkoWbo34QiXuk2/GgUDhflmXK08O1rnuZgGm /gl9/n+MlFw+GYnDGPAQJEACJEACyUpgZ4FUb6oDdyH5YXqyUqhwv40XOn6DnIAoqO3MtFtS4f1y ByTgIoBwOpb0PjTAJQ+ul/E+M0TW5qrtcB46EyLX5/gyCgQAduk2ab1I/thDKjUsvkT3ko5K43S6 rabAUYgCce6CBLxHICMjY9q0aX369Ln22msRSb7tttuQxe2YaeLteB+i5V9//bXzPmLRTz/9tIlU d+vWzXnfFy+KRdGHDx9+1FFHoY+PP/64Yz+2QUo/BHbq1av34osvOrVTTdVUxtsdUHxBAsEg4Dg5 hfuk3WJ5YpDKeLeWS5vwO6ZCWPfXQL3/36kycq1ADd75VDAg+KUXDvZZm+XxgXKSU3QMI5UqRzeR H2Yo/5aNBEiABEiABEggugSMkvBZbays7EcGRHf3ybU3488gHKqqJcLP1P9QaYiNBKJCAHJPDw+Q ak3sswt+ckhu6yWLs60pjONRR+Vw3ImbAL7Xd/XWawrsr7aT0H53H/UQJGe3e3O+JgESCCaBW2+9 FSoxJnJ+3XXX7dy5E/10ItJOvB154Kb/+JP56549e+677z4Tokc2uE/pmL5899136EjNmjUdIR0U kz3xxBMNFvy84oorXn75Zai+X3nlldiS8XafDjfNJoFDE3DcTrzYtltlvKM0fBHpEniq8JpCKuMd qpuYZg5aLQjRsyWKANYmrNqh0tqtuaoZoLAc10zVIdq0K1F28bgkQAIkQAIkEFgCr4zQSQjpckVn 2bU3sN2MQ8eM5zlglcoWsLLcQzJ4dRyOzEMEmUDWLgnP074xHuXYvvHvO0qbxUHudcL7htUEK7ZL p6VyRSeVo6XmJoCv+UM56oL2gisnJNxNc2adCTebBpAACcSOwPPPP3/jjTdefvnlNWrUQCQZ4u3j x0dKpDvxdqi+H2hD586d8RG03Fy9HunALTzzTs+ePd944420tLQSLRozZgx6gb4vXapSCoyOPcRz nn322ZkzZzofwWMF6N5jS8bbHSZ8QQJBJeD2gnovl8cGCgrZqNmQcZzMT/hRDeXEZvL+eBm3QYmc MPaeqPMBCe3395OTnEXZGKA0qdJIfp6pAvLu0UyUhTwuCZAACZAACQSDwJDVWh4hXU5pKat3BKNP CeuFcVG6ZuhHGDoVtlpjlk1M2HD4/cCYiSDSfl5bVyJKunKP2yyyEqpxvtErjvooA2m/lXJPXzkV RZDNchUzVQxL5XR5erCMXieoV2sa+UedP3dIAp4lAGUYyJUjYA5J8zvuuAPB5OOOOw7a5sZgE2+H 3EqJ9kNxBdujzZ8/v8QNvPNm06ZNYSeE6Es0qXfv3vgr8tuzsrIQVP/LX/6CX5966ilnY5MGv2PH DjyYwJ8Yb3fI8AUJBJuA2yPami8QMPl2mspPKBJ11xnv8KawvBorBJsvULnxbPEk4AwTVsi+Nda1 bFYPDQRnkOu+xuuPheMJjMciARIgARIggQoRQE15o38yzdYfrtDukvvDxo1puVCF5iwPM01mbmJc NLlPizL2HsnVC7O1VDi+m3awF6UWHhkouVqKwPGWy7hjbn5QAmAOfdEOS6Q2HnCYS6JNHgntp7dW K3CzrAqB/DofFCP/QAKBJ6A0Yvbvh5rKySefjHjyV199Zbps4u0IMpdIAIF6bIzWoUOHEjfwzpvT p083pk6cOPFAq5555hn89eKLL8afUEzWFIf94Ycfim2JxwrHH388tmS8vRgZ/koCyUDA7aZOzZIX h8m5beVYUzLMmR8hwJuqMpRQzRO15tfvlHyus477yQHsyDA53uS6Y0QwOjrVBGXd4PRCgoaNBEiA BEiABEigfASMO3RNFx1vT5NfI0uBy7c/fkoRMFQbzLY1KMJySguZv5VwSKBUBBZlK5VLxHgtDRN4 v2F5dojKFDLNPYsp1R650SEJINLebZlaWqsS2jH108DNYw4I5r80TIatieRfEf4hWfKPJBAoAqNH j+7bt++KFSuK9Qrxdrxz9913I5784IMPmr+aeDsSv4ttbH7Nzs42QWzUFS1xA0+9ef/998PaU089 FQRMZ2Hetm3bXn/9ddOLTp064R3o0t955514B6Vj3br0I0aMQEDebHkwXRpP9ZfGkAAJxJpA7h5B 4B2TI9Sdr+KE3PECThcCvGnKB7u1p/xninJ36WvFejjM/h3Oc7bIe+P11MOE3PEzVc1eoZ3Iaqrx GQsehQRIgARIIKgE3hlneTvXdwtqF+PdL+PAfDklEjI9Il3WqdJqbCRwEAL7VQGFpgtc8d6wmpJg AjJwlfoITirHMT7ILvh2GQggzJ69W1ouUhMKK8xuJoBhNeM4uYX83zjB9NA0ki8DWW5KAkEhcPvt tyNo/Nprr5XYIYio4K8QVDF/dfTbS9x49uzZJv68cePGEjfwzpsIsG/ZssVk78PmP/7xj++++y46 C/Ec04V33nkH1po4/BdffGHexPbvv//+v/71LyMjg1h9rVq18Kezzz77ww8/9E7vaAkJkECiCDiu FCZEH4yXM1rJMU30cmAT43Vi76lyYXsJz1WrDvP20vWN33DBK763rxqUSOYJhiYkX0yWHXuY6x6/ geCRSIAESIAEgkSg70qdaYBbakPZwurkURpa41V+OlE7LdqHrN1OlaFhI4ESCbRdLFd1dimZhJW4 Zfo8VjEukVaF3txTKF0y5JkhJUTasdgZyTx9VqiZhWnO9LBCh+SHSYAEfEjg22+/RcT4zDPPPND2 vLy8q6++Gn/9+uuvzV+deHsoFCq2PULTn332GTY+5ZRT8vPznYzxYpt55FdjHsqhvvnmm9WrV4fZ TrvpppughwMde6cL0Mn5+OOP0S9nm2OPPRaaM3PmzGnevLl588gjj/RI12gGCZBAwgm43SrobTaa J08MkhPctTsxaULGe6qanN7QTeqOLeKVJdz+oBrgjMuMTSrhBCKWKupuHoKkyonN5Y3RsoCLtYM6 /OwXCZAACZBAzAgs3679HNxSU6XBnJgdJll3/Neh2m+E06KFZRDrYyMBhwD8WyTw3NTdrrGrPVtM MV4Z7mzCF1EgAM5QoUROe5P5WkHUXQg1XaVXIZ/nP5Nl374oHIu7IAESCAaBmTNnmohxs2bNnAiz 6Vr37t3xp8qVK/fo0cP8yYm3X3jhhZs32/pfemv8apK933jjjWL78Swox87ly5d36dJl3LhxUGs3 1jp/wq/m9e7duydNmtSxY8eMjAz3Njk5OQMHDoTsjLOl+St/kgAJkICbQOE+QdrJ1V3kiEZFM95N vDckVRvJayNVvBeOHEXF3eii/toE3rfvVuKWSvlHT2CtwHtI3h6rZPad4HzUj84dkgAJkAAJkEDw CFzeybqfUlImioMLb8Q4JK+OsKtehuT6rpKdH8WDcFe+JbBf1uyQjyfK0Vi5ifAvfNp0NdGAfztu g9UpOrRRGV0kq/dYLi8P15H2orVQIdfz4nDpviwyfSPzqDDnTkjA7wQQSUb7+9//jrj6EUcc8cEH H/Ts2XPs2LGdO3d++eWXTRweidxI8DY9NfF2ZHdXq1btvPPOq1+//gDd6tWrB3EVbI+fy5Yt8xEW dL+YtQe+gw2KvYlfzTvmp9mD+3WxffJXEiABEnAIrM2VNotVhfrfd9SBd+0bW8HeNLUI9Ly2gllV q0WyNIdRXwdblF84134sQEBaO5Lb3bnuWAoKsXdIvrORAAmQAAmQAAmUhsD307WCcboSWKDmSWmI lXIbx2O5vacdUw2pyoxsJIAI8HHN7KWaOoEEgfcBqzh9iOapgYyperOUGDsy2CMpOvp19Sbyv5my s4CR9mgC575IIGAEoBvz0EMPmeg6stmrVKmCn+bXJ554wt1ZE28/55xzunbtajbAxmjm9fnnn791 K5fiu4HxNQmQAAmUTMAsSJy3Rf4+Qo5qbAd7HUcurJw6JKgghanDEingwuGSKUbnXcxkc3bLi8Ps aawZBfxMl5eGKS+ajQRIgARIgARI4NAEINuO0vAmHtXZWg186E/wr6Ul4ITc7+5j5TAjPePVkUJh mdISDNh2+2XkOlEnQ0N7BhGW01rKRxOtKYNzwgSs3/HszvY9Mmi1/Gu0WoCMr5uVlqPnCED92CDp tDSe5vBYJEACviTgZGVDFAVi5o8++ugdd9yBMDuqgkJfBV3CBs42o0ePRt77J598gvcnTJiAbVBK FRVXH3744W+++WbHDlW+xdnYlzhoNAmQAAnEi4B7dQ08urpjpE53vUrRiIrreK9aHJqiNE8eHqB0 4KdslDyGf6M9QM6sBI8/sFAUy0IjTnWqehry6SSZy1z3aGPn/kiABEiABAJDwNxJH+hvyYzf0zcw PfNKRwzhbbvl3La2lxKWn2d4xTzaETcCiAM/1F+qunN10uWxgbIl30prd9zauJkUsANBOua/U9U6 nSMRaXc0J3WkvWZLCc2VnD2CpHfTSDtgo8/ukEBMCaBOKITKCwtLSKZ0B9Kd19Atx/b4VEyt4s5J gARIIKgE3FH3XXslM085cpd2tCdTJupunL2wkmc8s7W8P16W5QSVR4L7Bbd5U568OcaKGFg6P2EV dX98kGyySnwk2EgengRIgARIgAQ8SKDPSjs81ZAC47EaHziKZ7S2vcQG0m5JrA7E/XqNAJ62tFyo M3OwkERPELAY9srOSjmcreIEgHfMeiUyqXRjUu2vmA6zI6H9L30jCe2YLDDMXnHg3AMJkAAJkAAJ kAAJJITAkmz5aorc1kvPqkzU3fxE7B1OYENBYbIfZ8j4DSpET68vWmPkkFyxXZ4eohbnRnLd9ezm yymyZBuBR4s390MCJEACJBAQAriBrtsptVrpSGCa/HtMQPrlqW4YLwVr7k5qoTmHVZ5z7xWespHG xIRA/1WqwFMk3TqslNvbLxHk6qDhxHA82JgcPtA7xZIBLGXFyhG1agAri52FxmGV5tRsgazfKYV2 ghQ5B/pcYOdIgARIgARIgASShQCU2zfslCGr5dkhUs29dNRkvIdU3jXSnO7tJx2XUmomameF40uv 3iEfTigyu4EfjgnOU4NVVIGNBEiABEiABEjATQBKMiZahcrj2bvdf+HraBJASrMjdoEg4eLsaO6c +/IQgf2q+vA/R7kyrhFpbyoP9pdt+cpMx2X1kM1+MAXcIAszc5N6MqgSmdwJ7Sj63FL+2DOycICQ /TCktJEESIAESIAESIAEykkAJVZbL5K7+qgEjCIlVpH3rmXe8RMp2f1WKrUZVPmkc1hO0Ad8LCtP CWNCyDGS8aKzX36YLmtzBePCRgIkQAIkQAIkAALTs3RtQb0iD9oXbLEgYBy8nst1Oi5Qh+XkFjJ7 cywOxX0mkgBEwrGsEprhViVi7fDf0VumZVlW0dUv3/BszJMvJ6uVwuqhlTuhPSS/7yCN5kuGS7eT kMsHmZ8iARIgARIgARIgAd8RgJc4MVN54Be2d0WA9YRLOY1papXx1V3k7bFKbcYp6OO7bnrEYMfN XrpNrTZF7Vor6o4lBmlqhvu34YI0eDYSIAESIAESSHIC5o55Q1crhHVLzyTnEcPuG9SRJXhhpeMN WQy2YBCA9z5vi/bznbzrsJzaQhrPD0b/EtOLvAJZkaOLNEEiEv8c3Zh0qdFMTZ0GrLQMYypNYkaI RyUBEkgmAtBnqPSbVGqgpJIh28VGAiRAAl4jMGuTvDZSzm6jHEVV38dxHfFCJ73DOf9isizYKlvz Ze8+r5nvP3tQTemB/oq2Qm1o68SYX2Yowsx199+I0mISIAESIIGoEhi73r5Fpsj49VHdNXd2AAH4 eMrfgweYJtd3E3gpbH4ngGWqzwy29YIwsulydBPlzBslQzxqcVJB/N7T+NgPXOty5dtpckM3fWkq GmlHlnvDOWqixEYCJEACJBBPAp0zLAcGCY3QE2AjARIgAW8S2FOo1hFDbeaZIXJCczsOrF10FROG YxmS89vJwwOUS7k8h456OYfRmeDM2SIfTHCp+gByqtRspUQgmeteTrj8GAmQAAmQgP8J4EYJVeRL O1oh99+183+XPNwD0EYi9EMDbMcvLE8OEpT+YfMpASTG9DIyQSajI6xyac5qLXA70Rwv1Ke9i7/Z mB+tzdXq93gmZR5L2blJUOa8orMMWGUZRbbxHx0ekQRIIMkJqPx2fWVGvH3zriSHwe6TAAl4moDb UeyaIbf2FJQqU7KEJuruxN5xTUtVGVDtFqtCZrsL6b2XZ1gNbWSR3dvXjrrbMyPcNX6dqWrXukek PMfgZ0iABEiABEjAnwT+N9OOboWlS4Y/++Afq+FyQNPbCiemSd0x/jGdlroIDF0jt/XU5Q9sl/Ks NhEBGXqVLlSHf4m1AL/Nkj/1OiChPaxk27+bpiqlmkbpmMPT5BYkQALxIoDgzMcT5e1xUnesdFsW r6Mm6DjtlkTi7RAKYCMBEiABHxHAU8L+q+TzyfLHHnZFLSf2jqh7ihzRSOr0kHfHSe8VksMFyGUc WmfiMzVL3hwt1ZvYjzYwS0pRyUifT7JW/pZxx9ycBEiABEiABHxPAAoYRngNoWCWkonpcMIhKdgn F3Wws9xD8svMmB6QO48mAQwfAiwvDnMpiut4+1ODkdGuDuQ4nNE8ahD3BVD4tyVf/jHSBdNOaEcC 0iUdZcRaq+ekGsRTgH0igSAQuMBU6AtLne5B6M4h+tBmUSTeTjW8Q4Din0iABLxJwHEm8cTw+2ly Rmut8e5E3Z2kd+3YPztEpmUpBXLjr3qzRx60ykDetEvu6atvGSYrybj3IZVdg9XBzkB40H6aRAIk QAIkQAJRJGBueX1X2vfEFBmyOoq7565KJrA4W2q1skLu1RrLMDuuWPLWfNcbBHILpMl8VYZJaT9q txwCMrf3koHUOSnjAEE3pvlCua+fJmnDNI/8rugkqCyMOY5p9MnLiJabkwAJxJUAFuBAjgB3hHPa CCIMAW6oAG7pyTRS4gBsJEACJOBHAm7HclG2pM2Vvw5Vcu6qvqrzD1FieKcN5OQWgsB7+jzll7K+ aimH2yE8IVOeHyrHNXWBTZHz2sqvs2QDi26XkiY3IwESIAES8D+BXXvl+q76bhhWAnesJx6HIc3I sZ9xwKkLy5odcTgmD1F+AggRX9ZJe+MmVUOPWtP5/LKUDemWXfLKcDmmiU3SwMQEJyRXdpYx6wUq 7o6j7rwo2zG4NQmQAAnEi8DK7SomgyhN1UYya3O8jpqI4yBC4sTbE3F8HpMESIAEokbA7WEW6qXH kC58daRUc4RQTOxde/u4wkP7/dQW8tkk2ZAbNRuSYUcIKazJlXv6WLcP9URDe/4ozIR7Ch9hJMM5 wD6SAAmQAAmAAMq4mzsgfkKP1O2HkE/UCRi8YA61QON7YE16sFPjos4wbjvMypP/TtUZjLpUHL4g 0F9CMkxmnjKB35TDDgQQrd8pPZbLowOlUsMi6jHIJrq4g5KUYUL7YTFyAxIgAa8RMNf/M8xqtTRp MNtrBkbTnq+mMN4eTZ7cFwmQgHcIuJ35YWvk7bFyS085sbk9NXZi71jN1EAu7agC7wNWyfLtnAUc ZgwdsKPXyYP9VVKfFW0A0hS1rKDVIskK9NKwwwDin0mABEiABJKGACrImOSl6k0FMUa2mBIwHgik M8xSdLgfd/WO6QG58/IQ6LlcLSZVzqHJxA7L7zvI/C2CZBg0x40sz66T4zNYuPHaSMVQLdR1MOrX f+iu1Ku277FAEGZynBHsJQkEjcB747XvFJZruwSta+7+qG7qazgK4bGRAAmQQPAIuB1RLP1GiVUU wr4budkm3m5+Glc2rDKmTmguUEGsP1uyWV+1FGcDstmhp/rnA3LdT2khDedwSlUKgtyEBEiABEjA zwQQY8fyLjWfSpOHBvi5Jz6x3fh1jwywY7kpUncs9Uk8MXgYGqgE/HOUyr5w3Gw4hB9NsMxz++Se sNhjRmCSMnKdoIysepzkKLTrMPu5bdX7UzaSpMfGjOaQAAmUiwCeG1pr5BsIynwEtb2OG6IONJ3Z KqhdZL9IgARIwCIAP99x9XeiftMCubefXNjenik7EXhcFXXSe50eSgp+epZszIt8kDRLJDB8rdzW Uy0WVvcUQzJVLuog/VaqJxcO9hI/yzdJgARIgARIwI8EzN3ti8n2jS8kDQO9MtoLY2SYI78XKdOW yxFWHh1bwgn8PEOntUNAxriCafLkoIjGPl3BQwwQhO7fHCNnoaosXGgHoHankdDefxV1kw4Bj38i ARLwGQHcDlbvEDyNVVe8VPlxhs/sL725KBqoboghubxT6T/ELUmABEjA3wTcPv+WfJm/VTBHQEWn SKwYF39cG/XlEXlrqJ0NufKWCyPrN/3d/2hbb3iiWtOMTXJnbxujARgWyKs2mR/tQ3J/JEACJEAC JOANAtn5etqIu1661Gwlq1jEMy7jkrnTVrQD+VTlgbAlhACcQDjS16F2sElr1+7f2W1UdQM0SMi4 ve6EWOjZg27brbJ6nh+q0TkJ7faV5P5+MinTsp0MPTuINIwESKB8BK7qbMVbkP0Y1PbIQOsp6q09 g9pF9osESIAEDkXA7cFCL/HLyer5I+bLqhqX9nitbG09m8NU4t6+0mmpLM+RHKZtH4Qrctqv6CxV zfp68+QiVeWhjd8Q5PViB4HBt0mABEiABIJMwHgR0HmwslJDwllVHMbbYJ+YKTWa6clsWBXomb05 DkfmIYoQ2Jovfx+hH3yYuqjpcmQjwYoP1kUtgumAX9bnCsoQYMZRPKE9JEho77hUJX+ahlPdPVU5 YE98gwRIgAR8SQD5eEpSIF2Oa6oe2gavoWSJEt1FMCRNkOjORgIkQALJTMDtzSI5DQIpH0yQ37U7 IOqOCUWaoOYFnOTnhkrnDCa9R84aZ1KQv1dGQGGml77F4C6Df+AWkhu6SYclke35igRIgARIgAT8 TsD4D59MtB2GVPl2mt/75Bv7f5puJcghR+L6bpJf6BvL/W3ofkEFn5mbpFZL7eBpTw/FPZHWPjVL 9cztVPu7p9GzHkzy9qqMnZeHS6WGEW5wkoEOT45QfBnp7qYRYPTAc08kQAIeJaBWReklUW0We9TC ipi1u1Bu7qHDIKnqASsbCZAACZCAIeD2cudtUbWfarVSz17hD5eQ9B6SxwbKoNVKXBElWd2fTVqe DoQuGWryFVksgFtqimD52LytgnsQGwmQAAmQAAkEgADueij45SiKH9OE8ibxGFVolaB9PdX2zVLl 7j4CdTu2WBNYliNPDNI1Pc1S0LCc1ELVPDKuneMExtoMH+0f+erfT1e562oe4ZaOCctN3RS6Jdus 3pCej4aVppIACZSPgLnQPYPy0EjJCwdzYSDcwqu66Hh7irrIs5EACZAACRQjEHF698vcLdJusbw6 Usm5F4+6406RaqWmvDVWeq9g0rt67mDoIde9W4ag+KzKcjf/9I31L32l/8pivPkrCZAACZAACfiV wIrtenG0TtY6t61fe+Evu+FpFOyTu7Bk2w78fjyRmQ8xHEOktSMRUUWMbeDIRbmhq1JZRIu4zTE0 wU+7LtwnKBT1j5EalyFmp+4gF+XqzgJNJNOIzk/jSltJgASiQQDL4S0tvgayeVc09uilfaBCB6Tp VfQjRXov95JltIUESIAEvEfA7QlDqfX5YSrjHTKV6irquNDmtdZOQebP6PUq4x1zE/dnvdez2Frk 9B0FZ6HDE8EFaKnqcTZyfqBvxkYCJEACJEAC/iVgbnZIYaoCTwD/0lQQOK/Avx3yk+WY1aJwjDVt D0v3ZX4y3i+24gxHIR4kSyjFXTvYjjUd7WydQMff80uPYmcnUKzfKeF5WrwXzyacxxNaOuaaLkpy Cutn2UiABEggaQngOokYO5ITjMuEytEBa5A+OKO17l1DmcWS7gEbXXaHBEgg9gT27Vd5KfVmyZOD 5PRW+nJqZtkm6g7vuqGqIfXnvvLlFBm4ykr+ib1dXjyCCagj1z00V+nJRJ5Q4NlEulLCH7NewJON BEiABEiABHxN4Bas57KjkT9M93VX/GG8CfOicCdKplrP9EMRdQ5/9MEPVv40w5ZVNKd3mrwyIuK5 MdjujCGe/rw1xpWQY3DpqcHVXWTUOrWhg8t54XycL0iABEggeQggiqJcprCKmWTrdVKB6fuGnXK8 KekexOz9wAwTO0ICJOBxAnCV8W/fPuVCPzlYqpqMd3fg3eVpPzxAhqz2eIdiZZ6ZU+AnEv5T59iT YvNsAohC8uhAwSSFjQRIgARIgAT8SwD64dZjZdzaUqXTUv92xTeWGwej27KIa3Fl56ROcojuyA1b I9d2VSviTVQEDhsqew5fqw6CRAkDP7pH9OPekKiJokWYCKh1Fq6EdkC7pKO8M5a1UP04qrSZBEgg tgRQJFrdXPTan2YLYnusOO991Q694BGuYEqcj8zDkQAJkEBwCeyXkevk88lyb19VZVXNTZzYO17o pHdoNt7XT36dqWYrWYETKyvl0O4sUGn/F0DWzEGUplKn3hsvszZz+lZKityMBEiABEjAQwRM7HF5 jpza0or9Ht1EJtgSzR4yNKCmYEGBUjuBuxWSxwcFtJNx7BaWJT47xE5r194sPNgGs1mUtsgYQLse viskE5WWFHxax60NyxWdZORaVUaWTyWKIOMvJEACJGATQM1o9ZgyLLf0tN8KxP8QDTPya8hyR+Nd IBCjyk6QAAkkkoD7QooCXhBuHb1OiaUcoScpkcC78cbDUrWxHNdM7u6jUmKQEZc8zYDCT0Tdf5lp q93a85RqTeSV4YJZHhsJkAAJkAAJ+JEA0tqd4NvZbSQjx4+d8JnNxrV4aICd55CiHAy3Y+az/iTU XDilg1frWm9IFLEj7ai5M1OL0JIqBgfSB0PXKFEdFSkyT3lsP7Z2O3lhmIzbYA0hcSX0XObBSYAE PE0A0RITb4cS79wAFbboudyKt1/WydP8aRwJkAAJ+JEAvGu3gw2fvO4Y9dy2eNI7Yu9w1LGQKqSq UKXOVf459L6SSsx8S778a3RRMmmCHKr/zRRkCbKRAAmQAAmQgO8ItFio7+86BHdKC1m53Xc98KXB EHI/uYWVY4yshqkbfdmLxBqdu0fu76fcMCtVOyxHNVbKSMgkQXM7t4m1M1FHRzrN55PkrDZapN2k 0OhHEsAF6ZjeKwRurZLa0Y24EjVMPC4JkID3CeAKmVsgl3eyFqbhEhqY9iMW3GltMUR42EiABEiA BGJEwO1p5xcqAZmx6+W1kVKjqT2Rsb10Na8JSbXGclpLua2npM8TTBsD3xw+kL78bJLK+bcWAugp DGIUH0yQQj3FCzwKdpAESIAESCAYBMytDY+SnYjl9V11FC4Y3fNqLwx2JMgdaWLFYTmpuWQngSsV rQFBWnufFXIU6Jm09rAiiWWY8NDQHIctWofz13527JEZm+Td8RoOEtrhphoHPl1ObyX39JURWtOe oPw1rLSWBEgg4QT+O9W+ooZl4KqEm1N+AyZukFYLZXKmrNgufx2iky7C8vcR5d8hP0kCJEACJFAm Au7ZCtZPYTKOwmo1WxWRx1QOPNx4JL03lJu6S4M5Mi1L1uUGPOxsyOD29FB/Xc7bTGTwM1VqNJN2 i63pXploc2MSIAESIAESSBiB/fJvhNx1ghOep+N2j8xYtpgSML5E60U6PRveVEhu7KbS59gOSwBL MG7v5XJHwwIppKGrVZl7NLf7ethdBWwDnD/QJrqis0qJwRkVibSHBUIBrRbJ6h1Wj0EpmUEFbNzZ HRIggfgQQGZddTsREUXuzE0nPoeO7lHwwNq4fCc0F5TvUTeLsLqxdstQEXjeHaJLm3sjARIggYMR cF9vUUcJc5zha+StsXJWa5cbb6LuuFBrcRUsXEU9kW+myfytB9ur7993sGRsk9dHFdd1hx5mvVnW cmbfd5UdIAESIAESCDoBc1PD5NEK0IWVcByyZNliSsBgV0LuJjQaEtRRZTsEAay+HLBKUD3HiSRD QAaSMnBQ0Rzf7BB7COSf0P01O0QlXsIhN0/N8EL/Q/27a7ooaKYlLaJAjjs7RQIkEE8C5vrZdIGl do5EO6wk8mlDiRP14MC+U1gvTI2PBupxdsuFPu0ZzSYBEiABfxPYnZ+/bVNm7pbMQfMyn+6aeVLD TdVScyuHC4tcsXXsHUnvyIf/aKKsWLcpM7gNNIDizLSsKml7KoX3WxxSVPWuMWsLN2zMCm7XvdKz devWZWRkFBQwL9Df1xZaTwIkkFgCqAyOQpMq9ospWEhVcsnZnViLkuLoyJe7o7cOIGvfCXN5thIJ LM6WP/d1xZPDclF7GbbG2jY5I8lQsG80X0k7qgTFopF2eKH1Z8vC7BJZ8k0SIAESIIEyE8CNBs83 sYZIuUlhpdDlUy3ZrDwlC1wkeuPE3sNyblu/9qvMI8oPkAAJkICXCOTk5Nx3331n6HbWmWecd9bp 55573okXXV/ligcqPfpTpS/mFr9uY/IYktNOPfWM0083nwrkz7POPP28c86pdtndlf7ZK0IAff9u 7WnnXx7ILnuqUyeffHKlSpXatGnjpe8KbSEBEiABPxHALNIUTkQVMOtGFpbrujLkHvNBBPnl2yO1 UxE4nbcl5gf11wEQ0Oi41BVPDqsaOs8NtTqRhJF2iBjgWdhvs3SCIsLsJk4CtzOskv8vaK9wmZaE cPx1btNaEiAB3xFoPN9eYxWWb6f5znzL4N+1s3vhRNr1QwTk7U/NUtvw9uHXoaXdJEACPiSwf//+ TZs21apVC4HNI4888ugDW9Ujj65c6ejTzjv6se+O/nld1VC+SnpvJEe8P/roKpUO3DyY7xxZ+eir Hqj22xbT96P+3uboqkcEs6fe6BXORqf99NNPPvxi0WQSIAES8AoBM7fatEv+2COS5f6H7rJhp1cs DLAd/VZq5jpkemVnSyAlwP0tfddQGAiFUCPJ22EldD80WdPaUSi2S4Y8MUgVDEJUxNHVwQvIOX42 SSZmlh4ttyQBEiABEigPAeh0mcWA0OyC4Lkf25ODbE/PHW9Pl2eGqN4w2O7HMaXNJEAC/iUwefLk c845B7HNmjVr9uzZE79OPLBNmjRxwoRJY0dNHDVs4MQ57WdlfzVVGo1dPWXShAO3Deo7k8aPHTN2 bJMZO/7UR8ZMmTEpqP1MdL+mTZv26aefOsF2vGC83b+XF1pOAiTgNQLXd7VDeWGp3Va25HvNwEDZ Yya2v83WUWXMfNPk0QGB6mD5OrNvv7RaqOuimmiAfhjxt+GC90EsqaIB6CxEDFBd9wSE2Y3ikx0h qZKuZAGa21q7SYWlfOcVP0UCJEACFSSwIdd+ChxSQnx+bKG5+qGtfStR66TCqiadf0Xp/TgKtJkE SIAEQGDUqFEmsInM9hkzZuAdpLsfloyzifPisB8J2AboeNL2PaZDidOvd+/elStXNg+ArrnmGrz4 8ccfY3pQ7pwESIAEkoGAunOJbN8j90Ar29Zyh8jM5I3J0PuE9RHYIRLiLlnbZH7yuhCgMWuzPDhA KqVEnvvc1F1GrE3YACXqwDgrkMz/7zFaa9ehoQMjtVrJayNl4GrLNPXNPbxvnqh+8LgkQAIkEBAC 5kr7tSlRjatxqnw+2X+XX5REQa29iBCu7sh749UY8VYSkDOV3SABEvADgWbNmh111FGIZ15//fUr V66EyaUJtvuhZ7TRrwTS0tKqVKmCc/LWW2/dtWvXXXfdhdeffPKJX/tDu0mABEjASwScqZYK/5qQ e1iOaSqj13vJyiDakrdXqjbSEWZIlDdK3mUFzReoLDu3WMo3U63xdk7OII5/8T71Wq5UYiobFEjv xwv9+pgm0nC2QFsGqf6mJRWW4pj4OwmQAAnEnQCuwKrkqF54dWQjmeLDnIRiomRn25XQ7BtL3Jny gCRAAiSQZAQ+/vhjRDLRLrnkkp07lYQrg+1Jdgp4q7v79u37z3/+Y87JOnXqGOP+9Kc/4Z0333zT W7bSGhIgARLwMwFE8AoK5YVhOuSuZ5QIgbZZFAnx+blzXrTdhEyxjgAlU1VYNSTnt5Mde7xoauxs mrtFHuyv09rt2DLS2ofrtPYkCSkjoR1xG9TgQ6S9UoMiDx1ObiGPDJT2S2KHn3smARIgARI4PAFz P1q6TY5raoXcIeQ+Z/PhP+iRLYz9EeXAdPWMu+1ij1hHM0iABEgg+ATy8vLef/99hDGRSPzMM8+Y DjPYHvyB93AP8/PzkcRugu0vvPCCY6mJt9etW9d5hy9IgARIgASiQgCTsgbQFTe5tdD2bCSfTORa 46igLWEnZgr8+aQIcAiGODnMJXwgQG+hm7/Okmp41uBK5P5qiiDnP3na4DWCMnxIXzc5k05COx7B IAK/MU+JDplmTpXkIcOekgAJkICnCJiLcOelcgRWpemVRzVbyZJsT9l4GGPeHR9Zw3hhe7Ux7yyH QcY/kwAJkEA0COTm5t5yyy0msPnuu++aXTLYHg203Ec5CSDY/tBDD5lzEssu3Ock4+3lZMqPkQAJ kMDhCJjJF0p5VreTuCD4+fpI2bTrcJ/k3ytA4A/d7VlwSMl3B7vhHMvIkacHu9La0+XyTjImOfSL CvcLkiRbLpQLO2g1XdfjhmObCs4EPPBiIwESIAES8BoB4yD9a7S9DDAk57WTRf4JuXdbFqn6Ots/ yfleOw1oDwmQAAmUicDatWvvuOMOBDarVav2yy+/4LOMtJcJIDeOOoEtW7Y88cQTOCdRsffbb78t dk4y3h514NwhCZAACRQjMCVTIGdhJdyG5IL2KkjIFnUCZv6+NV/ObWslOVdtHHDUzRbISTi17EoB SO3+frrs0mnthkbUIXtnh+PWy1/6yknN7XCNraKDx1sfTFDjvrvQMjbwKLwzKLSEBEiABMpE4MMJ 9sqssJzYXDouLdOnE7YxYuxQnsfNF7cbNN5lEjYSPDAJkEDSEJgzZ84555xjsogHDRqEfjPYnjSD 79GOZmZmXnnlleac7NGjx4HnJOPtHh05mkUCJBAUAmYWNi0rEgRWehdp0n+lFNoCF0Hpq1f60TnD rhkallt6Sn4QZVUy8+SvQ22VcpxRYbm4g4zVae0Bnvija1CGGbRaIE1fKcV+0KDlCI5qrJ5k/Wdy ZLgDzMEr3zTaQQIkQAIVIICrNJYpPTHI1gHDvayhfDJJ1uV6PYK9eocq+YpUihXbvW5qBcaHHyUB EiABrxCYPXv28ccfj8DmqaeeOmXKFJjFYLtXxiZZ7Vi3bt0FF1yAc7JGjRq9e/cu8ZxkvD1Zzw72 mwRIIH4ETNwPMjIqQGpn4VZOFwiMs8WIwEdImUu1aqf+MD1GB0nYbqGgUqtVJNqMLLtvpkr2bmVP UIPM6BcK6r04TM5GLVTk8+OfrR6D7r8yQiZnys4Ca0SCCiFhJxwPTAIkQAIxI4CQO7S/sB7NWQZ4 Skt1VV/sYXkZ3G5qt5MfA+ddxGyQuWMSIAESKCcBxNVbtWp1zDHHILCJ8GZGRgZ2xGB7OWnyY1Ei MGnSpNNPPx3n5EknnTR16tSDnZOMt0eJN3dDAiRAAqUi8O/RukCYCRWmyY3dZG1uqT7IjUpPwIRb r+1qh2QbyMxNpf+0p7fctlvqjtGysebBTbrSk0G+N5pPg8ww2xF+KRH9jj0yY5Pc37+4QjsK7dVs Ka+Psh40+JdAib3mmyRAAklCIC8v77PPPnvkkUceTeL21OOP3vhGvUr1tlUK73fSEmq/3e4xrzJ5 /NFHan067NnHHvCqgQe167HHHnv88cdHjBiRJN8vdpMESMDXBBBX79ixI6KaaBDu2LVLVUFjsN3X YxoA4yFtVKVKFZyTCLkvXaqE8A52TjLeHoDhZhdIgAR8QQBxRRMRHbBKTm1ph4JDUrOVpMxRS6rZ oksA6dBHN9H5cmE5v73vy9Ti5Om5XH7fUeftm+c1IXlrrGzJV9jMqRVdgPHZ2/yt8syQkg+1aod8 MlGu6mwntNtrQ5DZ/vAARWOzXXrYv90vued8lwRIIDkI7Nmz595779WBBP6oVOmU2pUe+6VSWoEK uYcKK1Wr4WkoVap62rxDGlenTp3k+IaxlyRAAj4mUFBQ8Pbbb5uL2fPPP5+Tk4POHCyw6eN+0nRf EWjbtu1RRx2F0/K6665bsWLFoc9Jxtt9NbY0lgRIICAEkLL7u3b20mk1r5RXR8geu7xjQDrpgW78 b6ZOBUd0Ok0+nugBg8plggkmfz3VFWkPy/HNZMgatTtfh5pR1VTJwjSQDOVBq4bu4IsA8d6XR2iF dvNkAd+RsECC6Zgm8mB/Wc8lIQYWf5IACfiZwN69e2+66SYTSXjxxRc/+OCD95O+ffDuO/967/Pz U1df98ukT959K+l5RA0Azq7XX3/dicHjxPPzV4e2kwAJJAWB5557DletypUrv/zyy+gwI+1JMere 7mSXLl3MnRSrLbA+EefkoU9Lxtu9PZ60jgRIIIAETIB01175bJJLWyZVLmov/VcFsL+J6pLh/Bw0 803MNkU6qvVe/msTNsj10MYxcvTpKuyMWDRyv9F8HWwftU5Oaq5HJyS3qIrukrVL0ubKXb11Qnua /UAKwxeWW3uqP6FEnWm+7rjVB/5HAiSQxASwKP7+++/HrK169erIlUpiEux6PAhkZmZeddVVJnKF n4y3xwM6j0ECJFBeAhs3bjSByiOOOOLHH38s7274ORKIGoF9+/Z9+eWXJtj+9NNPm9UWh9074+2H RcQNSIAESCAWBEzAcOpGOaGZpXmiwsJpSkCDLVoEABkR2pNbWCF3yPggcdpfrf5sW61dh52xyr7N YtUDvwecx653petroRhUx8OjBPUtwD/zQv+8rqvM3mwNmt977a9zj9aSAAnEjsC1115rZm3p6ek4 yqHzo2JnBvecJARq166N8+344483We433HBDknSc3SQBEvAdgdzc3Jo1a+KShWA7KqXCft4ifTeI wTP4zTffNG4bgu1Yn1jKc5Lx9uCdCewRCZCAXwiY4OGGnYIc7CMb2dm8qXJlZ+m30i+d8IGdXTJ0 vjSiuCH560Gkwj3YjQVb5bGBdrBdp7Xf20+WbPOgpWU2qdsyqdrYPuERVDfRdSS0m0i77uzlnZQE 0Lwt1s4ZaS8zZX6ABEjAkwR27Nhx3333YdZ27LHHtm7dGjaWctbmyd7QKK8TWLVq1cUXX4zz7ZRT Thk1alSzZs3w+tJLL/W63bSPBEggKQlMnDixVq1auEzhZ48eavkrb5FJeSJ4qNN4APTss8/inESN 1Pfee69MljHeXiZc3JgESIAEokvARBH37Zd2i3VM2AQew1KlkTw7RHZT0T1KuN8fb4fcU6X5gijt NJa76b9SamDhg0n2xs80aTjHOp7fI8/NFthjYSLtxX6G5NJOMni1OvlNT/HT712O5ZnCfZMACfiM wP+zdx6AURRfGI+oFEUsKPhXUaQjomLFAiJSBBQbduyKIkUFO/auCAISSkhC77333nvvhIQSSEgj vfP+39yQ5XK5hJBc7vZuv3UNc7OzM2++2bvd/e3bNzqsB27chg8fDtNBEggTvGwIvcfcrKysmjVr 4mArX778jh07YLi/vz8+Vq9eHXP1ek8/aCkVoAKWUGDevHn4gcJy1VVX7dmzB33m+dESA2/iTuII vOuuu3BMYh6Bv//+G1FlLuiwJG838djSNCpABayigMaJIfECB+ZzkTT6yS0jlKN7Bql78Q4EyBuX JjVGnXWfvnTgudk5i1dxiex9KkXU04E+Oc7e/QUBVdZFqLZ8ADsP2pXTLwfMjo/95faxsjL8rKo+ 0NkSOT5YKRWgAl6rAKJ9Nm/eHHdtiNkeHByMfpAkeO1gmt1wHFrh4eF16tTB8XbllVfOnj1bW6x5 e7Vq1dLS0szeB9pHBaiAlRQICgrC7xUWPJUODQ21UtfZV5MqcPToUR39Dy8k9u7duwhWkrcXQTTu QgWoABVwuQKaLmZmy5ywHMdmEEg4ug+QJtPkZJLLG7RchcsRMLzv2ccZT88xafd3x0qV4eeINOKZ 91grmFoXiw/w589X27qWEzRGPVqyX/2l6kiTjgvNogJUgAoUUwF4Gt95550gCXCRGj9+PGoDEcVS zGq5OxVwqgBwer169XC8XXHFFdu357wgl+PfTt7uVDRmUgEq4CkFjODYjzzySFycip7J86OnxoLt agUQje3aa6/FabRMmTJ480JnXuhhSd7Ow4kKUAEqYB4F9J13RLK0mCGlEeBak8n+KtF3u5xMNo+l XmaJFvZsVBkw3n9l/AFzdQHhUwIQaKVfzqD7y43DZfheZaQP8JisbPllY07EJHvG7pD+T5YeN9e4 0BoqQAWoQPEVAD1o3Lgx7trKli0bGBiICi/0lq34NrAG6ygQHR1twPbp06fbH2/0b7fOYcCeUgGv UAAPBzt37ozzIxa8khMSErJ3714Ek+FCBTyowMKFCxHUCMckpj5ZsGABvkpFu2wjb/eKXyEaSQWo gNUUQET3hUelUvA5+opoGwgvAyTLpWgKwIkwIV1FLNERe8oOlr2xRavJ9XtFJsvDU2xjrZ+w+MtT syXch15qeG2hXe8cGLv9R39pN09w8HOhAlSACviMAgiUfc899+CurXTp0lOmTEG/cNdWtBs3n9GE HSk5BTAhrw42C8/2TZs2OTRE3u4gCD9SASrgWQV69uypULttqVChAiAnQmBxoQIeVAAH4SWXXIJD 8sYbbwTzxxekyNds5O2e/Xlh61SAClABpwqcdWk+I68vkvJ63kxgScDYPvLIFNkdI3AY9oFl69at mO+7lbuW1q2euPuN7/38z9iQ+5nreyxt1bq1uxrPt53mbdtd9Pvxs+8yYJR7J1btNPyFJ1vku4OX bWh9c4dBfj8f8fvlsN9Ph/x+2O/3/V6/b3f5fbPtkq82lPt8eYXu8yt+OuP6rhNu6TyiRseA29/+ o2XrJ4vTRe1Eunz5ch/4grALVIAKeLsC8fHx999/P+7acO+G4LTe3h3ab3IFkpKSNGxHsNkZM2bA WgdKQN5u8hGkeVTAagp8+OGHOEXieTQcia/hQgVMoABeRcQxidPoqVOnivl9JG8vpoDcnQpQASpQ QgoYUURA19svFITyPhvsur/AN/v5eXI4voRadlO1eKden85wRnPr8vSffgE2MXvG+F16hVubdtrY xWX9uq1SgztQ/L7b7XdTA6elvDizfCW/yyv6la3gd2k5v1KXuqcjAwcOdNNxzGaoABWgAvkokJKS 0rBhQ/zoYYLUadOmoZQD/MxnP2ZTgaIoEBMTc++99+J4K1++/IoVK5xWQd7uVBZmUgEq4CkFdOT2 1q1bY27KfVyogKcVOHz4sHFM4ktRzMs28nZP/bCwXSpABahAYRQAddfgffphqRhkR9395eKBMvaA mkzTIPOFqdAkZUAeMGcc7gpvv/3277777hu3LT16fPH1t5UGxN8cmNyxxx/ffPO121rOr6Ee33zz /o99ywVIvf6Hv/y8Oz5yuVAFevTo8emnn1533XUGzB85knOvmuS7TjOogEUVgKdx/fr19Y/S0KFD LaoCu+0uBTAh73333YfjrVy5crNmzUKzTikBebu7BoTtUAEqUCgFNNvE+86FKs1CVKDkFfj2229x Mm3ZsmXxmyJvL76GrIEKUAEq4B4FkjPkvx1ynX1Q975y21jpuVWSMtxjgmta+f333zWCaN68+enT p11T6YXUsl/Ne2+uZX3kGZ8IEeQZVRMTE+EYow8q+JEiERwcnJ1NRT0zHGyVClABxNB+5JFH8FuE GNoOE1ZSHCrgcgXwzrvxJsWcOXNQv1PYjnzydpeLzwqpABUojgLt27fHuZK8vTgacl/XKkDe7lo9 WRsVoAJUwCsU0H7sgIhPz5FLEHtEz61pi+t+VaAsOqaCupvc1x03gP369dNcFA98vUJ2GmlyBcC1 tFMfjiu4tet5CYEU0tLS8gMOJu8RzaMCVMCrFcCPT82aNfWZbvTo0V7dFxrvFQo8/PDDON4QAHne vHkwuIBzH3m7VwwojaQC1lHg6aefxs8Xebt1Rtz8PSVvN/8Y0UIqQAWoQEkoYOD0JcflydlSygjq bptK9b6JMmS3ijBjziUjI+OLL77QCOKNN97Au8+4JSzgrtCcvaBVplLg8OHDei5CvEE/adIk2IYI RTjG/v77b0xTSBd3Uw0WjaECVlAgLi6uUaNG+BW68sorGbPdCiPu2T7Cs13DdpwEJ06cCGMKvqwi b/fseLF1KkAFHBR48sknydsdNOFHzypA3u5Z/dk6FaACVMAkCmyKlGojczm6w+kdYd6XHjeJgefM wA1gly5dNGzHTPR6Q8F3hed2ZooKOFMgMjLy5ptv1gfVunXrUASAXfP2X3/9FTPHkbc7k415VIAK lJQCeKxcrVo1/aOknwDyNFdSWrNemwI6Nuwll1yyePHiwkhC3l4YlViGClABtyngwNsRiu3QoUOu an3hwoWfffZZAbXNnDkTcLWAAtxkQQXI2y046OwyFaACVMBBAcPXfeQ+aTxVTZ/qp93dbb7uTabK pEOCkO9mWBDx4/3339cI4vPPP4dJRBBmGBevtmHHjh06YsO11167YsUKfVAZvP2XX36Jjo7GOxRe 3UcaTwWogBcpEBUVpWO2w7N96tSpsJxnOi8aPq8zFee4xx57DFdWZcqUGTFiRCGPN/J2rxtoGkwF fFsBB96OaZh27tzpqi6PHz/+2WefLaA2zGb+6quvFlCAmyyoAHm7BQedXaYCVIAKFKBAZrYsD5db RuTydS81UE2uOmyvZJ0pYNcS35Sent6qVSsN2wcOHFji7bEBCygA2F6xYkUcVGXLlkVIGfRYcy2D t8O/HSyC/u0WOBbYRSpgCgVSU1MNz/ZZs2bBJsJ2UwyM7xqhYfvFF1+8dOnSwveSvL3wWrEkFaAC blDAgbdjkvFdu3YhMtvWrVv1aRR/cS+J18e0MfClwQkXaeSnpKTgb1JS0v79+3Vhw+CwsDCkJ0yY 8PzzzxuZ9gldYNiwYZiw1chHhVu2bOHtgyGINRPk7dYcd/aaClABKpCfAoavu/9OaTDB0de96kgZ sFNC4vPbuwTzwTyfeuopcNFLL720d+/eaMnhcqgE22bVPqrAhg0brr76ahxUt9xyCy6w7Q8q8nYf HXN2iwqYWgHE0NYTSQAU0LPd1EPlE8adPn36iSeewEkQnu2BgYHoU+GvrMjbfeIQYCeogO8okJe3 t2vXrkqVKniJtUKFChs3bsTvW/PmzX/66SfdZ4SIwUtkSOMWAD+DmBGsRo0alSpVwi6460Q+Clxz zTXYvXbt2u+9917emVhnz56NGlCgTp062P3NN9/EXriD+P3331HPHXfcccMNN4DDI5OLNRUgb7fm uLPXVIAKUIECFDCQe2KGzA6TKsNz+bojrvtVgdJunhxNKKAOF2+Cc0KDBg1wLYRlzpw5Lq6d1VlS AVwkly9fHkcUIrcjfjs0sOcM5O2WPCjYaSrgSQXgWadjWyGG9vz582GK/Y+SJy1j276oAJw8mzVr hpNgqVKlgJUutIvk7ReqGMtTASpQogo48Hb8uCH0KPzM4cfevXt3PMtG64gJ89dff2kzli1bBn8b pBHmHYV79uyZnJyclpaGU3BAQADywdJxs4AasNx66615w8XgPmLJkiVwkseON91009tvv4298OwS P6pHjhxBVWvWrMGrQ9u2bUM+FwsqQN5uwUFnl6kAFaAChVTAAO+Be+Su8XLZYDvw3l/8+sp7S2TL KUnJLKg+BKgp5gIWWr9+fVwI4apm4sSJqI0IopiScndcY1900UU4qOrVq4enOXkPKvJ2HiRUgAq4 UwF4tt955534USpXrhw9292pvDXbAj565plncLyVLl1ak6ULvbIib7fmkcNeUwHTKuDA2xG/HfFk 9C/bwYMHwcBheX68HTcFe/bs0YXh4vX111+vXLmycuXK8fHxOnPIkCHwlrfvO6aWhic8SLsu0Ldv 39dffx0F2rRp88ADD8BnfvPmzTDg8ssvNzzq7Xdn2goKkLdbYZTZRypABahAkRUwkHtapmyMlDcW 2ZA75lHFhKr421/KDJYG42XwbsnIh6v/uVmmhhS5fcEFEjwKNGxft24dKtJXNUWvkXtaWwEcP2AL iEqEg+rBBx90CtuhEHm7tQ8T9p4KuFUB3LDfdttt+FHCAmLw999/4210LlSghBTAvCT33XcfDjYg ppkzZxbtWCdvL5pu3IsKUIESUsCBtyOGDHA32sKVP2Jn4ecOaXvejvfI4JSOTPi3wws9JOTs/Spo OXj7yJEjcQeakHD2de7Jkyc7xG+HH3vdunXx7FJ3B+V1/PZHH330rrvu+uCDDxCCBguCzIwdO1aX 4V+rKUDebrURZ3+pABWgAsVUIDxR2sySq4PkIiB3vQK895PSg6TnVglLkFQ7d/f0LHlkisLywXuk CI7ux44d0+G1ET1v/fr1sJywvZjDx92nTZtmY1oKtuNw0kteWcjb82rCHCpABUpIAQB2/bvEv1TA bQrguTM8NnFI4zxYhAObvL0IonEXKkAFSk4BB94Oh3YEe9HNAa0jlDrSL7744g8//KAzMR3YjTfe iHRe3v7ll19itlPUEB4ergt/9913L7zwAtL4wcQ9AhJwA8OvqI70jo+fffYZQrgjASz/0EMPIaGX FStW4P21nE/811oKkLdba7zZWypABahA8RQw7slCTkvf7VJtpF2EGRt1Lx8gTaapOVUR+x1LeJIg R3nC+8trCyXJlllIE/AeX8WKFXHjidh6O3fuxF5FuyUsZHMs5vMKIH7jzz//rFEGrpkTExMLOKjI 233+eGAHqYB5FPjtt9/w04Qny61atWrBhQqUpAI4xjCRH463l19+uThfAfL24qjHfakAFXC5Ag68 HWHYEY8UUV/gsoX5THGeRYv4C5/2tWvXTpgwAeFi4MGOzLy8HfAc+XBTf//99/Gq9aRJk3CC1vHb 4ayOiDHaeASl7Ny5M3YfN24cgr2/8847yMd0GPiBHT9+PNzG0Bxmo9azROld+NdSCpC3W2q42Vkq QAWogKsUMMA70Pp1wcq5/ayve06cmYsHyG+bZMQ+5fpuuME3mSqn0wtlAmLoaS4KbwRcrmAfwvZC CcdC+SswYMAAfVDhZdLzHlHk7fkLyS1UgAq4WAGEDcGvU9OmTV1cL6ujAs4UQBRiHG8ff/yxs42F zSNvL6xSLEcFqIBbFHDg7Qj2AtyN8OkA7/rKH1YgPgwgOfzSMX3qqFGjEDoGmaGhoWDvYWFh2kw8 8Pz+++91/s0334xQM4jTDjf1t956C5n//PPPddddhwTuTBGkHTeqKFC1atUFCxZ07NhR1wDYXrZs WeTXqlXrwIEDurDexL+WUoC83VLDzc5SASpABUpIgWXHpftquWm4o7u73385sF1z+P+kxihZevw8 VmBSVB1eG/FFcQmE0oTt55GMmwtUIC0trWvXrhq2d+rUKSPj/C9akLcXqCg3UgEq4EoFfvnlF/xA NWnSxJWVsi4qkI8Czz33HHl7PtowmwpQAW9VwJ632985pqam6i4Zmenp59y/jEyHMkZ+VFSUoYiR iYSRdiig8/FS7cmTJx3qNOphwiIKkLdbZKDZTSpABahAiSpw1t39jAzZLZWH2kK722LInHN6N4K9 D5BLBsqKs8HwnBi1aNEizUUxeRycEIyLGSdFmUUFCqdAt27d9EH16aefYo/CHFTk7YWTlqWoABVw gQJ4dZ283QU6sorCKUDeXjidWIoKUAFvUsCet3uT3bTVdxUgb/fdsWXPqAAVoAIeU2DhMflomVwV aOfubsfbVTj3fvLd+lwzq8JWEM7+/ftrLtqyZcuYmBiPdYAN+4oCeGSDcIv6oOrRowe6VRjYjmLk 7b5yCLAfVMALFMB7N+TtXjBOvmIiebuvjCT7QQWowDkFyNvPacGUORQgbzfHONAKKkAFqICvKZCS KfXG5sPbdWwZf2k1M1ev+/Tpo7koJvNCABBsKyQazVULP1ABOwVat26tDyoEb7fLPn+SvP38GrEE FaACLlLgo48+Im93kZas5vwKkLefXyOWoAJUwNsUIG/3thHzfXvJ231/jNlDKkAFqIAnFNgXK5cH 2AVvt/dvN9L95PaxsidWUlKSv/nmG81Fb7zxxqVLl65cuRIT03ChAsVRAMGQcVBhLoCePXviS3BB j2/I2z3xs8E2qYBFFXA/b8ckcfhttKjclu82ebvlDwEKQAV8UAHydh8cVC/vEnm7lw8gzacCVIAK mFSBgTsl12SpBmN3SPjLFcHS7psBGrbjLyaRx5TuZbhQgeIpULp0aQ3bZ8+eXYQvCXl7EUTjLlSA ChRNATfz9i1btuD3dc+ePUWzlnt5uwLk7d4+grSfClCBvAqQt+fVhDmeVYC83bP6s3UqQAWogK8q 8O4SuXeiPDhZGk2RJtOk2QxpOVPazJJ2c+X1RdJhqXyyUr5eKz9vlL675bZOg/1Klb7iiituueWW m7lQAVcooHn7V199ha/YBXm2668kebuv/jSxX1TAhAo48Hb8/mzevHngwIHz58+PjIzEaz5ZWVkw e+/evUOGDPn111/nzp2bnJyMnJSUlMmTJxvTneDtMOwIkD5jxozMzEzd040bN65du9b4GUxMTOzd u3e5cuWGDRuGAsuXLw8LC1u2bNnEiRN1ef71eQXI231+iNlBKmBBBcjbLTjoJu8yebvJB4jmUQEq QAW8VIGkDEEI97QsycyW7DPn6cRzzzwNV+T33nvv9OnTEVyoQLEViI6ObtCgAQ6qCw3bbhyp5O2G FExQASpQ0go48Hag72uuuaZ79+4ffvhh3bp169evD7q+c+fOChUqYN7n4ODg2267rUOHDrDq+PHj +KFbs2aNthBRYt5+++1Vq1Yh03Bfr1y58s8//2x0ISoqqmvXrniP7Msvv0Rms2bNEHoLTfTt29co w4RvK0De7tvjy95RAWsqQN5uzXE3c6/J2808OrSNClABKuDzCmiPu6eeegpwAATA5/vLDrpNgfvv vx8Hlb+/f9FaJG8vmm7ciwpQgSIo4MDbAcODgoJ0Pa+99trtt98O//YXX3zROEvGx8fj9w1u7eHh 4RdddBHc13Xhhx566J133kEauH748OFIIHQMSh44cEAX0H83bNhw5ZVXJiQkwAe+TZs2V199tc43 fODtCzPtewqQt/vemLJHVIAKkLfzGDCbAuTtZhsR2kMFqAAVsJQCoJrp6enNmzcnb7fUuLuhs+Tt bhCZTVABKuASBex5+759+3BChDe7rnndunU1atRAGs7tiPqCBKg4wsggc9q0aYg245S349UenFhR +Ouvv27cuLGuyvi7evVq8Ha8BwTeDv923A/qao0CTPi2AuTtvj2+7B0VsKYC5O3WHHcz95q83cyj Q9uoABWgAj6vAG72EUPm0UcfJW/3+bF2cwfJ290sOJujAlSgyArY8/atW7eWKlUqNDRU14YQ7jVr 1kQac1Js2rRJZyYlJd144406urs9b69Vq9a7776LMqdOnUJ5nGHvvvtuTen1jvqvPW9v2rTpP//8 Y7+VaZ9XgLzd54eYHaQCFlSAvN2Cg27yLpO3m3yAaB4VoAJUwLcVgHM7sECjRo3I2317oN3fO/J2 92vOFqkAFSiaAva8HadF8Hb4ruvoLk8//TSCqyONE+WPP/6o60fYdmB2zHyKBYUxOyryMfHFtdde q3l7RkYGYrn/9ttvderUwSZdVWpqKt4pw0d73v7444+Tt2tVrfOXvN06Y82eUgHrKEDebp2x9pae krd7y0jRTipABaiATyqQlpaG1+EfeeQR8nafHF8Pdoq83YPis2kqQAUuSAF73o4df/311+uuuw4h 3N94440qVarcddddmC8Vbuo4UY4YMWLlypX16tXDDOO6iVtvvRXTQ48fPx6R2BElRsdvx6ZevXqh /BdffKFhO3LwUc+sSt6upbPsX/J2yw49O04FfFgB8nYfHlwv7Rp5u5cOHM2mAlSACviGApq307/d N0bTVL0gbzfVcNAYKkAFClDAnrdrPD5z5swePXoMHTp09uzZmC8VrunYfc6cOR06dHjzzTf79+8P D3ZdEjHZ4Pf+ySefLFq0aPr06fPmzdMNITw7HNftZ0oFgT9x4gS2YpZVzCWNIPBwd580aZIRpqYA C7nJlxQgb/el0WRfqAAV0AqQt/NIMJsC5O1mGxHaQwWoABWwlAJ5/duzsrIAAQx/PDj16fffIQuo wtKlS6OiopDWBfAXFAKsAAkseaVDJvaKi4vTuxhlUO2CBQvCwsJ0DhpFjrEVLSI6bt7amONFCpC3 e9Fg0VQqYHEF7Hk7pMA7X4Dn+pQEuo6QMsjER52jtTLSeRMWF5PdP68C5O3nlYgFqAAV8DoFyNu9 bsh83mDydp8fYnaQClABKmBmBfLydrjn4fV57csHy/H+OyaPAwCH/94NN9zwzDPP3HHHHa+//joI Ocq0a9euRo0arVu3hvvfs88+69BTMHOQCryVD/95hKi95JJL4CiIMn/88cctt9wCgoHAti1atIAT IIA8GtqyZYuuYcCAAWjFoTZ+9C4FyNu9a7xoLRWwsgIOvL1nz55169bF+eupp55CMJkjR45YWRz2 3eUKkLe7XFJWSAWogMcVIG/3+BDQAAcFyNsdBOFHKkAFqAAVcKcCeXk7kDgi0yJfm1G2bNkdO3bE xsYCm69atQqZ2PTwww/DB37jxo2YMA7gHTQ+JCQEabiy2xuPN/ERzBZYPjMzc926dSDqeNF+8+bN mF0OLvHabb527doffPAB9sLt51dffaV3B41HjFz7qpj2OgXI271uyGgwFbCsAg68HS7rONPhWTPm RcX0qZDFcGK3rETsuAsVIG93oZisigpQAZMoQN5ukoGgGYYC5O2GFExQASpABaiA+xUoJG8HXX/i iSeqVq0aGBgI6m5PHlasWIHws/p0FhERYd8FzDTXvXt35KB8QkIC3OMRQ+b777+/5pprkIMFm374 4YeGDRsiEO7cuXMrVqyInJ07dwLIw59QF7CvkGkvUoC83YsGi6ZSAYsr4MDboYZxAjISFpeI3Xeh AuTtLhSTVVEBKmASBcjbTTIQNMNQgLzdkIIJKkAFqAAVcL8C5+XtcEoHAIdhiK+OqeJatWpVrly5 mjVrxsfH7927FwT+vvvug1863NGR78Dbcd2FyDC6U4mJiTfeeCN4OyabQ/AZo6d//vnnvffeCzOw b4UKFdauXfvhhx82bdrUKMCElypA3u6lA0ezqYAFFcjL2y0oArvsNgXI290mNRuiAlTAbQqQt7tN ajZUSAXI2wspFItRASpABahASSiQl7cvW7asevXqOn777t27NW9HJHYjwAsCyFx//fVjx479559/ tEc6DMPMpyipebuOMIPMrl27vvPOO9rsgwcPlilTBry9b9++iFEDd3edj9A0L7zwgo4tA5jftm1b BISHz7zeyr/eqwB5u/eOHS0vvAJ4TSf7jGRkSVqWpGZKSqYkZ0pShiRiTZd423o6TWKxpkpMqsSl CT4iPyFdFUvOULukZkl6lqokM1vV5mzq6cJbxJJFUYC8vSiqcZ+iKkDeXlTluB8VoALmVYC83bxj Y1XLyNutOvLsNxWgAlTAFArk5e0I7QJyPmjQILDx+vXrX3311YjfjvlMEQ0G85xibtOFCxdefvnl e/bsQWwZJDZs2ABE/+ijj2IvJNCrZs2a9e7dG+/gI/IM0Prff/89derUxx57DAUQvx0tArx369YN iH7IkCGI+r5y5Uqtxfr161HmtttuM4U0NKJ4CpC3F08/7u0BBQDMjyfJzhhZFyFLjsnMUBl3UIL3 yH875M/N8v16+Wy1dFwuby6SdvOk1Ux5dKrcO1HuGC+3j5N6Y+W2sVIX6xipM0Zqj5Fao6Wmba0x SqqPkmq2FYkatkxsRRmUxC7YEbujkvrjVG33TZQm06TNLHlxvry9WDqvkC/WyM8bpddWGbhLRuyT aYdlRbjsjpGTyQrUcym+AuTtxdeQNRReAfL2wmvFklSACniLAuTt3jJS1rGTvN06Y82eUgEqQAVM qEBe3g4j/f39q1SpUqdOnaVLl7Zp02b//v3IBCq/6aabrrjiisqVKyMIDHA6QsQgqDuCsWN6U8yy +vnnn2PyU+QjGkyvXr10zNv58+eDnyO/Z8+eqHP58uWoCpOrIhNTqYLho1rkoLAuf8899wwePBg5 XLxdAfJ2bx9Bb7QfnuHwEoffONzII1PkeKKExsvB07I3VnbFyKoTilQH7lHwvPsqeXOxtJ4l90+S aiOlwhDx+0/8eovfv+LXx7b2FT+99hM/rNiq1/7ip1d/8dPrAPFz7WrUrBsymtaW4K82DHbCWtjc X64OlJqj5MHJ0na2vLNE8fl+O2RqiGyMlD2xcui0HE1QcB4O9vCrhys+vOi52CtA3m6vBtMlrQB5 e0krzPqpABVwvwLk7e7XnC0WrAB5e8H6cCsVoAJUgAqUqAJ5ebvm3pmZmfbt6kxEfYmJicHcqfab jMgwyExPT7ffBHf3Pn366Jzjx4+XLl0acWmMArGxsTqtK8dfnUCmkTAKM+F1CpC3e92QeZHBwMUR ybI9WhYelZH7leM3CLPm541tPufwGK86UioNVSC9zCAbDzdgtYGv3UDOXcvh86vNgc+jX7qPusv+ UnawVAySKsOl9mhpMEEeniLNZ8hbi5XHPp4+QMP9cSoYjpUX8nYrj777+07e7n7N2SIVoAIlrQB5 e0krzPovVAHy9gtVjOWpABWgAlTAhQrk5e2uqhzMfPHixZdeeilmU0Ww9wcffLBjx46onCzdVQqb vB7ydpMPkAnNg3c6ApjD+xoO6ghyHp2qfNT3xcmMw/LPVvlouTw5W+4YJ1cG2vmfAykbbudF9jb3 l4sGyMUD5dJBUmawXBYglwdI+SGK1aOtqwLl6iDFq68NluuCFcOvPFSqjFBBYB6YJI9Pl2fmyGsL FL5+b4l8sEw6LZeuK6TbKvlitXy9Tr5bLz9ukF82yR+b5ffNKiwMKPc36+Tz1fLJKhUr5sNl8u4S FaPmtYXywnx5eo40nabC1CDUzE3DVVtoEe1WDJZrgpQlsAeGlQ+QcoOVtbAZlisHe3Q/PyCfN19r pcm8dpjvo2p+cJKKYPP3FpkVKmEJEpWiBgIR6TOyfTyqPHm7CX8QfNgk8nYfHlx2jQpYVgHydssO vWk7Tt5u2qGhYVSAClABKyhQcrxdq7d58+YBAwb89NNP06dPxzyqhO1WOKh0H8nbrTPWRespHKoR 7GXtSZkSIv475dv1ilc/N1cemyZ3jZeqI2xcHVgYsVO0nza4uvZIvyCwbAPR4Oc3DFME+/6J0myG agV4/OOVCob33CIBu2XUfmXG3COyPFzFYNkedTYMyxFbGBaQf4RhgcGeCsOCxxCYWRXo+5QtSE5I vOyMlvURsixc5oTJ5BDl5I/Q7n9tkR7rpMsKeWORtJol902SW0fKFQiVU0jFUMwg8DbNgfRvGaFC 7uBJB0bn100yer+sOaleLvCxhbzdxwbU5N0hbzf5ANE8KkAFiqAAeXsRROMuJaoAeXuJysvKqQAV oAJUoGAFSpq3G62TtBtSWCRB3m6RgXbezTPKHTorW/lFY0LP1CyJS5UVJ8R/h7y/VBpNkWuD7PzS wXhBevWa1xPbWQ7c0UsNVH7dl2indJtfOuqEWzhY+qerpO92Fap9W5TE5Ap/5dxY5MJar14Kth8D cShOFh2VwN3y7Tp5fZE8NFl5y8M9vvQgpSGUhKTncZLXA6QfefynfOwRKx6RfLackpRMNcp4KIDn EQVbYlqRydtNOzQ+aRh5u08OKztFBSyuAHm7xQ8AE3afvN2Eg0KTqAAVoALWUcBtvN06krKnWgHy dksdCTqg+tYo5W4dtEd+26QipTw/T3FdxFFXEdT1PKQ6/IsB2J2x9HNBUfxVyBT4V98zQZ6YKe0X qTrhkd5rmwTvlamHlXc3HNExE2hirokjnAjvpRDYSU8uPKuAvoPDhycJRm3eERmxT7n6f24Lgw/f +DvHqxA6BTnGA7/jjQMMKKZt7S83j5Am09RUrcoH/oB6RwDe+F60kLd70WD5gKnk7T4wiOwCFaAC DgqQtzsIwo8eV4C83eNDQAOoABWgAlZWgLzdyqNfon0nby9ReT1eeVyaLDuu3MiBWMHDyw6SUgOU j/RZN2mAdMNlvXCO69i9xigVt6T7KhmyW8V1iUxW/tJZZ9Rf7TgNdFwAPS5gk8fl8hYDtMJacPzF KGM2VUSef36uevCRL363H2vbMxQcBnCbR1ygHmtl1YmCRs0kypC3m2QgLGIGebtFBprdpAKWUoC8 3VLD7RWdJW/3imGikVSAClABX1WAvN1XR9bj/SJv9/gQFNMAoFfg1n2xCn1POCT9dqg4LQghUm+s lB2c46+O4Oo6rDqIa37O6v4KxcNZuvZoeXiKtJ0jby9Rs4X23ibjD8qKcDl0WlIynBtLhO5cF7fk OhX/aKJ6zoIHIt1Xywu29xfA4S/FhK15DwDk4EUG7QDfT2qNllcWqHcTZobKnhg1K66pFvJ2Uw2H zxtD3u7zQ8wOUgELKkDebsFBN3mXydtNPkA0jwpQASrg2wqQt/v2+Hqwd+TtHhS/yE1Hp6jQIogG A39mPdXmZQEqxDeCpTv6q+flqwZv95erAqXRVOm4XPrvULge02vGp0tShqKsiPLtFOTC5vzyi9wd 7uhCBfKODsLRIDJ/YobEpsrS4/LLJmk5Q8oH5MPeccDYVvi9lwuQqwPlmTkq9FBMqgttLHpV5O1F 1457XrgC5O0Xrhn3oAJUwOwKkLebfYSsZx95u/XGnD2mAlSACphIAfJ2Ew2Gb5lC3m7a8cTUlieS ZEe0YqTjDsgPG+TFeVJ/nAoA4tfbFo5bR1nPn6gjWgiIOoB8gwkqajfA6ccrlQP87DDZH6tiv3Cx jgJ5OTwCAU0/LF+vVdGBMIPtTcNth5bD4YSPeDMC70f8KzVHS+flMuGgbIqUUymeeexC3m6dI9YM PSVvN8Mo0AYqQAVcqwB5u2v1ZG3FV4C8vfgasgYqQAWoABUosgLk7UWWjjsWrAB5e8H6uHnrSSDQ UDXZKCYeRQCQykOlwhC5BNOYIuKHMXupAxE1/NWR8Jcqw1UwmW/XyaRDsjdWjiVKVKrybc5wFhgk L4N1c3/ZnEcUwLjnGvoz6qWGyBQJiZexB+TNxfK/YXm833HU5ayXB6gjE0GH+m2XqBS39oC83a1y W74x8nbLHwIUgAr4oALk7T44qF7eJfJ2Lx9Amk8FqAAV8G4FyNu9e/xMbD15u/sHB6gzIV2OJ8me WFkXISP2SZcV8vBkKQOuDsd1+BLDcR103R6kG2l/NdXpFUPkhmEq1PbdE6TNLOWiDEy6O8ZJV3Jh VSfbmUUFnCuAJzXBe+Sl+XLneLlxuO3gdHjQg484UHurApiqFU7vCBqfke28Nlflkre7SknWUxgF yNsLoxLLUAEq4F0KkLd713hZwVrydiuMMvtIBagAFTCtAuTtph0abzeMvN09I4hw6NujVRzsTsvl 0aly21jFMMsPsfkMGzOZOvBMzdhtTsVVRqigH1+ukeH7ZO1JhdbBNk+nOYkJQ8DungG1TitA6Hg2 tPmUDNylZtGFc7tydDceACGBjziGByiv+AcmqWkFQk6XlDzk7SWlLOt1pgB5uzNVmEcFqIB3K0De 7t3j54vWk7f74qiyT1SAClABr1GAvN1rhsrbDCVvd/mIIXILSDhCrx86LVNC5NNVcu8EG5Dsk+O4 7oArc7g6HNfLDZZrgpTvOmJlPz9Pem6RlSfU1KVcqIB5FFgRrh4bVR8lFYPkYj1Fr4HfNXvvoyYa GLRLjiSoGXhd+AyIvN08h4EVLPFV3o6vJFbMpIynaZgdOzVTUjIlOUNFHsO7V/jOnsaaJnG2NTZN TZeMNdrZqjfpvyiJXbAjdkclqAoVIlYVakb9aAVtoUWc0TB7iAt/FqxwKLKPVMCFCpC3u1BMVuUS BcjbXSIjK6ECVIAKUIGiKUDeXjTduNd5FSBvP69EhSkAyLAsXE1F+t4SeXy61Bsr1wbbYsLoKU11 6HWDSRoJf7ksQE1V+cYi+XOzTA2R1Sfl4GnFKxwWogkHQfjRIwo4HIeI9z7/qHy3Tu6blBPdPefh kQqI1E9NwIpoMx2WyqJjrsFr5O0eGXfLNup1vB2zbGMe5P1xsj5CFhyVyYdk+F7pv0OdX3qsk09W qi/j64uk3Tx5ara0minNZqiptBtNlYemqJdTcDLC5Np3jFPPy3AWw3tYdcdI7TEqdlmNUeoRW7WR Ug1/bWl8RKZe8YAYK0qiPHbE7vjio6p7Jsh9E1XND01WrTw2TbWI2UkQBu3pOfLCfGm/SN5dIh8t l89Wy/frlZ2YFSJwj4zeL1MPq58XPHHGyzX7YtVbNmD4nObbsl9GdtyFCpC3u1BMVuUSBcjbXSIj K6ECVIAKUIGiKUDeXjTduNd5FSBvP69E9gXAG+GeB289IHEEzRi6V95cpKYo9YPvuhEWxsDpRsIW dL30IBWL48pAqT9WOi6XUfslLN6+bpV24JmOm/mZCphJARyuxhGblC5/bZFbR6pHSKXyOr33UzP/ AqZh9l74uOa3wCF2j7NpCIzy5O2GFEy4QQGP83Z8v+CFDooO/3D4isNvHD7kJxJl9QkZc0D+3qLm /nh2rmLaiOZ0Mc44mP5DzwCiH/XirKRPTHj+pR/74g0UvRqnJ08lDEuMhDYSf7XZ+i86Yqy23uEp XqVgqT1aMXxwezyt/nil/LxRBu6USSGCt28A50+lKId8PAfXbvbwsVcO9llKSXrXu+GLwyZMrgB5 u8kHyILmkbdbcNDZZSpABaiAeRQgbzfPWPiYJeTthRlQ3LnjLh7xMbqulDazldefimKtsQaYAHBB XmThr4LDwFHwhXny3XoVd33ZcQmNP8cndbsGriyMGSxDBcypgP1hjOdQ4w7IRysUEMtF9vA1ATfz l4enyI8bZGe043cBXeu6Qq4KlB3R+faSvD1fabihBBRwN28/o7AwvNPxPgge5v66STqvkJcXSPMZ amrsqiPUt0N9p/B41wGqGyw975nIx3Lyg/OayduAvNIHa381y/PVQWqqFPjn3zVe/fK0nKkCteEp OSJiweEfjwhxWh93UOYekTW2iVEQCC4tswSOJFZJBcykAHm7mUaDtigFyNt5HFABKkAFqIAHFSBv 96D4vt00ebvD+IIc4o11uMDB1XZmqMIdeF9eudsZt/kO+AL5tpxSA5RbLzh8ixnK7XBzJLzVz9WN pD2TPLeBKSrguwpsPaWmWMV3B3MTqG+Q8d1B+j8VZQIPofBd01+NiGRFxlDsumDlhup0IW93Kgsz S0iBEuLtOOCNEw0A+7qT8u82eXGe3DLC5oVuwHN90jG+NQUk7L5c+K5h1ecjnJIww4Kxlhks1wap l1DwIBjw+YlZ8tJ8eXuxet+q2yrFn3/ZJP9slf47ZfAuNbs3YtEgrgsen00OkWmHZXaY4tJzwtQ6 K1StM7AeVpsQDA2TlYw/KCP3qR0H7VTR1VDVH5vlp42qZoSLQdCYtxarbj45Sx6brr7+CDtTfaT8 b6h6+QVe64adOgHj1Wrri+6U+hlx1aq1dfib42BfPkAFxgGcR4A4eM7j2ceio3IgTj0Nwe8VVrx0 kGW7VNCB6PWAltBByGqpgMsVIG93uaSssJgKkLcXU0DuTgWoABWgAsVRgLy9OOpx3wIUIG+HOLh9 xq00YAIQAQB70+nq3XzlQIgVpB334M7u8RGh/f5J8uJ8+XKNije7MlwFzuVCBaiAVkBTdKQRf2ni IflgmdQZk5u645vVRwWF/mqNrD0pA3bmfNf6qzDRYQlOhCRvdyIKs0pMAdfy9uTUtL2xik732irv LZXGU20nGjhmwxkbf42nus5ON8Y5CD7b1w9TNBjRVBAIHSeg95dK99UKawPag3VPOCjzjqipQPCe CF42OZmsnh2DD3vFAjsR+yU6RY4lqqlM8BbMxkhZcULmH1FIH0HY8CAA3YTn/zfr1FzkeFLw5mL1 1ADh6HHi1gwfDxQqDxUwc7D6XI/5ChTWUFglwOE1e8egYGgMt/l/VT6CwuFdA0SnR4vQHzbggUIv m/h4MLH4mGw5JZjbIjaV0ea94qCzopHk7VYcdXP3mbzd3OND66gAFaACPq4AebuPD7Dnumdl3n48 UYbslmfmnnWugyvd2Rttw+fN4fbc5nmLW/vgPXIkQQVyxwonN4Mr6mF0+Oi5sWXLVMDzChhfByTw ZcE0jpg2MRcEw9dtwFnX1nP5/soFN+9C3p5XE+aUnAIu4e19//P3q92yfNdZFQKVF/f5TzQ55x3E Y4f795OzlXM4QDpmDg1PVNMf4O0PnHrsvayNb1nJSVGiNRfNfuyFFR7mWAHqtec5lIE+WCEU3NER H2ZblCw8qhz18ZgDSr62UHFyPLA4G5wnR+1cvL2ATOPywCGR81oBnPMxypcOEszYgphymEYW4YDw TOT3TTL2gGyIVBy+aP0t0SFg5ZZSgLzdUsPtFZ0lb/eKYaKRVIAKUAFfVYC83VdH1uP9sghvz8hS sdOXhysHObijPz5dMXY/+KppD3Yb8XO43ca0jwj6ihtzTMfWc6sKqIuJ6uwX3jLbq8E0FTivAsZX 5mii/LpRmkyzzYPg7Nunvoz95MHJatJD+4W83V4NpktageLwdjg5/7sdB/kZv8HiFyR+g/CY6Yzf AKx2L0z5S9nBKsBLw0nKQxtUFgFYEJUFTt0OR77RU+NLZOQw4VQBu3BuTrefzQSfRyQrvHeANwIQ QQ6hY3C6/3KtiiTz0gL1sOOxaWo6Wkzagmg/FYPUeOUaQfvRzJvWTB6u8oafPN5l6K0+IrDP7eMU iscFBq5J+m6XkftVfJ5l4co9/tBpNeVrfmG1CuoPt1GBQihA3l4IkVjErQqQt7tVbjZGBagAFaAC uRUgb8+tBz+5TAHf5u0nk1SkF8xYeuMwgW8hotcqB1r71f4G2V8uHSiNpsgPG1RY6agUiU9XPnJc qAAVcJUCoIUGMMSXC0FjPl6p3EHPebbn/kpiNgT7UBjk7a4aCNZTGAWKw9vxrFbFJAFjV2ecXJgd D3MRCgaTda46oU40p9PPBgbPa5LxZcm7iTklrQDEh888fqaSM1VMnrg09RAEGBy/WphcddIh6b1V Plkpz82VeyaoWScUh8dY2/+C5Ze2vwixS8M3HvGCcHjAHwAzvSJmHTg/psDovkoG7lIx5MPyTLle 0iKwfp9UgLzdJ4fVqztF3u7Vw0fjqQAVoALergB5u7ePoGnt9xnejltj+J/viVWo/L8d0m6e8h9T jmT5e7AjCive9ca0ce0Xqqiwu2JyjRIqJOvIpQg/UIGSUWD43vw5VV95feG5x17k7SUzAqzVuQLF 4e2IAKPp60Xwaf/9eOlvt740NwvPf+G6bL/wRGOvhvnTBV8VxKcpV3mEcMe8sX9tVg8TcSnSbIa6 zEC899qj5abhCqSfffSfH423zweNx1MbHUMevvF4Ke9fFQnnzvGKw3dZqSalxewYaHFdhLqGwXt8 eIKDZwQF22l+nWlhiSpA3l6i8rLyIihA3l4E0bgLFaACVIAKuEoB8nZXKcl6HBTwdt6Ol8FXhMv3 6+WRKXLzCHUfehHuVZVXoTOC56+cx+B2+PNGFVvmcLxEp6pAuPYL71Lt1WCaCrhBAUxuWJBfaH95 dcHZ7yl5uxuGg00YChSZt+M8gjm4KwXLhyvk4z5j/cpVvLVmnayMcyHJeKIxRPaNRMEDioh2mAcW 7vGYvhbu8fvjZFOkTAlREYc+WWXnIe/0usUevyNt5w+vLnX0OkBd28CFoNJQqTJCaoyWByYrRwK8 rAfyD298uOUXbKFvjAJ7UUgFyNsLKRSLuU0B8na3Sc2GqAAVoAJUIK8C5O15NWGOSxTwLt6O+RZB yOEfuDJc3Ugi5q3y+4LTF4Kj4iY0z21puQC5YZiaGa3tbOmzXXZGu0QzVkIFqIDLFMDbKOolFIcv r8PHvvLzBtUiebvLdGdFhVCgyLwddWMST70M8Pf38/OrVq0aLuQK0SaL+L4CBaBvAPm1J9XMqn9u lg+WSbPpypW99hgVPR7PJUHUlW+8pu4OP5IOH3FFBBSPSyP8umrH+P5SbaS0nCmdV6hw8XPDZGuU 7ItV/D8yWQXMQfAcLhZRgLzdIgPtRd0kb/eiwaKpVIAKUAHfU4C83ffG1CQ98grejjvBeUfkq7Xy 6DQ1h6ma6hR3kVi1H7v9baa/IAJqg/HqPesJB2XzKTmWKHAts18KuNW1L8Y0FaACblDg2/XKvfOB SXLjcCll/112SP8nn66RDzp+BHTZpEkTNxjGJqhAcXi7oZ4/ebuhBRNFUiAlU0WJARhHxJj1kWr2 9mF75ZeNaoLdljOUR0H5AGcuBw4/odoxXvvD51xBYfpXRJ7HjL13jJOHpsjzc+XzNSpW/PwjcjCO E7YWabS8YSfydm8YJWvZSN5urfFmb6kAFaACJlOAvN1kA+I75piQt2N6xMR0iUyRHdHy2ya5b6LN iR1+7M7oeqmBcnmAmlYMkdg/Wi5zwiTbzkeLaN13jlT2xBoKACutj5Ax++XXTfL2Ymk8VTl2/m+Y gkJXDZWGHXuSt1vjQDBFL8nbTTEMNMJOgfyuahCzHW/wIUbN75vk9UVyP55gDlMu8dcEyRVDBFwd F0tOXgPMy+S1V7yOGN9Xrh+qQvB1WaEgPGL3HU1UIXHwmiG8IFIzz73EYWcgk16gAHm7FwySxUwk b7fYgLO7VIAKUAFzKUDebq7x8CFrTMLbcQuJ6KZLjivADmfXu8ar96bPTnXqDLMjTjtei0bY9kmH VBxU3P3ZLznv8dvnMU0FqICpFciPI8FoBDrAdzwsUV767E/ydlOPom8ZR97uW+Npud7AdQGEfHu0 mrBm2mEJ3C0/bpD3lsgTM+X2cWq+m/ME8jJc4uEPrwn8f3JZgJr19Y7x0mSaulrDu4S9tqorsY2R Kko8F69QgLzdK4bJUkaSt1tquNlZKkAFqIDZFCBvN9uI+Iw9nuLtYGuYqBRvSSNw6KBd6sbtbKxR fX+X2+cKU6BeOkg5aNUZLT3WydZTPiM/O0IFqMAFKMD47RcgFosWWwHy9mJLyArMooDTB5rwUd9y Skbsky/WSOuZcvNw9cJgucFq9tVLBuYE+MJVWe5LslwfsdWIUdNP7XXvBHl3ifTboSA/npPClQJX eulZ6rGpUxvMIpCV7CBv9/honzlzJjs7Oyv3gky9eNw89xtA3u5+zdkiFaACVIAKGAqQtxtSMOFa BdzM2xErZn+smgsMMULhYYWIzcqJPZ9YMXgP+rFp8vFKCdwjayPU+8vGgrs23rgZajBBBSyiAHm7 RQbaJN0kbzfJQNCMklAgv4uoiGQVzW/hURm1X/muf7ZaXluoosogUHyhXOJzR6SBp0TVkdJwsjwz Rz5cJj9tUFd0mJEHsejj0nghVxIDe/46ydvPr1EJl0hNTV2yZElAQMCIESNGjRqFRGBg4PHjxwHh gdxLuHEzVk/ebsZRoU1UgApQAcsoQN5umaF2d0dLmrcbYBxTl4KcIxaoiiDqzIn9rMeUv1QfKV+v la1R7paC7VEBKmByBcjbTT5APmYeebuPDSi7c0EKOMV+p9Nk1QkZuFM+WCYPTFTO8OcPC2/vHm9c AdoSmJgDsQFxyTfhkByOV/jdYb0gg1m4kAqQtxdSqJIrdvr06S+++KJmzZqNGjVq1qxZ3bp1H3ro ofXr14O366XkmjZnzeTt5hwXWkUFqAAVsIgC5O0WGWj3d7OEeHtapgoZCj/2r9bKo1Ol9CDx+9fm x447rNx3XrhZazBBXlmgIrcvOCrxuZ3Y3S8IW6QCVMC0CpC3m3ZofNIw8nafHFZ2qsgKOCXwuN47 ECeLj8nQvfLzRum4XNrNU1Ndwx++YpDtks/hwi/3RaAKR6ODw9uuEjHH630TVQ3dV8u/22TMAVUz poJFcPhsK7r9FnmsCtqRvL0gddyyLS4urkuXLlWrVm3RokXbtm3r16+P27E1a9bk4PZst1hhokbI 2000GDSFClABKmA9BcjbrTfmbuqxa3l7emY2mPkbi9VNFuJ/lsJdleHLlPsOq8IQeX2hzApVsT3T siSLt1FuGnA2QwW8WAGP8PYjB/dvXb186+oVXE2kwJoVW1auOHroQIm+ek/e7sU/FjTdQwqAySNy IAK2Izh8coZEp6hA7v/tkA7L5MHJUj6gQH9444oxJ4HLSMSELzNYygUInOGbTlMcfvR+2RND/F70 ASZvL7p2LtoT/u2ffvLpbbfd9vzzz7dv375hw4aPPPLIunXrwNutGcKdvN1FRxaroQJUgApQgaIo QN5eFNW4TyEUKDZvP1P7oSf8aj3++J/zGk9K9/M/49dH/P7Lcz/lL/BZemCSvLpQBuyUfbHnLANo d+oxda4EU1SAClABmwIe4e3rliyIj4tLiI9PiD/N1SQKJMbHR544sWXFUvJ2/jZQAdMq4PTqLiVD xYefEiJ/b5EOS6XtHGk0ReqNlf8NEwR7Lyg6DSC8vTN8HxWiEI70mJ71zy0y/qAsPCYIXRiWYJvu h14c+R8WvsTbjegrOBcgnX+n3bpFM3Pjb9624d/euXPn66+//oEHHnj00UerVat29913r12z9qx/ +5kLe5mjgIbyNm3OHPJ2c44LraICVIAKWEQB8naLDLT7u1lc3n7mTOkf9/j9l6GixGh/pAFnzkWM 6S+1x8g3a2VTpESlSHKm+/vHFqkAFfAdBTzC2zcsXZSlfM6UOyVXkygAlpaYkAB/e3CGkju+6d9e ctqyZiqgFcBPCjzhEUsQV4nHk9TlYvBe6bZaxXW/YVjuCIT2r0ka15w5nvC4BL10kFweINcEyfXD 5PZx0n6h9NyqAhVGJsOxg3qfU8D3eDtOBAZ4P9dPz6UMe9S1g7OTVGJi4h9//HF3g7sbN278+OOP 333PPU8//czWrVtQXl1vqCuOC1hsezhv6AJq8WhR8naPys/GqQAVoAJWV4C83epHQIn1v/i8/foe ywzAftEA9cJv/XHy/DwJ2iMxqefsdna9eW4rU1SAClCB8yrgWd6OIAkmoc2FNwOhugpfOL+SLqkk v8ovNB/GYCAUb4+PJ28/71eGBaiAFyng9EJxf5xMOyx/bJbXFkqjqXLneKk2Ul1qImjheZzh8a4l IsPjpct/VVCaO8fJawvk980y/bCsPSm7Y+RYouL8+Amy2uIzvB0oW9Ns/FWMOmfx+IAaAFxblNse NStwZmZmSMihpViWLVu2fPmSJUvWrV0XExuTDc921ZFCwfOc7p77N3dD3vSJvN2bRou2UgEqQAV8 TgHydp8bUrN0qLi8PTu7XqdBCCNTeWB858XJi49l401ehGQ3Fqd3T8ZWJqgAFaAChVfAs7wdWCYl PePYybjjEafNvx4Ojz1xKiFL3bcXF7lnZZ/JiDiZEX7cDGtWejqQO3l74b81LEkFvFQBpxeQeFMS c6eGxsuuGDWVKiLDd1wmj06VSkPzx++GDzzC0WD9T80uhFmE4D9fc7TcO1FeXyR/bZHZYXI0wUul ujCzfYO3gzKnpKTExsYmJSVp2G5Q7guTowRKa0tw8464MVjw0WhE0XaclrOyMhIS06OjM2KiM6Jj MqKi0qKiMtPS4N5+5kyWDbmf5zlQenp6QkJCdHQ0Ekbl3psgb/fesaPlVIAKUAEfUIC83QcG0Zxd KD5vv/3Bx/0ur/T3T98kxkXjEtGc3aRVVIAK+IACHuftOw5G3ttpzJ3dx9/ZzcTrp+Mbdpvwx7BV R0/G2/zkXMDb08NCY15/Kqr5w1EtmnpwjX7m8cyjh8nbfeC7zC5QgWIqkJfGZ2arcDSBe6TLChUT Hiz9puFSMUguCxC8fZmvM7xDWPj+yoX+rcXSd7usCJcDp5UbfHSqpGT6zmRDvsHb4SK+fPnyfv36 wUkct8mKYtsWJIp5aBVzd20AzNu2bZu/v/+wYcPwRMCoU/F2kayU1PjZs+N7/5M8ZHByUFBi716n /u0dF3bExuLPqFe4bI+Vjb3yJkJCQkaOHNmrV68jR47k3ep1OeTtXjdkNJgKUAEq4EsKkLf70mia qi8u4O316vn5+f3666/wsrB34TBVN2kMFaACPqCAx3n72t0nyj49yO/VIPOurwRe+Wpg4JydcYlp 8EsHmi6+fzvebseT1LRd26Ia3RZR45aIGlU9sNasGlH91lN3VMo4uJe83Qe+y+wCFShpBfDTB05+ 8LRsiJT5R2TQLum2StrMUhwe/u3nwe82N3iEo0HJa4Ol1mhpOFmenCXdV8uQ3bIyXPnYe+/iG7w9 OTn5008/rVmz5p9//glPbwyHSXi7PjAyMjIGDBhQvXr1Z5555tSpU3ZHi3ockHn69OnPuqXfWevM C89lv/5a5iP3hT90/5H1G1QX0A91yj3PU4MZM2Y0aNCgbt26GzdutKvcW5Pk7d46crSbClABKuAT CpC3+8QwmrETLuDtt99O3m7GoaVNVMDnFPA8b99zotxzg/xeDzbtetFLQ34fu1G7tbsItitiD3SP +//Yj16KqFUtsnZNz6w1a5268wbydp/7WrNDVKBkFXDq77wvVkbuk49XysOTVTT4q4OkfICUHlQI T3gdFr6vKt90uny1RqYcktAExfYRDR5u8Jhg4nystGT7e97afYO3w2n8jTfeqFSp0i+//GLwdqPv cBTXCwA2EjofCfuP9oV1Pv7qRe+ia3AoZhQwtubsdK4h7ALe/vvvv1999dVPPPFEZGSkUYl+TSIz Li6hW9fsh++VjzvLl19mP/vkiccaha5el1MVLFbV4+O5HXFY2dk/bty466+/vkqVKuvXr9dltD1G GcNOJJBpX48J0+TtJhwUmkQFqAAVsI4C5O3WGWs395S83c2CszkqQAWKrAB5+3k4/yuBjb6eGhuf epaQF9+5XUWZzcrOyMDtemZ0VNQTD0fWqu4Z2A7IX7MmeXuRvzvckQpQAa2AU/QIWo4ZVBEQfswB Fcu9wzJpPkOqjVITrTr3hNcx4XPc4P36qqg11UfJw1Ok3TzlSO+/U+YflUOnJSMXMTXFIPgMb3/r rbcqV66MF2w1b7enyho7a9RsUGtk6sVhGHKyz0WkQQ7KaGRtFHYoZnBsXcyhZvB2ON6Dt7du3Toi IsKo5Bxv/+yT7EcflO6fyLffZLd79sTjjcPWrM7OUs7tqAr/G/Ub+xoGIEfz9ptvvtng7bq8UcYh gV10jlGbqRLk7aYaDhpDBagAFbCaAuTtVhtxt/WXvN1tUrMhKkAFiqkAeXuBvD3Ir03/OWsOAhO4 xrPd5taeEX0qefWKpAljYt94JaLWLZG14NxewzPInby9mN8f7k4FqMAFKgDsuvWUikWDiO51xkjZ wXLpILl4oC0iDYLSOF3tp2f9TznM3z1BOq+QMfvVNK9pmZKeJQg1j6eiTsn/BRpYlOI+ydsBkzFz KO6XMYkqEnhSbA+cwaKRg5jqeZkzNiFfb0IaC8roHJ3GX1SYmpqKmkHRjUyjKiMHe+li2oCePXs6 4e22lx+Uf/uHHTKrXnWmbZszLz6b1aBueIPbQlevQlWKt+PQUFaoRQ8wEqgcvUP9+IvM8ePH/+9/ /7Pn7aq0rTz+orC2GeW1MdjFtt2kju7k7UX5JnMfKkAFqAAVcJEC5O0uEpLVOCpA3u6oCD9TASpg VgXI2/Pl7e2Drnxr2I+j1qVnIPSLK2K2n63kDNztMmNjEgf0PnV/jYiaN9t4u6fiydC/3azfTNpF BSyjwPFEWX1Sxtrc4EHRn54jDSZIxeB82LsOFK/d4PuKXx/F6uEGj0A07yyRnzbKsL2y5Jhyg0/L Kq6CqZmyP7ZQlfgebz9+/PjWrVtHjBjx119/IYrL0KFDN2/eDKd3g4THxsauW7du9uzZcDXXUFor hfSJEycWL148d+7cqKgoTaQRW33Dhg0IkH7w4MGYmBikhwwZ8odtweSnu3fvBsHWJRUet/F5BJPf s2fPhAkT/vnnH/jb9+nTB3UigXA3Dv7t+jFLVlJSVL8+4S0an4Bn+6svhbd6fO+b7Y/u3GmrTnu4 qxZ05YAAoaGhsOfff//97bff/v7775kzZ8IkwHYs2r9d24O/KIwZVFG4b9++KAw1Bg8evHLlSiig yxTqEHF7IfJ2t0vOBqkAFaACVOCcAuTt57RgyqUKkLe7VE5WRgWoQAkqQN6eL29/bvBXw9dkZGbD pc+lvF25yqvg7VnZyQtmR95xa0T1KpE14OXuCRd3+reX4HeLVVMBKnAeBXJ8jc8VQw5+b9WP5BmJ TJbpofL1WnlsmootU1AUGsMB3uYeDwf4UgOlzCC5d4J8skomHpQTiUWJAL8/Tnnd99mmTCp48Rne /vbbb1933XUdOnTo1asXpiXF3Kk33ngjchDVHH2cPn06MDggMzzbgd9fffXVRo0arVmzBjn2+oBd N27cuGXLltu2bdN8e9euXW+++eadd94JWN27d+9WrVqhZjiTX3PNNagZQWy2b9+uS2qCDT4Pvt2+ ffvatWvfdNNNKAMMjturhx56qEKFCnl5u4oVk5WVBPS/c0f4jh0nsG7ffnL//qSEBJy/Fb/H/zZv dLQCAgCbP/744/r16+vK8feOO+5o0qTJlVdeWbVqVTwOQHe0Pegv0DqulO655x6Uv+uuu+rVq4cy sASTtwK5o6RD9+2l8GCavN2D4rNpKkAFqAAVIG/nMVBCCpC3l5CwrJYKUAGXK2AC3n6yXLuAfKG3 p+ZRfXnIk99NT0hOcy1pP1eb7f12hJVNnj4xcXTQ6a8+jax5qwdCypC3u/wbxQqpABVwhQK5Ca6q MSFdNkUqN3g4sb+9WFrNkgbj5fph+QeiAYSHG3w/QSh4v39V3Ph6Y+W5uQrgD9kts8Jk8yk5kWSb jDUfg6cdtkH+PorbTz9cUNx4X+Ltl19+OXgy8DKAOcB7t27dXnrpJeSULVsWoHvTpk1QCyx6+fLl uN+pXr36ihUrHIDz8OHDQekbNGiwceNGTa3hCf/II4+UKVOmbt262KtNmzadOnVCzQDviA+DFn/8 8ce4uDhdDxD31KlTQfJvuOGGxx9/HGAc6BiFn332WVD3iy++2IG3g3eDeaOh9AyEholPSUtIVWt8 amo8At6gToXb1R/1UADhawDb27Vrh6lRGzZs2LFjR1T+5Zdf4tkB2D4qv/XWWzVvR3nEkFm4cCGs RTfxUGDQoEETJ06EczvSsA2PDOCcjwp1zfkcRB7LJm/3mPRsmApQASpABUTI23kUlJAC5O0lJCyr pQJUwOUKeJ637z1R7sUAv/bBZkHusOSN4EpvDN1x8BRuzs8RcleGlLE5cNqQeyZez09PT/DvFVGz Knl7IQ9vf39/Pz+/atWq4UKukLuwGBWgAt6rQF72jhzMmpqSKfHpyg1+7hH5aYO0mSXXIgoNMHve IPCGA7xODFD4HaHjrxiiiD12/HWjmto1MT2XSJjm9Wxt/ipo/D0TJSw+VwHjg4/xdoBoBFoBWj95 8iQw+OHDhzFRKQgzYrkgPykpCXAbXt8oBuaMhANwHjlyJDzG7733XtSgeTsitDz66KPlypV77LHH 8AMOv/fIyEjUjAJwYi9VqlSzZs2QqevZsWMH0Pq11177wQcfANSfOnUKcWzgSX7gwIH333//sssu c+TttmHIzEyJiZgZHf7X6cgBpyMC4k78Ex7SMy76MOqEDTjf2rC8oF2g/iuuuOKJJ55YsmQJPsbH x8OdPjw8/Oeff4Z/u308mbCwsNdffx0d/+abbyACIreDruO8Exoa2rVrV8D55557DmUcum8cFZ5N kLd7Vn+2TgWoABWwuALk7RY/AEqu++TtJacta6YCVMC1CpiDtw82EW+HR/1LAZ8OXpGZhYgvZ1w1 TWq+3F4kaeKYUw1qRSCejPtDytC/3bVfJ9ZGBaiAexXIi+IRdH1DhATvlW6r5MnZ8uBkqTVaKgYp YO6EwxvR4OEG30e5waMkQsF/slLVAA6faxd4y/vLb5vkSIJjJ32JtwN0f/311wDRGiPrv2Dgbdu2 BTB/4403Dh06pHn7gw8+WABvv+++++x5O/zbEZcGYdjtw56DYCMyPFzc69Sps2jRIrQF53YA+cqV Kz/88MPwnIeHObTWNiCNQOv5zZeakREfefjj04cqJJ9sm3zypaSjdQ9vqhcassYG/IHbwdsFYXCW Ll0KH3tA9bFjxyJovP1AYr5UOL0bvB2Fx4wZA892+NgD9aN1Y8EmWAuff5gNP39tnn1VZkiTt5th FGgDFaACVMCyCpC3W3boS7rj5O0lrTDrpwJUwFUKeJ637zlR7vnBZnFuB2x/Nei69kFHTpwGIVdR 1l3t1m5fIWA+XOjjun0ScWulyNqM317Yg5r+7YVViuWogJUUAHt3it9jUuV4kuyNkfEH5fM1Cqdf GZjjuO4A4Q03eKB1G13Pxdtz4HzlodJ3ey5lfYa3I1IKmDOirMOlXPcQvBoJOJl///33YN1wREe4 FQBnuLVfKG9HwHZMwArGjgrBqLGg8vnz5+NlJWBtzK+KjwjBjhjyAPsII4PpVlESmVhQGL7lmLw1 X96eHhcd1iXpSN30mI8yYj5LjWwRurVhyEHF2xFsBrWgKnQKs68iMA7Ga//+/doMXTnS48aNs+ft eC4AG6666io4sQOqr169elXOAq/7adOm4YECjEHoG9iG3c22kLebbURoDxWgAlTAUgqQt1tquN3Z WfJ2d6rNtqgAFSiOAqbg7c8NMg1vD/JrN/ijPgshqT0YL6m0esVd0g8ciKh2pfJvr13T3Sv924vz 5eG+VIAKeIkCeYFobKosPCaIGNNungoUU3O0gKKXG5zbod2BxhsfgeX7yN0TlCN9puK44jO8Hawb vuW//fabA2/HR0wPiqjsmCcUbudF4+2g2Qh4bs/bQarB7W+77TaDt4eEhCDSCzh23759casObVFG L+DtCGuTL2/PiIsK+yTx6P2Zsd0zYr9Li3zmyPbGIQfW2nC6zb9dVDAZIHSEI3vvvffwBCGnYvUv GnLg7UePHsWMsZdccsktt9yCMDhNmzbFX73A4x3u+ogzgx5NmTJF766OAzMt5O1mGg3aQgWoABWw nALk7ZYbcnd1mLzdXUqzHSpABYqrAHl7LtTfPsjvxYDxi3ZD1pJi7PYO8/C5w8fs7OhnW0TW4nyp hT2Y6d9eWKVYjgpQgTwKgK06uCMjJy5NwhJke5QKBQ8I/+oCqTvG5uJuMPa8CX8pM0hazJCwJN/h 7fBvB2//9ddfDd6uYXJiYmJQUBAiqMCn3Z6316hRQ8+Xqph1zlMNHb89bzwZ+LcbvF17lWMX+I3f fvvt4O3z5s3Dx3379jVp0gQxbTAtKai+Hj1Vtc2/3Tlvt41oRkZcZMg7cSFXpZx8LOVk26SjNx/e WPvQgbPxZNAcqkI4+nfffRe8HSHcdVgbZOrKkTB4u54vFeS/RYsW4O2IPP/5559/lnvpblvAtBFp BzVoO031l7zdVMNBY6gAFaACVlOAvN1qI+62/pK3u01qNkQFqEAxFSBvz8vbR8zaBlXdwdttIWtw ox7/5zcRire73cWd/u3F/P5wdypABXxIAXtuGp1qi+ieF7Pb5/jLxQPl2hFy71s/gOK+9NJLXi0G JkJ14O0GSQZ+BwAHb4eDN6KpGP7tCAWzbNkyjaw104YCCBqD+VLB2zdu3IhMLJgvFQ7h4O3Dhw/X /u3I1Hs58HaEeWncuDHmLcXErIivrg3QJfP1b7fx9sz0xGMHfj2wqd7hrU0Ob2sZsun2rctbh4Zu t7Wv/sCwEydOaN7eoUMH7d+ux0u3YsRvN3h78+bNy5Qp06VLl+joaMyp6rBgolUsDkHgzXMAkLeb ZyxoCRWgAlTAggqQt1tw0N3TZfJ29+jMVqgAFSi+AuTtuXg74rc/P6hL38UQ1j28HQwADnypy5dE 1rvR3cFkEL6GvL34XyHWQAWogC8qMGyv+GESVXu6npO+dKAKJvPeUhmwUwWl2RcvzZ9v70u83Ygn ozE1hhd0+qeffoLr+yuvvAIkjnyENH/ggQfA1RcsWKB5uFEYU5FWqVLFqX97Xt6+Zs0ae//20NDQ Vq1aXXzxxV27dgXltuftqL93794VK1Zs3bo1wrzbHXQohY1ZCfHHT4ZvOHF848nwTeHHN4Qf35GY GG/bhM3KBR0Vwi0dI4WQNXCk15Ub9UyePBnd0fOlYlNcXFz79u3h3w4v97CwMKOYfQKtOlRiv9Wz afJ2z+rP1qkAFaACFleAvN3iB0DJdZ+8veS0Zc1UgAq4VgHydkfe/sLgZp9PxhvmJcrbMVOqff0Z x46durdyZK1a7kbu5O2u/TqxNipABXxFgfeXit9/irdfOkguC1BTrD40WX7YIGtPOumh78Vvh+c2 +qlhMrzZt2/f/uKLLyJcOVC83gROjljuiKaOEDG4p0ZJwGcscJIPCAhApPe8vB27G7wd5fViz9ux e0xMDEh7qVKlHn74YTjSI0cX0zVjvtT8eLs6aSsTzqiJztWqF+ydrXPQHdgZFBSE+VLxOGDChAlw mD9rhG1PPCaA2YjWDm98tZsN719zzTUwG8HkEVFH16hlQQHkIOYMsDzSTo4JT2eRt3t6BNg+FaAC VMDSCpC3W3r4S7Lz5O0lqS7rpgJUwJUKkLc78vZXAq97c2hUbJI9D3dhOkvHbD9zBlAiIvx45MkT uBrJTkiIatIgokY18vbCHNyM314YlViGClCB4ijw4TLpvEIG7ZIFR+XQaZDnXJU5fPQZ3o54Mldd dRUC4yxatOjIkSNwa0fMc4SF+fLLLwGiEV9l1apVGi8fOHAAxcCuMakoCh87dgyu6QgO07NnTwQ8 R74Dbwc/B7g24rdDTdSDxYG3g+1PmjTp1ltvLVeuHGK/IDg85i2FJWDvvXr1AuFHgBc4wGPmU/vx QD0A7Yqz26i7rWoN6kHe1X8awGMXhFuHJfCfh4v73Llz4biO+rdt2zZ06FC4zcNszdt15YcPH27X rt1ll12GGV1x3sG+UAOahIeHb926tX///ng0gH3Rur0xJkmTt5tkIGgGFaACVMCaCpC3W3Pc3dBr 8nY3iMwmqAAVcIkC5O25eDvmS30j2K91/x0HTynGfpaN5/JFLw57B2yHo11CfPz6ZUvmThgzdVjg hIAB00YOTU9NjXrqyYjqN7k7hDv9213yLWIlVIAK+JYC9gDVPp1fL32Dt8Nh+9VXX0UEFcSNwaSl CHIOZvvFF1889dRTiLLSoEGD4OBg7dwOHRDRfciQIYjfXr58+WbNmuFaAuWx1913312zZk1QcXve DqiOmyNUC6ydkpJiyAhSjbg0tWvXRj2g33AgxyZEWcf8pHAsRxT3xx9//MMPP3z//febNm1av379 SpUqwTygcme8PRvAXfN2m6e7clBXJ+8sBeMVjbctycnJ4OTwbwfPb9iwIWrG3KkYvjvvvBN9BIfH X7B9bSFqwKMEPGXAMwhY+Oyzz8Kw77777pNPPmnTpg3IPMzbvHkzKjZ6ZJ4Eebt5xoKWUAEqQAUs qIAZeHtWdnZGZlZaemZaRiYS+jKjkGOBkzt2ycw6uxZ8rs/KytYlsUsBJW11ZqakZSSmpCUmp+Jv UmpaanpGwXsZBsP+wptk7OV7CfJ23xtT9ogK+KoC5O25eXuw4u1PD5iyZC9u2HN80V3J23Gqjz4V lZySDHe7+LjYaSODl86cnp2SHPUY/NvdPmUqebuvfrHZLypABdyogG/wdrBoQFow5Ndee+3pp58G ML/jjjsQXP2uu+6CKzsCsERFReFW0ViOHz+OWU1RDMC8bt26KNa2bVtMq4roKxDkvffe27NnD+4N UR7haPARW2fPno0bcGNksBW8+uWXX0awmrVr1+rCKA/neWBt3E/VqlULvuWoGXy7X79+MA9s/7PP PkMkdlRiWGJL2GC7as3m0I66VNr2WaF3nVBb4aAOZ3UAfFRep04ddBAO+YiTg76glRdeeGHnzp3a QhSGtZs2bUK7mCgWTB4LnjtggZM8orvj8QFqQzGjR+ZJkLebZyxoCRWgAlTAggp4kLfjvJyann7q dMKy7QcHz1n18+g5WIPmrV69KwSZ6RmZhRmOhOTU0Us2jly0AeucDbvBxAvYa+n2A7rk0AXrYhOS nZTEu+2paQeORQbMWfVu75GPffbvA13+bvxprzbfDvh4wMQxSzYejz5/eLpN+8OGLVhva2j9xOVb 8BDBSUMWyCJvt8Ags4tUwEcUIG935O2YMvW1oLd6LsjAa+2u9m9Xrna26LK4DDgaEjIlePD4wf6x cbFZuGN/4H8RjN9euG8V48kUTieWogJUwE0K+AZvx0kPEVQAwPEXqHz69OmBgYEIxo6JRPERNN6g 1lpWfIyNjV2yZAmixACzjx8/HlFW4CQPGI4EGDuc4XGyw4L4aagBNSMeC1rRmfiLerAJcVqwCXsp LG4D4yiDj8uWLUO8d3jRo+YtW7agNkyTCvq9d+/e1NRU7K7L67/KJFSIKlW96v00XSCnGP61ebzb tqNRBMkZOXIkzB4xYgSi1iBuPBbYjIZOnz6tO6j2wZP3rCx0E/lTpkxBYXR23LhxcMtHIBrUg9Z1 YbP9JW8324jQHipABaiApRTwCG/HWTs+OXXext0d+oyt2v47v2Yd/R79wO+xD9Xa5IOLmneq+daP XQdMWLJ1f3KqmnqmgBHZdzTCr2UXv8bvY729w29xic4oes7+T3ztr0v6NXx784EjOdln/4VT+rLt B176Nejytt38mnzo1/Qjv2ad1Nrc9repMrLVN/4F25OZmVXv/V/8GsGeDqqt5p1nrTvrHuDQnM9/ JG/3+SFmB6mAzyhA3p6LtwO220LKtPhyamp6ZnFCxxSwL1zcD+3dPW7Qf0F//rRn6+ZsOZOVkBjd 4o6I6jczfnthvlnk7YVRiWWoABVwmwK+wdsLlgu3gVg0D9fpgssXsNXg5KjHvphRv32mkXZoVH80 dkHCKKkd3zUJNwpgq047JeS5dtfM3lad3uVczc5SDvs6K+KBPPJ2D4jOJqkAFaACVCBHAQ/w9jNy PCru5d+Dy7f9rFTLzqVadNLrxS06YbWldWaXK9p+1rHfuJOxZx+v55ic698DxyMva9sde2Hf+7v8 fbpA3v7MDwG6JKj+tkPHclUkEjR39WVtu12kbOhcqmWni1t2vrRV19KtPy7dquslT3RBDqxt8lmf gi8nlmzdd1HLLqoVlEdVLTu/9c9I5R1ovYW83Xpjzh5TAW9VwEK8vX2wQuv6LxL5rbYC1T8YdTK6 pKZMhdfd6ZiYLWtXB/z+46E9u0DmgQkSAwZE3lIuolYNtyJ3xpPx1i8u7aYCVMBECvgGb8eNXno6 oohmIKGXTNtiz9h1Wv91OgA5u579V5fBB6Mw0nALj4uLQ91Iw3vcvn69GwrrBP7qHVFGF9N/ja3G R6N+ozzKoDtoCI7ruOs3dnFI6LbgPI+S2hiYhx11Mb3VYReHTQ5Nm+QjebtJBoJmUAEqQAWsqYCb eTtea9u0/8jdH/3l17SjRt/A2vYrADU+KtxtY+8A4427/7v3yEncmDsdIFfx9oWb9/oBs7forLB/ y85VXv22dY8BHfuN7TF0+hcBk9/8azhI+w0v92j6eV9cXTi1BJm4VOrSf3wp8PaWnUq37mrj7Z3q vPPLiZj4/Hbx4Xzydh8eXHaNCviYAr7P2+Gv/lrQRa8FVe0wsk6n0Ve+PUx5sOcH28/mB/m1C/h3 8iaMdQFu6kXcpKZtw0lTwsNP7NiyOSkxAWd55ODhdOxH70TUqOrWKVPJ233s+8zuUAEq4AkFfIO3 g7Rv2LBh27ZtOloLAshg5lCEWNEfwaI1IVfg2y4culMWbV8GaeyI3Y0bSdQ5c+ZMBGkB2UYwGcSB N8obCV0tPhoJmKc/Gpm2pwEK2mNxGHbkYE7VOXPmjLEts2bNwjSsxo7YirTuDnbEx5UrVyK2POzB dK6IFXP48GFdBluNkjoHf7EYPULaoWmTfCRvN8lA0AwqQAWogDUVcDNv3xV6ou67v1xk8/22x+xG +pLWH1/+6reKuttcxJGP8DL3dvo7NELNCJN3cQlvR6z45l/217AdqPz+Lj33hJ3ABKlGc7jMwayp O0PD+05dWsAVRUx84m3v/wbMDptbftP/0lbK0b1M664Tlm82qrJOgrzdOmPNnlIBb1fA93n7S0Nu fnd4v6lbdoZELt14uN1f8xRsf01B+Hyouy3/5cAr2g/ddeAkMDiCsxYRrYOiO12zVRT3zOxs0AcU sOF3lcgICzv1SO1Id7q4k7d7+xeY9lMBKmACBXyGt8+fPx8hyjWaPnjw4IABA5YuXQoEjWjqmEUU bByTjWjUjJxjx44dOXIEWBsx2xGYHXfW4NVIANQjJzw8HDvCURxxzhGefdeuXXpfDNfq1auDgoIQ jB01oAkEig8LC8O+2BGZqAdwHgn4pYN1g/bDntDQUMSER3Pa8xwFsBV1wiqwcbimO9ylwl8doL13 7976kQHiwCPuup7vFYXRLqZkRUh2GK8hPGB7cHAwNqE5mBcSEgI78RHPAqADnkGgpH5kgL9IQwq0 jkcGOtMEx6CjCeTtjorwMxWgAlSACrhRAXfy9rT0DHiJ+6nYL7l82nNge6eLHv/w+i8H/u/bwFIt PrIr0wnO8C//FpyR6WTiUZfw9viklP+9/M1Zj/rmXVbtPIQRcLhicfjodIiWIphMc8SQUR7yM9fu uLn9dzYX985tegxwWt63M8nbfXt82Tsq4EsK+CxvV2Fhgi55JfCu7pN2HIg4EZP0ecCyy58dfNMr QVXfH1nn0wl1uk2Ax/tNbw6r/PrQq9/QBD5Qub5jfSXwye+nXf5KYLOvppyKTXbOzJ2C9AvKBMa3 J/nZZ8D2k0aMiKhR0X3Inbzdl77M7AsVoAIeUsA3eDvI8/79+zFHKkA0sDNIO2D4oUOHgJdnzJgB ZA0UjzlDAb0BxuEEjslGkblq1Srg62nTpqEk6PfQoUMBorEAd4OTg3tjQlUU09OegsZjiNasWQO4 DaIO6P3bb7/9+++/c+fORSuoGXOzogxAPVrEjjADlB67YwGih20g4bgzBWyHJTBv7NixmNEDFYJ7 2w8+IPkff/wB2A4+j02A/2DvmCMVfcRf7Aj8PmjQIBgJZo4d4QkPyzFTKp4UwAZ44CMT3v4oM2rU KLQ7adIkWIJMEHjM34pMTLcKL31YUpg7ZXvb3JMmb3ePzmyFClABKkAFnCrgNt6Os3DvyYsvUjFb FI7Ou5Zq/lGFN39quOrQ9d8OKdW8o30BeJ5j4tFh89fkPZW7hLdHxiVUeLq75u2I3465XJ1qdd7M Z38Y7NfsI1iOmVvhHv/K70MVb2/RCZVvzRMu/ry1eXsB8nZvH0HaTwWso4DP8vbXg8u+POTb4JUx 8amb9p6s33Vs+RcDfh67YV9Y9MmYpMjoxANh0au3hm3ac2LL3vClG0P7zNrxVcCKWzuM8ntpiN+r gXU6jf1z3Poqrwd3+XcRzr8lhdzz8nlElXnrxYjqVdwUxZ283TpfdfaUClCBElPAN3g75AEeBzkH 64Y/OXjy1KlT4eONWCuA1QDO2AQ2Dg4PRo0yYNHg6khjwdYFCxaAWv/555/z5s0DiNb+5CDn4Nsg 2AEBAUDrmzZtAvFeu3Yt4DYAO5A7ODzKg1rjxhyQHB/RNHzdAbTROhJA5WgIRB1UH9x74cKFKAmH +f79+4OKY0dweLSLaDPG8OKsDY902AzXeqSxgLrj6QAsBHsHxse+e/fuxQMClIGnOnZEDTAYvB0K oCS6jMzFixfrJw54DAGqv379euyOrqGP6D461bNnTzxiQP1G0+ZJkLebZyxoCRWgAlTAggq4jbeD aTf8uNdFuRzXz1J3HT0GkWRun7im0baTlb8cdEnzj3Qgd8w6qlcg94Yf/5OQh4S7hLfHJiRVeuFr FcGmRSeA/dU7D8K7/UIPhtCT0bBZBaV5onMX/wm46gieu6Z0q09s7u5dvwqcdqEVent58nZvH0Ha TwWso4AP8nabZ7vfc4O69lmUmpaRkpbRrMe0su0GD5u781RMwq6DJ6cv2T148qZ9IadSM3DrrM55 mLAU/+D/zXvDH+826cGPx/Yes/bEqaQjJ+LGzd+RCc/zvGDc5Tk2X3cYkxDgH1H9FvL2Ar6D4B5+ fn7VqlXDhVwBxbiJClABKuAeBXyGtyNWDEg1SDviq4CQI4QLPMzBw7ULOlg3HNH37dsHCA/sPGHC BDi6Q2GUWbZsmXYFB5PXPueA26Dl8GAHWp84cSLyQae1I7rB2+Exjq3IBITHgsJoNDQ0FNWiEoO3 w7kdbu34wYdjOQwDw1+xYoUO/4LWURJWGbxd029UBZsB1XGaR83A8r169cKTAqTB29FBxMOBeTib wIkdlaAGe94Op31kLlq0aPTo0egdAtHAMEB46IN9QekhhVYDTwF0iyhvqoW83VTDQWOoABWgAlZT wG28fda6HRWe7mY4t1/asnNpTCqq/trWph9W/mrgfYt337d4b6VP+pRp0blMS7WWtW3VyP3yp7pt 3n/UYYCKz9txeZCWkfnIp70VGFfu6J0bdv1nd9gJTGnj0FYBH1HJ98NngtWjg5c91W3uht0oDNsq vfgVcuAz36Djn9HxSQXUUMAmVJ6ZlZ2Slg5mkm6bxR6FkYmLJfx1uiM2paVnJqemg7FkZIKk5CpW 8L6oELtjcdjLaUMFZJK3FyAON1EBKmAqBXyNtyvYHlzmpYBvg1YmJikYO2bB7oueGfjG77MHzdjW feCyn4NXD56ydfGmsGMn43Cys2F2NXupJur4GJ+YeuJUPOKr2zN2h4/2m1yThgEi6SEHksePjGr2 YETNauTtBXxNyNsLEIebqAAVcL8CPsPbIR0Y+P/ZOw+4Ko61jWO6SW56bpJ7ky/V5Kb3xHSNvXex 9y6Kith7b1EUkN4UVARFUVGKgApiQxEFURGQ3nsHme+ZHViPB0TKAc6Bd3/rcc/szOzss7tn2P++ +wyQ8ooVKxBhDigNwoygdISdA0EjzBtWMzBUQRw4+Pm+ffuArFEEt05YtW7dOhREODpMWhDKHhIS AgYOtG5oaAhfFxQHbweyBgCHQToqFA7tIo4d1BoUXYSyg4qD+SMzHGMA3rE5RLCDn4N7g36D8yNY HV9RA8g5gudBv0HL0U7F444wdcB5gHogd4TNo6nA75GRkWgqODlYPRA68mzfvl3wdlSLrYj4dhMT E/B81IZHBoDwaAM0QaA7LHRwh4hP9EEIsMdzBzyPID8ZRdlpmRQgBUgBUoAUEAo0Gm/XNz/4VPeZ PIZcGgu1w8yNU9ZbT9lgM3Wzne7W3TO37J5luG/mjr2zDPfO3b5HnvW3O/TWN3iCx43DxX2K0WFf pQNXf94uKjQ65PNEN11hva7VafprA+fbe51HTH4NsXNmbv6PM7aA1QOtvz1scUYOj3MAxOi5ZKdW R+7o/mLfucIWXqn9j/wKXH4nIWWfz6UltkcWWB22OH72dlwSWPrdpLTzN6JuRic9UENZGeIX4lMz va+E/ePsifxL7Fyt3c9ei4jDeK+Cn+MzLjXzXGhkUHhsTqX3BVAbnHCuhseeD4tKTM9+oPJafiHe XkvBKDspQAo0mQLNjbePtEJku76xT24exgMvOR9897nh1l9McbgcGjd6o3vrgebPDDJ/epD586Os 20zb00H/gNnBS3cTM4oxdil/knsfvOM7ADj6sgYn7VKcPAf+jKX1apf48SuJH73fSLD9kzZJ5CfT ZFcebZgUIAWajwLNibfjBhlUfMeOHYDk6ANxkMClAZnBqBHjDTwOtA7MjjwA14Dk4iiCSINvI1Ew dvBtAG2sghk7fFdAsAGuAbRh3oIbTHzCjwWkGuRcOMMgVB5m7yDqsHABzUZmRMtjo0hBzcgsRkrF cK4g4UDraCSaB5wOJg93FwSii6bKpxRu+rBpuNzAHAaoHEY02Cjahq0DsKNCeOBgLxB4j+cCKIVH AEDuMG9HIuoESEciDGREOD0yI9heJEINBPxjX1AndhNbEbeZ8qbVZIHi29XkQFAzSAFSgBRomQo0 Gm/vutAIRitiFNTHOk3/dvyqi6F3qtf8TmziQvMD7wyaD9jOeXvHaYPXWikVURVvx1t2kw32Ptl1 puQbP71VJx2tDtO+mrxu3V73O/EpCBFX2q7S13OhEc/35tH7CHGftXM/XyuFlLueC9bqMBUcHlYz M4wclUpV/xV/t6RkZi/bdfQ/QxbjEcDjXXWf6j7ria66b2ovWrH72DTDfSD53RYZK1aCAHgDF2+4 xz/edYbI/2T3Wcj2Uj/9Yets4SGPv6+Q/6Bf0L/66rXuNXuvz0XF4mLZOyjs1QHzn++j534ptPLa mqcQb6+5VpSTFCAFmlaBZsXbh1v9Z5zd9gOBOXlFtsevz9zq+f0sx6e0LVwD+PBqUbHp+3xvdFlx +IkhFlqDzLWGW8GnHW7tz46wHrbJ/WxwLGfr3FWGz3jgG3IneY19QE5+kWoi2Kv1nxG8PXO5fuJH knP7xx81EnIn3t60lx9tnRQgBZqFAs2Jt6O7BEUHYQbrFgdHpICfw3EdEe+4gwbcRtQ30LS4vUI2 pGRnZ6MgMqMglgUAF+lg5iiIOlFWZADZxiosA7mjZsHe8VUEk4vMWEb9oOvILFA5tohEkQ3YHPgd GBxm7FWauqAsmoFNo9nYtAiAV9y6yIAmof1oObaCFJEo9l1ORFOxFokojsyikagWzUbDRKLQSn0+ iberz7GglpACpAAp0AIVaBzejm756ylrgaPB24UxOyj06330zgbd5Df2mBT9TsrKEB9ufdj75d5z JVgtxlcFyp7edsZmpWOkIt7ON4+WzDU/8EKfubydXbixDBYe6zzz7aFL9nhfLCy6PwCNUhvwdb6V i+DqwPXXo/ig82KPsCPvj1qGoHfU9vawRTn5tRiJFS438y0PAbC37jHrl5mbDQ/5uAYE/+Pk+c2k dS/0nfvhyOWPdZnRa6mp3BiEIFoe92sFH57usyDUFievw2eDbT0CBq40f6X/PMj+++xtUQmpyJ+Y ntVx/nat9lMm79iTV6Ds+7rYxvWJbjN/0d1SZwMc0STi7fKhoQVSgBRQcwXGT5muNWpPuz7DGrOd F3y8uKGqhKADQuNb9zeFCYwK5r4mp65yJ9VZRj7PDLd6EkR9iMWPuo45uUW5BcDmsIgpAz938bs1 x+jkc4PNtfqbaY2w4tsdbvX6cCszF4D6wvDIZItjQdrr3F4fYKZr6I12ym4zDQfesQl0xnku9okf /beRSDuC21tMfDvkvZnBouv14lpjXh+0LVKAFNAwBZoTb4f06EbFJB+GigTl/ytnkIuLVcoFpJtf xcoVM8hl5UTFFHkZCyDeiEhHVDwizOFUAzAu1uJTcZLrqXKLyCmnK+XEV3mt4qqHJSpuVE2Wiber yYGgZpACpAAp0DIVaCTeztiXk9YAO5fHt0uuMgDUbw+eHxweIysP8IChSx1Pnm8/Y5NWu8mtOk0T 5jNSzLkOePv30zbKmcWCinj7/VpPXAztstAI4d9PdJ0hHN1bdeKh9YNWW8HUnQf8VZrSczDc6nwB 1cG0FdcjUFDP/KC0CgHqM02OcB+8Gk4IL3+hr/7zvWYvtDoMjxe5VFpW7sRtex7vggh2HUXefuZa +OuD5r/QR2/5rqNKFN359OUPRi5v1Rkx9k6iqi37PZ/pOfvT8atv3JWeDlTUnpGT/82UdZDa0MUH gEX8oVWxsnb/q5C3p6Sk5hTdSytgcbnsTha7nsYuJTO/eOYVw45EMqdwtjuMWYSwHcHM4CpLrcUz jdrtEeUmBUiB5qdAfgnbcfXec+ZMy4y9Pf9EY+6g6nk7sHl/05U2/klpOaPXn9AaaMbD1yWG33q4 te3RoKS0XNByjrWlrgxPaZPTc93P3Rln4P2/6XueGGKJWPcnhlv9d9yul8fYtkIA/GDzVoPMPc+F Izvejmo40s5rlsxkCoKvJH3zSeLHHxJvf+SpWO7f/uGHKTlFd3NYUArziWUud5j1Dbb1ClsQwMae ZD2Osh+c2Du72FOmTGsb09rMrnBvA5pIAVKAFFC9As2Mt6teIJXWKAA4AssxITxeDlxX6UY0vjLi 7Rp/CGkHSAFSgBTQZAUah7dDod91/+GR7Z11BDyXQsenfzhkEUxjhH4wmb0Ueqfvepun+yLCfJoU ZM4jzEV+fAICd1qwQ0nsSry93EBPKZv42meZGa8Qri/tJgeFKw+9KrNltGT/qcAfdTY930uOdecB 6u+NWhoaFS9nkzeBqHKYz/Cau87YuM8D6Yp5PC6FYqRXrAV1/2P2VkStywWrWUAU4pD11ngk0U7P QETFK9YZmZgKrxtF3g5H9+mGjlqdpg1fb5uVd1+EilJl6/aeQPM+GLXiYthdbDcoPOa9EUuf7TXb 1uOcYjPgMPOv3nr/N3wpXHQU0+uwrCre/ttC+xcsyp4zx8xam7NnzNjTZhwdPGnKnjBlj5uwx0xY q51MC7Mxe283A5aniRQgBUiBmihwJ5N9ZF/+68F/Q7bf23urJuVUk6chePuHk3aHx6RprznWCuxd RK1LgeuvTdi13/265NDOsbmCH3sZXmVHr3c3IXOJ2WkAdq3hlrygmAdbrLTzzysoLufh1brB1JfG wzceJjalJal9+ya2eY94+yNPMsHb3/u11+u25T0jukX0ibxDNK56/rcNK3qEPd4jN0sZSAFSgBSo WgHi7VXrQqlNpwDx9qbTnrZMCpACpAApwBqNt4/ZvPuJbjMUefuTnXWsjp7Gm+24079+O3qJw/E2 m/Z+6Rny8sT14O0yZpcXAJ/1LVyUjtnt2ORne+sJiv799I1ioFKlPPLXnktMZN5+PSpOTq9yAaHp DifP/zVn23O9ZkvjqAKY63SctyOvoEgxf0FR0V96BvB7R82te85evdvN6fRleUZg+U7XU6/CzkWy oH9j8KLAWxx3P3KKiE95bdB8hKCbHT2DzBXYXJQrg5/8hK27Ff1kYpLTv522AaH4+30vKVUuysK8 vc2YlXjkYXXcXzITKASZb9V5xsiNdhhNTxQpKb03aKUFnmvMs3Cp4XMBpW0pflUVb9+4duXGgNzX rSV6ILj6wz6NWV83xSbQMilACpACVSiA6O7YHLbqQgWTFD8p/2S/NftgjR6IVlFlXZJUzdutWg21 3Ox0qfviQ9yYfYSCNc0Iq38Nsdx/8gZ2XNkWhketox/mRi4lJaVOvjdfHWOrheFWwduHWf6i55Sa wYf/VuDzDRblLvH2ohvXU9r9nvjxB8TbH3lKCd7+0fvvpuUW9j1egdkf1j8i3Zj1cuMPNWgiBUgB UqAhFCDe3hCqUp31UYB4e33Uo7KkAClACpAC9VSgEXi74L2mR88800OXw3PJwl2r3aTx66wKC4tT M3LW2R15q+esfy+2+PVC9G8Xol8cu6YK3i7Fh7udv660v3eT0p7rU87bP52wJiUzRymD4tc/5xqU 8/Y/J0dKTuaKaxWXZb6NWPE1Diee7DYTyB1lwaLhiK6YM/hO7KsD5yNmntcseac/032W4gw3daSL 4hiPdf0+d8XiVS5j695XbiJ8/bUB+perisOHCcB8S5dWXWbKfjLwunmpnz7M5x/G82HG/sfsfzB2 6ir748D12IT9yfM4Ip+MWwUUj2YgJTgi9qPRK18ZMP/0tfAqG1arRFXx9jVrVqenpd5Iu/ferkch 9x3sWFSt2kiZSQFSoCUqsPMae9XqAdj+4pYYrVc+aN++PeSoyjasQVRSMW8fbD52g9vQtUdbwUNG jmzn1N1Kq7ex+eErRSXcKx4/9UDuPJK8YsbDZfjP+FyM1N7g/u5kew7qwedHWg9bdzzodlLJPQTA c8ZeBatXabg7b1VhQWrfTokfvpP4CUZKbazBUjXfv72oqBAHCE4yT8M0BpHtD0fu7VyYbxy37qGJ FCAFSAGVK0C8XeWSUoX1VIB4ez0FpOKkAClACpAC9VGgEXi7aN6N6IT3Ry6THNF5KPgXY5aHRcW7 nL78y6Q1Wr9P4FYznaZ9YHCgrX/4C6NXC3YtR7ZzXt15+vujVsSlZqI24AJ5l4GRX+w7V3KGnw73 8qhEPh5olRNAA2+ABMbxmZVz33SlyvxIlDc0cZu9cIzR6qzTSV/B06aszOCQN+LepfFVp8Py/Ymu OlXMCOyXdgG7+dP0TaDlD9uiSEe0oYt/ELb19pBFMUnplTMjEF3f3KVV1/u8/UJY5NM9Zr06cEFY 9AN+7HJZxOF3mm+I5wWLbI7ghQKkwzGm7cwtGBoVVu34ip01PXIGY7N2mLejniOlio2qjrevSU1N ZWX38BZ8+0PcPeahMMGQLQpgZ+LZ3WxWQjxBHAb6JAVIgQoFCkqYfwL73gm+MRU/I8YM787MDWCT xo/T0tJq165dRd7G+F+VvF0i5INWH0VQOjdsl4PbR1g9P9xq9k5fOMnA3jUyMet6REpmdkFSeh5Y +vGA8O1HgnSNvD+a6vA4Rk0dZsX93odZvjPaxvTQ5aJiHgoNNovPxLTca7eTAHUbcJb82zNnTU58 75VGDW7XfN6OP+TE+RqSxr5xfOBB0gPdJVC8EdMy4Bm6H2Um19j5RN5dFj7iT5LGuBZoG6QAKdAM FCDe3gwOYjPbBeLtzeyA0u6QAqQAKaBZCjQObwfLhT/J+H/staQg8Cc6TZ9j4PD3rM1Pw5W9Y7l1 DCfhHab+d5nVc0OXYhkEW4G3T2/VaYausRNG8Kwkb9nn41eJAUm1Ok6Ff0ulDOUJV2/HwJEGNaMN H49d8bBsVab7BN0EKkdZGLZ8olAWgeJfTlqLRDxHeLrbjN9m/QOH9t8fnJGC9NcHlVvKINz9xMWQ yluBRJhEOnj7QT/w9hn/0V54NzGtcmbwdj2zA4q8/dLNu3CzQWj69ciqfXKy8gr+nrsd8e3Ldx1D s0Wdy+yOwlIGQfJ4LwDPI+C3g5h5vImAgWsr2lJ54zVNUS1vF4ceFH3jZaZlWMHKKkfxGfF36t+0 ZT87sw2BnCTQRAqQAqQAFLiYxH4/yJ7AAzsgR/HTYcxGevIhmDFNmzZNs3m7NCgqp+XCd118HWHV Wtt8j0cIBvgIvpU4xeDkB1Md3hhl02XZoe/nOP2ku3+Ntd9LY2y0hlqUFxxu+YS2xSQDr+vhSYXF sJCRwuAZgyH8pPVuyak5ArYLRxoR9F5r/F7NoKsSb8+YNibx/VeJt9fkmi0fL/WDDwRvF712bjHv +/h5Xrl/lFMEeDfi2dBdfrGXTfBmzuEsqxzb12TjlIcUIAVIAWUFiLcrK0Lfm1oB4u1NfQRo+6QA KUAKtGgFGoe3C4kvh8e8NmgB0PQTiGbvMBV4XIGoc5qNr606TOGkvWJYVZEBq14fvCAqSZk8Czw9 cesehG1zkN5x+s8zNlUOXBcou+8KM8So88FSO0zT3emEJsl8G6a1mbn51SBm59NX8FxA8Pbvpq6X z5hTwbe02k9GOkZT/WnGZjm98sKKXcd4DdyURmfwGkvFDHiXPzwuGVXBOiY3n9/uomGegTdA+F/p P9c/5I5iZrFcWFQ8erOdon87xo3979DFT/eY7X0lrHJ+pGAT30xdh6bCT17C6Vw8bPQ/Qxa9qb3o wo2ou0nprw2c//awJfUfKVU0QLW8HW1GtYInHI9iL1o+4q15/k49sPw29t1+Znqd3cpgqQU8MpMm UoAUaFEKAA6HZ7LRXkxra8WPhjF7bCdrY8/cFOynmgNvFzHtcmQ7kPsQC4ujwZGxGf3Xuz092FJr KAZClULfh1t9retof/KGpWvQa9xAxoqHxA+3en+y/Ylz4aXwG0NYuxTKXlxceupq9MSlRy6FxOO0 4S7u98ryC4sTUrLkoVdritwl0g7HmOKUpKKoiJK0lJKc7HtFhaX3cIjE5spKou8mt/00sU3jmrc3 o/h2HCPRS+Lcfg2OSTJgx4Ixe9WavbuLvWBRldM7HkLhpQ8D9u1+tuoifzgVk8Oyi8pra1G/GLSz pAApUGcFiLfXWToq2EAKEG9vIGGpWlKAFCAFSIGaKNCYvB3tMT1y+l8Y3hTYWQpfB/5VRu5IqZT4 8oB58FepvDsCmF+6FQ0XFO5I04Uj96HrbTB4KCxTgAUAaRHLDZa+0v7Y411mgnWj8ud6zwm6E6tY W3JGdv+VFl6Xw7LzCoS3ubwWX2/HJH0zbb3g7ahfx8hRrEXl/cDwO5Y3eNuBk3KpygvnbkS81Fef E/vO098ZvvRWTJJovEDrbcauat1zzqsD5k/b4ZhXyG9x78Qlv6m9AH7vCywPVa4NSPyLSWth8C77 t6fn5PVcaoJHGEttjxQUFVcu4uB94cW++v83fMnZ0PsAH0HvfZaZPdFdd+sBb/uTF7Avi21c5ej3 ypXUKqUheDsaIGDC7Uz2k7NCnOpO9l87tuw8a+tcyXAGGGEHe9yEtXHgb9DvuMoipXDWWu0LZSYF SAFNVOBqCut/nP3LQuGlGGP+U+B0m+VJP5P4PRE/Kc2Bt4uYdoXPN8bZTTPy/niyg9YQmMxIUL38 0/rxkdaPAb9rg8CLdOunh1laHwsukay40DHl5Bae8A+fs8Vjhd25OzHpklD8gaXflbs9VxxdZOQZ n5xVU9IOdC/B9pLUlIw541K6fp/85xepPX5IHfRXxoyp2ZtW59rbFnicyDU3Tu3XLemTd3lw+8eN aN7evHg7jpE4pZPz2ZiTCr3kdmYXxvJLWFAKOxDOZp5hn++VwPuDTJ6//YFH1YbsFSv2tSMfgnzz ZRaQyIfZpYkUIAVIgeoVIN5evT60tvEVIN7e+JrTFkkBUoAUIAVkBRqTt+MWHkYos0ycn+05W8Lj IOR8+FRF5K64LKLBX+inv9bhhIDAglHLjccCUjD1XWEO+CzRe47cv5i41uCg14kL13yv3t7tcZ6D 6A48Op3PXWf0XmYGGo9Scj3g7diK1t9Tuy4yMj/md/Hm3ZsxiZgxFqrZsTNtxi7X6sRhPtr2fK/Z wRWGLRHxKa8MmId0VPvKwPlXbkfLFVZeSM3K+XbqetGG1j1mWx33Fw0AG++9zByONHzE1S7TYQhz LjQCxUHdR22002o/5f1RywJvRXN/F6nB+CwoLN7o6P5kV11F3o50w0O+sHD/cPRyhMTDfYUXkCYs RiSkdF5oBDudMZt35Ugh9KKFyGZ02Be2890X7xy9ye6FvnqKNL7yXtQqpYF4O9ogkR/elj5uPE6V h7Ibsy5HylsHyLD6IvvQnj1vwTE7XyvzBBH0bsA+28MMr7LEXJZTTBihXDf6jxRoNgqAGSM6dyRi 2iWravkX4BkzpnumnEYq9AB8v5shbx9hhYFTHxtiIRP1cqsZRcMZgd+RMtzqxbG2JvvOu5wMsTxw caKBZ//FhxcZnQwIjikq5i8G4T2s86HxS8x8355o99Jgi1OBkejNebh7jR3dS0tK0vUmJX30n6SP P8ScKD4/fDfxo9eTPnkj6dP3Etu8nvjR+5KTTOPC9mbH28WFLM5w6xustbnUDxowjF+ASfHMT81n xtfYny7sZSv2rLn0tFqxxxTdq/TMGj1pj2PMOpRF57DMQm75rliP2CJ9kgKkQAtXgHh7Cz8B1HD3 iber4UGhJpECpAAp0HIUaEzeLlQtLi0FGcbQpU92nymi3KtA7p11sOqp7rptxq7c7XWhVBpgFPC4 yuOC9JCo+M/GI957Bq+wsw7sZUCqH++C0UtnaP09hVvES0OaIuWnGZvuVvKlAW/HoKsoi5wo+EyP WXBWQbQ5nguAUaM2AdVf6qe/xckLbeAtKSuzPnH2yW66QOgIWf9h+oa8gqKHtRBFgL8X2xzW6lAe DI+4dGFInpNf8PucbdJ4r3yXEfzvfilU7Ob5sKj3RizDTgHU7/W5GJWYlpSeFXAjYpqR41tDlvxv 3ErZT0ZsNykju/cyUwzeilXbDnjDyD0pIwulDvhd6TR/B8ZFheNN0J2Y8vaLbTCGbF9OXPtCH703 By/sudQ0IydPKUNFxlr/33C8XbEpYAWgBAjJg2kMJsVzBDHwiGKdcYZ9ukcBuQv2LgCCEV+l7c4M rrIryeQ2o6grLZMCGqkA8K9HNOt3nD1t+kBM+7+t+WM4QPiHTc2QtyPQXfaWAVHXNtcabP7RJPsP J+1+bbydtEqKbB9s/uwI6+9nOU4z9jY7cMXRJ+zC9diI2PTs/CIQdSFXbFLmTBNfXkTb4v/G2Hpd iKg5Zuc5JWP2zJWLEt9/IxGB6x+3Kbdn5wtA6x8hUcxNENkO2N5MeTuOnegQr6fx59Ff7uMHU7GL VFwGP0fcu+NttjCA/X1YeiXkYeDdkL1tx8cun+TDu90LieUYX5wq9EkKkAItWQHi7S356KvnvhNv V8/jQq0iBUgBUqCFKND4vF3A4Uu37rbX2/bygPncyx1z1wdmoPiX+80HlIYtOQ4EiohSVR4Usep2 XFLbGVue6zWncm1S5TNe6Kvfcd72tKwqeHJqZs57I5c/1XXmQ8rqPNVt5pvaC7c4ecoNQLAfmtcK eL+rjlaXGUtsXOVVD1kouxIerdV5mthTOOREJqYiZ0lp6XwLF0B16WGBzmcT1kQmpIo9wlMGRNe/ 0n8+ijzWZeZL/ea+MXjhUz1mPd9HT8fQcS7GS+0yU/aTERuNTUn/dupGDMmKVc/1nv2G9oKX+uM5 wgw8F/h8/Brvy2FcR8V7bMbw4sA0w308gL+brunR0yIs/iG7ULvkRuDtYlfOxPEo9/QC5eYp7mhk Npt3lvvZYng4DKiqHPQOsGDEXrVi+mdZWDorLpVGCaz68Y7yVug7KUAKqIMCGL4TwzT8ekDC7Aqo ENf7CM8qInuV2qxGvF3En6vwc6jlc0MsdQw8nU7eiIxNuxmR3HnRAT5GKvj5YPNRG46duRqbkY0X p0oQrY4Jr0ThcTCfS+/djErevv/CdzMdW8GRZoTVWyOs/IKigdBrEdkuwfbC68HJX7+b2AawXS3n Nm2Sv36r+PYNnEX44c/Jyrrif1qpr1Q6Yer5tX///hifV1dXtz71KI2XWmVV6AfFfIn/MVWLySeW TfFlr1vzTvMxMfqqwmXF3xnBV6nrRP/b2ZWZXmPxuayolOHtEsXOtxabpKykACmg4QoQb9fwA9gM m0+8vRkeVNolUoAUIAU0R4HG5+2yNridP3X11ioHt0GrrdrO3PLpuNWfjl/9q+4/Q9bZrNtzIiAk Qs75yAVxXwynlL3eFycZ7P1Lz+CTsaveGb4YduWfT1jTeYExTGyOnb+OcVFRVeWbaDixB4XH7HDx mbRtb5eFxl9OWvd/I5a8M2zxx2NW/jFnG3xdDF18BfkX6B+V5OTlT9jqMGbzbsyjNu2qyRij2PoC 60PILBXZfaIijj0lM3eBpUuXRTtHbtzlc+Wm2NnyRpaVnQwMm7htz88ztnw8duV30zYM32B78Mxl jJc628T5sa4zB6+2ksURRaKT07Y6n+y30vzbKevxdsA3Uzb0W2G+eb9XlIT35cyKWzkbcmfy9n3j /3GIScmoLI5SkZp/bQTejsaI+3phyf6we3zFdOB0q1A20Yd95VgVeN/BDSjesOFONesCeaBsOh/A liZSgBRQXwXSCph5COtwWCLteHVFvMNizN7dzRadYxE1G6+hyXn7lVuJP03d84Oe0w9z9qtw/lZ3 32yzU3FJGN6Ud383IpJ1DTx/mrP/u1mO7RYdsjp8JT4lWxzazJyCoJsJzj5h5ocub7EP+Mfh3GIz n07zDvwwY993uvt+0Nv/02zHowHhyFyr4HbEyCNKPtfBNrXHb6k9OqrvPOivkuiI5sfbFa9bxa5Q Mb365YQ8dvwu23iZGzRhNFWYMskGTfK1xl3fpd4TfB6h7zNOs53XmHcsS8gl9l69urSWFGhWChBv b1aHs1nsDPH2ZnEYaSdIAVKAFNBUBZqKt8tcFwuIpgMKyC8sgpk5ILywHheCytkeqa/IyWsr47F5 qA3DpObkFQBN46tcj7wgVyinyGVRBAOnZuTkoxLF9sg5UZZn5uOxls+Kq+SalRZE/UpFREF8Km5I saAohTD4/MLi8l1h3MJ98BrLx7vO1DHcr5QZX3mRe/eKikryC/CBcWMfuvsigltsQgpsRIJIU6y1 jsuNw9ul/eUtfCRJUMyAZSCjpDy25iJ7b1dV4e5SIB8iYzGDHmCYOeF8W0ctqBgpQAo0gAK4Kldd ZE/COkaOtq2A7esu8VBbcdUrXvsPa0WT8/bC4tLkjLyUzPyUTHyqbs7Iyy8sKSfk/ElxUQrfCp/T c/j44HKkOtxjsnILkzPyFeYHmpGamS/1prUJbueR8PzHtjQnpzQ1VZ3nkrRUOMyjtegCm1N8+8NO +JqkK104/DjeY/nF7HAEG+PFXrJ8sOusuPTK49538vfO0IF+YM/HZvWMxtt8Ndkm5SEFSAENVoB4 uwYfvGbadOLtzfTA0m6RAqQAKaAZCjQVb1dUB7xX/qq4LCfWdkGpEqWv1demlFnpa/VlG2itYhuE VOFxyZ9NXPNM91nGrqceuVHF4o/MrMIMjcbb69ZmhZOOxeUw2xtsnDdre4C9aFGJISBybzuPe4f/ LcL27G+yS8ksu6hum6VSpAApUF8FYFhxOo7NOsOew9gNuDaFzYXkbvHVPrbiAh8HubZT0/J2Ab3x o9QQs4RJ8SS6nJPLm0AKTxQDnlaMfCqvrbwg8tflU1SOwHh1nUGCy9Ug3l7tlYOzQnGCgcyhCP4W Sf/j7BvHqlzfxYMwKfQdAfCfOLBhnmzTZXbwDu9GU/JV+IRfsV20TAqQAk2jAPH2ptGdtvpwBYi3 P1wbWkMKkAKkACnQ4AqoA29v8J3UzA0g1A7x6ZVpOcLvNzq6P9ZF5/2RK2CDo7Y7p+a8vbJuIAkI l4U3hcsd1vc4e0oEzYqYPQENJKCHgD28UA+zd4zJ6BTO8ksq10QppAAp0CAK4CLdFcbe2y3FtEvX o+xo8bE996/Iq7gelcDgI1vTtLy9LhBbcHL6VKkCFN/+yCtFZFC6vqAbLr2sIuYXzxYEsK8dK3nO KPSheED2uAlrbcZetGSf7+UPztyiWEHtn5HVsKmUjRQgBRpNAeLtjSY1baiGChBvr6FQlI0UIAVI AVKgIRQg3t4QqqqkzgthUXpmB2FxH5OcnptfmF9UnJGdey0ybuUut2d7zXm6u66e2QFYxahkWw1R icbx9soi4BV4oIC/XNj7u/mYceVhtILAg/UZ8qB3hNd+78QD/I5FseBUlkF+75V1pBRSoH4K5Baz c4ls+XkO6PhFh6uv4jKEX3SPo9xfWkxKGLDmmyXeLjN/sFP0LLExMUXFkhGNZAgjr1Vc4DlVirub vDbi7TW/ZCrnVLz67uEllHgGWycMhvKjM3vHTnqELV+5Fdcvv5ZF9Ps23s8O9WAGV/nlfDmZxeay YrwRQRMpQApojgLE2zXnWLWUlhJvbylHmvaTFCAFSAG1VIB4u1oeFt4oz8AbCGJ/sZ/+h6OX/zF7 S8f523+YvvGtIQuf7DbzX330Jhvsgb282jYeDdNo3q7IDXDLj9feb6ZzDvCHS1WjrIIYwHPGmL1g wd62Y51d+VBxMTnqfHCobaSAZihQWMq2XOE2FIiGFVeZTNphJrMhkEXncOSLCdes4mVb291TN97O wa+MsiWsja+wnSku4SbjteXSUm3SKCFynQ9fgHQXL1y0tbLGnwd8Q9VCdRjAF6FBkvjcmkYhczmN v4ftcjebamaRUxxBaTery1xNPQ9bVblOsUWY1yu1jQtF/u21vXgelR+h74l57GYGc7jJJnizD3Yr PDIT4B2f6EbFLA15/Lw5H7j8I3s26AQzDGZXU8ov80dtitaTAqRAUypAvL0p1adtV6UA8faqVKE0 UoAUIAVIgUZSgHh7Iwld+83ciU8Zsd72i4lr3xqy+IW+c5/vPffl/vPeH7X8zznbDA/5Ypw7WM1U dpup/XYaqoRG83YlUYBr5Ane0ftvsyEe/EX4f9vw9+I5JZChARaACxCwt427Xuic5nHvIWmcNqAg TaQAKfBoBcpYSgELTGKz/aSLC1eTwiX2Lws+ksLmK4+uplY51I23o/FubsezsrLAkPHzk5SUdPbs WfzgW5iZxURHY22577rMsSXQXY64pUR07tJoqBK7vld25PDhuNhYVKWYRwlQY1VRcfEhJ2cDAwML U/OEhPjK+eXiUgPKXA+6nDx5EqNyux4+XFBQgEcBBfn45FtB2ZSUFE8PLzwjUNqQ4lepwrLbt25b W1raWVi5HnbFI4X7GVBVxT5K1ZZhv9D5IYNI558K+y7VVrFKSs/OzvY744fGFPOJ1yzadvH8eX8/ f17Vg88IkJPGS63VtVOHzHiOdjyKzT/L/nRhn+zhaJ0buClc5vJjNbk/xcKPTkz3DHO8zQKTWXgm /5UopjFY66A+FSEFGkwB4u0NJi1VXEcFiLfXUTgqRgqQAqQAKaAKBYi3q0JFFdchcXTc9DPQkvi0 rNCo+HM37gSERly+HX0nPjk7r0DF22uY6poTb5cVUgTvMHuPzGb+CTzItt2hSuBdDtUz5KG5YO8/ O3N3mqORNNaqLCctkALKCmAgVDzMgrMEB27SayMyeXvTlq26yK6n3XeZULwelSuq5Xe14u3Yr6Ki ohnTpmdlct6OOSs7OyQk5F5Z2crlKzIyMkC2kYdzY3yW3gPQxgKy4RPdB5g5ljev35CZmckTGYuM ivLy9EK6wNFIrGKWsHNqatrS+QuuX7t2/dr1vLx8XiFj+fn5IOooIrYIbJ2Xm4t0bGvrxs23boQB s5/yPYXP8Nu3LU3NoD0yYzrte+pu1F3EkFezXanOMmtz82NHjoYEX4uIiMBuSvtVKp4XoJ6CigYk JCTssrMT9WMLefl5yIptIT+mvLw8sYxvBQWF+MRXJAZfvYq1zs7OgYGBWACixx4dcHTKkvQh3s61 a8RJHCx5gxh8PDKLI3REv2NE8p+cpdEZFB9hi2WFLhWjqLxixaPfkXmkF9sRzM4msMKKsRvkmmmB FCAFGlkB4u2NLDht7pEKEG9/pESUgRQgBUgBUqDhFCDe3nDaqqRmzh0enCqnPLheXb41S96uJK7S wTkaxUZ7sXd3cRSgPNwqiAFwgQh938F+cmLrA7nfe3weH2MOxIkmUqBlKoCLCIMOw3/JPISbPCvZ s+Oqed6C/c+BWYaWy4P8StedSnRTK96OPbp969aqhYsl8xi+f077HM8AaJeWLluwEMh9QP/+14OD kZ4Qnzh3jl7fvn2Dg66CiM+YPmPl8uWg5QcOHOzwV7vZs2fn5uYGXQmaNHHS+HHjIiOjwJ/vo2+O o+87vYhfIZTdvn17fl4+/jbAWgSo/7Np08CBA4cPHlxQBIxfFuDvP2nChEH9+h86cBCd0ZqVq1LT UkOuh1iZWwBiDxs6rG/vPoddDqG4hZnFqJEjbSxt5DB7sWkRnS5TbiSiHlMj48iICJQCtI+Ojra1 tlm6dGlyckpSYsLihYu1Bw1aMG8+1FixZGmfXr0Rfo+d3bPbYdCgwfP158JhJyAgYNXKlVOnTs3P LzDYus3Y0KhTxy5nTp2CRIhjR3w7Xgro37ef9oCBfn5+wOyrl6/Q1h7i7ubGFaD4dn6KNfGkdFFf SubvsHQ7wv5vF8MYDTCPAmN/aAA8xlLZzn86QODRBeOXJDiF/6SkFjAM/YBzniZSgBRoHAWItzeO zrSVmitAvL3mWlFOUoAUIAVIAZUrQLxd5ZJShUKBlsDb5WOtxAoistjJGLYtiA08wd60qUQJBHgH ItjBXrZiXzuy3m5s2QXmFsXSNOPdBXm/aYEUqLsCAK2ISoWnxK8HOE/jLky4NOS4VmP23X62NYhd Tqn7JmpeUt14u9ux41aWVmg/90ZnbPKo0bdu3YqLixs1YmRKcuq5swGbNmwES1+gpw8nFhNDI3MT U3jO9OjS7fLFi+DboSEhC+fogc+DMwO2Y/DTDevXe3l5oS4BvbEQcj303Llzshs80jG5HDg4d84c IHfPEydQfJ7+vKArV0DddSZPRYA7YstXLF8B7r1542b/M2cAvWfNmJGfl3fU9cheBwcU150588zp 01iwNLdw3u+Eti2YvwB/ZmAnxIxIdQ8Pz9TU1PIUyS4GG9KbNWe+vv6KZcuw6vKlwGmTJidjSkmd PG58RPgdBL3v+GcrsqHOUz6+90pLD7m4GBoaInh+3PgJ6ekZexz2gPwjnj8+Pr5Pt17Rd+9eCQzc tGEDWmJnZX3pwsWiwsJ1q1YnJyUBzs/U0bl48ZKvr6/+rNnYF7ltWODwn/xkoFrTTUqdKRoSm8Mu JrHDEfxVsmEe7Iu90vDl8g+FvCAHwOOXZMf918p6H2Nz/ZnNDXYhkeN3foBpIgVIgYZRQPD2XiMm NUz1VCspUGsFiLfXWjIqQAqQAqQAKaA6BYi3q05LqukBBVoUb39gz6Uvivf0tzPY2kscHgIqPm0m xenJiEAsyAR+O7eFX3yO44WcYh73C9f3yvyh8uYohRTQCAWANHFWx+WydZe4aXNlxo4BEXCZ9HVj N9LLd6hxzn/14e2Ce+8w2H7m9Bn8jEAxKND+7w5FRcWHDx3eZWsHLh5wNgBG7jfDwiaMGbtjm4GD vQPYu4+Pz8qly6AaMnh7ex90PoDlPfYOY0aMMjLY4bjPMb+QO6sLvIxV48eMad+uHZxhRIrY7uIF C2+EhGIYUWSIiopcsngxiHRwcPCa1auLi4tmz9RNS+MHpm/fPlGRkWDjK5YvBwZ3tHe4dPEiFhCF npiQCKQ5cviIdatXGxrsuBl2E/4tYlhSFMSTgjbvfXD82HEsS+n4n6GeLZu2wPgFNeCr835nT3cP LNjZ2lmamGLh2DE38fRh84YNiPxHtukTJyFGfaeRsb/fGWRYvXL1+XPnINfZM34WpiZI8XL32m1l g4W1a9bcjYrKzcmBwQ4KRsfEDOzTd9uWLSZGxiD60r4/EOSPSsi/Hbqp1YRLAMdFcQpI4L3q34f5 22T4xcALZY+JsVQUn9nJ3avcw+7gMfDjvPn7MhhXJbOQE/iCUupnFaWlZVKgFgrg2sSfqRgTObOI 4bWUNrP3ai26hnc5b2UoXbK1qJOykgIqVIB4uwrFpKpIAVKAFCAFaqsA8fbaKkb5a6hAC+ftskqK tBC39heSmO0NNsePW76/aPlgQK+AA8JzZjsHCF/tYwNOsEXn2J5b3HymWApAlWumBVJAUxTAVZCU x/bcZBN9+Gin5cZKD5Kxt+3Y1FPM5Q7LKCzfLcVrp6H3VK14O+LGhw8ZBsP2xKQkDPd548aNCaPH QgEjg+0Y9hRB2ssWLwkPDw8NCV2zag1gdWpKMtZu32bg5OQkhDLZaeLl6Ynl/Y77N65dn5aWlpSY CLZcPtKoRN1jYmLuhIfDv0URwnfp3BnB5Ahox98GdyMjF+jPS0xI2Lp58247O9jFTJsyBQHz5wPO tf/jr7z8/HP+/sKtfbuBQVxMDMLL9efopadzIK89aPCVwMtoGnzUFV1r4CEPN/VcyWgd6QLyXwu+ 9s/GzdhrtBCT4dZt4bduYWHNkqXA7AD42gMHux09hpQ5s2dHRETCQH7GxMnnzl1IS01Nz0hHPd27 dktJToYvjcOu3ae8vZHzn/WbYCmP2Hvd6ToYdhZjxW7btBm+93fvRk+bPAU7BRmF0b143CA+0R40 gXg7BFTbqfLPAp7f+cczh1v8Kd7Yk+z3g9KzvAd/XuRhIPiPj/RyGfxn4FEDD6u2B/ibaBidecdV PsAKOHwehcGr7eGnhqmHAjBCxDMv61D+8gje0PxsL/5kLdMyKNPCwMd48mXEjLjhGU2kQNMrQLy9 6Y8BtYAUIAVIgRasAPH2FnzwG3bXibdXqa8SK8AgccDpn+5hj+2siHuvTAmQIs1PmLCuR9jOayw6 m4eGAhDx2iRCVeW2KJEUaEIFcHLiFEXkG4ZA7Xms/Bx+wDFGesCEqNRfDnDMLiaUUrpGGmcX1Iq3 Awvr6OjM0p01dtQYF+cD3u4ergcOQofAS5d0pk2fPGGCLzxVyviQoEsXL1mkr79xw0YgaGsrqyBp YFD8JBx3c5s6aXImRlbNL5ylM3PxvAWrV61S9CoXAeeoRIbtkD01JXXm9Bl6s+fMmqkb4H8WW1y7 eo2+3tytGzYgehxfzXaaTBk/fq+9g62VNQZpPXHiOCLtccBsrKxzcnLg2bJgjh4i85ETw7MCa8+a pnMtOJhD/vK4+oqBUyvC7AVvP3369JEjR2T8bmZiAuCPvbgRFjZs8OAdWw32ODj4+/uj2k0bNxoZ GmLhWtCVsaPH6M3UddrvnJGejhtqwHpMyIlodgSsb99qkBAfHxMTC48ahLWnpaVOmjAR3jgou3H9 hhnTdWZMnJSSlAQFFGfi7dBHQyel3430AnbwDtM9wx9bg6vf72HFc+3KnxX9rOhtMWYEwuCtQllo On/SLXe4SlvRUK2o2aRADRXACY+Z9xRlDNfUoQg+qDH+ZOUPreRLRulqMi7TMi4b4l7DLVA2UqBh FSDe3rD6Uu2kAClACpAC1SpAvL1aeWhl3RUg3v5I7RTv3POLeYSe8TUe4ot35BHry+PxcDujeCOD r4jNw8Bw29jz5tz1erIPd4mHsS2i37kzLU2kgBookJjHjt/lZsuwhXkJL3EYVNybV5zMMI3BsAWT fdneWywl/36LFa+I+6mNsqQ+vF1i4PwpmlADSwDJ+CLQdGFBgTBdEZQY2XKyc8CZ8ZXjZsnvXVi+ I7S7hDNoLh/cZvApijzsEzilFCVRFf4DH2csMzMLjvHRd6OXLVkqADgSMZQqPsUWkQ/LUqFySxaY zxQUYsxTJDM0taioCAsVsL3qBvDtltdTTnVEoLvYi5JiGMxzkxnsCFKwqrioCLuACdsS9YviSOQt YcgDrbgYaIXUEN4AlEBmMXIrykIQEU3P61RA7sTbubKaP4nTXnE/orKYRzTvYfFyGaLZEdOOyHb8 ED3Qw1b8QPGeV4TBS8OwAi3C/OpHJzbInUfzGlxljrf5Y8TbmVIkvOJmaJkU0HwFCktYeCbziWV2 YWz1JTb6JGvrzF4WXTmuCJB2XB3yxaKw8M5u9uqqIK0B27+fZRGWw3+0aSIFmlwB4u1NfgioAaQA KUAKtGQFiLe35KPfoPtOvL1u8uIOBSHBhaUMg64aXmXdjrCnqmQCCpFFiBB+0pT7z/zgxBYGMO9Y VlBSt41TKVKg7grADBk4CychXsQoB1niLFW4Hwd+xwCpYF8IGRXUFNtTh7ty9eLtCgRYpsGKZFhi 1BWx4iL4sIIbK2YTCLrKGuREeUGpII5L1N3o+frzlixaHBoayiH2g62S84NRi0oUFu5DbF6qom3y thQXFOrhpRS/yhVW1F9eLfIorhINkwtKlZSj+4pV5S1UrL8824NtQ7VAROQnU/dfAfUrqfTzgq84 K/D7g042u4hj802XWb/jVY1sLv9wyb1txQ8aouXxK4c+92lT1saBj+L6zxXOJ/EbSBMpoIkKoFPe f5vN8Wc/O7FnpQER0InjxZD7QewVJ/8DpN2YP1IfcJxZhvBxjfHj2aNXHy0tLW1tbU0UgdrcLBUg 3t4sDyvtFClACpACmqIA8XZNOVIa107i7fU5ZEqIALFGsHBHYB58Ob5x5CPEKYe+CzKAoKMdUjjx dvbuLh5dvPICj8Q7E8/pPfACTaSAyhQoYzlF7EoKv0mHacNneMF8m/TyRaXIt1et2F8uTP8s80+4 v3GlM/z+iiZaUiveLvBy034CXyseCkW+3bQNa9CtE29XPOjNe7nyTxCO/rU05hTOVl1kI71YlyPs 2/38XbNnzB7S4YpuFxwSEb8iEn4bN67BkKydXNkkX7Y+kO2+yY5Fcafrmxn8XR48TKeJFGgSBXB6 J+fzgcj94vlLkWbX+csa+JPyYwcpXl103/gDEj04Tmn5YZPCwgsW7H97WPtD/AETRivGW2wYlkVp 6tmzJ/F2JU3oa9MqQLy9afWnrZMCpAAp0MIVIN7ewk+Ahtt94u0q0VaJCeCOKaeYpRawoBS2+Qrr 4sqeM6/q5khEIlXEIwEXYGzWf1uzzq6cwOO1+iwKw1PJ4WmRlSAoFIwd7qzwWMDp90AInHxvbswh 1VAPdiSSn66Kz3qUTmk1kbBpeTuua2BkKKNOMxxZFNuj9FVxVTNZxiHAgaD4djW5JBuzGeJUV9oi YuDh0pZeyCllYBL3codz9R8uDNTxYUBSORhY6oIRCd/ajJfCk8e3bNkfB9kUXz4264m7LDKLXzs0 kQINoQAeiF9I4p4wev78ARCeHOEM/JcF75rxUmQV56rcfSssIHIDfT3etcSz9ZQChmFSFXvzys0m 3l5ZE0ppWgWItzet/rR1UoAUIAVauALE21v4CdBwu0+8veG0VbpDv5vN9t1is/y48ftXjuy/dvwl 96qBgBwAv5XfeeEWbN5ZXhYB8NfTWHyuZERDt/8Nd+Q0rWacafklHAqdS2QON9lEHx66qbVVCuYU w6XJN+bG3F3h/d3st4NM358PRiBPGnFCNS1vB+nF4J4O9vb2u3bR3CQK7N2zJy01lT/1ID8Z+dKl BUkBpQ4XaXnF5SQTHWhvN/brQfb5Xm4Ij+faj8s/iVUugMCjF1aIh8fwFnhh7fv9bNAJ3h2bXGNu UbxHBt68lck7ZTzfhAEOTaTAAwpIXXNSPruTyaMvcMLgNQqjYDbrDOt1jI9n+iSIOnpqDJ6CNy+q jVrH34p4JIQ/CD+wZ9/tZx1dmc5pZhnKApP5yBeKU+ULQXGtWCbeXlkTSmlaBYi3N63+tHVSgBQg BVq4AsTbW/gJ0HC7T7y94bStpmZEv8flsrAMdiiCO3gAflb9LrwcAI97fyPutg1QAFD/yR7W/Qhb ep6/bgw3Ts6eaGqRCsDCyPQ6H1iwjT37tw1n6RwTYa54aaL8fXNjfvK0O8R2BLOQNP52OYilPNXk 9lzO3LQLTc7b8/Lybt++fYumJlIgPDy8oKCQeHvTXoYaunW4xGQWcTZ+J4tdS2VHI9mWK/zp5J8u /CWgqp99yzT+wb5Y/MziRxWvDgGBolP+0J59sZd1OMzGerMVF3iYvWc07+JplBYNPVvq0OxiDOiT yXxj2a4wfg4M92Q/OXMfmHd2sdet2fMW0oApooOW+2icV/I5VmlBuB5h2ALU5nKHXU9lkdn8PY68 SkP/1LYTJ95eh+NLRRpUAeLtDSovVU4KkAKkAClQvQLE26vXh9bWWQHi7XWWrp4FcX+kdIsUmsaj 5mDugRi893az16wfAuFxUybu/UX03TYeJ/+LM3/53eQ6N9+G8ydi6fFOMWKelTZRzzZT8aZSAMcR RxM32iBFiKi0ucFfHv8XTIrg5iqC4pRu1aU4dhB4jBKIu3W8HFHSLMYFaFrerjjWJ5AvzU2lAPnJ NNUPUfPY7sO6xdB0duAOW32R98IYURrPtf9vF0fxeMzNX0YTPa/SL63iV9EvA6Wia8bPsvCK38rD kvHCUcfDbII3r3x3GDsTx4JTeU+NsOfoHJaYx/1w4IpTVEpdttqdYvi1Ad/GAcJhwl9WtzL48AH4 Q2vvLbYhkP/d1fUIj1SHGRHvjjGLYHWcAwKqK54hSsvGfBwBDHuKVyfwyAYnyVf7+NNz2Am6RPBz o/L0sFO3cs7qU4i3V68PrW18BYi3N77mtEVSgBQgBUgBWQHi7bIUtKBaBYi3q1ZPVdWWUcgQugxX T9cItuYSG+zOPnGQLLiV7tfwVb7HF7f5huxJUx5MBdAKYtDtKH9zGRzeN66KMbNU1Vqqp4EUiMlh rpF8WMD+x9mPTvxFcpAffhf/sHt5Y+4VM9KTWYSwgEQ+/C4ofXOampa3V8bLsqM7rCTwUn/lDGqe Itqv5o2s3Dzi7c3polaHfakSY4J+Y1QLRBSDr2IoVRi543d1yTk2wouHxMMxG7D0EVHxor+u1EeL h6ToqWEXD56Px+sAtjAJgeNNp8NsmCf3ncMorpYhfGQN/JLfTOejuOK0p6khFMAvTGo+C0vnfi94 5RBHGSAdo5SOPsl6HuXHGn9KfbqXH3FEQTwrhuXF8xT0wqIjFlxdHOXKf6HJKcb8TzhUghfNxp7k 3TqevHjHskvJfJRevHYB+6PKU5VnZuVstU0h3l5bxSh/QytAvL2hFab6SQFSgBQgBapRgHh7NeLQ qvooQLy9Puo1dNnKt1og8NuCeATUe9IbyrhbR9wdHwrzYTPuAQWexe2hAfcb+e0Am3aKGQfzt56j s3nIVloB954tKH3AY6Shd43qlxXAUQbYgcUQDkRCHgc7IC3djkjxcoiUE+HrOI5Kh1hKwdF/yZKP 7tf7GLO+wZmMPFU+eeRVmrugPrwd7Avh7llZWfGxsbHR0UlJSYUFBffKymQ4XFpampWZWVxaghT1 xNqiVdnZWcnJSWJOSkzIl9xa5L2o14J4ANEAjyHQcvJv19yruDm1PCGXP8vGE23hyP3ZXv5rjBeL ELGM3hmhy+hza4rlxS+8wLYVT8/L4+RFqLwBD5VHIPR3jjymerQXN6ODJc7um8zjLruawmKyuU9d fB7v1vEyFB4WICo7s5CPnon+BTgX5jboazDCLJ4PNoMOAruAnwLsDsYGxZNlvCCAv2Swv9hr7DsU gA7g2PDcw6Nn+Jx7xfDxTTZfZnP8+AtiAOnwYeNj2aOflR3UFUG6OBZKPW+VXyWWjgcoiHLHUKcv W/GYBxypn53ZOG9+jI5H8dh49ZmIt6vPsaCWCAWIt9OZQAqQAqQAKdCEChBvb0Lxm/emibdryvGt fHeM+0q8kI74qD032bpANt6bx01hMDhlMKt4e4j7Rxm/S+NzAQi8bcfHb21/iA04znROsY2X2R5p bFbcHsLwliaVKwA4gHfSPaKZWQhbGMCGe7DOrjy4EQeCPzrBcXlY+DrWGnM+gFh32A6bXedHH8Ok tpxJrXh7Tk7O4IGDunXu0rN7925duo4ZOiz89m1wYHGpOjs7L5m/EEAeyBop8szxu+RFgxQ5Kr58 WSlbBRaTi4gQeqWCcs1ATwKhiwz3lyXiLWfDgqDoyIDWblq3oXuXrr179OzRtdvvP//i7eGB06ly ZlFEpPP2SNtS/IpEUbPiKqHG/c1Jecr3uqJV+Co3Va5B1Ha//oo236+KxkttOZe9Wu4pTs6HTQC/ 4N7onTGANX7nncL5bzXimaefYgNOsD8Ock9vAPnqHpQr9tryssC/ohNXBPJAxJjRcWCWxnlBt47n sIichx8OXErgUIf+pa0z+8uFD7/e8xjv6+GZAxQ84zSbH8DbBiZsGMxHA4HzPOzHYZbiHM6DvTEs LIzofWK5g8r5RHY5mVvfIxScO+FkMzxuANnGnyKY8VJeBgh/AX9wjETMeP6LOTmPYcBQzKDfeKCM ImDg0AczSDj6L0R3o07w8LMJ/OEFFIO1/sE7vA12YTza3Pga2xrE/zJBO5ec5+PV6p7h5jzDPPib Xz2Octv83w/ybvHLfVxb4QIEBTAsDhcZ/akQB59CKzk0XZZUFvmRC1IX/MFu9ssB1vc495NZdp7t vMYcb7Pjd/kuYFD7mBxO/qucqjltqszfQInE2xtIWKq2zgoQb6+zdFSQFCAFSAFSoP4KEG+vv4ZU Q5UKEG+vUhYNSqx8+4YUhMEjgn2UF/ufAw+4wl0nIq8wuFvtHGgl6gt/EtBghMT/c4UPzwqTeQTL wc4UkXLgxjxSroKbaZBoDddUiA8kCE2gDCIJoRK0AmFwu8t9gQYe534v9w1hwEzE/X7le3yk7+SH DOGROIJv2TBtdw5DgCYUp8pHX3Ft81tWK96em5PTtVOXrVu25OXmXA++1rlDxxlTpkLz9IwML3d3 g63bXA8dvhJ4GSng8F7uHm7HT1w4f6GgoACB8fFx8f5n/AqLinG2pKameh13LyktLS4uOePjc/zE CQ9Pr4SEBBEtfznw8s0bYSgiLrTMzKwzp87k8Vh6ONjci4qMOOTi6nbMLTkpqUyKrk9MSjrr519c UgIcmJqe7nXCA8sY5vWUj6+Pj6+3j8/p02fy83lxVIg8G9Zv/Ou3PwIvXYqMiLgTHp6dk4sG3woN dT/h7nbs+KXAQMTtcyTO85fdCgs76e6Zk5uL4jj3UpKT3U94pKWl4WtRURH2MCU5pRTtKGNpqane Xl6Oe/ee8T1VUFg+wmno9eunfU+LvUaRhIRE/9N+Jai3rCwzM9Pt2NEDTs63bt3GqqSkFC/Pk2gw /l2+FIgsSJRn0fKcrKwr/qf5xhps6t+/v5aWlq6ubn22YGxsjEo++OAD/CFXn3qobPNTAENXX0zi bNngKg+6HnSCR0Tj1x4PVUXHjd9/9N0Ia0dfgDj5ckQv9Q7VPViv3KFUTpFRs1hAZ1TNLAD1wz4F xJY/H5athukPa4ZSg8XXyvtVqxRUspMLC3khMqTGK2P4ewni45kFRsIFwMerBFN9+fMIjFiK5wIP GwAXP0MN+VOk4nOfeLuKBaXq6q0A8fZ6S0gVkAKkAClACtRdAeLtddeOSlarAPH2auXRvJVV3vEh kOxCIh8JbvtV/gb6CE8eD4Y33/HW8yPu2eU7cdwpiwg66bVr3JPirfkv9vF4OQSYIdYaMXKbr3BL E2wFb22DIYAMI56tGY/ZCuiH4D0EMfrFs8ORzDqUK7AggE3y4YY/fx9m3zjy1w1wF3//XXXIKBh7 lUwAo6eZMATOIQRx6il+gw8OE5SiHCmHQ1zlUda8k7X2LVY33t6lY0fjnTvv3SsDRR83akz/vv2w T9eCrn775derlixZpL/AwsQMKcsWLenZuYvBP1tHjxi5Yuny4uLi425uXf/uAC8XrD3n7//1p58V 5OfnZOd8+b9PF81fsHHtOoTNh964gbVzZ83+Z+MmuNMIyHzr5q2enbvCvgar7O129e7ec/P69auW LuvUvoOXpycST/n4DB0wODeXY/NrV69998XXebl5sTHRv7f9ZdrESUvnL1q9fGVGRgbYtahw44aN f/z6a2IirxCTgNcrliz96+dftm/dOnbkqGWLl3DyzzhRnzF16k/ffHfwwEEUx3Tu3Ln3//t/C+Yv APnHFt/59xsBZ/yw5pSv74C+/fRm6u4w2L5wwXzB50tKSv745dcfvvr62rXrKIsK3Y4c6dW9J9RI TEjAjixZuHD92rVHD7sCofv4+GBDi+cvQIOtd5qCycuwXW458XZ+DGjSTAUe+RuOrhMPatG/nE9i J2P4w254oeCRK/qF5ReYnh/vdhGjjuhu+KJ8u5/Hsb9pw01sgOhr5CpfZR/UzBKNOTkHNkdHjBFw vtnP/nDh4f1wyEcPi84aLwYaXePx/IjkF1bqePVM/N1SzWn1yGNXTVk1WUW8XU0OBDVDVoB4uywF LZACpAApQAo0vgLE2xtf8xayReLtzftAV74xRIrinFXI/OOZyTUewY43svlwnFLEV3UcXkB4pc+H 36c/Z8Zf8YbXzXBP/iY4mD9eVMcYcHiRHG+gC3CnnkcBAep4VAHi7RXNPXZ2XOVvjoNydHTlYerc lbfKWUmZavQ05mF1ePCBJyBbr3BHffF4Qj5AirJUPpSKa1vIsrrxdlDxzRs3Ixb9mOuRn777/pDL IRwIxLp3bN8+PT0dFBoTUlYsXoYYaQDnyMhI7UGDUlJSTnqdHNCnb042t/S9eP78H7/9jjDy7Oyc 777+5tLFS8VFRYP69fc84Y61y5csNTTYLvP2O+F3hg4cnJycjEq+/PwLT3d3sYk1q1aPHj4clQT4 +Y8bORqx9ygbej2k/R9/Ibg9Liama+culwMDpRaBXfNwccHbEd/evl17B4c9rq5Hjh45ChSPgmtX rxmqrY2Fq0FBHf5qj9h7LMfFxk6dPGX5goWLFyxCC5Fy8cKFX9v+0rVjZ08Pj/z8/K8+/ezCuXMl xcWDBw7c73gA2BwTf1CA3xzGzgcEDB4wEHB+y6bNKAtdsIMjh48oKS1BPZ+0+TglJRXNk6Ldy06d Ot2vew/+lZe/xy1oFGbRcuLtkJGm5qeAeOZVzX7JHcTDFtBzIXIeo6zC0AbDvO67xbt4DAsy/yx/ HIzh1zEqK9xXMKg6bMb5E+FqOqkq+7gmTDTmIeivWPIH0xjGtMsR/tABRj3omg2CODmHFw1MXfC4 H0/D+Q/Fg3/wVP5ajc7NeBXx9mZ8cDV014i3a+iBo2aTAqQAKdA8FCDe3jyOoxruBfF2NTwojdYk 3HtWnpAI53bEbOMmXYwsNtab9TvODd4RRAfODFtU/lZ7ze/QkVO8IS4HycNGFXHy2ypmQ37Lj8A8 hOd9aM/f4IbTLOLDex3jJirjTjKd00zPn7P6RefY0vNsxQXuzbIhkMeTw9YVAB/GszBQhUcuvF4t Q7kvOr4iES/pI8Omy2zdJbbyArd+hV86Ivxn+fE64bwKD1i47sBTFyHlsGP9Yi+3foWz7pNAEIjn 3yq1UB5MTbi/yjHqNVEAIes7+fB52Cm8UwAyAONZNAlvAVxK5g63lacqD0rlbC0zRa14O/zb+/fr 369Xb+1Bg3/5ue3iBQvBhnFcwNvb/9UOX5cuXOx29BhSVi5bMXHixKArV8zMzCaOm5Cfl+fl4Snx dh7ffp+3Z2W3/bntPL25erNmTxgzDhYrWFslbweavnDh4scffATwDhaN6drV4J9/+BHWNAH+Z6vk 7d27dZ+jO2vp4iWmRsYF0qCoglojvr1Lx04D+w0AJB85ZFhcXBxqA2/v06v3ad9TCxcs3Lr5HxBv JDrY28/Xnxd+6zacczDCKlKuBAZ++9U3hjuMekgh919/9tml8xeio2O+/eprPINABmxCAvtlQPzY kWVLlnh6enX4s11uTq7M24uKi/FsYsyoMaOGj9i3dx/2CAVhetOhXfuVy5bPm6vv7+cHjxrhXS+o O/F2SEQTKVClAnXsQaRhu+E8j4fgGGkUFuv4MyA8kwfYB6dy23aYt+OvAhi5w18dpu54pQvPzWGx vjuMv9uFV9tsbjBbaYbpOrg30jHb3+QzIvMdbvFn1siPed9t7na+X5oPRrCjkkU8HjeDkwcmcc8W 0HI8jsfDbjBz+NfBwgUXft2mOqpRt41pTini7ZpzrFpKS4m3t5QjTftJCpACpIBaKkC8XS0PS3No FPH25nAUG3gfcKuLgVNlN/Ic6Zb8aip3O8G77bA27eLKI+U4o64JglYKjUMRlcxK1YonAvWsuXKd 1aQYc/fXNvbc7n6yL38cAJ4AXx2MHweIgcB1CCjQqNLhIiCgJEg1X9WKt0v+7Z13GOzIz8uHCwog c0hICBoP3v53u/bwVD950hv2L0jZsGYtCHy73/+cpTMTFugcNbt7VBHfnpX94/c/7rbb5eHhhch5 T8kf5iG8PeVcQMDnn36eiphw6QS6ERr6/TffpqakgLePHzVGxLffCAlt98efIr4dI7raWtt4n/Q5 f/5CUUmJhMF52Dl4+5+//BoTEwNLHEwg22jw2lVrunbqDDj/e9tfrwZd5bSdsW6dOi/Qn7fHfs9f v/1+8fwFpIC3f/XFV1mZmfDJQbO//+pr8PaoiIgfvvs+KTERGSp4O0Mk/9DB2iuXLDXaYfj333/D 9AabEfHthUVFWM7OznY97Nqjew+4yiCs/dTp0906dvY+6e3u7hEZFcUD8iV0T7ydHwmaSIEWrAD1 mPU/+MTb668h1aBaBYi3q1ZPqo0UIAVIAVKgVgoQb6+VXJS55goQb6+5VpRTKFDN3S7wGixnr6cx 3zge/IaA87WX2Gw/HkOOCHmMOwa/95+cufE74tjftuOB34iWx9hwnNVXg7IbeZUxj7dHqxDoDpt6 hPR/sod95chbDvdXmMn0cWNjTrJFAcwomEeqwxsHoYB4JPGwqRrFHlaE0qtUQO14e8dOxkbG4MMY M7Tdn+02rd+AZgs/GUSnw00Fq5CyfPFS+MkALAs2jk+Mo9r2x58S4nkQ+BHXI927dsMCmPP3X38b GBiI5bGjx2zdvIWXlfxk4J0OOxqYIwg/GQxLGhMd/fVnX/l4ewtCvn7d+tHDRmAg1OCgoL49eyVL fuwnTpwYOmgw/n6IhZ9Mpy4YFJU7vKBNsHmp8JMR/u3x8YkyysZG161Zqz2I+8kAucPvHYVuhoV1 bN9h5fIVa9esQTy/sZEJ1oK3w9MGJjaBlwIHDxzc7vffLwScA7Tv0P5vlwMHi0swaDBDs4HToyIj YWizaePmzZs2DujTD7sGpxjO20eMhCylJSXYQVR46eJF7QED8eLA6TNn+nTrzsuivXwmPxnIQxMp QAqQAipQgHi7CkSkKlSqAPF2lcpJlZECpAApQArUTgHi7bXTi3LXWAHi7TWWijLWVwHQ+MJSHuyN N8TTCvhL6xiYDO+tx+ZwXh2Rxa6msNNx7Egkf/0chjDwm4X9C4zlYW+OEUhBubsf4bgb0P7XA9x+ FgOSfr6Xm8PDyhX0/g0bTsgB8OFJ+187iZM7cCOX7/ezX5z5oHIwjel+lJN/2NSgznHe3FIGBi/c +vUqf/n9WCQLSGAYMQ3tQasS8lhSPnd9wSv22UUsr5gVlDLOEHkIME1NoIC68fZffmprYGAAgI3R TieOHdfx7w4Y/fNacPDP3/+0cN6CeXPmrlm1CjItXrho4oSJWCWiyvEJvNyvT184qGw32PH3X+0O ubggW1ZW1tdffLVk8WJg7d9+bns58DISVy1f3qdn74XzFurrzb16JSgiPLxvz97J0nipdtY2f/3x x+aNm5YvXQ7YHnr9OmrOz88D+h49ctQ/W7bA5QZh5xhsFP7tf/7xh86UaYvnL9Sfqw+zF5zFwpVl xYoVP3z3A8g/KLxoHja6Yvnynn93xIK/n3/7P9vBrX27gUGf3r2Li4qR6OHujrD53Nw8GMK//957 wOPYtUULFnz1v88C/P1xcXi5u//y089zZs/ZsmnTkiVLiwoL7WxsZkybDniO4kddj/7+6+8o5XH8 +ID+A2AO73fGb4T20K1b/sHXVStWwpYH/u0Ikl80f+Gi+YuwI9iuooW7aDn5t0NMmkgBUoAUqK0C xNtrqxjlb2gFiLc3tMJUPylACpACpEA1ChBvr0YcWlUfBYi310c9KqsqBdQtAlzd2qMqnTW9HrXi 7YUFhXvt7f3P+MHeHNO5s2ftbe0yMjMT4uJtraxNDI2NDHZYmJlDc28vr2NHjyJaW0BjPoAoY0lJ idYWlsuXLDvp4cUHBS1jCBQ3NTHduH6j0fbtN0LDkAdU3NfH18LE1NTQyGj7jrAbYRjPdN/evdk5 OViFcHeMjrpy+coeXbtNGDtu7549GLQUVScmJFhZWCxdtNjb6yQ2ipozMzL27rY332kK83YTY2NE 4yNROLTAf8bWwjIrO1uEkXOUXcZ8T3ofOeiCTeTm5u62sctIz8CIqKDo2CZ2AV8Ntm5LTU1LTEg0 NzWDATtqi4iItDK3iL4bLfYO8fC603WmTZ6yZ7c9It5RFjHwyIbmZWXn2FhYZmZmRdy547x/P/Yd /N/M1GzF0mX79jhkZaElLCrqLvJgr02NjPbv24cxWIm3Q3yaSAFSgBSovwLE2+uvIdWgWgWIt6tW T6qNFCAFSAFSoFYKEG+vlVyUueYKEG+vuVaUkxQgBZpWAfXh7ZxXP3RW9j8pd0ThDuRiVRmgNC8u EXXwbSyXpyADEiUuLdVfuary7Yr8vCxjcGgH33Y/caKgsFAqJeWR3sNQqLm8oMhQsbn7ifeBtoJT ekVt5c1AnvstF7svtbZybThPXA4cGDd2HBYqKkHZiuKirMInODx2pEKK+0XksiL8vqLxnNtTfHvT Xoy0dVKAFNBQBYi3a+iBa8bNJt7ejA8u7RopQAqQAuqvAPF29T9GGtpC4u0aeuCo2aRAC1RAQ3h7 VbhYgS0rMOTyIPPqUqosqJhYge5xPkj1SGwczLwKbF7jhinWX+WyXLm88GC2oqLC3bZ2cGivaNWj Nl2bBpOfTAu89mmXSQFSQFUKEG9XlZJUj6oUIN6uKiWpHlKAFCAFSIE6KEC8vQ6iUZGaKEC8vSYq UR5SgBRQBwWaG29/kFHfp+51SBfU/SH0u141174x4OGI5BcjpVYT017nVhFvV4eLkdpACpACGqoA 8XYNPXDNuNnE25vxwaVdIwVIAVJA/RUg3q7+x0hDW0i8XUMPHDWbFGiBChBvrzOjbvyCEml/VFh7 7WE+doR4ewu89mmXSQFSQFUKEG9XlZJUj6oUIN6uKiWpHlKAFCAFSIE6KEC8vQ6iUZGaKEC8vSYq UR5SgBRQBwWalrcD8wL2wmOc5iZUgHi7OlyJ1AZSgBTQXAWIt2vusWuuLSfe3lyPLO0XKUAKkAIa oQDxdo04TJrYSOLtmnjUqM2kQMtUoGl5O0hvXn7xndj08Diam0aBiLiM/KJSWNPTeKkt8xeA9poU IAXqrwDx9vprSDWoVgHi7arVk2ojBUgBUoAUqJUCxNtrJRdlrrkCxNtrrhXlJAVIgaZVoMl5++mg 6Me7GmkNNNcaYEZzoytg3rqf2fXIFP6WAWM5WVlX/E+XIdS+wab+/ftraWnp6urWZwvGxsao5IMP PsAfcvWph8qSAqQAKaASBYi3q0RGqkSFChBvV6GYVBUpQAqQAqRAbRUg3l5bxSh/DRUg3l5DoSgb KUAKNLkCTc7b/YNjW/c31RpprTXSiubGVmCE9cvDrcPuphFvb/IrkRpACpACmqsA8XbNPXbNteXE 25vrkaX9IgVIAVJAIxQg3q4Rh0kTG0m8XROPGrWZFGiZCqgTbwdyp7lxFSDe3jIve9prUoAUUKkC xNtVKidVpgIFiLerQESqghQgBUgBUqCuChBvr6tyVO4RChBvf4RAtJoUIAXURgG14+3DEeVeP+Y8 ylprmBWf619VPVui/sWJt6vNlUgNIQVIAc1VgHi75h675tpy4u3N9cjSfpECpAApoBEKEG/XiMOk iY0k3q6JR43aTAq0TAXUire3Hm3TYZXb13rOrUbUnrqPsHpsmOXHUx06LHWdttNnsdWZbuvdf5/v wul9HWpTf1RehxZCBzyDUFSDeHvLvOxpr0kBUkClChBvV6mcVJkKFCDergIRqQpSgBQgBUiBuipA vL2uylG5RyhAvP0RAtFqUoAUUBsF1Iq3fzDZPjUjz8H92pO1DU0fYdV6iIXxoaDMnIKcnIKImLTb 0anJKTlZ6blPDSPeLr0vAMw+yOK/E3ZVWOWLRPJvV5tLkRpCCpACGqsA8XaNPXTNtuHE25vtoaUd IwVIAVJAExQg3q4JR0kj20i8XSMPGzWaFGiRCqgbb0/OyNt9ohJvHyExc0B4EZ6tGKEthXk/pm2x 1yOktKTU9EjQt1P3aPU3wfzqCKsfZ+7VGmFTHtEtorsrV4J0xQpFNpH4QLrUBpEi1spViVDz8iIV TcVXubVKOZFfcY94tgokLpZFWVGcZ5aqkr8qbg6JiunlG61UZITVC0MtTl+OdDtzqzWcdpCtvBLi 7S3ysqedJgVIAZUqQLxdpXJSZSpQgHi7CkSkKkgBUoAUIAXqqgDx9roqR+UeoQDx9kcIRKtJAVJA bRTQDN4+zPL5YVZjNh5fZuPXa7GLlrblfWIMbtzfdPzmE1B0sfnpxweYaQ2R1gIpAywPtagAy1ZP aVv8Pd95kcXpSds83hyzi2dD2eFWP87a/94UB06t8XWE1VuTdv86x/mF0bY/zt7/oQ5wfYWZ/Air T6bt+U3f+TFk0zb/ctqeuSY+ukbe7yJifDDfyrPjbNvqOWGLf85znmPs/eY4u7aznV4dbfv6aNsp Wz10tnu+PXaX1jBpo6hhiAU2MWWb52LLU9/N2q81FOlWz462/XXW/mdG2/xnrJ2eie+kLe7/Gmmj pW3x+kib6Qae+iY+b4yxK28nb4PFa+Pt9Hb66Jn4fDzZQez1S+Psfp+zv9Vwq/8buwtFpvzj8Spy DrNqNcL6d739qRm5vpfv/jbb6X/YL6RDIvKTUZsrkRpCCpACmqsA8XbNPXbNteXE25vrkaX9IgVI AVJAIxQg3q4Rh0kTG0m8XROPGrWZFGiZCmgAbx9m+cb43UE34nPyi5PScnGYrI5ebY1BUUGMBTTu s/PqreTElOzWgy21RpVjcwkmVwRyj7B+dbi1i++NktJ7GdkFufnFebkFfVcc5pS7105ExTt6hmr1 3SlqW+AciE38Om3vndgM1PmfkbZiQ6+MsUtOzb4cGtd6kPksA4+CguKk1Jzs3KLcnILOC11aDbP8 YslhxsoWm/jm5hVlZBWMWXmEN9X5clxiFlp+r6wsLSP3u1n7ODAfYvHp9H0JiZlZuYWJ0h6tszv7 1HCrNjp7SktKltv4RcSmo2YUD72T9Juec1R8hqjhdnTae+N38V3Ttui+3DUjKz8tMz8tq+Beaeno TSfQhk4r0Aa23PQU2paTx2uITcj8UmfPu+N2sXtlaEPJvXsFRSX+1+KeHy3tF/F2aEQTKUAKkAL1 U4B4e/30o9KqV4B4u+o1pRpJAVKAFCAFaqwA8fYaS0UZa6cA8fba6UW5SQFSoOkUUGvezmPLrd4Z vwv82eNqzAdjbF/Wthi47HBpccnEbV5STDgPUP955j4Qba/zd57RlqLZR1g/McLqtdG2YkYY+dMD TX0uReXlFf2qf+Df2hbvDrc+HRgFst17+WGtHsag1rZu12XePsvhPI7G15Mdhq1zw0L/tW7A44ha 77aUo+wei12GrDt+7969qZs9Xh9m9fZQK68LEclpue+P3/U/vQMFhcXg+dMMvb+c6dhe3zmvoDgt K2/IphP/GWLZdfEhcP7z12K0+ph8PtUhLTPP1i34v8OtXhpsMcnQGzV3WHQYAfCxydkZmfkjNrv/ 31CrReZnysrKcnLzdQy83tS2HLzuOHi+08lQrZ47uyw9lJdfNNf89OtDLV/StrA8GoSvn0ze/dv8 A7n5Rcnpub1WHn17mJX2+hNljNm7h7QaZP7t2F0JqdnHzoa3GWX35pjyhwgU3w7laSIFSAFSoJ4K EG+vp4BUXOUKEG9XuaRUISlACpACpEDNFSDeXnOtKGetFCDeXiu5KDMpQAo0oQJqzdslL5RRWz0R lz5kuevTQyyfRkR65x0XbyRcuHpXq58pjzwfbtVpwcGiotJDp8KeGioFtw8wW23rV1xcCioOQG3o eKHPwkP4ss3x0mMg56OttUZZ/6TjCBhu5xWq1d04I7sK3v7D9L0vDrHMzMrfffSq1mBzre5Gbn63 4pOznh5gdjooOuhmglZfEzTmsQFmA5e4IHC8ywrXj6btw3HcuvecVn8zreGWf+o75xeWOPnceHqg mdYYG60u2z0Cbmdn5/97tPXSXQF5+cX/G2Vbvke9dmZk5q22DfjvCKu4lGzfy1FP4sEBAvgHmmbm F584H/FkXxOphh037iQH3krQ6mHkGnAnNin7TW0LXsMQy9b9zbHpMRtO/DJnf35hsfWxq61gcYMa eplcDYsLu5P45Cibt0Zao/2Hztx6GjY7WFXuGE/+7U148dGmSQFSoJkoQLy9mRzIZrQbxNub0cGk XSEFSAFSQPMUIN6uecdMQ1pMvF1DDhQ1kxQgBZia83Zw4w37zt27VxYYlnAuJP58SLxPUExqdkFs QoZWbxPB27+e5gBn8oCr0a1FfPswy6/n7B+13UvP8kxxyT1jp4uTtp7kxB6R6sJ/ZqT122NtQbYv hsZp9ao6vv2nGfsQiL7N6VJxYTHs0z+btDsrp3DDvgvP9jCOTshMTM87HRSD9mC+EBIPqq9j6P3R 1L04n/otc+V8foSV4O07Xa88ITzb+5vaHrmSl1Pw7njbfadv43HA2dD4c9fjsEe+12IRGL/bLfg/ o20SUnN2u19txe3crbGDmTlFh87cfmqguQTPd/pfjoq4m/LMEMug8OSs3AK/63HnQuLOX4/3421g M3Z4t53tWFhcssjqtGTzbqU1yNzVOyQ+IeP5sXZvjSjn7eVPJVA/V4N4O/0IkAKkAClQXwWIt9dX QSqvagWIt6taUaqPFCAFSAFSoBYKEG+vhViUtTYKEG+vjVqUlxQgBZpSAfXn7QbOl8DbR2883mXZ 0S7L+dx1+dHfFrpIY49KDu19TC7dSkzNzENEekXYNgZLtfxwin1uQbGR00Wd7d4lJTJv55z5nXG2 sclZ50Oq5e1DLX5begigXt/w5DwjX8SN/67n1LqfaWJKjt+VmI56B0Vj8NltxdGXJtl/MnM/DmT/ B3m76ZErTwh43s/U+sjlvOyCdyfYuJyNSEnPHbLqmLxHPVYe/Xjm3rcn7AZvd/AMfkwU6cN5+2G/ Ct7ec6ff5ag7d1OeH2oZGpkSFpnSd5mrXEOvVcdem7T7twUHOW+3FrzdWmuQmcvJ64mJmf8i3t6U FxltmxQgBZq5AsTbm/kB1sDdI96ugQeNmkwK/D975wFeRZW+8YgUQQRRRLD3spZ1d93Vtaz/XXVX XXtdaRbsDV07rlLEgkrnAgnpoSb03nvvvYVQkkCAkJ4QEhK+//vNJJPJvTchpN7yznPhmXtz75Tf OTNzznu+834kQAK+Q4B6u++UpYedCfV2DysQHg4JkECZBDxQb4+csbk+ItWhOeP1YtD7jvnI8tkW 0ekwkHkhSF/PDtUYciM8W/9/biiyheIMwyZvaAHJHb9FRtF2Ide+MwJm5oPHrnnqm0kIdO89bn09 MwC+XfCDX4xH2tCQGVsCHnUcScmatjw24Jkh0OrPei5w4PTN2NRfPhiNLbfuGLorPgUGMos3HNgQ e7hB+5CGLw5btTVx656j58Dj5blAPRjYxeB42gbf3LlCevulr4f/PHZ9zon8m96M0jPCiWAjWHl5 2BVvDq+I3o79zly3P+FIxsXgg2PAFnAM2ELb4Pu/LlNvb23Et0+CnwwQmcHtjG8v87LgH0iABEjg DAhQbz8DWPxqrRCg3l4rmLkTEiABEiAB9wSot7vnwk+rTIB6e5URcgMkQAK1RMDj9PbU7FnLd7/w 3fjnu056vtukZ76d+Pt3hh86kpGUnPnvLhMCnhgc8PiQv30afcGbkSqqm5J7x9CzXwoePmNzQcGp VdsS3v51ZquOoee1D33lh6n5JwuGjF8X8MiglZsT8k4WtO0+JeDBAc3ahezaezQ/v/DmD0YGPD10 3NythQWFn/SfE/Dk4M8HzIOvO9Cr3t4uBA7qfaLXnsg7iU9e7DZZ9f/2IW8N0mj54TO3NGkbinSr cHF/8ttJjTqGVVBvv7xT+O/fHo70ppt2Jt3+/ghsAcY1/+4y7tz2oVe8VQG9fX8yotYf76rJW2ct i23VMQwW9AEvBj/69biG7YLv71KW3h557otBO/Ylxx9Ka2kMRhRJ7vSTqaXrjLshARLwZQLU2325 dL3z3Ki3e2e58ahJgARIwEcIUG/3kYL0vNOg3u55ZcIjIgEScE/Ao/T2q9+OijuYmnU8Lzv7RHZO XnZOfvKxzDveHflgl3Hb9h3Lzsk9cCj9wOH0tLSs+7pMNCzKTRNyFd7PhdN7zNoDSem5uXkZGcfT M3LSs47Da/2zoQsQQN7m9ci5a/cfz807cDA1OfX4noNpLyBgHmHh7UJue2/krgPH8vNPHkvNjj+c FjJpA6Li74R/O/T2tsHXvxmZmZ23e//R5u3DVOFvH9LopaB+MWvTM4+npufsP5R2LDVnxab9rV4N v/HjGDl16qn/TQp4Sf3b7/0sJiUjt9/4dWdDpce4wLNDAyesTU7OuvyNCIj8T3Sfeig5MzMr90BS GjKfJh5Kg5nMZW9E7juUFj5901mm5fvTQw4mZ8Us2NUAAfDIcPrkkNkr9mzbfTgAWV+fDfw4cFFK eg4yuh44lJackr059nDzl4Lv+Xp8WlZul9AlRXBeCBwzc3PcgaPnvhaOnXaPWoHRhLSM49hm/Xb0 b3d/RfBTEiABEjhTAtTbz5QYv1/TBKi31zRhbp8ESIAESKAcAtTby4HDP1WFAPX2qtDjb0mABGqT gEfp7Wd3CG3ZKbLVG1H6ehOv4Re9EdUAUnP7kHNfDrn1o9Hte059vtvklq9EGHIx1G9DNDbdUSCG tw1u3ja05dvDH/16/D2fj73o9cjz24XVN//aLqThy8F/6Dy6449T7/187HkITYecbv6pbci57cOe 7Drp0W/Gt2gX1qhjaKtOUforM36+XchFr0Wc/0pEyffbh9RrG9z6lYhnu05q//3UqzuPPr9dyFnt Q85uH3pxp6hGHYpk+QYdQnEW50HoNrfTPqTZa+EXdYqsZ5wODvW8tiH3fxHz6o/T/v7VuAs7RNRr H1rPOP1mr0UUHVi7kJavRzZ/NcLawvmvR1z4uvEW22wX0qxD+JPfTuz4A84o+vz2YTiGBh3DcPDn vlKy0+avhmMjusH2IXCS/917Izv0nHrT+yOLt8l8qbV5tXFfJEACvkmAertvlqs3nxX1dm8uPR47 CZAACXg9AertXl+EnnoC1Ns9tWR4XCRAAs4EPEpvL9KZTRnc6X/I1FDIXxym0d1YVwHZJrYberJ+ qGp2KNRsfZlv7X8yt2D+CZ9bL/zKdIy3PrF+1aFYlseKuUdTP8db/AQvbM08Huu3+ELRd8zjNH1v irdj/Qm/wm9fqMAWzC1bP7RW8DnM2MHE7TGUnIIxdmD+yiRgjTXQT8b5guB7EiABEjhjAtTbzxgZ f1DDBKi31zBgbp4ESIAESKA8AtTby6PDv1WBAPX2KsDjT0mABGqVgNfo7XaRGetOYnuJ1g2J26Zs 27/mtAXrJ066tP1z/ZOpmdvEeetD65v2LVsfnnbF/qtyzqis7eiBFZ8pvmPfWlk/sX9ufp96e61e bdwZCZCAbxKg3u6b5erNZ0W93ZtLj8dOAiRAAl5PgHq71xehp54A9XZPLRkeFwmQgDMBr9Hb7Vox 16uLAPV25wuC70mABEjgjAlQbz9jZPxBDROg3l7DgLl5EiABEiCB8ghQby+PDv9WBQLU26sAjz8l ARKoVQLU20tcZapLxPai7VBvr9WrjTsjARLwTQLU232zXL35rKi3e3Pp8dhJgARIwOsJUG/3+iL0 1BOg3u6pJcPjIgEScCZQ93r7psTGzwxVaxT1VOGrtgm0aBuyc/+xwlNySiQrI2PDssWnTmG1ppZn n302ICCgc+fOVdmBw+HARq655ho05KqyHf6WBEiABKqFAPX2asHIjVQjAert1QiTmyIBEiABEjhT AtTbz5QYv19BAtTbKwiKXyMBEqhzAnWut+/Ym9yp+7SOv8zs2Iuv2ibwSq+Zb/WafeBIJvX2Or8S eQAkQALeS4B6u/eWna8eeXXp7SdPnsToNsa433//fV9lxfMiARIgARKodgLU26sdKTdoEqDezppA AiTgLQTqVm8vKKzJWGpvKYO6Pk6UgVkQjG+v66Lg/kmABLySAPV2ryw2nz7oatHbc3Jyfv/730Ns x9KrVy+fBsaTIwESIAESqE4C1Nurkya3ZSNAvd0Gg6skQAIeTaBu9fbCQimA2MtXnRMopJ+MR1+n PDgSIAFPJkC93ZNLxz+Prep6+969e++8804o7Q0bNnzqqadWr15diEYbFxIgARIgARKoAAHq7RWA xK9UhgD19spQ429IgATqgkBd6e3otcElHP/48hACqH3ZmZkbltK/vS6uQ+6TBEjAmwlQb/fm0vPN Y6+i3h4XF9e0aVMjsD3g5Zdf/uGHH5YtW0a93TfrCs+KBEiABGqAAPX2GoDKTSoB6u2sByRAAt5C oE709nVLFm5Zu3LrutV8eQ6BbevXrF22ZD31dm+5dHmcJEACHkOAervHFAUPpIhAVfT2hQsXtm7d GmL7eeed16lTp57GQr2ddYsESIAESKDiBKi3V5wVv3lGBKi3nxEufpkESKAOCdSJ3l5w8mTeiRP5 eXx5GIETJ1A0p2rSU//ZZ59FF75z585VqfMOhwMbQQY3NOSqsh3+lgRIgASqhQD19mrByI1UI4FK 6+3R0dENGjTAQ7ZRo0affPJJt27dunbtivh2+MnUaPOgGs+dmyIBEiABEqhzAtTb67wIfPUAqLf7 asnyvEjA9wjUid7uexh5RhUkQL29gqD4NRIgAS8iQL3diwrLTw61cnr78OHDzzrrLIjtbdq0+eqr r7p37w69/fvvv4+IiDhy5IifoONpkgAJkAAJVJ0A9faqM+QW3BKg3u4WCz8kARLwQALU2z2wUHz4 kKi3+3Dh8tRIwG8JUG/326L32BM/U729oKDg008/NcX2K6+8skuXLlDasfTo0WPkyJFJSUkee6Y8 MBIgARIgAQ8kQL3dAwvFNw6JertvlCPPggT8gQD1dn8oZc85R+rtnlMWPBISIIHqIkC9vbpIcjvV ReCM9Pbc3FyYxiCsHcvNN98Mv3a8hdgOG5kxY8YkJyfjqGgmU11Fw+2QAAmQgD8QoN7uD6VcJ+dI vb1OsHOnJEAClSBAvb0S0PiTShOg3l5pdPwhCZCAxxKg3u6xReO3B1ZxvT0zM/Oxxx4zxfb777// u+++MwLbu/30009TpkxJS0vzW4Y8cRIgARIggUoToN5eaXT8YfkEqLeXz4d/JQES8BwC1Ns9pyz8 4Uiot/tDKfMcScDfCFBv97cS9/zzraDenpWVZYrt9erVe/DBB63I9p9//nnq1Kn4K86Uke2eX9w8 QhIgARLwNALU2z2tRHzmeKi3+0xR8kRIwOcJUG/3+SL2qBOk3u5RxcGDIQESqBYC1NurBSM3Uo0E KqK3x8bG3nrrrYhsh237888/j7B200bmt99+W7Ro0fHjx6vxeLgpEiABEiABvyJAvd2virs2T5Z6 e23S5r5IgASqQoB6e1Xo8bdnSoB6+5kS4/dJgAQ8nwD1ds8vI387wtPq7UePHr3ooosgtjdo0KBj x47du3e3xPYlS5bk5eWBGCPb/a3a8HxJgARIoLoIUG+vLpLcjhMB6u1OQPiWBEjAYwlQb/fYovHJ A6Pe7pPFypMiAT8nQL3dzyuAB55++Xr77Nmzzz//fIjt5513XqdOnXr06AGxHZL7gAED1q9fn5+f 74FnxEMiARIgARLwIgLU272osLzrUKuot6ORc/nll6MJBA+9Y8eOFRYWetfp82hJgAS8iAD1di8q LB84VOrtPlCIPAUSIAEnAtTbnYDwbZ0TKEdvX7lyJbqZWCC2f/rpp6aNDMT2/v37b9mypaCgAAfP yPY6L0EeAAmQAAl4NQHq7V5dfJ588FXR2+Pi4m6//XY0gTC5b/To0dTbPbmgeWwk4AMEqLf7QCF6 0SlQb/eiwuKhkgAJVJAA9fYKguLXao2AW70dQVyDBw82tPaAK6644uOPP4bMDr0d8e1BQUG7du1i lFetFRB3RAIkQAK+TYB6u2+Xbx2eXaX19uzs7Ouuuw6tIKStQXD76tWrk5OT2fKpw6LkrknA5wlQ b/f5IvaoE6Te7lHFwYMhARKoFgLU26sFIzdSjQTc6u3ff/+9KbZfddVV33zzjRnZDrF92LBhBw4c MLucjGyvxlLgpkiABEjAbwlQb/fboq/pE6+c3r5jxw40ftAKaty48ZtvvhkZGblq1Srq7TVdWNw+ Cfg5Aertfl4Bavn0qbfXMnDujgRIoBYIUG+vBcjcxRkRcNLbc3Nz33//fVNsv+WWW7777juI7VgQ 3zV8+PDExMQz2ji/TAIkQAIkQALlE6DeXj4f/rXSBCqht8fHx7dp0watoEaNGmFy3y+//AK9fc2a NSkpKYxvr3RB8IckQAKnJUC9/bSI+IVqJEC9vRphclMkQAIeQqCu9PZp+2XmATmYBbdtDyHBw/AU Ak56+//93/+ZYvt9991niu1IkAqxPTo6GsFdZkw7I9s9pfB4HCRAAiTg/QSot3t/GXroGZyp3r5t 27YWLVqgFYS0NW+99Rbm+vXt2zcmJmbz5s3p6els/HhoMfOwSMAnCFBv94li9JqToN7uNUXFAyUB EqgwgbrS27uuloA+xmugXBUlD0+WdxdJn40yMU4WHpT1RyUuXZKPS54mwOTiXwRMvf2RRx7JzMyE xo5u5tlnn40VaOxmZPuPP/44YcKE1NRU/+LCsyUBEiABEqgVAtTbawWzP+7kjPT29evXX3jhhWgF NWvW7L///S9aQb/++mtYWNj8+fP3799//Phx6u3+WId4ziRQWwSot9cWae5HCVBvZz0gARLwPQJ1 pbdDVA8YbLwcEmC+BkmA8Tp7iDQNkpahclmEXDdcHpggny6TrDzfY88zck/A1NvvvPPOm266yRTb n3/+eTM7KvT2n3/+edasWZDizR+zs+keIj8lARIgARKoLAHq7ZUlx9+dhkDF9XZEsNevXx+toObN m3fu3BmR7XCSCQ4OnjlzJuzc09LSTp48iZ2xFXQa4vwzCZBAZQlQb68sOf6uMgSot1eGGn9DAiTg 2QRMvR3/Hz58eG8tLvO3HGgWeLJIcjeFd7f/Owou7pc4d+Pe+P21eHA1s6vY/QmbDmaN3HXqhhEy fkvK/n01sxsv3yr82D/88EN0MM2lYcOGL7zwAmK64CEDsb1Xr15z5szJycnBVcU+pmffWnh0JEAC JOCtBKi3e2vJefxxV1BvR1wBDGTQELr44os//fTTH3744bfffgsNDZ09ezbEdszvy8/PZyvI40ub B0gC3k2Aert3l5+3HT31dm8rMR4vCZDA6QmYejtUzZa1tlzcpuWfn7igw8B6/XNOo7f3yznr7lcu at3mopaYUFtrx1cDO7r29pbtejf/cVe9PukBA08hnv+cD6e1vOD8GtiTL2yycePGpth+7rnnwq20 R48eptjeu3fvFStWIH0qqjW7mae/tvkNEiABEiCBShGg3l4pbPzR6QlURG9fu3at2Qq64IILvvzy S0S2w0YGYjtE+O3bt1NsPz1lfoMESKA6CFBvrw6K3EZFCVRdb8f89wceeAAPUMyRR0Ouojvm90iA BEigxgiYT1Lo7TW2NKrfpFm9ZhcHXHhtwP3vBLw/Q91jgiUgsNhPxn1Ye2GD77Y0vOCShvXr1diB 1eyGG5zTpF6zVgHX/1/AO5MDgorP13GqaIihx56G519cs0fgzVtv0KBB06ZNP/nkE9NGBv/36dNn 1apVCOjCpUCxvcbuB9wwCZAACZCAUG9nJaghAqfV20eNGoUmEOSCK6+88osvvkBkO4INwsPDMblv 165dpo2M2QpiW6iGyoibJQESMAlQb2dNqE0CVdTbMzIyrLxveHoixUltHjz3RQIkQAKuBAoKChAt 804NLG+88/5jH/5w+ycRF305t2mPbQ37pKrmjNdQ07O9WHZ2J7Y3HpTz+I/j33zn/XfefqsGDq1m N/nuO2+3e++zP34c0uKbZY16H3M95UaDjv+x97qXuoe99f6HNXso3rz1t99+u0uXLpDZEdmO/x0O B4xMaVXqegnzExIgARIggWonQL292pFygyaB8vX2BQsWmJHtrVu3Ri4bRLbDRgYJUiG279y50y62 kycJkAAJ1DQB6u01TZjbtxOoit6elZV12223mQ/Q5557buTIkab9rH37XCcBEiCBWiZg6u2WXwf8 sSuxwFcbztr/6/Z9l24/dO7R55Gfp13Vb68GsbvT0vVDx6l6joIGjrxmA1Kdv+M41XxA6ic9encz DUQqcTR18pOuXb/r1h0EOvUcdkOfnc4nZZxyfUd+i/7Hnvh5Ureu3/Xo+m03nGGdHKpX7dQU2wcN GgS30sLCQlwdjOaq5VsEd0cCJEACfkiAersfFnrtnHJZejuaN4GBgaZWcP3113/99deIbMfMvsjI yHnz5sXGxqanpyPqgJHttVNM3AsJkAAIUG9nNahNApXW21NSUu6//348QDG5/6WXXkLet6ioKOrt tVl23BcJkIBbAtDbkXqpknp7166fd+/V8YeIf/aaeUfvdZf3O4C49IAhNpnd8k4xhPf6g/Iv7Zfw p9/W/Pvnqa/8EPZZ919+/fbTJoOyLXW60aDcf/WaATm6e9fvvEWLxqF27tH38Z8n39JnS9OBGda5 WCsNB524oc+Ox36e+t73g77v+j+8vGwooY70eXO8BTUTYV1xcXHsYLq9fvkhCZAACZBATRCg3l4T VLlNEChLb4+OjjbF9quuuuq7776DXAAbmYiICIjtu3fvNsV2AiQBEiCB2iRAvb02aXNfldPbs7Oz r732WvMBCrHdtKIdPnw4/WRYo0iABOqcAPR2tOQxX7Uiqio0cLwQyP1mz8D7fl10Qf9kS1V2swKx 3Xg1HZj5p99Wd+wZrgHdGtNdIqX37PrNHb+tN397Uf8jX3b70VuCvvUcun7XoWfEFf32uz/3wafO HZiJkYgu3XraT7kinPkdpWvYyAQHByckJDCmvc5vFDwAEiABEvArAtTb/aq4a/NkXfV2NMVhGmNq BTfffPO3334LsR2R7QjPg73Mnj174EmL7+Ag2RyqzZLivkiABKi3sw7UJoFK6O1HjhwxPdsbNWrU tm1bPD0hI+D/6dOn5+Xl1ebBc18kQAIk4JZAfHx8TEwMMjEhkNh1CQqN6BEY/bZj6hP9Fvyp/+ZL Bh4+a/CpkiD20hHs8JA5d2j+DcFpD0Ye7Dh8+1eR8weGjRoROnR4aFBEWIjrxsPDQjuHzG8y9GS7 qG2hYWF46/odT/ukW2DMi/1n3dF/eyNHXhEHC4JDGg/J/2NYcrvhO3qGT8NZR4UO87Tj95bjQUzX xIkTExMTGdnu9rLlhyRAAiRAAjVHgHp7zbH18y276u2W2H777bebke2m2L5w4ULM76PY7ucVhqdP AnVIgHp7HcL3w12fqd6OmV+XXXaZOVrdoUMHM2QRs+Phw3b06FE/BMhTJgES8EAC0DNhb4X7lbVk ZKTvSsrovzb70Yknzgs8WX9wYT1o7KXM2J3f3jyi4LPFJxbtyzmSlnUsLTMtPcPaWvkr8ckZOw5n lf+dOv8rTuZYanqf1dlXheefPbgwwKJhU9qvjCjstzb3UEpWSoXPvc7Py5MPAB3M3Nxc83phQJcH 3jd4SCRAAiTgwwSot/tw4dbtqdn1dkTfQWA3tYJbb70Vs+ARlde3b98RI0YsWrRo7969mZmZjGyv 2/Li3knAnwlQb/fn0q/9cz8jvT0pKemuu+7CAxSR7RDbrch2PEAPHz6Mg6eAUPslyD2SAAm4Eig8 depgtqw6IuPipNtqeXSqtAiRgL4SMEACBiG3qc2P3ZDc6w2RS8Ll7nHywiz5aZ0sOih5OsnVB5fj BbL2qARvl39Pk4CBEtDfpFE81uCQC0PkgQnyzUrZmnLKB8/fA06JD0oPKAQeAgmQAAn4HQHq7X5X 5LV1wna9vXPnzqbYfu+99yIwDwlSTbF98eLF+/bty8rKotheW8XC/ZAACbghQL3dDRR+VGMEKq63 I3z90ksvNR+gr776qhXZDrEdDjM1doDcMAmQAAlUlMCx4xIdK28ukGuj5IIQaRxo6OpQ181XqWh2 /fC8YfLsDBm6VXanSUqu5JzEqGHJvk7Z1ks+9dq12DT5aLG0DpcmQcVA7OMOg+Se8RKzR5Jz5YSP jjV4bdHxwEmABEiABEigqgSot1eVIH9fBgFTb4eu/tFHH5lawR133IE8ShDb+/XrB61gyZIlFNvL gMePSYAEapUA9fZaxe33O6ug3n7w4EHYr+EB2rBhw9dee82MbMdjFDlSGdnu95WIAEigDggUnJLk 47I9VZYcksFb5D+zNUBdI9gRsI2wbbuSbMrshrp+zXC5a6x0mCMh2yQuvdRh+5i6bp7b4RxZfUR6 rZMbR0hAn9JkjDGINojqHys/rJUjOUU0fJJDqZLmGxIgARIgARLwPwLU2/2vzCt/xsdPyiNTJHyH ZOeffiOm3n7JJZdAKzjrrLMefvhhmM3++OOP/fv3HzVq1NKlS/fv35+dnV1YWIhtcZbf6YHyGyRA AjVGgHp7jaHlht0QqIjenpCQcMUVV+ABWq9evddff92KbMcDlJ7tbpjyIxIggRojAAE5JlbjtP8c I1dGyvnBRgQ7LGJMlxgXmb3hULl3vLqjzI2X2HQ5elzytbFfsvikvJxfIKN2y7+myGURUn9IMRwr vN8hwNJ+jsxLELjuYOTCXHwSRUlJc40ESIAESIAE/JiAXW9Hhy45ORldPC4k4JbA+C0pmtkHNoz9 5J+TtVW5PTlvz6GU+IREp+/DbxbR7GZYO/6H9o7APES2U2z345sNT50EPJcA9XbPLRtfPLLT6u2J iYnXX389np7169d/4403ENMOvR3/R0VFmTYyHKT2xXrBcyKBuidwslBST8j+TNl0TIK3SdvZ0iq0 3Aj2wdIoUC4KFQSx/22CfL9GVmpaiZLFt/Xk3JOSkCULE6XdHLsxe7FTvUMaDNUpAPdPkOG7/IVJ yXlyjQRIgARIgAT8m4Cpt99zzz3o1jVu3Pjiiy9uxaUaCFzc6uLWrS5u06r1Jfpqc2mrNpe1uuRy fV16pb4uu6rVZVfr6/JrWl1xnX7ZG5amL/0W4DCS+yCUBTEtmDraN6dJrwMXfbey1Qs9Wv3ur60u usg8D1QkqASoVAjMe/zxxyG2I7J9wIABY8aMWbFiRXx8fE5ODiPb/fvew7MnAQ8iQL3dgwrDDw6l fL09Li7u6quvxgMUNjIQ25FhHGI7HqOjR49GUIQf4OEpkgAJ1DYBWKlDEP5wsfx9otw8Um3Yi9r5 7vKcwjcG8dt3RssHiyRyp6xIkr0Zgjmw9sW3ZXac6bqj8tUK9clpifEI14SwDrlhhHy3WpYeEswO sBafx2KdKVdIgARIgARIgASgtyMUGV0/6KINuFQXgad6njVMAtAAQ3v1dK+z+mY3OL9Nde25JrfT sMGjXer/llyvf06AozCgZIKkocAjOxKml3bbHfBIl4BWN5x17gVnN2oCyf3vf/+76dkOsR1awfLl yym287ZDAiTgaQSot3taifj28ZSjtyOy3fRhQ6vsnXfegQ+bGdkeGRlp2sgwst236wbPjgRqmkBe gWTmqcfLlmPSf5P8e6r6nGDiqkbRuKrrht84grSR5BTC8h1j5OsVsuhgqWP0Ew258JRyS8ySn9dJ 6zDDsh64SnpDuo6kqBeGyuvzZVtKESLA8RM+peoE35AACZAACZAACYhAbz9w4MDMmTO/+uor9Oze fPPNt7hUncDrrzz7XUiTQdklzTCrPeayct1P66q+w1rawuuvdOrUqe3nPz31Q/Qfeq89f0Cq8wnC rjBIX416Jzf736rrvhjf8dfob3/qPWjgwJiYmJUrV8J2hpHtvPGQAAl4GgHq7Z5WIr59PGXp7Tt3 7rz22msR2d6kSRO0x0yxHZHtmBpGz3bfrhI8OxKoUQJZebI8SYZulfcWaSam342Uc9FcR1S2a2C2 2U9xyDmB8pex8uYCGbRZZhzQHKk5fhbBbpUIHGOGbdPksIj81yEJQLNb1jukcaA8NV2GbJU1R6Sg 2KmeMrsFkCskQAIkQAIk4J8ETL191qxZDocDcchdu3ZFJBWXKhIwIHZ95/vBjQblOivSLnr7iz+O 7uZV2M2z6971u++7/u+DHgPu+nVF44E59RwFZyHo3d7+hNN7caP9pqCj30yN2xaXmJ51/GRRS7Q4 UZB/Xng8axIgAU8iQL3dk0rD94/Frd6OyV8tWrSA2I7lgw8+MG1kILnDs52R7b5fJ3iGJFBNBBCG jeSkJwokI09mx8uny+TW0cWx667h62ioG033s4eo0zh0Y2RE7bpaVvuTB7sreEjlYAiHnOhY+eu4 Ynr2Po5D6g2W+kPl9tESsbNkA9TYS1hwjQRIgARIgAT8noCpt8+ePXvIkCFIZ4n+HTp3XKqFwA/d u37cc8AV/ePLl9w/6jnQe6F/373bj92//bH7/z7qOei5XhP+2nsVzrfBoPySUy7t9379iFOID+m1 /hS6AMnHOcXS729ABEACnkGAertnlIO/HIWr3r5161Yzsv28886zbGTMyHZ6tvtLteB5kkBlCcAi ZkeqTNonv22QtxaqB/ulEUYYdv/iCHaXaB801JEIFXk831ggv26QSXt1C05ysdPbyh6dN/0ONjtA 8eVyuW+8KuoBAGgfpHDIWYPVVAdG92NiJSm75NT8kFXJyXONBEiABEiABEjAHYH8/HyYhS5atCgi IgIO2324VDeBn/sOvGzQ4RL92anFCznaceragQc+6DemuvdcJ9vr26dP3159BnTsP+2GQQc04t1+ vogMMV/Gh2iy3j1WHJslNddd1eRnJEACJFBbBKi31xZp7kcJOOnte/fubdq0qRnZ3rlzZ3OGHcb9 rch2/IS27aw6JEACdgIQeDcny6/r5aHJcs5Q1YGLmtxWY9sej23+1aE2Mup8skUznGILCIanUAyq 4DDzgDw2VfPAlsJoo9o8WL3rk3KUmAXNWrEXDddJgARIgARIgARIAAQKCgpSUlIQWDVv3rxJkyZN 4FLdBCZOGD9x/NhHohLqWf4qVuOtaKXId+WCocf/Fbzj88jFoTFTJ1b3YdTy9qZMGDd78tg5c+aG L4nrsjj72RmFt4w6hZmqpQ1njKARhI70lSsi1Rex30Zt7qILYJkf8iIlARIggVogQL29FiBzFxYB u96+ZcuWq666CmJ7s2bNYCMDmR16u92znUq7xY0rJOCfBOBtsi9Ds5QO3yXd18gLM4uNxJHktFwD 9htGqBrfab78sl4b2NCK7Ytfa8WnJP2ELD4ofTfJE9PUrL4oY6w1SGEMW1wZqcMTP62Tjckl5Pya WwkGrpEACZAACZAACZyGAPpxubm5sAbdt2/frl27kKuLSw0R+HBmss5JtIntZ6sCX2xyjs+Nph1k +SZDT/4rOn38mr2xu3bU0MHUwmZ3796NVLwYzck7ceJk4Sm4IGKSZvB2eWiSwCWylPBunLh5+ggs aRIk10TJf5dqaicEnHAhARIggZomQL29pglz+3YClt4eGxuL1KgQ288+++yPP/7YimwfNWoUbWTs xLhOAv5GAJEna49o+DqCri8I0bZxQzOI3dZmLtWWNvoRsEDB1NFvVsr8BJ09mpMvsJqhPmyvPOhZ QGZHkA/i1YHU7H2UImnMAnhrgaw/Ktn5crI4/yk2QpJ2klwnARIgARIgARIonwD09sLCQrjKHD9+ PNtYsrjUDAE5kenYcOK8YTCQMVR3h/y6JnddYvZ/l+T/JabQ+LxYe8cXoMwPkKujCr9dmjt7T3ZC SlZ2ds0cVs1sFVUpJycHQzknT540Y/OcIvTmJ+qszH9NkRtHanqmUg1dc+gBETt99fMHJki31TJt v8aWpOSyrVv+Bc2/kgAJVIYA9fbKUONvKkvA1Nufeuop07O9efPmENutyPbRo0ebYrvTc7Oye+Pv SIAEPJoAcpseyJQ1R2T6fum/STrOld+NMnJ0ohlcdvg6AlTahKuXONrS7y+S8B2yPcWjT7MODy4z T8XzkbulwxxpNszoXwx07npcHCb3jJfOS2RhYsmRUmAvYcE1EiABEiABEiCBShFAn45LLRBAZMSq w6esaIqDWYje1ldO/qn9Gaf6bDiFeYslynNxBEujodI67NSrc09tStYve92CKoljtipmyRrsjAol 7YQkZEl0rLSbI+cH207fnAhgQjDmBZw3THsWkN97rdekTlxIgARIoLoIUG+vLpLcTkUImHp7vXr1 ENl+zjnnWJHt33///ZgxY44dO1aRjfA7JEAC3ksgK1/mJkiPNfLIFLk8QlqGqrO6erCb2TnN1q/Z Erb+N5J1/n6MfLBYRu2W2HQ5nCNQkgvsDWttcnsvlWo+cqCYcUBD2duESdMgo4vhBNahEwfQAZkd r2Y7uSdLDoAYS1hwjQRIgARIgARIgAQ8noDZeIvP1Kb1/RP0cF2bc+Ykx+uGSyOnqG9EYvQRfN5v k2w+pjK1bywgYIewNUV+XicPTtK4d8yf1a4H2sZWX8N8i2ifPtpyfm6mBG3ViCBYvqPHYd+Ob8Dh WZAACdQOAVNvb9GixUMPPfQPLiRQkwQefvjhli1bQmnHAs/2zz77rHv37qZnu2UjYx+krp1LgHsh ARKoCQJomqKBGp+lTXdM7fxtg7qvXxZhhFhb7uv2Vm7xOsLXLwyV60bIn2Lk5dkycLOsO+p8gGz3 OhMRdWVHTM6kvQpNuw+AXNrMEx/CSebmUfLSLJm8z3UD/IQESIAESIAESIAESMArCZhtY8wb3VHu rE/I6RuSpetqjeguJThDfB4oiHi/drhOOF1y0CshVOSg0WDek67JoWAmc+94OdtU2ou7IdqEBgo0 oQeqJn9RqNw0UhMe9d5YKqVRRXbE75AACZDAhx9+aOqf/J8Eao1A06ZNO3fubHq2I7I9JiaGke28 F5GAbxDYnaYh6J8uk79PVGkXjXn1TkSr1Xw5RVmbjVuHNBgqf4qWdxdK2A4NJkEzGD6KTpmMqLG7 rSEITR+7RyV0pIjFfFj0DhR16YgdFMFzM7RcdqXpIIi1EKmFgiskQAIkQAIkQAIk4NUErHadtVL+ 6cyJ1xyj8BVEO7xU0xEtyX76OfxVMKsUEn0FN1j+7jznr06ngzmhyF4EXR2n7Mby3VTg0cDup+L8 09MleJuGuBzK1ka1U2/Fc86RR0ICJFDnBBBLPGnSJAS333XXXYhr/jsXEqhJAqhj99133wUXXPDJ J5+Yke0Q20eOHGmK7Yxsr/MbAg+ABCpIAM1UWK+nnpCD2QKBHTHVny2Xe8YZSq8Zu+5iEl40YdOh mTphonhJuE5cfXGmhq9vSnberVMz2PnP/v0eDfuMPHWkBHa0+VVgN73uzcGL4iGMpsN0NsHj02TC 3hJeBFvCgmskQAIkQAIkQAIk4JcE0CC0XBiPHtcMPl+ukFIe78UiM2K8kVwJDoTj4uS4zX7QN7A5 NYzRr1l5WIbvkvcWaaKockLfEdzSKkz+GC1PTZeea2VuvDbOuZAACZCAnQCShi9btuynn35Cwkou JFALBCCwYzEj23v27Dl27NiUlHLnvNnrK9dJgATqjgBapIlZMvOA/Lpe55kiqdDNI+XCEENjh97r Lqy6SGMfrCbt/5gonyzV3KYLDsr2VA1f53JGBMAfvQDE/7edLbCyh+m9m5SyDnWMgW171E6dLAyr fGtx6lBYn3OFBEiABEiABEiABEjAbwmgiWi1EmEj86/JOl8S7o6lIt4Ntxlo7xCid6ZqCxMJSX1y sVDg7PILZHycjjUg7h1xLJqO1hyGKB3iohNLjegXSPRdV6kNJmYEZOdLfmEJWJ9kxZMiARIonwD0 9qVLl0L/7Nq1qymB8n8SqGkCZmVDrWNke/mXJ/9KAnVF4GShRrAgTgOq+NJD8tM6+fdUaQavkv7l 6upGVlO0RSEFQ/XFrMw3F8jIXZKUXeo87O3YUn/gGxcC6MuguY7ksMjZ9JcYQ2B3mjhg+MacE6il 88wMwbxgayFnCwVXSIAESIAESIAESIAEyiGAdqPVdEzNlWn75Yvlcutol4yihrAMj3dkCwraJrCL t35Vzsa98U9O54WJpXMTZPAW7d3cGSNoe1thRdYc3iLhvZ/+FegQ+v75conapTN5ob1zIQES8DcC Znw7woypt9e0yMztmwTMmsbIdn+71fB8PZwAmpRoMEOtRTPy46Xy7Az5c4yRRwkBG9DYTbuSMqzX kVnpttHy/Ez5ZqVGX6MtCpNwuM3YF6cmq/1PXHclAFwbjkq/TfKfWTqJQFvvVhFYETUO9eRBZ2fI Vp36iggcayFtCwVXSIAESIAESIAESIAEzogAWpJWYxJG5a/MVQG5ntUENVfMfsFAuW+8TNmnLX8Y Hlq/OqPdecuX7WeHk0WX54PFat5Yb4i+3Ie+m5QGKb1/TpZBm2VfuiCuCRE1NH73lnLncZJApQnA MXvjxo29e/fu1avXL1xIoOYJoKZhGTVqFD3bK33Z8ockUGkCaCiidYc2Hlp6yLO55JBaDj482QjS gKiLl1tRvbiBjWmkaE+ePUQN2J+cJn03ykYX6/VKH5s//9AsFxRNXLp8uVxamC49KIti8tYK+GOS 7+vzZc3hEmD29n/Jp1wjARIgARIgARIgARIggcoSsFqYaKPOjpevVqi6jkgbq12qK+g+9JMmQToZ 9tcNsizJOeqmsjv33N9ZWMxDTD8hiw+qlg6znX9M0niYUlY81vCEGT/TT5oGyd1jpdN8+W2DTNwr 21Ik1xY247mnzSMjARI4cwK5ubk7duzYvn37Ti4kUPMEUNm2bduWkZFx5lWVvyABEqgMgZx8QWjK rAMybJv8b6WaEN49TlqFGoHrZm5TU2Z3kXbRVkSLGllNH5ykAm+PNTJyt6w+op6E9gXplpyanfa/ cr18AnDsmZeg7W1MEGgdph0WDWUvrbRDY791lLwyTxxb1JWdCwmQAAmQAAmQAAmQAAnUDgGrnY8V BO0cy1WryTZOqnJxxA5arS2C5bNlEp9ZO0dXx3ux4OA4TD4IaorP0kb7Y1OkMWxnSrfq9a31QiDT YLXKbxKovS1kyNpyrI5Ph7snARKoXgIIcedCArVPoHqrMbdGAiRgEUBjb3+GugW+u1BuGyUNhmpD Dq1fRKeXNPCKW8WlAlSMLyC4+vGp8st6WZGkLu7wG3Q759HevLR2zZUKEsDkgtG7dWIpRjRQNFoK trZ3UaE45Ooo+XmdGuA7FQHhV5Azv0YCJEACJEACJEACJFBdBOxNUNiS91gt/5piRIzY43bQpkX0 SF+5cYR8vkxDuPdl+FFwjh0RsMdlyJhYNXJ/err8MVouxCRWOytzHcTM6Pe+2iPA195YoAHzU/er 9zuCc5y2WV2lye2QAAmQAAmQAAmQAAm4EoBl98FsWXdUZhxQ43TYp8N3Xe2+0XJDa83KberaqMMn Dg2lQLaje8drZPWnyyRkuwrsmXmu++En1UAAhbU9RSbEaTHdNdZIO4sCcppZ4FCvGDjnwyczdIcW rrWwmW2h4AoJkAAJkAAJkAAJkEAdErC3S9HEzcjTibRPTFPPyRIxuTiSBB82HaYacuBWOZ5fh0dd 27u2U8K+ETyDScepJ1RCx8xWM+pG422cemrF3PAnDX0PUp9JTHSFV/y4PYJUtlxIgARIgARIgARI gASqlwCabYlZMj5Ovl6hsw4vDpPmwdoMQ2NMW2v2l1PLzXzrUHOYDnM0XgIqPWaDonmMQGvm66ne YnLa2sok+WCRzro9N8gIZbeKySojozkN08uxe7RQck5iPmrRNlDiTm11p43zLQmQAAmQAAmQAAmQ AAnUIQGrsYqJseE75KnpctNIw+YdjV5bc1djgQbIQ5PV4nLNEW30+uFisTLPPTZdInbKOwvl7xPl llFyUaiRl9bODQDNvsNAw3ayj1wYqlb58PmcvE99PjF3IMufRjH8sM7wlEmABEiABEiABKqFAJph CBQ5kqOm68uTZMo+zT3Uca7cMcYIGulTbPHtFBpta83CCbBlqNwwQnPxoD2GCYzDd8nWFOejc2rv Of+Z7ytFAIMXh3O0ExG5U16aZSSixVwDtJBLt5wR6nNZhNwzTt5fJDMPVGpP/BEJkAAJkAAJkAAJ kAAJeAYBe88CUdw709SQHMJ7qTawKR0PUmPzSyPk8WkabQLDcz9c7Lhw+uhBIO9qQpZGvw/dKm3n yKVODvm2vp4iNXqCwAiJ/pooDcRClq5p+xkA74dViadMAiRAAiRAAiRQJoGCU7IzVUbHauD6o1NU KkcTFJMHGw41WlNoUJnqemnN1h4xcn6wPDRJvlwh0XtkR4qm6YHXH2LXnRanpp3TX/m2KgT2pOvI yP0T5JJwIzuS2yJz6IRQeF2uPypJOZJXULJDFk0JC66RAAmQAAmQAAmQAAl4LQF7szY2Tb5cLreP UWW4KJmUJR2jtWwYYL44S6bvV6vzTIZq2wodCvykvZp89r7x2j1sHVacgNWpS2iOYiC8BzD7aNgV vOIx2LH4oIZvJWarXyinM9u4cpUESIAESIAESMCnCKDlmZ2vwc9x6bLpmPocIhUmQqDRfDKTCpU4 rjs1osxGqUPbqPD3hjPJ9SPkD9Hy8mx1/1uQ6MZ03d7K9SmIHnMyIJx2QqCxz0+Uzkt0fATtWy1H e9kZrd9mwzTsBLNEYeNz7HjJCbCMSlhwjQRIgARIgARIgARIwLcIoK1rNXfhXr43Q2bFy3uLpFWo S4MZwvtA9cm8bbS8Ok+n99qDUnyLSkXPxkJn/gC9yAOZ6giK/LPIBvXwZMVVqt9hjWKgA2LwBFJz HsHto9Uu/ovlGty1O43ae0WLgN8jARIgARIgARLwWALJxzW0YPAWdfDGRD94wlwVJS2CjegOaLOI Q3AbBW1rLyEU5B8T5aMlanW46KBsPqax665ZTe0NWo+l4RsHhs4CChTWlDePMhq6ViFapYYVh3Yl kPY0Ola2pKgyby1OjWfrc66QAAmQAAmQAAmQAAmQgK8SsLeBlx7SwKHW4dI0yPB4t8eroHNkRLC0 m6NhLUePa24j+299lU9FzsuJAxT4sB3SYa7GYiGxV7NgY3K00RMpmQdt9lBMER5gEQPvUE9LTDrA uAa2cOS4pvTiAEdF+PM7JEACJEACJEACtUYAzZ4TBdpKQWsQ8/U2JkvYds0gf+84I09Qv6JpkkW6 ul2StdYdasxuZp/HPEHEQj89Q35cJ3MTNB7eaXFqZTn9lW+rnQCAI/cTGqIo2W9XaekUTUOw9wuM Zi3Mfy4I0Yy0GBxZc7jkQFhkJSy4RgIkQAIkQAIkQAIk4McE0DC22sbQeGGxCMUYfjKYEFoqWhst bcS0DBB4Zt4zXj5cIlP3MzFoSb2xYzQ/RXjPtlSZkyCh2+W/SzUvLRT4Ukhtfc+iAHjI74PUf+bW 0Row//p86b1BE0slZJWUUckuuUYCJEACJEACJEACNUkA9ndohCxMlOBtarcOQxhYhWDyI6RyyOYq xtoD162GjX3FIfWHqI0Mkpl+vESDpRFdsPKwmha65pe3WqQ1eU7cthsCmEeAPLNvLtAIEMwyKCpW NP7tSrtDewdPTNPW6bxEDRHhQgIkQAIkQAIkQAIkQAIkUBEC9p4O0n0+MkXOCZQGyGBlRLMUBWmb zW/I74NVmZ+XoFN9odXbf1uRffnDd5yYpObKmFh5e6FcP1zODVK26IQ6u+hbvVRwNo1oBmgkGFKD dV+ttJEUDDFguQWa2dZp+/6AlOdIAiRAAiRAAiRQjQQgqucXarsiJ19j17enSPgOeX+x/GWstlJK Kep29dVqrhQ3EaHAI+y5cZC2cG4bpeItVPqtx5yPlE0XZyK1/h5FgHY75qsicW231XIt4tiNkI9S 6rpRrPWGaGMVoeyvzVOHH2thIVoouEICJEACJEACJEACJEACFSRgb0WfOKkN7F/Wq3ljyxDnQBcN eu+nHau/TdAo7rF7JCmngjvxu6/ZqeLkARbpUxG+PmSrfL5cnpmhYe3Q1Z07O2Z/1tTeTf+ZAXJh iOYOQ4l8uFj6bpRJ+7Q/qxOxT/kdVZ4wCZAACZAACZDAGRFAmMS2FG2BBG+XrqvljQUafP7HaI1a 10YIbGEqELUOdf3yCM0gD0PCr1aIY4tM2CurD8vBbDfH4tQEcvMNflTzBFAKENijdsnHS9UnX1v1 5gwFRHeUHj1BplpMZIDVIaJEdqaVHBmamSzKEhxcIwESIAESIAESIAESIIEqELCa1oiAmnFAHpsi 9axmuT3SCeuGLAzDGUxKNaOvrd9WYf9+9FMQhmcmJHRo6bDucer+lHpr6fAmduP/W0bKOwtlxC6d 5Avy9pcfQeSpkgAJkAAJkIB/E7A3ANC0SMqWqft0ltyT06RNuNFaszUe3LQurDaG1d4bLAh1vnGE dJwrgzarrs5EM55fxcxqgOOEXSQ0djgWakPdfFkla3uL6QzPzxTMby0sLDo5xnF4finzCEmABEiA BEiABEiABHyGQH6BzI7XVEqPTTU6blaj3VxBnIwRMPPnGI3cjo6VXWmC7h6XMyWACLTVRyRqp3Rd Ja/OU0uZm0bqbALtKzkxx1t8aPrPAH5fHRO5caRGrCGVVe+NMjpWFh+SPemaCYsLCZAACZAACZCA LxHAHDc84pclybg49Uj/ZqW0nyP3T5ArIo3mQd/iSGZMS7Tpq85tCYdaCOInd42Vp6fLuwul51od xF+eJIcYte491QVDIZuPyajdarmPMPVGsIU05yw4tR4d0sLIygTnH8y1RLyHfYFWz4UESIAESIAE SIAESIAESKBOCCCIPfekdsQ6zZcmgaVFYLND59CAKDT1r4yUb1dKbHqdHKYv7BQDFqa9KgRzTAMP 3CqvzJXrhpetvRfzN3vWKAV0ohsFqlz/hzHqIY9ErnChKSgOYfIFRjwHEiABEiABEvADAnh2705T Ez+0rDAhDk2sxoH6iMeDXtOYmkPw9maA6xi9+YlDmgbJvePlg8USsl02HFULdzQzINi6zRFDDdaT K9fJApm8T8dZoKLDSF/nolp1wF4BHDqDEhr7/AS1IkRZ24vVvu7JJ8tjIwESIAESIAESIAESIAHf JmBvma9Ikv+tkn9NkaujXNKAos0PO9B+ckm4ivNwj0TkdtoJ32ZTI2dnB27uYHuqxOzRjFf/mS3/ mKQ+8K3CbJ4/9k6W2fmyhcGjUBDJ9s/J0nmJDNkik/ZqdNzudC0a1x3VyPlwoyRAAiRAAiRAAqUJ IJgBIeUYXl9ySEXUsO06qbDtHLl7rFwEVxBjIltR0LIZsu70rLfeOjTnaatQnR8HXf2JafLGfPlp nWr1m47JcWR+Kb3w0V+ah+e+Q0kdPa7GPrBY/2Sp2u9rrUAcu1N9MCR3NAsxZ6HtbG3pYc4pFxIg ARIgARIgARIgARIgAa8gYO+gISYKai1SMiEJ11VRpQOwrUgbh+YGRaomGJ6M3K1B8lwqQcCO3fw5 4pTgQoMu2L4MmRAn/1spj04x+uYgb/W+7Su2EkEcFKKhzgmU5sGq2F8/Qp6dIT3WqAgPQ3guJEAC JEACJEACNUQgPlN9s3/ZoJPX7oxRs74LQwVpK/FQ1kBlDJSXfl67f6bjm0bIOsTVtxbIwM2a8j4x S1sF6XkauF5Ak5AaKr9a3Cwa2Bgx+es4uTBE29KlKkbpBh5mQX6xXFYd1gqQU7ql7dqArMUz4K5I gARIgARIgARIgARIgAQqQ8DejN+bIb+slwcnqX7rxnvcNHvvry6jyBOKTgGkXfjDc6kKATt/czvQ 4dcc0dnisHOHD/yfYtSLBjFymHGsPTV7B81ax+coHWNWAgzhETF1wwh5ZoZq+BgiQcQdrD5RuMdy WV5VKSv+lgRIgARIwMcJ4KEM446kHHXVw6Nz6SGZuFd+26DebmgdXRFhPGr7FJtsl2+xbijqEOGR +xJzCW8fo1HreDR/tVzCd2gjKivPDUzXVoGbL/EjzyOAgjtRoA1jzAkN26HTGDEEE4CqgraZU+PN oVZCGKb5Q7TmPEV773BOyfmwApSw4BoJkAAJkAAJkAAJkAAJeD8Bews/JVd2pErEDvUaRVexlMZr Rm0N0s5C6zC5Y4zOjV2YqPahXKpIAEVgLwVza+i+QSffn6lz1afv10Cpl2fL70YVu31akrt9pbiM irKyOnT0BGHw6O/fNloenypfLpfInbLuqM5Pd91jFc+CPycBEiABEiABryCAJ2DycTVngwCOvKUv zpI/RcsNI+XySBXJEZB8Fp6tENUxom2PWrc/cO3rhiHM9cPl8Wny2TIZtk2WHBT4yGEWG4KWIePz gesVteJMDxJzFcfHqcv6raOkdbg685dUmNLVAy1quAIiZGX9UUnI0lkMXEiABEiABEiABEiABEiA BPyWAOZNw0nyuhE6H7YoqZPVg4C0i65oPzUdfWGWuowiJAz6MJN7Vnttce2nx6bJ6N06ARndtxtH ahY2iOpNhxkp2JyCqezlZRZZcTA8JIUHJsh7i2TwFo2Ex9xnaPsItcrIc87MVe1nxA2SAAmQAAmQ QM0RQPpySJqpJzRefV+m7EzTqPKInfLVCnl6utqka+AxJoXBSRvPRFNXL+vpaT5GDUUdccuYdIaM KphKBjeY1+dLn40y64C6wbgurs9u1+/wEy8igPYtahTGUDD3AbMIfz/GqD/wYzdHZKzmFlYMP0bk QkKyno8Wy/zEUmfJilEKB9+QAAmQAAmQAAmQAAmQgD8RsHcH4HOyO017lBB4ESatPYvS3Qr9ZIA0 ClQ7GhihfL9Gk0PZt+BP5Gr2XN1STUcHMFM2JGufDnoCQvUwT/n20cWWofbCstYhLOCFgsMLUgME h8FyfrBK9/ghjIOwBcx8R5DegkSBYy20Cy4kQAIkQAIk4IEEMB0Mw9BzE9Sg47tV8so8bYpAD8eM sMsiNN2JBgyYurolrZ9OXW80VG4cIY9MkXcXqeFeTKwsPKjPWVi0YSYgLdY9sBrU0CFh4GZOvGbC fXiy3DxSmsErBrXIqkhWsworDrUBRLj7iF2y9qiO9XAhARIgARIgARIgARIgARIggXII2GVeTMGG oyncxVuEuHjOGN0NlXD7C/qqCP2alyDHjMnUFGzLwVtzfzqULVP2SbfV8uQ01dIR0w7loXGQzkrQ QZNyBAdTjTeleCN8C93Ml2bJj+s0Wxwi4TFHHoFemEyNRLrwFLLXkJo7HW6ZBEiABEjArwig8YBB f+SRxNwrCN1HDH91PIZ6b5BOC9QXHfPv0OTQVwUj1Y1nHxR45EaB5RqeiXgyXhohfxsv7y6UQVt0 lBntHC7+ScCcGYGatitNem+Ue8cVVy20bJ2aTMhfP0SrEOrP/eM17y3N2P2zzvCsSYAESIAESIAE SIAESKDqBOyyKvojmFQbuFU6zpWrokoHvZtarqHWwgf1j9HSdo7026jJpOj3XvVSqPQWEKYFqRzT 6iHCh25XHf61+fKPSRqRhfER574kCtF6Ocnv/aWBYeN/yygNhn96hgZ09Vij25wdL9tTVIfnQgIk QAIkQAIVJ4AGBlzptqRoODFSjfRaLx8v0cbDo1M0WB0T6CCtq626Ka3b1XUnIdR6chWv4IF1VaTc N15zWX6+TAZskjGxGg+PePX4LMnJd3OMmNRlb/C4+QY/8iECGNNZkST9N0mHOfLXcSqh6/ANXu5k dtRDTHzATIpxcbIpmWbsPlQPeCokQAIkQAIkQAIkQAIk4BkE7L3RuHSdbwtfU2SMQk5V5/BpdIfx GqiR1e1my8wDcuKk5BfSqKRuCtJecNYR7M/QzF/oQj4xTefgI70Xwv9QXojgUomjfEHDLF/0TPEy plq3CJa/Gf7wQ7Zq5ri0XI2Ex6x/FDpMUBFC5vYYrIPhCgmQAAmQgI8QMG74uPNjwB3CJh4EeBxg 7hvSlYbukC8NT3VMoVLXF+Pxoc8RU+c0nyzFsnnJELD1ifFgwhMKrY76Q/WZBWs7yKH3jJM3YK6+ QRsbsERzXfgAcmXiP5+g9FEVUQ8PZmnQyL+mGPXNqnJW7cKKUcHQEELVQj7cLitlY3IJJ9aiEhZc IwESIAESIAESIAESIAESqAEC9k4HLCtNDxPItpij7azTovOCDjXi0xzyh2j1nMEkXOTrzGJEdA2U SxU3eTBb1hyRiXtl8FYdTOk0Xx6dKneMkYvDVIR3I31YvVRTJDG1d0SIobj7akj85ZHy5xh5fJqW +5fLdbJ21E6ZGS/rj2q+OegwQqP4KpYZf04CJEACdUoA4eIIGkfo+JwEGR2rj3gM4yI39wsz5f8m CmZFtULwMJ4RyFWK1xn6wED5vDRcGw8IMMbcus+Wqbk6EpdAV8dzBM+sspK221spdYqHO68zApiV idbm0K3y4WKd2YdE80XVz1TarQaMIbPDpx2jNm8bFkOLDwoS5XAhARIgARIgARIgARIgARIggboh gBi24h2jb4sYZvR8Mdn2i2XaQXYjvJuq7GANn0YnGt1nJJlC3DuXOifgKk3gE7NMtVhPaTFtOibD d6ls/u+pcoU5sIICtfdYndbN4rb/b3wBpY8XIhsRoHh1lEr6nyyVIETFH6KJbp1XBB4ACZAACZRJ AAImDMrw4O6+Wo047h6nseUYjcX93LyxlzwR7Hd+a93pGeH01iHNh8lfYlRX/3m9TN4ne9K1UYEH EB5D5iQp10dVmcfKP/grgV2p8sNauTNa2xiollonrRqIFXutc2g4wQeLBQJ7foHzRDxtBfkrQ543 CZAACZAACZAACZAACZCAxxJA3HvMHpVSMXUXfu/a67H3dLCOECOEuvWTm0aqr/jgLZpuNSFLuzxc PIpAWRIHcswhwnDSXg1ohA7/6jy1pkGE2I0j1A1VXYbsJW7v5Jrr+CtemP5ghsQj9LGvvkUw5B/G qKoPl3h4zqNijNwt0/fL8iT1ikdAI1LplXVIHsWNB0MCJEACnk8AAepJ2bIzTVYellnxanUetE1+ Wiedl6j/OWLU4f0CxzC9V+MW7RqjXv593rjbw3cON3Y8Gu4ap/bsL8/WAHgkARm2TVNybzhaKvWk nRiaA7zb24Fw3U4AdQNp4qGWh+2Q/y7VNKbnIDcNaqlbJ/bBct4wnbL33Ez5ZqVM3quJ4LmQAAmQ AAmQAAmQAAmQAAmQgLcQcOodI2ooO1/2pus0cEQcFYUbWeqrKboa/6NLfm6Q3DBCvliuxiZcPJaA UxGbx4kPTYtUFHdGngarIx9ZyHYtzaenq2IDh5nTKPCoFbb6YK0jeBITIpDjtXGQNB0mzYM1wB4q EAx7f1yr6tDaI5KaS1nGY+sLD4wESKCuCZySrHzZlqL6NgYxcVt+cZbcPVZahwmcNHBfRa5zeKHj KVzkHubuVlwqNth6iJdewSP+8gh5cJJac/y2QcPUd6RI2glNq41HA4zcy8nkgoeI24dLXbPj/j2L AGY9zE/Q7LpoLqLRCK/1UkHspSskGhIY6IET0cKD2jJBHnm7BxEHdDyraHk0JEACJEACJEACJEAC JEACZ0LA3oNGKB064JjAC730mijt3TtrsOjmIzapr05R/+cU+XmdzDqgKgF66/btnMn++V1PIYCu 7o5Utd5F/CQCzNrPUT+Z+8bL78doZUBUvHacUQGc+suub/Gd0nbxAX00/BJzw/8ULU9Nl/cXyY/r 1C4eyQXmJ6oHwtYU2Zeh8WzQfFiRPKVC8DhIgAQqSwD3MUz2wcgmMoTivophx0UHZfoBiY6VAZvl 6xU65wjzy24fbTio44aJm6TbAHXXG6zrJw7NqY1bNGar3TpanWQemqQDqW8t0DB1jKvirr71mOrq bhccKu+6bsnww9MSQJ5TPLsxwQ3ZAT5eKn+MNpqImGeBhqJra8GhHkdoUTw2VbOdzjigQzzWwnpo oeAKCZAACZAACZAACZAACZCALxGw97gR934sV+IyJHS7PDNDg5Scu07oSRmyKoR3hDRfFqF2JYHb 1FGEi88QQJVAbxqDKagMKNn9mbLuqIasw38VWVYfmKChkqgAp1fg8R2zwlj/Q1/CyyH1jcD4ZsFy Yai0DtcsrtePkP+bIB3mSpcVMmSLTN2n7vSMkPeZSsUTIQHfIQBRPV9i02RhojprIWIcLm0vzdJh yuuGyxWR0iZcLgqV84OLAn11Bpl56zPufqXuihW5kRr3Twxc3hWjAfAIg3ds0ZB4jFfi5oxbNOT9 dCNIGLOZylrsD/qyvsPPSaAcAqhCu9M0dftzM7SS49mN4Z4yK7PxlP/bBPlhnY46wWEGLQq7MyEr ZDmo+ScSIAESIAESIAESIAESIAHfI+DUCUJHqfsaQacJcqi6xZoKql0igIAAy/c+0iZMXpsno3bL xmS1fEf8ktOmfI+Vn5xRWeWYfkJT8WJmxIBN8ukyeX6m/HWc/CFazf+vjNSwdlgiuJkrYa889nVT k4cdseUej7BPI0IeyhX8XR+fJu8slJ5rJWKnzI5XW2M41WOSBfL3ob4dgeJ0QmudvUfvJwXE0yQB Eqg0Adzf8oqHF6EKQsHelSZbjql/2tJDMj5OnV7+t1Jen6f5xBGjC89zFc/LikvHfcx+Wytn3aG3 R5hX4/6GEczrRmiM+p0xOqDZdrZ8vlz6b5Lxe1SrhJxe1lLWzbms7/NzEqggAYzdYOoZMggsOyS9 N8jjU9XdSOdioL2H+u9UsR2aHQY1GU9/TJPsulp/ZV9YUe00uE4CJEACJEACJEACJEACJEACFgHM SUdo09x4+WqFzh12zrWKzhd0BvTCBqqGcEm4zpdHrDISZkEL5eJjBMrpO8MHGHash3NkX6ZsT9XA eHi6QiGHTg7rYDjV3DrKGLgx1XWnPrvbt+Y3zdqFCmbUMdXkB6mBfNMgnaiO+nZ1lPb0oYbdNVbz uiIOH9YNfTdq9Cly/sJUAZpVOYftYwXE0yEBErATOHFS4rP0dgSLFVha9d6oD7JO8+VJI500Rgl/ N0pD0zHRBgOFiEtvHGhM4TGH/4y7jd558LJuR25vVmV82CRQN45ha6Q6RQZJxMNjYBo+MzgejBhi Qhli1FNPqIt1Ofeocv5kP1Ouk0BVCKAqwiIG7oJ4kl4zXKcxFj1zzcrvVMMd+jSHWVy/jbLisNZk PP25kAAJkAAJkAAJkAAJkAAJkAAJnBEBe38f8gUMRjC33bT4Rt5MFSKc+mLooBmu78j+hshkzH9H 6CAsShBMyMVPCNjrjNMpJ2VrjDpsjX/doL17GBPdbjjGQ/KCwwzmqsNtBqoXRHU3syqcapr9rSmI oe6ZWhlqIOLx4CuLV3+NJoUsj7yBHeeq4DZws0aQ4jAQ0Qqt4IBhzoDBAtRSRMsjlSEC5hHmV85Z OJ0U35IACdQEAVyDyKgInysYuUDTS8nV4NtDOTqei6E9THKBcA13l5g94tiseSigpWN07w9jNPeo Ppssj3TcDXBPMG8Oln5uv4GUv2485nBTgpMGbiYtQqRVmI73YUbPtcOLE1Us1kQVkTv1ePZmlDfj hjeWmqgq3GYFCWAuGJ5xSTkaSoEBoFfmGnM3cKXgAnGrrg/W9OgIYkdtx0AVTI1w3XEhARIgARIg ARIgARIgARIgARKoCQLosiFt1uKDErhVNUxE8Tmr7pAvoFFA3xigoe8QJR6YqPrq8F1GZ+1UTRwU t+nFBKCnQUmDTrX5mKxIkjnxaukwdKv6Gr23SJ1jYZIMzRxh7W4mWZxWK7PUeLsgD3kBL4gJgXKB ES2PuL5bRqm3A/b18GTVFjrMkY+W6DT5fps0XB8uOksOqX8yogERlcqFBEigKgSgPGfl6dW0PUWW JcnU/fqAGLRZvl8rny5VL5dnZ6idC6wqEHaLaSw3jFAHaWjdEL3VtAqXs3kV439LS8eHpmxoiORu Hkzl3C4c0ihQE5RAsf/nZGk3Rz5eogkskFQat6NZ8Wo1syFZx+kSszQ0vfxBZOrqVakb/G01EkBV xOMVGUu/X6Opdf8UUzwghQvHvFicLgqH5iDA1AxYxo3erUHsmCfiVJ+d3lbj0XJTJEACJEACJEAC JEACJEACJODnBOwdLhh3BG1VjQKxfzD81PhkU+S09+OKFXjM3EdUFRQM9AERagXVwr4pP6fK0z8t AdgcQZbH1Akk7YXH8qvz5KFJcuMIlc1RtWAgD8MZhORBOoMoB4PZM5bozUprVmD8byp4VuQ8NAqE yxp+tpD+EJ+Pao9RJ0gTP62TYZDm9uhQFCJvEcyPiFzocgibR3Quqnp2vgr1iJ9HnYcJD2J3MXTF yn/aEucXPIcAqisqLaouKjCqMYLPUaVRsVG9UclR1VHhUe0xYcQMPh8Xp8OyUK2hXbefK49OkT/H yFWR0nSYoZabl5Ipm9s1c+vqsz9BzmQdyZ3xGGo4VIPS8UjC7nBnwP0BY3YYIIZf+suz5bNl0meD KooYR0PUbvn6uecUAY+EBMohgMsTjxgkKsU1OHaPvLlAHZP0gYXry1VdNy40XCm4RnB1/Clauq1W yyP7wieUnQbXSYAESIAESIAESIAESIAESKBOCKBrtjNVJu2Vn9bKCzPVYVvVTvvLFFLQ9TM6gJik /NBkjWGGJrPqMMOG66TQvGanp+34wwcGch8sjJD6EBGz8G2O3iMh26XPRvl2lby/WJMSwnEC4bKI lYXpBEQGN55I9upazrpZk8tS41G94WYzUAV/6P+Yj4/QXITowzX6nvFqboNUsLBmemWe2i5B94PK AY+dIVslapdM2KsR/sg9B91jR6rsz5AjOaqf4Oy4kEC1E4BAhzhzZB/GrCWI5KuPqCnK9P0q1mFa B+okMiciMhZeTB8tVvkOSTpwb39iuk4DuX+ChsvCCB0SOlzQEXmug624vRtWTkUjU9UupzvUaB3y IK4p5Bu9d7zK+LBJx6WEDA4/r9NjRqg8HkPI44DTQVIJBOhinA7DBOUvp73DlP9z/pUE6oQAKjb8 YRDDgOsU8zKQxBwXo87+MGV2PKpcHmQNhuicEVzLv66XSfv0wud4U52UHXdKAiRAAiRAAiRAAiRA AiRAAhUnYFctDmWr5yfiCSE81jODjdH1c+oAWtLlYPn7RBmwSeIzpQBRlEb0r31rFT8GfpMETALl 1x8oFQlZsuaI2sVgjkb31fLuQp10D00eg0HnGBHyqLpm7UUFhtCHIaSSUSSnmuwia7gKHc6fmJXf 7f+mmG/7HyJJy1A1aLozWkV7GG4gS+wnS/Wwkb0OqYonxMn8RFl/VOLSNczYDKRHKDK0euuFUy56 GZcY5Fb7C7icXqxItUbAiby9XLBu3hKt4rMKFCsoYvOF8SakJMAEEJifzNivGTcw5wKCeddVWk/e WCAvzFKTFihyyGJ8WbgaRxTN4LBVs6LZSW7rZCVquNNPbJeMeSnhf1xWuLjMCw2KPeo5EjpAD8Sh vjpXvlyu1RuB6AsSdQQqLff0BVL+VX/63/MbJOCRBFCxrVsBmkkIVEDq0qKr2LxgnS43423RJTZY h6jeXyQz4/VmYi28WCwUXCEBEiABEiABEiABEiABEiABryDg1I9DDBVSdHVZqTohQiIhqrgR3iH7 IC6rrzQfJvePl3cXqfyOQGWktkQ3kwsJVCMBp/pZ1pZhl4Fho51pGis7N0HDCMN3SP/N0nOtKoGQ L+CPBBnz31N1tAhC/W2jVRJvE64huHC0cK7k7vQQZxG+rO+YiooljZoWHGb8sBnNaMbVm7likQXP SIQHMROCTItgDXq8IkL9NHD13TFGDxWXGHR7hAc/PUPj7eH4gaSTuOg6L5HPl6tdDyz04ZPz2wY9 3yFbJHi7JoXEVYzg54l7Zco+DYSGtTWwQAuFkQ6mFWCiytqj6nQN1ReXPCa8xKZr7LSVmhb2U6m5 aj8CsB6enValLUjZBYZ3yski7xQcOWRt2GEh7SCsvDGfAqMbiC9FHDUmVuDEcfqAABQAAixzEvQO BgckRFyj8mDOxcjdErFDlfDBW6T/JsULyD3WyP9WaY2CMI65GIgkR72C7clzCCafJv+aorULsdzw Y4EQjbkSV0WpKI06BssUrWPGbbMoSahZAVAZzJdVQ8wKY9WfsgW6ilZIp4rq0Ls6bt2o/LgEcCHc PU7+UTybA9ZP7y3W2RzfrZJfNui5oy4ByOx4zV8MeoAJtsL7fFl3In7urwTg17QxWe+6mL6BWVG4 CTTBVY/be1kR7A6dvYUL8JkZeifHJC9cYpjGYl8q+Piz/4TrJEACJEACJEACJEACJEACJEACHkXA 3rPDOmKrEI0JtW1inLw2T9023GiSphaE/43QRwQ9whwefiAjdmngLhcS8AQCqMx4FQUcFseQa6Sx qdAaBteQEJEKFlo9MtZF7dTsq9+uVE0bphyQIm8fLZeGS6PqleUtFdS6iKq4UrzBUgHJxoWpMf/F kclmfDL+x9Va6jVUvfTtLwxD2F84fchH5wVJ82AdF4AVP+4JrULV8+eScE1heXmETjeAPxVU3OuH qx0QBOffjdQUtwAI/Rk5LmE+jHS3f4lRjRfx28h7C7eTe8bpW8hT+CuGGCBA4Vf47fUj5Noolayx ZewCIxHYHcy9IV/DFAUHg0PCy36QTuv208F6qfN1AWJS0v+NWG4LYylZu4plZNwqS22wuNSq+qFD I89bhii0v4zVhAUvzSoyb/llvYRt17khy5Nkd7r6t8PRHS+dWGEkKTCD8DFmgWsEL/N6qciVi29y IQF/JoCrBq5isBrDwCjSkeAOg7uHXsvWjcL1Anfo1CeYp2F6CxIr4ElkThL0Z4w8dxIgARIgARIg ARIgARIgARLwKwJOcgpyeyFcFu67iLOFxzWkdfcKvGn83lf1MYQToysaHSsrDmv4McQcLiTg1QQg sCDwG4btCJNGOOK8RA0gh41G6A4ZuFl6rdfAYIQHQ6tHqDB8eqHYw0wAnhuIUb9vgsoykJQRu44I dvgGQKyGcA33eAjFVVVcXYWdav/EEpEqvmLFaZ/pSkV2Ue0nWEMbNMzMMTSAYQIUNwodIwgYlcCY AkYiYK6O4Ya/TdAagnry5HSNlkfMPDL8wlsGsxi6rJAf1+ocotDtei9FEP6iRFl3RHalykFEm1fA 89zpinO6sTv9lW9JgARcCUAbR8beRQd15gtaNQhKvybKiF3HRBVMTsH9Dbcs+w3EeIshMNzwMfkF F3L4Tp1PxIUESIAESIAESIAESIAESIAESIAE3BKA5Ii4d0Swrz0iP6xVvwuEVpbqaaLXaZPLECkK OwWExUJjfHuhxOyRY4x+d0uWH/oWAQibGGMyvbsRUQxjFog2uHbgPICIekQaw/ME1xHMW+B8gmyY sHOB9zVysC45qA4wcHrHVBFYmsDPBGYmCIn8FEr+QsMbZ6Y8bvPGwZXVJkxNQhq6GkDZJSCunykB hw6FIKIe7ivXGO4riB5/YKKm9IXjFsZTYCkDJQ2JSuHqg3S6SISBkZfRsepLMzdeLWtg1wMPZxQu ijg5V4sbhY7EoKgASLCLmpCTr7Ui1ww4N+ZfmEHmvnUp8GxIwPsIYAII/KaQ4RSznFqFSbNhGsRe KnzdSWM3Wj6YBIQx1gGb9drH9Y4bPh4B9oUDXnYaXCcBEiABEiABEiABEiABEiABErATcOozwhIZ 8b3/maWxmhCmNDuYu65oQHH0O6whkPIS8cDQFZE7EgkxIUhyIQG/JeB0QVWRA7YGIReSPsR8TC2B ko/gTIj5CLCEno/I/CWHNG0rrr6p+2XCXg2chrYfbnMsRwZPiPzQmqDzQ0+G1A9h+YNFaoaP6H0M nL21QAOwYSb/+jwN5odlcYe50n6OqtAIz/7PbLU0QXj/8zNUmsakGGhQT06Tx6fptJfHjBdUa/OF t/gcod24J+DLz8/U32Ij2FSHObplWFphR9jjOwt17x8slo8Wy8dL9Kg+XyZfLNd5N9+s1EPtulpd 1mGh3Huj3pFgaA9jZJiQYw7CuDi1VYFP+7wEPf2VSYoCQGBfD3d33IIwhQf6GCyU4bVSvUv1Fm71 Hhu3RgIkgMFQ3AHQjEGqAoxv4s6DQcwAM8mC2/B1Q1rHYBysrm4fIw9Nko+X6l0UCQ7sCy98Ow2u kwAJkAAJkAAJkAAJkAAJkAAJVJyAU48SsjkiOeGGDStsJBaEV/PZRs+0VAC8Ff1uzMKGOI+sgjeO VHUOtgkbjjIfX8Xx85skUELA6WIs+QPXSIAESIAEbATQVkH4+s/r1e8F+SbQCIG1l8YJmOZXZivF ZUYM0g0j5QRMwzD/aFeaHMzWiSpON16nt7Z9cpUESIAESIAESIAESIAESIAESIAEKk/Aqb+J1GDw W3hggvZq4eve2JyU7dSTNfu5iCVDUNlA7dIiZhXBqNtSNWYMQadO26z8wfGXJEACJEACJEACfkAA LQeYuhzKUXl89WEJ3KrzcdAUOW34OpIsI0EzckDDgx0TbYK2yfaUUrzYJimFg29IgARIgARIgARI gARIgARIgARqi4BThxQeF/szZe1RdXGHCwSyBKr2DqXdrfaOMLOB6p+MKdu/H1OUfRX2F0dyauvo uR8SIAESIAESIAGvIoAsM/CJGrVbJ9khDTHaD8hPrTZ3cLTDy0xv6q7hgbzGd4+VDxdLxE5ZkSS7 09RjymlxatU4/ZVvSYAESIAESIAESIAESIAESIAESKBOCJwqvVekFeu7US2dL4/QcLImQYIUq+5F ePSUjQD4C0LU5HnQZrVfRtwa8g/Cf5W94NJc+Y4ESIAESIAEfJkAsi0g+zBc7JCYeMo+HcfH5Dht P/Q3WgumtO40oG80MOoPkabDpGWoXBklz0zXdA9bj/kyKJ4bCZAACZAACZAACZAACZAACZCAnxBw VchhHYNkjoh+77ZakydeGelOeDfVePSjob33l8ZBmtoMZjXI1YgMj+hxIzskFxIgARIgARIgAd8j ANf0WQd0mP6N+fLPyXLbaJXNNWodTQIrfN2dxn5+sNw3XjMvIynq1H2aIBVCvdPi2ixx+gLfkgAJ kAAJkAAJkAAJkAAJkAAJkIC3E0AysuhYeX2+zgdH6DvsZc4eYvjPuJsMrj1uIwYe33xqumZf3Z6q 3q2Ifs8vNALgnWLrvZ0Oj58ESIAESIAEfI4AdG/YwiCrac5JjWBfe0T6bNDcpufBFuZ0ujqmyCF8 vVGgthmuiVJZPmqn5jblQgIkQAIkQAIkQAIkQAIkQAIkQAIk4BRpln5C1h+VsXvkl/Xag4b9O7Kv unGeMQPgi81n0O++cYQ8OkXeX6wRcZP3qQgPBZ4LCZAACZAACZCAhxCAOQws05EnffAW+Xy5vDRL 3dSRwEVH0pFI3ZTZXYfajSd+k0ANdH96hny2TIZs1Y3Awh0btC9OLQr7n7hOAiRAAiRAAiRAAiRA AiRAAiRAAv5MwKnLfDhHonZJx7lGr9w+hdy1V45Pil8Ikr8zWnv0mFSecUJxYrPmy5/Z8txJgARI gARIoOYIWI9acwUJ0MfHyX+Xyp9j5GxzrLz4Me2cSN38q/WUd0jzYI1477NRnWEKS09ew8a5kAAJ kAAJkAAJkAAJkAAJkAAJkAAJVIKAU5/6+ElZd1RnjndZKS/Plr+Ok0siyjWfMRzgA/pK82Hyl7HS Ya70XCuRO2VBosSlO4fGVeLw+BMSIAESIAES8HMCEMOhq2N6GuaXIXYdWU2fmSG3jpZGQwXP39Pm NoWP3NVRar3edo58vULCd2qeF8x340ICJEACJEACJEACJEACJEACJEACJFCjBJzC2QpOqWAOBR7d fDjAv7tIXWXcxMs5BdQ5BNavDYbKOYFybpB28NG7n35A/WO5kAAJkAAJkAAJVIRATr4sOSS/rldp vU24NA4snX6lnCB246GMnzw3Q37bICuSJDtPH+V4oOOxzoUESIAESIAESIAESIAESIAESIAESKBu CTgFwONgtqXIqN2qoj8/U+X060fonPQydXjYxiIGHs6xfaRFsDrGv7NIBm6WiXtlWZLEpmuInesu 6vaUuXcSIAESIAESqHECpyS/QA5ly5ZjOiks2kitguTmmFl2Pp6qCFwv33R9sI5uXxgiN43UZyue yF8u1+lpCIPHZu0LVHY+Z+1AuE4CJEACJEACJEACJEACJEACJEACHkLAtcOOrKlpJyQpR91fh26V V+fJjSPL9p+x4vEGqUqAAHhICq3CdFL8K3Nl0Gad4X6CaVg9pLB5GCRAAiRAAtVNAM4wu9Jk5G75 fJk8OFEui5CWoXLeMI1dt9KjlKxYXuvWikMD3THSDcP20bt1zPrIcR22zi0tsOOoXZ/X1X0q3B4J kAAJkAAJkAAJkAAJkAAJkAAJkEBNEXDt1yO+LmibvLVA7h+vcjokBXjLqIZgiQb2FXw+0HCgRSxf P7k0XP49Vb5ZKWP3yPIk2Z4iB7MFM+td91JT58PtkgAJkAAJkEBlCeBplZknCVmyNUWfYuPipNtq eXaGXDfcmPBlOq7jqYf5X2U9FgdLkyC1kUHs+t3jNHb9h7XqzIb85k4Ln4xOQPiWBEiABEiABEiA BEiABEiABEiABHyMgGvfPytPBfOdqbIwUfpt0hj434+Rs4eUoTOYMfBQIfAaKPWGqFkN5HpoDn+f KB8vkZDtsvqIZOf7GDaeDgmQAAmQgNcSOCXxWTLzgPTZKDCEQfbwG0bIJeHSbJjUw+CyKa2b6npZ ArtDv4zAdaRKGbJFndt3pKpijxlkBYXOWFyfs87f4HsSIAESIAESIAESIAESIAESIAESIAFfJ+Cq D+xJVx/4T5aqwnCdIU3AXqZoTr09+t1aN8PgTTf4vtIqVP45We1qx8TK5mMSl6G2NphW7+Rb6+tc eX4kQAIkQAI1TgCPMOQbxSMGD5p9GTrxatp++Wmd/GeW/G6UoaibUet4QpUTte7QsWa4x1wcJldH ya2j5KXZ8ssGmRuvurrT4vrQdPoC35IACZAACZAACZAACZAACZAACZAACZCAScBVRjhZqNPkkYkV QX2jY+XbVfLcDLWC18hAty8rDB5xg9A3BurU+0sj5LbRcv8E+c9snbwPb1u4yh+nITyrHQmQAAmQ wJkTSD4uyw5J+A71N3txlj5c8Ii5PEKaDjNEdePRU6Sulx21DoH9phHy9HRNMh65U/OibkzWYHjX WVp4Mro+HM/8qPkLEiABEiABEiABEiABEiABEiABEiABEigh4Ko2bDqmmViRUBXT8y8MVXuZxkFS H3Y00OHLljhMOxqV4vvppP6npkvPNTrZPzFbjuVKep7knJT8QoobJeS5RgIkQAJ+RQCPGwz1Ius3 vNZTcuXocVl3VIK3y3uL5K/jpFGgPj7M8dzyQtaNJxGGhhsNlaZB0iJY85/+JUY+WCwRO9QTxmlx fcY5fYFvSYAESIAESIAESIAESIAESIAESIAESKCGCLjqEvCKic9U//Yp+2TYNg0XfGmW/DlGLggp V3uHLI8J/tDe++v/yNyKifzw1318mhrtIhI+bIfMT5S9Gaq9cCEBEiABEvBJAjCEgY8ZIswRZ/7D OnlnoeYw/dsENYSBSK6PCeMZUWS3XtZ4rjHlCp4wiHV/Ypp8uFh6b9BpWXiIYIoWRHvXxfVZ5vod fkICJEACJEACJEACJEACJEACJEACJEACdUjAVb6Are7MeOmxRv49Va3d4QPfYKg65Z5l2tGUpZzg c1ONh9ICa5qBcuMIeXm2/Lpe5iVoJPyJAvXshQ5fYMz0d91vHULgrkmABEiABCwCuD8XGiHrmLuE WzfMxJCnOzpW3WAgjF8RWXSTV10dL/Pmbz4gXP83HhmIWsdDBI8SPFAwT+rJadJ9jUzdr+5nXEiA BEiABEiABEiABEiABEiABEiABEjAhwm4yuAQW3anq2aO2HWI8G8ukEenajgiJvu7N4S3ZHlTeDeD 4fupzHJNVJEn/KfLpPdGzfG6MFFdAlzT2/kwYZ4aCZAACXgUAdz2M/JkZ5rekJGto+8m+WK5dJwr D0+WW0YZk54whApDGCtk3ZDQy7z/O+ScQONuP14zgPwXd/sNmowb/u0HMlXGd1qwd9fnjtN3+JYE SIAESIAESIAESIAESIAESIAESIAEfJKAKYxAMEGMOl5IgTcnXn5ep1401w0v24gGCrwZAGn/f7AG zOOFuEe8zg9WLwL49AZuleVJagJMBcYnqxBPigRIoM4JwE9sw1GJ2CkY+nxoklwcVnQfNu/JRRk9 7Lfr0wnsCFl/bKp8tVxG7tYhVGy/oFCldbxc7+Sun9Q5EB4ACZAACZAACZAACZAACZAACZAACZAA CdQ5AbeaCcwBVhzWwPUfDUff52aqin7zSHX0haheZjykKcgjHr44GD6gr5oPwBz+gQnSfo50WSmO zRohOTdBNiRLfJb6G3AhARIgARKwE8BtGbZdSTmyPUWWJml6Dvir990ony1Tdy/cjTEwiuBz3GBL 4tVNQ5hy7s8OaRyoHjJ/iNaId4Ssf7RYjcJgL7PysBzKtu+f6yRAAiRAAiRAAiRAAiRAAiRAAiRA AiRAAtVDwK38jhBH2NFk56tZASQgmNL02SCvzJM7xkiDIWcYD+9QxR72v1B+mg6TZsPUH/6ZGfLV CgndoU4FybluAimr59y4FRIgARLwPAK462KS0dJDErJdvlwhT0/XdKXNgwUZSJsESaOhUt/Mu+EU qW6+LUtgd+jN+ZaROmsJBmLj42R3miCpB+YcYZQTYr6rIQzAuL3/ex4wHhEJkAAJkAAJkAAJkAAJ kAAJkAAJkAAJ+AgBt2oMbNvXHtUgyZ/WqS3849PU3f320XJlpLQI0fh2daEpSxQyQ+LhKmyFxPfR FH6Xhss94zQCEzr8kK0yca/MT5A1RzTZ38Fs2tT4SHXiaZCAzxPAPTMrX6PHd6XpHWx+okzaK0O3 6p0Nkeq4y+Fep5mpcd+ruLO6cdvEwCXGKy+LkFtGyz3jNR/Ha/Pkh7UyOlZ3lJbrBq3bG7ib7/Ej EiABEiABEiABEiABEiABEiABEiABEiCBuiBQlnqDYHhEwh89LglZEpeh7jGDNsuHi9XEAG4G8BYu T343FXgrkhMmCYZPAiI8EeqJ7K7wKL48UqPiH5miRvHICQizhe2pcoLWNHVRB7hPEiABk8DJQtmf KYsOqvfL92vkjQXqqY47FW56uGth8BF3MNzHdPyx+LZWkhGj/LuiYQWDnKdPTZdPl8rgrTI7XgV8 WHIdyZH0PMnF3c8lgSnLhQRIgARIgARIgARIgARIgARIgARIgARIwPcIuNXkEzLVlGbwFum8RGXz /2/vzIOrKs8wPlO7Wq2trdbKtHVc6lJbrVrEaa1WO6XW2k611qm1i120Lp3S6bTaTVtLbastii3K EiEIAYSwBoQ0CAGEsES2IGtYEpYAIRCWACLy9nnuSe4EyE1ukECH/DLfZG6Sm3PP+Z3vO3887/M9 75XDnJ+gmHepUnJsKm2mBUt8oslLs0ob45Vj3M1a1nkD44ZRcfek+NPs6Ls4Jlba6lm2JVbUWvxX WI1ScRSP0+RZnXjwuSIIQOAtElDuSt2+2LIn1u2K8tpYVBOlm6J4XQxYGl1L457i6DzGvS3e2zuV pt44UF1Pp1StsMXyooJf3pcTZ/XzM1Ciup6HOub9U6LbfG/tKatJyelNXQbPsaao8DsIQAACEIAA BCAAAQhAAAIQgAAEINCOCGQSiKRoyQ8vd6ic6kqnKayIXovityWOlLkm30pUC5pVY1d84h1N1HhJ Xj3cWFDm0rNzrcZfOiQ6Doubx8W9xfag9lti+71ianQCfEEAAu2ZgB4CCjlXKVAG9cdL474pccu4 6JgfnxoS5+c5ueX0lEfdO3T0YEnk9ORpk96P07xNPfVXVRWvzq8Py1KwTGGln3h67unppxT3Ovbp tOcpyLVDAAIQgAAEIAABCEAAAhCAAAQgAIE2IJBJk6/YEUWV0aMsukyLmwriwkEOajgr1yKYGguq q6ACjVuW5ZP3JJEOUszSufFPxUnPxgV58eUx8bPi+PurMXCZoyEU2rB6u73xG+vscVVOjgQxdRvM dJJtwINDQgACrSagFaqAFwWtqEPo1r0u56n1g54hSriaXx1jVztE/Q8z44cvO+fqE3mp1s9H4E5v eJ5IhH9nT7vc358TZ/aLDv3jnAFxyaD46lhHaf17oXX1NdubvgoeJk1z4bcQgAAEIAABCEAAAhCA AAQgAAEIQAACbUMgkx61701r4BLQ5lVbGx+7JvovjX/MtSB/R2F8YWRcMDBOUc6D1PVspPjEpJo2 xkuKTw0paaf0scf+3IF2ul4zPG4cHV8fFz+aFA/NiH/O84e+VGGTqtS83dhT22YOcFQINElAxa/1 Oy2hF62NQcvjmYXxx1kumd02PjoXxOdHxBVDXZuTO12bXFSVc8ZL99TSbuxRz96grij13g5+UavT W8fHg1Oi65x4fnGMWe1eqOmezirMZXpqZfp9k1fHLyEAAQhAAAIQgAAEIAABCEAAAhCAAAQgcLwI ZBKy9u13XEPBqnhqvr2mN421nVU2VGXFS41/Ty8bU5X97piILJX5BlNrfd/DRLhL9PnuPtr5qRh5 WWcfmRU5i93ccOEWdzaUz7Z2rw23O/fZJy/zrdRCuXCVEZ3p5I8XTD4XAseSgOb//gOhCppWhNaF VofWiFaK1otWjYJWlmz19hY1ZVBrBpW6tA/lojx3IK0Xz7X6DtfPs6myNaxlLX89BLR49UCQTV0P B3VnPm+A3e/3FceT82LkylhYnTF4ivV7LGcLnwUBCEAAAhCAAAQgAAEIQAACEIAABCBwvAg0o4Op d6qCYqSEyxuvvoTKcv/XfIfG/3hSfOOluHaEexd+JNcS3JHr8A0ivFXBp+2tlZp3Rl/7YxOrvNS8 b46P7010WPTDJfG3V91GNm+ZvfrTNvjc5JmX5NjMVRwvsHwuBFpFQOnoVbvcK2H2Rivnw8stnj+9 IB6bE7+a7sajdxZ53WnzSKd891nQGtFKOblXavVp7WgkvvREWm8cnJ61ri5RXYW2cwfEVcMspKs9 hNbd72d64Wv56yFQvN6LrnKn1X6+IAABCEAAAhCAAAQgAAEIQAACEIAABCAAgbYgsH2vVThFRvyn LH49PW6f4I6HSpiRIfak5+JtGs/aHm+H/BGPdKLFIS8adMUz+8blLzoOWuUA59jMjdwlluVnbYyV tQ6Wl08+GfvfDI8Dts0nQ3J9erQFH455ohJITxu9SE8nTS2P1DRLz7pte6K8NmZujNGromdZPDor 7pns2CX1G/1ofy+T+s0gms+HzPD0j61aO/qvhvcnS09rUCtRH6RxWh/Xs24ea2u6ejEoZ+aVDVbR 40DGG6UL5AsCEIAABCAAAQhAAAIQgAAEIAABCEAAAhBoawLNC3HKvlAfxrKamLo+Rq6yZVeJ7nLM PjA17poYt4xzjPxnXnTCzIf7OafiCDX5RJOUVnlwdk29bV7WX7V67O6Dn9rbnvzz8yzOK7z6KwXx rQluCqnzkUovL7FOTxb63KUxdIXleoVOz6iKVzfHazXWS2X4V3aHcjzoCdvW8+o4Hl9Teu/+2LY3 NuzyTS/bErM3eZfHhIoYsdLqtALJ1eLzibnx5znxmxmePJpCtxe63HPdyPjssLhkcHz8hfhQX+/X sH6ezMC0C/2QgPRk9jbI42mdPMsXsrir2CRT+mUvejV9bVx8tyjun+KtKGrW0Oe1yC/3NFYTB20G 2fl6C1ybX84t/DN/hgAEIAABCEAAAhCAAAQgAAEIQAACEIAABNqGQPPCnf4qP7A8wDIAJ6nUUjg1 FGIjO7qyYoaVR/cF1gylZHYeE58e4vQMq/GNjLtZCpL1b0tUzRa/p2RPfVDaDyyXvsY7etYP5edo qLOkdE5J90rJ7pgK31ADSuVmd3nFAdrd5kfOa76EwsqYWRWLa1x02JW5R2Tb3IH2flRNLWUNqUQi /hLMX17rRJSBy6LnonhybjwyO375ik3m3/mvNerrR8aVQ9254Oxcty3Q/U1utO7721P9CxJnuCzi mhueh8locTql35D+l1a96OHTkAFeGr6KUz+d7G6nqgeNKI/pG7xSpJ/vSS0cFYC0jnTJWlNaWc2v vvY+M7h+CEAAAhCAAAQgAAEIQAACEIAABCAAAQi0AwLZiITSErfsieXbHBQzvsJZ7nIaPzY7ukyz Mv/tQsuSip6+dqRlcKn0UlA/9kKc2c8dHiWiWiaVBNoqzTPTm9NSapJpc7i1PgmlT7zNMth3S9ns Fa+dElFP7RMf7Gt1V0HcFw3yqUpT/dyIuGG0W9YqqVvXcleR43HkVZYy/FCJ28v+tdRa8TMLLBpr s0D/pTFgWeQtj8HLY8iKGFpuM/PwlW5eKW1ZCT9jV8e4NQZVWOG+tBPX2uo8eZ3d2lM3OEVE7v2S jYY5Z1OUbraTPxl6XbrJv9SQWJ0MvU1DoSjJKNH/VvkIyZheZRFYx9RQxURDmxqU+K1PLFobEyrj pTVRsNonJpe4ihE6YXnFdf7aTaBrkRNbSrKKLNpioJCTv8zx9f6uxAlFurkPTLE2roqGwvyVK37b BIvkXxptYlcMjYsHxzkveIuEklIkUDubRdgFPGEu+Im3XN91U9I55+kuorp3yU1M39NMN71Vv+/h qo0s7gpF17lpHmo2yoXeabjvsuJclLz0/Ynx4FSr6KrRJBnpujVKZ1KZIMuM9GxWTTt4eHCJEIAA BCAAAQhAAAIQgAAEIAABCEAAAhCAQCsIZKMr6j2y+MrrqxybujesWCq5XcEgNXucA7Npt33mi2qs NkvyzVnswA3FyPxkctw63kkgCrWWAG5Z/mhp8ofIs2k59+i+SH1K4rtu7MxPLNmN/fmJZ1vf39XL 492pIUHYo3ecnGHoTx7J2w7+nhyhye/JRyRG8WR3QJLnr7M6KM//6KJofLRD4B/VH1UukX6uVKIv jvLkUVlEdYHHS+O5Ra59qLqhtqcraqOqzrOueo9noOahZqPm5O43vJVDE1XFI74gAAEIQAACEIAA BCAAAQhAAAIQgAAEIAABCJzwBCTab6qLZVtt8y5eZ6O4/NhKiZEBu2upg25+PjXunmSLsozKctRL d1UgvKzLVw2zh/mTg+PCvDh3oFVZafhK2P5ATkiklWotuVvKszNJJA4fVRG4vR8txVNsJfWrF8Bp OXH6897aIP66C9pHcEFeXDzIVZXLh/o2dcq3Pf66UXHj6OhcYMO89hRol4QM52oxoHh2bSIYvMK2 fFn3VaaR51zR/XxBAAIQgAAEIAABCEAAAhCAAAQgAAEIQAACEIBAlgSyMdIffqjEWi/fstzL8jDX vm5L8+bdsbHOpvrKnbF6u5tvKgln6bZYvNUNWOdXO5hFYr4acSplRb7o3CXWeJ9a4ECVR2fFwyXx i2lxb3H84OW4o9AhM5KFrx8VV+fHZUPiwkFuytkh11klas3ZWM+Xgfz/V3vv4XKDvPRKWTnj+ejQ 30q4glYuHexkGGngavopAfymAl+vutneWWQN/J5iy+DO1Znh9BV1tn1yXvRQZ9sljqaRJC6Mir6R Kr5kayzbZm/5qu2xZodFcvGXz1z3QklER8tkfmST5PBpw28gAAEIQAACEIAABCAAAQhAAAIQgAAE IAABCEDgLRI4xoKtPm5fqhYgh/bWvU7XqdplLVpVAEnTS1P6/4LqmLs55lW7EKDXShEvSw2VBtRy VENv05CararBim0uH6zcbllbB5GyXbHDZQUdc50k7tSQyq0oFX2i4n0OvPkWgfHvEIAABCAAAQhA AAIQgAAEIAABCEAAAhCAAAQgAAEIHETgGNcaDvpsfoAABCAAAQhAAAIQgAAEIAABCEAAAhCAAAQg AAEIQAACEIAABCAAAQhAAAIQgAAEIAABCEAAAhCAAAQgAAEIQAACEIAABCAAAQhAAAIQgAAEIAAB CEAAAhCAAAQgAAEIQAACEIAABCAAAQhAAAIQgAAEIAABCEAAAhCAAAQgAAEIQAACEIAABCAAAQhA oA0I/A+niu4mCmVuZHN0cmVhbQplbmRvYmoKMTIgMCBvYmoKMjgxMjk4CmVuZG9iagoyMCAwIG9i ago8PCAvTGVuZ3RoIDIxIDAgUiAvTiAzIC9BbHRlcm5hdGUgL0RldmljZVJHQiAvRmlsdGVyIC9G bGF0ZURlY29kZSA+PgpzdHJlYW0KeAGdlndUU9kWh8+9N73QEiIgJfQaegkg0jtIFQRRiUmAUAKG hCZ2RAVGFBEpVmRUwAFHhyJjRRQLg4Ji1wnyEFDGwVFEReXdjGsJ7601896a/cdZ39nnt9fZZ+99 17oAUPyCBMJ0WAGANKFYFO7rwVwSE8vE9wIYEAEOWAHA4WZmBEf4RALU/L09mZmoSMaz9u4ugGS7 2yy/UCZz1v9/kSI3QyQGAApF1TY8fiYX5QKUU7PFGTL/BMr0lSkyhjEyFqEJoqwi48SvbPan5iu7 yZiXJuShGlnOGbw0noy7UN6aJeGjjAShXJgl4GejfAdlvVRJmgDl9yjT0/icTAAwFJlfzOcmoWyJ MkUUGe6J8gIACJTEObxyDov5OWieAHimZ+SKBIlJYqYR15hp5ejIZvrxs1P5YjErlMNN4Yh4TM/0 tAyOMBeAr2+WRQElWW2ZaJHtrRzt7VnW5mj5v9nfHn5T/T3IevtV8Sbsz55BjJ5Z32zsrC+9FgD2 JFqbHbO+lVUAtG0GQOXhrE/vIADyBQC03pzzHoZsXpLE4gwnC4vs7GxzAZ9rLivoN/ufgm/Kv4Y5 95nL7vtWO6YXP4EjSRUzZUXlpqemS0TMzAwOl89k/fcQ/+PAOWnNycMsnJ/AF/GF6FVR6JQJhIlo u4U8gViQLmQKhH/V4X8YNicHGX6daxRodV8AfYU5ULhJB8hvPQBDIwMkbj96An3rWxAxCsi+vGit ka9zjzJ6/uf6Hwtcim7hTEEiU+b2DI9kciWiLBmj34RswQISkAd0oAo0gS4wAixgDRyAM3AD3iAA hIBIEAOWAy5IAmlABLJBPtgACkEx2AF2g2pwANSBetAEToI2cAZcBFfADXALDIBHQAqGwUswAd6B aQiC8BAVokGqkBakD5lC1hAbWgh5Q0FQOBQDxUOJkBCSQPnQJqgYKoOqoUNQPfQjdBq6CF2D+qAH 0CA0Bv0BfYQRmALTYQ3YALaA2bA7HAhHwsvgRHgVnAcXwNvhSrgWPg63whfhG/AALIVfwpMIQMgI A9FGWAgb8URCkFgkAREha5EipAKpRZqQDqQbuY1IkXHkAwaHoWGYGBbGGeOHWYzhYlZh1mJKMNWY Y5hWTBfmNmYQM4H5gqVi1bGmWCesP3YJNhGbjS3EVmCPYFuwl7ED2GHsOxwOx8AZ4hxwfrgYXDJu Na4Etw/XjLuA68MN4SbxeLwq3hTvgg/Bc/BifCG+Cn8cfx7fjx/GvyeQCVoEa4IPIZYgJGwkVBAa COcI/YQRwjRRgahPdCKGEHnEXGIpsY7YQbxJHCZOkxRJhiQXUiQpmbSBVElqIl0mPSa9IZPJOmRH chhZQF5PriSfIF8lD5I/UJQoJhRPShxFQtlOOUq5QHlAeUOlUg2obtRYqpi6nVpPvUR9Sn0vR5Mz l/OX48mtk6uRa5Xrl3slT5TXl3eXXy6fJ18hf0r+pvy4AlHBQMFTgaOwVqFG4bTCPYVJRZqilWKI YppiiWKD4jXFUSW8koGStxJPqUDpsNIlpSEaQtOledK4tE20Otpl2jAdRzek+9OT6cX0H+i99All JWVb5SjlHOUa5bPKUgbCMGD4M1IZpYyTjLuMj/M05rnP48/bNq9pXv+8KZX5Km4qfJUilWaVAZWP qkxVb9UU1Z2qbapP1DBqJmphatlq+9Uuq43Pp893ns+dXzT/5PyH6rC6iXq4+mr1w+o96pMamhq+ GhkaVRqXNMY1GZpumsma5ZrnNMe0aFoLtQRa5VrntV4wlZnuzFRmJbOLOaGtru2nLdE+pN2rPa1j qLNYZ6NOs84TXZIuWzdBt1y3U3dCT0svWC9fr1HvoT5Rn62fpL9Hv1t/ysDQINpgi0GbwaihiqG/ YZ5ho+FjI6qRq9Eqo1qjO8Y4Y7ZxivE+41smsImdSZJJjclNU9jU3lRgus+0zwxr5mgmNKs1u8ei sNxZWaxG1qA5wzzIfKN5m/krCz2LWIudFt0WXyztLFMt6ywfWSlZBVhttOqw+sPaxJprXWN9x4Zq 42Ozzqbd5rWtqS3fdr/tfTuaXbDdFrtOu8/2DvYi+yb7MQc9h3iHvQ732HR2KLuEfdUR6+jhuM7x jOMHJ3snsdNJp9+dWc4pzg3OowsMF/AX1C0YctFx4bgccpEuZC6MX3hwodRV25XjWuv6zE3Xjed2 xG3E3dg92f24+ysPSw+RR4vHlKeT5xrPC16Il69XkVevt5L3Yu9q76c+Oj6JPo0+E752vqt9L/hh /QL9dvrd89fw5/rX+08EOASsCegKpARGBFYHPgsyCRIFdQTDwQHBu4IfL9JfJFzUFgJC/EN2hTwJ NQxdFfpzGC4sNKwm7Hm4VXh+eHcELWJFREPEu0iPyNLIR4uNFksWd0bJR8VF1UdNRXtFl0VLl1gs WbPkRoxajCCmPRYfGxV7JHZyqffS3UuH4+ziCuPuLjNclrPs2nK15anLz66QX8FZcSoeGx8d3xD/ iRPCqeVMrvRfuXflBNeTu4f7kufGK+eN8V34ZfyRBJeEsoTRRJfEXYljSa5JFUnjAk9BteB1sl/y geSplJCUoykzqdGpzWmEtPi000IlYYqwK10zPSe9L8M0ozBDuspp1e5VE6JA0ZFMKHNZZruYjv5M 9UiMJJslg1kLs2qy3mdHZZ/KUcwR5vTkmuRuyx3J88n7fjVmNXd1Z752/ob8wTXuaw6thdauXNu5 Tnddwbrh9b7rj20gbUjZ8MtGy41lG99uit7UUaBRsL5gaLPv5sZCuUJR4b0tzlsObMVsFWzt3Waz rWrblyJe0fViy+KK4k8l3JLr31l9V/ndzPaE7b2l9qX7d+B2CHfc3em681iZYlle2dCu4F2t5czy ovK3u1fsvlZhW3FgD2mPZI+0MqiyvUqvakfVp+qk6oEaj5rmvep7t+2d2sfb17/fbX/TAY0DxQc+ HhQcvH/I91BrrUFtxWHc4azDz+ui6rq/Z39ff0TtSPGRz0eFR6XHwo911TvU1zeoN5Q2wo2SxrHj ccdv/eD1Q3sTq+lQM6O5+AQ4ITnx4sf4H++eDDzZeYp9qukn/Z/2ttBailqh1tzWibakNml7THvf 6YDTnR3OHS0/m/989Iz2mZqzymdLz5HOFZybOZ93fvJCxoXxi4kXhzpXdD66tOTSna6wrt7LgZev XvG5cqnbvfv8VZerZ645XTt9nX297Yb9jdYeu56WX+x+aem172296XCz/ZbjrY6+BX3n+l37L972 un3ljv+dGwOLBvruLr57/17cPel93v3RB6kPXj/Mejj9aP1j7OOiJwpPKp6qP6391fjXZqm99Oyg 12DPs4hnj4a4Qy//lfmvT8MFz6nPK0a0RupHrUfPjPmM3Xqx9MXwy4yX0+OFvyn+tveV0auffnf7 vWdiycTwa9HrmT9K3qi+OfrW9m3nZOjk03dp76anit6rvj/2gf2h+2P0x5Hp7E/4T5WfjT93fAn8 8ngmbWbm3/eE8/sKZW5kc3RyZWFtCmVuZG9iagoyMSAwIG9iagoyNjEyCmVuZG9iago3IDAgb2Jq ClsgL0lDQ0Jhc2VkIDIwIDAgUiBdCmVuZG9iagoyMiAwIG9iago8PCAvTGVuZ3RoIDIzIDAgUiAv TiAxIC9BbHRlcm5hdGUgL0RldmljZUdyYXkgL0ZpbHRlciAvRmxhdGVEZWNvZGUgPj4Kc3RyZWFt CngBpVcHWJPXGj7/SMJK2FNG2MgyoOwZmQFkD0FUYhJIGCEGgoC4KMUK1i0OHBUtilK0WhEoLtTi oG5Q67hQSwWlFqu4sHrPCaDQ9rn3Ps/N/xz+93xnfOs9338AQF3IlUiycQBAjjhfGhLLTp6ZnMKk 3QMKQBeoAkegyuXlSdjR0RFwChDnigXoPfH3sgtgSHLDAe01cey/9ih8QR4PzjoFWxE/j5cDAOYN AK2PJ5HmA6BoAeXmC/IlCIdCrJUVHxsAcSoACiqja6EYmIQIxAKpiMcMkXKLmCHcnBwu09nRmRkt zU0XZf+D1WjR//PLyZYhu9HPBDaVvKy4cPh2hPaX8bmBCLtDfJjHDYobxY8LRImREPsDgJtJ8qfH QhwG8TxZVgIbYnuI69OlwQkQ+0J8WygLRXgaAIROsTA+CWJjiMPE8yKjIPaEWMjLC0iB2AbiGqGA g/IEY0ZcFOVz4iGG+oin0txYNN8WANKbLwgMGpGT6Vm54cgGMyj/Lq8gDsnlNhcLA5CdUBfZlckN i4bYCuIXguwQNB/uQzGQ5EejPWGfEijOjkR6/SGuEuTJ/YV9Sle+MB7lzBkAqlm+NB6thbZR49NF wRyIgyEuFEpDkRz6Sz0hyZbzDMaE+k4qi0W+Qx9pwQJxAooh4sVSrjQoBGIYK1orSMS4QABywTz4 lwfEoAcwQR4QgQI5ygBckAMbE1pgD1sInCWGTQpn5IEsKM+AuPfjOOqjFWiNBI7kgnQ4MxuuG5My AR+uH1mH9siFDfXQvn3yfXmj+hyhvgDjr4EMjgvBABwXQjQDdMslhdC+HNgPgFIZHMuAeLwWZ8gj ZxAtt3XEBjSOtPSPasmFK/hyXSPrkJcjtgVAm8WgGI4h2+Sek7oki5wKmxcZQfqQLLk2KZxRBBzk cm+5bEzrJ8+Rb/0ftc6Hto73fny8xmJ8GsYrH+6cDT0Uj8YnD1rzDtqdNbr6UzTlGtcYyGwkkqpV MZw5tXKLke/MUulcEe/K6sH/kLVP2RrT7jAhb1HjeSFnCv9vvIC6KNcpVykPKDcBE75/oXRS+iC6 S7kHnzsf7YkexwcUe8QcEfwrgj6OMWCEWTy5BOUiGz4oL3+381PORvb5yw4YIdeLOMuW74IYlgMb yqxAntcQqJ8L85EHoy2DPEXccICMGZ+7ES3jTkB7SaseYHatPHUBMOvVms/Ltcij3Uk2pd5QaS9J F68xkEjm1JYMCySfRlEeBMsjX0aCUnvWIdYAaw+rnvWc9eDTDNYt1m+sTtYuOPKEWE8cJY4TzUQL 0QGYsNdCnCaa5aieaIXPtx/XTWT4yDmayHDEN94oo5GP+aOcGs/9cR7K4zUWLTR/LFOZoyd1PPdQ fMczBmXsf7NofEYnVoSR7MhPHcOc4cSgMWwZLgw2A2OYwseZ4Q+ROcOMEcHQhaOhDGtGIGPSx3iM nHFkBzrviGFjdeFTFUuGo2NMQP4JIQ+k8prFHfX3rz4yJ3iJKppo/KnC6PBkjmgaqQljOsfiKmfI hJOVADWJwAJohxTGFZ12MawlzAlzUCVGVQgyEpslz+E/nATSmHQiObAyRQEmySZdSP9RjKqVN3xQ rRqp3g6kHxz1JQNJd1THxnsAdx+JF6po/2z9+JMhoHpSralBVGv53nLvqIHUUGowYFKdkJw6hRoG sQealS8ohHcPAAJyJUVSUYYwn8mGtxwBkyPmOdoznVlO8OuG7kxoDgDPY+R3IUyngyeTFozISPSi ACV4n9IC+vCrag6/1g7QKzfgBb+ZQfAOEAXiQTKYA/0QwkxKYWRLwDJQDirBGrARbAU7wR5QBxrA YXAMtILT4AdwCVwFneAu/J70gidgELwEwxiG0TA6ponpYyaYJWaHOWPumC8WhEVgsVgyloZlYGJM hpVgn2GV2DpsK7YLq8O+xZqx09gF7Bp2B+vB+rE/sLc4gavgWrgRboVPwd1xNh6Ox+Oz8Qx8Pl6M l+Gr8M14DV6PN+Kn8Ut4J96NP8GHCEAoEzqEKeFAuBMBRBSRQqQTUmIxUUFUETVEA6wB7cQNopsY IN6QVFKTZJIOMIuhZALJI+eTi8mV5FZyH9lIniVvkD3kIPmeQqcYUuwonhQOZSYlg7KAUk6potRS jlLOwQrdS3lJpVJ1YH7cYN6SqZnUhdSV1O3Ug9RT1GvUh9QhGo2mT7Oj+dCiaFxaPq2ctoVWTztJ u07rpb1WUFYwUXBWCFZIURArlCpUKexXOKFwXeGRwrCimqKloqdilCJfsUhxteIexRbFK4q9isNK 6krWSj5K8UqZSsuUNis1KJ1Tuqf0XFlZ2UzZQzlGWaS8VHmz8iHl88o9ym9UNFRsVQJUUlVkKqtU 9qqcUrmj8pxOp1vR/ekp9Hz6Knod/Qz9Af01Q5PhyOAw+IwljGpGI+M646mqoqqlKlt1jmqxapXq EdUrqgNqimpWagFqXLXFatVqzWq31IbUNdWd1KPUc9RXqu9Xv6Dep0HTsNII0uBrlGns1jij8VCT 0DTXDNDkaX6muUfznGavFlXLWoujlalVqfWN1mWtQW0N7WnaidqF2tXax7W7dQgdKx2OTrbOap3D Ol06b3WNdNm6At0Vug2613Vf6U3S89cT6FXoHdTr1Hurz9QP0s/SX6t/TP++AWlgaxBjsMBgh8E5 g4FJWpO8JvEmVUw6POknQ9zQ1jDWcKHhbsMOwyEjY6MQI4nRFqMzRgPGOsb+xpnGG4xPGPebaJr4 mohMNpicNHnM1GaymdnMzcyzzEFTQ9NQU5npLtPLpsNm1mYJZqVmB83umyuZu5unm28wbzMftDCx mGFRYnHA4idLRUt3S6HlJst2y1dW1lZJVsutjln1WetZc6yLrQ9Y37Oh2/jZzLepsbk5mTrZfXLW 5O2Tr9riti62Qttq2yt2uJ2rnchuu901e4q9h73Yvsb+loOKA9uhwOGAQ4+jjmOEY6njMcenUyym pExZO6V9ynuWCysbft3uOmk4hTmVOrU4/eFs68xzrna+OZU+NXjqkqlNU59Ns5smmLZj2m0XTZcZ Lstd2lz+dHVzlbo2uPa7WbiluW1zu+Wu5R7tvtL9vAfFY7rHEo9Wjzeerp75noc9f/dy8Mry2u/V 523tLfDe4/3Qx8yH67PLp9uX6Zvm+5Vvt5+pH9evxu9nf3N/vn+t/yP2ZHYmu579dDprunT60emv AjwDFgWcCiQCQwIrAi8HaQQlBG0NehBsFpwRfCB4MMQlZGHIqVBKaHjo2tBbHCMOj1PHGQxzC1sU djZcJTwufGv4zxG2EdKIlhn4jLAZ62fci7SMFEceiwJRnKj1UfejraPnR38fQ42JjqmO+TXWKbYk tj1OM25u3P64l/HT41fH302wSZAltCWqJqYm1iW+SgpMWpfUPXPKzEUzLyUbJIuSm1JoKYkptSlD s4JmbZzVm+qSWp7aNdt6duHsC3MM5mTPOT5XdS537pE0SlpS2v60d9wobg13aB5n3rZ5g7wA3ibe E74/fwO/X+AjWCd4lO6Tvi69L8MnY31Gv9BPWCUcEAWItoqeZYZm7sx8lRWVtTfrQ3ZS9sEchZy0 nGaxhjhLfDbXOLcw95rETlIu6Z7vOX/j/EFpuLQ2D8ubndeUrwX/weyQ2cg+l/UU+BZUF7xekLjg SKF6obiwo8i2aEXRo+Lg4q8Xkgt5C9tKTEuWlfQsYi/atRhbPG9x2xLzJWVLepeGLN23TGlZ1rIf S1ml60pffJb0WUuZUdnSsoefh3x+oJxRLi2/tdxr+c4vyC9EX1xeMXXFlhXvK/gVFytZlVWV71by Vl780unLzV9+WJW+6vJq19U71lDXiNd0rfVbu2+d+rridQ/Xz1jfuIG5oWLDi41zN16omla1c5PS Jtmm7s0Rm5u2WGxZs+XdVuHWzurp1Qe3GW5bse3Vdv726zv8dzTsNNpZufPtV6Kvbu8K2dVYY1VT tZu6u2D3r3sS97R/7f51Xa1BbWXtn3vFe7v3xe47W+dWV7ffcP/qA/gB2YH++tT6q98EftPU4NCw 66DOwcpD4JDs0ONv077tOhx+uO2I+5GG7yy/23ZU82hFI9ZY1Dh4THisuym56VpzWHNbi1fL0e8d v9/batpafVz7+OoTSifKTnw4WXxy6JTk1MDpjNMP2+a23T0z88zNszFnL58LP3f+h+AfzrSz20+e 9znfesHzQvNF94vHLrleauxw6Tj6o8uPRy+7Xm684nal6arH1ZZr3tdOXPe7fvpG4I0fbnJuXuqM 7LzWldB1+1bqre7b/Nt9d7LvPPup4Kfhu0vhJb7ivtr9qgeGD2r+NflfB7tdu4/3BPZ0/Bz3892H vIdPfsn75V1v2a/0X6semTyq63Pua+0P7r/6eNbj3ieSJ8MD5b+p/7btqc3T7373/71jcOZg7zPp sw9/rHyu/3zvi2kv2oaihx68zHk5/Kritf7rfW/c37S/TXr7aHjBO9q7zX9O/rPlffj7ex9yPnz4 Ny1d8BwKZW5kc3RyZWFtCmVuZG9iagoyMyAwIG9iagozMzY3CmVuZG9iagoxMCAwIG9iagpbIC9J Q0NCYXNlZCAyMiAwIFIgXQplbmRvYmoKMjUgMCBvYmoKPDwgL0xlbmd0aCAyNiAwIFIgL0ZpbHRl ciAvRmxhdGVEZWNvZGUgPj4Kc3RyZWFtCngBnVvbktvIkX3HV9TaL+yIaQxBgje/zcqzsb6E12P1 xDx4/ACCaBISCHAIUJzev/QP+Ft8Mk8WLt2ERFlShCrrmsjKexZ/cT+4X9wUfxebRThbu3UcheuN O2fuJ1e6b9/VkUtrF+nfOsW8dTwLV2t3xIKlBwoBgsdpOIs2m9V05QpMHIAH96wnLeZhvN5EG7dY hsvNbDNz8XodzqfRyq3mUYi1cnbQP1uQmzqc/QuQkGbkFpi9Wrr06P77yUXWy/+eju7bpyfB9+nZ /d1Nzg9BtHaTLK3OD05au9o9uMfFIly5yemyLfL6kO26ru1L124OWQeUSZNXZVK4h8BW24bZPq+b c3Lu7dsckqZbmfiJXdfJuqrqGcv8htVzNwNn5+cOLLK9HO0Rr5ukudTfdB1J2X5DMBke3xzyHmrn PD1g2T/c0x/d9096J32qLuNbVA1eUzUvn6vzUSnirnlROKBbum3mkk9JXiTbInN5KZ3umm3d1n/t tc7OMlCVmavz4wnT9lndXPwlhYYYbnDGG5z814N7+kBMwYwzYcYbzLDAgDLD90/BDy3XjnBOPL31 je71Nz4p3YLH9SrcuMlPD8J1E3wNLoFdvK5otQjBVl33X5QsSnLOqw/VpcD1+K3KSpmDg6BZu+Gl 3GXnuqkqvUuOJ72NEj8VV1ydqqLa5ym5gnNB7+qs/EuYCLK9z2RF3uRp/Tu/jZtgR4+VXFSLia4c 4xFoiduSFwwkT3g0U+wjSBtIdM0bYb1HA8uqB6RZ2fTFROcEEyMx16dVO6cqQlk8j6AySHvb9A9l 3WTJTiXDunJQO/CHUhRsROlp7VYiT1VNmtoAGL2HpxLs7bFNlh5Kfxn+3PL5nEAzXFJhcNU9etc2 3ODzW7SUC8boHd2j6YLJLjsV1Qt12XwuPEtdxnZ3G4SrUgmo8+rqU+YxzPcYCB45KS2qC/UlYdMy BC712FnGSjItmCR7XK2yAZfJd+Pm9OCsVFXRwiBWrbLB4T6OoktavHAA7193eVI1PUa96b0arc73 Bx4ehws3SasjuXeu4LPXYUdFX/s8TgpUWyi3T1SJ8kE2g4aA0LGCfGNMzBDJr5P81YDqCg/sBbu2 l7zo4eZnVNAYr9DhyVAQwpGiIlQfcBdKE9vXM3RBuRdBGaEczDPkPPiihQX6Z9lKEFkuwmUn6IRq ENKPgUur9HIER/geGOEieRksV7L6vTzZYSra/eU7AjtLZZgHvasg/HlzETvdTTae5ZTs1yYrd4PT cLHqIVR6sZwGDLw8dBuRcTnBm+Mx0q2nwW0VOXROPDFUPBZxOIN7khX5NjtDddKgozOYwGTi4znh lJyLPBES9lZ5869bpNXl3B/ktcvqYFIkVxgysLfKD3eE/NRKXcPAbqi/fZ8anJVezt5ql01Bp0lP H+J6gsEf57DlTUvyxtugryEkiOcimva1BI7JTpG3obTJP7VwMLmKX9Iu9J+RKG25gkqS7cPlmJS1 koYdII1fHUzemghbNWAW9tHOsE3GYft0qWEDA/8hfnPxU2khiuxTQunggvoCvaLSQlgvs8d2Qc97 Wy7usRQO/qFdOMznHCzXXTgMknZRgNjGbEGTgKl2Arxqto9JesjL7NF/R7Kjavc78g7rcV64gfts g1gk3sTw+Mw5w9fSre8w+nlyqU2giclP83fdKJRTufPqkqaMs+qL+MEeO3pZHPnj+//7y+NtPOdx 7JYLz7SrcC5/BL2p6wNDBp5EnQs7CGGW2O1LWiJACPPn338ThuHPD/JVs7W6UqS8AaoCrX1NVBQN 8oGAgsHkmHykSWuHM1V6HmzvrvFm2UYoIwZkRSbaJxFPM/AItUvrqrTb8NPLPfhClYnfzRszg/OS vpCBZLEei/fDvuXce/rjYZ/QbBByMFCKEHLCKboeGAHBI1Q4TVRBGARm74O7vBbz9BB8BTrRKg5X KzhtLde2wajypRwrMRqlikh48tWXojHfVZHDLD/EOzA0k6KorkpncSF1ququ9gAHqUAs0YOphWyy RRqmSLtvx43e+tLZbOWWYHRya5/VB3zvpdRCt9lD4EO3Id/P7gjAJjSxRZXSpYLeE8aoc4kpQJYX 9ykH4OQTmsOlduKvOXzkNmsajTJF48CI7rIUE+EahIrO14aWy6kXd42WLSES3A4tJSXyJYmWpARD S7g4UzeRiMWcFiYXpHMQbUoHbbi0nh4cHLOJeMrKKdKXHbfZbkePQWCqh+UU3rdwgHTtckQHErGn vuczZ1gI2+6vIb64XNhIWc/vkSFwUIUjIyk8yv9X8bnFQ4ieF2tjoWBceIU81+pc7K457fp6Iyaf 3Mv2x7K6CgICiYU3eeYgnB9EiYqTraSgETDzRUB4ye/jJuK9m0RxWEnHpreQ3Wzad44qp9IFYocX 2foEtsslGQLacaiplKgGKGpjxFqNabphmD28WCTn4IB7BIo2HGE/uYht2gZ4IrqiRzYb1jCNbSgh qlCCNJZsXzMkf3AXAoHbVOHYiOXACDUvJ6U1oT4ekNtTUuqFcZDxurX7514PPZxMf9p+15LKboyW EIV75NI7CpleEhI7oKXpSAK1Bu1sV6U6igS8RBOyJNsjoX6yDKRipxcpQmKZhYyEkOh4hlNDJ4xd SdMk6cdx92lx4wvns1W4WC/HDJHHAxGHUp8wo/qgRb3D6oR8GFw8jfM4t8wQi8jaW2Sfr5FTXs6M 7vfajPmIr7SI13fdIJKKVW0yh1AYySFqDmmdLuTV+QqJJUO6Zw5+o0cPUljy8bISDmaq96MbUqFI szJz2dvlt293SXMmlGSFl8wuHe3P8AwhsyxDKM0iLz/6KVuwgG93n2WSIJOfjY2kraoOKQU0RdGR V+MwYrpMur9TaZVW6ysIsNdw49aVigqfL++6B58cmk2XkvojtgbUWeZdRBkNJl5cbPyVvFhvsq0u Ggf5LcUC0uRZj32xQeopqBz7BZYHN7AwYhpIlWTAAAP4uPwI3hB8cIJb1BQ0szFGqpl3mAbWbhgc wNrlR7gpOQJ+iuFstZY8QHJCoG8xYdno7dnIH0gFmQbrJ8l3cKlfVYiGakGvVmzUs4eBZXalW86t lGC9xRo69WCQn+Qkgq1M2G5gQxYsFA7ARtX+nEBpMEU9RqRozMp1mRLx57VSY64gvi+aL8MYwmHe oeJlfS0eBuPWG2TFH9wKCzARDjMXW16XgAmR38OslZ+pdRkDevZKe9SVVwVqE9prM2rNfHnAxv2V GWiybntBL/hbF+9B8xQ2kTLkgc+6DtP7zF326ylLkaUX71iLNf5opFQQO1wZewSTzB0S8Y2+cfkz HO4XlHAYzouJgicEL7DsVX6Q8oSTeLOW0wYE47Uc1APNh35bnorbot8ddZ74di1rGKSAtX6f1ek5 35rvF2t8bexAoCudUI+z19OKPhYdH11rzg3awYRFw96geRPtKRQZgnkXCfRW0JeXGRLA306ywP/S oy3JIow3Im+xVsq+nNT1mYNYmNdCZG2zXqXNDKcEKCP2rN8NGwoOQ0aOuk2XWUydsUijXd72cdu2 KKBgkkJ8SY/OkugI6moaB3ALHwYoZPlZeLeypn6BpdBMh4K4XLqbMtZKq2g6HYadodxxsjrs+p03 +PHOUqKPs+OVeMlU0ZEAMNmmhgh5pqIAiqJjP3nKgOZQMV+rMPbTmLibbIqCKyG56rnYWp+MN9Dn sXlOMEHF6pgh/FI3w+YMKx/W2UZdBg/OTOo6q3FlULVE4mqxgIEaPI0x6O3q4hur2Zbu1TRG65kY zSd/DkEGaTYm0oXKoGLFYSMqAcSM5pTYfPsijp4vrD/YmHkiCgWTLdPJNkZ+pUXi4isvgIBPN9m+ ZuGvZEOUR4QNbae9FYL9oZZF8+eYceBGylM9kvbTwvFdBUSI+SEp94pr7JNPKhSar0qruvl2m5XZ v5iM1hkw7emlrwC1V+q8RiFu5Ln6l0t+9mpWZ7bsx3mUU8q6jvMOOJiJzSG56IuzGwUN5TRC2+zF jCZh7wz0KNPPJsZ3Fgc/XM55vcuhySzoi1aRCO8TQwGDklx1jEHGfDJRyvV6r1zlyQFl3uvVdIOt 1YpgbwxVDL9I+Zf7nFDSN7Zkx0CX2VZHTzQyoU0ssjOuEfJpsPESoTrNTsgTWRWcfb6OYgtMhbZk DQYJvrlWDr/8NgeyIN6P6hthGFUTPSsIDPa+OgedLKyDgwfexyFBXo/GrmeGRh6NvMISASqTAv3M nibz374wmd9ZqnqSVKSI8HwmDqqJPgEv+gb5G4Xn366whJ2thoPejrjJ92UhFeqs9OVTm+UtCLft jIPA4pyyAu0RsuKSgcaXhlFVoVzXRwfBYFFt4czBXorfrN9kVR8C5Fq2JSGrya4x52PuazxfyP/V p8TC7WgaImXfFt5Q1LaQb86RYfHWOoVHcAUGnSqQrPEh+HDDbJd450Jng/yUBFtbYSt9/WEw/JRd kT/3tz/kvpxsc0ge226IyhbFP3tTQDxgRVWAWzkavnGTctONtNUbW+g5qRZ33qyY1M6QNz2ioJDj 4U+Ccr86PdZPLBVoaxE2pNlXIaDBTOr5Qcv33RorMo0ShFVsuL1Ig41VDRqqJuukO2RAYW6EgUlZ lS/HSiVsjGSfrw+xfihvO44Xea+jCt1nbL7qydl85mOse7RHW0QYpAK6UCRgVdNnEWewLU1SqBcm bVgW1SrazwAfvV4sUMxlxViH7dWatJFBV/nULcjY0kTYVyTGAADNi9YFTC3I0u48/7SJSkCmPWeJ SjqzEuh4osTJWLX9QI9fOWi4U4s5SmrgkpErnN1ZRDHZ2sSi5kT3MF8qMDIDcPVMEthBTce2vKYZ jiqZuBOSr3WFBy0XNeZcQE+R7fQFzzPqDO8fTKLYLbG0vbpgx1A1se+YfCB/E+xFh+xoKiTfqHLG iLOO78q/+bd20AJI6fWR0w7evgwihcSHf5z5ql6ubixHYBtKuVNCUJykmW6nWjOwIclYMi/XTe3t kxQVc8gcHSLKsi3Ss/pStD0N+YWdBYFcZbeph1uSa4xgK5+CHhE9e1DQiNwYFyXOa9QELyYtdSRu xqtod8TNGCrxGUpjPTdDnlujYMu3z20jXsur6xgaCI+gp6tlYO+vp+F8tYxX06W8f25nR6tNuFri lfbRSelW9nJtXzHsm2FegPfZ/kiZJ314ov3mTXYU4/3ZEhmC9k32fBrG01W87L8HD/QJrhRAX7/J jpZvk3kxPmeFVxK3quGWSkOwUGfhvvr0EEiOLrx8HCSj7Hm1E+PBFTmMKDhYFMCPf/oGyab2unYv zgJDpw88lE1hwD7gWcK4xomWC7uie8sU0UhpO1r4y/4Mt02Ai+AOwQPytZM8BvJo7NziyZ5DDaNx v/mKMyI83o9QXX315GDyHu+ET6IHf54cmuZU4xHJX8HoUsb5it3n0Sacvq0jTZjt0VTcNMSjsitf Xr97b070+3etKDzi0X7HgpBbYUGIhUd8Btcy3kznwdH503wXOPU93qmr4PhfD0Twn9Yr2Pr/lFMh Ma89q89x6v8i06QaQnx4pMDaHJZTS2C/MYCFxCsN4dELniDU9jYhc/pQG+uZGIVu0wfw0GEt3wp7 WoFjzCxCM3wlk469v4jwY4vXHy/iPHgAj8ABChH/dsjuFlD+O+HQUZ68sWU0xZ2uV683RsbVs6Ds iEebDV5lun+670/I1GdHvlmFxRUReZ/6R4ZZOZrTvPU98wUYJF68OjxoWRbs9FUsO1+LWibL8ruC lj/BsnZa23WDZfHLl2gd4ZcvLcviIaUqV6/s/Y9tbr8t2Xgd1WmWtxzbvY/7Dnzoq8gsHuOHGlrq 1dIcKN/Wc3HJ8oOMfpIhcSe823ZiylEZqFzSPr7BLnjFn7gf//bncYW68Sn8e/XpfEQbredf5lQw lIpWUVVA1r663EMY8RMT/BjlzA+QVyP6yxPoXPjC+rX8aZBymnxvLXUOPCIC49XIg0Juq486+TnL 9AcHIz7GSiTzyzn1/4EBy35N9GcvPhsJPhcii4oGmZ8R925xaAgdomho9fdU4YWcXkN/PJSi7UMg b4FC4Nq/PVzuqLAs3io+yv7wVQnewUKTJcjjEg/8kAEsgaSRCaZcP96M4Gct0IaIgXdwDnGskA6/ XyncFrko4tbH5Id/A0uBFOYKZW5kc3RyZWFtCmVuZG9iagoyNiAwIG9iago0NjA5CmVuZG9iagoy NCAwIG9iago8PCAvVHlwZSAvUGFnZSAvUGFyZW50IDMgMCBSIC9SZXNvdXJjZXMgMjcgMCBSIC9D b250ZW50cyAyNSAwIFIgL01lZGlhQm94ClswIDAgNTk1LjI4IDg0MS44OV0gL0Fubm90cyAyOCAw IFIgPj4KZW5kb2JqCjI3IDAgb2JqCjw8IC9Qcm9jU2V0IFsgL1BERiAvVGV4dCBdIC9Db2xvclNw YWNlIDw8IC9DczEgNyAwIFIgL0NzMiAxMCAwIFIgPj4gL0ZvbnQKPDwgL1RUMSA4IDAgUiAvVFQy IDkgMCBSID4+ID4+CmVuZG9iagoyOCAwIG9iagpbIDI5IDAgUiAzMCAwIFIgMzEgMCBSIDMyIDAg UiAzMyAwIFIgMzQgMCBSIDM1IDAgUiAzNiAwIFIgXQplbmRvYmoKNDQgMCBvYmoKPDwgL0xlbmd0 aCA0NSAwIFIgL0ZpbHRlciAvRmxhdGVEZWNvZGUgPj4Kc3RyZWFtCngBlVjbcuO4EX3nV3RcSYqq GtEE75ynVOzZ7G6lZicrZfchsw8UBYvM8KIRKXv8mfmB/ZYcgABI2qLtHVWNCaAJNPpy+jS/0r/o K7n4hWnoeAklAXOSlE6cfqWGrm86RnlHTP66HHJJ4DlRTDVeiPSgEgNr7Tq+l6ZhxKiC4GxY0J08 KfSdIElZSmHkRKmXehQkieO7LKbYZ07sxuJsa3q2UM4lnP0VSohHRiGk44jymv6+JaZmhz/bmq63 W6Hv9o7+Q/a24LSy1ix2ErLLPc86WpEaHk8rYpjmHW96vh8XCq5XxrmHYc6ysZ/eYM/vedUep69O 989GyWN25KdxeNdWVfsg3tOq7R7H1cl7HT+VfKJyezeK7ar2MFk6tl3frazfaPsjfdhKa79irwC+ hrc82PSp2fQplp01E8NkE7tcOihIA3gmUZ6JHV/8C6TXpgNrdpwdrGj730s6R8GrPrbg4x0vm4PQ OEqdgOyZV4apspku91lZjeOHsi/0yLJh0zLPJsvq/sM+ddYXHP/NRQ7KKu252UMT6RMhb9nTc6VX h20+Fbf6RLKzfnzG7uPg3015z09d2SM0LHU36f9LlhcpEXqvmovsTXvui6w+9m1D0BdRKQ4dAlKY sTsjUu/Lrj1171cW/IJ08oZ0sv80OgrIgNM6uPZZZgauUkNGoYIQayGNvfgFnfW5fx7PHUEgiij2 EustIPAJsZE4EdlwlAyRVk/IdArdwPHJvoWVpVSmV2v9IL2ixH5dAbNEnHG92uiHvX6QHlPy3+tJ s22lZ8zDO+F1Jf+zXjX7H7RipV466wcZa+rFF26pxbneqdMz5sGYRMKU2tJMTu10M7xr2WbV2Omo tzUK9nrG3Ga6/0ZvlWsxc0Ujb6xrZMzS1Gzq9tbo44lNf1F+N7s/32utNVDXI7vQxjKOe0EV40rz YKwjLvyb9RyVRQCzt1Wxz/YPqFCI3jVLLLsBALXNAFIsTp2Y7A/NITvwGnXs80paRc0b9JZSpSoX cpABE0X1Gd7/xvNzD7wRRlNzt6XCNZ73rSpeUlgXITkYIGu8n8xzJ5XI78/BYeHCvhc7XgSsN2XI 0tUbuQZgs/luotYmL3mTTxX9oen6sj/3iIsRGjXeWHPEuGDwwI+dNAp8c76CHVSWvxhriI2tGbMY cFvZSlnhQu0Vl3Yv1rEnVXAC9zDwBKaFPxdxeLwdDBWl7AU8fA1NwccuYfFcTRjlkwoLaPlLle3L Gj89RZus69qG0/c82xMkhGFuHncoMxtE2EkUs5/Bt0AkLEG98oL+od89H8VNpQcv15z5XcEUL2C/ 0vbVuya6SC3TR0Etbk90057KJqOb8tT1PHtH3ZHnZVaVnaiWKPB5m1UHvjuB+Ylsw4XLE+nMqWSq Ut+SJBZSAkW9/D2XC47ia5fvu1xjo0hzLFljXScM6cGSpfZmI+mWa1Jwc2OY8xrUWfPuOAkdlsag 9zX5fjRkYOw6QZC6vlVTEERDVug5kPoNWKXoF8wm5iFIRNsQwOxBLIi9biDQEsRRELuRBZpgpFka OX4SpOgimJokM1dN50InEXJoMLTeDH2KmLMqet5U+A5LGLoL01QwH6XajUOtj2Ijg4nm6IT8QTI/ y5/AceMYaGbQgZnegrYI7hq0e3Q3v8+aniTbRzioIOfv/0Bcs0Rn4ZQx03Qwz8hF+swAPRcyRHH9 IUMse4lbMTR5y2+PRrj6cCyRGHWLAH8U+SAzvmrPe/ofgWN+l33h9JE/DNlxWx7KHpVr0yILBgjg 5aHpH6/oaTcGfBVbTUvAiO4jFOCSLAyfuU3A/6zLQDLftM0deS5L3sk81Dm6XjhZSNJQd1EnAVam 7m7QAzRoAibKib2HDhHlaihPF5HMet6aMaTNsqVfQzIW+G+6/NV3Gmdrmnth6IGlFwRQDUa3VN0F hH+UUNVdvR2bmX8RXd+IzcyXoPRiay+w+WrTt8ejQOHPdtH3x+7zij4VZVdg6ooeihLF5dCiey4b XKtutb+p53nRyBZuz2UvCOiGRNE+4PLgSDmo0Y7TXtSxyw21CDrAzLLXxvyQ7WVGP25++rj+5y3x b+i9Ki4D8CxLyD7rMxH8sh629/hGsSd8Dcjb+pg1aP6L9txx59DeryhG1+Gcv/wBRwB4l5V8NbTc ixAwhx84gq602UX+IxN6/q1/RzNgUFRgk2sv8OYKXeeJurbmNHyYueyGRQ+k4esOQAfe88MpE593 ZBjAtT+hwUVII242jwK5UITn9OqvC+1m4r9woMbTpZeHSvtiUOvvVbp8gE0M33hMIaGsqqgqmy+4 DiL2bkzp2SerBZzUKlgj5/HAff3kKVYO6fT++rrm+/JcO4jF67/tdtXvXXHNJ3C/Lpu1NN4TUEN6 hG/IDhtQs85FqVgHsXeX7YM88RJv3HHgNcNXSM1raIHPMPEdUXAFxLsH7oJbMYbiD6YAMhOLj4yB nlFURheRKS2abpMSgEzsIHgKnpIotfSMIkP/Bz2G/McKZW5kc3RyZWFtCmVuZG9iago0NSAwIG9i agoxODczCmVuZG9iago0MyAwIG9iago8PCAvVHlwZSAvUGFnZSAvUGFyZW50IDMgMCBSIC9SZXNv dXJjZXMgNDYgMCBSIC9Db250ZW50cyA0NCAwIFIgL01lZGlhQm94ClswIDAgNTk1LjI4IDg0MS44 OV0gL0Fubm90cyA0NyAwIFIgPj4KZW5kb2JqCjQ2IDAgb2JqCjw8IC9Qcm9jU2V0IFsgL1BERiAv VGV4dCBdIC9Db2xvclNwYWNlIDw8IC9DczEgNyAwIFIgL0NzMiAxMCAwIFIgPj4gL0ZvbnQKPDwg L1RUMSA4IDAgUiAvVFQyIDkgMCBSID4+ID4+CmVuZG9iago0NyAwIG9iagpbIDQ4IDAgUiA0OSAw IFIgNTAgMCBSIDUxIDAgUiA1MiAwIFIgXQplbmRvYmoKMyAwIG9iago8PCAvVHlwZSAvUGFnZXMg L01lZGlhQm94IFswIDAgNTk1LjI4IDg0MS44OV0gL0NvdW50IDMgL0tpZHMgWyAyIDAgUiAyNCAw IFIKNDMgMCBSIF0gPj4KZW5kb2JqCjU1IDAgb2JqCjw8IC9UeXBlIC9DYXRhbG9nIC9QYWdlcyAz IDAgUiA+PgplbmRvYmoKNDEgMCBvYmoKWyAyNCAwIFIgL1hZWiA1Ni42OTI5MiAxMzguMDc2OSAw IF0KZW5kb2JqCjE5IDAgb2JqClsgMiAwIFIgL1hZWiAwIDg0MS44OSAwIF0KZW5kb2JqCjQyIDAg b2JqClsgMjQgMCBSIC9YWVogNTYuNjkyOTIgMTA0LjM4NDkgMCBdCmVuZG9iagozNyAwIG9iagpb IDI0IDAgUiAvWFlaIDM0NC40NjUgNjY1LjE5NzEgMCBdCmVuZG9iago1NCAwIG9iagpbIDQzIDAg UiAvWFlaIDU2LjY5MjkyIDE4OC4zODQ5IDAgXQplbmRvYmoKMzggMCBvYmoKWyAyNCAwIFIgL1hZ WiAyMjcuMzg3MiA2NDEuMTk3MSAwIF0KZW5kb2JqCjM5IDAgb2JqClsgMjQgMCBSIC9YWVogMzgw LjIwMjIgNTY5LjE5NzEgMCBdCmVuZG9iago0MCAwIG9iagpbIDI0IDAgUiAvWFlaIDU2LjY5Mjky IDE3MS43Njg5IDAgXQplbmRvYmoKNTMgMCBvYmoKWyA0MyAwIFIgL1hZWiA0OTQuMTc2OCA3ODUu MTk3MSAwIF0KZW5kb2JqCjUyIDAgb2JqCjw8IC9BIDU2IDAgUiAvQm9yZGVyIFsgMCAwIDAgXSAv VHlwZSAvQW5ub3QgL1N1YnR5cGUgL0xpbmsgL1JlY3QgWzM5MS45Njg4IDcxMy41MTM4IDUwMy42 NTYyIDcyNS4yMDEzXQo+PgplbmRvYmoKNTYgMCBvYmoKPDwgL1R5cGUgL0FjdGlvbiAvUyAvVVJJ IC9VUkkgNTcgMCBSID4+CmVuZG9iago1NyAwIG9iagooaHR0cDovL3d3dy5zb3V0aGFtcHRvbi5h Yy51ay93c2kpCmVuZG9iago1MSAwIG9iago8PCAvRGVzdCA1MyAwIFIgL0JvcmRlciBbIDAgMCAw IF0gL1R5cGUgL0Fubm90IC9TdWJ0eXBlIC9MaW5rIC9SZWN0IFs1Ni42ODc1IDE3Ni43MDEzIDYw Ljc4MTI1IDE4OC4zODg4XQo+PgplbmRvYmoKNTAgMCBvYmoKPDwgL0Rlc3QgNTQgMCBSIC9Cb3Jk ZXIgWyAwIDAgMCBdIC9UeXBlIC9Bbm5vdCAvU3VidHlwZSAvTGluayAvUmVjdCBbNDk0LjE4NzUg NzczLjUxMzggNDk4LjI1IDc4NS4yMDEzXQo+PgplbmRvYmoKNDkgMCBvYmoKPDwgL0EgNTggMCBS IC9Cb3JkZXIgWyAwIDAgMCBdIC9UeXBlIC9Bbm5vdCAvU3VidHlwZSAvTGluayAvUmVjdCBbNjUu Njg3NSA1Ni43MDEyOSAxODcuNTYyNSA2OC4zODg3OV0KPj4KZW5kb2JqCjU4IDAgb2JqCjw8IC9U eXBlIC9BY3Rpb24gL1MgL1VSSSAvVVJJIDU5IDAgUiA+PgplbmRvYmoKNTkgMCBvYmoKKGh0dHBz Oi8vbWVkaXVtLmNvbS9AYmJsZmlzaC9lcGlzdGVtb2xvZ3ktaW4tdGhlLWNsb3VkLTQ3MmZhZDRj ODI4MikKZW5kb2JqCjQ4IDAgb2JqCjw8IC9BIDYwIDAgUiAvQm9yZGVyIFsgMCAwIDAgXSAvVHlw ZSAvQW5ub3QgL1N1YnR5cGUgL0xpbmsgL1JlY3QgWzMwMy4wNjI1IDY4LjM4ODc5IDUzNSA4MC4z ODg3OV0KPj4KZW5kb2JqCjYwIDAgb2JqCjw8IC9UeXBlIC9BY3Rpb24gL1MgL1VSSSAvVVJJIDU5 IDAgUiA+PgplbmRvYmoKMzYgMCBvYmoKPDwgL0EgNjEgMCBSIC9Cb3JkZXIgWyAwIDAgMCBdIC9U eXBlIC9Bbm5vdCAvU3VidHlwZSAvTGluayAvUmVjdCBbMTU5LjE4NzUgMTE0LjM3MzggNDA3LjUz MTIgMTI2LjA2MTNdCj4+CmVuZG9iago2MSAwIG9iago8PCAvVHlwZSAvQWN0aW9uIC9TIC9VUkkg L1VSSSA2MiAwIFIgPj4KZW5kb2JqCjYyIDAgb2JqCihodHRwczovL21lZGl1bS5jb20vY3liZXJz b3Rvbi9waGlzaGluZy1pbi1jb250ZXh0LTljODRjYTQ1MTMxNCkKZW5kb2JqCjM1IDAgb2JqCjw8 IC9BIDYzIDAgUiAvQm9yZGVyIFsgMCAwIDAgXSAvVHlwZSAvQW5ub3QgL1N1YnR5cGUgL0xpbmsg L1JlY3QgWzI1MS44NzUgMTQ4LjA2MTMgMzc1Ljc1IDE1OS43OF0KPj4KZW5kb2JqCjYzIDAgb2Jq Cjw8IC9UeXBlIC9BY3Rpb24gL1MgL1VSSSAvVVJJIDY0IDAgUiA+PgplbmRvYmoKNjQgMCBvYmoK KGh0dHBzOi8vbWVkaXVtLmNvbS9jeWJlcnNvdG9uL3N0b3BwaW5nLWh0dHBzLXBoaXNoaW5nLTQy MjI2Y2E5ZTdkOSkKZW5kb2JqCjM0IDAgb2JqCjw8IC9EZXN0IDM5IDAgUiAvQm9yZGVyIFsgMCAw IDAgXSAvVHlwZSAvQW5ub3QgL1N1YnR5cGUgL0xpbmsgL1JlY3QgWzU2LjY4NzUgOTIuNjg2Mjgg NjAuNzgxMjUgMTA0LjM3MzhdCj4+CmVuZG9iagozMyAwIG9iago8PCAvRGVzdCAzOCAwIFIgL0Jv cmRlciBbIDAgMCAwIF0gL1R5cGUgL0Fubm90IC9TdWJ0eXBlIC9MaW5rIC9SZWN0IFs1Ni42ODc1 IDEyNi4zNzM4IDYwLjc4MTI1IDEzOC4wNjEzXQo+PgplbmRvYmoKMzIgMCBvYmoKPDwgL0Rlc3Qg MzcgMCBSIC9Cb3JkZXIgWyAwIDAgMCBdIC9UeXBlIC9Bbm5vdCAvU3VidHlwZSAvTGluayAvUmVj dCBbNTYuNjg3NSAxNjAuMDYxMyA2MC43ODEyNSAxNzEuNzhdCj4+CmVuZG9iagozMSAwIG9iago8 PCAvRGVzdCA0MiAwIFIgL0JvcmRlciBbIDAgMCAwIF0gL1R5cGUgL0Fubm90IC9TdWJ0eXBlIC9M aW5rIC9SZWN0IFszODAuMTg3NSA1NTcuNDk4OCAzODQuMjgxMiA1NjkuMTg2M10KPj4KZW5kb2Jq CjMwIDAgb2JqCjw8IC9EZXN0IDQxIDAgUiAvQm9yZGVyIFsgMCAwIDAgXSAvVHlwZSAvQW5ub3Qg L1N1YnR5cGUgL0xpbmsgL1JlY3QgWzIyNy4zNzUgNjI5LjQ5ODggMjMxLjQ2ODggNjQxLjE4NjNd Cj4+CmVuZG9iagoyOSAwIG9iago8PCAvRGVzdCA0MCAwIFIgL0JvcmRlciBbIDAgMCAwIF0gL1R5 cGUgL0Fubm90IC9TdWJ0eXBlIC9MaW5rIC9SZWN0IFszNDQuNDY4OCA2NTMuNDk4OCAzNDguNTMx MiA2NjUuMTg2M10KPj4KZW5kb2JqCjE4IDAgb2JqCjw8IC9BIDY1IDAgUiAvQm9yZGVyIFsgMCAw IDAgXSAvVHlwZSAvQW5ub3QgL1N1YnR5cGUgL0xpbmsgL1JlY3QgWzE2Mi4zMTI1IDE2OS4wMTUg Mjc1IDE3OS4wMTVdCj4+CmVuZG9iago2NSAwIG9iago8PCAvVHlwZSAvQWN0aW9uIC9TIC9VUkkg L1VSSSA2NiAwIFIgPj4KZW5kb2JqCjY2IDAgb2JqCihodHRwczovL2NvLW9wZXJhdGluZy5zeXN0 ZW1zLykKZW5kb2JqCjE3IDAgb2JqCjw8IC9BIDY3IDAgUiAvQm9yZGVyIFsgMCAwIDAgXSAvVHlw ZSAvQW5ub3QgL1N1YnR5cGUgL0xpbmsgL1JlY3QgWzE2Mi4zMTI1IDE2OS4wMTUgMjc1IDE3OS4w MTVdCj4+CmVuZG9iago2NyAwIG9iago8PCAvVHlwZSAvQWN0aW9uIC9TIC9VUkkgL1VSSSA2OCAw IFIgPj4KZW5kb2JqCjY4IDAgb2JqCihodHRwczovL2NvLW9wZXJhdGluZy5zeXN0ZW1zLykKZW5k b2JqCjE0IDAgb2JqCjw8IC9UeXBlIC9Gb250IC9TdWJ0eXBlIC9UeXBlMSAvQmFzZUZvbnQgL0FV WVdEUStBR2FyYW1vbmRQcm8tQm9sZCAvRm9udERlc2NyaXB0b3IKNjkgMCBSIC9FbmNvZGluZyAv TWFjUm9tYW5FbmNvZGluZyAvRmlyc3RDaGFyIDQ5IC9MYXN0Q2hhciA5OCAvV2lkdGhzIFsgNTIw CjUyMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAg MCAwIDAgMCAwIDAgMCAwIDAKMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDQ0MyA1MzIgXSA+PgplbmRv YmoKNjkgMCBvYmoKPDwgL1R5cGUgL0ZvbnREZXNjcmlwdG9yIC9Gb250TmFtZSAvQVVZV0RRK0FH YXJhbW9uZFByby1Cb2xkIC9GbGFncyAzMiAvRm9udEJCb3gKWy0xNTggLTMwMiAxMTQ3IDg5OV0g L0l0YWxpY0FuZ2xlIDAgL0FzY2VudCA3MjUgL0Rlc2NlbnQgLTI3NSAvQ2FwSGVpZ2h0IDY2MAov U3RlbVYgMTMwIC9MZWFkaW5nIDIwMCAvWEhlaWdodCAzOTQgL1N0ZW1IIDUzIC9BdmdXaWR0aCA0 MDAgL01heFdpZHRoIDEzNjcKL0ZvbnRGaWxlMyA3MCAwIFIgPj4KZW5kb2JqCjcwIDAgb2JqCjw8 IC9MZW5ndGggNzEgMCBSIC9TdWJ0eXBlIC9UeXBlMUMgL0ZpbHRlciAvRmxhdGVEZWNvZGUgPj4K c3RyZWFtCngBjXsHdNTWuq6NmRllZAbwMPaMlJFIAukhgSQQSEKAEAgtoYMLzb13j/t0aZqmd/du 495wBWx6CDUJLQ3COUkO6fVkO1e8y9sD99x37nl33feWl72skbQlbf37//+vTHDQ9GlBwcHBkpU7 Inet3vLMyrUHcg9kZGXGb87Nem5VVnp8YOdTU3jQ1MPTpqQhU3OmrwgNMc1gF7HHH55e+m8RnIel AzMflh6dfeth4quwoJDgYK70+UULXnjhhZXxWbEJc/8x3Fw43tzAeP/3x0Hj8A6CcoNfDnYGfzPt iWmvTTNNuxgSEbI1pDDk+vSl07s5HM5OTiPnIOcS59+4Im4C18Ud5n7Ma+Sd5V1GRMgKpOWhVx7a 8tAAP5NfzT/F/xZ9HF2ObkR/DOWF8kO3h+pmiGckzpDPODPjuxk/CaSCDYJLgjuCH2amzSyZ+cvM v89KmpU9q2xW4+yZs0tm94aJw0rDrgkXCCmhSXhoDnfO63NWzkmdQ8/5QISJCNF80TpRuqhIdEj0 fnhI+IzwiPCXw9PC5eH28Ibw9vDPwr+MmBPxSMQzEVER+yPMEY6IyohTER9G/Jv4EfHj4pfFy8Vr xbvFJWKT2CquFneIz4s/E/8o/rskTIJL5kmelCySvCl5V7Jdki4pkSglXkm9ZFhyXnJb8gfGxx7G 5mJPYYuwV7FN2D4sFcvClBiFubFmrAcbxiawU9g57DL2OfYd9ifOw2fhUvxR/Hl8Eb4UX46vx3fi sXgqnonL8DJchTO4F2/Au/AhEAxqRGxw/cqJ/cS+Y5cU1/HPrjSNDZPH33Pd/gYD03mfWa97mglX XY292V5tFTudhlrKjiQYEo2JsfFjUooyFDo1LbS4ha6nXDLEk2N9YxnGzuCx0nh2OjuHfVZ+QUqA 0j6pkyiRrpCif86dek70mfWapyUwqLPZWm0JDFoHB403JP3noDI4qE7coqvXBgbNtq6AgxK8YlOJ TkXkN2R275tY8qN44R/rr6tGEJkh05gSG8nEhM5T6Y15Dk2rTtxN+xXOEsRezpRux1gHb5l+hTKb 0MgKtdl0iV6s0ZhldgrpM/cyvQMDxmOh8+x2c53GmWUV51jzHeo6RNmiu/YZBnbyek1VNjdRXdZ5 4NRqUMr2i1FwA8hE3U5DqY1seZnjTXTkaTFKp83XEWm0Eg7soSSj5n7myMQx4/hOvqGRsiXYxYl2 dYPsDPvw1MPi3A8VvZo2pEJH2eS4ITFKGU1aMkuS8ze+wOrF6JQA1It+tUUdWoKv3piSnULmFeWl 5WDldmVVdb/XU0G4HHaXuRIZctT5G/GhiugEhVFpVJJGDa0tprM0WZoEBbKqID19N/bWseRTvQdr fNUEClLBpGiEGTYfJOw6yqLBM4pXZ8fItZSp2EH51eIahUkRh7HP8GjpIWZktN/YvVBaZBanWnSu DzDUyK+TCkfWSoU3nucLRzbyhTee4KOi3Yw8XUdk6CiKKXHoJL3MANPbN2DsDZ3nsDJVlD3DKk63 Mr6jGIjhdZr7mCrCZtRZtHi8bI1ss0ZDm4qddLtO3KazlCVj6BJpWIfzKnjsXlCXMuhe0BPKIGHk JHBPfSR6SSrcNqmSws0SvtA9+YpUuHQyl4/A7fP8cRyEcz//zmiYnMtHpx758xURm8A+yT7HRrEJ 4HFWDPaANPA4iACZYB/7GJjLxpNgGzslYhfvhsEZwS7ZD3YDAXj1AuCBmWDWNZZk34Cz5SwXgZl/ XIZnPvLIRywf/nBeYx9jSJZgflsLUHwqbPrJ1iVPM+RCpmj9VnxL6o3fQXDPyDCJivRKu9KpB7vP iWvtbo/ZaXaYKhR1SINC4VThWhWtKCUFYNprpzZ1Euu6OZHNsYdGsSM9Qxc+Glq1u4pwqZoYmxe5 qDqmqScUZrVZbkW8cbHWVJyd/+LrLIchn/zk3Y+SiDMZ16OXYZEpu1cufvtv5wsJjSffqJUja31v 1hQQaFgHmPPVvaAyOJH3DMogIBCOPSYVljncdqsNt1kNlIMUjuW31Cu68ZNjfZVe0uKivGozoi5V 6RV4YWb1JSspPMwKEkXpRqo4Hc/Kb+0Y668asZMOhtEbSxFUlFxbOHAcm2i4ct5iMRkZolcuYkwM Q9TIK4oqyxCj2Waw4h5fdX29olpjJ8tsBVaZ2XNOrHHlmbRq5SYxG2J89B12JvbS2Q3fKQn563Zl k8nhkfhu3DCPDzWOSdxKh9JIZJYm5CXgag1j1pACUaGB0uvK49jHxFS+naozfKs+lcNEIostrKB8 A65SmWR+CsxiwMIRI0CRX9jQxjc8RJlZa7e4zHYxY3dYnAyYWylurXX3WiqMdoNFxyDo+QOH1nYS e+uLahqwlrqqts4m2ZZawq5tMlk9SB89oKonnMq9vt34y6sOvPTuUNKZDLKrpEOWiKUUFGfsTjg9 KCcoV4GRUhn2OqI9hXByknIZpojU5auii/daNPVamwtp99U6OnEQxPWaHHoTZVJQclnofPYl1uUo qlJW2SRgM3i/dbS2uaJFYjdadQxhKEk0xeJo6DxXGR+trK53teB9LWm7VsSkZzGkXGPzakiPprw5 F09T5pUkHCrrghPU3dTU157bmpyck51IJjDNhV04SAj/bz4V9JrMncSn3MMHFUU1pK/cn+FJdqsb zPCJUdEp//HOfqKrf6Dhg0qHzVSlsSHPvJK0L4bcFZ2xeQ32+Il1YNoP547dPHPg5PLMjHKFgjCo TTq71sO4TE4D0qmpidyNZaqTU2Nl5y4RAhHtldtUzKsLxAqlltLjesruU5Kv/k1plNO0QvJ3dhvH rrQZvF6b2R46TwCeMN0LeiwQup8pg0azZODKJNCP3rv3eSAtPKoMshSi0VGMOYZUUcZ8F9VEi0fU duoF7O5DvOcpaq+WiNFyUJg4fKI7dteInWi1uuymBrVdstMQaYyOjGQir0pN+R6qtY1/F+EtoNR7 KSJLFyN1UpJJ8wQzMn7EOBk6z2k31WscsB7stVOuO9jvvGOMv6G+Km97DzG57NQijl1t1uowHaVX 6olcSkmZcn06yQnzEebo6LjxSK7UZqqjXGk2cZa1yJHds/arzd9FXkMyRiivDbNanG4PMTpx/upQ 30ClpM510NZtdTqNDQorEmfYZ0xMSmR2h86T6wx5Hi1q0XB6ygZy07DSMrWSKCjuzcKL5GXFWW2l 4+fP9h3vz2tOrCXR/XzwdvgGqaipzefykla7wau1IOXcZHvBsUPYoaqO9r7KDetYzoaF7Ow0QkVZ Czx6BDztAc9+DZZiX2//iOUuWrvtpbVHDlyA78umNKp16jfYJWKrxqlxM4dPHTk1ecrjM7mVvp0n I09GndIYVDqdGkGDB8BLIVPrYdp9bH7G5tXkmq27XmYFGDvr+CsfbSd2fvhT/g/4xx/WVxwj/Q1V ZxxXKW+eRaNB1mZve4mdgbOhLO8PEA1/0G9ByPfnIhe0kA51i9XqRdSn9J9WY+aMlY3zcRT8SY3G 0fxAIJhGw0AoeAz8FbwsrIH/zRMJ9z5PaeBbT6c5wuWBsrDXfPIoM44La3qOUGP4r5/7ui6RgHfy HAgCGAZmvwn4bMQY0bRmqXMp/sjrOnoJqTCaMt10jUE8SpuLnsXYOUt4qjJTjluB3OLCaxXvl4KH AcZze5mDSg/CYlxBtCHKGBUdyURflTIFzn/E4AIMBefAjyK33VLtwVx6O20lFnGLjUwNeY1HO4sZ rS59X66sWJ5XmlWcrtRoLYUeHdLOrWYMMpLN461ri7559ljrwVbC7KU8KguiUZRqy/G3TGdPkOBp Xj3D+AhUxCazW9jH2XI2BSx7Eqw+dcPXeYa0u+galRWRp+0pfANnM98BC2FntwrMAC+DTUDyxyKW YNHn1iyTGVxNLtLX+Vew33sQcSkKbTKcoo1Gmszby3HTcnspvmL52m17ya2rijYUYQX+goOH/nrs 7FHCbJRt59DlOrUa07gKT4HXv/sJhINH54E57FZi093HRalJpbQGp3RWd9/4T5PjZH1TpcuJV7oU chupTNz8XFwiAgNL4aPdxk/viL0eh92CW+yU3EN++ryH8dlsXskjYBuH8tBmhYI2UDARmM8eYUZx gFXxb9omtN58q0aFsMjmLP0L+KpiZ5WclFfqOsYwVNSgVDlUuFKpU5SQxeVqpRJTuuQ+OQEeYUm/ wWU3eyWCdza+nU4WRFOrijC5mpJrif0FNG0utuskIPOYKNfItJAuHlh5vHtwuGFPhoMo20W/m4SV 6HVFBDqVBi6Kes2dTDXhMNI2HU5lKOlkEq2WVvIPMYPL+GAvrwW9qk+R3gvyKYNOBHv/BlYCcQg4 CESipZQmSkfE6tUUk+PWS7rMZ5gLo5PGntB5bgvTrLbLzOJ9Vsr1OdbKazZb6ogL3AqXqb/Miazj ygyWZhJs5bl1DnXJjkJlDlFKUdp8jJ3LyzHoZQQ7k5vGOH0uEkxOvcSprdA4SvBMbrlGU6ok2Y/v xuvklnIvLQGl3DqzPocU5IAVosni7oxYLLOgMC02p7Ov0dtcV0WgC/mCP58Br4uO2d0HbUSD1VnG l6TAEI+OimJWP8iWw5R4XGundmAbeesVyq2Ju+wd0cT64agvwGMYWHQDiMGLd96Pea6DQIVtwLmI f4Z7zR+zoYoUvmfTtJhhARSOKPnCtiy+8D1tPL1JtsYurzF47YiwzS9FhTenEqdOi95nDpkHCZuO MmvxqIJ38vartJSx2PmxVHiUncPT6DVaPSG8aVHmmQtwVvzIQvYRNujGIsDt7amr7yatFque0ejT xRqzk3Lglo8P2n8k3S5Tk9KFUCUaQzFepGv4hmTD3xEVG+VKLaGRl+vK8aUZX1/4/cjk0Yb6UhnM nBqLqhRDg9tBRAjomlokYnGWt4R9lOXfXgLCvj1z8kg9WVnuUBiJxIIMRSL+/O5PP7ncffV8T39y XCupN7sMNtzrbznYovHD0HZn73Ok4Oh7H4jebSiob8E6G2vaWg7mxRYo8kvL4VJWmf0qJ/73G5wa v8/rxrx6t6yW8JaXw2hWaFQqLckaWOyfj/IHjqL8pX6iokRuV+JKdeAowf1qN8p3EM33X11koNDB 7LQrdJ7iDL/tfp1Drz8KW3aWc/YpEBRFOBmXS+9G9h/e9ykIwUDI8KdDhwmLW+3SMAgbFLXpKZaD CUQsL/LRZ586Mh/2xsiRX7//NvJ3FiFTpo842ZDtOzUsZ+8+DeBMHnfC80nB1fLRqdOjYT1ANA82 1K+A6Y+ACOGdQCct/BIsvPLJN99tnlzRRwpvTB480fsh9u2r77EcdtaylU+tHo46m0II77wWt3P3 CowN/mUneIgQflk5Klofe/KD8Yqhnh7yZvzxA69h78an7COENygYKgND8WuiSw6kF5FLu1MOjWHH uvtHCcEtgIho6TAzODZgHF8oTbMEAIwTApgYqYtCr5p+XSybOvtxGDgNnhT2gpxfReW03e50+YcH yfERDiwnnPYTH2PfvHmdfejp57c/HkuYS2sorxM53jHQexK/eGjnmrmblqx5gxRmv7tu686EZIPa onQZEGGvuWqImcDBi9xzPUbDAFnV2HDZdVbnyzdptcjOTIVhFS4Aa/RR/HtBE8qgyalHCtEqETtt V/ZWIj3TLcfL1PLigorczrErLUOnyYuHRy7cwN5LmlxfSQi/UFooqxWzMjafnTh7sL6vHbu0c2Tp S1u2vZtOlFQoKq3Esa5mfxPeU5+ZsnRp6rpsUlPgyao2I8LLVbVNFbW4r5pSe8kmWXXsDkyQwM9H r64fCwZ3wJwQsPTPaaI0HWXS5rzLlsCe2qruMCA/acDTZexj2I6UPZuTiZisZeVv6uVqa3qF9pb5 t5qbI8jNkfcu/obdjDyxrZXY0rbAv9NeCGGKvcHeILZCrOw3A1mTuKmxbtDVhzj0Ng0hgOsY4syP pShRakjgy1yUpMOMitqZGruTcNprbC04WPftXPZt9uHN7AJ2ZVKmq7aYLK4z9BzH0D+DRcIrLP+N Fc+uHos6lUIK77ydEBO5Gpv3l6hfgPTiR1/f2Hf07WEYMCfbJ0YvYt+vPs3C8LmTwt4THc46snc1 tiszI3Zf8vCZUd9QbychvAL7gCxRdPmB7AxiTU/8yBFssrNrYLx1zy4iEMPgxHvBbRD3vQMeDmkD DhG78C9sCHgWkF99BSK+23aHnZUcky8rJoxaCCt0LsbBOIzI7VZWsDamdN27K5LB7L/fqf9u8gJ5 4vLkIBAcdHsNVUo7G0qxM7YuX4m8unw3pEUCi6u9AgJ4sqLB227v0NmLzRo9EltaQMXh27jZJVpZ CVlaWBRNFVk1dQa7FWmvbqgewQWi4/k9u3yElTfha4CTI6y7XHTpEnbQPXzVR9jthhrKgixeImf5 pNC2rnLFRizdHLuQIoSTWtokd2gQoe0WZd2XtbF0xTp4Lsv/WP41YbeYayD5stKn6uvBhLZLNZcu Y4KvRSqVxWUkz5/85vRt7JNtp554cdX2F+MJpqxS5bMiJzu7G3vxsbaUHVuSdsUnksKinZHJmbG5 eo1F6dDBVG+uOs704eAFbuuw0TBBVvXUnWg8rHGVWZUUsisj3rARF0ytEAn3JxxgzDJSWKdOKNqQ H21RVai8NmSs1e85j4Pl3BqnTlmuzCvOIFnT3QWcUluNvBK3W41mCwnKpnCOcP/7f4xcbRtg7Hon DQO+Tlf2JrMZF7BRIiBwfD964STy418GAPIrBsRr/sZK2ZlPLWVDF57e+F17e4WnmrA4TV7KXm6U G+UuJLa57Ow4dqFlfHS4+90n2Z1Pz4+OI1KzovI2ltBapthFI4Iphwh2JOYGwmnQWmhcm1Ak30fG KWOUsZSGYvJc9CglHqasZesw9jrvVUr1z3W/J1D3z575P3U/1iKOslLuTzHBvaB5yiBUdK7/8JEj 8eMbNsRDkNIfdY7sm55Z2trZWdnaZibbDJVZqVhqaVYmIfhTKGLzS2FpeJm1Yaz045cAAUL/fgNI vn/nwtK0FHVuPKHVWMucNMLYLIwdP9/56tLXknMSduw/9wtAh3/96hPy0nsftJxpstqNVVorIlBv foWOwfO4Kp2xwKVu0oldRreOxihaWZRPHIji5BfK6BJcqbd4SHAxkr8blubYvVK0QWNH+9pbuxrk lSU2Ms+e7j+EjR3u7PERHoeuvsSMvFK0YssC7KVTyYME2gfK/yjoDTv6xb2gLcqg/ntBocqgb6Pb hIMgDX1QOu4vu+Xg8RDg+3MOJGjWsCvY59mXL7PLwGKw+DJYBnvZ59eAFexicjH7qehLF9h+/bqL 3b5okZrd/sYbarD9S4hdduzIk+WSOfl0qQKD5ayyscHp8ELOzOY2+5E6i8dTi3e50zNJFc+o1UPC LJ/K0ESXIrHy8uwMLK1x34cNTW4HbLMh7EYL3s3bD5/zQIEhTWkpsWWSvewBj6bS5HFKesEBjq3N UuXBOgrMBwiUxwqKV8fHE2pVUZlMSaltRRU0EA2NjLV8iFT02Y9dhtAg5Oj4qeMJnfsbIEvE5BeY UvHtcQZDGanRmfIdustKcQdtL2PnYndX8di5VFkaTaxRauE+p05iqBgwHMc7601MA0T5PS3Ngx3Z bUmJmVnxZBzTJuuBmWGi1dVVSbWrPiAPgC6Fs9Ck0EgOsF0c1VtUeimW0qqeIP58cnpcbFpUTE/S yHjnwNBoanc0KWi03oe6dgkqr0RYO1dRakIBl/1EdHwof0v0gfSNr+0evuSz+twu0uGqtbfgqKgT pq4KshKmLgdMXaVmeSB15VNp+GZuVrFWVkyWFBZGU3lWTY3BbUUGG2t8Y/AG/R7TSLkTYRO4ZRrT 3golxANxyZn7Ypszhvt6m8YHstoPwE4mk+pOC9TJf1cGDYPeUZS+qP3IWAlJCTB/EKwAQd8TLtql YAj2hcWr2DXscoxdfoVdA15YTHgZm8uFsUHfx8Lj5mMCED7suGmTwjP5Q4D3yaf74VNBJm8/y331 tSGWB/jkJrBLdNz5w4njtsd37aLnbd+m+fkYgQ6AOxNhn5v5sHlB0Ld06lT9EL/TjLrs1gof5jI4 aQvxLPc+YAAc3p3KtmZvpXL7EKFxeFV1eFdjXefE5oNb0EPGjm2w4QK8wR8uXor9nuWxvNin1z53 avUP5BawTDTGOG5O4EdsL+/bR78YuZ3+po9Ew259IEVzyr8Ay4b/MoqKEuNT5RqTwawlLeqKvGLs gHy7PI3QqaoMXivS1zd45xI2LHeqCcE14DsVDAlOQQhIREW3R07/qiO1tmITRSO7lPHpe/A98e0T SpKCH2lpZJ5uZPNt+DogNswDs0A+mA3y6KpcV5mBncHmsbPYfHY2m+coqVVWw9QAwo87UPCaKcDD vOaZWj8K2ZewTPA8+/yfK1GRr9I0Ive0S0F0oLcJvgSpxsV7RqsdqKjf7rPZCbezylqFXxjf9tSC lHWbSotcfjlZVqGpq8cEfz5+/5RFyqCm3CsgBj7vaj56HLi6zzmC+wAvBMSjVw7WDVzBz3IbTXQe iaYfblf04LevfnZ6NKuyoDC/LKGCjKs0l2fieQneqlQS3ck31WnsqQ96vo8wtDZxZ9VmnA1f//or 73RHHykk0dMQm9fy0WxZfl4hprBRfs+Ez28h/GZ3YxPeOZCfO0Ci+vLzBfXg/FE07AYEuBgIRzua pSh4JfgwWBwCt67wnYXAPZpzxCg97PgGfgBEgQeZ9o4yqA81ti+UoiPg8QFg7QQRI8ED337w250v wM7JkKlNqEPVwlg9qveMH+gPIqhZnFzER/f6SeHvDqqWsXk0RwxHDNX5NrHwe/Q/1mHcGP/r8ovg 0ihdCD5yhLWDuWApCL/gRBdQ2r0aIotW0mZIZEmOmceZcfSw8UToPA+kupQ2yDvtdVDOOxAbAw7Y ChD4ywdb6Io8Z7kBQXkyNaWlCLVWrdfoNLQ9w2lExzs7R0ZTB6L3JiVGRQ9mDJAC3igf/Q+xIB0F kuBuEB7yEzpVFfzH9yFgP2pw1Rv9OHj8x+/hbQVtuPkI2t7a0tWZ1ZKekp2dmtKS3UWilf3NhFPv 0pohpQ6ZFBSg7DSAwuNnswjgCr9EmR2h81Cxz2ANcGmQXJATaTFoDyjqCe6CJwQDbgg4EJj80cDk C1H2NX3Pn0scaPCZqfkhUwfQj+7Of5MHU7XDbkKniPf5KOcbrucc50XuAHiCIwgoEW5rgMaLtYlR 2NoljJwZuQkeKRgNQ7WUuRQWSKPHZfLiaANrBdOnLD1oc9jPX63+SzoIEk7+jA7xu80oYqccRrfb wUBqEj3HFyzAAqQhfOvgIdT09SoZeMQNkm6GobYa0m9xWT2MpwIljDadhYZIKoSLgvAHYXJeSqHs zPLLYPgYCmb8FcyAt62kUHBbpKDVyR4aQUG9vhf0DID6XtTvqCFdFrfFbUapKpW4VmFSxmGoC/M6 rT1WQhAUFBYkDFoV9GbQX4O4Ael0U1BcUEJQctBvwRHHTEemvj8SDP/OOxJimj6l/3PzXT0XWNhT InY5cHLAHS47l50UgcDGXQfvLnfv/f/BchZuc6cm4BbrZANbgvuMRvBdGNlnCoNBVIDRuJksjZQ+ zRfcLh9NcYAf3wdjjrALcKG8CgjhYbD7AYi3BEC81kzhu/Og6nB3N2+XMcUgJ2y0U+9gEOFhh6PK 6cYdLj1VQWpqhlQjOJj3y00wH3BX3mY5+xPLy3NIrZm2V2HsQ9MbzVUOG2F3+m3V+OXDa594NX/1 +lyZvxZmknq6pRkTnJF+CWaG/QBmnQWzHgfbhTd28YVXXuELp8Dfwaz9fPYdyIuWVk7N8/srwXp/ bWWXjcvW+z93fu+dCvLy4B7C3+wHa+7vQeCem87vvOCe8yGCPz254F7oQ6ZQdJIPF/pkaCgI94XO mJo3Z2qr6JYwaCww9fsg3bMx+Mg06bSMaUdD+CH+kKPTH51eOL1lei8H57zFyeJoOAOcz7nTuLm8 YN4m3jjv35Ew5AUkGslGBpEfHkIeevihD/jBfCE/n38ejUAz0Bz0fOiW0KTQwRkbZqTPsEK9epXg bYFMUCKQC44Jrgm+FHw7UzgzYiY2k5zJzLTNvDsrcdbF2S/OXjJ752zZbPXs7tk3wkLCngkrCrOE tYcdChsJmxBOFz4qfFm4UigXaoWNwi7hqPCo8APhp8Kf5oTMWTInZY4G6tu+OU1zPpzzmyhYxBcJ RXNFT4o2ixJFZlGVqEF0RvSp6Jboj/Dp4WHhL4ZvC48OTwzPC7eEO8Mbw7vCT4dfDf8x/M+ImRFi qH2/EvFOxI6I1AhFhDOiNWIg4nTEpYgbEbcjfouYivh38UzxHLFY/KT4FfHr4rfEm8RbxPvFWeJy qIj7xbXiZnG/eAKq4pfFV8Ufi78S/yL+XxKOZIZEKBFLHpMskLwoWS5ZR/pbGj+zTui8uVaNEmE5 21P0L+GripzVclJRpesYxQDKO8gwLcRl7oRXE+0mbbkONZTVXBJDh7HH1GfqY3o6QufTrlyTVkPn iqNVCu0ufA0322huJdHsN4uiS+JK4gs1efpsvVirMUJBFxk1NVi6TIfg6d2h8902QwPlyIDkvk1u t2NOxmmvJfoBwqmxW5hGvHZSlEtbWlxk07WK0dpjzgaJS1a9w7+/eZk4x0nr82EHdcBExRqIQiMV EEF1kjamn+nr6zb2Q90B6i1am5wRp1gMzn7Mz6tiGD8xzIWJvVVpRfZxy43mCvJ3nl0PH363giok VHoNXY6t4JUZDeXEKm6xwWa3kVDVNHF8boNLCRlBNU1rKZJNZ3sMarMKSrXgOa6fMZaQaIAweUun SdJdh7lukDk03rGXnws1X4p/pDYtnmRf522/L2wX69fx26CmPTB+aC8/qYgPVvAuHzj5yp6YbHkB QelVtF5vMJtgIrY0+rEHAnNm8Zv/t8CMnm41GltIX23tMXsnbVMFUG9aicywB9/EldNOl5tsqmtv 4Hx8qnbkEHYuZvzFd95NfTuFKK3WuB1ET21rQyfeW58V+0785qQEcsf2vOL8YgNlVkPMyXiqmF4c nUKAStRu89fc2HbxMXb2C0+xYWzwlWcBfuZq2xeDZFWZU2kg9mQnUFn4gugr1yrN5gaybViUVs74 O3oGDnXVFKSqDPBxSK2y1FAOpQf3lEf0jd0x6iRabQFadAfk1mKiI8ekAcGolRaPauza57C703nP Udo9gZp8X0g6BoWg8bHDAWOB085kSLNs4j2QlPwGQzPpZH2qUaU1FjnUPp24UWund8Ielre4a//N s90NTf2EHRKgGmOpQUEylJWG7ILlVof1B9JnM/ZAiVanKNPJ8Tx982mIIlpULSWpWFp2wV5CB7JF Ke78ynqspbZ+giGEn/RRotGy2lhriUNdzVhdzBGqS1uZaSlwZkKofNhxmHZlmmi1RBvDeVS/Zf+b 2JaJlGuFRBE7Y2dFxpi6V6J2Fet1KuSAc19FIeFR9ZcP61TrxTZtq8nmcJ8VC6/8Yb4wdB17f0f/ qjpCa+YIRGaFi4LszyOAFPt8Lp8H86g9xX7CW6K0KqE6q81XkoJaKPP/qzg9CMXpov8iTg/+v8Tp kf9JnAbVi/jXuIBXUfAuefclHgzwVB1RvIPfZYZs/Xi9tNgizrfqHBT/cF1aMsmu/KcgrzcPMUP/ JciXRO7PLYOa+rlmX0Mbdmhfx/qtW9N3ZBFGhT9AVvQ0tvrr8bbKkvztizPiIJhT2mQ1OgRdwRf+ /CzEEIukbw6fSv0b3t5hdlSSNrupQm0rY3LsOXXRg7HX1gGM9pjsbhsy2nCm70vsXMaRLV1EQ8Iq 32L8WahNrSAVtCnXTUMvzCHKrHwCA9JLonGzZfDjyS0LNxellZQQRUUydRK+WW/pJtE0XZIuyaDQ GfOcWr9B3EM71NDUsYWn0pVpaYLSlMqz8A3aQ+MwdDJyC7JK3OV+HVlDN5WnYylx2VkqQk1ZcvxG 5MOKM0OfYx/ubk0lBN3NTf3tOa3JSdlQUo5nWgq74aqYJwropjSx90G4fwB10/GRI8bzx6QNWnsc 7D7tge5zahOv2WJphER3ek5+VoFX7tORtXSzPANLiU3PUBKaB1e7VvHeyBfY1ejWOEJw/X5Cgpjr LPShDI0cMnYulJbAXtkaoHGntkbyI/NgNx6qv9+GH4RN+IRDeCuQxSr5fcwIVGL285rMTCPxEfew Rf06yT4Wwx8eNHY8wAal0NACB/oIA4t5wgmGL7z1JjR2bNyyKoXMj9JsiPxXZaiX22A2ZkNQGrge qB3XOu5f76dq6f2Qus7vCATUA/mHYZqI77mNFlMuyR6I4Q/ppamn4QUeSBrCnx70QzKFTJWnQSrz 0/078efW7XwrlZTtVa/d8q8X/k9JqgFKUsND/SP1kekE+zIvV2/KIwQGRZZxP86+zd1tsFTqSZ1N YaJpVW7Z21ScTVlPu5zug/5apxOp8NVbe/B2br3doKf1ak0ZuYBdmhW5763SPAkksLR2CAXqR5uG vJUub5Wz1lxjFrvsxiYoI+YYcow5ezOYAtij6o25Lm2tTuw1uGktpiw9IIsmimNVBap8pUyiaCp4 T9mKFB1VNnsxl9naaidqrU6HsVFllSQaEoyJO/czSdCWpTPlObSwxX2W12er99tdxqIGQuGDSgbe 0VEz2pdVl30gM7UEUtdmg8UBB/Kba/ulhWuy9/yrQwmFzH7bg7cph2/TpnNApCfSQu+LWQG1yIfE fnmFqcJ3QSr2mqGvCUrMqEjnUlk15qgtkVt3blXKTSqPfHLLkS2Ht7iNTqfV+QZYIta5jC5bwPkg vCOTCq/s5gu/lMG1ux7+r+WbKzuYSRzYuB8cNxpukZVN9X+1H9d6Cq0Kzf3mQ/4UvoC7TGlzept6 fwYLSQhbXv8ECI5fq6ySMHaDnbYg6DD/+fuQLZvO5UsmzMPMkfFR4+QxaaPWlg1XCywNf8PATF6t 2dzdVKnJ9hINOxuiOnbCO+o55+0+Tp7qaRo8jF3c0bTbTmgYrc0BxxTRVdkQtd/l/q9FYkdJfQCu o1MhIFV00tHUPEa8D7jjf2nsqaiRePwNjmpLs03sdJgaoccg05BuTEhKYuLgi6GZXCddA+uQrpKi MIUiI2k1kbM7fX1mlKIpf7SsM+YPsWyMrnBijN1abSW6nC6noUFthergbuM7mxOZvVBigp47l6aL EndTrtLaWIjxjOLmnUxpJBYJ3RVaKM2nPMgSpwNFcfzwv2YJlMp52/AmvpybZzA2kyd44Kn+7s7G amVKLeEqc+c55YjcWa2pwXu7GgdPrh99HELV7tGh+1A1KSZqMA2Cdrs0zD3FQi7x7tS/iZpcBmjL oLVysjg1ekVxFhvJToqF+Rl7Y94sKzFA75tDjwg7l/OFg4aSdOManO3nrqSttRSpsZSbdDrVTtWO orfsynqdz4nc6qprBwiO2tQ6Sq2lqIz8rGKEpg0aDZbclNqrgEywhVZolVSxvFCBlKjKSvOwTRPr wLxT533tE8RER9+J97GfX61dQcTEGlLwDJm/3utwuq2k0eM3VOIopaINRpw2WKCGuzGSzyLpHBVP oyunluN3H+a+obdW0aRFRzM0Di+qh7TOP0unD/iRj/6DH2nmh1VOPQXF17zw0Q6j4XPSV1N/xdJH u/Oh40KeoyrWqpDskhTtfkj0ZioZm8Pu89aRf4D1HKGv41htb00zY9U7dLA3SF4ChVpzZQtzDEd3 SyWocOh/mFfZf53XbjivQ///8yr88UHChx3oWekgMzqqlz5I9ad4NTbYZkABwEF8yAZxnApXacBu Y1AZCLleozbL3LSk1dzDnD7Va2wP4Hxzo8ZRZhHn2Ips5b7chhfBw8UdCO002C2YhbFCMkp40++v qOhra6mrc9dYOxxih9NYr7LBrLSU18O0mJugPZF2ULguU0FnwAppVsD8ZAbTACH2+P+bbiZPQ4IQ dh08zhc4Lvh/OE4A+kRx3uzqZqy9rul92JxNOVm5aLy0OjcDS0zO22UgTk4FiSbl9XHeeIe63mRz I8KfmfeV/ZrKdHumK8nqOiWm3SkmWqXeJmZnGt6KXIqtPB/3eSm85QL2sQ2ViSfKhyWUu9AILRKb 3LuryohK9VDhCZ1iFWzYOk12h+cjMQTEYsv1o19gn751aGk9obRwBAnpWSn5vlIYZI1Ue/kBLCYq NUlOKLXWgioDcrPmGgrITP6IVBizVSqsWgBtNhSRAG02r2koM3ReIcKY1VL06rYj4PYJsPP9sC+b wdsAfxI8Da+UMnVVdLgzKXFvXkZxGRmXuiw1rkyd75XV6pCGps6aQVz4+4ejGxaxM1/Yur+8xFat IH3qgoEkPK4wK3v3scJjx76uPnub/PR095WPsO9eP7tQT8i1TpuHhEMHj1UNDmIX3xl/auFre5bF EQq/0m8lRg6O9I1DWtNTqrJqcZVCk68gFTITNP+ZNW5lLQV2b4D5z16hdyKChVLYCQSosU0/sEGH CY1RrbaokKGo4VfZEIwN2ffq/ihCr3KpnUYEBB0++wOAep1hHR/NldpR71SwqIN2FddEf8fS4spY S5EcU2iKKQWhkmmKlGWIXFWmyYNrLLmgICPbnXKMIXuZ1tq6EaghXhJPgmAO2uwZaB3CLuzqfvmJ 6MiNcW1p/TIoIPzD/BDgTdB7QfMDktAnuw8mpmTnZRR6y/w6ok7bqkzEDuzPTIMXo6xFFQbkStXF 8VuYIJs/hK7mC4ztkHL2iTw2a60Hc+tcWhuxhJtvgtYWcI3noQIGVLVGD80+sjzokvWnJryzWmxQ WOVOCgF53HqTPotkX+TZqEZ9y8E2izV0HniR12qyNBBs2xlRuc7ttJNgHkwYZnYFN9tkLIByy0I+ ekeUUFcwcgI72fDZFYY4pBRBx2dhbSFiuG8B9fprGhvlNRoHWWzPtuaZXRfFCkeBCXKP68Qsqn9k HRuOPXtpze8qQrHYqWoyud0S762/WgdHGiclboVdSSQXx+bE4hoNw1DQZBAvAycmwMRocCvkZt8O iEWWgFg066kX2DmPX1/+zeCgr7qKZJywWbEgaspklpNrvam3P8fOtJwcu1XPzn+D3fg4+xq7KxrS n4zMS9+yAMnpmzeQLz6e/B3MwAC5GPrDnoNPJqxbU7N2LZakSlgJ/Z2UuciuR77+2AdlA+HkhdJr 72Ot1uFbMKvYHE6TT2tDhJML7ebB9vcrr12A2irgL/EthsjYUARt5lfl7n0ZmHBybdHaNdj2hqQJ OaHj7ZLnJ23HBFdjZVOf/m4phAXMLLwMXv+TKxL2bsxjzKmk8LI6Qb6xJMoKmzqnCznU4HacwkEy t8Kvl5co8wsgPq+8u8dc0KaoskjA4JSDI+w9dLXjWFNvQBDVBhwABvkaI9RaNZQJFWlUWoWpCOrw 5ZrQ+UBbz3G6bZU+rIquULvh8zoYt1fnYYUAFZf7ipjyclbIomKlziV34SAUBWOlx+9N26AMSgko KrzB7y/9H1Vj7eDTgEduhbLGqOPWREDU2Eu/FLlLe3sUtv6XBqCsGTe+9u1YKGsORl2EsmZ6CZQ1 q1rbzWS7oSoga5ZkpROCtO2NbAi+eFlp4lqSDX17GzuNnY2x8z6F8vtDMUTWh6e0l/ATt30eiHNE X49PfkWTGmu5SatD9in3ZEXj0Xtah5WkFn6k0SEL6fGdX+OC8oomuh5v7vdXQ+jlpZzQ3aKDK0CF F8srus2k7Q/Oh5bE5tfxDWyqqL3GW+cirG4348TtFq3CSOqjOGVGtTwfzy+prSEF0JUK3af3fagB NWSxZyqmNwyVqcuM6/C7yH9TrFHemzp1jn6ftJtBRXv40PCe56RQ0aHWts6RpJqiR+L9B/3VroM+ cqyWc6qpo/oENph9rKSB0DgLdbQacRRaisqw0vKybAWxLoOTWJKTtgXaY7569m8E+uMDZMLuzeb/ B/74J9CDbhnr3M3gja0er4M0dJreP4+hexTJSfuwVZcyb8FXYmyoN3XixwfMkElyWk0NWusajzjN RlWAudjUKh6Ya6/osBGXPQ64T2OVmMvizNvx1AKTMZ8U3AdiaFVeCskivFydCtZjpUFDMzLobWsx t5ia2ppNqEG+1bgBZ5O56D8qxV5YKeymDBg7/c2tfT057fGJWVnxsR25nVDPhDLSUKl0/xiU/fCA yXcrZJyDQQwICQExqOGk4zN3F2IxaK0UTumNBh2Jgmsi4ZPH7fUfO5sQB6O1q3DhboWmUJdveEwp ztHn6sppJFmxg+Vsw3ZM5NQriIls6H2aHwsV5aCnCbVN7TUS4IUvroA1YDkGlq8Ca9gXviAURhra G0HQ04PwuICAuGjsu0+qjC6Di7zKddtt1ZWYx+DU2gl0s1RwHANredVmr91BeJy1vtZAzr4fHj8p g2QoVFxeE8WlZSbl+0tgdW3Sdpbvw6J2pySUB6prfrUBuV378YkfsTvv9uwnUJaEJBzEvEThDn4P ZNmGIcg5slCa8p/2pRUBa2FwEJTXZpkK0R/Kr4DRnuZC9M6rfwPBPz15Cx00H7J0EG6jxqbB0VoQ 3KKDK1b0wqvb5y+4Ennn2+tHf/5q7amnyAl2uSiydF9KYsGRTy41trf1VW95gxCwn88VXTp4sL2n LWHZqpzM9LjMsetQr1kBTb3DpjZzG2HR02Ya31e6pzRZS9OmMhvt14ortCZVFoZ2gS+6oDLE+R1w Ai8LiixfjqI92DdtHVUVtbrkIULtthlduKep5WCFzgOrgEueb8/E2YfRFlezpcoCCdMqnRUpshpq D2FouVeKrpsyfBh8DDSFgMtThkBo9JdK48f4XWDVaHA/4P/29xCwEB0Cq+Fl//4L4IeAZ1DeSfNh 6M00WNU2ypgjfyF7v1KjY/KcOuRQsUW3BQJEB+PywOQ2A3DEcl+JqVwOtU4OTG6wrcQBF30zwBDt k6IPvkkS4JfRNtB/MBg8HXisp1HRKzyY0vvZmRwDj+1nZ3GW8qYk4C3OaZ6gwdzBR8Fg6ai2EWzv AwfA8oJRFBzX92bL/pzTi4o2wyPZtzifw/PALI6ZB/rBTM5NnqCTrZ8EL/16fAQsPa8eRRVdJTJQ 1NXXBbZ2hY3/AHg/AsGPgPsjmm4azpEBdhjqrrI/nxTtTXqAef6BgUjBb/oe8F7nQCGqE49QdjX0 INOMgbFhdsYL7cKBb9zAL/vId5ag74FNoijNM7t3Kb85Oun5euKo87lIAoX8BruXh96GoyyF3r1e fyG46Ai7DsKPOVBIQK0jlVpTgSvwPZ1D0Jn7OJzLePYJztP3FTbgCXed5yzkopzHuIr1nB+5gV2P cZUbOD9wURk493lwB/gyBMxDQdgUF7wSNjDRCha/eREK67noueAmUBoCDCjwBP96NQS8hfYGA+3P IQBHnXovZSZoeammGN9X3HqwByWKdsBJ5kLaCf3lXtA+aA24FxQGVwNX+DN6x+4cQb2liCC2Ltmf b0myl+hLDUbY3/msMCaAgOvy2BrVbtjmf/sR/IpQVXDP9yE9UP9TpzooBLVJQ9AYiijQa7VMwGgx bEZ5IGjS6tPUKGyS5/fCbi3sBAhK/8vqr4Q2oEF5fx22+rRVcN+qJA4KHYxbWQT+PsRuRdAi/tRW HkqZ8t0UeiMWBME9SCwbtBx1eu1W6HZ26Cg7iRr+Kcmhokkpar52mEH11+EDXjgIkieDP/jj2z/Q yK1F0EsC+3A9gqZTVspCEd5CZwksvcggCL6GyuWwmGgQtHR06vtRuAovHUPrwfKr4BlM6PsYhWZx j9vUDI2v0HEHp24qLLjn12u/hoBMlLIQ2vJigxyPQ/83LKyolAplbmRzdHJlYW0KZW5kb2JqCjcx IDAgb2JqCjEzMzExCmVuZG9iagoxMyAwIG9iago8PCAvVHlwZSAvRm9udCAvU3VidHlwZSAvVHlw ZTEgL0Jhc2VGb250IC9ZVExQS1MrQUdhcmFtb25kUHJvLVJlZ3VsYXIgL0ZvbnREZXNjcmlwdG9y CjcyIDAgUiAvRW5jb2RpbmcgL01hY1JvbWFuRW5jb2RpbmcgL0ZpcnN0Q2hhciAzMiAvTGFzdENo YXIgMTIyIC9XaWR0aHMgWyAyNTAKMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDI1MCAzMjAgMjUwIDMy NyAwIDAgMCAwIDAgMCAwIDAgMCAwIDI1MCAwIDAgMCAwIDAgMAo2MjMgMCA2OTYgMCAwIDUzOCAw IDgwNiAwIDAgNjc1IDAgMCAwIDAgMCAwIDAgMCAwIDc0NiAwIDAgMCAwIDAgMCAwIDAgMCAwCjAg NDA0IDUwMCA0MDAgNTA5IDM5NiAyOTAgNDQ2IDUxNSAyNTcgMCA0ODIgMjQ3IDc4NyA1MjUgNDg2 IDUwNyAwIDMzMiAzMjMKMzA3IDUxMiA0MzIgNjYwIDQzMiA0MzggMzc3IF0gPj4KZW5kb2JqCjcy IDAgb2JqCjw8IC9UeXBlIC9Gb250RGVzY3JpcHRvciAvRm9udE5hbWUgL1lUTFBLUytBR2FyYW1v bmRQcm8tUmVndWxhciAvRmxhZ3MgMzIKL0ZvbnRCQm94IFstMTgzIC0zNTQgMTM1NCA5MTddIC9J dGFsaWNBbmdsZSAwIC9Bc2NlbnQgNzI1IC9EZXNjZW50IC0yNzUgL0NhcEhlaWdodAo2NjAgL1N0 ZW1WIDc0IC9MZWFkaW5nIDIwMCAvWEhlaWdodCAzOTQgL1N0ZW1IIDQwIC9BdmdXaWR0aCAzNjAg L01heFdpZHRoCjE2MDAgL0ZvbnRGaWxlMyA3MyAwIFIgPj4KZW5kb2JqCjczIDAgb2JqCjw8IC9M ZW5ndGggNzQgMCBSIC9TdWJ0eXBlIC9UeXBlMUMgL0ZpbHRlciAvRmxhdGVEZWNvZGUgPj4Kc3Ry ZWFtCngBrLwHdBNX+jYuYywNGuIkKAJ5Bs3QTHUlG5IAaSSBhEBCC70X415ly0W9TJFm1GXZcu+9 AS50E1oISSCUkCWQhQSSbDZ1l91rfpNv+a5Isvvbb/d3/t85/+8cDse2RjNz79z7vs/7vM8zYaLR o0RhYWETN6xZtuKN1XNeWrIjd0dGVubuFblZsav27M1P35Eb+nzWCC4amThqRBk+ohj94thw+yPC G8LfJka88V+zIiY+dfjRifPEj5+e+EL0OFF4WJh40ty5cQkJCS/tztq5Z9JvZ5wETznp11P++ydh a+F9iFrCUsIGR20ftWfUzfDs0WGjt0fERNwTx4kHJPGSWiQSGYcsRFikD/nzmAlj5o05O+aidIs0 SWqW+qTd6N6xe8bmjC19ZMwj8x7Z8siFR65Fvhz5WuT1yNuPjnn0ymO/e6z4cezxmMefevzVx1c/ vv3xT8bh47wyRPaobIssWVYs2yf7+xP1TzQ/8Yn8UTkmf1W+T35T/vX4uPE544vH68d3T5BMsE9w TxhQ7FQ8iJoatSTqe2wRloz9AZfjBD4V78H/PjF84vyJ1MTGie9N/FyZpfQpbxASIp3oJ58lfeSn 5B/Iv07Km1QzqWlS26TLk1+bvHJyy+T+yRcmfz/5r1PwKdSUsin3p8qmlky9PO2ZaZXRoujR0Tui zdFctDt6OPpS9I3o/5oeNX3O9ITpG6dbp9umfzIdzCBnzJyxckbGDPeMwIy+GadnXJ/xYObomYqZ G2ZqZ9bMbJh5aub1WeJZillTZz0z681Zlln2WdWz2mYdmvXhrEuzPpv19azvZpOz35q9c3b+bOds 7+wTs6/P/mz2nTmPzXl6zstzls1ZM2f9HPUcZo5jztCcW3O+jBkTQ8S8ErM2JikmL0YTY4qxx/TF nIn5MOZGzI8xP8eOjh0bOzV2ZmxM7Auxy2M3xabEZsSqY3Wxttiy2NrY5tiDsWdiz8feiL0fNz4u MW5J3I64jDh1nDGOiXPGlcb1xZ2Pux53J+6HuP+KD4uPik+Mnx//WvyK+Lfj0+NV8UXxzvjy+Or4 ffFn4q/Hfxn/p/if4v+WMCYBS5iaMAuusmcT3khYlbA7ISshP4FKCCS0JAwmnE24lvBVAkh4kChJ fDRxQuLExMmJMxJjEhckLklcm7grMTkxPbE40ZzIJjoSKxJbE/sT30k8l/hh4uXETxO/SvxL4oO5 6NwJc8m5M+bGzn1y7rNzX5j7ytzX566Zu21u6ty8uYVztXNNoBTEy+sdNpWXbFgaSOesOXSUul3a yLdyPV31tibwpJKvMrlKHIq9HlOZvjMRmBWqd0uO037WbeXNDKUvLCyysIWWvOKdc4RihXqTwZBu UVEKC2Uv8dFIFdfAt7Q02RrhibgqsyvbpSh0Ms7Sjvrzinqvg6vH/R3yfJZvLiV77vhqnT6HM4oX Oyin2atqn6fILGXYHBwdWfcnuTfPVWTAjFprAUtkMhaKA8nSVq6PPzzUDdYrXU6+AqyS6oKZtwXl yHSFZrDkoG4Q8bAW3oobdMVFeRZHibVQuzdaqFfsEEZnLS3aot2bb8hjUxmFleJL3DTSzPXwnfZD tnZ709hon9NeYXGlOhR5POUOYKWe5uAQ0X0votbjdjTiYI64zcnke0gBBxXy0jZ/g8OF8GK33pft zTshPK3I9rF0Ji48Ks6ycfVeEv1Wmsbm2zIzVVza2Glmyqb1WGsZxYDVrZqBxUlm7l6SODv1wg8E mCy56HQOeIhqh8dlqzQ7onaz6ba0tHQu5TlpOaPoN7nYxRgKpOAZ+RuqQtVuLCuQW11MaCobzK14 S11ZoI4srQn4PLjbbbY6yfzKBlMDfqR7n8vDuGmGgv9IxmpijPhu04GDPOkGiyI+diT3v4wvEiJe WWdyUb5gsycQJL1uLsBVIO18V3kLfi6wIclG2rZEaFiThiKExwVEvq81eKaGcFdVOt2428kaSHaF rcCu1eujjMZ0jRpfrx+oJNF796ZJ0Y7w++TIXHmPDWAVPYTTX+2tdja7FE63zUM7kBQ225a0J4nb NXYazdqMTrqNVjQyVWaPAanM4IXxmzFBAQqkQoQQL8SvBaNAHAGy1ko3l0jrVikFnUQIa1h0fBux /ch53e/xax83HhogT5wtvfUZhvJnurgB/K74zh0be5csa278xNMNJiuBWGnIz6Sfx58sKA3oyZJK pmsY7FQ2Obg24rR4X4ONLidrKI/GWeTbrXBZK+1OD2Kvo/vsPfY+576GsdG0p9hOWc07FVSuxaqn EVqfzu7AV4ozGHsLCTZL+ux8G3FZPNhho2rJ4zpfcnCzy1rBO90ICp4EH8qPcLV8JWFzMryVyzfv Nm2xWRib1k0FKEWbzm5ahgkLJPM7t31x5khndRvhdlAmcqeE5l2MC++qPu3f5/U6bTVWF8Jodawe z2LarpNgoaSXa+erH56V4vKNayy7bGbarvXQZfCseg+7FBOekaRbNDo9UZifZsjGXyg+eJFE5acy y1LTsC2pOetf23apx0xYfBobbUTWBvb6tISxfH/Bu/j354/8/sOt/XuryOUdEbtqs+t6sK66rjNn mtYnewmXpYpzeLkBS5+5EnGn5PmS8emr1y9afWD34VwSvR83Eis/yILHKuGD99Z4O1zlvMLttpeb XfDB59i27wF5SjNjK/FYK1nFfqrC6jYh1Rncw8eeKimwl9AUwYo3H954cvEns0GYIrVXkAKF+hii Y4ttJUVr7TtArlLjDn27gWmwlGuRWhVXkIUJ/ZJNnBCp3UtQhhKrismGu9zKaT0U0s03c/293bah sdM8Li5g9aY7FLm82m0tRYrbbGD8IQxkStq4emeA4MW1+ReebU4HGqFSgd6f8/9rEWdJsuxqiiZy GqcA6ebjM+FgFn7+6k31IUQLh6JKTeNSwHNKi9NaSysaqBoqqENa8mx7p2JCkmQvJ2AlewnaWGgu pLMpBW3lLE4G6YJD6e3rte0fO83Jc37ameFU5DqKvJbQUNiHQymQHLIH/URVSU3ex/NAnXBSgYKk EUb+nFL4GqxTagijroAuYXJpBUPZzS4GOc63cfv3t9mO31PmOhUljgKnsQwxBJmjpzF05In35bss xrXCIy98Bh4FY96/ce/KQM7CJsJtCnIun3WY3W+rQdwZG8vX4JOWpG3eQm7fpl61GltXs7J/B7F2 +ErBHbyv2+NqJl0tte5S3MXbgVaq9bDBBqxFMuB0N7mJKqfbbYPLIwpGZltW5rZQXDBb4UKmOqyK ITNn3YKh4+5deyCiDKIHItwgqn0gesIgklUN37snX0xbt1NENhMhe274NSUi2zLMH27nOvAvxCeG bex75CSpbMuthiF7XgXpNrl17hy3pYJzehHZpluGnyLgZ6xpl20bLkwRp6ZzfCZppm3FHhrG3T6z k4Fx918uWPuvF6x9eMHaf79g73+8YO/DC/b+f1wQbPznoF5TRvXzPVxHe5/tAHhZCZolTQ57NdEl PttkXuohneZKOBS2zznsbWJcZt5CI0Vmiy0JF9rFu7S2GhtJO412mqZyDRsM253mUsbvRi42NLnf xdvFNZw9h0SZ2VL03Gs1BaVaH+tzOdwIE7TfqMHAwr3KpN+yVgej6GXcOTNgeC1v5Hpx8LL4wlEb 20KWVgYOeY4zbo3HbNbvLMpXGxG9KoVeia9L5jktWcTRDhfmPX3FW0oACUgcevfoyYpglMNNe6w8 glrtrYaCkZhWh3rcJ5Wy5B++kRdkpuzU6mmKD61KWdlcpax1kRT9IXxkeokcvA3iwAywFbwiIGCB UCLsvCcFmPAkyCXL2uXChpfBGjATZAH80l/A6ivCYuFZYYMgThTGwoBXGigt92BeKlDsJ3SlBofZ hljMer2ZXCDM5s1lZi8XFXnacbQ0SPjLap0VjkYnzFR2D+VAtrLJtu070zhUXsUxGlIvedtu3UkR RSxl5fRuJqqM28f1DtTbasHb0gDtLuIVu5yc6yRWLinn+CqiU+x12yEEQpLEOpYPkEAiCdg9hpJ8 K2UiKMZG0ZgQJtGybAmRKC402QN+EuwElREcz/E85jRyeiPNmCyEkCI0R1hMLG232K1O2j42OrJJ qpovbUtTovLtFXk1XVhDZe8FjnAK2+VnVd5MFbYnO+NNG5HmkK8qzRkydlldBhttRWSfJXl3BvRE wNquPUSblimcpnq7y+d7V/Eld2roA+yd3V0ra4lCTw2YNGgsT/OpotxUKQfTdqe53VKucua7VTwi G/C8Y3WrOaslyrIuYi67btub2LrevVfyCHhXBfOlLfCuHm4UdruJ0LRLu3dJL0ns5TzfVFFBe8dO QyXfe5ubHEQbBDz2INz36P8w+Wek6NXw+wrwlLzbWe8JEC6/31XlqINPx2n3Uk4knd1l271+JZ85 dhpFw1BG91kVbVSt1WNEAiVcahK2XbKLKqEsRIl+m2ENLuyZAdfQBpBwG5Bg481Tqt2dZG1eWYo3 z8mU2h0uwyn6HVsHokt3OgtJZ/F631pcmDV98yuvk2++njnvaez59ifPvkks/P3fUgCKH7rirxgm 3dVVjgDO85yTdVAOq4N2IZSHbm6BeC2aeSCaCAPWgy8NIpApTQFjwNaP/i2GFRlA+8hiuWzQsDMF FChh9NF6LP1GRSVtp0xFuxY8JcTufFWdorGW0LlWhdnKl/gYpImv45rb2211Y6f5nLZKOBOyEsMu T4nD7vYEo4IddUNd55Ggl+Oq8I/FDRyrImUHDQski2lqu5XIZ3TKABMlKzLw+9q5Fvz2PwNl0fB/ ilv5w6G4VTT8a9yqENbIi3mHz0VeAI+W1fNOlyPKLeZpXm/AhAiJysbCdWB/IJoQGvvXBhFKSdr1 DXkqrEBnMRD64qZiXGvWGYuqdJ0HD3YONRXXwtCMfhgO+u4/IxceW/R8/JPDa0/vJb9YE3Fla+na rdhrO1Y+LYza+N3xIoJ2mji4ilcFVlaqCUPVsZzf40B+8xoQ/emN01tbyNjTEcl16wfexfprP/n+ u6bXtlQSLsrPQ5zebTptaiD0nMFh4BF3bpIrE0fbhqgh/OhJb/0Q+emBA1euY19tvpLQTlRs3uhe jc9fzdKrSRNjK/QxbYNwl21I3r1je/eeo0e7+wb6k/dtILfOl7fV1DU2VednpBfm5+Sq69qJyOmX juXewqsr4PyQLqfNS/HZfG5pcXDJqbWfLgByykv5XW7kaM3Hx7/BPkoe2tRING5Z4VqOz1rMUKth 7rGXwKRHKw5QjuIY7OaX8haH8xwIP/LiwiWq5OwCIj9zD70XX6/hHQzJOO2lVRiauVQJUo5JUflb NRmnTmHfn913iWin5c3WamOwBKGdTsaNe9z+qqC53OAjnfn5DjXuPUW5CuxWKsq8KmK6Oe51YQwW e27VdQNheNlrqYaLKMp/MYITnzhddW4f6bF6zByRkZ+Svwk3mTjOREbqlF4G7WCaHoSZDaLTymuf vdsM5gizwYuyH0P7nrLtMBJ6Biavjs3SvrHTfpJ+JGmx+ysJ2b3q1u1GL3lXCAsW0RCiRWlZi5XT +OmoTkeHvXOw3tY+dprXyQfNbi2n2ObQlO8dEB4HsxWaKpujpubgoEI2skQq+xFEA6XSpfYzyPvl x/afw4Z3t++Fiw6kKw0FqFylKyk2OUCJ1M30mECyUq0yEzTDG9wsMlw51HEGO5pSn0NEqoU9x0D8 w/z+cJM+EClC+AIOqQOUqsdpYMpafSEZTGW9sqOi/1Q0y44Z1BB3fGZ4V4pwlSe5RnzNnqQtO7H1 PWnDLd2Bzra7SouuhC7E03KCB0h4dFv9YFsL4RDLboqcZTa2ifTzoUobgecvcfxSbEfBavuXYjvq 36ttGL4NsOL+peCOUlG/FNxRh6XgzZEY+Qtv7Vy05kDy6VSyt2B/7hZse3rB3lVph98pJii3zkZZ 2VT3Rm8hom7sNh7Cr37Ud+3Sxq61bWRyzY66A1hPY+O+A22Z2+COsQZ5WP40WzpMdYTXlOTfgaPy TnVOvp4UFgonIwyV1lIHAV4E5xsGq9tqm6IcNgfDEaxxix0CD4k4SctxBSSlMuUYMnmLj/Y6kfbK AHcAjwQea3NBK3i94x3Pj62qVkY9ru8OKP93XHdweGR5KCb2D2/Z5d6CC288KYwSxgqRd2PBiyQM RAcPuI/j1/4Ztg7+R3y3/yG+O/gbvntd+Lt8yzZq69QlnwMRAc/95xNfgXF1DYw1SFRaHLoMLBLM kZrhICcLEsbgNnjYqMhN0rYizroCQ2lFBVNL+3VIqdaxfiWGSl62GZMoQsVYwONKVJ2g/Me6QUGC dGTpXVk1wMCTctnWlcxmo4Yw6VSUhsmlFLLnaYozumyIbCvfsZ87gVfVs2wzKatmm1vZVvz3d8q6 3ieB9NxpMBrIMBC5BEQKUYeIhsVLvIn4K4kM9QxJMXaDky1jFOVMMHRLfq1n+ysw4WQp/ydgf+ie Uv1/AHuASOp5/sT+gD4/SHRs7l/SlARL1a1K0N9Bq8Eiqexb8C24F0I9xaSQvVo5slYiuzHAneMH Cdm3DobmKDwnJ6IqM82bhk9a+eLb+aRqNb1m2TXp/lXS9DtSsEfSztmrCPDyOXkRzWoIIUFczHI1 ZLvkDy4QC8Kb64u0pUSgxJWTgkWGHb0bPvLK/clyENf/7LJK0snCdOxEzCfNZ1owq83C6R1I6eYF vo345PisVS+Ti1atTRBGY4Ly3O+uryHWX/m8+Bb+0cUKDyRCHAFngC+vaf7Ac4JxGziaRl5PXfmU oMCFp4WJAAGZIBlgP4C5JAqZqEqLC2XaPDdKD7BOA0exSI7GxL6N/zxLvCXV1mElGYfOxrCWXZo3 SrY6zeWU113a6K9rqEPqG9/hB/B3xG12Wzr582rJFEqziiL2MuhS5YOwqocxEe2qq+/oyG9OScvL TUmB654MTa9PDQ71hab3xjdgtHyrVFgkOSAF8yWyI39Wym58IAXxPbcPSoXRbz69voBUrTWvXGWS RspLy1xlNrfNa/EY3BqfEeJXs40yUvo1wlSFqZT2cgRQA7HcV+oJ2jw2r9lrdIYOM9ksNuuvh9lM ZfA4JNIkZLSAlVeUEHePAxuvbTkGpjXKPgYvbVfKroPHlF3vKGSHGpttbBu5ARZT17MdEdtdtPsi 9v++9BCaISD5rXY7FKqkPub3d8PKLXL2X6X/ggjr/wHHt/8Kx98GkUq4Jdla6p9bEhyE69Xn5pv1 PkQIFxfbuCpySEJ79HaKNaoLs3V6oylXl2mChbQBMn8tsABis2FxYNVkSLVOK74ADeXztkZ1Q0ZG gSrDQaZXF7cS4LnxbZX1bQ3F8K/5qiwyjasrasUjVdIjLfdax/3pWt/+u/vzPBd6ZH83fCuV/S/D /0PKD54SbAKXX1HKnSabmbG8KkxROCwu2sfuO9p3rP+or5TzGUt3HN1zdPdRi81CM2YEXaj87QbQ K8KeI2A62CQ9/P4l8JQ0UMFBTLJ0e+rObVhaw64THNHG9ZQ1tfBe2kfxiEWroVR4uqamqb1q4Nx+ 8p3aQ+/cwxqlrCHN9jIuVIrna7gGhqQcZjvN6NcUv6VPdpoDjM/prQy21NYjTQ1Dnk9xMEvc5Gdg XjJbIMuWkbln3UsICnlkF+u/jKFZylYbWq5U6xFTSQE9D19YGCg1kEXVTNN7GPhRco+vOOMiGv4s 3b0rhVvtlr4HcqXoeTD5fPinI1Plm1l9Ok0UMFbarvMwUc1cI9fV1mirvi41OBQZXsZ7CPuLpIIL lJYRgdLGAGRAazJ3kLMkmxlzhpkw/Pa9yl+/h4Jz5nbVFSW42Q0a2sFc6cjCH2TVn0plW6ew+pVm GNkjZM8H4aLcyh/q4fpxWXX3efN5/JObZd0wPovPvQvCgBwDE5YAsYAfIRqWvuZ6Gp83j2HmkUaa K/HSkJ06YnVkJGLCtESJyWIv8FmQu+KbIP1rqbBCEF2SglgU8i493aic0jJGG/mV8Kq/sMzmr4m6 C161+Q1Oqy3qxTij3mIzlkVF1odSTJNB1B9W8yFIuxoOmsBKeZPDlkfukDzPFO9giK0MZLtK4NQM 8kNcT3uvrQeyXQ4O0ms5DsVOF1t2HRuS1Lq4RuKE2OezN5k8yBviYsZZTYK3JTX2gNZGlNhUZr0Z gVy12YIJyyQqmskjhHhxjtZeAYvXSyPLIhxO3unAXJTDSBSLjbCMtZDC1Z/XRGjVtFWPGV0WHxHp hPf64K5B1ArWtIKnWiF1Aybd3PAH2ZFepawYbvR9fBfX0dPJ1IydduiYq6qP3Ffd3H4Cu7i2Y6+X kGnyXRYOApBjVa3NA9ih7Ja9ZUR50k5uI75yBUtv+BWTt9OKFjjPS7FrkJgu451DhKz4/bN5C1/f rNqwXFd1lgRto6t4Xz8837Eh1VvLtmuWpbFcBRkpd/EOD+uedFfhNVmdFG6laJ2JNOlsJljCWD2U n0YiszRsvoU3OArIJuEpGE7tXm9UE3gqwlHLl3qwOg2fRaA3ZZ/dnwjmyo9xLf0uooL3uG1BizMq lU2x7V6xhoMlKWR4i7z0IKU4Z3FYn8Z2SdKoIliLFhuSdMtxYctMMAdSFrNvAQKs/enjFEHUQsq+ d1tD1CpiOms93onp2XRPIaztPnMWry1dhQtzZm5+9TVy+etZT83DnuxYePYt4rlPQFgqLEZPXA6U D5Ou6ipnAHfCKpBxIEUea8N+DA3ruRwOK8wYuTD/BUEiiJbWb+xOIVO6jxQP46c/brnaRdp8Jo+Z RVJUGTkr8Ulvf/37v15456MDvTnZdSTldLEuPOCvrqq0VJg9ZCB7t0sF0WC2prDQ6DSVWkkP3a1P x3bvVuUBhVTlpZEzVcfAeukesFPaAFTS1qwWcBSMMbaGkN7cY7IPQfFsuVfadEDxIdcTbHEFqioO ugYpfwksdpEcw+4XY/HYp65B5DTx1unbd7s2rwmSso89ZghIvYh1P3OkFpN1m9+oXoo/v1i9ZyO5 YXfKW/OxBQfePJFEDGYc1w8zSKRcrWO0elKr0+5itA7KbXM5kLaKYFkvPiiuKnWUBsjS0mCzq46B q4xmkGy1yZqCRz6jPLBKmnZHir4tbVJCCKfUrzUTasZq4TWQ5TkAF+yBfV22I4eV2Q7Fajdbfg8D ckk3XxZsqFC/cYr4NLFve1N2dV6UB86lFaOMjJYlVLTV6iiGMPIg380dOLQPdtbSpCnO/LK8hudu Pn83BoQhugqrFxJTPl95OXH31snhk4daKqJaKvb5m/gQJWpxITA/WWmDhdz6pM3ipdxs1IVzXo/L 43REwfaOX+dHPCYzTF7CmPH/dpzb7fY6XVFOL+Mx+hCPxeCy4pGwiVaMNmhbf3ksQ9/AByNrfVEq e/dfZ7n14SxD3l0rp0pok42UDVFSubcUli0QYEDG3q3xmlxm1hLCIYY1sPtl9tMeiENUAJN7SiFc 8cLDPCbnw8NsVhbikIeH2cyl8DgkUoiGQSJstkF0e9l7dvW4767KyjiprPU8vJNCWMy62AoX504A ryoMtTq7oSBReFXBWcsoN3/1K0Ug6LAHNEjkwX75luC2hn1YT1Prgf0tKSl7ClU5WgKtX9098l+H xoEPb+69LbsFJq2Wyy4euV37/lXy3Inuy5exbxYPv+CGZABc3n5EduvLwxX7DmCXVg0++/yi9a+m E8ZSq58njrUP9Z7Bh3pT125Kz8gvInelPpu0p9haGNBWsEhjfU/DEVx28fP+F58UwgXxvKVZ+tJq HVlh0NXk4XmaQjUpu7X5hGaIiJSXWS1+I27R00bIHxotMLKaXaaAjgBjBFkEDBpOHxY5CK7LBfm5 hE/XEBuv3C66i5+/HPRCNOsModlgddMHnuO0R8NbKGSFatXTghwXnhGiIJpNArvA+G8hno4eem5J kET/RLXm/cK8hBlg/A1F3qo7skIYd4dCAKswxPh04LKhXmlkemj+QweFwYNm3wz/J2EXKtwhZQfq YNHuPnDhwN7X30hPWg5vWKWkqtk+V1cA6S072HERu7SpKzVA+LP2elbja9f/N76EUtTTnGYprKhe llb/A7zt7pQyJXTJP9oOA7+2Hd65p8yC1Qlf4PpH2wGMkfTZgs1tFXnLThBnF0eg8lX1ycd1BC1Z p1Mlr8JSXMnOFEJW60xxp6Ziu41bX9ITkAE0uCjkyNc+MKab7qF7SNkw3c10tWFdzoHP3ITM5XLb /ZQbkQ0/46YHurB2Z6ejB57E0e3q7cLAmDjfRoKi7EZ4kqt6/9bdWBqVQsGrDFMpdEoyFnlHmNs6 MgSekQqP3XkSSPRkkC2lSg1taUe2HVIh6gMDxl68bZ8vWEM6nWyI4WbMGkqNGwp5Xza5vvKt06lt tJOB6Qf5rvHCLTAKVnfP/k14igC4EkxQ/vFkGIyR798JnyVVgyXyXI21uITUlBRtpEucVj/rciI9 NdUV/fiwuK7MURYky4NVne4WxgOXMY2kqvSW3XikfD4kqt4pHkzfjO3KyNqyObVvX3ewu7+CQAF3 EJzdFwaKPggHk8AhuQWmWHdpoLmFPHkq4vhw/eAB7OSOwUUrN6QuzyRgWvTxxL7GtqY+/Eh7yrpl G9/cvo3cvDm3cHcOQnO0iyX4ik5IHV4W19fYbZVkZYXNVk6WlZV3VHTaoEaAsllNJpPOAnFeNpsG 7wtErPluyhEColSz04ScX79/gRCOCeG7FryxnqBhyPTYkHtH3vkORGCR34HRPKSPq2AQSCsuVOnc oTTjYgaNKVjajsIsK2E2OnUBBjkfPNL9EXYkuT2ViLwsX1Gffvpd7KdTxz9yELIbXay8hWrSVhQh Fvcv/Fd5bdBSboScXG62IweXHfGep715nNUUZX49QggzznlZGIfFnFv6jZaQDRmedpkaISke5b8R 8e7ZmlP7SdkRP2/2mPBM9baCTbjRyPFmMtKjhPtk32YpKuseWThyU75SKasW5kjMNitFyLqdhnxX Ci5MnJwoTJpy9Xcg/HBXRdsg6RTLMnnartdgxRLKxbiJltJzwX63z2VrtPAIpSmmDHiWrfc6LBan ww0q+qNBtH/kUTUKgYbXVublvQsgGRYwmwOWO8piWNp9L+VPdkB4+pX4z9/Y2GNkeXPLT6UYRA3w JtTrc/aiVsgYuxlUbnIafASIOFPucdrLLTB2rIhwc26/DxMigURbpuW02qjIE/LrW04tHSI2d2RV U6WuqihXhcvbChHIj0BW1eGq6vXURXFuxm3iDBYLk0S9alSkUWpGR+voogxdOqLLMKUWY8k96oF0 QnZrIL1vK2xsj5r60ppiwmxxlgQo5EodmPkVILDInGSH00ACnZJ10Q7KTjGo8JIwbf+DUaMMotnS MPDotXDw6CV5nl2Ys8dqcXh1hE9rdJrxYm1OUVED679wdv+xOrK8wzV0DAMeyUWXo99LBH9TUCT/ qqDY+py0EUouKKd1MQbLaFgceDEPeEppAS9JFwozeFOZJdT7uR8mT5j/5vRFp1ef3k3Kvn5r1/IN z2Px17d89uWVM3e+Xjew9Aghu3Oy+/3+G5jsyjeLjiwkZF+nCj/Kj6WeX/0qtipl51vLk4bfPdN5 dKiLkF1pApfkZzpWr1mWvn5LJrmpY/nAR9jJ3uEzRGQGBIfJybu45IedNZ3H0mxVlDFOhsZoloLQ 0KjduL6wSBBNUhiMOTlaPUJZ9FYTbmCrIUiXwAIpeNpNVLcqt4dA5tY0bqNbejpUJNVr28CVvrD9 d4DrVvh+YJALEy8KYlj8PX77KzDmp2WfzNmdoS/KJEI9ZDeDOPwVrhr8Vt+z8+btWfLizF1/A8if W8GoW3fJy5/cbj1f54LFgsXxplmITJsajUyemiU8Ng+LPC0vZtxejvz9rYiz77f1ncUubDi8cOHK ZRtVhNFnhpRgf1Nn8wB+omvvm8s2rFy7mpRl79qRlpOZz1idUMKCyHr52m6uE/9efKrfxvaSgZbK nqo+2qd3milkU16+7W08Ulgid1mrbf7SBs45dhp4XVJn52uI26F6pc3kQ54SF7F8Iwk+k8A1yFuZ ohxhj1Cx+e1tGxRQ8+OmCaAX19hpNSk8c1mu5nylXnLfsT+CMfuPIbyQLM6x2QqJyIJUJVq/veA+ cg42HltH1sougvsj78o7XJYMDSn0/HzRoQuaK/go4B3xR8h6ez9uHW4ZQKCAieYI2UVG/5oddpKe E69J5vgS0rRHs92Y7TT5WY8DOdxa5ziJR1KSTl1jbh6Wr4X9Dl1RcxGuNWmNhdXa7sOHuw81F9Wh PFTPVFkdUeg0pexHdNtOJgXfrKqub+2oDnhIW6CcrcKB7MDdi5X2SraSvCwO8nyXwYUIL/88U462 19S1tKob0zPzVekZjeomEl3JbDA87OrDUtLKmIwYjJClJgJo6yJcbofPj5XRAYOHgDfWYqgrKMAK 9VYjYdDUa3DYkTEVVxjaDhxo7UHlGSp1anZ1fntLfbC7pQjopPcAAcNwRnqqDkIWJ0T7Jq/ajKWp d+jyCcrk0wdgUmref/kCNqjzmiDUcUGegoY8xTSFxUlBVuofPIXXGNgJWYrdRxELTVtsMLr9EC9F wc/yJqdlQzYplP1cEKHjy61+3M3ZOQcJdoxMOPbtkS+a90e5GKeVI5iSVXbYjUsQb8vg+DzSmqrZ qM1yWEppnxMZqmnxHMUjf+PgzBRfDDH7eQi69+/vsp06rEwDj8JhnOnq/IglaYfFzjDIDlOWehe+ K7um3/TwT7ASeJXtSj2DR9KKeoYrXoqhPd7GsiqDW8eTRXxmWTc20NPYVUk43Kzbwq8s2bTF9iay sXNnL4SboPUzQ9O4s8cf9vs6OjoeiCYZRCdlA2AJKi/Xl9vKy0AkiFD4KD8ciYCs0lhoG8hXnoow Ww2wm/Kxssrq/EeTGkYnM4xOC4RZMDo97ExXyTaJYEk0Vy6rEJVLZQtEX0rRz2e2JgeKkVK3y82T TJMdoG0Y6rOaYdpVqbJyimHmM9O6EmzDwOtQtTEeoJ+CsB+e9q8m0A+VhQwKtUkOqE3qN52EXTGz lnfqIBG2WJy0l7UlkRYIpNyWO0YF5BwZtxUpNfCvvIT9vFjyEvuKwUBYrVZGZ5trVFgtdoOHRmy9 PWwvflEcOayMkD0Tgpnrf4GZN8XHkqRv4utKPD5YYPvZlnYMlZfYNFYrUVKSos/GZ62//eXnh65/ ua+toCBIemBFqcbQ09J7qBBZ9PLeHYS2pLAkR0cb3YYAe3Fg+HDbZaS8y3MUMkny9rr6zsb8pvQ0 VV4GR6ZwdYXtEGZ0VDobg5AUHCYzwTXKrbFbrVGZwrUIai1boMFyK+kOmJZGBkZvVkY2g5R2IOsa B/I+2n1Z9jXwoCCKqQaO9lC2lddXVjZWF1er8oqK8nkyp1JbT0RCQR6fTULhUrGHCkBFxC+yPLlK SxWVkMWawnVMMVyQNrcT6a2prDiEnxTXlfPlQTJYXtXrbma8UMdCI8m5eut2PHIxTW+3EKg84LN3 6D1wY4v1FntawIREbtFsT16PLfow+yIKFhqqDbOlD8LGGURt4FQ72jDI5Vb+pmIxQRWLH0HFVUoo UXnYa/0vg6gAZTSr7W/gwjIxChAlj8o/3QoJKpEg2iqIFywcEiRABERDQHKdeHn8OrMgfvkVAxh9 4kQpGH3pslcQr4P3JLy2RsBmTiWgLM9vI8CjNz4Dz4K3MPDWM+BZ4dEbhNFG00bs+6nvCJjwGhbZ BH5sGjdwdtspgJ/cdEZ2By56rZUqNpGrBTFjDFj8bNTnn6EUZaasRHFRYXGxATGYoSQFS+5K2Wck 0PA/wEAQASIh2stX6aHyyEL6qMOGHdi69bnpRsJKOUId749qzw5dxz7Y1pFMoJf7c95ctWLD3ITt Qyf6GtobgqSvfD/fgaO5h6RosRK2HtAjTRFtFQ3BA1hb/kH47KD4gaXNiEvtyi/BivRalZ5YuCNC Y1Zlr4Fr6b+zGe0hNiP5v7EZ7+z7AHt3B6QzIFPXautcJc2D6QM3cwZGZ0BQwsdAKoxAyTYpKpli N75pJAoPSQehZCdEFxw+rMxzKFZ62LJ7GPoDmCB9r3r4MHcROb53cCeBzpc2h9Qbn2wDoujobYLo +RcHhbCffhoEYR8Ti8dvNE9assR479hx/70LF7yTNsAH8/uB/tssSbmgEpFCthvS8zfg67IaDhjg n4pCf3qKHdjxezzSwQbgDvnPitLdz0mrIR6yOGmobNq1SN5cVVNXX6XOzipSq/KLalpgDP8VKJ7+ B1Bc+U+gGK4t09k1uqhQp8z0sFMm/q1TNqKUv7J6x7JtXWn7SkhWgh7gD/M9hIOleRpHQ6Xma5C7 RMEUKeNC52tPgtS2r9rQwwcPNtToCxsIyuNknbi/uq7Gz7gh0eTT57vzceHxJ6cLsHapL2l/IPr8 V+0XKAEx1jZ4ypEJECei1+1BTT1VcH9iFey7oRcEXl7f4OurJI+AsJtgUeeHCNwdj4a+CnFlAUoP Wi9bKxE0Z112cpERQWEnEoS1PpQpPBBhUKexQgkU19Cx09wOVL4ZPp1yfdk/wjftt3AEGlrvYR0f gxkfh4PX0fStq14pUCMU5BJYAh0APW1hVWcA2REOFqAl0lb0OGRaiBZgakUNHpvH6UFhcoIUbRvf 9gWkmd4ITQyAl41Kb0dBXcngyN8aUa4fZi2YdUtCHBtYI+3SwxY2yJCidX9qDesZBOPPh4PV6B2w UIr6Vcn+Pfjcl5Y+9caB3V1FJNoNEjpTDwKmG0zpGjd08cvrYOwHIHdAdsMwsh5dvGknmVOQn6fG 9C5rWWlzWXm5q7q1ra+osJtALZlyMOoYhJ6CctG6FwRkMwj/M5h8/chlMjIUgkJPD/aumrq1oe4V WHsV/XmCPENbVGRwwj67j+o2J2MZSdmZAIe7+Rl7u67g/th2qw8Fp5kqY8H9WVUoEIddBKPDweMo 7dM6LBS6SDsIvtqH+iB2/Xsbip3rzuzE28uqGhp01eklRSaLmrTk51qgTuOjd481aGoLSvSGPCe5 x82k7MCz0gPlqSSaLtQNgLXnvoQ95QOeVtS8djkGCRYzEdncUVPb1qZuTCPR9pFS8IS+fdwnH6Hd 2oMjY9UoKbsHx89BrRvVRp+oxAqdEbJvS9NRWAiKSzZEgNHi7cK80C8a+Eu4GC6g4/ARbVei30NF D4zFD0apDKJqVP6zfOOIXIx+Kp3Col7WZeEJC2TBVXiytrGps2Po5AEIc9ZLdzSnE5Fjp/lhLH54 Wql4EMyLAOXjy45GTBcfRK2Bkl9EaejV0LQKpb8IEkSfGESd5oIR8eFxaIf2cE4d+KHdpAZ31OO6 bwLtVdRZTtZ7A8HgPt9QFOsy8mYaQUfCRhA5JK7L4bAlYJESddONLBR/apQ2lHPSLoZDrAYVpCSy 8io7m9H/U+oYeSysCZwLByYUbqx719CXbaYkK4GmS7PBLOlFDL3cBZJ8w75j/mEEPCL2e1h05BYD NirRUqenxeBHBLG42M41k60S2IsuaR9RgVimHS2pv4/Vw4Wpbwvr/ODbB6IXDKJwsAU93/lANMUg 6nogmmwQHbgQjl59IFoe2qfwj/VdsiE4gMffdZZRpXpXlDD67Qi00xH0wYZxaXsF1HcPzUfFd7/4 VeJ9zdND+9D+03/BypxcJQGmi30u+y+CUf7XoOFpQsHmsJ+Ohd9ChUTh6ft/C0Nh60IF24CoxWpU e6yw9z1PGY4CtZJFJSE8jdoOQKEa1A7fEhcI41XCE4bFCJyXB2GrDKKDIKcdhcvW0nGqA8AVbWsZ h0Z8Jw4ejZj58OFGViMVZnToL0qUKxw7zcSGEEMlo4ALCapWu9Xj4A9RUBeFQeU/WutyQa5FdoP1 tbCoMAM2yfkyKNs8yKBeK3JTHOQYgwADF1H5sLQ18VAjizp1dsj5oDBT7UG5PfA2ZV9D9u5DJYxb Pj7U1E5zhC72mwCr9b/93I6mbsoj23Ij2hvqG1GIKn8n/6V6QC0cxZkccB7eYKruj6qH54JqJDSF 2wLPT9N2kwvVeaMEMcrxSST80MqgM+xt+oKR8DaHGq2tqjiMnxbXB3l0+XNv55BFe/RbDajYoLWn lmoRuPxhfc9lwDMZnPBRiaBf6hFRpOhR0WMiXDRFNE00QzRLFCOaJ1okeln0iuhV0WLREtFrotdF S0XLRMtFb4reEq0QrRStFq0RvS1aK1onWi/aINoo2iT6QjQ9ZL5aDj/eKsoQqUVOUaOoW3QizDoq YhQ5as6oZ0b1jzo26r1RH4dHh28MPxV+a7R8dPzo70b/PQKN0EToI1wRrRH7xZslJYgVaUJakQv1 9qMj3x4Ng/9POxpuHz3C3F/xMyMGDuG0XHgeeCPA12JhkjAsB6FffvZIfhZvffgzeF6Av4tHjsPf BK8Q+i1SUMN/wiOADgPEifCbykghESy8HtYBfLBIz+9SCmotmKQET0sjhdmugrA2UBMOjt5fJF8p Fvb8r1URp8Xw61ogBq+FjuoEY5TCoRB0DSjDcu8nhE9WRoIlynGDP8h6KaXs4kdSWe9FaeS7oZQy DS4z0N7uUMO+JiithVqOpJHb8ocehXfF/Z12ax15VBdI8m71WMsdMA7C5ddnO3wQk33L6Fb+Ah9l N2ATlt/xpbKCVZy28NopmPCzZAqrW2kh/qA8BPshgzBLnTmsTHEoVrjYIOyHkFCbDO0UF8R9jSE7 RbXVq3UV+XcrPNagHdYa9vqHdope5/6QncIdslOYdimsOWbKELJTpLE78SUhO0UzGQluhgYxB1Jf oLkpDDxxc2T8zfCRAXBNfphnM6BA5ysl+PlXNqS2Vbk1xIbshCt1QFrNKs5YeQ28WYkknbVtIoR9 4k0s1/7v7Mn2FH7jgLSJVUBivTg0uK+kcDu28fxhIhJsDF0/PoS6Ox9eHxg84RplHZxwmTIMjL05 MmO6NBJMUYZ1fwKmfBQ+VRkJGRh1DfhpAJxVj/v4KtD8Qab5+HP5OluhTUvQfAjc8LCw5SCT6HF5 vV7cC7sCtaS1psUC5dTYn74GUWDU87cF8cZdRZoc0ko7K0mwEoilV4VG+T6+1O8hfOUNnjb8++EF 055KWhCblh2oLSaLa83t3Vjk8xBP3eoqgLf3jLJUKet+afMpZeRf4d1dAJuuhcfA5fXWX5Sga3/Y N7BvHFJJgMXKo84rVQeJnmBjdTve2ZKfX02aPW66FK+urqjp2dqwdubqV1flknmrLctXXpMOrZLu hZqevZJmO3SxRILpynEtH795efEN8NKl4GnZTy+C+UrZH18ECqXsmxc/Vcq+ffG4Uvbn4fbQT5/B T4Z/lEb2heb0YfA8qw77Aryt/AIKYF62GZJoIne+tCNN2RZqV/NVFmeTElpbuh2uqiARrGoKdOHn 27e/QQpTwQKl+o/KHthE2wsFQpcxsEDyUcqZmPWb8rL2Egxv8/owkHQSjjY7dKkfDaK/jPvkL89c lbkSpLJbneAuGCONdMGPRH0GUdMDERciGtU1XjW4rR73xVXYz18n+9IhlV0Dy6SyC25oxbI4ENlX ++EJi+G3Ru03iOCNwxmc95Ds/Xn9ajjh74UutcIgOhz23VWwOvTviWfuI3BkMP0WQSU03/yFErwo ubj7nQWbN6qydhEmq4U28ciBrKyqDfimzXnZe2C97XL77EG+nnSxFITLas2qHJUZqrwgO2pVNENs vxsTXpY0SfPmS9vTlM2rpEVQUuFmfXAK4iUdrjJ/gKgKtlQdwM+17X2NFKLhRP1y7Yc1C5zXEiWI hTPqDwSJqvL2yj78vbbkJWTk4f9+82vj4JKeChfNbcDcDn9eGtkGnlbegkv5huzGLWEqrzy8Srrb FZJy+C5hsiP3JGCXEtJUU376AZA/Lr05/Y1lO6060sK6PWV8kK+CY4HtdDyncHNejuFfx3JVKwfL lQumbnrh2YJ0T1BNqiuMgQ4s0ggDZJy2dQS2pI6eB6M/DF8O//A8RIkf94fmfadSKJLUS2s5R2gJ zlaG3YKLaIYycquv4EGY7iFrzIKp4CUwPhzM/0oeTAru9mYhDsZlczmdHD92WlmXv97fWHHgHIgu b2496WvqdgVDzqRQ3x7Jgoac3MJcLh327aEG222pZxQB1g0Tn91KFySPjV4lzDAXWLQ0E8U4aJ+p RnU88yPVRWMb52p3BXgFtO5VwNOksGpbdkoylwvTZ8jgZa5hFD2ULy2YhESCN3wFI7KmMAqsgiAe TAaJsEq4JPcWVOx0Fzy8UafLyTmgALa+vKdq4Dh4XFHlKW/ncC6YWuQhDwuSyl1V69xFUQ7GaQsd CilSb1Ogtbyn+thhMLb5ZO0gDBKuGqcCLt6g2Ynks3m2wtzcX7QIbImXaqRDY6KsmIXVmVWEZseu ybpMSwllZFmGp0utQUPz20Bm6NR3s4793trQiewVEBSksBm29Jy0X0bFajzWClpRRwXNvnyXzqbT pW0UHlHoM83FDIvwpipTPbEcxEYYmqlqN+b2ust5ot4J5wfeUlQ2m2lLz8ji0sFeKadxUfBEjdaA sX41Erk1QQl+OC31gEdgypza8d5+MEuYAh6XfQNeBZvkXljBmwyqrK2vFeQXFWrNRYyKVlhorhhq DkJy+MaGRlvjQ8FLpdVVDO1dTt5b04HIvu3/wFPq9TscUbARZA4UHX9RUVZkM2UymQz0q/LFXgbp 4Ju43tZOkCL9RS5Twimy+ZIyVUccmKDQVdkdgQqohNt/ovdgZXmpL+hocAUdD2cGTnEhbDSo8nI4 Veh5syVuK2SG6qwOqjinIC11A80wDquXdm/6SFHcYHM3//ZFuFB2Q2toXq6K2/1QJ1LspioYRQtV WRLMhwslWjqOA+uF9SNbhcVgMSSow5Wyr1+Xyi7mBotaicgiuFOjpfd+DB0U9/3V72PgMe+HjrkE j3n/4TGyb2/dN78kLakYIcqbysHi8pqKLpdYqCv/zPunAHjglSBjCOno5PwHY8fYx6L7pVfR/WPH XvWOfQT8/MRIjvy07BdXe1LYjLD+UQmjXhg1FP5q+JvhX4yeOHrK6J2jT0UQEaaIDyNGxPUSVLJM wkhGkERk7ZgpY5aOWT3mypgRaZj0GelnaDS6ErWM/eCRyY8UREoiMx4lH+189LPHIh577HHluOnj Xht3fNw3436QiWRGGSPjZNefmPVEwROnnrj1xNdP3JePkS+SF8g75aflV8bj4xeP3zJeM+G5CeoJ rgl1E5ondE34SjFeUaE4ETUuamtUCoZgmzEd1o+Pwafj8fh5/AZ0tc+Y+NLEyxP/NFGAYaJbeYh4 mXiXXEZmkD9MEk+STto1yTlZOvmxyfMnvzh53+Qbk/8+JXOKeYp3atjU9Kmaqcapf5oWMQ2bFj9t zbShaQ+ixdGPRiui50Y/G/189JvRa6Pbog9Hfxh9Nfrn6TOmr5u+bTo9nZveP0M0Y/wMfMaOGRro bS+f0Tvj1MyImWNnPjZz6swZM5+a+cbMVTO3z0ybaZw5OPPdmR/MvDXz3ixk1sRZs2f9btbzs7Jn qWe1QJf7yVnnZoHZ0bOfnv3C7GWzC2YXzzbOpqHTPTB7YPbZ2Vdmfzv7h9k/z5k6J2bOijlJc3Ln FM0xzqHm2Obwc2rntMzpnnNozjtz3ptzO2ZUzISY2THPxCyOWROzE7rfs2IKYnwxlTGNMSeh//1y zDXogL8P/e9jYqNjE2Ofgv73JbFvxq6JzYplYgOxdbFNsb2xA7FHY8/FfhD7aeyd2G9jf4r9r9gH cZK4x+MUccq4KXExcc/HLY1bEfd2XHJcSZwljoeO+Mq47rjhuEtxH8fdjvsy7m/x4vjx8dPj58W/ Cj3x2+L3xmfGF8Rr403xTDwf74kPxrfF98cfin83/uP4O/Hfxf8Z+uPDEx5LwBOmJMxIiElITHgu 4eWEtxI2JGxPSE7ITlAnaBPMCWyCI8GbUJ3QlnAg4XjCqYRzCR8mXCqtLj/q6md8JbzFgizITGLe wFcVOf2QeS5l29uwy1Di5qgmDomHXeYML+kqdFmgf9Ebxbbaq+yN9np7VevYaMqr4aB4sVCRYabM a/HN4kI7zGQgHGqZuW5iUIyOSEC1vM5hLwiF41l/kWr0VAFNZFqhphsKM6M6uF5+//HOkIkBphwv NGe6FDs9huqMz4UJI48pUr/V90P2yQMzowVnLCrNHpLX2oqLt84QqhSbhcfy16q3Fu0wUHnWPaaQ NxO8Jm3jW7ge+wHoT28eGw1dTx7GleRWqJwWdylW5gh4G4hhkBBR4+G4BjzYLs/kuEYfeRxEVx2r 6nP6o3zF/hRv7klhgSLHx9mycbSyueaaq8Pm0jsoZvu0rXrhEe53nNpvCCCaSvbgIeiJbuccrcRJ 8WA7ba0kyyivwa0u3aV4aJByIvZaps/eZ+917K8ZG804DVALatyjsOQajEYGoUrS2G34anGmzQEB 95OSw45K3kv4eI+zC0qlhzoYaI1+R1+xu3QrxC4c1Heji5VQofJvlqgqw0Mtym/S4OcMoZ7CFsO/ uyz/o1tp00O30pbf3Er/k61TPvxr+x76U2ZI0ZG3obs+z661soTBu/K9/LrYbxU7+5MG1H2IntXa tAXZ9j0wZdlh7gsyCj8LqxsrUqPhtKmYsEQy05ydwxAZ8A0FdviGgm6+mmttrYf5xOviy81uWI0n OaxNP2BAIWm3lzqJMkNTTt8uECPMU6AHwkd+gnoMIWaNIBaihdgNfwVQEZIu+QtfeRpESCthl3Aj dMXu3PWFtBgsVJ6GKQvagw0SAW1cNLyN2HHkou4ifvVqE7TAnzxb/tXnGIiQnLQDSXkn4S6r9jXy DbzC5ebKoAdxL3Td79idBFKUVprVuS2QG2pkqywe/UPTvWQ5hv4kBSrJxe8gM7n0G/mKh+Ls3JAa aGizdDBdmgtpoDPYCUkr7+85RZz7of2oy93ujmpweV1s6LUFWWyBLV+lAlqlkbaV+Cj4soMGBr49 IGvXIkVxmiavJFvTpG0uaUu6pChpd7jrXOUOhd/FVMA0msaqbBl7VVzqL2nUY22iFE2U31S764qA Kxq3OMzp0ODQN7JGLkRHRwtRwrivpoN4MPmn7wD+i4qG/J8JTEh/QGoX/R+bUiANyge4fj9R9pt8 IPVX+cC/0OXgAvDJ+8s5t4PkIbgox86uPvOUMHb+NOHRbYHNbbuJPa3Hst7Hj19uvNAJRZUWN9wS u9OzjKn4pBW3f2zk+CbS1Ca32B082ckdO3EGP12dnKVjaIYlreZ8+iUcrU1r3taYhqwe7Ck8i1eX hzxkUMzpo50lXKGrKJjavO3Ihj9APOt2OpF95Udbz2P3pgfj1kCn2hrCyPAFXlsLiJS+J2/y8L0f dW/bsDglZ+lGm72RgC5K97/WDbHwKZaXVRLV5Z0VffiFph2rSGEWrBsK/6hsWyXNTw0VLR+mnHpm /ebcnB3E/02FAh1yNiO0xhazUIilhQ3YFq6Da4EmxTZojS2nnMU8FCHb/EcxUCRpsLfwtQRsqDNE tnFXyRpTSLvlptsZRSvDFydhKBQByaEv4jVJqI3QTThtNE/hqv9QF6HgCJgt71eOrJR02iD78KUY jKm3LAt5Mv7f15YgVvpadoRWYmZKrGvwn5/8v3OJvP+LSwSFmiso6vT5GhvJkycjTp+u6uvHzm4d WLQcaq6yCXOp1esi9kGnQS8+1Ja2btmGN3fsIDdtylOnqRGWgT1rjHGwPEtwwTquDyqv2k/ZbI1k WcDfUdFNe6H3m0FS83OYzXjkyIyQkXLbPSmYAO3R2WAdFBpHgx1gMZRzPiMUkBqVHKy/IqyETGia MGaeIBc2LgIboYgwHyg/AuEk+tM/VISiQyEz3HxoFQl/qCTUQLqTkMqOhCKyZpn0xVckFqu9yGNG LomvgZl7pXdR+fyXtu/SGD2lFqLUYghq8EKttiijz9TZebp83zB5sKt+cAg7u7l7vZlyul2E7MfT zcGGVqx3T9fK1ZvSN+QSvMVN+Tikt76ttgNvaSxKztEUlhjI7KI1qjwjrfOY/BQC+7WPSc/Wb90G uaInQIx8MqtdEeKljvJd4Anl0cPKXMhKedjyv2JgRPJXvhLaChr/LN21I4Xb4JaegSF0Mmz7+aGK lnc5nKzfWoYErCaojqUom9FICqMSGPhOBhf0f4EbYLu8lut2BAlXraum7/zgxwOfHL0UrPN7Gj2t XuhDtvmgSzyLzbKlp2dye+HbHMxOqsOiqKYDlAXTpL6esYZIeSttRcqKndeSPtnze6Rwn7a9DPN4 nRVOosPrckGLqCMqg91j27FjD5cFiVLWZnJSUBdUzlRaA4agtiqtZudPwi5FeWZZJl+COArsahO2 Fb7HAb6qQ19A69gU+G4IGlrKoLkxRMud2A9fFbBDCtGHa6crpKp0gtnSI/BNDnIN5zNU4nApqKAy KA/MAiqkwqL36HFhqpAnTBdyhRlCHoLCLPawR4VOv3Q49yu8Iujg/aSDh9DDkcrleQorXzn3i5fV B90fUKZffeXEXehlPbypiajfvhxaZxcssVmeJ6GSErYZ6+E7OtiAyatDvDrnzlXYtU/kPXzA7STc 7mZHGw7Cji18+pW8lKx8Mj9rN70T317ocNLQ2sq6K0KPyO8udWNeqJ/1En693mXBjWadwUo+JTzN WXyUB0q3HtbZkF+HCseQyF0akyiMEx6/Ox+aNx+/fRc8Dh5N+IMwmoRi2zz589nxTz6587svwagj 733wTZcgmgebi3fgE/7E4Ru8RrwHwo7ebnvvuC+qxQXV/KEXUqT89mDhZR46s6tC7xypslgxfdKS rHVExsrU/93aeUA3cabrH8exrdUk2o0VZVWuZkjZBNIgZBNIJRBCCYTeTLMN7r3KlmRbXaMy6t22 XOQmd2NsY5oBG1NCMwQIWdKXVEh2symfcyZ7+b8jk2Tv2Xvvf++59xzOMQhJHmlmvu97n/d5ft+a nI0pE2l/SrvM0nsKj3mE4M7useN+uNWZ0llQZEw3bd+aziCApnSFNmCz6Kv13csQG9hJ4XXWqvXC zXHTjZVrdHjOfvYRSy9cwqeuiCG3kWrlb7Dpan6Aqe8CTH3/7HnPGDmlfFM00VdjDxP/gpUe44Ub GjuaJE15eZKSPIrIoeqlbUBzuC9cF+oIlcPDTMIpB8wUbSKOsaLMlCqiE2PTisz1hMGupAxaWJem VybY1NUGp5N1sbnV87bo09iwRQ/354pnYjAk90pQMXucrUPTzyKh90Tnd2ipk/s1SvyS5ykPr3IX MjaqiHQBKoe3bf+nnWeqS07SfG/eP/5H3UBwb/3QlyiZ33HO4Wl3tDn4QL+pgRVMPhTNRYWlVAH0 H3RGhUsL6kobSZLFaxfRz/OL12oqNFJNsKK1bKBglK+ugyRFtbe+9WCgKRDyNHQ5aq18cD8ybySD 81qcX0hVQnsGoFUuMghlO5hzVSUs7r/L0lQSlVRVJki/oq5TQsA9aBf4rFOvFJTBIiovP48qi1wR QAqBV3K/biS9ek/ZJXom3yUzGbSVsnR+eQqQWyo0gaoWOQgJK/lFIzpHq8PPKAeWasj8ZhmLTLml 2ZQE3khvrnAAtoDfrPUqvSAAeMSHctjAqEmykc4J4eWp0uXo/6R02XC7dGGB7GfuwPtjoZVd66y1 V7MsoPSAC2m+RGkCI4dSkHZ/TLnWovGK3v2q5PmF89bT00yEWmOVAsgLnLhIeAaMyjefaPujG1dR FRTY3JwChtlFWUNWGB+f/HEGLyjWpclXy3dawOvhsPibvaFQiNXYMGQ9BS2hdsqUSvy04vZ4JSXl xkQYryK1zYBlgBof6TMN3fWQHSob0p455QKfGq8mV8TtpmBGn4gd3a0vbSF8KlexM8VOeiir3dAE mc1+o01DkRAs0GggvqKXSUzZImzvYFN9s7/O02EP2tywLAXxKgvWlvnZeczgqjJCnJ9s1POrDcZK SbFG/eKczGKtvoKEMVwPmYJ64RiwuOz9Drwe+AYmeLUg7fZSMOMlNiz8h9Q2hsWVR6eNoNmdeb/2 2ADw8N3bE2duTZt2u+M4hai5NQ0SDi5uz3/kxpyLcGPqTv5c0bS2mk3jxMrkrB07hYldaQcHe2vb mpnseDGpEKUVBvYS3HNHmusHervwDlMMt64BmDZ1/yliJhhBzNT9iphJLqQsRWi+eAzFdV8Mhrsc AmgkguIJUlw+fC9FhWg126nv0PODBodWK1RWpZVuwjNflO6U5xiMAtJSfkRXk/0ZX1dbcsYHs5Y1 YMWb7bcxZdlwExVkwRs49M16fo/WWVy77R06i+9PsynKhJVaiUGDq4vLkvN2sJRalVYuKo8tlVYx kct3x3efPbGrY0eI4F7tqB5q3Ss8vbFzyS/+EdwYx70+IcbL0RqrmHtVI+b8p1YDPpsBAJwMjO45 CwCA1mycczvecPBVqGCYHs6t78H0cSsqBIFc9vftk9ET3GGkQwd4mWelnXuF2QaYSwtKqAJGi5Q7 9E0GfjfprcgWLtHRz2g24PoMgypLLzHwNXrI1ZEARmunGlvDphaQGaHRrLUBKS7famocER6kBqk9 ONVGnbPZXYaGjd7SM3Q8n1tem9Wx3JvuIF1mO+DvDn/rqj6J4vgtgZZDVpHVaK5QCLnDtDxul1mT TQKXA+RMwD8I2iwdVLi5n8nvuWxm+D15Vn6O1dxkbGTpT5g//F543FK3z4E3TnWErYI80FSL5WVU KQj92/SyrbMSHuOXp0uzSSNpLRrW+lkcK7hl7ov4CuJV6AFaiJ7af6EZzaenoxe4X/7tCq+8uLQk 3ZAz9Unhxm8HRbSlqZvRMdyQktbYK6z8UpvW6as99Ba/rs0DHQeP0q1oyD24hB8sMhoL9DJ4LWmR glOr3dJHtbfu/vXo0+18qbUY5FR6GnoY9FQKAi3QcXzvr8FQMBi2CzqgfoSp0ibIBu28pKSYcUer SLPMQ4Ik2kBaNOCKXsyXl6iqVFVKv9ovC20/xa+ot7jrbKDD3r7Jy+A2TYMBPY0p0mFUbtLzu7RO XWMeCz4gLfbLzIbKcgFYwJU+yuu5+QXfQdr0FD5rk0JrhDiwYPbhGJ1eryM4/0C1QPNvQy2Y7vp/ CbWIEC3w/w3R4q9LIOIdqg2G6mUNJSXyslKikKquDInQrPtC1fBoRUNJsSzyKPgQRbDi2cDGbqCX eK/7t7fn4nntB6pOi8C9CNd7ZLl+a1oY7CoLxIgCC30u0vOySXMLcfK/ssgnvcSGVscQZD4WC+mS uMV6czJwQJiqv2Mbex9Ap/4U12yhunG0KLbbYioiXoybUk4gIBTRClbGFZJmuPegd8fE6eOeBddU gSytYqdSr7dUuYwjzgv1+7qvHOs4a7nI+ot1zZmnRXOXbZi//NCuk+GQD7CDVsCkABPQpFaZKkWb Cw7uPdDT3nuyccGm6TtWrMsgOJbmfuqICFGxF46ZDceImua6i579THpPY5In5u7MrWDJMp7XvyZ6 bb3NIiHKLAqLR+ipaWkfxo+8jeYi7eG3P0as9pDABpgKC9joNmeNXbjUcmLsALF/z0hwwA9ebL/G skP/dNHrG1gLV5YtXC98YeS1rz44c/TqicSjy/LhwisF57xVAytsi8ttqRbtb9+xYU1uwS6CQ4V6 LXBsHjg2k3EUjq3+onufwV1FqQ2ylOK0PDlLkjrPuFz02iazBVwRFhUcW/Wf0e+8NTiYKtWHr3yI WK1waEbGXI7ttRyCCc8W8cyll2+rKGKagJV2g0fHx2BM6OzoMmFf0c94pX4gvwhuQiDVbcI+FDdZ nOB6uSd2yKlfSWDOwnRHjoi+b8HLjz83vvZQFvHlGzGXtrm3JApX7Vw/l2bt/GqkAicdFUa91rLN v8hXylLWHSn8QIQtZS6gfqj3Ip448A6sFnN/WMTmfn9RzP3KMGTab/KxuN8bK1MZWhoRy/36DIzL xZGYkhxiSga5VeeOxJSghTzMxJR8t2NKnY6WiPvVwMooVsAan7MjFUhH6H52HXit9QGdW8HyVNjS lgmxbezBHHYJrHscpB0MR4aKcnMBQ2Zbq6RqAXhj0Zlh3i6WLTUWWjXVRuiaNnpCtVC8VTdBLTER G3Qa8+XE/fTS3E3bF5UVw/RFMq48nsGltWmplITUhOQElZJSu5WDCbs39ye4LXab1fkaeoBvgFCj zc3CIsS4f1KSMV6jGS4T3AkQyy4RivloOf1bmrP6Ffqu+arO0zCfNdZUVtgZwIsiZ82cLUmspK2F ap1Iq7e5jx78ZmyYAP9dQ0uNu0F01s8L6MtdVSLuYeULry5dvZVY/apsuVRY4i9tG/jz6KkTuAUm +PeURStitFKTRi/UOirOomdvgkH2XiR8EMXT6+idULnPoBV0OnplJnpu7Kp/9wnc6iJd0K2uzEqQ QFhfuhg9BbjQFQiseFDYP4Ji5wDUJH7OgvtJotCk87hDNUN/Rkn+drWnxCXXQcNptpgxdhT9nHfd HylChq+IoZcmAQery+gDg0d8XIOFGt5TowJiSMeOgcURYoiYDRmKL7jhg2xuBsLYXP9mSHEq2Ng3 zPQLPXiYftuY3ixYhhLEGJMk3Q6j1y8CQySBOHbjdlAxB4KKXYy2kPPzTN7Htk6O7xLPVSr0FqVX wLGMAapQ9F7sX66ZDX8iakDNdnQB+Y7SGlnTt2Vp6WjR06U+r4qoZNRsIfYQZJDRJnb8qdNnRpou /B79G5M+Du/jc7+7GBjae1oYQVzi/1PE5XBJzH+L0OT+NAXRhO4pZSM4mqIqqVfnNxJBY7gqQ5iU XpQpww06CJsbx2sO7KNOsg5mDWBbtoq5m9EooGXtAb1fZaWjt/A//FeESWBuLcwh1TapixScaY3h +ufHjYm/jOMUwRmIgiACWB3AvclMCE+8+64YdPk9FtfeM4PZy99Ika5XABgJaDJks2nU2VXDavX3 tB8THk9sL3DjrpJsW77ohdgTX4k5lyq7b0UBfRHOozNS44FDUIkeR+udA+juaOCI8Pz53uz/WN/5 usKX2k/DEMzvPO9wR8o4J8R6VTaWHFae2QWFTF9aA1kCtw4m+naIJmklqrz8xZLt5cmy5LLkii5Z X9GxLSiaX3rQ7G+xNTCTPZSBjFqcZ0rPyaIKmdKJqnToujT8JpjA2pdBrngdnXoY8MkMy2ny9+Ps 8fOSt8dcKEvM/a6cmdSoMKBYRZuSc5NShZt7Mo9091V3tX0iVstLmbV2cc2+5sBgZxtBxXI/77Ca jLuJR2ByhjSLE//ksBdqQI9W8NkmcETbbE7ho58pvUqzUingkE4YpUU1rf6uprKaorTUnLwMwkiZ gH44HgfMV1hpFFVs/CdTB4bKxfEN6AduGEnu29dlMnYR/rrq/e6DBpcCWI7KIpVEqWDl5m82p4gy Y1ONtt4GAt2NEuEchw809TWEKbvRSgKPLyMFbjqLrx9wQliKGgQzvyZgIupMHbJU4c6U/DQgQGlt KhcJNyEorTqbDuMpDLpyLS7R7FJsl7IkamlZoTAtlHWkqafW4cWhW2+xiew2g85BVNRU66tFjWFP YwPhsIHSKNKplSRkIXVNnRRhR5yYQxZZ71JR8rZiSSFRItXKlEKNQ+9ytXqcHtzpoEAxZzXa6mH0 2+/ITCf09O94KoMa0gB60A1KRJnK1prdu90tbqLF7bGapCwOWLksSRHj2XGI3z8I6scdzK3BIEyT AWEax/V3ifVyYx7J5867TTDlbs5nY8aqTONCER16S6xcL92gyKC0PqPd4vYDD6+Z1dR4yH1NhNHr pozjCP+6lY3mNLKveb12sxdO4ZGVe3bWlvhkJk0uWWbgg3ylhKjcANChBwd6zNAlslkpt95W4OAX 24s9uR3zPn7x+oKPWfndKrdDaLc7+/vx8+dGR8eGu+sFbbXdzlYHiHuAOk2FKik9LYvKBm0QlL0W Hd9n8Bg0Qp1OO5X4Sygvnw6BP2VBgULFgsWuViWSme17CQy8zDoNiSdJILandpCCHsi2McSaH8wo V1wlYcglDeDx++UzfTIavxvl04+/zf28XQwy3xae228Oq/0sOilWWWXO81bBSJ8SQvnt6N7OeFR6 NuM8BDsTfryXty4hJ6GE0IJPzSHqCXWGekThFmkWONDlCnCMr5WA8KoE4RWYnIzwerJpx/Z5r+xI qlI5AyrCo4EluUiuUMjy+1TtveOBPUeIvV2hvXtB5e3eYsU1lN4CyDvuX8d+FnrXgX3naTYM6fCx fKAhvMI7W+rPzhcmpeWtwI1AHMjwpNQPCDsbdl8CoGWY97Bp5daFwrWDGR8V4qX0H5dUZxxW9wn0 TnDBqlmpnoSADK/W9krHSNUSvkPTAD4w91n+3ywT+y4Jz2/fPTuM16M/HFbWpfjzBDad3+xwGYfV XdpAvjPfkWdxjfF1zlKzTsvihMynEiWTHx2NRx99zO1D60/xCvWA9XDXvPcFcfJCzDufhM+fEt54 /dwjT7248elsvKpa77bjx1uHBk6I3t27fvb0lx9dtghCjwteyMrcnsuCnjBpgKg/aTHhEH1s7KLG QHuN3QfZxwGiuj542H+IdCitWoNOqa0ql7Hk0lzddsgw9ZDdekiRNujhR6ew3zN8GbiXdgiu21lb nlTTv8m0p1kzCK7dmm7LyhFmkknzdBBL1Osgtw54T/v7OltSpjDXkElmwJuQ6WR6hpD+zefqg8yb eIEUucCnGu4Xdjm6bPBb7LZue0+38FhJzyY/bos77A/1HBNyfHI0U4yyr3CHJ5dBnRFmc68eBYJA Ihvd9/4VdAfB5E0nP22PH39r81so/dyqy9yrqAYuoz/MW/UHiqBeHt06ns3iXl+WvHjzK5AvvrHj OvrN+6e//3LF4cX9kJw91HW+7z0h9+qNlw/NgVyt6u938hZsOfXBUPPRs8PEpawr618ULtyxdRHO vWqd/JR3enDtyrWZO7ZnESs6lgxOCMd7j0zgTEqcsdiVP89uyRbvB3uilZ96U4zFzRNjjK+whV1q 0ACZbRQ699ag10uq3PgP9O9i/BU20G51KmOFEZcy9TbYhwRhJinY2W0K57ArLVCrljkq/WV1Gf0p ezN3y+tkIZ2Lsvu8QOJA0XuunR7BbW6tS0uxHtiyfiYdA8jL0ZnfbcGdlBNASqzlI7uuoWgAHxhv TePArPvhrWl3K6dFoSeORcMAdpzXZG2zhHCjxWQ2UMWR1hf0dnRWA7S+fNAKsOlZkCOQFgvpBABp 5msBEgvYuCqDFKAJJPCfjSwA6VHhtn2mGmZAAtCLDbxOVRZwUtlZWpcxHBJyhtiM6Z/34I7pTz46 /NC3fxv+283Pd/zwEFF452k3fc/mzXr67iWL9ejukREK3XOJ4MDC4Hegl/xeHLX7YzTxcTR67n1e /oDiKOSq73/34FuD3fKiZrwxn9e2y7dxIzDXXtk0PymzpqkQR30Q+gkYVa5KUcaWmNqsZE+CaKo9 u7Dz9ePJRMYWqP+0NUbB7iMx5T1DqoOiqYbt5dzzqwcBxDNs7Xa5cJe723lChOqocXo983WunwUN qV1rdvnaS3FZs3FkH/QBJvYMXicJHUoXb1SklWWLstPqjygIPfx7jn5P8oSIE1rSMfnc2ajLY0hy Ofqdyad5JVAeVosQ24geS6fB3ium+Y/Ts9S4WkuVeUHZfNoOaK270AIhdOGnj9L3+HCJpRLIBjaf IHjCUWe3g7qJ1rQGqqubIfMO1jGdCad1mXKjXq2XCzj3ddQ2hVtkbTk5koI8iB82yNpFnDXkVmUl 4AkkWrlxF5Rs59B956InD6ODvMfSZy9f0Tvrxo3ez948nf7pYwSVzzvsezZ5p+KZTZsqPxgaCnxw mPiJiwy8R6eeefOXZ+bfOe54NjlZ9+yazVNPHCEmoxp4Bk+Fp9JEX/2piy93+LQ+2C9hKW/Z2m2J EkLt1HnwPe2tNV2iQ805SS/OSlyVTejlwIoB6OBEbTDoaxCdb1u5GuD/a14jJKV2jUgDN0SVK7+z /UrX4XHi0HDv+GXhuV2DyxsgLqmwOVyNNayjewJdLcJ33mjdjHPc2gYZRCGm+ZXThtCaMPYdmCmw UIoEXetDx9uj9l9DiuvRSDP5A+9mCx0/m17zxkOzlhCp+QnFq6R6vbXCZTjnu9l3+Szrm0+HIZsa JUSPLEDTYIuB2Nlz6bsevPj6u/0dvtp63GIzOWB5YwAEVpFofson71w/cPA0XDiOgNVlIWaiucog sGGkgpkoim30qkDe6aiH01I2dVqsRGZQ1gHlH/gMXNapp1cyT3/0TTa2Krj1o5He5oYg7gDjo0YE aT6DmjBo1EaVaJn2yDiBVsVhlZ2oZX/U6HtIBlmvw+hTXnpOZWE6QWpsGqeR5a4LghZwtWfh4pd2 bFwxL+XDD9A9Y99/+gFx/s2J8LFGWBH6tNYUHS3Inj6D9fCTu+i4R4X0PZfmwXYGcdc/Rnde23xp Fs75Ol0MraH/7e4QnCkcJQaxneiHxAhnEnd3pMLaH/vyjfEV/fgLh2LSQlsHx4X7Gs58daP19a1+ HNMZjFIHiRlOsgXYX8w1ckjRoY9bUWcIlhTH2bDO6hJjc3nf3hhCMd8AqmTNx3BqZr1Ixz03uuzq no5AQwtugaoZqk7YYMBYJlqa9v6piT0jp242PriUXjadjt60i0jJ3Va4tkynsymc5Fv+T/ounIYV SCk7rA5E1iSVsCaBdAhwC82Nai+Lnh+rVppL3UoW51Xx2wPpkNkuqGISZlq3jnDpO5mIWWZBIYCm ykBnHAscYnTfdIhm8pwm0qYVpSSkJOxMUCkozc8FPssFzSan8DX0EAmHCkQPTLduNXiUSmLVBjOA fUHxrTXaDXqhXqvMz8V3JsbkF5QrS0Uyk8VPoBtjbOx5xpYuB0nr9hBkUwBOnbWxKlUCo1BqAzMK wUOQxrk9EN31ECRB+90t1XVVrkqKKKdyancLB/rb+oCr6iQ9ULysKN+wdbFwU2/iACTHI/No1NB1 pIQbxgpTKP3wSnoR/Rj91ElImzyMHj4JOZOn0GMrgXr+MJF7J7rDRSc+8YSGTgQi6h0alPjFFy6U CFMy552WftmWMK6xO7UBUXWLt31wXe8SzFAtFmD/J/uxcCZf+/EeXovboNfpYa1HSHLfmFUlpXPo U3zsBMBDfTIX1ESUnUWGzOi3EEaPQF7hUuLlyiDIaIcg424mW5tUUqgBVA/Gc1ocXoOXvh8EcZeC ab5r4UuO7eu1UH0E1FlenXOOh19F6aw6B0vpNV68LJxcHHfZctHrhd6xw+qnrnv4DqfZC15aKi3d kiZaDHGZR+kn6G0Q4BJjjbeiXmJaMZC4gtkXIpNPQHorHrvNj9wiZzethbPa0RDqbJFAjLy0OIeJ kTdIIUauJimpx4Ch44yE8RVIGD/e34LRc2M0Fr/BKbqGoX+L67aGPQHc6/K5a0SBap0K0EsRKayC kFdIt/4ihfXUBWv2ig7flsL8gWCno/m2FJZZoiB3we8qXqEHOe1OyH05mglvHEYnjsJ1n1NSlJ0F A1kX9Gs7JC1ZBMe/bb53g+jBJ/PXLiTmr054HPg5GHjRKLtTc1L/pikErE8LUFIxeuUfaS69cUWq p6OUkDUZOo9A/VQiJgNaflBN6fOF2BQnIcsQgxkUq5mwz+pY7F8zbYQ3O5jlvBWW85iaTadb4EjR 0lEk/PpbHHaiUEFb8bfPzwPw/iohvep9+jn02+dxD1wVHuGMb9dD1gzS4pN3Tn7Gizh1LkJfTyML MVkyp9XsBwICSFyP8iC2DiTTPHmZRGlT+7QEAPSUqcKt24ryIQtOWqvAr32mYXTPJeHJneFsGNwf +DnY/t13TKydibs/QEjuvOCl7960SUnf/driSoQdPRpAGOx80o4qb02bDVfEiUH0yHg0asQ84gif GrJ4t90xsFEBm1eoK1NWAqrbQPjJOmWRMK9QUiLHjSSlcRgHa7p7qIOsweKOApxDZ99gg6kEbRQz lEtYgOp3694iIWAMhlBmDwMIhRtV6wCVuJ/dT3VbhiAUfvSAGPo56xx6YMhhvGFLs8uBO1ydruMi VH0EOyOefJIumTInYvf9Sexyejw2l8DuIT2VPmC9Vbq0Is5zbM46NuIeP4fuJdBiOAlPLHp9zjNn V33+9Zkzf/5oycmnCE0h71zzSxs2l72+Ynn++VMX+g7sAx1KqPVWehWQ8YZUszngAyjFNL4rkmqm 49bfhlKMxmi0SqAblaHXeVuT9l0837v3wMm2tUtW5idtILAEcTmos07SBupsWJwAwSssZmqTJmyU TS/FeAvEWAnIwj6/uUMBhWcBU3jmMIXnm5FKG8P9f5+J7mEfQMcGolDZpWg0A0MX5R0/sjswQH8y XBQsDviVjOcrIoOnlm2tKlGjN9jY/8+1xBmBrZyCQK+2kCY8v2KnulTzFnw1ucWSrIL6ko625pre NkC7EhDgXtET1XEZPXkhGq1hAtyvlkpMpBkwPCysD81vieo+g56EmM/jWLXSmWYtimwH5GJhe8Vv w0leEwm7YdU1TQEgDvy3+05waEqC6kAyQ2F514+sIMZwOXuGTf2RmAL4O5KBy2k11l4VTvLjuBPY W2Drn6usVQdRfwhNhDCeDF4qYlOYMK/I6SwlnGVSt1yUU1VeXOyXdhCmrp72U3AIU3w+qKgxoJzD wNoSCNa3FNeoN6Xb2vIJWa0+1CBsqW7Z0wBml9lmJit/b0jvxoLsGOyBiOskF4YCWgCpT3YQ05Mm ELswMBCZXRhvTRy3AV2gZ8QY4+gL9MyYtXGTArQiZjgO4+2Av9IrYo7Bf6CZMZY4dAHNiBmP46TQ lvdv3cFET5mNWjCbxgrM+wBozHHAJov/rveSE81wXuqFOC6bdGAqH7PPDMardjjtsI8AWsnG2iDU D5fAr50Q+NJzbEYfqLno7K1pPHjTeCR8G4tVwZUF9F9OPAQEse3sKlgBvIBN1kahGGCcLcGAyRu9 jo1V8jrFWCVkJ7FwhK+GEuGiUPsqHSrTTzP+PodfFVDX4Bxg+UZ9CSTfaLQUQ5fQUuYlm9hYWamk XCTND9aWAwVfyUhfGIAqXjYxuNWdP+NWsQNRzWhDNEoFnSqqF02L/gQzsYB/C9uLYPFfQqx4aved f9ziggkhPxExD/zYG/kRhcnVpFxLvPGgQe3XeY2CG1ewr1+EV3rkIWQITt4bwsBfDuHcrYagrA6d DaHhCO9AAqnI2Pij6M4HvoKUyB1Y4dwKDUlVusgDJH+YtGLB2u7e/o6WhlpPva3Twcd+6Sfdxpq7 zAEV2i4GEhWoenosK5AVKLUmOiSGCqPJwsdyIzuXAfGE+V4Hzkb/AEdRAGcOQtPmSGha7YOVGcmg RsyYzgauOyw8OSOM9V8UjmEpU0ob1t4X6GzCpwLyagX2s5AcdYO5nZLscD9SAFS4jF6Fey4BuzaZ Bp9oeAA+0/r9GKyKfjX9YrEmhSmDAmwDGEasWGsezmmMf/Md43jSKa4d5WAoMwr9Zgj+RCMLBjsC VYndRkGdBUNj2haFBF6kJjGw+ggwUx8kkRvjvz2VNG58h3vkW2wtG7CeGGTBgLEGC9oSI1ZSwPBM oRWOAVtgBBYOToe5Xgvz3rdRl79hIAZAm0C9cL9Y5A/AHkFRzXBZMmTtVzGeO2DG4sDPjZ1bOYHe OLv8PPcSjCTQSo5DvEWADGm2W+2wewnQn0LfH/zrwajxSV40pvXoCKwffRiFuaEXisE4xfl/Pmrt kwplbmRzdHJlYW0KZW5kb2JqCjc0IDAgb2JqCjI1MTkxCmVuZG9iagoxNSAwIG9iago8PCAvVHlw ZSAvRm9udCAvU3VidHlwZSAvVHlwZTEgL0Jhc2VGb250IC9HUUZTVkYrQUdhcmFtb25kUHJvLVJl Z3VsYXIgL0ZvbnREZXNjcmlwdG9yCjc1IDAgUiAvRW5jb2RpbmcgPDwgL1R5cGUgL0VuY29kaW5n IC9EaWZmZXJlbmNlcyBbIDMzIC9mX2kgL1RfaCBdID4+IC9Ub1VuaWNvZGUKNzYgMCBSIC9GaXJz dENoYXIgMzMgL0xhc3RDaGFyIDM0IC9XaWR0aHMgWyA1MjIgMTA2NSBdID4+CmVuZG9iago3NiAw IG9iago8PCAvTGVuZ3RoIDc3IDAgUiAvRmlsdGVyIC9GbGF0ZURlY29kZSA+PgpzdHJlYW0KeAFd kM1qxCAUhfc+xV3OLAaTMB1aEKFMGciiPzTtAxi9SYVGxZhF3r5XG6ZlFgqe8x09Xn5un1pnE/C3 6HWHCQbrTMTZL1Ej9Dhax+oGjNVpOxVNTyowTuFunRNOrRs8CMEA+DtF5hRX2D0a3+M+a6/RYLRu hN3nuStKt4TwjRO6BBWTEgwOdN2zCi9qQuAlemgN+TatB0r9ER9rQKBGlKh/K2lvcA5KY1RuRCaq SorLRTJ05sbaAv2gv1RkoqklwacT0PZQ+M255ZrM3R0zd/+fyy/kSVyb6yVGKl3GVf6Te1qH14kG H3Kvsn4AhXB61gplbmRzdHJlYW0KZW5kb2JqCjc3IDAgb2JqCjI0MQplbmRvYmoKNzUgMCBvYmoK PDwgL1R5cGUgL0ZvbnREZXNjcmlwdG9yIC9Gb250TmFtZSAvR1FGU1ZGK0FHYXJhbW9uZFByby1S ZWd1bGFyIC9GbGFncyA0IC9Gb250QkJveApbLTE4MyAtMzU0IDEzNTQgOTE3XSAvSXRhbGljQW5n bGUgMCAvQXNjZW50IDcyNSAvRGVzY2VudCAtMjc1IC9DYXBIZWlnaHQgNjYwCi9TdGVtViA3NCAv TGVhZGluZyAyMDAgL1hIZWlnaHQgMzk0IC9TdGVtSCA0MCAvQXZnV2lkdGggMzYwIC9NYXhXaWR0 aCAxNjAwCi9Gb250RmlsZTMgNzggMCBSID4+CmVuZG9iago3OCAwIG9iago8PCAvTGVuZ3RoIDc5 IDAgUiAvU3VidHlwZSAvVHlwZTFDIC9GaWx0ZXIgL0ZsYXRlRGVjb2RlID4+CnN0cmVhbQp4Aay8 B3QTV/42bMdYGjTESVAE8gyaoZnqSpYUQhpJICEkoYXeTDHuVbZsq7eZkTSjUZct9265YsCFbkIP KQRIyJKyZJeUzabusnud/+RbvitIsrvv7p7v/c77npOTg+TR1Ht/93me3/NMdNS4e6Kio6OnLFu1 dM26pfOfWZZenJ5XkL97ZXFB0uo9e0tz04sjf587hkeNTblnTBEzJh/39IQYx73CS8LfpsS+9D9z Y6csPHXflIVvPHBmysMbJkbFRkeLpi5Y+OiC5NTU1Gd2F+zcM/WXfU6FO536807//S8Z27PWbs+M XgfPJ6ojOit6+J4d9+y55+OYwnHR43bEJsbeEiWLhsQp4kYkDpmILEZsyADy5/GTxz88/tz4S5Kt kgyJWeKT9KF7J+yZUDQhcO/4ex++d+u979x7Le7ZuBfirsd9et/4+67e/5v7Kx/AHkh8YOEDzz+w 5oEdD3wwEZ/olSLS+6RbpZnSSul+6d8fbH6w/cEPZPfJMNnzsv2yj2VfTkqeVDSpcpJ+Ut9k8WTH ZPfkIflO+e34GfHL4r/FlmCZ2O9wGU7gM/B+/O9TYqYsmkJNaZ3yxpTfKwoUPsVHhJjIJQbJx0gf +SH5O/KvU0umNkxtmxqeemXaC9NWTeuYNjjtnWnfTvvrdHw6Nb1q+o8zpDPUM67MfHRmbUJUwriE 9ARzApvgThhNuJzwUcL/zIqfNX9W6qxNs6yz7LM+mAVmk7PnzF41O2+2e3Zw9sDsM7Ovz749Z9wc +ZyNc7RzGua0zDk95/pc0Vz53BlzH537ylzLXMfc+rnhuYfnvj338txP5n4595t55LxX5+2cVzqP n+edd3Le9XmfzLs5//75j8x/dv6K+Wvnb5ivms/Md84fmX9j/ueJ4xOJxOcS1yVmJJYkahJNiY7E gcSziW8nfpT4feJPSeOSJiTNSJqTlJj0VNLLSZuTspLyklRJuiR7UlVSY1J70qGks0kXkz5K+jF5 UnJa8rLk9OS8ZFWyMZlJ5pMDyQPJF5OvJ99M/i75f1KiU+JT0lIWpbyQsjLltZTcFGVKRQqfUp1S n7I/5WzK9ZTPU/6U8kPK31LHp2KpM1LnwrH2WOpLqatTd6cWpJamUqnB1I7U4dRzqddSv0gFqbfT xGn3pU1Om5I2LW12WmLa42nL0tal7UrLTMtNq0wzp9nSnGk1aZ1pg2mvp11IezvtStqHaV+k/SXt 9gJ0weQF5ILZC5IWPLTgsQVPLXhuwYsL1i7YviB7QcmC8gXaBSYQACmyZqdd6SVblgdzWWsRHa/q krRynWx/b7O9DTyk4OpMLrVTvtdjqtL3pAGzXHlefYL229xWzsxQ+vLyCout3FJSuXO+UClXbTYY ci1KSm6hHGofjdSxLVxHR5u9Fe6IrTO7Cl3ycp7hA93NF+XNXifbjPu7ZaU2rj1A9t/0NfI+Jx/P iZwUb/Yqux6W5wcYWxGOjq3/k8xb4qowYEattcxG5DMWigWZkk52gDsy0gc2KFw8VwNWS3Sh/E8F xdgsuWZYfUg3jHhsFs6KG3SVFSUWp9part2bIDTL04VxBcsrtmr3lhpKbNmM3EpxajeNtLP9XI/j sL3L0TYhwcc7aiyubKe8hKPcQSzgaQ+NEH23Yhs9bmcrDuaLwjxT6iEFHNTIAmF/i9OFcCK33lfo LTkpPCIv9NnofFy4T1RgZ5u9JPq1JMdWas/PV7I5E2aaKbvWY21k5ENWt3I2liyes3tZ2rzsd74j wDTxJZ4f8hD1To/LXmt2xu+25dpzcnLZrCck1Yx80OSyLcVQIAGPyl5Slit3YwXB4vpKQlPbYu7E O5qqgk1koCHo8+But9nKk6W1LaYW/GjffpeHcdMMBf8jGauJMeK7TQcPcaQbLIl935k5+Cy+RIh9 br3JRflC7Z5giPS62SBbg3RxvdUd+IXgxgw7ad8aq7GZNBQhPCAgsv2dobMNhLuulnfjbt5mIG0r 7WUOrV4fbzTmalT4Bv1QLYneujVTgnbH/EiOLZD12wFW00/w/npvPd/ukvNuu4d2Ilm2QnvGngx2 14SZtM1u5OkwLW9l6sweA1KbxwmTtmCCHJRJhFghRUhZB+4ByQQoWCfZopY0rVYIOrEQ3bLkxHZi x9GLut/i195vPTxEnjwXuPEJhnJne9kh/DPRzZt222dkVXvrB54+ME0BRApDaT79JP5QWSCoJ9W1 TO8o2Kloc7Jh4oxof4udriYbKI+Gr/DtlrustQ7egzia6AFHv2OA398yIYH2VDooq3mnnCq2WPU0 Qutzben4KlEe4+ggwRbxgIMLE1dEw912qpE8ofNlhra4rDUc70ZQ8BB4W3aUbeRqCTvPcFa21Lzb tNVuYexaNxWk5GGdw7QCEx4XL+rZ/oezR3vqw4TbSZnInWKaczEuvLf+jH+/18vbG6wuhNHqbHq8 gAlfJ8Fi8T62i6u/s1eKLTWuteyym2mH1kNXwb3qPbblmPCoONei0emJ8tIcQyH+VOWhSyQqO51f lZ2Dbc0u2vDC9sv9ZsLi09hpI7IuuNenJYzVB8rO499ePPrbt7cN7q0jX+6O3dVY2NSP9Tb1nj3b tiHTS7gsdazTyw5ZBsy1iDurxJeJz1qzYcmag7uPFJPoj8ljSbJDNnB/LXzw3gZvt6uak7vdjmqz Cz74IvuOPaBEYWbsao+11iY/QNVY3SakPo+989izxWUONU0RNtGWI5tOLf1gHoiWZ+8TJECuOo7o bJV2dcU6RzooVmjckV+3MC2Wai3SqGTLCjBhULyZFeK0ewnKoLYqmUI4y62s1kMhfVw7O7ivzz4y YabHxQat3lynvJhTua0BpDJsB5MOYyBfHGab+SDBiRpL33msPRdohFo5+uP8/6NBXCAucKgomihq nQ4kW07MgRez+PfPf6w6jGjhpSizc9gs8ITCwlsbaXkL1UCFdEhHiX3vDEzIEO9lBUy9l6CN5eZy upCS01bWwjNIL7yUfQP77AcmzOQ51k/zeby82FnhtUQuxXbnUsrEhx0hP1Gnbih5/2HQJJySoyBj jJE9oRC+BOsVGsKoK6PVTDEtZyiH2cUgJ7gwe+BA2H7ilqKYl6udZbyxCjGEmGNnMHTswTdluyzG dcK9T30C7gPj3/zo1tWhosVthNsUYl0+66jtgL0Bcedtql6LT12Ws2UruWO7avUabH3DqsF0Yt3o 1bKb+ECfx9VOujoa3QHcxTmAVqL12EItWId4iHe3uYk63u22w+ERDyuzvSB/e6QumK1wIFPdVvmI mbVuxdCJt67djqIMUbejcENU4+2oBw1R0rrRW7dkS2nrDoooZGKlT4y+oECkW0e5I11sN/4H0clR u+0NcqpEuvVGy4ijpIZ0m9w6d5HbUsPyXkS6+Ybhh1j4N5tpl307LkwXZeeyXD5ppu2VHhrW3QEz z8C6+y8HbPzXAzbeOWDjvx9w33884L47B9z3/3FAsOkfF/WCIn6Q62e7uwbsB8GzCtAubnM66ole 0bk283IPyZtr4aXYBvhRbxvjMnMWGqkwW+wZuNAl2qW1N9hJmjc6aJoqNmw07ODNAcbvRi61tLnP 412iBtZRRKLMPAl64YWGsoDWZ/O5nG6ECTk+asDA4r2KjF9WrW5Gvo9xF82G5bW6ld2Hg2dF7xyz 2zrIQG3wsOcE49Z4zGb9zopSlRHRK7PoVfj6TI7VkhUs7XRh3jNXvQECiEHayPljp2pC8U437bFy CGp1dBrKxhI7naqJH9RKM7/7SlaWn7VTq6cpLjIqpVULFNLOJRL0u5ixWWoZeA0kg9lgG3hOQMDj glrYeUsCMOEhUExWdcmEjc+CtWAOKAD45b+ANVeFpcJjwkZBlCZMgAUvEAxUezAvFaz0E7qAwWm2 IxazXm8mHxfmceYqs5eNjzvjPBYIEf6qRr7G2crDlcrhoZzINlumfcfOHBaV1bGMhtSLX3NYd1JE hY2ysno3E1/F7mf3DTXbG8FrkiDtruDku3jWdQqrFlezXB3RI/K6HRACIRkinY0LkkAsDjo8BnWp lTIRFGOnaEyIFmttNjWRJio3OYJ+EuwEtbEsx3IcxhtZvZFmTBZCyBLaYy0mG+2wOKw87ZiQENcm US6ShHMUqGxHTUlDL9ZSu+8dluCFHbJzSm++EttTmPeKnchxylYHikaMvVaXwU5bEeknGd6dQT0R tHZpD9OmFXLe1Oxw+Xzn5Z+zp0fewl7f3buqkSj3NICpw8bqHJ8y3k0FWLhs95i7LNVKvtSt5BDp kOd1q1vFWi3xlvWxC2zrt7+Crd+392oJAc+qbJGkA57VnYli22EiNF2Svl2Sy2JHNce11dTQ3gkz UfG33vY2JxGGgMcRgvMe/S83/6wEfS/mRzlYKOvjmz1BwuX3u+qcTfDp8A4vxSO5tl323RtWcfkT ZlI0LGX0gFUephqtHiMSVLPZGdgO8S5KTVkItX67YS0u7JkNx9BGkPopIMGmj08rd/eQjSVVWd4S ngk4nC7Dafp1ezeiy+X5cpKv3OBbhwtzZ2157kXylRfzH34Ee7LroXOvEIt/+7csgOKHr/prRkl3 fZ0ziHMcy9uclNPqpF0I5aHbOyBeS2BuR02BBev254YokC/JAuPBtnf/rYZVGEDX2FKZdNiwMwuU KWD10Xosg0Z5Le2gTBW7Hl8oJO18XpWlsarpYqvcbOXUPgZp45rY9q4ue9OEmT7eXgvvhFRt2OVR Ox1uTyg+1N000nsRCXlZtg5/X9TC2pSk9JDhcfFSmtphJUoZnSLIxEsrDNz+LrYD//QfhbJi9D/V rdLRSN2qGP25btUIa2WVnNPnIt8B91U1c7zLGe8WcTSnN2BCrFhpt8Fx4LgdNTly7V8aolBK3KVv KVFiZTqLgdBXtlXiWrPOWFGn6zl0qGekrbIRlmb07Rgw8OOjMuH+JU+mPDS67sxe8g9rY69uC6zb hr2QvuoR4Z5N35yoIGjexMJRvDq4qlZFGOqOF/0WB7KPr4GoP710ZlsHmXQmNrNpw9B5bLDxg2+/ aXthay3hovwcxOl9pjOmFkLPGpwGDnEXZ7jycTQ8Qo3gx055m0fIDw8evHod+2LL1dQuombLJvca fNEaG72GNDH2ch8THoazbGPm7vQdfXuOHesbGBrM3L+R3LZIFm5oam2rL83LLS8tKlY1dRFxsy4f L76B19fA+0O6eLuX4gq54kBlaNnpdR8+DmSUl/K73MixhvdPfIW9mzmyuZVo3brS9TI+dylDrYFr j0MNFz1afpByViZiH38u63DyF0DM0acXL1NmFpYRpfl76L34Bg3nZEiGdwTqMDR/uQJkHZegslcb 8k6fxr49t/8y0UXL2q31xpAaoXmeceMet78uZK42+Ei+tNSpwr2nKVeZw0rFm1fHzjInvyiMx5Iu rL5uIAzPei31cBDF+y/FsqKTZ+ou7Cc9Vo+ZJfJKs0o34yYTy5rIOJ3Cy6DdTNvtaLMh6ozi2ifn 28F8YR54Wvp9ZN5T9nQjoWfg4tW9RTIwYeYPknfFHQ5/LSG9Vd+5w+glPxOiQxU0hGjxWpvFymr8 dHyPs9vRM9xs75ow08tzIbNby8q3OzXVe4eEB8A8uabO7mxoODQsl44tk0i/BwlAoXCp/AzyZvXx Axew0d1de+GgA7kKQxkqU+rUlSYnUEvcTL8JZCpUSjNBM5zBbUNGa0e6z2LHspqLiDiVsOc4SLmz vt+ZpLej5BF8AS+pGwRUEzVwyVrzTiaYYfNKj0X9J9IsPW5QQdzxieG8BGFrT7Gt+No9GVt3Yhv6 c0Y7+oI94c8UFp2aLsdzikIHSbh1uHk43EE4RdKPo/gqu62N9HMRpo3A/audd8l2PGTbd8l2/L+z bVi+DZBx3yXc8UrqLuGOPyIBr4wlyp56deeStQczz2ST+8oOFG/FduSW7V2dc+T1SoJy6+yU1Zbt 3uQtR1StfcbD+HvvDly7vKl3XZjMbEhvOoj1t7buPxjO3w5njDXEQfrTbuk2NRFeU4Y/HUdlPaqi Uj0pLBZOxRpqrQEnAZ4GF1uG68ONbfFOu5NhCZtxqwMCD7EoQ8uyZSSlNBUZ8jmLj/bySFdtkD2I xwGPtb2sE7zY/brn+05lJ6OaOHATVP87rjs0OvZypCYOjm7d5d6KCy89JNwjTBDiPksCT5OwEB06 6D6BX/tH2Tr0H/HdgTv47tAv+O5F4e+yrdupbTOW/R5EEXDffz75BZjY1MJYQ0StxanLw+LAfIkZ XuQ0QcwY3AaPLT5usyRcwVpXYigtr2Eaab8OCWidG1ZhqPhZuzGDIpSMBTygQFWpil/HDQpSJWPL P5PWAww8JJNuW8VsMWoIk05JaZhiSi59kqZYo8uOSLdx3QfYk3hds83WTkrrbe2dtk78tzeret8k geTCGTAOSDEQtwzECfGHiZaly7xp+HNpDPUoSTEOA2+rYuTVTChySn6tZ8dzcMEpUPw3YH/4lkL1 vwB7gIibOe7kgaC+NER0bxlc1pYBqeo2BRjsplVgiUT6Nfga3IqgnkpSKFyjGFsnln40xF7ghgnp 106GZim8qCi2Lj/Hm4NPXfX0a6Wkcg29dsU1yYHVktybErBH3MU66gjw7AVZBW3TEEKqqNLGNpBd 4t+5QBKIaW+u0AaIoNpVlIXFRR/7LGbsuR+nyUDy4GMrakneBpdjHjGfMp/twKx2C6t3IoEtj/s2 4dNSClY/Sy5ZvS5VGIcJigu/ub6W2HD195U38Hcv1XigEOIM8kGuuqH9Lc9Jxm1gaRp5MXvVQkGO C48IUwAC8kEmwL4DC0gUKlG1FhfKhD0fBQ7aeANL2ZAijcn2Gv7TXNHWbHu3lWScOjtjs+zSvKTe xpurKa870OpvamlCmltf54bw10Vhhz2X/GmNeDqlWU0Rexl0ueJ2dN2dmoj2NjV3d5e2Z+WUFGdl wXFPRm6vTwUOD0Ru70dfgXGybRJhifigBCwSS4/+WSH96C0JSOn/9JBEGPfKIxvKSOU686rVJkmc LFDlqrK77V6Lx+DW+IwQv5rtlJHSrxVmyE0B2ssSQAVEMl/AE7J77F6z18hHNjPZLXbrz5vZTVVw OyTOJOR1gFVXFRB3TwSbrm09Dma2St8Hz+xQSK+D+xW9r8ulh1vb7bYwuRGSqeuFztgdLtp9Cfu/ Tz2EdghIfuFuhyNM6n3uQB9kbnHz/ir5F0TY/Csc3/EzHH8NxCnglLQ1Uv+YkuAQHK8+N9eu9yFC jKjSztaRI2Lao3dQNqOqvFCnN5qKdfkmSKQNUPnrgATIVgjJgVWTJ9HyVvxxNLKeh1tVLXl5Zco8 J5lbX9lJgCcmhWubwy2V8NtSZQGZwzZVdOJxSsnRjludE/90beDAZwdKPO/0S/9u+Foi/X8M/xcl P7hLsBlceU4h4012M2N5Xpgud1pctM+2/9jA8cFjvgDrMwbSj+05tvuYxW6hGTOCLlb8cgLoVWHP UTALbJYcefMyWCgJ1rAQkyzfkb1zO5bTsuskS4TZ/qq2Ds5L+ygOsWg1lBLP1TS0ddUNXThAvt54 +PVbWKvEZsixP4sLtaJFGraFISmn2UEz+rWVr+ozeXOQ8fHe2lBHYzPS1jLi+RAHc0VtfgauS2YL VNny8vesfwZBoY7ssvmvYGiBotOOVitUesSkLqMfxheXBwMGsqKeaXsDA9+Lb3E1Z11Ey58lu3dl sWvckjdAsQS9CKZdjPlwbIZsi02fSxNljJV26DxMfDvbyvaGW+311yUGpzzPy3gPY38R17DBQBUR DLQGoQLakJ9OzhVvYcx5ZsLwy+9qf/4dCi6Yu5RXFeDjPtDSBRZIxhZ/J63/UCLdNt2mX2WGlT1W +mQIDspt3OF+dhCX1vddNF/EP/i4qg/WZ9GF8yAayDAweRkQCfhRomX5C65H8IcfZpiHSSPNqr00 VKeOWp15aZgwM01ssjjKfBbkM9HHIPdLibBSiLosAUko1F36+1AZpWWMdvIL4Xl/eZXd3xD/GXje 7jfwVnv808lGvcVurIqPa44sMW2GqMHohrdBznsxoA2skrU57SVkuvhJpjKdIbYxUO1Sw1szzI2w /V377P1Q7XKyUF4rcsp3umxV17ERcaOLbSVOinw+R5vJg7wkqmT4ehK8Jm5wBLV2Qm1XmvVmBGrV ZgsmrBAraaaEEFJERVpHDSSvl8dWxDp5jndiLsppJCpFRkhjLaTw3k9rY7Uq2qrHjC6Lj4jj4bne /swQ1QnWdoKFnVC6AVM/3vg76dF9CmklnOj7uV62u7+HaZgw8/BxV90Aub++veskdmld914vIdWU uiwsBCDH6zrbh7DDhR17q4jqjJ3sJnzVShu98WdM3kXLO+B9Xo5dg8J0FcePENLKN8+VLH5xi3Lj y7q6cyQIj6vjfINwf8dHlK+u2KFZkWNja8g4mYtzemzuqZ/JvSYrT+FWitaZSJPOboIUxuqh/DQS V6CxlVo4g7OMbBMWwnLq8Hrj28DCWGcjF/BgTRqugEA/ln7y4xSwQHac7Rh0ETWcx20PWfj4bFuW fffKtSykpFDhrfDSw5T8gsVpfQTbJc6hKiAXrTRk6F7Gha1zwHwoWcy7AQiw7of3s4SoDlL6rdsa kVYR0znriR5Mb8v1lENu9wlfuS6wGhfmz9ny/Avkyy8WLHwYe6h78blXiSc+ANHZkIyevBKsHiVd 9XV8EOchC2ScSIXH2nIAQ6P7r8RAhpkoExY9JYiFqOXNm/qyyKy+o5Wj+Jn3O97rJe0+k8dsQ7KU eUWr8Kmvffnbv77z+rsH9xUVNpEU77K58KC/vq7WUmP2kMHC3S4lRIOFmvJyI28KWEkP3afPxXbv VpYAuUTppZGzdcfBBskesFPSApSSzoIOcAyMN3ZGkN6C49K3QeU8mVfSdlD+Ntsf6nAF62oOuYYp vxqSXaTIsPvpJDxp4TWInKbcOPPpZ71b1oZI6fseMwSkXsR6gDnaiEn7zC/VL8efXKras4ncuDvr 1UXY4wdfOZlBDOed0I8ySJxMpWO0elKr0+5itE7KbXc5kXBNqGofPiyqCzgDQTIQCLW7mhg4ymgG KVSZrFl43KOKg6slOTcl6GuSNgWEcAr9OjOhYqwWTgNVnoNwwB7c32s/ekRR6JSvcduqb2FAJu7j qkItNaqXThMfpg3saCusL4n3wHtpxSgjo7URStpqdVZCGHmI62MPHt4PO2s5kiy+tKqk5YmPn/ws EUQjuhqrFwpTPl91NfHZjVOjpw531MR31Oz3t3ERSdTiQuD6ZKUNFnLbQ3aLl3Lb4t+54PW4PLwz HrZ3/Do/4jGZ4eIljJ/0b9u53W4v74rnvYzH6EM8FoPLisfBJlol2qLtvPtYRr6CD0ba+bREev5f 73LnnbsMdXetjFLTJjspHaEkMm8A0hYIMKBi79Z4TS6zzRLBIYa1sPtl9tMeiEOUAJN5AhCueOFm HhN/ZzO71QZxyJ3N7OYA3A6JExJgkYieZ4j6dMUbDtXEb96TVrESaedFeCblkMy6bDUu1p0Knpcb GnUOQ1ma8LyctVZRbu69L+TBkNMR1CBxhwZlW0PbW/Zj/W2dBw90ZGXtKVcWaQm0eU3f2P8cngje /njvp9IbYOoamfTS0U8b33yPvHCy78oV7Kulo0+5oRgAh7cfkd74/EjN/oPY5dXDjz25ZMPzuYQx YPVzxPGukX1n8ZF92es25+aVVpC7sh/L2FNpLQ9qa2xIa3N/y1Fceun3g08/JMQIooeXF+gD9Tqy xqBrKMFLNOUqUnpjy0nNCBEnq7Ja/EbcoqeNUD80WmBlNbtMQR0BxgvSWFg0eB8WNwyuywTZhdQP 1xKbrn5a8Rl+8UrIC9EsH0Gzofq2tzwnaI+Gs1DISuXqRwQZLjwqxEM0mwF2gUlfQzydMPLEshCJ /onqLLmrvEQbYP2NVN66m9JyWHdHIgCrPKL4dOPSkX2SuNzI/Y9sFA03mvdxzD8Euwhxh5IdaIKk 3X3wnYN7X3wpN+NleMJKBVVvG3D1BpF9VYe6L2GXN/dmBwl/wV7PGnzdhn/SSyh5M81qlkNG9ayk /lfwtrtHwqhp9a9th6Gf2w6v31IUQHbClbl+bTuA8eIBe6g9XFOy4iRxbmksKlvdnHlCR9Di9Tpl 5mosy5XJZxHSRj7LnZ2N7TZue0ZPQAXQ4KKQo1/6wPg+up/uJ6WjdB/TG8Z6+aFP3ITU5XI7/JQb kY4+6qaHerEuvsfZD3fi7HPt68XA+GTfJoKiHEa4k/f0/m27sRwqi4JHGaWy6KxMLO6msKBzbAQ8 KhHuv/kQEOvJkC1ABQzhnKPbDysR1cEh4z48vN8XaiB53hZRuBmzhlLhhnLOV0huqH31THaY5hm4 /CDftL5zA9wD2d1jfxMWEgBXgMmKP56KhjXyzZsxcyUqsExWrLFWqkmNumITreatfpuLR/ob6msG 8VFRU5WzKkRWh+p63B2MBw5jGslW6i278TjZIihUvV45nLsF25VXsHVL9sD+vlDfYA2BAvYQOLc/ GlS8FQOmgsMyC1xi3YFgewd56nTsidHm4YPYqfThJas2Zr+cT8Bl0ccR+1vDbQP40a6s9Ss2vbJj O7llS3H57iKEZmmXjeBqeqB0eEXU3OCw15K1NXZ7NVlVVd1d02OHHgHKbjWZTDoLxHmFthx4XiB2 7TfTjxIQpZp5E3Jxw4HHhRhMiNn1+EsbCBqWTI8duXX09W9ALBb3DRjHQfm4DhaBnMpypc4dWWZc zLAxC8tJLy+wEmYjrwsyyMXQ0b53saOZXdlE3BXZyubcM+exH06feNdJSD/qtck6qDZtTQVicd/V v6obQ5ZqI9TkigudRbj0qPci7S1hraZ484uxQrRx/rPCRCzxwvKvtIR0xPCIy9QKRfF4/0ex5881 nD5ASo/6ObPHhOertpdtxo1GljOTcR4FnCf7t0hQad/Y4rGPZasU0nphvthst1KEtI83lLqycGHK tDRh6vT3fgNijvTWhIdJXiTN52iHXoNViikX4yY6AhdCg26fy95q4RBKU0kZ8AL7vuuQLM6CEzTq j4aoA2P3qVAINLz2Ki/nfRyKYUGzOWi5qaiE1O5bCXeqG8LTL0R//spuO05Wt3f8EMAgaoAnodpQ tBe1QsXYzaAyE2/wESD2bLWHd1RbYO1YGetm3X4fJsQBsbZKy2q18XEnZde3nl4+QmzpLqinAq66 eFeNy9sJEcj3QFrX7arb52mKZ92M28QaLBYmg3reKM+hVIyO1tEVebpcRJdnyq7EMvtVQ7mE9MZQ 7sA22Ni+Z8YzaysJs4VXBynkahOY8wUgsLiiTCdvIIFOYXPRTspBMajwjDDzwO177jFEzZNEg/uu xYD7LstKHML8PVaL06sjfFojb8YrtUUVFS02/zvnDhxvIqu7XSPHMeARX3I5B71E6BcHRebPDopt T0haoeWC4q1LMUijITnwYh6wUGEBz0gWC7M5U5Ul0vv5MVqWuuiVWUvOrDmzm5R++equlzc+iaVc 3/rJ51fP3vxy/dDyo4T05qm+Nwc/wqRXv1pydDEh/TJb+F52PPvimuex1Vk7X305Y/T82Z5jI72E 9GobuCw7271m7YrcDVvzyc3dLw+9i53aN3qWiMuD4DAzcxebeaezpvNY2q3yKoZnaIy2URAaGrWb NpRXCFFT5QZjUZFWj1AWvdWEG2z1EKSLIUEKnXET9Z2KHRGQuS2H3eSWnImQpGZtGFwdiD5wE7hu xBwABpkw5ZIgguTvgU+/AON/WPHB/N15+op8ItJDdjOI01/jasBvDDz28MN7lj09Z9ffAPLnTnDP jc/IKx982nmxyQXJgsX5ilmIy5mRgEybUSDc/zAWd0ZWybi9LPnbG7Hn3gwPnMPe2Xhk8eJVKzYp CaPPDCXBwbae9iH8ZO/eV1ZsXLVuDSkt3JWeU5Rfylh5aGFBpPu4xj62B/9WdHrQbttHBjtq++sG aJ+eN1PI5pJS+2t4nLBM5rLW2/2BFpafMBO8KG5ycA3EpxG+Ejb5kIWiChvXSoJPxHAMclamokjY I9RseW37Rjn0/LhpAuhFDQ5aRQqPXpGpWF/AS+4//kcw/sBxhBMyRUV2ezkRV5atQJt3lP2IXICN x86xddJL4Mex87JulyVPQwr9P11y6kLmGi4eeMf8sdJ9+97vHO0YQqCBiWYJ6SVG/4IDdpKeEK3N ZDk1adqj2WEs5E1+m8eJHOlscp7C4yhxj661uAQr1cJ+h66ivQLXmrTG8npt35EjfYfbK5pQDrpn 6qzOeHSmQvo9un0nk4VvUdY3d3bXBz2kPVhtq8OB9OBnl2odtbZa8oooxHG9BhciPPvTHBna1dDU 0alqzc0vVebmtaraSHQVs9Fwp6sPqaSVMRkxWCEDJgJom2JdbqfPj1XRQYOHgCfWYWgqK8PK9VYj YdA0a3DYkTFV1hjCBw929qOyPKUqu7C+tKujOdTXUQF0kluAgGU4LzdbByELD9G+yasyYzmqdF0p QZl8+iBclNoPXHkHG9Z5TRDquKBOQUOdYqbcwlNQlfpVp/AagzuhSrH7GGKhaYsdVrfvUiQo+EnW xls2FpJC1U9lsTqu2urH3ayDdZIgfWzy8a+P/qH9QLyL4a0swahXO2A3LlW0PY/lSkhrtmaTtsBp CdA+Hhlp6PAcw+N+0eDMFFcJMftFCLoPHOi1nz6iyAH3wcs429vzro2knRYHwyDppgLVLnxXYcOg 6c5XkAk8b+vNPovH0fJmhq1cjqH93taqOoNbx5EVXH5VHzbU39pbSzjdNreFW6XevNX+CrKpZ+c+ CDdB5yeGtonnTtzp93V3d9+OmmqIOiUdAstQWbW+2l5dBeJArNxH+eGVCMhqjYW2g1LF6Viz1QC7 Ke8r6qz8r01qWJ3MsDo9LsyF1elOZ7pOujkKUqIFMmlNVLVE+njU5xL093M6M4OVSMDtcnMk0+YA aBhDfVYzXHaVyoKiSrjymWmdGts49CJ0bUwC6Icg+rtH/GsI9G1FOYNCb5ITepMGTadgV8ys5Xgd FMKWijL22uwZpAUCKbflplEONUfGbUUCBu65Z7CfloqfsT1nMBBWq5XR2RcY5VaLw+ChEfu+fts+ /JIoblQRK300AjM33IWZH4uOZ0hewderPT5IsP22ji4MlantGquVUKuz9IX43A2ffv77w9c/3x8u KwuRHsgoVRh6RnILFeIqnt2bTmjV5eoiHW10G4K2S0OjR8JXkOpezzGoJMm6mpp7WkvbcnOUJXks mcU2lXdBmNFdy7eGoCg4SuaDa5Rb47Ba4/OFa7HUOluZBiuupbvhsjQ2NG6LIq4dZHUBae9EUPLu 7ivSL4EHBfFMPXB2RVZbWXNtbWt9Zb2ypKKilCOLarXNRBw05HGFJDQuVXqoIHRE3LXlyZRaqkJN VmrK1zOVcEDa3Tyyr6G25jB+StRUzVWHyFB13T53O+OFPhYaySzWW3fgcUtpeoeFQGVBn6Nb74ET W6S3OHKCJiRuq2ZH5gZsyduFl1Cw2FBvmCe5HT3REBUGp7vQlmG2uPYXF4sJulj8CCqqU0CLyp1e 6/8YospQRrPG8RIurBChAFFwqOzDbVCgihKitgmixxePCGIQBaJGgPg68eyk9WZB9OxzBjDu5MkA GHf5ilcQrYfnJLywVsDmzCCgLc9vJ8B9H30CHgOvYuDVR8Fjwn0fEUY7TRuxb2e8LmDCC1hcG/i+ beLQue2nAX5q81npTTjotVaq0kSuEUSMMWjx2+J//wlKUWbKSlRWlFdWGhCDGVpSsMzerP1GAo35 HSwEsSAOor1SpR46jyykjzpiSMfWbyjONRJWyhnpeL/beG7kOvbW9u5MAr0yWPTK6pUbF6TuGDk5 0NLVEiJ91Qe4bhwtPixBKxWw9YAebYsN17SEDmLh0kPw2UHzg402Iy6Vq1SNVei1Sj2xOD1WY1YW roVj6Z/VjK6ImpH5T2rG6/vfws6nQzkDKnWd9p7VkhK4fOBm1sDoDAhK+BgohREoGZag4ukO4ytG ovywZBhadiJywZEjihKnfJXHVnULQ78DkyVv1I8eYS8hJ/YO7yTQRZL2iHvjg+0gKiFhuxD15NPD QvQPPwyD6PeJpZM2macuW2a8dfyE/9Y773inboQP5rdDg5/aSMoFnYgUssOQW7oRX1/QctAAv6qI fLXQNpT+WzzOaQvCGfKfHaW7n5DUQzxk4WnobNq1RNZe19DUXKcqLKhQKUsrGjpgDf8ZKJ75FSiu +gdQjNFW6RwaXXykU2a60ykT/dIpG1PInluTvmJ7b85+NWkTowe5I1w/4bTRHI2jEar5AtQuUTBd wrjQRdpTIDv8RRg9cuhQS4O+vIWgPLyNx/31TQ1+xg2FJp++1F2KCw88NEuA3KVZ3XU76vc/e7+A GiRaw3CXY5MhTkSvO0KaZqrsxyl1sO+GviNwsuYW30AteRREfwyW9LyNwNlxX+SnEFeWofSw9Yq1 FkGL1hdmVhgRFHYiQXTnHZvC7SgM+jRWKoD8GjphptuJyrbAp1Otr/q1fNN+C0ugkfEe3f0+mP1+ DHgRzd22+rkyFUJBLcFGoEOgPxxddxaQ3THgcVQt6URPQKWF6ACmTtTgsXt4DwoXJyjRhrnwH6DM 9FLkxgB42PjcLhQ0qYfH/taKsoNw1YKrrjqisYG1kl49bGGDPAna9KfO6P5hMOliDFiD3gSLJahf menfgy94ZvnClw7u7q0g0T6Q2pN9CDB9YHrvxJFLn18HE94CxUPSjwxjG9Clm3eSRWWlJSpM77JW Bdqrqqtd9Z3hgYryPgK15MvAPcch9BQUS9Y/JSBbQMyfwbTrR6+QcZESFHl6sHfV1qeNdK/AuvfQ nybL8rQVFQYe9tl9VJ85E8vLKMwHOJzNjzq6dGU/Tuiy+lBwhqkzlv04tw4FouhLYFwMeAClfVqn hUKXaIfBF/tRH8Sufw+j2IW+/B68q6qupUVXn6uuMFlUpKW02AJ9Gu+eP96iaSxT6w0lPLnHzWSl 4wW5wepsEs0VmobAugufw57yQU8nal73MgYFFjMR197d0BgOq1pzSLRrLAAe1HdN/OBdtE97aGyC CiWlt+D1s9DrRoXpk7VYOR8r/TqQi0IiKFJvjAXjRDuEhyMfNPBDjAgOoBPwEe1QoN9CRw+sxbfv URqi6lHZT7JNYzIR+qFkug312lwWjrBAFVyJZ2pb23q6R04dhDBngyS9PZeImzDTD2vxnd1KRMPg 4VhQPanqWOws0SHUGlTfNaWh70VuqxC4a0iI+sAQ1WMuGxMdmYh2a48UNYHvukwqcFM1se9joH0P 5avJZm8wFNrvG4m3uYycmUbQsegxRAaF62p42WKwRIG66VYbNH9qFHaU5WkXwyJWgxJKEgUltT3t 6P9qdYw7Ht0GLsQAEwon1q1r6LN2U4aVQHMlhWCu5BKGXukFGb5R33H/KALuFfk9NnTsBgM2KdAA 7+kw+BFBJKp0sO1kpxj2otVdY0qQxHSh6uYfsWY4MPXh6J63vr4d9ZQhKgZsRS/23I6abojqvR01 zRB18J0Y9L3bUS9H5in8srlXOgIv4IHzfBUV0LvihXGvxaI9zpAPNowDXTXQ3z2yCBV99oefLd7X PP20Dx088xesimdrCTBL5HM57hpGuZ+LhqcNBVuifzgecwMV0oRHfvxbNApbF0rYBkQtVqPKY4W9 74cVMShQKWyoOIKnUftBaFSD3uEbojJhklJ40LAUgffldvRqQ9QhUNSFwmFr6T7dDeCItndMRGO/ EYWOxc6583Dj6pEaMzryFwXKlk+YabJFEEMtI4cDCbpW+1QT4T/ioS8Kg85/tNHlglqL9CObr8OG CrNhk5yrgrbNQwzqtSIfi0IsYxBg4SJq71BbEwc9siivc0DNB4Ur1R6U3QNPU/olVO/eVsC65eMi Te0cZ+RgvxiwOv/p311o9uYSMlwc29XS3IpCVPkb2V32gFpYijU54X14ian78Z5muC/oRkKz2K1w /zTtMLlQnTdeEKEsl0HCP1oZdLYjrC8biwk7VWhjXc0R/IyoOcShLz/xWhFZsUe/zYCKDFpHdkCL wOEP+T2bB/dk4OGjior6Q7Q92hE1Ljr6ZWUZ3ew4Nvb1sWj4/5nHYhzjxpgfV/7EiIBTOCMTngTe WPClSJgqjMpA5MNPHvFPom13/g2eFOBn0dgJ+EnwCpFPcSBBcuv7iSzYkPzte98mgqXSN0GMQnr5 RYn0zeJQRSf0Ltz40fyMZKsCPK94XRUNjn4MqsBrijRJnLpmjKhuqwZLqxtqel0ioan6E++fguC2 V4yMJyTjMktvTxjvmIAekLyHHpgw4T3vhHvBTw+OFcnOSO8GwDKiZ0cP3pN6z1P3jMQ8H/NKzB/G TRk3fdzOcadjiVhT7NuxY6JmMSpeIWbEY0gasm789PHLx68Zf3X8mCRa8qjkEzQBXYVaJrx177R7 y+LEcXn3kff13PfJ/bH33/+AYuKsiS9MPDHxq4nfSaOkRikjZaXXH5z7YNmDpx+88eCXD/4oGy9b IiuT9cjOyK5OwictnbR1kmbyE5NVk12Tmya3T+6d/IV8krxGfjJ+Yvy2+CwMwbZgOmwQH4/PwlPw i/hHMAA2e8ozU65M+dMUQTFb0ac4TDxLnCdXkHnkd1NFUyVTd03lp0mm3T9t0bSnp+2f9tG0v0/P n26e7p0RPSN3hmaGccafZsbOxGamzFw7c2Tm7QRRwn0J8oQFCY8lPJnwSsK6hHDCkYS3E95L+GnW 7FnrZ22fRc9iZw3Ojpo9aTY+O322BsbAqmfvm316TuycCXPunzNjzuw5C+e8NGf1nB1zcuYY5wzP OT/nrTk35tyai8ydMnfe3N/MfXJu4VzV3A4YCDs198JcMC9h3iPznpq3Yl7ZvMp5xnk0DIUF5w3N Ozfv6ryv530376f5M+Ynzl85P2N+8fyK+cb51Hz7fG5+4/yO+X3zD89/ff4b8z9NvCdxcuK8xEcT lyauTdwJg2IFiWWJvsTaxNbEUzAqdiXxGgyL/QijYuOTEpLSkhbCqNiypFeS1iYVJDFJwaSmpLak fUlDSceSLiS9lfRh0s2kr5N+SPqfpNvJ4uQHkuXJiuTpyYnJTyYvT16Z/FpyZrI62ZLMwfBYbXJf 8mjy5eT3kz9N/jz5bymilEkps1IeTnkexse2p+xNyU8pS9GmmFKYFC7FkxJKCacMphxOOZ/yfsrN lG9S/gyjZDGp96fiqdNTZ6cmpqalPpH6bOqrqRtTd6RmphamqlK1qeZUW6oz1ZtanxpOPZh6IvV0 6oXUt1MvB+qrj7kGGZ+as1iQx/MzmJfw1RW8H5K0gK0rjF2B3WBnPXFYNOoy53lJV7nLAq3+3nhb p6PO0epodtR1TkigvBoW9vnL5XlmyrwO3yIqd3B1JIiBth+2jxgWoWNiUC9rcjrKPOQRYe5fJBo9 VUYT+VZof4Iehvhudh934ERPxO/H86wX5hhc8p0eQ33e74XJY/fLs7/WD0Kg5oH40YIzFqVmD8lp 7ZWV22YLdfItwv2l61TbKtINVIl1jykSYwAvSMJcB9vvOAijXO0TEqBB2MO4MtxyJW9xB7AqZ9Db QoyC1NgGD8u24KEuWT7LtvrIEyCh7njdAO+P91X6s7zFp4TH5UU+1l6Io7XtDddc3XaX3kkxO2Zu 0wv3sr9hVX5DENHU2g4dhvGhLtbZSZwSDXfR1lqyivIa3KrALvkdLzGPOBqZAceAY5/zQMOEBIY3 QNuEcY/cUmwwGhmEUufYtuNrRPl2ZxcJHhIfcdZyXsLHefhe6Coa6WZgiuh1fc3uwDa3zcdCKxS6 VAGbOf/mHq4z3Gnb/OKiecIQod9bDf8eSPiPxt7Nd4y9W38x9v63BIRs9GelG1o5Z0vQsddgEK3E obXaCIN31RulTUlfy3cOZgypBhC9TWvXlhU69oC9EofGYw0xcr+t3gpXsgYNq83GhGXiOebCIobI g2E+Bwzz9XH1bGdnM8iSeF1ctdkNF64Mp7XtOwzIxV2OAE9UGdqKBnaBROFhOXowZuwH2LoQEtcK IiFBSNr4VwCbJ7niv3C1Z0CspBYKaptggGTnrj9IKsFixRkItWGSxiAW0NYlo9uJ9KOXdJfw995r g2mxU+eqv/g9BmLFpxxAXN1DuKvqfa1cCyd3udkqaNffCwNq6bszQJbCStt0bguEUa22OotHfyef Jn4ZQ3+QAKX40jcQxC//Srbyjo+pONI4G9kiGc6VFEPEdBY7Ke7k/P2niQvfdR1zubvc8S0ur8sW SfgV2MrspUol0CqMtF3to2AusIWBQbuCXUvklTmaEnWhpk3brg5nXJaru5zuJle1U+53MTVmHsmx Ke15e5VsNlygGRsMUbVR8jbKb2rcdVXA5a1bneZc6AUcGFsrExISEoR4YeIXs0AKmPbDNwC/23Ai /zvWh0gBsiD0v+o3IAcq7eygn6j6RWnP/llp/xdmCd4BPtlgNet2khzPeauxc2vOLhQmLJop3Lc9 uCW8m9jTebzgTfzEldZ3eqD/wOKGU2J3boExG5+68tPvW1mujTSFZRaHkyN72OMnz+Jn6jMLdAzN 2EiruZR+Bkcbc9q3t+Yga4b7y8/h9dURuzX0PfhoXs2WuypC2e3bj278HeOCagyP7K8+1nkRuzUr lLwWmrrXEkaGK/PaO0Cc5A1Zm4fb927f9o1Ls4qWb7I7WgkYOHAr2ldLKqBrCc69KxhIgk+xuqqW qK/uqRnA32lLX00Kc8HjivI/KsKrJaXZCvC0+O2s049u2FJclE5YaJfb5whxzaTLRkHuq9KsLlKa oWUTtjqs8nZI1HdDyWGj3QhTJJU22LPUQq2yg+1mO6CfPwxTJNUUX8lBv47dfwwDFeIWRwfXSEDt mSEKjbvUa02RNqeb7mLknQxXmYGhsF8mgxbCF8QRxt1H8Haao3DlfzoqOArmyQYVY6vEPXaYe/xc BMY3W1ZE7IvP2g0ZNFG8SNKdowhHXENcnYVvU8CEYZ/TVRciQnVtwV78YteOl0hhBrx01R8V/dDL sBf6NOENelz8btbZxA2bSwr2Egxn9/ow2JdOkrxQGKsVmxm1dS3+00P/e4bKN+8aKlHYnoT+B5+v tZU8dSr2zJm6gUHs3LahJS/D9mQhYQ5YvS5iPzTl7cNHwjnrV2x8JT2d3Ly5RJWjQmwMlHcxxmnj bAQbamIHYJOy67Td3kpWBf3dNX20F8akGCS7tIjZgseNzY5kDrbDJNFkmCQqBOuhJycBpIOl0Pnw qFBGapQysOGqsAqShhxh/MOCTNi0BGyC/fZSoHgXxJDoD7823KMOR3zji6CrMuZO010DmQEhkR6N VGTNCsnTz4ktVkeFx4xcFl0Dc/ZKPkNli57ZsUtj9AQsRMBiCGnwcq22Im/A1NNzpnr/KHmot3l4 BDu3pW+DmeLdLkL6/Zn2UEsntm9P76o1m3M3FhOcxU35WGRfc7ixG+9orcgs0pSrDWRhxVpliZHW eUx+CoHS5v2Sc83btpNx4EGQKJtm0660EL9THON6wYOKY0cUxU75So+t+q8YGBP/lauFDrzWP0t2 pWexG92Ss7CEToPD1Q8NJ5zLydv81iokaDVBIwlF2Y1GUrgnlYHxRRe0SoOPwA5ZI9vnDBGuRlfD wMXh94c+OHY51OT3tHo6vTCyY/fBQFWBrcCem5vP7oXBRzNPdVvk9XSQsmCa7Bfz1hJZr+aszFq5 81rGB3t+i5Tv13ZVYR4vX8MT3V6XC6YpnPF5tj329PQ9bAHkFDa7iadgC62aqbUGDSFtXU7Dzh+E XfLq/Kp8To04yxwqE7YNRh5hqlVfRutsWTBGSUP3NcwBQEfP8MkDMFWXLoHow7XTFTEg8GCe5CgM Pco0rM9Qi8OhoIRNtBIwFyiRGoveo8eFGUKJMEsoFmYLJQgKV7E7cg466/KR4i/wmpCT85NODkIP ZzZb4imvfe7C3diHDxoloaOt/urJz2Ds48jmNqJ5x8swZfL4MrvlSRKaDqAi1wzjrLagyatDvDp+ 52rs2geyfi7o5gm3u90ZxkH08cWPPFeSVVBKlhbspnfiO8qdPA1TIDZ3TeQR+d0BN+aFVhMv4dfr XRbcaNYZrORC4RHW4qM8sMsZWTAiVBSaASJ+MElimjBReOCzRTDn8MCnn4EHwH2pvxPGkdCXUiJ7 sjDloYd2fvM5uOfoG2991StEPQx1uJvwCX/g9A1fI94A0cc+Db9xwhff4YLGt0h2M+uXBxshjpEQ U10knltnsWL6jGUF64m8VdmrctftvpRxPeM9hPIXnfZj0MjU5yKq4FR31Jic8cW2vfatm/dG0vKw QaJ1WzpgjJkKUb0vAgl8zUDnGqduLbZBPNWmXWUlcg9LRrl+OIQvvK+AFsc9TvlrvLXmb3Dpexcu ff9uD8s8fsHwBn5pX42rk/zfcJ2hss7Gpq6Wspb8/DJlPkvmsg0VHTD4OKmzvrmruRx+HTED58K+ QwceZ9Oo7HtwYbsoo9jRQDIuA8tYIC7dq93Im0KMx4Ncbm33X8M/F3VyFJyfKxbGokAdKAMlkjMS K5j6FsAC57pvgRc80m/B9q9k/vLOV31FkY6jnXfxrHPCzEDH4c+73wwpzwvyQP4//6H+YN1ww9BX IF3e9bbbH3Z3uOUwKF4DEUwBfPVAcVEpWwiputWm91oaGGiYpOmS1c8Ji+Qlq80ac4W5TtOuOlj4 utxUD02HoUBD+9Hqlupmf2OPu9Yph0aByI4q4XMtKShitVDJgO938NJ1jLwJ+liMSkT698oMY5mx wqiK3/u+qd4As2B1rvig8+4v41UQROUX5LOqOyMChmrhL6XfNtEByq+6KsyVeyvtjEVbuVdevhuG nDXmal2bujsZvCIvPm51t7urnHK3iwvBeEy2rdieV5rDlsEdUQ6NGyb85K2WgCFQisT5FcdyJTDO vYOnPZew9+5Sl5P/f6jLaz9TFwQudo4uYr8Iqr61nlpXCOEYDvZ8hafKDHbY8zDEZ0yLLbdw5gD+ 0TfKRUseXStE2UmT2VkB33kBTSsAexN6er5O6viNjzCyGhZ2hD3xkddbsM5mJ6yPyT/OkdUprBnq leqdHGyLuLmq1kBzczPS1DjkvADVkzBr30P+tOLnelVBq23bYb26w20OcgfZM8f32YcmzHRBZkO7 su4apu7Wq7EV4gEWruiXRK8PUKVtZNDoLfHsdtF+1uliWmC8Yb+NN7M09OCZzdDpSVWW2XNwdHiw paG1qt7f5arjfRCWQvEnG2LLgpz8SHE12mDyjW6i5CHGpi0rMZsWL8gqsVAaGtZwCtrvGrBT8LUV rv1uogFGAe3w1/EZP0PBzCckEPgPmfjIayvyhYzjILU7/x9yFMxC3rp26c3bUVE/i3N309y3o6AZ 0Cvt+9eI9dt3Itb1539hNO3tDvsZ8pX07G07se09GUcH+2s7WiMxqxJaj2cUVQ+T0rdHWxsO9vcQ XfZYaX0jjH/X/8c0dt2dNHb9P9LY6UUsVwyeUpwC4t7LdZ097niouUF/npmHcF0JJxNYKfFQXZS8 jnFbLJhBl1G6nshaXLFTncvY4mmufNRak/OF3FqrfDMIVy1ntZNodf38Ro8cOIkKs+EO3FQrJe+z eEpqt/xWyJZXZfB6Faa1lDFmwlSiSs/fhhgsRosaLxeVVugi6YSPzgy8dW5X17ZmUvpBV2iofRi7 uK572a+tFsImlt68pCDKwSqnQvqBWRH3H1V5uSSSlTtf/fqBt2BWrj2HiPvZCXj0WchgNsE2xO2/ wv7I7ehmmF2R/DU8FnNJOgKs4Igs662K7mEsh4FraaGSLYTEjlW7qRZG3ksHNDnYMquw0PwaQWUy xmyqjJGbKWhBp+E7RMJsU3unvQ2CSajJWnj4UpUCp73pOHaUHWQPEGwH+zbv8jKN6wKlbwoT5dLy 2uyulwJ73bTX4YJvijnxF2/oPBDL26rbjjlxp82h0WPSEUEt3uUw59AwwmqB3m8PFd/BdbGdrfsj Vncv74DHyXfKc52OFlsTQp1z3PgrdparP+Qmmu6Kp874fFu+vUStYksnzFRvoSo3p2ycLy/fW5FD 22hn8YilColzwsbSpDsS/EQjmC5gIO3wu63gKWEqeFz61Z/fl5WXlCr3Mrl3rxRO/DDXxra19EZ0 DB8MFJldGqe8lLd4grXHrsjrO/xV/qDf4NM35h1dJq8rttkKqUr4W5qrgE3NMLePDbcP/OPs97rk Fc6SKmW3EAVmyXV1LPR+ItKPPv6+rrmurtMV3wX5I1wq+fgcm8quVJZEjERG2lHpp2sYeSPNmaGB aKlcrTTqjDpDlamqsnnrBbmmgfPV8yGn/OdJroLTNAMW9IwISYdVuYWS91g81qZ8BF6goKiqdDDa 8njoljIE2YD/6z/K3TRPsUTKer3FBpMz8aknYq0UZSXj/ikACp76Of8ZEaL/a/7zTviT+D8Jf36/ DKahmmvrmhsqG5VKtaqULGJD2mYcpExqDsFvNY3Kkso738KWPQ4Rz2sS9E/gCdnyqq3hPCI/fER3 EYeN/oizLgLXb0d1ws7OMwrAQrdZHqBkObSjjTz/39xkO56QNEde4MNTSzFBKV5KOdJhZDbC+ru2 SA7B9zNcF7dybC8BnhP1cvZicrH4rnICvbR3tIJXxEW0A849yK8iyTPxw7DBWFiZodlpoChO57Ud 97zbcKj3/dNdb3GXke+cq958CH/kxdeeeunYrvOdzUH4hh4nTBTD1+fYTUa7Ft9QeHT4SF+4/3zT M+unbluxJpP8f1s7E6gmz3SPSxFI87ZpJU0Hksn3Wdtp1dba2plql6nVuov7BqKCyr4Y1gAJkH3f 94QAskXCjgiIKwriUnfF1o5drV3V3ul0een5Osf7fEE79545Z+7cc+85noNKAl/yvt/7vs//+f9/ YZmaeozHeNgYefmEQXuC9DfVXnEdpI3uCr04KXdHbjlDlPG6eiFv4XqLSUiWmCQmF9flD7QMEMfe x7OxcvD9m5jR0hBrgUSnCTrO8VnDl0cDp4YPkQf3Ha3p9YJtyaswbVO/UrBsA2P+ypL567lvHF14 95Nzx6+fSjq+VAATrxhMZmYFnLBNDqepinewZduGNbl5O0mWsaHLBNfmgmvT64bg2nZfcR7QOiuN cq0opTBtl5ghTJ2jW85buMlgggaCSQbXVvU5ftztJ8B/IB9871PM2AOXpqN9WGi/6QhseJZQezm9 dEt5AV1iV1i1LlUMgjWhrbVdj+5Sf3KXeSEkHXsHshtOPfqU32iyQ4NoUmS/Xb2SRPb8dFsOj3py 3lsvvDay9kgW+e2KiNEtzs1J3FU71s+mGDvuHi0nNLZynVpp2uJd4ClmSGuP5X/CQ0voCdQDEyjU PjaXQNuY/fMCJvunK3z2XW2//qDew2D/pKtIpcEiZCT7u3OwLheGHL1icPRqxWaVM+Tora31D9CO Xs99R2+bLRAyimgZGYUSOOOztqUCFAA/xawFW5Lap3JKGK5yS9pSLtrC7MthFsG5x6axQm9OW15q yKMhJmulxmrIhptUBti3C0VLdPlmRZUONIl6V0M1FG9VjVBLXIqssesEYvIpaknupq0LSgph+9LQ DWyO1qG0KI0pCakJ2xNkUqPcKe1L2Bvfk+A0WS1m+0I8JUYL/n+Lk4FCcJV/UpIRp94A04SwA++p nYcjPltOPUaxVr9NPTJX1nYW9rN6f0W5lc5CS3LWzNqczEhOzJereEq1xXn88PfDAyS0qusCfmcd 77yX41OXOip57EHpG+8sWZ1Irn5HtLyMW+Qtbu79fOjMKcIEG/xH0oK4CGWZXqHmKm3l5/Grd8BL 8gTmPo2jqXXUDqjcp1ISKh2/PQ2/Nnzdu/cUYXZoHEozoyIrQQi5trJF+GUga8Vh6FpDYf8cjpwF +d/oWfOe0pD5epXL2eDv/xwne1vkriKHWMVgQTSkco2SKHgQDTkYKkIG3uNXq6xCMHs4dB7IhkRH 1ZmMA/v8MgjXtm7rXRQK1/KZYDf8hh08zGRnYMRke+Mh8CBhou/p7fevoe23mTa/QnctgY/o0MVW WL1+ExhCZv3h2/c9/Tng6W+ntYWcBzt5N9M8NrKTP1sqUZuk7liWaRioPryPIv/jhkH7F9IParat HSAxRqWOMXlLlpIK571S7HHLyApazeaiZyCugzcxo8+cPXe08fLv8O/poE7wQAz7xyu+/v1nuSEa FPG/pUENFEX8S9oU+9dx3pTNajBaSJaioLLMrfLqyBpdsDKDm5xekCkitCrIZelG/IcOGE8zDmf1 os2JfHY8HgIKm9Wn9srMVPjmmE//HWES8BTzczRyC8SyYs/tiWB750YN87+NYhXACISBZy9wbwIY HegNYcaHH/JBl99ncuw/15e9fEVK2XoJMAQgeK1p0g/Z2/2MPd7OlhPck0kteU7CUZRtEfDeiDx1 l88arei4FwagIhhHe6jGg2a6FL+A19t78aPhELnleAXu7P9e33nag6MtZ2EJjmm7aHOGyjg7JGBk FoYYTp7Zefl0nEwBtjunCjb6FnDxKoWyXYJFwq2l20XbS7aXt4u6C05sxuExxYcN3oCljt7soQyk 1eJd+vScLGM+XToZK2yqdkVMI2xgLUshgrOOSh0E0iCNPRj73Qhz5KLw/WEHzuKzfyylNzVjEKhl vE3bc5NTufGdmcc6uqvam7/gy8XF9Fm70H+gydfX1kwaI9lft5r1ur3kc7A5g/HTTnwx6IYa0KWM /WoTmIcsFjt3+ldSt9QglcayNHZYpXn+Pd72xhJ/QVpqzq4MUmfUAyhoJArwaHDSKCjf+M+SKS7l R9fhn9lBLHzyQLte1056a6sOOg9rHRLAHkkLZEKphJEriDek8DIjU3WWrjoSP4qTYIyDhxq764JG q86sAXRNRgrcdCZPDyTvUYocBDOvwqcna/WtolTujhRBGsASlBaZQwM3ISitKosKcSRaVamSECp2 SraWMYTyspJ8blpD1rHGzmqbm7DYrSYLz2rRqmxkub9KXcWrD7rq60ibBZRGnkou1UBsQNXYZiSt mBVxxCTqWsLbvqVQmE8WlSlFUq7CpnY49rjsLsJuM4Jizqi37IbV76AtM51UU49zZFo5GOfUoBsU 8TKle/x79zoDTjLgdJn1ZQzWjkyjKflLvl8XcxKSak+D+vEQfWvQtK/tQPuKYnvb+Wqxbpcmhj3n PuyLHS9gIl1lpm4+j2q4ypeuL9sgyTAqPTqryekFdEwTo7H+iPMGD1Hrxj1WmPhuDxPPqmfecLut BjcM4bGV+3ZUF3lEekWupkQbA/KVFFzlvQBS7OvtNECXyGI2OtWWPFtMobXQlds65+abt+bdZAg6 ZE4b12q19/QQFy8MDQ0PdOyOba7usO+xgbgHVLBUqJLS07KM2aANgrIXUMV4tC6tgqtSKcfN8Qml pZPBGy/Ny5PIGHDYVcp4IoN1P4nA9qNSaIhkITjc5TZNbCfYwOlw988GnMuvFNIh37pW8Ck8eE1f DEXvxQLqhffZX7fwQebbzHF6DUG5l0ElR0orDbvclbDSpzRgQQt+oi0aF5/PuAgZiIRfnuCsS8hJ KCKVJpDdeJ0NbQ2dvGCgLAvMWmIJmKvWCkF4lYLwCvgqWng93bht65y3tyVXyuw+GelSwJGcJ5ZI RIJuWUvXiG/fMXJ/e8P+/aDydmw2Ewqj2gR0GPZfhx8IvesIFn6FCUs6vCwPaAhvc84Xe7MF3OS0 XXGEDsJ5Ga6U3b3ctrq9o8B+CnKe1a9MnM9d25fxWT5RTP1xcVXGoLw7Vm0Hw4ickepK8ImIKmVX 2bBGtjjGpqgDrd55PuZvpksHRrkXt+59KUjsxn8YlNameHfFWlReg82hG5C3K30Cu8C2y+QYjlHZ iw0qJYPVYDiTJBz77Hg0/uwmuxuvP8PJV0MC1un/6Bvy9OWID74IXjzDvb3swnMvv7nxlWyiskrt tBIn9/T3nuJ9uH/9S5Pfmr50AeQD5r2Rlbk1lwE9YY0WUnEak56AlEB9u3EYtNfIAxAT6CWrdtcM eo9obFKzUquSKitLRQxxWa5qK9h9OzUdaghc1KnhSxu3xzVwDRBRVsh4WRmbX5RTD2da08wZJNtq Trdk5XAzNclzVODgV6sg4gUkLOvHKktyJjdXm6nJgB+iSdekZ3Cph7+WH6Z/iBugSvM8soEebrut 3QK/xWrpsHZ2cE8UdW7yEpaoQW9D5wkuyyPG0/g4+z32wNhSqDOCTPb14xC2S2LiJz9+Dz9E0tGM sS9bokeuxl/F6RdWXWNfx36YRn+Ys+oPRtL41lDiSDaDfWvp9kXxb0MU5/a2W/jhj8/+9G3c4KIe CJkcab/Y/RGXff32W0dmQQRF9veJnHmbz3zS33T8/AA5mvXe+je587clLiDY181jX3LO9q1duTZz 29YsMq51cd8l7kjXsUsEHajigBms9HVmIJt/cC0z3RyTeoePoubw0efwrQCzWKsAiMkQdO7NNW63 RuYkfqYej/CWW0C7Vcl05TqijK63RbBpBmlTfVuHPpjDrDBBrVpiq/CW1Gb0pOzP3CuuFTWoHEar xw2hVRy+78bZo4TFqXQojYwpm9dPoyKADjU07cfNhN1oB+YAY/nRnTdwOGQEdfcmsGDX/fTehEel E8LwjBPhsICd5DSam00NhM6kN2iNhaHWF/R2VGYttL480AqwqBlguSsr5FIJwJwSKIGnBoSVSm0Z 5As1gErUMYA5Yww2H9D76QUJMtEWkTmm0lRuhemhdOiCDVxWP5P2x3Ge3jb5xekDz/zwt4G/3fl6 28/PkPkTzzqpSfHxaurRxYvU+NGjR4140ijJgoPB46CX/I4ftvcmvnQzHL/2MUfQKzkOEaSnPjx8 ta9DXNBE1As4zTs9GzcCnuTtTXOTM/2N+QTuBn+sTydzVPAyNkdUZ213JfDG27Pz25ad3E5mbIb6 T+nXxe49FlHa2S87zBtv2F7Lvbi6DzLrA+YOh4NwODvsp3i41jhCraffzvUzoSG1c81OT0sxIWrS HT0AfYBL+/puaUgVTudvlKSVZPOy03Yfk5Bq+Pcs9b7tl3ishsWtY6+dD7s2jIXXwj8Ye4VTBOVh FQ8zdfj5dGoKXDUV8wI1U07IlcYSNyibr1iBQvEInseFLvzkIWqShxCaKiAEaPHE1pyy1VqtoG7i NXt8VVVNEA+DuJ1KT1CqTLFOLVeLY1lPtlY3BgOi5pwcYd4ucOrXiVp4rDWaRGkFJPmESrFuJ5Rs F/CTF8LHBvFhzvPpLy2P65p5+3bXV++eTf/yedIo4Ax6Xt2+Q/KnTZsqPunv930ySP7KxlrO9PFH 3vntkYKJI7ZXt29XvbomfvyBR8mxsDqO1lXuqtBT139tjxHbPEoPoIWXcJau3ZIkJOV2lYvY17LH 38470pST/ObMpFXZpFoMsWrg81yqrqnx1PEuNq9cDZzcNQtJYbFVwVPADVHpELS1vNc+OEIeGega uca9sLNveR0kCyQWm6Pezzi+z9ce4H6wYk88wXIq60TgGpzglU7ox2uC6EcwU6CGFCG+0Y1PtoQd vIElt8KxYuxnzp0AFf0StWbFMzMXk6mChMJVZWq1udyhveC5033tPOP7LwcgxhHGxc/NwxOAxhv5 0mzqkaevLPuwp9VTvZswWfQ2ON5ogRZRwJub8sUHtw4dPgsTx+YzO0zkNDxbWgMx6rLYaTiMqXPL QN5p3Q3DUjI+LGYys0bUCuUf+Awc5vGHV9APn/4uE62qSfzsaFdTXQ1hM2ncCh4Y37VyUquQ62S8 pcpjIyReFYUq2nDgYNjQR1gEtuhB/CUnPaciP53UKCwKu47hrK0BLeB65/xFf962MW5Oyqef4EnD P335CXnx3UvBE/VwIvQozSkqKjZ78lTGsy/upKKmc6lJo3OA/Bt16yaeeCN+dCbB+i6dD62h/ytI mTVObkLgcA1/ho8J2pz+UCqc/dG3K0bieog3jkSkNST2jXAP1J27e3vPskQvgVRaXZlNg7SnmbHo Pwx+MRjO8c09uK0BjhQnmXDOauej2ZwfbvfjiO8h1bvmJgzNzDepqNeGll7f1+qrCxAmqJqh6gQW r66EtyTt4zOX9h09c6f+6SXU0slU+KadZErulvy1JSqVRWLXXPV+0X35LJxAiplBuS90JqmAMwkY KQHxY6iXuxnU3Ei51FDslDJY7/Df702HeFNeJW3GVjpVpEPdRruxM/PygclQAjrjsO8IrfumQ4qB Y9drLEpeSkJKwo4EmcSoeFDgMxzQbLJzF+JnNHCpEH5FqnWrwaNUFCnXGoCBB4pvtc6qVXPVSqkg l9iRFCHIK5UW80R6k5fEt4eZ6HXaOiAGSev+EmSRAHmUsbEyVQirUGodvQrBf4Fx9f5C9MgzEJro cQaqaisdFUay1JhTvZfb29PcDQgyu8YFxUtc6YbERdxNXUm9ELIK7aNh/bewFG4YM2yh1LMrqQXU 89TLp8El+ix+9jT4Q1/Gz68EQOizZO5E/JCDSpoxQ0ElATzsIQVO+uYbB06CLZn1QaBHtDlIKKx2 pY9XFXC39K3rWoy0VfxY9P+CLmeNLfxlEifg1KpVajjrkcLcFTMry6gc6kwMOgWcLY/IATWR0coA 5yt+DHJbIR4aTCVOrgg8/1bw/O+lYyjJRfkKSLUjjt1kc2vd1FMgiDskdPNdCW9yZHeXydhNQp3l VtlnuWIqjSqzysaQunVXrnHHFkVdM11xu6F3bDN7jbdcMTa7wa20MIxp6aY03qJIFjWdmkFtAa8z H9XfC/sz3YoBczLsvpAumAFG52h0H7W0WcxsXAuj2lrX0BYQQuKquDCHTlzVlUHiSq4xlrm0CJ+k JYy7IGH88lQAUbMjFCav1s67gfDvozrMQZePcDs8Tj/PV6WSAaUgJIWVk+LyssTfpLDO2hr/ft7g fSnM66tpszXdl8IyiySanfC7CuPUIKdNBIu0rYl0RyEqaQjmfU5RQXYWLGTt0K9tFQaySJZ3y1z3 Bt7TLwrWzifnrk54AaLmCLxoRqtdcVr9rr4BsFgmAIohauUfKTa1MS7V1VpMihq1bcegfiria3zK mBq5US3govFIYZY2Amklq+lY1epI9O+ZNoLxNvo4b4bjPJIzqXQTXCleMoS53/1AALRZBm3Fx16f A4zaVVxq1cfUa/ix1wkXzAoXd+oP68GWDcGqsYljX3FCTp0r0NdTiBpo27XdbPBCWBAkrukcSHgB 9GuXuEQotcg9ShJYM9JUbuKWAgHEpjTmSoeWca5uaN8o9/SOYDYs7lMeZMB+/JFOgNHJsCmkcOJl N/Xopk1S6tGFiyowOn7chxFAwltwxb0JL8GMONWHnxsJx/XIxQ+hHMG2ft8dA0xfJidfVSKtAKql lvRqaqUF3F35wiIxodMYFTZdn7+j03iY0VfYmkewqOzbTDCV4I18GggFB1D1XtVVDWRxwBBK434h P6WTrQOq0EFmj7HD1A/5qeOH+NDPWWdTA24FcQZMTQ4bYXO0OU7ycNUxdI4/9iJVNG5ORE/+he+w u1wWR6zVpXFVeACLUuFQ8livMVnrmJh98gJ+gsSLYBBmLFg260/nV3393blzn3+2+PTLpCKfc6Hp zxviS5bFLRdcPHO5+9AB0KG4SneFWwJxKAgAGXweyG9OiHGEAkBU1Pr7+c2hCIVSCiCAEryMk5h8 4MrFrv2HTjevXbxSkLyBRAn8UlBn7RoLqLNBfgIktlHE+OcZoCEmtQRx5vFREcjCHq+hVQKFZx5d eObQhee7oUobEd6/T8OTmIfwid4wXDIajqcifEXc+guzFQEli44QoyhAPdGer5AMnlqSWFkkxyuY 6H9yLbGOwqce1ADo0aTRE4LyHfJixVV4a3ILhVl5u4tam5v8Xc1AQSMh6xTXGdZ6Db94ORyvobNO 7xQL9RoDJNYZqBvPDYR1nMMvAovqBVQltaeZC0LkfAcD7ee/D4O8xqqrgoGr8jf6IJz3LxHNLMoo xLUgmeGguP0XRg2iEVadA/qeBwir7YCwMuuqr3PHYqLYl9BVJguONNXyGtzTgC81II4InspjGhF3 V4HdXkzaS8qcYl5OZWlhobesldS3d7acgUsYR9lARY0ACAoLa8BXsztQ6JdvSrc0C0hRtbqhjhuo CuyrA7PLSwY6VvZEg9qJapgRaErIdZILSwEVCwEJZg1Sa/QgdiEwEBkciLMmil2HL1NTI3RR1GVq WsTaqLFYHBcxEIU42+CvVFzECfgGnhZhisKX8dSIkShWCmX6+N5DdEqDZpoji8IMeFgfaMxRgPGI /rFr1I6n2ke7ILnC1NiQzEMj2RGnyma3AnIXr2SiZsi/wRT4RycE3vQci84Dai4+f28CB35oNOa+ jyJlMLMAlMeKxk98hLYyK+EE8AYaqw7DEYADWYwAXxe+jokqOG18VIEf5qNgCEWCk2BSyD0VNpn+ 16l/nxVT6ZP7CRZg78K+BehdOF6C8CheQj9lExOVFAtLeWWCmupSAMZKaekLQabzLT1NJtvxgEyG DoU14Q3hOBV0qrAuPCH8C6RnACoOSNwo+ltI4IyD6v8rDZrO68wImQd+6Qp9CUNiuUasJFc8rZV7 VW5d7O330HdvwjNd4gasrRl7ogGBvxxyLInaGlEtPt+AB0LRQOFYP46MPo4nTrkLif+HUP7scoXG WOHQHNLEDGjMqKa6o6unNVBX7dptabPFoN/6SfcJoA6DT4a38gHaAKqeGmX5snzF5iSbUFuu05ti UG7oQz7AX0W/r73nw3+Gq8iDkYN8kSGUL5J74GSmoVO5BqSygOsOBcemBlHPFe4wShlX2lBLt6+t kRjPkskl6IGQHHabvp2SrXA/GiF7eA2/A/dcAroxlgavaKAXXtP6gwhORf8w/aJIvUSfYYSEIxhG zGjPLoJVH/3uB7qR5DNsK85BODMMP9wPf8KxCQE8v5Lv1MXWmhAeVgYkQniSXIPA6hOL9N0Q2qmP /uFM8ojuA/axH9BaJhCwEHygA+BI4EBbpENFeTT6C1rhCGJ4R+HgYLcZdith3/sh7Nr3dN4Pgpm4 C+4Xk3gK4PTDmmBa0hDKdxDH6TOgKPBzowsrL+EV55dfZI/CSgKt5CjMWQDp2iar2QqgbwAlNPx0 +K+Hw0bGOOFI6VKRqAd/Goac0AtFsE6x/hNHt+fBCmVuZHN0cmVhbQplbmRvYmoKNzkgMCBvYmoK MjMzNDcKZW5kb2JqCjggMCBvYmoKPDwgL1R5cGUgL0ZvbnQgL1N1YnR5cGUgL1RydWVUeXBlIC9C YXNlRm9udCAvTVZWWERCK0hlbHZldGljYU5ldWUgL0ZvbnREZXNjcmlwdG9yCjgwIDAgUiAvRW5j b2RpbmcgL01hY1JvbWFuRW5jb2RpbmcgL0ZpcnN0Q2hhciAzMiAvTGFzdENoYXIgMjIyIC9XaWR0 aHMgWyAyNzgKMCA0MjYgMCAwIDAgMCAyNzggMjU5IDI1OSAwIDAgMjc4IDM4OSAyNzggMzMzIDU1 NiA1NTYgNTU2IDU1NiA1NTYgMCAwIDU1Ngo1NTYgMCAyNzggMCAwIDAgMCA1NTYgODAwIDY0OCA2 ODUgNzIyIDcwNCA2MTEgNTc0IDc1OSA3MjIgMjU5IDUxOSA2NjcgNTU2Cjg3MSA3MjIgNzYwIDY0 OCAwIDY4NSA2NDggNTc0IDcyMiA2MTEgOTI2IDAgMCAwIDAgMCAwIDAgMCAwIDUzNyA1OTMgNTM3 IDU5Mwo1MzcgMjk2IDU3NCA1NTYgMjIyIDIyMiA1MTkgMjIyIDg1MyA1NTYgNTc0IDU5MyA1OTMg MzMzIDUwMCAzMTUgNTU2IDUwMCA3NTgKNTE4IDUwMCA0ODAgMCAwIDAgMCAwIDAgMCAwIDAgMCAw IDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMAowIDAgMCAwIDAgMCAwIDAg MCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAw CjAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDAgMCAwIDEwMDAgMCAwIDAgMCAwIDAgMCAw IDAgMCAwIDAgNTE4IF0gPj4KZW5kb2JqCjgwIDAgb2JqCjw8IC9UeXBlIC9Gb250RGVzY3JpcHRv ciAvRm9udE5hbWUgL01WVlhEQitIZWx2ZXRpY2FOZXVlIC9GbGFncyAzMiAvRm9udEJCb3gKWy05 NTEgLTQ4MSAxOTg3IDEwNzddIC9JdGFsaWNBbmdsZSAwIC9Bc2NlbnQgOTUyIC9EZXNjZW50IC0y MTMgL0NhcEhlaWdodAo3MTQgL1N0ZW1WIDk1IC9MZWFkaW5nIDI4IC9YSGVpZ2h0IDUxNyAvU3Rl bUggODAgL0F2Z1dpZHRoIDQ0NyAvTWF4V2lkdGggMjIyNQovRm9udEZpbGUyIDgxIDAgUiA+Pgpl bmRvYmoKODEgMCBvYmoKPDwgL0xlbmd0aCA4MiAwIFIgL0xlbmd0aDEgMTU0NzIgL0ZpbHRlciAv RmxhdGVEZWNvZGUgPj4Kc3RyZWFtCngB5XsJdFvXeea9DysBEgSInQCxPQIgARALQezgvogULYqk BImkTFEbtSSWpbEVx3YcV3XrRRpnPWMnjlsnM2ncOIlbJW0dim0aH2fs2E4yo5Npk2NXp0vSdDqu j+M2sZ2N4Hz/ewAXRfXJSd1zOmdk/3wXF+/d++/bfTh3y3uWWSM7zxRs4Ojpw2eZ9E+Dv/zho7ed 88mf+WdxdRw/e+J07fPTjCk7Ttx0x3H5c0MHY91nTy4fPiZ/Zr/ANXsSE/Jn3oNr+8nT526XP6v+ Ees7bjpztPa99uOY/+Dpw7fX9mdX8dl38+HTy/L95XFcO86eufWc/LlE9186e8ty7X4+h8+7frG+ /smpx94/IN+Dvxwwxh5mDewkUzJBmvcwDJQdoJdL3+MedWT3s0vN5Te4SQG8GHtq+BBd2HefKed/ MVH1ar6mzOBjQ20FaV3FynqUubVfxPfnNV+TVpKeqf0ZW2GWKF/FEwKzRflXsV0fy7Eo8zIzbnFH 2Vfxzc7tU6tAUslc0RXGfaPvP+UYWWE6fMBTjFno/0m2gKFpvcj0goo1Ci8yE76OTa6whum5L3L+ wfkVvn7vyghruwxsFUsHu7BUzOcbPTVyiR/CByGGiYgfI0XMN3ZJERybnRPnfRd9FyeOXfSN+U4e PnZJGZSu+GL54nzCd4ntmTuFv3vn/JcG5l0bw+X5+SLWUdI6eAS3X5zHCu+qrYCrNJVYw02q2KTv kiI0PTczd+n8iOvSwMi8y+/3jV56enru0tMjLv/8PO5Sb2AKjIl8GWcNcFZH8L1WXmUP1sAS8xcv 0pr4JIT8l56+eNF1EZRIM6J/hbPaBCilexTB0RU+MD1HXw2IfhdNiH7RDzzmR7B2Q2xyz9woMPET JrpfYikb2cJS/QaiuLcR6Okllja9Qyw1/Cosbf6VWGrcwHQbS03A2Ugsbbk+S8W3YegGhweuw+Hz MofPX4fD5m0ctrw9h60beANJG7C1Shy2v0McdvwqHHb+Shxu3cB0G4ddwLmVOOze4PCA6xLbUFpw +Pw1Ksv+VR3+dVnetoXl/McszW1wXZ9jp3E9xRUswRXrb2G8h9/LuqXrrvUfCjEWAewHOABtADeg G9BB9+CaVfhwzwPrPxOeZFPCt1lUeBrXo4A+wFv4/G02hfVnBQ2zCY9iLsamFCfYNOZ3CT9hIeEB zNGzD7AgnhEwvxPPM8Vj8GlO1i7MsOHatZ2uvAPzfZiPsQH212yU/fX6j7A2rmxUUWEDNC99T8/N 4P5drBf0enmJNdB3GBuEN5lJULMGjLX8b5kNnv4efG6EP5XjAMNYzR/AZx98M0UOOV5gAOetZCoa MDXTMC18q47pcX8TM0izzcyIq0ka058WOHkLszIbszMHc7JW5mJu1sY8cP8+5mcBJuKudhZkIRZm Haxz48nNQQRuP8a6WJwlWJKlWDdLsx6WYVnEjDwrsCIrsTLrRVjpB1cG2RAb3nz4/4HRyL+K42jt m3E2zm5hD7Lv8ACf5kf4XfyjQp9wTHhV8W2lQzmimlWdVxs0s5p7tGPaP25wN0w13KnT6cZ0h3Qf 172oe0Xfoz/XaGm8q6mx6VNNzzX9wuA27Gs+1PwT47tMWtNZ05+13NzydMsr5g7zgvmcxWDZZ3nT +kFbu23W9qZ93P5x+4r9XxwexwOOLzj+3JkHRgL4z/k3heehDRq2TPEdISmB+AvQGhGjrgASl3Gj 4seYNV6G0tCo4SpD0B2dQ6xMuGhS1zdfm1DRhIopaUKJB7ALHlBhhLzhx8kU95v8ZpPfxB+pfoun 09UTwifWHhIeWSsIX8cdp/nzvBc5AOETXcUf7AecNMZVTEFpMVYYaW8gqKohqkwkU2ZT2iQCfjpy ZUR4sVrlAgExncMvPM+elNa0X2cVVnv6VO05+ZnEeok3CX/FmtkiZTB6aWelcdAFa1HCBpTQciX0 VolcTMn2AY4DbgPcB3gY8DjgKcBzgKbFQRX7Swx+ABAWgb9Gwj2ZsqfjPNOTzYkGbrV4hG8O7ugt jw9O7bZ1Fp+99Xt3v+9vbznx+m1Dt99yhvH1t9ZL7C8knA4TTk11nFTsZXx4BSAsAsEGDJyATkAB MAGYB5wC3AG4AHgE8ATgMuAFQNPiCjORTBtqeGnSfcArLoRFDxBTNwxIKLUPjPWWnz3xQ2B065n8 rd+/+86/A3/3rN/MnmFn4Du6ViXnQ1JqhPYwgAYapEmswsHAGZlaCthDVrBkKmdN2wyCxtrHe/me ElcZ7KZiz5kzjW6XXd1tmi0sY+1u9hrfw/sgfD1blaSpiELaVn+mm/t53/Q07Y952l/BXNvkW7+f EJF2y+w5g3+0yvoP11/nS+AlrSurO4ceNPA057bqS+O8Q/irNavwT7hXYJH1NwRBeBZ+L82+scJ6 wKIMoAfUOUCdg1h2VdIMBs1g0AzUCYAxwD4A1RO3Ae4DPAx4HPAU4DlATTMYNANbQQoZrBq6usIM V6EyL8MXvwKoydUAuRogVwPkaoBcDZCrAXI1QK4GyNUAuRogVwPkaoBcDVgeXDPDQ5NIzDCiLpgU jbvAEXNPnzLd7VFaLQZBDEDWFg8+9ykhd6UYMCh/mzeY/N3t7d1+UwNXucrZbNmlWlAaPT27c/mp Ho9RKY9zu2nMF1v7+8tdbndXub+/tePo/nJ5/9FweO/0jqzXm90xvZfG41mfLzs+vRfEcrYff46B rzomruIjknsgxuvWzaA0FJdoUgNs/SbRoBCtaRM/NqgJ5UbaV4RnO3o8+pGqEg87sNZrWCvKPgLi 8CgFO3k9InaFBcBTvcxTPXiqr/NUD57qwVM9eKoHT/XgqR481YOnevBUD57qwVM9eKoHT/WSrQSw og2yt0H2HGNZD8BrByKkAo4rDD9B24eJz+lQnwBGC8RojUGh8Wf8fYpcn4IMDIwWYhXeHMgE3d1B m71rpCs4khVV/H9W/4s6nBvy+/uSbWJ5Jp6fK7n5i77+bm9LINEWzCcTblv30Hz/pD8dC1us8cJ4 ovuGtCs0fCPxtm39DV4FP/o4eGtEGCdkjFAAV42lLqOkX1rwQlvnhRa80IIXWvBCC15owQsteKEF L7TghRa80IIXWvBCC15owYtVKJeJuWDZq0gBtNII3IYEYpg3Yn6FxcClLvCfuJaRZZDBvpn6vhns m8G+Geybwb4Z7JvBvhnsm8G+Geybwb4Z7JvBvhlJBi6sNnAVPG+C1RF5TSAvDI8h830V2YRCGhdx owLAr1DcIIQVrCghRt/0XiF/kq3LRwyEwqLaA3n1CZmeUDgj+0ESkybdQ3K0kRijPCAGXna4fLkO hzOS907cIFS4v28u2z0/FO4fjOT9xd3xzEy2TagY/elAdtwWTLlaVColf2hcYRLTfl9aNO8fze0r eVzZmczAQYNg3plMjcftgfLetDcfcRYK7lhbM/kfN/4oIEsFDHqGPL+s2UogTx62AWTRWF+7GsmP U2zUSWYgWxCXAqiOqSS6lbiVwnsjaA+K5rTZJHKr35rOpDN8z2uvCtMj1a/w3PShf+YHqp/hf1FN zz7++KRks91QrjWB3It3FYYr26yObLYBuyFNkDguQOt5xm/1Q9nTfQq+Vs3wc/nDOxPqJVV84qBw dmK69ODvfn5hz6XHP4pl8VQHfKwSNDYjMxzkiG/JmlCTQDwEvSKhhuT4S18lMZmEl03CyybhZZPw skl42SS8bBJeNgkvm4SXTcLLJqEuUvxNwssmoXRkETaWlFhhlL03+dp3wBaKWCQkq1ZCsq8i9LxY 1/Mi9LwIPS9Cz4vQ8yL0vAg9L0LPi9DzIvS8CD0vQs+L0POipOe+q+TCbcyHdVeRZMujFTZMut8P gybW9INNUaRdNI5irIeR0FiPsRljfe1heST5flmV1bLnt9nlBKSu9ptajyix4bxgHI9a/HFnz/BQ ujUesCxku8oDwcG5dGpff7BvoCvjSM8WOyeLgUF7Z87ryXTYreGMb6giNLk63IYcAojBHfUlZ1qs i/3ZmWyrOzfdM3TAYtmdDAymvY74cPVBb3e72dqeavN0B60TpBuCHN/RG6KcMEeeHWoG0sjvCgBS Zhqrr4AfVNPQl0rQvRkCQG9GtJqg4M+cOcMfPnOm+pKUBwgUp/krUh4QYZ9cpbxVelyFxzfzzVWU N3K25Ze95r8521ql3hdTSJpigQba4R39oCFGMiX/TTQwIBGCkdE4BItCvpThNR9ktxmUGnyGcLYE kpfPVF+rGMWe9my/UrAFo2GXUGl2eo1Gr6PZm9+V6Nlb9CID4neJ5VhrXy7YEw3HS5FEuLVT9DYb Ax0pb3Jn2tU+OCfxPbL+uvDP4M0N7CB/cBU6G5JQKQCtBSgYobWAsRtFGo3dGHPc45ZUTbExstRG kj0Mwx6G6/YwDHsYhj0MY+1h2MMw7GEY9jAMexiGPQzDHoZhD8Owh2HYw7AUb5K40h5SxlWAORBi BUiyAF9QgC8owBcU4AsK8AUF+IICfEEBvqAAX1Co+4ICfEGBEGnG3Qu4ewF3L+DuBdy9gLsXcPcC 0ywONiGUL2CbBWyzgG0WsM0CtllgatmtLGCpBSy1wg6R+HpgiMSPHvDDj1KWxn6Mx+F1aDyOsZrt ksZqiWe7mFrSBCM0YD+s3YI792/M2KHfdjjXJGbHMQvXahY1cU4hiWqGdHc2l/Zw2XLlhEKehmqg rCD7JjXZDHCoN8K1bAQGTd8Jtr39dlNZzOzvDViDGV9wwK4Q2lvF2bFEdvGu0RvuXy4Vly/sTt44 M+Loj9473n+2kkrMnhnIHL6hq7UjZXdobja22ZscCHuhpCNS4gbu7u8Kdk8f7/EXI87OVr8vcsO7 B0f+00y8uHz/rukLy0V712AkN5SqnBseOjeXbh8+VOqYHYp49a6fGJ2BFu/OwWgu4p/o62TC+s/g BD4s1W96FkSkUcJgKL5RxGG1fJZsRSDzlRjk4mmzgqdzfnuav3CH8N7PV185PM3jU6eq/4eH+a7q H/FPr2W/+12sSbFnCuufx1gHccU4Gty8pt0UNJ21DZyy5Wugv5q6/mqkbzsxUQBMAOYBpwB3AC4A HgE8AbgMeAFA+VInrk5Jup1yjOjEmqBTrt06sWan9F8BfycA84BTgDsAFwCPAJ4AXAa8AKDarQVa YwPWLdK65A0D0JoWXOOkkgGUZaR6ARCkr3kXigwM4YTmiXs26t9I3DNnZF1Rixz5/5Y0KBSOK0TF xrdP/rk3F3HsmKl+n89nZnLusaF0LiUau3oy9t97yZOPtu7o5x/7vsYRCxUKPL2WFQs7w0M3GgTL nkJ2p1WnU/G1+97Su+JimfomnEXhbz4HfxNkp1fRVpI9jEeO+R7g54EBemCAHhigBwbogeV6YLke WK4HluuB5XpguR5Yrqdu5x4YpwfMBRecNQN0glp1jXI1ZSppkLXFmKjO2DAamzCypO2ZOpaf/Y1K rHP2rj0XHjMsKTyZicTAjSW3u3RgYPI0/1Fhf9FTOn5hauqBY4WH74/dkPMmZ0735k/OJG8AadBM 0rFPQMeohHv/CnNJqVmzxHySFuWyNsQAjZwd/5u1TIoisrsh2TbXZN5MUcRU8wRKUYGhJF7xyU8N LRScrkgmmzSuvTF/z96OL31mWogEdywPDC32tZtVwp1r2e6l/7zwhc8SPVyipw/06Fl6FVmgnJE2 gAqlHIUpgpF+yQki4aCtRWYtcED/J1P/b4q/Xj3Db61+gH9QeHEtO/3W9PenN/cQsUeDXArKe2iw h3AFXoAy+a3Wj3pLYidJlLpB8vpTS3y8usJvo6X5Dlpa1rPL0LMY+69yrUh9IjIDyiYoo6auF9WM QVyDcDRGubqnpNEIHTRCB43QQSN00AgdNEIHjdBBI3TQCB00QgeN0EFjXQeN0EGjFCBoBxdWdSUg IT2LSNuSJfqkunGF+TDezGGQndtBidQn2VRJj4Cu0VaNFY45y9Wv/73gKe3Llw/0+dylxcGOHfmQ ZkmXmzlRrPxGJRqfu3u6/675eX77dKrS357YfSJfOF3pMYdKnf3zRVf/uz4wNXbPsVKqLtvflmS7 g5CUeUNIqmsiVIMKPUAAJSpctSQPahlSV0vuzFFxIMtDV5eH1KHzmyCR25eWqg/IEqleRrcOfUDa dxZbfRH7Ktjb9elml+hJ3IZ/nNnQx8ES4B7UjZrXJMdG4LqZJdZ0RV0rgkk/gugVWqTMt5eLVouN zIBfXkoNil1O3dJNx8ozKeuXBMfam6Uxa6jH64kdP+XPjdV585jEG/S6NnmzoZObXUkt9FMHNGo+ 1ZTO5Hi6gcOnTi29lwu3V7/Ou95XfZiI+dmZ6sf457iv+jv8GJ4gXxHGHiqqsahFTzSpqMYiQ6Bu B00o63ZkmuIvVe+jdaaFOwlHmI/CjucNbP/2LFZfq6NIlk1Yl4oCiTv1eCpLUV/bhTAnu5VpoEe2 UGNKo2xMk0z1fHpB+JuZvxEW7vne30mymV37A4HgxbXPCnOynHaBJuAIlk1ux2mzxSOXpDrolC6x BStZr2S6ZYy2cdWU5tT5FfmuBYG/5+SCIGuW0Lv2Nez/FUE6QBBYCLHl27B5MzoE31hhHVDUTkAH tNeCHSkHf+d6eJ1Y1QNvrpO9uQ7xXVeP7zoEAB2itg45gw7xXYf4rkN81yG+6xDfdYjvOsR3HeK7 DvFdBycCX9GMx0jqzRCdWDNDkTRgW2Yn9fCQ6ZFTlzPBe93lg4ODB8vu+nUpuu98pXJ+X7R+5cvZ U3vT6b2nsvXrxP0ne3tP3j+Ba1/fyfshQDl+HYH8tODgBRxdQkU2O3b4DIqNoFglU6wCxao6xSqg rgLFKlCsAsUqUKwCxSpQrALFKlCsAsUqUKwCxSopo6GoqCe/Ql2MBmxG1DeAejrTojH1dOHnqR2j DnMoYtqWRcNGfHJ1ZnJypvq/l16+6cyZm/g5rh4eGBjhfB8CQDs/e+wYGsAyPZRT+pCs/64cBZD+ SAuL2Jk8G0WANuRVrZhvk/KqsExdGNSF69SFQV0Y1IVBXRjUhUFdGNSFQV0Y1IVBXRjUhUFdGNSF SZ6ylzSAsq0ZWKDmMSlLa8U4IGdjRBrSdbtHQW4fKZjckwqJChGpmNSNmlr6RzHS2qhUCYJG967m Zq0gKPT2sHewdOvx6HOvDpddXWWyTJ6yionW1mwipG9J9GRbW5Nht1poOTK4/1j1yz8dyYZTbTqg BG4HYS9HYS8F9gHKxeQGsgeIdaI6IfZLOk4yknliAU8sdZ5YwBOLdGcB1wnAPOAU4A7ABcAjgCcA lwEvACiH7Yb+0KolylhxQiptI+dqOWl8Ta6mrvetM6JUBUlKr5ZLHRv/pwWhc8fBXGpxIhYenK3M DoZ9PYO+jhsK4kJi5t3l1NHpdG3e1VX07FziPy1V8q3O9O5sarDTaW5piwfD3W2Nlshg1+BSr8ee nilkxuIui6m10y8m3I3SgR4FGSbQeZWGhbf6NUnCFDDlbjsFTEpcFFfk3CSN3tjrS6+tPYu06j7h TpxiEM93gucIi4hTUAw6jCU+68Dza2KZbBNq+AS6QeJKLZ6FMjRAOMsKDywtHTh0fOnRi/d/lAv8 +Wr+0NGjh+j6od+6gAXxT1iW8HZu87XkZ4GLpHl+M1RMIZr5ierR/yF88/jPoUIPCe9ey+J5nDEr Pornm9Fbqsd8qsi2RhB5HYog9RGdLG9bW1qfIonwv7669BHhsROfEh48/OWjnxE+jb3kIDKLYD+3 9llwuh09Qp1gQiE8xG+ks8o/xaGxAmHJgRFSKTqYBkPsYLTqCoW0QRMkkEfWlkfWlkfWlkfWlkfW lkfWlkfWlmdaKuHvxeAhAJXweRxU+nDGeZl0HgeXdnxO1kYrLIV1UyAygj1GNs5Ag3TkGWTajTNQ gSbwRtbGhJYmtDRBEV1gQcmfBLG2G4eiQOECBo/Qh0UgrcXAAegA5AHjgDnAScDtAC3wDAIDLyxG wBpxWsMEXYuDBXG4mDjO0+NsB2A/4ATgvQCJ1vsweBhAXVD0QiVMVnEUX8eJ2uFBpEahzGbrYKPD pNaIfQqpfJC0LBc2qOqthoygs4X9YXExK/bHXZ5Uv1/sT7qt/k5LdlxREdrLu2LiaD6gseibLxp7 CsV4m8nVbomUQy1CUzASCRoDuXAsL7aoNZomp8MdaFF3FpJDnS06b76r+qbHrfp6o17TYAn6rG0t WrvY2QJVAtLD0Iku6KED2fyTqHZhOQ58QYbhAIfIj9OVeoTUNohjbADXaK5+fmPA2Cl7MSe8mLPu xZwYOuHFnHCCTngxJ7yYE17MCS/mhMCcEJgTXswJL+aEF3NKXoxWFq8AKIchQ/bUaiBynmaIlFAz y7Erk/aAm/VgDeaaeO0ort6wGa4Ihs54wlyaL7V5SvPl7IJV4CVjeykW6wu3mELlaGdv2EyufdTu bdFGJo7kckcmY+Eo11d7Q+P5gD+7I9Q+lgv4suSwONkQ/xlsSGR3UOdO9jFuucZ2w1LcsBQ3LMUN S3HDUtywFDcsxY36xg3FcaO+caO+caO+cYNgqO5fYvADgFRj21HoEIV2UKtGP0X2UOAEmE7tLcvV 69XbW5pUNv7JOVWotCvWe2Ovx9t7oHT0VsN+7Y7+jmK7yRjsi2cH+FJ8OGaNTi4Xi4fHQicPlYd8 mZH28EQ+gGYu6QT5CQN0wgyd+FM5ttNrK4QK5SnSaSAkFHhHcz4bVpZzV2gWxvWTYRpHsFsEqhBF I8YqWT7Nxii7oUSqGRZLyFFu1wb3QOM2aEjumtxORXnutsIvl7bebWwvR7cqA/+wpDNxy1adqV6j Cy+j6nrT7jVro5LG7IyFoihvarxTQD900IMD1ImUI78FqFlxQ52HFuBPx2lULTfi2kj1bHMtZhMd rZA+3dyKMccyNKaUrp0eIB3ACaiU1dQ6lDl/tta6JJPI8t+vflewhTJ+XyZs37tXP5qN9HW0cP5b gjV3YDQzP9guePsO9M2d4z10ymAPZ/8g3e1O9AYSJ+cKHeNHSqVj4x1zcpzinXgXy852b43Pco1P 2DdBMelqIWlQT4FoJ2xN15BMNymuyCqk2ojjIpqpSMLsGerHqttQTR6tHDsW8Opb9Y3exrGJ/Xy1 OsZXJ8cDDoVyp1I52L8LB2mkowmcz5rgD8rsK6vwx3JSG5fYtf18I49N80CMXvbNS9pDXQTrFan/ HYdixyGrOGw2DpuNw2bjsNk4bDYOm5Wd/eO4PgV4DlCz2ThsVo4Cfuwdl9b1wyJ84AcJqo+yMBdW Jl64gJYGbz/QmF7F6azV0p3QUtTSVvGabnQ9M8PbIyTN8EY3TT4D59Vpbp9NDd+Yd7QV9xW7522C KVSMWONhF68IHb2T7Xedey2SDxhMwWJnR140muDw+Es7o9H07sPxzNKOSFcyEB1PtzVYfPZIsd14 98fFwpgYHOnx+jJDgfbxAnJ5jjfIGH8VfqCVTk0piyf0SSENNb9Hnr8VQFGCrrVTfPLbpAuk1uSz 5cNHenvCiVU36nmTZJ42K/LzWrEFBz5QMYcK4VS+YoqMpO2prnadICXe7WIp5sgnq/+N742Mdrt1 Vr+DmyBQ8srUF6SzLWy2melRZJfjFklDTdqpkm6QyeAUQTJiGxU+n6hUhCMnTy6u/RyHZOiX/wjv Cclrmum8TAl6iXIl1mFX5KsAKWNNSjPlVwPkNHPb2lacCqNLgpPuUNhKOSX2qVjcLUqNymIvDNOW a4vC2NrzHV7OJ5T9oIQTPYIG9Eh9wbfpj2ztK2yr5zM5c1qREzWm0cr0F2+6+q1bIMG17H/fWf0X PvFn3+O/L+9Ro+/t+kSjFXoQqEh4DYA0K+wtwr683Q80XR1UsCXqbSxi8KH6wFcfXJIGcnXroHs/ hARDunepPvDVB5ekAcwFVaOI5+S3H+jVgw7wvQPio5ci5VM/6vjitE/WMwN0zYmvNw+65WaIGY+F cKOv5m/qAYFUDm4H1lRXPrV0IKQRMwOVZn8m2Ba0NVTG+71hm7bi7OoPpyutxqnk6aIgqNZ+zoea uyIekzfirD7Jh8rjLd6IA6P3dRTaTfFIsmNO6lnX7ccE3zm6lWfb7YeoswJNCmS2GnU1qrZbj1z5 XGMzEsJbLObWjIzhNeZyEK1BOa63Qob/v/Vw7nbGSn5/KeasXxd8Awd7+xYHfL6Bxb7egwM+LiQm ultbuycSiYlUa2tqIlE4MtHZOXGkUDg6EYlMHIVgKFcuIVc2QUn/I+bKFHs38+OteXOtZr4mV86o fr1cWYU2iG57sjx2bXoEdkn6VkIeSfoWY0/U80g5Ofj3yyN1sCf5xJdq/3ruKI9jsLMY1RUW8Goz U9yaQf5y1sil+Lz1uCCXNv16WWP1sPAi6oytWWP1DeIVxzvbjO8SzAg1Uh9EbteRb2gCzk1yP5f6 eHIsbaDohY44eYNMCIVPprdiiY2nRxe8kv3/Q/eurHtBKPfjp1mceVGzfAdyKLLPU8OM1qYDEzkz pQOTFMY+KYNJySeqKdRxKGnlE9UUwnYKnjeFOi6FOi6FOi6FOi6FOi6FOi6FOi6FOi6FOi6FOi4l 1XH6Wl4YwdUKoPOOMuVE2Vpmm8XGQaQVFFqpGKceD1U5cmEOOUi5j1zcoWlXr+i2HN1svHh5jurj qWh4d3+4LdHr85STXosvbLZ2BmxCRREo7IwFRnNi9+TcZLcjGLO0psKOTyeHO1uaQ32JYLffgpLZ 3GazOJvVDRa/M9EfbDaJ+XB33muyBvwOr1Gts4fBNhzT8TbhU/DnyOyvzTTUkBPJS4MrZR70RgrJ jrKPjdy4uZamUoa/eUolpxUq3GilOIU3beg1TfTkSjwjnVpB0k9V5uYMbQn/YNjiNKhOCKpHH52s frk95miYVOhamvkgsmIS7QBk/SrSGAflbNc/z5Hxk6v3VRAjSC0leXYjg6tnb9SvJgnRqSPeIDVJ PkNuk9XenLDyV7fmbIW9Lqhg9aqcr/GD1S8gX3N1JelwCvihg8X/AfjR0b8cu+W30K/bN+v8yvwH hI8sPY31Zvgfrv0cz+P3FMIP8Pw71jcb+MzcOeGmxZPCew4+fuNJ4RT2mkf1BECgf7RK71CT3New px51pnxGp6vlt0r4EfrNoAbGI3fZaQQZKtI5u5SGhcVvPHPiwx8+/fyXjv/mXae5sfr6d77D7a/9 yZ/gKe16SpKVjd0HHYkSP+gXASbqdaGJtdH8stKEdctE7ScCauqGNaDgNWHTy5B2rYvVCKE2AtdG dLEa0cVqRBerEV2sRnSxGutdrEY0I/AEuliW2grJlIoO7vHKJr0Mk+3nCumIiuub28Sou9lj0Lfp WsUG8VuHPiZ8ZGE01ONvVqqmVBqnfb8gEMNIvkhh+IvgVQNqH5Kp7MjobbLNgyrYNt4/93N6wdHG /7j6FC9Xb+btg4OT/Hyxpsf3sNcUx/n13lu/R/h76b11BdBn/BnUppT7e9lDdJ4ou0c6n6MWLSku 2R+VntTBorEKV/JFBlzpFU7yTXR14zN976eckuoXejvGiV/t0CLURd/6U4q22kZteICKH1qAXh+l z01XqNRXSjoBm8HhGt4KxaklTiEyv1zt8tMoCirVN7cXvYJq8WT19V8ufKUfZDC2/jt4S/d6/6gH oYA4qfndCBuhF5e3/u6IfnPUxuiXRlt/Z3S9XxVt/U3RCBtFZbwDbdQJ/Dp1Eu+z7cIZ626ck87g zHkP28sqqJr3o8U6j/e4DrAb2SL7I/a0hCDH/iQK+pUUXtnbtW/f3MhQdHz5ptuWz506enhqGb80 Zv8XsnuqXwplbmRzdHJlYW0KZW5kb2JqCjgyIDAgb2JqCjg4MjAKZW5kb2JqCjkgMCBvYmoKPDwg L1R5cGUgL0ZvbnQgL1N1YnR5cGUgL1RydWVUeXBlIC9CYXNlRm9udCAvT1dSVUdIK0hlbHZldGlj YU5ldWUgL0ZvbnREZXNjcmlwdG9yCjgzIDAgUiAvVG9Vbmljb2RlIDg0IDAgUiAvRmlyc3RDaGFy IDMzIC9MYXN0Q2hhciAzOCAvV2lkdGhzIFsgMjc4IDU3NyA3OTkKMzUwIDI3OCAwIF0gPj4KZW5k b2JqCjg0IDAgb2JqCjw8IC9MZW5ndGggODUgMCBSIC9GaWx0ZXIgL0ZsYXRlRGVjb2RlID4+CnN0 cmVhbQp4AV2QTWvEIBCG7/6KOW4PS0y2XXoQoWxZyKEfNO0PMDoGoVEx5pB/39HdbqGHF3zGeeer OfXPvXcZmvcU9IAZrPMm4RLWpBFGnJxnbQfG6XylGtOziqwh87AtGefe2wBCMIDmgyxLThvsnkwY 8a7E3pLB5PwEu6/TUCPDGuM3zugzcCYlGLRU7kXFVzUjNNW67w39u7ztyfWX8blFBJqIHO1lJB0M LlFpTMpPyATnUpzPkqE3/76OF8Nor5ldK0UR51xJJrqOkGRHKkF4ICQRHgreExZxyiF8oCeJrDX5 SFjEu8fa+rdJmaJc67adXlOixepJ685lF+fxdvUYYpm96gfHt4BwCmVuZHN0cmVhbQplbmRvYmoK ODUgMCBvYmoKMjYyCmVuZG9iago4MyAwIG9iago8PCAvVHlwZSAvRm9udERlc2NyaXB0b3IgL0Zv bnROYW1lIC9PV1JVR0grSGVsdmV0aWNhTmV1ZSAvRmxhZ3MgNCAvRm9udEJCb3gKWy05NTEgLTQ4 MSAxOTg3IDEwNzddIC9JdGFsaWNBbmdsZSAwIC9Bc2NlbnQgOTUyIC9EZXNjZW50IC0yMTMgL0Nh cEhlaWdodAo3MTQgL1N0ZW1WIDk1IC9MZWFkaW5nIDI4IC9YSGVpZ2h0IDUxNyAvU3RlbUggODAg L0F2Z1dpZHRoIDQ0NyAvTWF4V2lkdGggMjIyNQovRm9udEZpbGUyIDg2IDAgUiA+PgplbmRvYmoK ODYgMCBvYmoKPDwgL0xlbmd0aCA4NyAwIFIgL0xlbmd0aDEgMzA0NCAvRmlsdGVyIC9GbGF0ZURl Y29kZSA+PgpzdHJlYW0KeAGtVs9vE1cQnre7XifYkDjkV9lAdmNiJbFjm5jQgCB1qOPmh4CUNMVb KYSQGJwqgYgGRKUi5dJK9aHqpUhUVXureujBXJBjKhEVaKuqlRBS1UNzrdQ/gF5akvSb9WbrlBAi yq5n58335o2/N2/e2527dDlNXponmeITM+OzZF2qArV34sqcXrTFV9D152bPz9j2IpHScn763XNF W+0icumZ9Phk0abH0AcyAIq22A+9NzMzd7Vou/6Abpi+OGH3qy2wK2fGr9r/T0uw9QvjM+miv+cb 6JbZi+/M2XYKenL2Utr2F2wfe7y6+sXxz6/Fiz54CoibrlM5ZUghycL3EBpKC+YrrH74qG0n7o9V HP5T+GTmRbdePcOKfv32cNfj/pVG912lE2a5HcGKK+dXg9RQdhP98+67ViRrjP1w56k6KAoYIVFt UNzB33XTyxSkRtoJl4Yg3UHPwHqoAJIKacE8Cb332lR9Ik/bYGAUUTX/BuktNH2rh8gjucgr/Ug+ dIcG81Q+lLopxEdmXqy+n0/Q7gWwlcdOtyNUSNd7pxI5cQaGFALQZqAlh/RkTm5Onkz5TT2rZ/sn s3pSz4xP5pRmS6MjnTUjeo6GU1N4vpEycnFTc5pp0zyEOArHwRC4Z01EeNuOAG1BkWU4uUKDek4O DKVeT+XmE1ounjA1w9B7c4tDqdxiQjNME16qwxSMefpFzm5wVtvQX1aMMowYCGFmsxwTlhQwcovZ rJbFTCzEb+QF2QBmyj5yc29exIdS3BX3GxoDfsNvgIeZQOzy0OBwqhdMDGay7YmUUqIkpR6HKHy9 oOexUrr9BaV0x1ZSWrGllFY6TNel1AfOlZzSqo1T6t8koU6G4xtkeL6Y4fkNMrxzXYarN89wjcMb JGvBtsbKcN0LynD9VjL80pYyvMthui7DGjjv4gw3OBmOazlyihYZnv9PydJTa/h5U767JOXiEcVE LY4uiNRDXrkRpz4ucZr6WdknmJdUggcZ0AKHlgItkYs9qY9vsVcawP0x0BgJ8ZP0A7zclObzDls0 gvMIUlaJPfsAElmAo/wIaOUCgnGrfIlwCPWmcHZENAa3dZs24GLARQoDCgaAKga40MI5+ii6Txg+ Y6fP8IkbKz+LWGzlvPTp8ifSjeWD0vdgi/lIR6WHFBRxZnOb/xl3PVqt0HiBgaEMZm4wY12xhBMR ugY2QdfZuhF4K+xm2KzbHcYeJugpYawxoJUAKgMqlTlzqmWgtgQIMBAoASQG8E5yhrQx0FYEAk4a BNgoENeDAlXA3+OrOoijB/1VSE6Piz5E4wYboz0+KkOjHtIC6YL0QVKQDOQqpGy0gHfRWpQmjouZ tkC3PkCi/T7cnbHO/QdiHbV1NWHhb1J3iyfsGniJ9+6NnDrVn/Q2ej27PI1N9/5tTk6OiMJKUhQG j73SoygDilzf1FfSHFxJYmF43X7jdaMIanThaWt3m0Jwbn+uVWzH3KKYWwh6n607nVV9jjWL8hJF Sxbx2ZWxg4fsKCmVPQzsKQHCDIRLgE0rw9pCHTyk4+mlkqcwCiSEAuGiCVPoBRTNWpT/VTQoLnfs mcUzNsLXs2pIOpu5v/w3NrjAWfaXMMRD7NFRrqMCQJXqgj0aFFknWwD6ACQJeRPCX7BXIB9ArkO+ hNyCfAfZPopt9Qsav0OkUSrwVxXCYYNUq/6mQHF7CONIJHKERZwLd3eH0WZ3CK7Vz7A8G11u0JXo ayELRbiE6r58YSoajfawTh6NRm0dY90R7eiqPHt5ejo9F86kp6+k56Ym1j6ssZX5K5eniU/EE6dO jrzWF+xbczqextc9/QNzHrEICmVuZHN0cmVhbQplbmRvYmoKODcgMCBvYmoKMTM3MQplbmRvYmoK ODggMCBvYmoKKFdlYiBvZiBOYXRpb25zKQplbmRvYmoKODkgMCBvYmoKKG1hY09TIFZlcnNpb24g MTAuMTQuNSBcKEJ1aWxkIDE4RjIwM1wpIFF1YXJ0eiBQREZDb250ZXh0KQplbmRvYmoKOTAgMCBv YmoKKFBhZ2VzKQplbmRvYmoKOTEgMCBvYmoKKEQ6MjAxOTA3MTIwNzQ4MjdaMDAnMDAnKQplbmRv YmoKMSAwIG9iago8PCAvVGl0bGUgODggMCBSIC9Qcm9kdWNlciA4OSAwIFIgL0NyZWF0b3IgOTAg MCBSIC9DcmVhdGlvbkRhdGUgOTEgMCBSIC9Nb2REYXRlCjkxIDAgUiA+PgplbmRvYmoKeHJlZgow IDkyCjAwMDAwMDAwMDAgNjU1MzUgZiAKMDAwMDM3OTIyNCAwMDAwMCBuIAowMDAwMDAzODQwIDAw MDAwIG4gCjAwMDAyOTkzNDAgMDAwMDAgbiAKMDAwMDAwMDAyMiAwMDAwMCBuIAowMDAwMDAzODIw IDAwMDAwIG4gCjAwMDAwMDM5NjUgMDAwMDAgbiAKMDAwMDI4ODQ3MCAwMDAwMCBuIAowMDAwMzY2 ODY1IDAwMDAwIG4gCjAwMDAzNzY3NTkgMDAwMDAgbiAKMDAwMDI5MTk5OCAwMDAwMCBuIAowMDAw MDA0MjA2IDAwMDAwIG4gCjAwMDAyODU3MTEgMDAwMDAgbiAKMDAwMDMxNjU0MSAwMDAwMCBuIAow MDAwMzAyNTYwIDAwMDAwIG4gCjAwMDAzNDI1NTQgMDAwMDAgbiAKMDAwMDAwNDE3MiAwMDAwMCBu IAowMDAwMzAyMzQxIDAwMDAwIG4gCjAwMDAzMDIxMjIgMDAwMDAgbiAKMDAwMDI5OTU0NSAwMDAw MCBuIAowMDAwMjg1NzM0IDAwMDAwIG4gCjAwMDAyODg0NDkgMDAwMDAgbiAKMDAwMDI4ODUwNiAw MDAwMCBuIAowMDAwMjkxOTc3IDAwMDAwIG4gCjAwMDAyOTY3NDEgMDAwMDAgbiAKMDAwMDI5MjAz NSAwMDAwMCBuIAowMDAwMjk2NzIwIDAwMDAwIG4gCjAwMDAyOTY4NjkgMDAwMDAgbiAKMDAwMDI5 Njk5MCAwMDAwMCBuIAowMDAwMzAxOTk3IDAwMDAwIG4gCjAwMDAzMDE4NzMgMDAwMDAgbiAKMDAw MDMwMTc0OCAwMDAwMCBuIAowMDAwMzAxNjI2IDAwMDAwIG4gCjAwMDAzMDE1MDIgMDAwMDAgbiAK MDAwMDMwMTM3OCAwMDAwMCBuIAowMDAwMzAxMTIwIDAwMDAwIG4gCjAwMDAzMDA4NjEgMDAwMDAg biAKMDAwMDI5OTYzOSAwMDAwMCBuIAowMDAwMjk5NzQyIDAwMDAwIG4gCjAwMDAyOTk3OTQgMDAw MDAgbiAKMDAwMDI5OTg0NiAwMDAwMCBuIAowMDAwMjk5NDkzIDAwMDAwIG4gCjAwMDAyOTk1ODcg MDAwMDAgbiAKMDAwMDI5OTAzNiAwMDAwMCBuIAowMDAwMjk3MDY2IDAwMDAwIG4gCjAwMDAyOTkw MTUgMDAwMDAgbiAKMDAwMDI5OTE2NCAwMDAwMCBuIAowMDAwMjk5Mjg1IDAwMDAwIG4gCjAwMDAz MDA2ODggMDAwMDAgbiAKMDAwMDMwMDQyNiAwMDAwMCBuIAowMDAwMzAwMzAzIDAwMDAwIG4gCjAw MDAzMDAxNzkgMDAwMDAgbiAKMDAwMDI5OTk1MCAwMDAwMCBuIAowMDAwMjk5ODk4IDAwMDAwIG4g CjAwMDAyOTk2OTAgMDAwMDAgbiAKMDAwMDI5OTQ0MyAwMDAwMCBuIAowMDAwMzAwMDcyIDAwMDAw IG4gCjAwMDAzMDAxMjggMDAwMDAgbiAKMDAwMDMwMDU0NyAwMDAwMCBuIAowMDAwMzAwNjAzIDAw MDAwIG4gCjAwMDAzMDA4MDUgMDAwMDAgbiAKMDAwMDMwMDk4MyAwMDAwMCBuIAowMDAwMzAxMDM5 IDAwMDAwIG4gCjAwMDAzMDEyMzcgMDAwMDAgbiAKMDAwMDMwMTI5MyAwMDAwMCBuIAowMDAwMzAy MjM3IDAwMDAwIG4gCjAwMDAzMDIyOTMgMDAwMDAgbiAKMDAwMDMwMjQ1NiAwMDAwMCBuIAowMDAw MzAyNTEyIDAwMDAwIG4gCjAwMDAzMDI4NDQgMDAwMDAgbiAKMDAwMDMwMzExNSAwMDAwMCBuIAow MDAwMzE2NTE5IDAwMDAwIG4gCjAwMDAzMTY5NzUgMDAwMDAgbiAKMDAwMDMxNzI0OCAwMDAwMCBu IAowMDAwMzQyNTMyIDAwMDAwIG4gCjAwMDAzNDMxMzEgMDAwMDAgbiAKMDAwMDM0Mjc5NCAwMDAw MCBuIAowMDAwMzQzMTExIDAwMDAwIG4gCjAwMDAzNDM0MDMgMDAwMDAgbiAKMDAwMDM2Njg0MyAw MDAwMCBuIAowMDAwMzY3NTYxIDAwMDAwIG4gCjAwMDAzNjc4MjcgMDAwMDAgbiAKMDAwMDM3Njcz OCAwMDAwMCBuIAowMDAwMzc3MzAzIDAwMDAwIG4gCjAwMDAzNzY5NDUgMDAwMDAgbiAKMDAwMDM3 NzI4MyAwMDAwMCBuIAowMDAwMzc3NTY4IDAwMDAwIG4gCjAwMDAzNzkwMjkgMDAwMDAgbiAKMDAw MDM3OTA1MCAwMDAwMCBuIAowMDAwMzc5MDgzIDAwMDAwIG4gCjAwMDAzNzkxNTggMDAwMDAgbiAK MDAwMDM3OTE4MiAwMDAwMCBuIAp0cmFpbGVyCjw8IC9TaXplIDkyIC9Sb290IDU1IDAgUiAvSW5m byAxIDAgUiAvSUQgWyA8M2E0YWJhNTM3MzlmZmE5MDU2MzM0NzZmOWYyZjkxM2U+CjwzYTRhYmE1 MzczOWZmYTkwNTYzMzQ3NmY5ZjJmOTEzZT4gXSA+PgpzdGFydHhyZWYKMzc5MzI5CiUlRU9GCg== --Apple-Mail=_B291E1EF-AAF9-45E8-BCF5-E52D447CB525 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=us-ascii Sincerely, Henry Story --Apple-Mail=_B291E1EF-AAF9-45E8-BCF5-E52D447CB525-- From nobody Fri Jul 12 05:22:20 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D092912004D for ; Thu, 11 Jul 2019 18:22:59 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.107 X-Spam-Level: X-Spam-Status: No, score=-0.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.247, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, PDS_NO_HELO_DNS=1.295, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id apt3BJgLtQCQ for ; Thu, 11 Jul 2019 18:22:58 -0700 (PDT) Received: from mail-oi1-f182.google.com (mail-oi1-f182.google.com [209.85.167.182]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F0F26120046 for ; Thu, 11 Jul 2019 18:22:57 -0700 (PDT) Received: by mail-oi1-f182.google.com with SMTP id a127so6067977oii.2 for ; Thu, 11 Jul 2019 18:22:57 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=9ecN4iBbnw+hXvnaekRcOElqsxLz1fQ2oWQJsrPq18M=; b=ZzYToEROXX6OEHOHFz2JWJBQolgwO0hxBCov8fbaUX5vFchCLxJOLJfLsnDuV27c6/ CjMpYB1GPGzmhi3J+5KpezWxLAYjx9zY02XJJ+s+1G0fK/tVV+gVW778PJ8VtbjhRqhm faezOn5dqZM+j7pXU4EHu4dLr3xWPBA4SoEUM63F61nBcm2hDamjITFu110iIHhhUzHw 0W0YHZHvDGdkqBAQLvV6a+rOzs5NwpVZpKxWAGq2e38LyAtzJb6iaASGo4dWuHtq/j+V YCBpDxrFL1h8f+Rop3oyGNvA/B/Gzdvy16Wx7fH0helP1Ku4U6ms5QZZ33K5B8lK8LRD gvMg== X-Gm-Message-State: APjAAAXnDDm6Byg6KNVIEjPzxmP9RNxBcRTcquGUqrrI/zVboqXigkdd HEyi+XsmmpG8ISqT/F5BzOYk5p9N7BKzcDyPC7o= X-Google-Smtp-Source: APXvYqwSaGw2w0yO6HOBAxpEI5oNV7ssmnCozEbk8aVj0/glzfzjJXgim5n2GMY4oL6hKJV+1AChPUTQ+XP6wxpakc0= X-Received: by 2002:aca:bfd4:: with SMTP id p203mr4533947oif.95.1562894576883; Thu, 11 Jul 2019 18:22:56 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> In-Reply-To: <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> From: Phillip Hallam-Baker Date: Thu, 11 Jul 2019 21:22:47 -0400 Message-ID: To: Bret Jordan Cc: Dominique Lazanski , smart@irtf.org, IETF SecDispatch Content-Type: multipart/alternative; boundary="000000000000139cb3058d71c04f" Archived-At: X-Mailman-Approved-At: Fri, 12 Jul 2019 05:22:20 -0700 Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Jul 2019 01:23:00 -0000 --000000000000139cb3058d71c04f Content-Type: text/plain; charset="UTF-8" It is an interesting read. But I see a very important distinction that needs to be made between compromise of user end points and compromise of server end points. Most breaches that occur are when an enterprise is penetrated and the firewall is the first and last line of defense. So Percy the Pinhead clicks on a link in an email and six hours later the attacker has root privilege on the corporate server. This is not Percy's fault, the fault is that a single mistake by a single employee results in compromise of data Percy was never authorized to access. So right now we have systems where one compromise at any one of 10,000 endpoints results in a breach. Now lets consider using some 1980s style end to end cryptography. So that the ultra important recipe data is only available to the dozen members of group. This improves matters because we have reduced the points of compromise from 10,000 cooks and service staff to 12 trusted employees. That is a start but we are still vulnerable to a single end point compromise so lets apply threshold cryptography so members of group W only have one half of the decryption key, the other is on the server and both halves of the key are needed to perform decryption. In this scenario, we now require two separate compromises of two different end points. On Wed, Jul 10, 2019 at 11:29 AM Bret Jordan wrote: > Dominique, > > I have read over your draft, and I think it highlights some very key > things we all need to look at and address. Thanks for putting these ideas > down on paper. Hopefully this I-D can help us all start a broader > discussion to improve things. > > SMART / SecDispatch, > > If you have not yet read this I-D, I would encourage you to look at it. > It is a very fast read. > > Thanks, > Bret > PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 > "Without cryptography vihv vivc ce xhrnrw, however, the only thing that > can not be unscrambled is an egg." > > On Jul 8, 2019, at 12:54 PM, Dominique Lazanski > wrote: > > Cross posting to this mailing list. > > Dominique > > A new version of I-D, draft-lazanski-smart-users-internet-00.txt > has been successfully submitted by Dominique Lazanski and posted to the > IETF repository. > > Name: draft-lazanski-smart-users-internet > Revision: 00 > Title: An Internet for Users Again > Document date: 2019-07-08 > Group: Individual Submission > Pages: 12 > URL: > https://www.ietf.org/internet-drafts/draft-lazanski-smart-users-internet-00.txt > Status: > https://datatracker.ietf.org/doc/draft-lazanski-smart-users-internet/ > Htmlized: > https://tools.ietf.org/html/draft-lazanski-smart-users-internet-00 > Htmlized: > https://datatracker.ietf.org/doc/html/draft-lazanski-smart-users-internet > > > Abstract: > RFC 3552 introduces a threat model that does not include endpoint > security. In the fifteen years since RFC 3552 security issues and > cyber attacks have increased, especially on the endpoint. This > document proposes a new approach to Internet cyber security protocol > development that focuses on the user of the Internet, namely those > who use the endpoint and are the most vulnerable to attacks. > -- > Smart mailing list > Smart@irtf.org > https://www.irtf.org/mailman/listinfo/smart > > > _______________________________________________ > Secdispatch mailing list > Secdispatch@ietf.org > https://www.ietf.org/mailman/listinfo/secdispatch > --000000000000139cb3058d71c04f Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
It = is an interesting read. But I see a very important distinction that needs t= o be made between compromise of user end points and compromise of server en= d points.

<= /div>
Most breaches t= hat occur are when an enterprise is penetrated and the firewall is the firs= t and last line of defense. So Percy the Pinhead clicks on a link in an ema= il and six hours later the attacker has root privilege on the corporate ser= ver. This is not Percy's fault, the fault is that a single mistake by a= single employee results in compromise of data Percy was never authorized t= o access.

<= /div>
So right now we= have systems where one compromise at any one of 10,000 endpoints results i= n a breach.=C2=A0

Now let= s consider using some 1980s style end to end cryptography. So that the ultr= a important recipe data is only available to the dozen members of group. Th= is improves matters because we have reduced the points of compromise from 1= 0,000 cooks and service staff to 12 trusted employees.

That is a start but we are still vulnerable t= o a single end point compromise so lets apply threshold cryptography so mem= bers of group W only have one half of the decryption key, the other is on t= he server and both halves of the key are needed to perform decryption. In t= his scenario, we now require two separate compromises of two different end = points.


On Wed, Jul 10, 2019 at 11:29 AM Bret Jordan <jordan.ietf@gmail.com> wrote:
Dominique,

I have read over your draft, and I thin= k it highlights some very key things we all need to look at and address. Th= anks for putting these ideas down on paper.=C2=A0 Hopefully this I-D can he= lp us all start a broader discussion to improve things.

SMART / SecDispatch,

If you have not yet rea= d this I-D, I would encourage you to look at it.=C2=A0 It is a very fast re= ad.=C2=A0

Thanks,
Bret
PGP Fingerprint:=C2=A063B4 FC53 680A 6B7D 1447 =C2=A0F2C0 74F8 ACAE 7415 0050
"With= out cryptography vihv vivc ce xhrnrw, however, the only thing that can not = be unscrambled is an egg."

On Jul 8, 2019, at 12:54 PM, Domini= que Lazanski <dml@lastpresslabel.com> wrote:

<= div dir=3D"ltr">
Cross posting to this mailing list.

Dominique= =C2=A0

A new version of I-D, draft-lazanski-smart-users-internet= -00.txt
has been successfully submitted by Dominique Lazanski and posted= to the
IETF repository.

Name: =C2=A0 =C2=A0 =C2=A0 =C2=A0draft-l= azanski-smart-users-internet
Revision: =C2=A0 =C2=A000
Title: =C2=A0 = =C2=A0 =C2=A0 =C2=A0An Internet for Users Again
Document date: =C2=A0 = =C2=A02019-07-08
Group: =C2=A0 =C2=A0 =C2=A0 =C2=A0Individual Submission=
Pages: =C2=A0 =C2=A0 =C2=A0 =C2=A012
URL: =C2=A0=C2=A0=C2=A0=C2=A0= =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0https://www.ietf.org/internet-drafts/draft-lazanski-smart-use= rs-internet-00.txt
Status: =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0=C2=A0https://datatracker.ietf.org/= doc/draft-lazanski-smart-users-internet/
Htmlized: =C2=A0=C2=A0=C2= =A0=C2=A0=C2=A0=C2=A0https://tools.ietf.o= rg/html/draft-lazanski-smart-users-internet-00
Htmlized: =C2=A0=C2= =A0=C2=A0=C2=A0=C2=A0=C2=A0https:/= /datatracker.ietf.org/doc/html/draft-lazanski-smart-users-internet
<= br>
Abstract:
=C2=A0=C2=A0RFC 3552 introduces a threat model that doe= s not include endpoint
=C2=A0=C2=A0security. In the fifteen years since = RFC 3552 security issues and
=C2=A0=C2=A0cyber attacks have increased, e= specially on the endpoint. This
=C2=A0=C2=A0document proposes a new appr= oach to Internet cyber security protocol
=C2=A0=C2=A0development that fo= cuses on the user of the Internet, namely those
=C2=A0=C2=A0who use the = endpoint and are the most vulnerable to attacks.=C2=A0
--
Smart mailing list
Smart@irtf.org
https://www.irtf.org/mailman/listi= nfo/smart

_________________= ______________________________
Secdispatch mailing list
Secdispatch@ietf.= org
https://www.ietf.org/mailman/listinfo/secdispatch
--000000000000139cb3058d71c04f-- From nobody Fri Jul 12 08:07:12 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A1409120405 for ; Fri, 12 Jul 2019 08:07:08 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2 X-Spam-Level: X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ncsc.gov.uk Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 74NfjdfugbAo for ; Fri, 12 Jul 2019 08:07:03 -0700 (PDT) Received: from GBR01-CWL-obe.outbound.protection.outlook.com (mail-eopbgr110099.outbound.protection.outlook.com [40.107.11.99]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0EDA9120256 for ; Fri, 12 Jul 2019 08:07:02 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=U0ealzcSbYkV2cC3lGESghw7lnzcfxGqdu4E8Ieri3ObW2kLGDhrHSTFek0GORxYelTT2MPGZBwuCSH+9y0VkUkQ8+78mXsyS83yqOrw5GC9xsGoyQDNyV9U7WOqBb3e2kB81lkm5oNY/bfGzQB5kzMdJe8uMTkitvb0h4NrsXmsGLWTTlt+KPS4c5gxokKRmzawiu8xXASIlgj0yAZYaAi5BW2O4WE/qmXozTHKIHyqLi3pxrvn/+op1/Pwpl1EPGdTqxMQSTWtnl94neinrHDUku4LI/AhayaJfWbXXlh3GXXt/MxCINJUlTFk1godAZLo1+lY39G5cTsMpqOFGg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ChkV3y2B6kmw3trGKqsMlu8usagiEMFk6YEDyL7Fd1Y=; b=h/0ZNntkrJ+4lLBUO7tFf++nA2tQUd34OiS3wad7A94sB+nWo4ts8r7AEBbL4BHzNmh8CIlSWReOlMAnGrlGotCVWF7j8GVRSkK0DPrHLwFQ77GIPVKwz1FInmhay11CFL+hLkm8bDa9DFb2wet/su2xWUdRev1swsNSU4m8ZRVYYBk7gH6y2attJ8qCxrDu1q8V6Ce59aDc0oGJI+KeAcuFnHY3AdbJslWupnbTMXyb1GLT73vusMpXNws1kQQzbmeFB2cGWGjAytXBJWlj5s76+29bEDTtQtLr1GJiu1TfvoIobT7TdImNvj9Fbsz4bdcS+ETSZzxRzcoDrZeW7g== ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=ncsc.gov.uk;dmarc=pass action=none header.from=ncsc.gov.uk;dkim=pass header.d=ncsc.gov.uk;arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ncsc.gov.uk; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ChkV3y2B6kmw3trGKqsMlu8usagiEMFk6YEDyL7Fd1Y=; b=avyD02Qiw0WaIAF1vf3NvVcfC5SO3HzF5c0O7QP7kTxW5P4KIEItZgJ0OAqpxWB7zGFu2yh40o0kPjf6CUjzh83dbu8wxf4YSjkZCKKWkRhfKk3czTG1ENohIb+GEQZuHwR5L+tK7IFX8RdfHv9Srl7Noaeu9aXtpg83eYEx2iA= Received: from CWLP123MB1716.GBRP123.PROD.OUTLOOK.COM (20.176.58.85) by CWLP123MB2132.GBRP123.PROD.OUTLOOK.COM (20.176.60.80) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2073.11; Fri, 12 Jul 2019 15:06:58 +0000 Received: from CWLP123MB1716.GBRP123.PROD.OUTLOOK.COM ([fe80::f5dc:8f89:9af3:7ef8]) by CWLP123MB1716.GBRP123.PROD.OUTLOOK.COM ([fe80::f5dc:8f89:9af3:7ef8%5]) with mapi id 15.20.2052.022; Fri, 12 Jul 2019 15:06:58 +0000 From: Kirsty P To: "smart@irtf.org" Thread-Topic: Six SMART drafts Thread-Index: AQHVOMNzEUiDIlcmT0CejjWXLzsjfg== Date: Fri, 12 Jul 2019 15:06:58 +0000 Message-ID: Accept-Language: en-GB, en-US Content-Language: en-GB X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=Kirsty.p@ncsc.gov.uk; x-originating-ip: [51.141.34.27] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 7d7f4b07-5856-4e19-d04c-08d706da95c6 x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(7168020)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:CWLP123MB2132; x-ms-traffictypediagnostic: CWLP123MB2132: x-ms-exchange-purlcount: 9 x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:9508; x-forefront-prvs: 00963989E5 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(376002)(346002)(396003)(366004)(136003)(39850400004)(189003)(199004)(53754006)(13624006)(66574012)(71190400001)(14444005)(6506007)(2501003)(2906002)(55236004)(14454004)(1730700003)(256004)(8936002)(71200400001)(102836004)(186003)(81166006)(81156014)(3480700005)(6916009)(105004)(66066001)(6116002)(3846002)(7696005)(33656002)(99286004)(7116003)(316002)(26005)(606006)(476003)(236005)(6436002)(55016002)(74316002)(5640700003)(54896002)(86362001)(5660300002)(6306002)(9686003)(52536014)(478600001)(66946007)(486006)(25786009)(53936002)(66476007)(66556008)(2351001)(76116006)(64756008)(19627405001)(66446008)(68736007)(7736002)(8676002); DIR:OUT; SFP:1102; SCL:1; SRVR:CWLP123MB2132; H:CWLP123MB1716.GBRP123.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; received-spf: None (protection.outlook.com: ncsc.gov.uk does not designate permitted sender hosts) x-ms-exchange-senderadcheck: 1 x-microsoft-antispam-message-info: ML40D47AhK5KVhIQ+N31QVgMmmpfIaq4x/scDTdS4LjFT4WiC+yxVSOzAFQAOuJSpuAtdu3JowryENxAOGlaG+spV9/tn5YhcxErPP9uvxKi9fxB/2Pw07CzbRqVAq5bzbXFQRXKcjszxUgdpSxytfX0UoPQsYplE/95RL6rvbuyRbcDKXQcUUPgeE0x0W4FszzbouGRQAEHtZgLdToQ8lq1vf917H0JVtBULwVuKhw6V+MBUdQta3ytbUI9L7UpxzNoD+NiH21P+2Ov7KgWWXLDxDS0rUSq+8ROjmTFGZhg6OrW38O7KYNsb7C59Jyz8GGglastdIMiJuqbw4OPKxKeFKjyFGELNiVP5pq59yMqb2ZJm50CU+8YRvnJaYD7/KKuGIL7eECxg830r46qgn9sqhduTFv3K523xkmJmGY= Content-Type: multipart/alternative; boundary="_000_CWLP123MB171659B3DE145F9F9C7DF64FD7F20CWLP123MB1716GBRP_" MIME-Version: 1.0 X-OriginatorOrg: ncsc.gov.uk X-MS-Exchange-CrossTenant-Network-Message-Id: 7d7f4b07-5856-4e19-d04c-08d706da95c6 X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Jul 2019 15:06:58.1276 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 14aa5744-ece1-474e-a2d7-34f46dda64a1 X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: kirsty62596@ncsc.gov.uk X-MS-Exchange-Transport-CrossTenantHeadersStamped: CWLP123MB2132 Archived-At: Subject: [Smart] Six SMART drafts X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Jul 2019 15:07:09 -0000 --_000_CWLP123MB171659B3DE145F9F9C7DF64FD7F20CWLP123MB1716GBRP_ Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable Hi everyone, SMART has five drafts on the IETF Datatracker - all of these (plus one extra!) are on our Github page too. Each draft falls in one of four categories: 1. Research on attacks or defences enabled or disabled by IETF protocols= , and recommending protocol design fixes or considerations as a result =96 = including privacy considerations 2. Papers on principles/key concepts in attack defence, to underpin atta= ck defence research of protocols and evidence a threat landscape 3. Creating methodologies for researchers to consistently analyse protoc= ols for attack defence, and use these to perform such analysis 4. Scoping out specific security research problems outside of the above = three points. The sole aim of these scoping exercises is to create an Inter= net Draft and establish feasibility of creating a separate IRTF security re= search group on that specific security problem. The drafts are below, with a short description and a link to find out more.= If you're have comments, are supportive of the work or want to contribute = to a draft, please post on the list or email the authors saying so. Kirsty =3D=3D=3D=3D=3D=3D draft-taddei-smart-cless-introduction * Also known as CLESS: Capabilities and Limitations of Endpoint Securit= y Solutions: draft-taddei-smart-cless-introduction CLESS attempts to establish the capabilities and limitations of endpoint-only= security solutions and explore potential alternative approaches. draft-mcfadden-smart-endpoint-taxonomy-for-cless * Endpoint Taxonomy for CLESS: draft-mcfadden-smart-endpoint-taxonomy-f= or-cless CLESS discusses endpoints in general terms. It has been suggested that there = are classes of endpoints that have different characteristics. Those classes= may have completely different threat landscapes and the endpoints may have= completely different security capabilities. In support of the work on CLES= S, this document provides a taxonomy of endpoints that is intended to provi= de a foundation for further work on CLESS and research on approaches to pro= viding endpoint security alternatives in a diverse group of settings. draft-sasse-smart-secui-questions * Open Questions in Supporting Secure User Interactions: draft-sasse-sm= art-secui-questions Describes open questions in supporting usable security at the UI level. The= questions are split into defining a set of manageable security tasks for c= ountering the most common attacks, and the UI elements for signalling wheth= er an intended action is secure. draft-lazanski-smart-users-internet * An Internet for Users Again: draft-lazanski-smart-users-internet RFC 3552 introduces a threat model that does not include endpoint security.= In the fifteen years since RFC 3552 security issues and cyber attacks have= increased, especially on the endpoint. This document proposes a new approa= ch to Internet cyber security protocol development that focuses on the user= of the Internet, namely those who use the endpoint and are the most vulner= able to attacks. draft-moriarty-caris2 * Coordinating Attack Response at Internet Scale 2 Report: draft-moriarty-caris2 Coordinating Attack Response at Internet Scale (CARIS) 2, sponsored by the = Internet Society, took place 28 February and 1 March 2019 in Cambridge, Mas= sachusetts, USA. Participants spanned regional, national, international, an= d enterprise CSIRTs, operators, service providers, network and security ope= rators, transport operators and researchers, incident response researchers,= vendors, and participants from standards communities. This workshop continued the work started at the first CARIS workshop, with = a focus for CARIS 2 on scaling incident prevention and detection as the Int= ernet industry moves to stronger and a more ubiquitous deployment of sessio= n encryption. draft-mcfadden-smart-rfc3552-research-methodology * Methodology for Researching Security Considerations Sections: draft-m= cfadden-smart-rfc3552-research-methodology RFC3552 provides guidance to authors in crafting RFC text on Security Consi= derations. The RFC is more than fifteen years old. With the threat landscap= e and security ecosystem significantly changed since the RFC was published,= RFC3552 is a candidate for update. This draft proposes that, prior to draf= ting an update to RFC3552, an examination of recent, published Security Con= siderations sections be carried out as a baseline for how to improve RFC355= 2. It suggests a methodology for examining Security Considerations sections= in published RFCs and the extraction of both quantitative and qualitative = information that could inform a revision of the older guidance. This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk --_000_CWLP123MB171659B3DE145F9F9C7DF64FD7F20CWLP123MB1716GBRP_ Content-Type: text/html; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable

Hi everyo= ne,


SMART has= five drafts on the IET= F Datatracker - all of these (plus one extra!) are on our Github page too.


Each draf= t falls in one of four categories:

  1. Research on attacks or defences enable= d or disabled by IETF protocols, and recommending protocol design fixes or = considerations as a result =96 including privacy considerations
    2. =
  2. Papers on principles/key concepts in a= ttack defence, to underpin attack defence research of protocols and evidenc= e a threat landscape
  3. Creati= ng methodologies for researchers to consistently analyse protocols for atta= ck defence, and use these to perform such analysis
  4. Scoping out specific security research= problems outside of the above three points. The sole aim of these scoping = exercises is to create an Internet Draft and establish feasibility of creating a separate IRTF security research group on that sp= ecific security problem.

The draft= s are below, with a short description and a link to find out more. If you'r= e have comments, are supportive of the work or want to contribute to a draft, please post on the list or email the authors saying= so.


Kirsty


=3D=3D=3D=3D=3D=3D

draft-= taddei-smart-cless-introduction

CLESS=  attempts to establish the capabilities and limitations of endpoint-only security so= lutions and explore potential alternative approaches.

draft-= mcfadden-smart-endpoint-taxonomy-for-cless

CLESS=  discusses endpoints in general terms. It has been suggested that there are classes o= f endpoints that have different characteristics. Those classes may have com= pletely different threat landscapes and the endpoints may have completely d= ifferent security capabilities. In support of the work on CLESS, this document provides a taxonomy of endp= oints that is intended to provide a foundation for further work on CLESS an= d research on approaches to providing endpoint security alternatives in a d= iverse group of settings.

draft-= sasse-smart-secui-questions

Describes= open questions in supporting usable security at the UI level. The question= s are split into defining a set of manageable security tasks for countering the most common attacks, and the UI elements for sign= alling whether an intended action is secure.

draft-= lazanski-smart-users-internet

  • An Intern= et for Users Again: draft-lazanski-smart-users-internet
    • <= /ul>

    RFC 3552 introduces a threat model that does not include endpoi= nt security. In the fifteen years since RFC 3552 security issues and cyber attacks have increased, especially on the endpoint. This = document proposes a new approach to Internet cyber security protocol develo= pment that focuses on the user of the Internet, namely those who use the en= dpoint and are the most vulnerable to attacks.

    draft-= moriarty-caris2

    • Coordinating Attack Response at Internet Scale 2 Report: draft-moriarty-caris2

      • Coordinat= ing Attack Response at Internet Scale (CARIS) 2, sponsored by the Internet = Society, took place 28 February and 1 March 2019 in Cambridge, Massachusetts, USA. Participants spanned regional, national, international= , and enterprise CSIRTs, operators, service providers, network and security= operators, transport operators and researchers, incident response research= ers, vendors, and participants from standards communities.

      This work= shop continued the work started at the first CARIS workshop, with a focus f= or CARIS 2 on scaling incident prevention and detection as the Internet industry moves to stronger and a more ubiquitous deploymen= t of session encryption.

      draft-= mcfadden-smart-rfc3552-research-methodology

      RFC3552 p= rovides guidance to authors in crafting RFC text on Security Considerations= . The RFC is more than fifteen years old. With the threat landscape and security ecosystem significantly changed since the RFC was p= ublished, RFC3552 is a candidate for update. This draft proposes that, prio= r to drafting an update to RFC3552, an examination of recent, published Sec= urity Considerations sections be carried out as a baseline for how to improve RFC3552. It suggests a method= ology for examining Security Considerations sections in published RFCs and = the extraction of both quantitative and qualitative information that could = inform a revision of the older guidance.


This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk --_000_CWLP123MB171659B3DE145F9F9C7DF64FD7F20CWLP123MB1716GBRP_-- From nobody Fri Jul 12 09:05:11 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A5546120134 for ; Fri, 12 Jul 2019 09:05:03 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.702 X-Spam-Level: X-Spam-Status: No, score=-0.702 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, PDS_NO_HELO_DNS=1.295, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ulueJBLV6T5V for ; Fri, 12 Jul 2019 09:05:00 -0700 (PDT) Received: from mail-pl1-x634.google.com (mail-pl1-x634.google.com [IPv6:2607:f8b0:4864:20::634]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 601DA12004E for ; Fri, 12 Jul 2019 09:05:00 -0700 (PDT) Received: by mail-pl1-x634.google.com with SMTP id az7so4982813plb.5 for ; Fri, 12 Jul 2019 09:05:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=CJmvHHHj6oXs/IVdWWV/CQRvOj7BxTs3avEYx5Qu6CQ=; b=L4YlFgqixq3hiq8F+Qk1mkbM1JIyo69EDFCMy5W7wXTIqR2UMQ3jX6R6+gSJP74uuV cvCwBy4q6GFZLMdNL52cNzga2BvepohOzj3r9U91uTTkTO9viSP9OpSuzBFOmhxbq24F t1fpBURfLLfRA0AIWLzxmSJ3ej0gk/ZDN1D3a02d6I1cKxtv+bzcWXx5h+fxnTO0XrZK +tlExJjapPE9xwncWQ8Mba4AnmJWnjKunSsrvjRi26PAMcI0eZbw8FpE/Ib3izoxv73V G0YpIn/zpS8EXP1kjTRxzv1p578Xke4q0UYqTFAVc8XxTeNOMp1zftA26IfaAhKC40y9 YqgQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=CJmvHHHj6oXs/IVdWWV/CQRvOj7BxTs3avEYx5Qu6CQ=; b=VgJ0eoKV32tLhcVUMOBpiotZvXOHh2dbjc4F0r5h5ldb8y/yMCZQ1I/tvpyZIoj6la opY4n5lq3u+oqydbzmKdCSkuMcUvjOgBOJHj/ew57QYirLeCcvNv0BZ+/353/1N3QaLs pekRXM3GyCvfXVYCAYu9w1/Y63ukXfe3ZWsPMP9NGv8e4WEehP5v3KbAWigaO8lGh2jr CKEnN6FCI+whqsGSp5pSMYUAQChA3MOEEbzJz42+lAtbze/mfTKmiA9+afZbsvNGR6rj lgs4+NluiwbcUUG7mXA716EcaPW1/3w+MrmOcd8d1rYDIo3CD4xAX4grzyG5WbJi6T8n mtfg== X-Gm-Message-State: APjAAAULVDX4FK5rNxltZj4G2friYfxX/cxmE5PNAqoQp4GVM8kAPYVl nWAlyVDWehs8d970OrfQDsU= X-Google-Smtp-Source: APXvYqxjfOLBSU8Qo3vAYo3xwytxMOTHp9omSTf1XyHqf8hpVNqtZCmB7I+LRntUnuXQKpqHJuEC1w== X-Received: by 2002:a17:902:28e9:: with SMTP id f96mr11839192plb.114.1562947499868; Fri, 12 Jul 2019 09:04:59 -0700 (PDT) Received: from ?IPv6:2605:a601:a990:4d00:515e:2123:8528:f4f5? ([2605:a601:a990:4d00:515e:2123:8528:f4f5]) by smtp.gmail.com with ESMTPSA id m4sm17770645pff.108.2019.07.12.09.04.57 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 12 Jul 2019 09:04:58 -0700 (PDT) From: Bret Jordan Message-Id: Content-Type: multipart/alternative; boundary="Apple-Mail=_3BBA3A5F-9FBC-4AFB-897F-6ACC2E24EF91" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Fri, 12 Jul 2019 10:04:55 -0600 In-Reply-To: Cc: Dominique Lazanski , smart@irtf.org, IETF SecDispatch To: Phillip Hallam-Baker References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Jul 2019 16:05:04 -0000 --Apple-Mail=_3BBA3A5F-9FBC-4AFB-897F-6ACC2E24EF91 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Unfortunately I think you are misunderstanding the attack surface how = attacks can work and wrongfully assume how threat actors and intrusions = sets operate. It is not always about exfiltrating your super secret = =E2=80=9Crecipe" as you call it. So database encryption will not always = help you, nor will putting your database on a block chain. Yes, it can = reduce the attack surface or exposure of your data under legitimate use. = But once the server is compromised, the attacker can simply pull = decrypted information from memory. Or can continue to move laterally = through the organization and pull the data of endpoints that do have = access to the data. Further, the threat actor may not be interested in = exfiltrating the data at all. But may simply be interested in using = your =E2=80=9C1980s=E2=80=9D crypto as you call it to encrypt your = database with their own key. This attack is commonly called Ransomware.=20= The key point is that you can not patch your way into security. This is = a common misunderstand that many people have outside of operational = security. End points are always weak and highly vulnerable to attack. = It does not matter if they are end user devices, servers, IoT devices, = or components soldered in to SCADA systems. I would encourage you to look at the MITRE ATT&CK framework to better = understand how these attacks work and how threat actors can disrupt, = exfiltrate, and destroy a company.=20 We have to realize that the security model has changed since some of = these documents were written. Yes, pervasive monitoring of users on the = internet is a problem, but it is only 1 piece of a large pie of = problems. We in the IETF need to communicate better with operational = security, so that we can design solutions that hollistically help = improve security and not make one part better at the huge expense of = everything else.=20 Thanks, Bret PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 "Without cryptography vihv vivc ce xhrnrw, however, the only thing that = can not be unscrambled is an egg." > On Jul 11, 2019, at 7:22 PM, Phillip Hallam-Baker = wrote: >=20 > It is an interesting read. But I see a very important distinction that = needs to be made between compromise of user end points and compromise of = server end points. >=20 > Most breaches that occur are when an enterprise is penetrated and the = firewall is the first and last line of defense. So Percy the Pinhead = clicks on a link in an email and six hours later the attacker has root = privilege on the corporate server. This is not Percy's fault, the fault = is that a single mistake by a single employee results in compromise of = data Percy was never authorized to access. >=20 > So right now we have systems where one compromise at any one of 10,000 = endpoints results in a breach.=20 >=20 > Now lets consider using some 1980s style end to end cryptography. So = that the ultra important recipe data is only available to the dozen = members of group. This improves matters because we have reduced the = points of compromise from 10,000 cooks and service staff to 12 trusted = employees. >=20 > That is a start but we are still vulnerable to a single end point = compromise so lets apply threshold cryptography so members of group W = only have one half of the decryption key, the other is on the server and = both halves of the key are needed to perform decryption. In this = scenario, we now require two separate compromises of two different end = points. >=20 >=20 > On Wed, Jul 10, 2019 at 11:29 AM Bret Jordan > wrote: > Dominique, >=20 > I have read over your draft, and I think it highlights some very key = things we all need to look at and address. Thanks for putting these = ideas down on paper. Hopefully this I-D can help us all start a broader = discussion to improve things. >=20 > SMART / SecDispatch, >=20 > If you have not yet read this I-D, I would encourage you to look at = it. It is a very fast read.=20 >=20 > Thanks, > Bret > PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 > "Without cryptography vihv vivc ce xhrnrw, however, the only thing = that can not be unscrambled is an egg." >=20 >> On Jul 8, 2019, at 12:54 PM, Dominique Lazanski = > wrote: >>=20 >> Cross posting to this mailing list. >>=20 >> Dominique=20 >>=20 >> A new version of I-D, draft-lazanski-smart-users-internet-00.txt >> has been successfully submitted by Dominique Lazanski and posted to = the >> IETF repository. >>=20 >> Name: draft-lazanski-smart-users-internet >> Revision: 00 >> Title: An Internet for Users Again >> Document date: 2019-07-08 >> Group: Individual Submission >> Pages: 12 >> URL: = https://www.ietf.org/internet-drafts/draft-lazanski-smart-users-internet-0= 0.txt = >> Status: = https://datatracker.ietf.org/doc/draft-lazanski-smart-users-internet/ = >> Htmlized: = https://tools.ietf.org/html/draft-lazanski-smart-users-internet-00 = >> Htmlized: = https://datatracker.ietf.org/doc/html/draft-lazanski-smart-users-internet = >>=20 >>=20 >> Abstract: >> RFC 3552 introduces a threat model that does not include endpoint >> security. In the fifteen years since RFC 3552 security issues and >> cyber attacks have increased, especially on the endpoint. This >> document proposes a new approach to Internet cyber security = protocol >> development that focuses on the user of the Internet, namely those >> who use the endpoint and are the most vulnerable to attacks.=20 >> --=20 >> Smart mailing list >> Smart@irtf.org >> https://www.irtf.org/mailman/listinfo/smart = >=20 > _______________________________________________ > Secdispatch mailing list > Secdispatch@ietf.org > https://www.ietf.org/mailman/listinfo/secdispatch = --Apple-Mail=_3BBA3A5F-9FBC-4AFB-897F-6ACC2E24EF91 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 Unfortunately I think you are misunderstanding the attack = surface how attacks can work and wrongfully assume how threat actors and = intrusions sets operate.  It is not always about exfiltrating your = super secret =E2=80=9Crecipe" as you call it.  So database = encryption will not always help you, nor will putting your database on a = block chain. Yes, it can reduce the attack surface or exposure of your = data under legitimate use. But once the server is compromised, the = attacker can simply pull decrypted information from memory. Or can = continue to move laterally through the organization and pull the data of = endpoints that do have access to the data.  Further, the threat = actor may not be interested in exfiltrating the data at all.  But = may simply be interested in using your =E2=80=9C1980s=E2=80=9D crypto as = you call it to encrypt your database with their own key.  This = attack is commonly called Ransomware. 

The key point is that = you can not patch your way into security.  This is a common = misunderstand that many people have outside of operational security. =  End points are always weak and highly vulnerable to attack. =  It does not matter if they are end user devices, servers, IoT = devices, or components soldered in to SCADA systems.

I would encourage you to = look at the MITRE ATT&CK framework to better understand how these = attacks work and how threat actors can disrupt, exfiltrate, and destroy = a company. 

We have to realize that the security model has changed since = some of these documents were written. Yes, pervasive monitoring of users = on the internet is a problem, but it is only 1 piece of a large pie of = problems.  We in the IETF need to communicate better with = operational security, so that we can design solutions that hollistically = help improve security and not make one part better at the huge expense = of everything else. 



Thanks,
Bret
PGP = Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 = 0050
"Without = cryptography vihv vivc ce xhrnrw, however, the only thing that can not = be unscrambled is an = egg."

On Jul 11, 2019, at 7:22 PM, Phillip Hallam-Baker <phill@hallambaker.com> wrote:

It is = an interesting read. But I see a very important distinction that needs = to be made between compromise of user end points and compromise of = server end points.

Most breaches that = occur are when an enterprise is penetrated and the firewall is the first = and last line of defense. So Percy the Pinhead clicks on a link in an = email and six hours later the attacker has root privilege on the = corporate server. This is not Percy's fault, the fault is that a single = mistake by a single employee results in compromise of data Percy was = never authorized to access.

So right now we have = systems where one compromise at any one of 10,000 endpoints results in a = breach. 

Now lets consider = using some 1980s style end to end cryptography. So that the ultra = important recipe data is only available to the dozen members of group. = This improves matters because we have reduced the points of compromise = from 10,000 cooks and service staff to 12 trusted employees.

That is a start but we are still vulnerable to = a single end point compromise so lets apply threshold cryptography so = members of group W only have one half of the decryption key, the other = is on the server and both halves of the key are needed to perform = decryption. In this scenario, we now require two separate compromises of = two different end points.


On Wed, Jul = 10, 2019 at 11:29 AM Bret Jordan <jordan.ietf@gmail.com> wrote:
Dominique,

I have read over your draft, and I = think it highlights some very key things we all need to look at and = address. Thanks for putting these ideas down on paper.  Hopefully = this I-D can help us all start a broader discussion to improve = things.

SMART = / SecDispatch,

If you have not yet read this I-D, I would encourage you to = look at it.  It is a very fast read. 

Thanks,=
Bret
PGP = Fingerprint: 63B4 FC53 680A = 6B7D 1447  F2C0 74F8 ACAE 7415 0050
"Without cryptography vihv vivc ce = xhrnrw, however, the only thing that can not be unscrambled is an = egg."

On Jul 8, 2019, at 12:54 PM, Dominique Lazanski <dml@lastpresslabel.com> wrote:

Cross posting = to this mailing list.

Dominique 

A= new version of I-D, draft-lazanski-smart-users-internet-00.txt
has been successfully submitted by Dominique Lazanski and = posted to the
IETF repository.

Name:       =  draft-lazanski-smart-users-internet
Revision:   =  00
Title:        An Internet for = Users Again
Document date:    2019-07-08
Group:        Individual Submission
Pages:        12
URL: =            https://www.ietf.org/internet-drafts/draft-lazanski-smart-users= -internet-00.txt
Status: =         https://datatracker.ietf.org/doc/draft-lazanski-smart-users-int= ernet/
Htmlized: =       https://tools.ietf.org/html/draft-lazanski-smart-users-internet= -00
Htmlized:       https://datatracker.ietf.org/doc/html/draft-lazanski-smart-user= s-internet


Abstract:
  RFC 3552 introduces a threat model that does not = include endpoint
  security. In the fifteen = years since RFC 3552 security issues and
  cyber = attacks have increased, especially on the endpoint. This
  document proposes a new approach to Internet = cyber security protocol
  development that = focuses on the user of the Internet, namely those
  who use the endpoint and are the most vulnerable = to attacks. 
--
Smart mailing list
Smart@irtf.org
https://www.irtf.org/mailman/listinfo/smart

_______________________________________________
Secdispatch mailing list
Secdispatch@ietf.org
https://www.ietf.org/mailman/listinfo/secdispatch

= --Apple-Mail=_3BBA3A5F-9FBC-4AFB-897F-6ACC2E24EF91-- From nobody Fri Jul 12 12:35:34 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 51C9C1207D2 for ; Fri, 12 Jul 2019 12:35:23 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.702 X-Spam-Level: X-Spam-Status: No, score=-0.702 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, PDS_NO_HELO_DNS=1.295, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mSqybrYx-vHF for ; Fri, 12 Jul 2019 12:35:19 -0700 (PDT) Received: from mail-io1-xd2d.google.com (mail-io1-xd2d.google.com [IPv6:2607:f8b0:4864:20::d2d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C70881200D7 for ; Fri, 12 Jul 2019 12:35:18 -0700 (PDT) Received: by mail-io1-xd2d.google.com with SMTP id m24so22912410ioo.2 for ; Fri, 12 Jul 2019 12:35:18 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=rcCf+HKztI7RKsv3xBlzdYYEYg+efvgziHZSRXMnbHI=; b=JWxDnh4SuK1PXW4KNPIISb2tedASI3NXgkqN1XK7g974f0Oa31/KeekhijbIpTrRAQ t4r+GfW3uPy6UA4C998EqnmdeOkua+gbQ8fJbWlsifFo/vBAq5VNeqArOOwb0+wGhdPd 8j7T+mdydefpmGdbpjJiOiZ2AB377FzSi/YvrCCkuEDcOlrkA5LxA3+i7SDzQkIsUkZO Lz6x6c7Qs/K9jV1xKKr8VRt4v+kgEsPLEMMZy/xPRMBZYM3L65J7ThWOrMCqp2QVZ4Hz snuABRNO2r+ju3KEwEP+TJfF9ELB0J8nY8ZYioQmprEVvcjIE4mMUIxhCKRe0+UbmRIu to/A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=rcCf+HKztI7RKsv3xBlzdYYEYg+efvgziHZSRXMnbHI=; b=qHmwMbYSgbQwwgmuTM7jUUmVYcwJz/xtDN+8X8H4+r88FL95lRCfKi9BMLkWtnYEkN pEmqmDuhYebkqkH9rWwQ3F7IHrJbPwXzd6nyFpFZPIytVNA4bQBVA9d0C/gfxh8tV41f MH+MxNDVUHlEbHokn5i7jaR+swQ705DAkkUH/fIuZW9bdCaUrTRWwGAN+1Apo/Hreb2/ tRwWLhyabE/DOxYy9E82qpjMrFTi8wKFdCsD1CAdzEW3dPvUoeUVAb57qYR2Dy3mvYDC bTJDl/vRWcBRxK7W9YuZ+aBZXE338z9qdPbS7FXqVsrclQVyiNwu7cCXSFr+LuMBj3Gj B32w== X-Gm-Message-State: APjAAAXA7EyXM2EyrfQebiFvAn+OTOSiEPEmJ+SeOt2fqdlyqrUfNl8g agw75XnKRaVpueJ/kp1EhDBHj8Vs X-Google-Smtp-Source: APXvYqwY09xhsVf2tXvz5PxFefSjSLcvXXnldQEJr3a3KyfVhhW0wVa2fS4XKP43sV/aSfsegUpMWA== X-Received: by 2002:a5d:8447:: with SMTP id w7mr13042274ior.197.1562960117875; Fri, 12 Jul 2019 12:35:17 -0700 (PDT) Received: from [172.16.255.50] ([216.194.115.4]) by smtp.gmail.com with ESMTPSA id m10sm14192957ioj.75.2019.07.12.12.35.16 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 12 Jul 2019 12:35:17 -0700 (PDT) From: Bret Jordan Message-Id: <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> Content-Type: multipart/alternative; boundary="Apple-Mail=_90501082-AB5D-4DF4-805A-9DEDFBF6DDA9" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Fri, 12 Jul 2019 13:35:10 -0600 In-Reply-To: Cc: Dominique Lazanski , smart@irtf.org, IETF SecDispatch To: Phillip Hallam-Baker References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Jul 2019 19:35:24 -0000 --Apple-Mail=_90501082-AB5D-4DF4-805A-9DEDFBF6DDA9 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 As with all things crypto, block-chain, quantum, cloud, and snake-oil, = they are not ubiquitously deployable across the entire eco-system of end = users, applications, enterprises, and governments. You say that this = can all be fixed in 5-years, I think you are off by an order of = magnitude. =20 Some organizations are still running Windows XP, some parts of critical = infrastructure still have very old soldered in equipment. Some critical = applications and resources needed for regulatory compliance can take = months to years to even get patched. What about cost optimized IoT = devices that can never run any security software or have no plans of = ever being updated? What about direct to telco connections with 5G = enabled devices? We still can not even patch end devices reliability = without a risk of bricking them. =20 The problem is not just about protecting data base data. Yes, this is = one piece in the entire security pie. But it is not the only part. = Trying to distill things down to say that it is, gives a false sense of = security. Just like the hyperbole and dogma that if your connection is = perfectly encrypted and free from external tracking, it is secure and = safe. Threat actors including CDNs and services providers can still = compromise the end user, end device, data, and track all of their where = about and everything they do. The attack surface and needs of end users and enterprises are much more = extensive than a single point solution. Yes, I have looked at your = proposed Mesh network. It is very neat, and very cool. I would love to = work with you on it. I see many places it can potentially be used. But = thinking that in 5 years everyone is going to forklift the entire = Internet and go with your solution and single solution is not realistic. This is the problem with the IETF as a whole. Too few understand = day-2-day operational security. This is one thing that SMART really = needs to help with. We need to start a bunch of discussions and get a = bunch of research done to help every aspect of the IETF. We need to = invite people from FIRST and other industry groups to help with this = effort. =20 Some think that SMART is a tiny amount of work. But SMART could be one = of the most important pieces of work that the IETF / IRTF does in the = next 10 years.=20 =20 Thanks, Bret PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 "Without cryptography vihv vivc ce xhrnrw, however, the only thing that = can not be unscrambled is an egg." > On Jul 12, 2019, at 12:40 PM, Phillip Hallam-Baker = wrote: >=20 > Applied properly, the cloud service never has anything but encrypted = data and a pile of random numbers. >=20 > Mesh group encryption is genuinely end to end. There is never = plaintext on the server. The server never has sufficient information to = decrypt. Assuming only that the random numbers used to split keys are = unguessable, the system is information theroretic secure with respect to = the requirement for two keys to be used to decrypt. >=20 > There will always be an endpoint vulnerability in that data has to be = decrypted to present it to the user, edit it, etc. But reducing the = attack surface from every server and every endpoint in the enterprise to = the dozen or so endpoints with a need to know the information is = powerful. >=20 >=20 > I have not considered the ransomware issue in depth because the = solution is pretty obvious - take backups, verify the ability to recover = at regular intervals. That said, obvious solutions can be very complex = to deploy. >=20 > This is actually one of the very few applications that Blockchain or = at least the Haber-Stornetta hash chain could help us with. A DARE = container is an append only log with optional Merkle Tree integrity = checking. So we can do a continuous backup to a write only storage array = behind a very very simple and limited firewall that only allows the = backup requests through. If the online system is compromized, we recover = from the firewalled, write-only array.=20 >=20 > Getting to that point in the mesh is likely to take five years. But = Microsoft owns GitHub. And Git could at least in theory be extended to = provide some of this functionality.=20 >=20 > Alternatively, bring down the BitCoin infrastructure by auditing = Tether and the payment infrastrastructure that makes ransomware = profitable would be gone. >=20 > On Fri, Jul 12, 2019 at 12:05 PM Bret Jordan > wrote: > Unfortunately I think you are misunderstanding the attack surface how = attacks can work and wrongfully assume how threat actors and intrusions = sets operate. It is not always about exfiltrating your super secret = =E2=80=9Crecipe" as you call it. So database encryption will not always = help you, nor will putting your database on a block chain. Yes, it can = reduce the attack surface or exposure of your data under legitimate use. = But once the server is compromised, the attacker can simply pull = decrypted information from memory. Or can continue to move laterally = through the organization and pull the data of endpoints that do have = access to the data. Further, the threat actor may not be interested in = exfiltrating the data at all. But may simply be interested in using = your =E2=80=9C1980s=E2=80=9D crypto as you call it to encrypt your = database with their own key. This attack is commonly called Ransomware.=20= >=20 > The key point is that you can not patch your way into security. This = is a common misunderstand that many people have outside of operational = security. End points are always weak and highly vulnerable to attack. = It does not matter if they are end user devices, servers, IoT devices, = or components soldered in to SCADA systems. >=20 > I would encourage you to look at the MITRE ATT&CK framework to better = understand how these attacks work and how threat actors can disrupt, = exfiltrate, and destroy a company.=20 >=20 > We have to realize that the security model has changed since some of = these documents were written. Yes, pervasive monitoring of users on the = internet is a problem, but it is only 1 piece of a large pie of = problems. We in the IETF need to communicate better with operational = security, so that we can design solutions that hollistically help = improve security and not make one part better at the huge expense of = everything else.=20 >=20 >=20 >=20 > Thanks, > Bret > PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 > "Without cryptography vihv vivc ce xhrnrw, however, the only thing = that can not be unscrambled is an egg." >=20 >> On Jul 11, 2019, at 7:22 PM, Phillip Hallam-Baker = > wrote: >>=20 >> It is an interesting read. But I see a very important distinction = that needs to be made between compromise of user end points and = compromise of server end points. >>=20 >> Most breaches that occur are when an enterprise is penetrated and the = firewall is the first and last line of defense. So Percy the Pinhead = clicks on a link in an email and six hours later the attacker has root = privilege on the corporate server. This is not Percy's fault, the fault = is that a single mistake by a single employee results in compromise of = data Percy was never authorized to access. >>=20 >> So right now we have systems where one compromise at any one of = 10,000 endpoints results in a breach.=20 >>=20 >> Now lets consider using some 1980s style end to end cryptography. So = that the ultra important recipe data is only available to the dozen = members of group. This improves matters because we have reduced the = points of compromise from 10,000 cooks and service staff to 12 trusted = employees. >>=20 >> That is a start but we are still vulnerable to a single end point = compromise so lets apply threshold cryptography so members of group W = only have one half of the decryption key, the other is on the server and = both halves of the key are needed to perform decryption. In this = scenario, we now require two separate compromises of two different end = points. >>=20 >>=20 >> On Wed, Jul 10, 2019 at 11:29 AM Bret Jordan > wrote: >> Dominique, >>=20 >> I have read over your draft, and I think it highlights some very key = things we all need to look at and address. Thanks for putting these = ideas down on paper. Hopefully this I-D can help us all start a broader = discussion to improve things. >>=20 >> SMART / SecDispatch, >>=20 >> If you have not yet read this I-D, I would encourage you to look at = it. It is a very fast read.=20 >>=20 >> Thanks, >> Bret >> PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 >> "Without cryptography vihv vivc ce xhrnrw, however, the only thing = that can not be unscrambled is an egg." >>=20 >>> On Jul 8, 2019, at 12:54 PM, Dominique Lazanski = > wrote: >>>=20 >>> Cross posting to this mailing list. >>>=20 >>> Dominique=20 >>>=20 >>> A new version of I-D, draft-lazanski-smart-users-internet-00.txt >>> has been successfully submitted by Dominique Lazanski and posted to = the >>> IETF repository. >>>=20 >>> Name: draft-lazanski-smart-users-internet >>> Revision: 00 >>> Title: An Internet for Users Again >>> Document date: 2019-07-08 >>> Group: Individual Submission >>> Pages: 12 >>> URL: = https://www.ietf.org/internet-drafts/draft-lazanski-smart-users-internet-0= 0.txt = >>> Status: = https://datatracker.ietf.org/doc/draft-lazanski-smart-users-internet/ = >>> Htmlized: = https://tools.ietf.org/html/draft-lazanski-smart-users-internet-00 = >>> Htmlized: = https://datatracker.ietf.org/doc/html/draft-lazanski-smart-users-internet = >>>=20 >>>=20 >>> Abstract: >>> RFC 3552 introduces a threat model that does not include endpoint >>> security. In the fifteen years since RFC 3552 security issues and >>> cyber attacks have increased, especially on the endpoint. This >>> document proposes a new approach to Internet cyber security = protocol >>> development that focuses on the user of the Internet, namely those >>> who use the endpoint and are the most vulnerable to attacks.=20 >>> --=20 >>> Smart mailing list >>> Smart@irtf.org >>> https://www.irtf.org/mailman/listinfo/smart = >>=20 >> _______________________________________________ >> Secdispatch mailing list >> Secdispatch@ietf.org >> https://www.ietf.org/mailman/listinfo/secdispatch = >=20 --Apple-Mail=_90501082-AB5D-4DF4-805A-9DEDFBF6DDA9 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 As = with all things crypto, block-chain, quantum, cloud, and snake-oil, they = are not ubiquitously deployable across the entire eco-system of end = users, applications, enterprises, and governments.  You say that = this can all be fixed in 5-years, I think you are off by an order of = magnitude.  

Some= organizations are still running Windows XP, some parts of critical = infrastructure still have very old soldered in equipment.  Some = critical applications and resources needed for regulatory compliance can = take months to years to even get patched. What about cost optimized IoT = devices that can never run any security software or have no plans of = ever being updated?  What about direct to telco connections with 5G = enabled devices? We still can not even patch end devices reliability = without a risk of bricking them.  

The problem is not just about = protecting data base data.  Yes, this is one piece in the entire = security pie.  But it is not the only part.  Trying to distill = things down to say that it is, gives a false sense of security. =  Just like the hyperbole and dogma that if your connection is = perfectly encrypted and free from external tracking, it is secure and = safe. Threat actors including CDNs and services providers can still = compromise the end user, end device, data, and track all of their where = about and everything they do.

The attack surface and needs of end = users and enterprises are much more extensive than a single point = solution.  Yes, I have looked at your proposed Mesh network. It is = very neat, and very cool.  I would love to work with you on it. =  I see many places it can potentially be used.  But thinking = that in 5 years everyone is going to forklift the entire Internet and go = with your solution and single solution is not realistic.

This is = the problem with the IETF as a whole.  Too few understand day-2-day = operational security.  This is one thing that SMART really needs to = help with.  We need to start a bunch of discussions and get a bunch = of research done to help every aspect of the IETF.  We need to = invite people from FIRST and other industry groups to help with this = effort.  

Some think that SMART is a tiny amount of work.  But = SMART could be one of the most important pieces of work that the IETF / = IRTF does in the next 10 years. 


 
Thanks,
Bret
PGP = Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 = 0050
"Without = cryptography vihv vivc ce xhrnrw, however, the only thing that can not = be unscrambled is an = egg."

On Jul 12, 2019, at 12:40 PM, Phillip Hallam-Baker <phill@hallambaker.com> wrote:

Applied properly, the cloud service never has = anything but encrypted data and a pile of random numbers.

Mesh group encryption is genuinely end to end. = There is never plaintext on the server. The server never has sufficient = information to decrypt. Assuming only that the random numbers used to = split keys are unguessable, the system is information theroretic secure = with respect to the requirement for two keys to be used to = decrypt.

There will always be an endpoint vulnerability = in that data has to be decrypted to present it to the user, edit it, = etc. But reducing the attack surface from every server and every = endpoint in the enterprise to the dozen or so endpoints with a need to = know the information is powerful.


I = have not considered the ransomware issue in depth because the solution = is pretty obvious - take backups, verify the ability to recover at = regular intervals. That said, obvious solutions can be very complex to = deploy.

This is actually one of the very few = applications that Blockchain or at least the Haber-Stornetta hash chain = could help us with. A DARE container is an append only log with optional = Merkle Tree integrity checking. So we can do a continuous backup to a = write only storage array behind a very very simple and limited firewall = that only allows the backup requests through. If the online system is = compromized, we recover from the firewalled, write-only = array. 

Getting to that point = in the mesh is likely to take five years. But Microsoft owns GitHub. And = Git could at least in theory be extended to provide some of this = functionality. 

Alternatively, bring = down the BitCoin infrastructure by auditing Tether and the payment = infrastrastructure that makes ransomware profitable would be = gone.

On Fri, Jul 12, 2019 at 12:05 PM Bret = Jordan <jordan.ietf@gmail.com> wrote:
Unfortunately I think you are misunderstanding = the attack surface how attacks can work and wrongfully assume how threat = actors and intrusions sets operate.  It is not always about = exfiltrating your super secret =E2=80=9Crecipe" as you call it.  So = database encryption will not always help you, nor will putting your = database on a block chain. Yes, it can reduce the attack surface or = exposure of your data under legitimate use. But once the server is = compromised, the attacker can simply pull decrypted information from = memory. Or can continue to move laterally through the organization and = pull the data of endpoints that do have access to the data.  = Further, the threat actor may not be interested in exfiltrating the data = at all.  But may simply be interested in using your =E2=80=9C1980s=E2= =80=9D crypto as you call it to encrypt your database with their own = key.  This attack is commonly called Ransomware. 

The key = point is that you can not patch your way into security.  This is a = common misunderstand that many people have outside of operational = security.  End points are always weak and highly vulnerable to = attack.  It does not matter if they are end user devices, servers, = IoT devices, or components soldered in to SCADA systems.

I would encourage you to = look at the MITRE ATT&CK framework to better understand how these = attacks work and how threat actors can disrupt, exfiltrate, and destroy = a company. 

We have to realize that the security model has changed since = some of these documents were written. Yes, pervasive monitoring of users = on the internet is a problem, but it is only 1 piece of a large pie of = problems.  We in the IETF need to communicate better with = operational security, so that we can design solutions that hollistically = help improve security and not make one part better at the huge expense = of everything else. 



Thanks,=
Bret
PGP = Fingerprint: 63B4 FC53 680A = 6B7D 1447  F2C0 74F8 ACAE 7415 0050
"Without cryptography vihv vivc ce = xhrnrw, however, the only thing that can not be unscrambled is an = egg."

On Jul 11, 2019, at 7:22 PM, Phillip Hallam-Baker <phill@hallambaker.com> wrote:

It is an interesting read. But I see a very important = distinction that needs to be made between compromise of user end points = and compromise of server end points.

Most breaches that occur are when an enterprise is penetrated = and the firewall is the first and last line of defense. So Percy the = Pinhead clicks on a link in an email and six hours later the attacker = has root privilege on the corporate server. This is not Percy's fault, = the fault is that a single mistake by a single employee results in = compromise of data Percy was never authorized to access.

So right now we have systems where = one compromise at any one of 10,000 endpoints results in a = breach. 

Now lets = consider using some 1980s style end to end cryptography. So that the = ultra important recipe data is only available to the dozen members of = group. This improves matters because we have reduced the points of = compromise from 10,000 cooks and service staff to 12 trusted = employees.

That is a = start but we are still vulnerable to a single end point compromise so = lets apply threshold cryptography so members of group W only have one = half of the decryption key, the other is on the server and both halves = of the key are needed to perform decryption. In this scenario, we now = require two separate compromises of two different end points.


On Wed, Jul 10, 2019 at 11:29 AM Bret Jordan <jordan.ietf@gmail.com> wrote:
Dominique,

I have read over your = draft, and I think it highlights some very key things we all need to = look at and address. Thanks for putting these ideas down on paper.  = Hopefully this I-D can help us all start a broader discussion to improve = things.

SMART = / SecDispatch,

If you have not yet read this I-D, I would encourage you to = look at it.  It is a very fast read. 

Thanks,=
Bret
PGP = Fingerprint: 63B4 FC53 680A = 6B7D 1447  F2C0 74F8 ACAE 7415 0050
"Without cryptography vihv vivc ce = xhrnrw, however, the only thing that can not be unscrambled is an = egg."

On Jul 8, 2019, at 12:54 PM, Dominique Lazanski <dml@lastpresslabel.com> wrote:

Cross posting = to this mailing list.

Dominique 

A= new version of I-D, draft-lazanski-smart-users-internet-00.txt
has been successfully submitted by Dominique Lazanski and = posted to the
IETF repository.

Name:       =  draft-lazanski-smart-users-internet
Revision:   =  00
Title:        An Internet for = Users Again
Document date:    2019-07-08
Group:        Individual Submission
Pages:        12
URL: =            https://www.ietf.org/internet-drafts/draft-lazanski-smart-users= -internet-00.txt
Status: =         https://datatracker.ietf.org/doc/draft-lazanski-smart-users-int= ernet/
Htmlized: =       https://tools.ietf.org/html/draft-lazanski-smart-users-internet= -00
Htmlized:       https://datatracker.ietf.org/doc/html/draft-lazanski-smart-user= s-internet


Abstract:
  RFC 3552 introduces a threat model that does not = include endpoint
  security. In the fifteen = years since RFC 3552 security issues and
  cyber = attacks have increased, especially on the endpoint. This
  document proposes a new approach to Internet = cyber security protocol
  development that = focuses on the user of the Internet, namely those
  who use the endpoint and are the most vulnerable = to attacks. 
--
Smart mailing list
Smart@irtf.org
https://www.irtf.org/mailman/listinfo/smart

_______________________________________________
Secdispatch mailing list
Secdispatch@ietf.org
https://www.ietf.org/mailman/listinfo/secdispatch


= --Apple-Mail=_90501082-AB5D-4DF4-805A-9DEDFBF6DDA9-- From nobody Sat Jul 13 19:07:28 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6263C12006F for ; Sat, 13 Jul 2019 19:07:20 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.997 X-Spam-Level: X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DCsgnc1HaaCq for ; Sat, 13 Jul 2019 19:07:18 -0700 (PDT) Received: from mail-ot1-x32f.google.com (mail-ot1-x32f.google.com [IPv6:2607:f8b0:4864:20::32f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 165FB12006D for ; Sat, 13 Jul 2019 19:07:18 -0700 (PDT) Received: by mail-ot1-x32f.google.com with SMTP id x21so13269268otq.12 for ; Sat, 13 Jul 2019 19:07:18 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=mEZp7X4OuIA0tRChvK/Iq6BBGVxq+m4r/lH7sEp8AXk=; b=lyQsQ7eBDmt8diMHOGqnWgaUzh7GxUgs3S5CBIKaDqUz4jx+xzaQkJC1wIOzEH+nYm Qx4Ndr/mLWCjTehl1DPk4yUJle5eVYDYq+wYjP17xAcVuccJAUyY3XErTBn36bYw3UYA DHCJ+29EK+gOkBW/0z0G6sqkuLykZsvrsYxNf94M22PafPqpmazjQqtNTTOofLNeBUW7 tBopFewvw7tSmh5fjp57jU+Wq5JpCLw2fdCds0zpepPGdMm/xjmLVD8OX1phcj0HiWTd iPdvPlO6MAtX41yOPl3Wah9sCzlHuJDchqQW5Ho/Lor3ysFIsg5hSxkdcMlRgptA9IEl NiMQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=mEZp7X4OuIA0tRChvK/Iq6BBGVxq+m4r/lH7sEp8AXk=; b=P2XeIog+jfvJC6iPnpMuSHciwyh9qitKYs8I7CtA2xnAHhCL/h3msI1dVP3KiIB54f t4cfW6saCCkGLukXQP0VBmKQhlgn1+pFSMcUoCQmznMw6nn88G9WzAXLd6yEvJANKbaU +UbC3hyzn7aJQ5Zvr2omH+9+kiQgBzxoJt7BsbLz6MkhnWZMr2C3t6qGNnrvihkL08/R FqvSSECuCcgNAmL9K3vJuAiK1xKpuItAUff6uDEO8NWA3ye81MXtKIyiEznNpxHNV0IT 155xy9cdG8RuTtk7uYJ8g4rcG6kUWeiX9Y9QIaVGfQIWx/GzEALDcZn6TMHCLL4W0IQM v5kg== X-Gm-Message-State: APjAAAWjyqOgNyoQAkyXGdd+f8zn1nGVFhUA2jg0OwkW55BZtCyDIsVm Uf0EBBqcbzB13BxOctyeJSvwMGjK+19cm9M6trY= X-Google-Smtp-Source: APXvYqyCL9XIQUtZHksCv7melyD/YUezsTw8nl8E4TZ+xmMjoutJNkFZCdUR8cQrF+i99H81Rr92uOzR5pkwFv84VV0= X-Received: by 2002:a9d:76ce:: with SMTP id p14mr4586130otl.342.1563070037366; Sat, 13 Jul 2019 19:07:17 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> In-Reply-To: <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> From: Kathleen Moriarty Date: Sat, 13 Jul 2019 22:06:58 -0400 Message-ID: To: Dominique Lazanski Cc: smart@irtf.org, IETF SecDispatch Content-Type: multipart/alternative; boundary="000000000000561c80058d9a9a54" Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Jul 2019 02:07:20 -0000 --000000000000561c80058d9a9a54 Content-Type: text/plain; charset="UTF-8" Dominique, Thank you for your work on this draft. It's a good start toward broadening the conversation on the Internet threat model and I do agree that is necessary. The other recent threat model drafts don't cover the points raised, but none of the three threat model drafts cover all threats. I'm not sure if there are other threat model drafts I have missed as well. I like the focus, but think as the draft goes on, broadening the scope to look at the full threat model would be very helpful towards something the IETF participants might buy into (I could be wrong here, but this is what I suspect). We can't look solely at the end point as the IETF is concerned mostly with on-the-wire protocols. In some RFCs, there are clear requirements on end point security, but this is not particularly common. It would be good to see the sort of changes proposed added into a revision of 3552 in my opinion. However, we do need to think about surveillance and other threats too. One of DKG's points from a panel at RSA was that boxes that intercept traffic and are capable of decrypting that traffic is a target rich environment. I agree with that point. We are in a tough spot as crypto has become stronger, but the endpoints have not become more secure or even capable of detecting the threats that were blocked in-the-middle previously. I think adding this point into your draft would be helpful as we (as a community) rethink the threat model. I'd be very happy to discuss this further. Also - is this a request to present at SecDispatch? Thank you, Kathleen Sorry for the top-post, but I was not responding the the thread besides Dominique's initial message. >>> On Jul 8, 2019, at 12:54 PM, Dominique Lazanski >>> wrote: >>> >>> Cross posting to this mailing list. >>> >>> Dominique >>> >>> A new version of I-D, draft-lazanski-smart-users-internet-00.txt >>> has been successfully submitted by Dominique Lazanski and posted to the >>> IETF repository. >>> >>> Name: draft-lazanski-smart-users-internet >>> Revision: 00 >>> Title: An Internet for Users Again >>> Document date: 2019-07-08 >>> Group: Individual Submission >>> Pages: 12 >>> URL: >>> https://www.ietf.org/internet-drafts/draft-lazanski-smart-users-internet-00.txt >>> Status: >>> https://datatracker.ietf.org/doc/draft-lazanski-smart-users-internet/ >>> Htmlized: >>> https://tools.ietf.org/html/draft-lazanski-smart-users-internet-00 >>> Htmlized: >>> https://datatracker.ietf.org/doc/html/draft-lazanski-smart-users-internet >>> >>> >>> Abstract: >>> RFC 3552 introduces a threat model that does not include endpoint >>> security. In the fifteen years since RFC 3552 security issues and >>> cyber attacks have increased, especially on the endpoint. This >>> document proposes a new approach to Internet cyber security protocol >>> development that focuses on the user of the Internet, namely those >>> who use the endpoint and are the most vulnerable to attacks. >>> -- >>> Smart mailing list >>> Smart@irtf.org >>> https://www.irtf.org/mailman/listinfo/smart >>> >>> >>> _______________________________________________ >>> Secdispatch mailing list >>> Secdispatch@ietf.org >>> https://www.ietf.org/mailman/listinfo/secdispatch >>> >> >> > _______________________________________________ > Secdispatch mailing list > Secdispatch@ietf.org > https://www.ietf.org/mailman/listinfo/secdispatch > -- Best regards, Kathleen --000000000000561c80058d9a9a54 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Dominique,

Thank you f= or your work on this draft.=C2=A0 It's a good start toward broadening t= he conversation on the Internet threat model and I do agree that is necessa= ry.=C2=A0=C2=A0

The other recent threat model draf= ts don't cover the points raised, but none of the three threat model dr= afts cover all threats. I'm not sure if there are other threat model dr= afts I have missed as well.=C2=A0=C2=A0

I like the= focus, but think as the draft goes on, broadening the scope to look at the= full threat model would be very helpful towards something the IETF partici= pants might buy into (I could be wrong here, but this is what I suspect).= =C2=A0 We can't look solely at the end point as the IETF is concerned m= ostly with on-the-wire protocols.=C2=A0 In some RFCs, there are clear requi= rements on end point security, but this is not particularly common.=C2=A0 I= t would be good to see the sort of changes proposed added into a revision o= f 3552 in my opinion.=C2=A0 However, we do need to think about surveillance= and other threats too.=C2=A0 One of DKG's points from a panel at RSA w= as that boxes that intercept traffic and are capable of decrypting that tra= ffic is a target rich environment.=C2=A0 I agree with that point.=C2=A0=C2= =A0

We are in a tough spot as crypto has become st= ronger, but the endpoints have not become more secure or even capable of de= tecting the threats that were blocked in-the-middle previously.=C2=A0 I thi= nk adding this point into your draft would be helpful as we (as a community= ) rethink the threat model.

I'd be very happy = to discuss this further.

Also - is this a request = to present at SecDispatch?

Thank you,
Ka= thleen

Sorry for the top-post, but I was not respo= nding the the thread besides Dominique's initial message.

<= div>On Jul 8, 2019, at 12:54 PM, Dominique Lazanski <dml@lastpresslabel.com> wro= te:

Cross posting to this mailing list.

=
Dominique=C2=A0

A new version of I-D, draft-lazanski-sma= rt-users-internet-00.txt
has been successfully submitted by Dominique La= zanski and posted to the
IETF repository.

Name: =C2=A0 =C2=A0 =C2= =A0 =C2=A0draft-lazanski-smart-users-internet
Revision: =C2=A0 =C2=A000<= br>Title: =C2=A0 =C2=A0 =C2=A0 =C2=A0An Internet for Users Again
Documen= t date: =C2=A0 =C2=A02019-07-08
Group: =C2=A0 =C2=A0 =C2=A0 =C2=A0Indivi= dual Submission
Pages: =C2=A0 =C2=A0 =C2=A0 =C2=A012
URL: =C2=A0=C2= =A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0https://www.ietf.org/internet-drafts/draft-laz= anski-smart-users-internet-00.txt
Status: =C2=A0=C2=A0=C2=A0=C2=A0= =C2=A0=C2=A0=C2=A0=C2=A0https://datatr= acker.ietf.org/doc/draft-lazanski-smart-users-internet/
Htmlized: = =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0https= ://tools.ietf.org/html/draft-lazanski-smart-users-internet-00
Htmliz= ed: =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0https://datatracker.ietf.org/doc/html/draft-lazanski-smart-users-inte= rnet


Abstract:
=C2=A0=C2=A0RFC 3552 introduces a threat m= odel that does not include endpoint
=C2=A0=C2=A0security. In the fifteen= years since RFC 3552 security issues and
=C2=A0=C2=A0cyber attacks have= increased, especially on the endpoint. This
=C2=A0=C2=A0document propos= es a new approach to Internet cyber security protocol
=C2=A0=C2=A0develo= pment that focuses on the user of the Internet, namely those
=C2=A0=C2= =A0who use the endpoint and are the most vulnerable to attacks.=C2=A0
--
Smart mailing list
Smart@irtf.org
https://www.irtf.or= g/mailman/listinfo/smart

__= _____________________________________________
Secdispatch mailing list
Secdispatch@ietf.= org
https://www.ietf.org/mailman/listinfo/secdispatch


________________= _______________________________
Secdispatch mailing list
Secdispatch@ietf.= org
https://www.ietf.org/mailman/listinfo/secdispatch


--

Best regards,
Kathleen
--000000000000561c80058d9a9a54-- From nobody Sun Jul 14 03:26:10 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BD6BF120077 for ; Sun, 14 Jul 2019 03:26:02 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.3 X-Spam-Level: X-Spam-Status: No, score=-4.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kz_9rbs0fT_K for ; Sun, 14 Jul 2019 03:26:00 -0700 (PDT) Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 65788120018 for ; Sun, 14 Jul 2019 03:26:00 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 1CAAABE8E; Sun, 14 Jul 2019 11:25:57 +0100 (IST) X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GdlqFun7R9dp; Sun, 14 Jul 2019 11:25:55 +0100 (IST) Received: from [10.244.2.138] (95-45-153-252-dynamic.agg2.phb.bdt-fng.eircom.net [95.45.153.252]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 591A1BE74; Sun, 14 Jul 2019 11:25:55 +0100 (IST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1563099955; bh=mOJs+8kyg8UspA1bRCtycCb/UhoEfnh4lYGW+Iw48c0=; h=To:Cc:References:From:Subject:Date:In-Reply-To:From; b=2daMKA2MM69KWB+9XqF7tLhmLlzF/Rlu/n2KLbWIbIl9T/SEhKd+HGlSDKGH60s5F FYa+5RsbGspy24ePlSukf9UHJ+4KJq9S77k75bHeYIq/8Xea/sIFUFzjbtn1WYAcsK 5vyVxnpwLlYSKArgJr53wViAbQ0++s63cneyR8Bo= To: Kathleen Moriarty , Dominique Lazanski Cc: smart@irtf.org, IETF SecDispatch References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> From: Stephen Farrell Openpgp: id=5BB5A6EA5765D2C5863CAE275AB2FAF17B172BEA; url= Autocrypt: addr=stephen.farrell@cs.tcd.ie; prefer-encrypt=mutual; keydata= mQINBFo9UDIBEADUH4ZPcUnX5WWRWO4kEkHea5Y5eEvZjSwe/YA+G0nrTuOU9nemCP5PMvmh 5Cg8gBTyWyN4Z2+O25p9Tja5zUb+vPMWYvOtokRrp46yhFZOmiS5b6kTq0IqYzsEv5HI58S+ QtaFq978CRa4xH9Gi9u4yzUmT03QNIGDXE37honcAM4MOEtEgvw4fVhVWJuyy3w//0F2tzKr EMjmL5VGuD/Q9+G/7abuXiYNNd9ZFjv4625AUWwy+pAh4EKzS1FE7BOZp9daMu9MUQmDqtZU bUv0Q+DnQAB/4tNncejJPz0p2z3MWCp5iSwHiQvytYgatMp34a50l6CWqa13n6vY8VcPlIqO Vz+7L+WiVfxLbeVqBwV+4uL9to9zLF9IyUvl94lCxpscR2kgRgpM6A5LylRDkR6E0oudFnJg b097ZaNyuY1ETghVB5Uir1GCYChs8NUNumTHXiOkuzk+Gs4DAHx/a78YxBolKHi+esLH8r2k 4LyM2lp5FmBKjG7cGcpBGmWavACYEa7rwAadg4uBx9SHMV5i33vDXQUZcmW0vslQ2Is02NMK 7uB7E7HlVE1IM1zNkVTYYGkKreU8DVQu8qNOtPVE/CdaCJ/pbXoYeHz2B1Nvbl9tlyWxn5Xi HzFPJleXc0ksb9SkJokAfwTSZzTxeQPER8la5lsEEPbU/cDTcwARAQABtDJTdGVwaGVuIEZh cnJlbGwgKDIwMTcpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPokCQAQTAQgAKgIbAwUJ CZQmAAULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAUCWj6jdwIZAQAKCRBasvrxexcr6o7QD/9m x9DPJetmW794RXmNTrbTJ44zc/tJbcLdRBh0KBn9OW/EaAqjDmgNJeCMyJTKr1ywaps8HGUN hLEVkc14NUpgi4/Zkrbi3DmTp25OHj6wXBS5qVMyVynTMEIjOfeFFyxG+48od+Xn7qg6LT7G rHeNf+z/r0v9+8eZ1Ip63kshQDGhhpmRMKu4Ws9ZvTW2ACXkkTFaSGYJj3yIP4R6IgwBYGMz DXFX6nS4LA1s3pcPNxOgrvCyb60AiJZTLcOk/rRrpZtXB1XQc23ZZmrlTkl2HaThL6w3YKdi Ti1NbuMeOxZqtXcUshII45sANm4HuWNTiRh93Bn5bN6ddjgsaXEZBKUBuUaPBl7gQiQJcAlS 3MmGgVS4ZoX8+VaPGpXdQVFyBMRFlOKOC5XJESt7wY0RE2C8PFm+5eywSO/P1fkl9whkMgml 3OEuIQiP2ehRt/HVLMHkoM9CPQ7t6UwdrXrvX+vBZykav8x9U9M6KTgfsXytxUl6Vx5lPMLi 2/Jrsz6Mzh/IVZa3xjhq1OLFSI/tT2ji4FkJDQbO+yYUDhcuqfakDmtWLMxecZsY6O58A/95 8Qni6Xeq+Nh7zJ7wNcQOMoDGj+24di2TX1cKLzdDMWFaWzlNP5dB5VMwS9Wqj1Z6TzKjGjru q8soqohwb2CK9B3wzFg0Bs1iBI+2RuFnxLkCDQRaPVAyARAA+g3R0HzGr/Dl34Y07XqGqzq5 SU0nXIu9u8Ynsxj7gR5qb3HgUWYEWrHW2jHOByXnvkffucf5yzwrsvw8Q8iI8CFHiTYHPpey 4yPVn6R0w/FOMcY70eTIu/k6EEFDlDbs09DtKcrsT9bmN0XoRxITlXwWTufYqUnmS+YkAuk+ TLCtUin7OdaS2uU6Ata3PLQSeM2ZsUQMmYmHPwB9rmf+q2I005AJ9Q1SPQ2KNg/8xOGxo13S VuaSqYRQdpV93RuCOzg4vuXtR+gP0KQrus/P2ZCEPvU9cXF/2MIhXgOz207lv3iE2zGyNXld /n8spvWk+0bH5Zqd9Wcba/rGcBhmX9NKKDARZqjkv/zVEP1X97w1HsNYeUFNcg2lk9zQKb4v l1jx/Uz8ukzH2QNhU4R39dbF/4AwWuSVkGW6bTxHJqGs6YimbfdQqxTzmqFwz3JP0OtXX5q/ 6D4pHwcmJwEiDNzsBLl6skPSQ0Xyq3pua/qAP8MVm+YxCxJQITqZ8qjDLzoe7s9X6FLLC/DA L9kxl5saVSfDbuI3usH/emdtn0NA9/M7nfgih92zD92sl1yQXHT6BDa8xW1j+RU4P+E0wyd7 zgB2UeYgrp2IIcfG+xX2uFG5MJQ/nYfBoiALb0+dQHNHDtFnNGY3Oe8z1M9c5aDG3/s29QbJ +w7hEKKo9YMAEQEAAYkCJQQYAQgADwUCWj1QMgIbDAUJCZQmAAAKCRBasvrxexcr6qwvD/9b Rek3kfN8Q+jGrKl8qwY8HC5s4mhdDJZI/JP2FImf5J2+d5/e8UJ4fcsT79E0/FqX3Z9wZr6h sofPqLh1/YzDsYkZDHTYSGrlWGP/I5kXwUmFnBZHzM3WGrL3S7ZmCYMdudhykxXXjq7M6Do1 oxM8JofrXGtwBTLv5wfvvygJouVCVe87Ge7mCeY5vey1eUi4zSSF1zPpR6gg64w2g4TXM5qt SwkZVOv1g475LsGlYWRuJV8TA67yp1zJI7HkNqCo8KyHX0DPOh9c+Sd9ZX4aqKfqH9HIpnCL AYEgj7vofeix7gM3kQQmwynqq32bQGQBrKJEYp2vfeO30VsVx4dzuuiC5lyjUccVmw5D72J0 FlGrfEm0kw6D1qwyBg0SAMqamKN6XDdjhNAtXIaoA2UMZK/vZGGUKbqTgDdk0fnzOyb2zvXK CiPFKqIPAqKaDHg0JHdGI3KpQdRNLLzgx083EqEc6IAwWA6jSz+6lZDV6XDgF0lYqAYIkg3+ 6OUXUv6plMlwSHquiOc/MQXHfgUP5//Ra5JuiuyCj954FD+MBKIj8eWROfnzyEnBplVHGSDI ZLzL3pvV14dcsoajdeIH45i8DxnVm64BvEFHtLNlnliMrLOrk4shfmWyUqNlzilXN2BTFVFH 4MrnagFdcFnWYp1JPh96ZKjiqBwMv/H0kw== Message-ID: <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> Date: Sun, 14 Jul 2019 11:25:53 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.7.2 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="QgICoCaUp6rwJl2ORSg1TCI8RCufLDZFn" Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Jul 2019 10:26:03 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --QgICoCaUp6rwJl2ORSg1TCI8RCufLDZFn Content-Type: multipart/mixed; boundary="npKAnoI74Yu1zzMebyySxzwz9dNRcTY1Z"; protected-headers="v1" From: Stephen Farrell To: Kathleen Moriarty , Dominique Lazanski Cc: smart@irtf.org, IETF SecDispatch Message-ID: <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> Subject: Re: [Secdispatch] [Smart] New Version Notification for draft-lazanski-smart-users-internet-00.txt References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> In-Reply-To: --npKAnoI74Yu1zzMebyySxzwz9dNRcTY1Z Content-Type: multipart/mixed; boundary="------------C776B62FCA0CAE431ED621EC" Content-Language: en-GB This is a multi-part message in MIME format. --------------C776B62FCA0CAE431ED621EC Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Hiya, On 14/07/2019 03:06, Kathleen Moriarty wrote: > It's a good start toward broadening > the conversation on the Internet threat model and I do agree that is > necessary. FWIW, I don't agree that this is a good start. ISTM that this draft is far too opinionated, for example claiming that "IETF attendees are privacy-focused", (how does the author know?), claiming it "unthinkable" that something isn't done, and that "Internet security research and technical development must accept the reality of all the security issues in the Internet ecosystem" (though I'm not sure I can parse that last quote at all). Towards the end we get: "Endpoints have changed over the last 10 years, but assumptions about endpoints in the IETF hasn't changed in that time" - I don't know how the author knows what assumptions may or may not be made by IETF participants (not "attendees" of course). And perhaps most oddly, this bold assertion: "Further, it is imperative that new conclusions and recommendations from a revisited threat model are backed up by research, case studies and experience - rather than bold assertions." ;-) The list of breaches and botnets is fine, but not much use without any analysis of how those happened. We need a good bit more work to figure out whether any changes to protocols or protocol design are actually warranted or useful in the face of these kinds of incident. (Hence the oddity of the bold assertion above.) Lastly, ISTM important, if any discussion here is to be worthwhile, to recognise from the start that existing IETF consensus positions in this space are not likely to be discarded - those were arrived at after a lot iterations of a lot of debate by well-informed IETF participants. (Despite what some may claim;-) So I reckon the right discussion to have is about how to extend and not discard the 3552 threat model. Any other attempted changes would seem to me to require a shift in deployments from 2-party to multi-party protocols, which is unrealistic, or to require magical trust in middleboxes, which would be plain silly and seems highly unlikely to be something for which IETF consensus would be established. > Also - is this a request to present at SecDispatch? I hope not. This draft is IMO clearly not ready for that. An initial discussion about threat models and how to approach this kind of work at saag may be worthwhile (and I think Jari has asked the sec ADs for such a slot). Cheers, S. --------------C776B62FCA0CAE431ED621EC Content-Type: application/pgp-keys; name="0x5AB2FAF17B172BEA.asc" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="0x5AB2FAF17B172BEA.asc" -----BEGIN PGP PUBLIC KEY BLOCK----- mQINBFo9UDIBEADUH4ZPcUnX5WWRWO4kEkHea5Y5eEvZjSwe/YA+G0nrTuOU9nem CP5PMvmh5Cg8gBTyWyN4Z2+O25p9Tja5zUb+vPMWYvOtokRrp46yhFZOmiS5b6kT q0IqYzsEv5HI58S+QtaFq978CRa4xH9Gi9u4yzUmT03QNIGDXE37honcAM4MOEtE gvw4fVhVWJuyy3w//0F2tzKrEMjmL5VGuD/Q9+G/7abuXiYNNd9ZFjv4625AUWwy +pAh4EKzS1FE7BOZp9daMu9MUQmDqtZUbUv0Q+DnQAB/4tNncejJPz0p2z3MWCp5 iSwHiQvytYgatMp34a50l6CWqa13n6vY8VcPlIqOVz+7L+WiVfxLbeVqBwV+4uL9 to9zLF9IyUvl94lCxpscR2kgRgpM6A5LylRDkR6E0oudFnJgb097ZaNyuY1ETghV B5Uir1GCYChs8NUNumTHXiOkuzk+Gs4DAHx/a78YxBolKHi+esLH8r2k4LyM2lp5 FmBKjG7cGcpBGmWavACYEa7rwAadg4uBx9SHMV5i33vDXQUZcmW0vslQ2Is02NMK 7uB7E7HlVE1IM1zNkVTYYGkKreU8DVQu8qNOtPVE/CdaCJ/pbXoYeHz2B1Nvbl9t lyWxn5XiHzFPJleXc0ksb9SkJokAfwTSZzTxeQPER8la5lsEEPbU/cDTcwARAQAB tCFTdGVwaGVuIEZhcnJlbGwgPHN0ZXBoZW5AamVsbC5pZT6JAj0EEwEIACcFAlo9 UYwCGwMFCQmUJgAFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQWrL68XsXK+qG CxAApYHWYgGOIL3G6/OpkejdAkQoCVQAK8LJUSf6vzwost4iVfxIKcKW/3RqKNKk rRl8beJ7j1CWXAz9+VXAOsE9+zNxXIDgGA7HlvJnhffl+qwibVgiHgUcJFhCSbBr sjC+1uULaTU8zYEyET//GOGPLF+X+degkE/sesh4zcEAjF7fGPnlncdCCH3tvPZZ sdTcjwOCRVonKsDgQzBTCMz/RPBfEFX44HZx4g1UQAcCA4xlucY8QkJEyCrSNGpG nvGK8DcGSmnstl1/a9fnlhpdFxieX3oY2phJ1WKkYTn6Advrek3UP71CKxpgtPmk d3iUUz/VZa0Cv6YxQXskspRDVEvdCMYSQBtJPQ4y2+5UxVR9GIQXenwYp9AP2niv Voh+ITsDWWeWnnvYMq07rSDjq0nGdj41MJkNX+Yb2PXVyXItcj5ybE3T2+y3pSBG FEZYJGuaL4NwtBJFMOdOtBmUOPbetS2971EL3Izxb7ibOZWDwexv+8R6SWYfP1wV N3p46RyBQuXqJV8ccE11m6vtZTGSYgnLUUFZMRQYH+0hwuYe0T3AA18xDdSYsa8v ovCCd3l5S4UNzIM2PMChqGrEzKapUpZg7+8ACcxRU3b9Ihd7WYjJ+pQPCoWYKozv tEvenbNpE/govO/ED3B14e+R2yevRPjRrsN7PJzSf15fQLuJARwEEAEIAAYFAlo9 UqAACgkQLzyHNoBfjaLrSwf+MIHbFRQ4O5cmLYR5sIByWelN3SuRN/gW8rpKo9Ok Cz6An8uV/iCXy5tNMLzzi0BFl8f22DwBcC5qy9qnlIAdogWam1qWoTAoAD8veEqm uKhYrqJsCcAyNrKYmK0hP3rpHxx1LySDmKYXmw/8qtBXKHTouMm+5tSsznhykRMT AAr2p7PSaHgo+hIVaW/rKSspHjDhhZS+G9mtOZad1IH29M6G1Q1NCO0Ywe8krKLQ IAQlFxtgvOqpPOZNzeKBa/+KbE8TGgMWrkOhC8OeEM5PVzdDhlhD9kPzB/pCKDF5 DofJ/ZRqnDpbKPQ0bsW38AOig3kOc0A27awiBEw3urqR1YkCMwQQAQgAHRYhBH4X CgRchM9GDit5oBDvedn9g1MSBQJbtyScAAoJEBDvedn9g1MSI/oP/0A9J9nrnBMq Zpm857lfYWw+rshLK+tyeP4OQeOqnDFvs9jePpcyJLG3DF2r6VbVKPQq+AE6Uf5h cJBDEN6BjEhRPSbLcqG3A1cz/nNwm8rPmNp+oKhmaBBQGxwciMLmzgynsDydnjPp MyEs04zvsbsl4vrp2095o105l8KcrrxQrioFjbwveGwHQK9bxJKhx9D+gIk+MouB ur45UDKTZkMZrr9FGrtkyXCGAxvKdcNC5Oa8z9sj1rcUJfG/OpVAMWhArdlZbFUQ yoX6pU2Zb1CR2qpWAVerGSfBhmfCyStjARqaKxlftjO+Bj3Jj73Cr5eqej3qB5+V 4BCsPjr4RLvVbYUCPsRdxWc+nBLlfVYkRURu21g1hFm5KFPjgUkyo1s4vjUOY8Dy I+xLGF7f/IhUBG6l+Vswhpwu7ydalZkeFiPx5xna5NfbEYxvsIf71DvipGvIOaHv X4egWoFgm8n/9c3rcMxJtpwHPSsUt5dgLsyu6VE0IbvOAc3dN7CWJ355DVFJq9Zg 2YVf0izSpyyzJeGsgkfjW6xpmdvZxuT2UcN4BTcm6vYqueASGrb3lfhzC5gpeVsc /MoSjTS65vNWbpzONZWMZuLEFraxWJzC0JrDK3NCd0VN3kstqGkVbUIiYOnUm8Vu 4zoVMLlGWzHLIGoPRG2nRezn1YyNfyb5iQGcBBABCgAGBQJbxcflAAoJEGo7ETk8 pK1gE7QL/ApC5P68W5DrI1787WJVZv1u4t/g39vTr7Xer3UMTVQg10vpa7pmqOGh jIDzDMg3Pe3K3M7fVzfAlUA1qw6ne4RCueVoRKpubeF4AlYbMr0K6hNCPjt5uAxm bBVuejKTc6pru5rv5gKL0nDbr+Snft5xt7juBLSSimw0/41sZnkjCxo9rF/RA/v6 +uWyK171RKmsEYu8fFtw1eqUNt/Xj792TUixE3pxXheNtQtZGk/9P3W83ChhG4Fh 5EQsn0pIh9wZIAbMRLpgRKyW87fWHZC8/YH8h7afarvn9Thl5pFUldCe22mNJj6K LChn2aEHQd+PdY1GBpZEcmNEUPuovwzatM0h64hCzTm41eDqRfihZVBT7TbfXQnv 8rywa42Mk756RGzzEZcQEhwQXZcMQUfxIQQ2VyJo0zG36VdZTQF7TF/4Lz7/3cJ5 6jOIm+dwPXtu+C2wAQuD4USOLt4JWPYpqzDfHYJIND/497P9Z9SuQeahr2ez3DRB g3qsHEjBV7QyU3RlcGhlbiBGYXJyZWxsICgyMDE3KSA8c3RlcGhlbi5mYXJyZWxs QGNzLnRjZC5pZT6JAkAEEwEIACoCGwMFCQmUJgAFCwkIBwIGFQgJCgsCBBYCAwEC HgECF4AFAlo+o3cCGQEACgkQWrL68XsXK+qO0A//ZsfQzyXrZlu/eEV5jU620yeO M3P7SW3C3UQYdCgZ/TlvxGgKow5oDSXgjMiUyq9csGqbPBxlDYSxFZHNeDVKYIuP 2ZK24tw5k6duTh4+sFwUualTMlcp0zBCIzn3hRcsRvuPKHfl5+6oOi0+xqx3jX/s /69L/fvHmdSKet5LIUAxoYaZkTCruFrPWb01tgAl5JExWkhmCY98iD+EeiIMAWBj Mw1xV+p0uCwNbN6XDzcToK7wsm+tAIiWUy3DpP60a6WbVwdV0HNt2WZq5U5Jdh2k 4S+sN2CnYk4tTW7jHjsWarV3FLISCOObADZuB7ljU4kYfdwZ+WzenXY4LGlxGQSl AblGjwZe4EIkCXAJUtzJhoFUuGaF/PlWjxqV3UFRcgTERZTijguVyREre8GNERNg vDxZvuXssEjvz9X5JfcIZDIJpdzhLiEIj9noUbfx1SzB5KDPQj0O7elMHa1671/r wWcpGr/MfVPTOik4H7F8rcVJelceZTzC4tvya7M+jM4fyFWWt8Y4atTixUiP7U9o 4uBZCQ0GzvsmFA4XLqn2pA5rVizMXnGbGOjufAP/efEJ4ul3qvjYe8ye8DXEDjKA xo/tuHYtk19XCi83QzFhWls5TT+XQeVTMEvVqo9Wek8yoxo67qvLKKqIcG9givQd 8MxYNAbNYgSPtkbhZ8SJARwEEAEIAAYFAlo9UqAACgkQLzyHNoBfjaLzHAgAlWT6 NXEGtw/r1miKNGcopzvzILQ9oB8rKI9U9EL6tOf/y2V5oYee/GyQDb3ZdoPxxYYc Jf+RyiH1nMoqUIZiZJaf3bJXinDZ5+AdfE++UR2NBvqaNyC6u3r24jo1B/sagKbY tWgsYtRqHLD4IWi37MZrVyjBuF7u14Q07+uhjq6mX2O/tHpCYw/Q82tbeTRPyUf1 WQOAfD1kfBpW9PvAva5Iw9FWeXpCXRzwxnCZhYfGfqtuSw6CPBYLdbikqML6FZ7E DuTBb/8um1wK7Y9bgeIQC+CYjhYB5RXa1tDJRab2Js4luCvSR0w/CgHw26293tlv e2Q6UTrmHxP5U22DlokCPQQTAQgAJwUCWj1QMgIbAwUJCZQmAAULCQgHAgYVCAkK CwIEFgIDAQIeAQIXgAAKCRBasvrxexcr6tJpD/4rrILH+meP07vrx8wW5eYuqCiP GYnh/CXxIF8eLrfbe5d4QRgtq+w6UeQPMyzKRIRiCoBXB2oJLBZHyxBPxZlg33dT MrEGn8QWKx2iNuz9rZMXyOSWFetuO01d/aUPd5BnbLbIyK5of8xCQlXM6KH8bc+9 gQ7edR9mfLTdvBf2FR522hg8BRBM1imKc3vO8v39+qIHHRjuiwxBBCAOhHtHRsZX ripS0uFA07dM46Oi/E8osjx6fQt/lH5z/PN+2adxYSrLSAXfr1oD3RxYNhuWgyGF L64/VCQb1YGjf0Z5MBPnWm9jgUoOY5K9eNSS0L83WeJjlF5+Q/WOgB+rb49Prm2D Feo9+S9f2V53Llz1WIspXJg6f+n9lmHE94MfQj1GAHCzI0FeL19lvM+LhD8jJSCb hrC3+yobyy/AUOs5Z3E+njjX1FF/VCVAs6iOa6i+XG+Y1hh3ir2y1kckJ5auT10M SU8GEZu9ayU4M3o3N9yxOjaoP0NuQ4MMLL/n/u4u94AeZaHPNBXn/hVfVRRmpRXt GKvJtFAEppGEYezB+bLKIm6XlpPkhnwYzleLZ7AMEco2C6QM8QPB3g3JpS3sqRhA 5rEP4lL16BmijmF+CHoPE/zwgKZbKpyVDqvIW5IDgvfIC2X4pbZDRvGIUKaGSB4+ ksZgUUnNyvfQr2p7jokCMwQQAQgAHRYhBH4XCgRchM9GDit5oBDvedn9g1MSBQJb tySbAAoJEBDvedn9g1MSeKkQAJm44jt1kwHgQgeDBKdjdvl0AjE0xVEQxriZ6lP/ l//34YT0auFfzsYIrChSpQXAEtobBAr4Ohw1Us+BZe+H5P8vm6LRuPwozC3SjwfX 4Iec8+9ot6tIVg4sbedDSgb/CCFVjsmIGcQ1P73JLJTBJ6mxYCV/gn3QC6bwDOFo 7kD9FDHCjRN8XfhHQ4Q9cYyt06uF31qG/aumgWYC9geCGgAwiHgwxNYb9GoJ0iZj CROwbYvLTcQgsVUW2bTmsVR13UVKDsdl02sRV7qcVYW6R0a3Ra8KudX+nt25H5DR Gd382KZ5W8pydsy/viTvD9z6v0ulChBYxAedIvGIClrhbxlLEPmIg4ImVOLGqsUg Vm32J95WOjEkk4PEZ12xSDBtwhSJqmJNboWlfmw43KdIbY8zNhffIO3N6O7FsdGx mqyHeLoTpqY+ySVUPpbuyW8ujnI/J//+6hdTZ9dQsEJQlWngKuWOQ5ma58MPSN88 zllsqhZAFQjNxqnkSzL6ZQ+v/jvuRRe16B80AeO55DsmbWsMv/YLLD1mSi7+Khy2 EtMBhgojWwrGMvdLN6X3mnzNJEscYyLxM9tSk+iySP2sLthK0BVgpAzBSdaf/ezI z60P+neHDzteNFf8Mn7lmgYk1amvZoJ29s5+n2HwxyRL5dVMyMdyQmntubbctfqr Z0tIiQGcBBABCgAGBQJbxcflAAoJEGo7ETk8pK1gnCYMAJY4FeIYjlIXGghFWzsB 4fYwK1+iaFpU3fSto5qcrqVtVPjXpwqczqBWeXGyQxiB0kan4OVAXydIeaP8EAuF CA7paP3s9STLJBO3KurkwyRkPW5zo0X7xVqaVToRsX2Ul98KVJoHYQD1KdezEtwl vpNwiiBr42AYR751Vm6JBVAbQXuFpB3c8bUV0OkkRxNFtL8/2PieHar58n5dntGk bPlPkztahsFqktgacIgXHX5vaT+7YeeZ1DWLOYjGO0wNhkOSeroCmxwJUikU7joB p823L7r5KfpqWTPpSCzVstQKZUGmmoE1qCswY/Ud5wvp9SccpIILkRXj0rZRtfnE 5MpL3hjmtNzfDd9qIsJtBJlSB2hZwAsVm1l+EWN9hG3tqyA43niUMy2n6q690of3 berSiQ+kvY/aC9Hx8I+bKzOV9/J2VUTqfaPZa4Uy2rVX5Q2p69n/PMj7mEer0rCL 3j9V16J9c+s0BSkXoKdtYdB0TWVhBgUybd9qtYcwHWvhP7QuU3RlcGhlbiBGYXJy ZWxsIDxzdGVwaGVuQHRvbGVyYW50bmV0d29ya3MuY29tPokCPQQTAQgAJwUCWj1R WgIbAwUJCZQmAAULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAAKCRBasvrxexcr6jsc EADEcB0WQEZn2AkrzDs1RhL0Lp6cZi0BigofkbcGfdhJyMSs19C0dhvncrAFClVI 6/Udw3yFtDyYtOCf2W3M3A1K6/RfEizCLzTsdFIhni9gOJLlUpXViQtgrlstjk7h qVV3Ooz4BlCqS4cG7rfqf4LQQPpTAuFUEV9I28FBUB2irqC+v4gTysIgpMw0bA1y BU9sX5jE/tRkzqnuzZrkwiobDtRFJ9qp+7O2JtcY4EsVtLAsaodJKc5cF8R4OvB1 n66vxxcgg9Eh4JNWZ47xsaCmAGo1Bcb2jIY35OtgAL7gCGLRSMKTtAaPy1/fEgIq hCljJ9x40Fkn/3r2BX21WC9HFSPFTBz2RluLRzxdgxOrkYK8EiHUPoE5b1AEzZKw 2AbeXfr57f5zYsN3IqfbQLUjMYtUN1wK3Pjb+idD972wyXMWt8uOzlI7b9Ocu+nY m2whBfJv9Pmp3QYTmPz+LB9lH65VNVUSxSXVr5iWXO3qx1HtEiGEqkporMQCTh3T 5Ud3PvMSRBFFKNs9WhJ/Lxz+SV30WLwG6dr5mQqlzAhb4Phc/zekZyXRdS/oDKrB LUucS36O//49JeyRi1QvOfxnfmIqRIAf/k3PoYJmTo5E82//r5Qj3YGlRu78ba0H Arxs+ACD6AnEHHcbswpbtVEKYzlSu0Ar0Dc7vRWM/IyQdIkBHAQQAQgABgUCWj1S oAAKCRAvPIc2gF+NosIsB/9f/29FNla3BJfGIEIDnhrqGD0i9bSa89SqBd++uG06 TQgW5wsqtNcrwn81yZTq6XE6i9VtD4GKfqC0d4KZJr9bnbeD81cI64VOdL8zJWJs 0vj5EIXCobKyX74Kb4uePUyZqwT2Q74I116u/HwA9/FXsPo5isbh4ZqD4t0VHpWk mfq1FPT9a/JPyX46qKqB2Fce/7Qy+SQP1NfkuUlbhUH/JG9aSSYvk3lznNiH41x9 M+FDlL106itXOubrl3oi2fT3fsSedq7uzt+IV0DQEeNaoQAUuwEhdB8IWOMqN2wo DjGVKJftfsSWY9ilZrnDBNDrp0vRqcx33LUMkIw4d7iBiQIzBBABCAAdFiEEfhcK BFyEz0YOK3mgEO952f2DUxIFAlu3JJwACgkQEO952f2DUxJjuw/6ApHSsVTWD4a0 H6FJ23A9Ftpy+aXZ4vYlzkSrfsn2ECrEfK3lXQh/uzwjJUDYZeB1/BQsFZtcYNQO JSSHbQ49BFRLwb1J/wBZG4bbmrkLxnNbKDKQvzxEpclkMW0Dj0J6o7kGrmzIGGrh B+JJN99AcineHRug8ZSFIERRCmigxdhAKU0BFD7P+5HNHltSL3DF1c2fFOf2JrgB KVoE+9RhMZjWNbYetFFLCkjXb5Rpay9zeMm1DxfSTGAnuOwUXW6qq4hnl5+VC/48 ceDZElLLfu7RQUZv44pkSTOWZs+iQoJiHMFHk9wPqyB2Vok1yJ2a2j27WhXrJlPw nZbgJO5RyWDG3p/eVmpl5Uuc2dsfIpR17KnAuWpghK6V+cyFncDoGCl/YG2Mvool sW08FiZh3Ej4dnJjj25TZkeFG74JJDXLvMYpJfSBGnmETv4Dhcm2xPqVMuFuL1qJ lMbVLrMo2GXeo03OzNyvbs+u8WLIaGm5hC7N1CXY8wZs4jo6OJ/expvnc07dEuws 4zT3AiWv3nIouWReRStZy9QkavDocqbyPmilcdPCYk4BsOlzpwwO74hNG7iyl0Kd AlwTxGQ7y0rJou6HYa1TmRhIEr3vKvlW+JfUUrqtjXgsuacTXo4+Ira2JUErL2cY zQMq1j4r1ZyhFnuz93s7Rsx/Nw0+0YuJAZwEEAEKAAYFAlvFx+UACgkQajsROTyk rWCJqwv+NLVPE4sD4sDA2/6Ek7UsRIUkg+S39fhqWsLc4rtw/mDunv8Un61I3K04 fZ2Ry4nF9hZM0a710UvXFbStvrzRJO3EAAcdJR9LTCd19e8UeruQbIee3YT91U4N kC9JMpecfq62/teOAU2e5P3fWYaLs5ZX7zCLwWuBcW2l3SyoljQczM85HhJ3XHm+ FnwQ6D9xRle+lvWTcuC9d1yAyUb8IOospcL2lJTmy8e3r79R24hPlSB4LDe0wEN8 AXbagrcAQZjwyaHyWxjJbTwZ0b43WGdfIqZ1ElOeoffbketPGRmWvx5xUvb2ALFB BdETzV270gs5XDJgJ1SIIKOyDADxwvroTe2jD8C/841eEql5QSow3s/U3zRqk3mt tto8Qw/DN71aeh6dmYSsvd2UjsHw/vofOPRBGxZLEkKTEvMnhmMW9hiKPkPia+Qg evYE020qpKSxLEdWA8nprHwxmGiDNesCfXSC6vm1qfyj5g8HzxSckq9ZaMhKMCo7 vxflUEDuuQINBFo9UDIBEAD6DdHQfMav8OXfhjTteoarOrlJTSdci727xiezGPuB HmpvceBRZgRasdbaMc4HJee+R9+5x/nLPCuy/DxDyIjwIUeJNgc+l7LjI9WfpHTD 8U4xxjvR5Mi7+ToQQUOUNuzT0O0pyuxP1uY3RehHEhOVfBZO59ipSeZL5iQC6T5M sK1SKfs51pLa5ToC1rc8tBJ4zZmxRAyZiYc/AH2uZ/6rYjTTkAn1DVI9DYo2D/zE 4bGjXdJW5pKphFB2lX3dG4I7ODi+5e1H6A/QpCu6z8/ZkIQ+9T1xcX/YwiFeA7Pb TuW/eITbMbI1eV3+fyym9aT7Rsflmp31Zxtr+sZwGGZf00ooMBFmqOS//NUQ/Vf3 vDUew1h5QU1yDaWT3NApvi+XWPH9TPy6TMfZA2FThHf11sX/gDBa5JWQZbptPEcm oazpiKZt91CrFPOaoXDPck/Q61dfmr/oPikfByYnASIM3OwEuXqyQ9JDRfKrem5r +oA/wxWb5jELElAhOpnyqMMvOh7uz1foUssL8MAv2TGXmxpVJ8Nu4je6wf96Z22f Q0D38zud+CKH3bMP3ayXXJBcdPoENrzFbWP5FTg/4TTDJ3vOAHZR5iCunYghx8b7 Ffa4UbkwlD+dh8GiIAtvT51Ac0cO0Wc0Zjc57zPUz1zloMbf+zb1Bsn7DuEQoqj1 gwARAQABiQIlBBgBCAAPBQJaPVAyAhsMBQkJlCYAAAoJEFqy+vF7FyvqrC8P/1tF 6TeR83xD6MasqXyrBjwcLmziaF0Mlkj8k/YUiZ/knb53n97xQnh9yxPv0TT8Wpfd n3BmvqGyh8+ouHX9jMOxiRkMdNhIauVYY/8jmRfBSYWcFkfMzdYasvdLtmYJgx25 2HKTFdeOrszoOjWjEzwmh+tca3AFMu/nB++/KAmi5UJV7zsZ7uYJ5jm97LV5SLjN JIXXM+lHqCDrjDaDhNczmq1LCRlU6/WDjvkuwaVhZG4lXxMDrvKnXMkjseQ2oKjw rIdfQM86H1z5J31lfhqop+of0cimcIsBgSCPu+h96LHuAzeRBCbDKeqrfZtAZAGs okRina9947fRWxXHh3O66ILmXKNRxxWbDkPvYnQWUat8SbSTDoPWrDIGDRIAypqY o3pcN2OE0C1chqgDZQxkr+9kYZQpupOAN2TR+fM7JvbO9coKI8Uqog8CopoMeDQk d0YjcqlB1E0svODHTzcSoRzogDBYDqNLP7qVkNXpcOAXSVioBgiSDf7o5RdS/qmU yXBIeq6I5z8xBcd+BQ/n/9Frkm6K7IKP3ngUP4wEoiPx5ZE5+fPIScGmVUcZIMhk vMvem9XXh1yyhqN14gfjmLwPGdWbrgG8QUe0s2WeWIyss6uTiyF+ZbJSo2XOKVc3 YFMVUUfgyudqAV1wWdZinUk+H3pkqOKoHAy/8fST =3DYzQY -----END PGP PUBLIC KEY BLOCK----- --------------C776B62FCA0CAE431ED621EC-- --npKAnoI74Yu1zzMebyySxzwz9dNRcTY1Z-- --QgICoCaUp6rwJl2ORSg1TCI8RCufLDZFn Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEW7Wm6ldl0sWGPK4nWrL68XsXK+oFAl0rAzIACgkQWrL68XsX K+pAjA//Ypxq3zBBcI+MJLSdJ8f9vyjEP6NoQqnMwaOzrFY7XLPtfGRusoHmMYML W6NjL5Y77QMnXFYKTe5/thqi4fT0tmpDB4NVx1X8UA7Axi7vWfJlDQqTeFWKCM0p z1HfLJSUQvjZbeowkceG5swEX6HKVsmabBp2PHmT0FWFnoK+KFSE39the2bxhHAN BG9OHIe3pfQzs0BlFB5vI44wtUzpmMZGJzmuinZmMJNnqYM9n3BazR6LxRLe3Vma 5IuKBB8QXU+H5d7H3UDkfXMcScVkCQwYZvlunU8oWm/FdPjZZXmiXR2vY9CybD5E g7Tb7FeuQkm60qR6ExC3imTJO/UJZ1KLBYiW2g/gqVtIsp8o26OOWJyouazVHJjv 37FNKUCYaQO9j/ufsYelWCs8Y8vHcntwNQU053gnaPnO4X1UJMgfZbXTIUmN27Gb Zc8MDc30tYoHTRDpgwSTCyJjm+HkHXWw8UnvFIL6nRLz9x3Z8bBzTzo593gh9PB1 QGlk98ZAzxPrqcaxD5wtOZTj/Qqr6mTSMs9XNNNaMz8xx7pklNTb4yp4dFc5wJqo zHnqn2D9j0dsN7MwYPUdcGqMnYOxRzWOsIwd7L1FJk+0KbCwrIU9mxoZQeIaFXfD dNCFYVCx0WsDvwdkCIS2ewsNzN9Jp/ZxZPTgp+ssxt2J46mIlro= =w+0e -----END PGP SIGNATURE----- --QgICoCaUp6rwJl2ORSg1TCI8RCufLDZFn-- From nobody Sun Jul 14 04:21:14 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 24939120112 for ; Sun, 14 Jul 2019 04:21:13 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.997 X-Spam-Level: X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EgzwDe_LrNUL for ; Sun, 14 Jul 2019 04:21:10 -0700 (PDT) Received: from mail-oi1-x22f.google.com (mail-oi1-x22f.google.com [IPv6:2607:f8b0:4864:20::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5F2751200F4 for ; Sun, 14 Jul 2019 04:21:10 -0700 (PDT) Received: by mail-oi1-x22f.google.com with SMTP id m202so10612806oig.6 for ; Sun, 14 Jul 2019 04:21:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Cu0LCxwSqB5MKtKMQZp2e+AnAgoQFs5LfP1Nq4jusDI=; b=j32c4+fPZM1HgtUUmO4xhJiM4tZUTfsjjyx6h+vK2Hfcw4GHEXAdQoXGqiFJFXpfK4 i0UE2fD5I8xEohx+4hgWq7HXedRSGGRrYq9mWXh3trJscIEfSGAP8kT43xNYiyoxhTHA 4qFz20HiBIF/9lfObiD9K8Z32DtH+6dOd1q96zZ4nWdYF5mdfKoeAZTMsUQzLdoJ2uLi ioLf7QNnM7ppUActO7AqFWtEKGcKXtkn0/Dg22DfRSpxaZq0rMzt7a4U/82qiHKU64iE c3+1HnKdiF19LHaYPSX5aETvR0KPZSGDPkglvOqFzKRQbtiaTcF4gnOIcxLeP4LPAi9k juvA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Cu0LCxwSqB5MKtKMQZp2e+AnAgoQFs5LfP1Nq4jusDI=; b=OpJpHHgHKmBzKCKIwcqkcZwRk/JD9GCCnFGCpV86QODmFoqQMBD20Ezglnadf3Rnuo v8uH3wKF1zqibmpIBjNOQAHTA7L3gWtQynVG3DqLHAR/mqOsAf2K42dKlJAIBbo01hbt LusMHRNAGvr/wUhwLCmRJxzGDt+2EPeKuSK+55uCKo7a1ll6/awFsn6NGxB6qC/QBTwr aSN7FL0yo1WldQMziAqc8Z03NGxwwYY7E4UF6pPloUNsMut3DHkor5yvfSoMTecvcHMk WxsJj+EBdRU2Aiq6Q8FdLK7GjRHpE7Wt4GBH1F2N5lCnjErgxrLStc4JMkDXapAgSRbV U1ZA== X-Gm-Message-State: APjAAAXL9+YUumo/S736ppcbuxG3Mtmq2nrz0npLBLlUhSA1Dsgwpvy+ /83GCZFC+XL7xkVPuv6CMAavrWUJ95zpnfpas8KN2INq X-Google-Smtp-Source: APXvYqx2GiHDWtK8GI/ZmvIHrW7+HGV2Q2M5uw5Aqb6oEEzh74L3wYdI2/NZhayMt6HLPLpglMPoICzuEt6Nhh2W7Lg= X-Received: by 2002:aca:5308:: with SMTP id h8mr9826835oib.164.1563103269644; Sun, 14 Jul 2019 04:21:09 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> In-Reply-To: <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> From: Kathleen Moriarty Date: Sun, 14 Jul 2019 07:20:33 -0400 Message-ID: To: Stephen Farrell Cc: Dominique Lazanski , smart@irtf.org, IETF SecDispatch Content-Type: multipart/alternative; boundary="000000000000226e8a058da25780" Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Jul 2019 11:21:13 -0000 --000000000000226e8a058da25780 Content-Type: text/plain; charset="UTF-8" Hello, On Sun, Jul 14, 2019 at 6:25 AM Stephen Farrell wrote: > > Hiya, > > On 14/07/2019 03:06, Kathleen Moriarty wrote: > > It's a good start toward broadening > > the conversation on the Internet threat model and I do agree that is > > necessary. > > FWIW, I don't agree that this is a good start. > > ISTM that this draft is far too opinionated, for example > claiming that "IETF attendees are privacy-focused", (how > does the author know?), claiming it "unthinkable" that > something isn't done, and that "Internet security research > and technical development must accept the reality of all > the security issues in the Internet ecosystem" (though > I'm not sure I can parse that last quote at all). > Sure, opinionated text gets cut as a draft progresses, but she makes a clear case for adding in the endpoint into the threat model. I had tried to do a bit of that in my AD reviews as I agree, it's one of the places systems are left vulnerable and open to attack. When the defenses in the middle are removed, new ones are needed. Protocol evolution is eliminating these middle boxes, so the end point needs to be shored up. We need first to better prevent attacks, and then to be able to detect them at end points. Some of this could get baked into protocols (I'm not sure how yet, but perhaps something can be done), requiring research and ensuring the protocols maintain the existing set of desired properties. > > Towards the end we get: "Endpoints have changed over the > last 10 years, but assumptions about endpoints in the IETF > hasn't changed in that time" - I don't know how the > author knows what assumptions may or may not be made > by IETF participants (not "attendees" of course). > Sure, there's a bunch of us that care about end points, but I think outside perception doesn't show this and those who work solely on end point security don't feel heard at the moment. Bake this into a bigger threat model and we have a more complete picture. We as a community need to step back and think about the threat model and impacts to users of the Internet. The time to detect an attack has come way down (in most countries) over the last 2 years. This isn't spelled out in the draft, but could be in a comprehensive draft. The reason for this is that organizations have deployed tighter controls and are quicker to detect anomalies on their networks. Detection devices have also aided in this reduction with the exchange of indicators of compromise. We need new ways to deploy prevention and detection mechanisms and can't ignore that as we eliminate the methods of detection and prevention used by large numbers of organizations. I'd be happy to help flesh out this part of the threat model more. > And perhaps most oddly, this bold assertion: "Further, it > is imperative that new conclusions and recommendations > from a revisited threat model are backed up by research, case > studies and experience - rather than bold assertions." ;-) > PM was backed by lots of information, I agree. The problem is that the focus ignored (largely) other security concerns. I tried to ensure system integrity came up when important in drafts and also logging, but maybe there's more that can and should be done. > > The list of breaches and botnets is fine, but not much > use without any analysis of how those happened. We need a > good bit more work to figure out whether any changes to > protocols or protocol design are actually warranted or > useful in the face of these kinds of incident. (Hence > the oddity of the bold assertion above.) > Yes, and these aren't the only types of attacks. Phishing is accountable for about 90% of so called APT attacks (I can find the artcile that says this, just not at the moment). Better authentication will help (FIDO, tokbind, HOBA, etc.) , but some of the attacks don't involve authentication. > > Lastly, ISTM important, if any discussion here is to > be worthwhile, to recognise from the start that existing > IETF consensus positions in this space are not likely to > be discarded - those were arrived at after a lot iterations > of a lot of debate by well-informed IETF participants. > (Despite what some may claim;-) So I reckon the right > discussion to have is about how to extend and not discard > the 3552 threat model. Any other attempted changes would > seem to me to require a shift in deployments from 2-party > to multi-party protocols, which is unrealistic, or to > require magical trust in middleboxes, which would be plain > silly and seems highly unlikely to be something for which > IETF consensus would be established. > Sure, my full message made the same point. We need to look at the broader threat model and have a more comprehensive picture. I do think this helps make the case for the end point and figuring out if we have options within protocols to prevent threat with out-of-the-box thinking, research, security protocol proofing, and testing. > > > Also - is this a request to present at SecDispatch? > > I hope not. This draft is IMO clearly not ready for that. > An initial discussion about threat models and how to > approach this kind of work at saag may be worthwhile (and > I think Jari has asked the sec ADs for such a slot). > She sent it to SecDispatch, so I needed to ask. I do agree it's better for SAAG and a larger discussion on threat model, but that's for our ADs to decide. > > Cheers, > S. > -- Best regards, Kathleen --000000000000226e8a058da25780 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Hello,

On Sun, Jul 14, 2019 at 6:25 AM= Stephen Farrell <stephen.f= arrell@cs.tcd.ie> wrote:

Hiya,

On 14/07/2019 03:06, Kathleen Moriarty wrote:
> It's a good start toward broadening
> the conversation on the Internet threat model and I do agree that is > necessary.

FWIW, I don't agree that this is a good start.

ISTM that this draft is far too opinionated, for example
claiming that "IETF attendees are privacy-focused", (how
does the author know?), claiming it "unthinkable" that
something isn't done, and that "Internet security research
and technical development must accept the reality of all
the security issues in the Internet ecosystem" (though
I'm not sure I can parse that last quote at all).
=
Sure, opinionated text gets cut as a draft progresses, but s= he makes a clear case for adding in the endpoint into the threat model.=C2= =A0 I had tried to do a bit of that in my AD reviews as I agree, it's o= ne of the places systems are left vulnerable and open to attack. When the d= efenses in the middle are removed, new ones are needed.=C2=A0 Protocol evol= ution is eliminating these middle boxes, so the end point needs to be shore= d up.=C2=A0 We need first to better prevent attacks, and then to be able to= detect them at end points.=C2=A0 Some of this could get baked into protoco= ls (I'm not sure how yet, but perhaps something can be done), requiring= research and ensuring the protocols maintain the existing set of desired p= roperties.

Towards the end we get: "Endpoints have changed over the
last 10 years, but assumptions about endpoints in the IETF
hasn't changed in that time" - I don't know how the
author knows what assumptions may or may not be made
by IETF participants (not "attendees" of course).

Sure, there's a bunch of us that care about end po= ints, but I think outside perception doesn't show this and those who wo= rk solely on end point security don't feel heard at the moment.=C2=A0 B= ake this into a bigger threat model and we have a more complete picture.=C2= =A0 We as a community need to step back and think about the threat model an= d impacts to users of the Internet.=C2=A0 The time to detect an attack has = come way down (in most countries) over the last 2 years.=C2=A0 This isn'= ;t spelled out in the draft, but could be in a comprehensive draft.=C2=A0 T= he reason for this is that organizations have deployed tighter controls and= are quicker to detect anomalies on their networks.=C2=A0 Detection devices= have also aided in this reduction with the exchange of indicators of compr= omise.=C2=A0 We need new ways to deploy prevention and detection mechanisms= and can't ignore that as we eliminate the methods of detection and pre= vention used by large numbers of organizations.

I&= #39;d be happy to help flesh out this part of the threat model more.
<= div>

And perhaps most oddly, this bold assertion: "Further, it
is imperative that new conclusions and recommendations
from a revisited threat model are backed up by research, case
studies and experience - rather than bold assertions." ;-)

PM was backed by lots of information, I agree.=C2= =A0 The problem is that the focus ignored (largely) other security concerns= .=C2=A0 I tried to ensure system integrity came up when important in drafts= and also logging, but maybe there's more that can and should be done.= =C2=A0

The list of breaches and botnets is fine, but not much
use without any analysis of how those happened. We need a
good bit more work to figure out whether any changes to
protocols or protocol design are actually warranted or
useful in the face of these kinds of incident. (Hence
the oddity of the bold assertion above.)

Yes, and these aren't the only types of attacks.=C2=A0 Phishing is ac= countable for about 90% of so called APT attacks (I can find the artcile th= at says this, just not at the moment).=C2=A0 Better authentication will hel= p (FIDO, tokbind, HOBA, etc.) , but some of the attacks don't involve a= uthentication.=C2=A0

Lastly, ISTM important, if any discussion here is to
be worthwhile, to recognise from the start that existing
IETF consensus positions in this space are not likely to
be discarded - those were arrived at after a lot iterations
of a lot of debate by well-informed IETF participants.
(Despite what some may claim;-) So I reckon the right
discussion to have is about how to extend and not discard
the 3552 threat model. Any other attempted changes would
seem to me to require a shift in deployments from 2-party
to multi-party protocols, which is unrealistic, or to
require magical trust in middleboxes, which would be plain
silly and seems highly unlikely to be something for which
IETF consensus would be established.

Su= re, my full message made the same point. We need to look at the broader thr= eat model and have a more comprehensive picture.=C2=A0 I do think this help= s make the case for the end point and figuring out if we have options withi= n protocols to prevent threat with out-of-the-box thinking, research, secur= ity protocol proofing, and testing.

> Also - is this a request to present at SecDispatch?

I hope not. This draft is IMO clearly not ready for that.
An initial discussion about threat models and how to
approach this kind of work at saag may be worthwhile (and
I think Jari has asked the sec ADs for such a slot).
<= br>
She sent it to SecDispatch, so I needed to ask.=C2=A0 I do ag= ree it's better for SAAG and a larger discussion on threat model, but t= hat's for our ADs to decide.=C2=A0

Cheers,
S.


--

Best regards,
Kathleen
--000000000000226e8a058da25780-- From nobody Sun Jul 14 09:31:03 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E0AA1200C5 for ; Sun, 14 Jul 2019 09:31:02 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.996 X-Spam-Level: X-Spam-Status: No, score=-1.996 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OltneCZtR0hw for ; Sun, 14 Jul 2019 09:30:59 -0700 (PDT) Received: from mail-pg1-x530.google.com (mail-pg1-x530.google.com [IPv6:2607:f8b0:4864:20::530]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2E70C120273 for ; Sun, 14 Jul 2019 09:30:59 -0700 (PDT) Received: by mail-pg1-x530.google.com with SMTP id u17so6583653pgi.6 for ; Sun, 14 Jul 2019 09:30:59 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=A6KaB+0FeELJ+g8S4mzLNBIXqTuFBYrE0A/xi0O1cxQ=; b=pXv5zImpmFU+TOCiBy28NdsDKih7CqeZcsHFMD/6cEGHx6zyj299ttX4Y2qclHMfe4 2x2uR5pftjJSxSZP04cVoAlOUsectRCtNPQWjx9yhTgRDIOJHFjjiCnw1pX+lpkkbMdP 7cjzUQUz7rgiV47c4sCwAIHDfbIBiZyqGBZiHVYjsNRYbI0PVIVomGYT9DVDftpWbPG0 8h5M/BW/IKoqBs0sqXTgbjbm1mxABDUnzTtFUOVjfjtjqmwbvRuRCASka69V4KnqSp4w YJcmRHPpRi56sg6NMFrllIdScfO8TAqLQ8JrT9SeT7rWPJpsJXRuW7z9yfo4Mke0Dpdm lnCQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=A6KaB+0FeELJ+g8S4mzLNBIXqTuFBYrE0A/xi0O1cxQ=; b=OX13CMjW5KVhePyVLwrEzG264Y30Bs431tWfhJFcwoKWUCbX5lKyztA2isb4dIIzXA KxNWsWuA32/x4GzINSJ3+dCF5L94tLC4hKKIdrZNtp+F5j3BGz+cPx44L1Mp+60GoghK lv3MgNn1ZzLX+9D2BbDrqg6AkOms/1sEMnaQqYAaml8P+Dk6+XE5mCrO3iWTuEX/YXYZ oJzJCVAoGwkLA4aK9lEoFp8rf5z4jg6HHG8xkj7Uh+RoyhmQKMuNTqrs81KO3wpBwa51 hdetonoNRl599Bodp4bWXL4VM+l+nGbboFDWGoVapu4ftE8xEIzubDg11Ve8K0X9moPT zrtw== X-Gm-Message-State: APjAAAUeCsPxqtRxDa8dZPVlqFE9ma6qIslncJJOrmRBVvGxQNpW0RlR FtGDIhO3WIOJTKu6muMJKq4= X-Google-Smtp-Source: APXvYqzdkSd04SuumSvxqe7VCzG6AOSv0yqNmau17lcxYLMe02kbVYEdiBOtH7GbJJn9TqOOB6ouuw== X-Received: by 2002:a17:90a:1b4c:: with SMTP id q70mr23692397pjq.69.1563121858616; Sun, 14 Jul 2019 09:30:58 -0700 (PDT) Received: from ?IPv6:2605:a601:a990:4d00:98b:bcc4:5aa6:8504? ([2605:a601:a990:4d00:98b:bcc4:5aa6:8504]) by smtp.gmail.com with ESMTPSA id j12sm4305511pff.4.2019.07.14.09.30.57 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sun, 14 Jul 2019 09:30:57 -0700 (PDT) Content-Type: multipart/alternative; boundary=Apple-Mail-40EF9A22-193A-445E-987E-23C7497B9B72 Mime-Version: 1.0 (1.0) From: Bret Jordan X-Mailer: iPhone Mail (16F203) In-Reply-To: <9683DFBC-1816-4C0A-8D8A-4CE36318C72C@cisco.com> Date: Sun, 14 Jul 2019 10:30:56 -0600 Cc: Melinda Shore , secdispatch@ietf.org, smart@irtf.org Content-Transfer-Encoding: 7bit Message-Id: <64343552-264A-4777-B561-54AFF8C9C710@gmail.com> References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <45cc67f6-3dd4-9788-29e5-4cc82471e6ee@nomountain.net> <9683DFBC-1816-4C0A-8D8A-4CE36318C72C@cisco.com> To: Eliot Lear Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Jul 2019 16:31:02 -0000 --Apple-Mail-40EF9A22-193A-445E-987E-23C7497B9B72 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable I personally think the biggest value at this stage is awareness and discussi= on. So I would love to see this continue as a regular update item for sec d= ispatch. I would also love to see regular and multiple side meetings. I wo= uld also love to see SMART get officially chartered.=20 I fully understand and get that we in the IETF generally focus on on-the-wir= e protocols. However, I think we can design better and more secure solution= s once we more completely understand the entire security pie. Understanding= operational security requirements and regulatory compliance requirements is= critical for the success of the solutions we create here in the IETF. Bret=20 Sent from my Commodore 128D PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 > On Jul 14, 2019, at 4:56 AM, Eliot Lear wrote: >=20 > Hi Melinda, >=20 >> We >> typically deal with wireline protocols and their support >> structures, and I'm hoping that as the discussions progress >> people can be clear about what they'd like to see from the >> IETF. >=20 > I think you=E2=80=99re primarily referring to leaky user databases here. I= agree with you that we cannot fix organizations=E2=80=99 bad internal code w= ith a wireline protocol. However, to exploit the vulnerability, the attack h= ad to come from somewhere. We already have one mechanism to address profili= ng with IoT that manufacturers can use to keep their systems from being expl= oited as BoTs. The next question is whether we should be promoting or impro= ving other mechanisms to provide people at home and elsewhere more visibilit= y in terms of what their general purpose computing devices are doing. I=E2=80= =99m thinking of PCP in particular. And while there may be more we can do, t= here may also be some limitations relating not only to privacy but also econ= omics of web services. >=20 > What I like about Dominique=E2=80=99s draft is that it gets us thinking in= those directions (or at least it did me). >=20 >>=20 >> I do think that some of this may be appropriate for opsec, >> as well, or at least should be called to their attention. >=20 > Or an RG or a side meeting. It would be fun to continue the discussion. >=20 > Eliot >=20 >>=20 >> Melinda >>=20 >> -- >> Melinda Shore >> melinda.shore@nomountain.net >>=20 >> Software longa, hardware brevis >>=20 >>=20 >>=20 >=20 > _______________________________________________ > Secdispatch mailing list > Secdispatch@ietf.org > https://www.ietf.org/mailman/listinfo/secdispatch --Apple-Mail-40EF9A22-193A-445E-987E-23C7497B9B72 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: quoted-printable I personally think the biggest value at thi= s stage is awareness and discussion.  So I would love to see this conti= nue as a regular update item for sec dispatch.  I would also love to se= e regular and multiple side meetings.  I would also love to see SMART g= et officially chartered. 

I fully understand and get= that we in the IETF generally focus on on-the-wire protocols.  However= , I think we can design better and more secure solutions once we more comple= tely understand the entire security pie.  Understanding operational sec= urity requirements and regulatory compliance requirements is critical for th= e success of the solutions we create here in the IETF.

<= div>
Bret 

Sent from my C= ommodore 128D

PGP Finger= print: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 0050<= /span>

On Jul 14, 2019, at 4:56 AM, E= liot Lear <lear@cisco.com> wrote= :

Hi Melinda,<= /span>

We
typically deal with wireline proto= cols and their support
structures, and I'm hoping that as the discussions progress
people can be clear about what they= 'd like to see from the
IETF.

I think you=E2=80=99r= e primarily referring to leaky user databases here.  I agree with you t= hat we cannot fix organizations=E2=80=99 bad internal code with a wireline p= rotocol.  However, to exploit the vulnerability, the attack had to come= from somewhere.  We already have one mechanism to address profiling wi= th IoT that manufacturers can use to keep their systems from being exploited= as BoTs.  The next question is whether we should be promoting or impro= ving other mechanisms to provide people at home and elsewhere more visibilit= y in terms of what their general purpose computing devices are doing.  = I=E2=80=99m thinking of PCP in particular.  And while there may be more= we can do, there may also be some limitations relating not only to privacy b= ut also economics of web services.

What I l= ike about Dominique=E2=80=99s draft is that it gets us thinking in those dir= ections (or at least it did me).


I do= think that some of this may be appropriate for opsec,
as well, or at least should be called to t= heir attention.

Or an RG or a s= ide meeting.  It would be fun to continue the discussion.

Eliot


Melinda

=
--
Melinda Shore
= melinda.shore@nomounta= in.net
Software longa, hardware brevi= s




__________________________= _____________________
Secdispatch mailing list
Secdispatch@ietf.orghttps:= //www.ietf.org/mailman/listinfo/secdispatch
= --Apple-Mail-40EF9A22-193A-445E-987E-23C7497B9B72-- From nobody Sun Jul 14 14:25:19 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5D7E712018A for ; Sun, 14 Jul 2019 14:25:13 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.896 X-Spam-Level: X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bJ2kNgWhEdiX for ; Sun, 14 Jul 2019 14:25:09 -0700 (PDT) Received: from mail-lf1-x143.google.com (mail-lf1-x143.google.com [IPv6:2a00:1450:4864:20::143]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0E7CA12003E for ; Sun, 14 Jul 2019 14:25:09 -0700 (PDT) Received: by mail-lf1-x143.google.com with SMTP id 62so4746074lfa.8 for ; Sun, 14 Jul 2019 14:25:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=kZKmDuhetClDFpNQG1TQYzFW2Cz/CZi/lJriCMh2NoU=; b=1aDAsNAikSmKmAlx5kX8NNkbXOcsWf50pkiQ0YGUqyaj18Vfc6loJ+ZRR5hOE0z4n1 KxpXGMeyJwh9Gd5ImgjcqitE25rs1LIMUcmiOOorbkkMfBIAombcmPpwxK6GHLtNfT5u wkyyi9V0sumJuxCEi2+lT+6EaE411oQFadnPvG7Pl7nlWRfjSWqaZvwfQCoLwoLBBTRD glq0TvroBdVmSPivWN1pdVbeJM7uoQ1YcKMhXUmf1Yk6bBc2aC2ZTVv6if2f2XaiN/jd bRtSEoY5tyinlDVBYMgx+tPHawTVNAsLN69kVl9SS6Q2aZRKrsVKhGnOBHuHYM3p3t3U 3esA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=kZKmDuhetClDFpNQG1TQYzFW2Cz/CZi/lJriCMh2NoU=; b=WBAxPuTjPAL/aXHVGm0ZlFkBtN56GKjIgi7+4k9KGAWvv5wp2G2s+bfUgklYPpc02M kaf9mOb6B2XDEgtNo8Tn/WQ+HIRIEMLL8QGRoa/yOzvszFVqSOOAduCECBoVDMyaXgnU MNcJHjVglKb10IApRNSme24lTLETsbeb7KBNN8b48gPHytEwW/W+v4mIiGECmWmbX0z6 Mmt5yQxFlHfIQpRRuW0c4GMM1U3OUHkcXOEp72P9jvkzjbsZ6Aa+Ga6wZdTwlxwv5aIr zMZrVGXFiWPMyfyly/DeUTKHTRDmit+46M6N9BON6e6i0HjjydVtqevAZQnhQSv9nKo4 bV8g== X-Gm-Message-State: APjAAAVpOZcUaF2fLtcbkft7UZwJ3VsL6Qrh81v6/y2gxGXrnSyeqh0l OJjga7sYTFlz5EmBLJl0yyUDmnUO2kKr+S4I+no= X-Google-Smtp-Source: APXvYqxhMm2nAtb4Sce5QV4h6+rlnnMgOP06fQGPEUcojm/Xy/RqYYEW1OArLuCF/Bi5SMYIOsBmlc5MoOHEFoZaN9s= X-Received: by 2002:a19:4a50:: with SMTP id x77mr9600237lfa.91.1563139507175; Sun, 14 Jul 2019 14:25:07 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> In-Reply-To: <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> From: Eric Rescorla Date: Sun, 14 Jul 2019 14:24:29 -0700 Message-ID: To: Stephen Farrell Cc: Kathleen Moriarty , Dominique Lazanski , smart@irtf.org, IETF SecDispatch Content-Type: multipart/alternative; boundary="0000000000000f55e1058daac7b7" Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 14 Jul 2019 21:25:13 -0000 --0000000000000f55e1058daac7b7 Content-Type: text/plain; charset="UTF-8" I more or less agree with Stephen's position. First, I recognize that this focus on secure endpoints talking to each other is probably the part of 3552 that people are most unhappy about. As I was almost certainly the person who wrote that text, it might be helpful if I laid out some background. First, RFC 3552 isn't intended to say that endpoint threats aren't real, but merely that they are out of scope because they are hard to address. Here's the text in context: The Internet environment has a fairly well understood threat model. In general, we assume that the end-systems engaging in a protocol exchange have not themselves been compromised. Protecting against an attack when one of the end-systems has been compromised is extraordinarily difficult. It is, however, possible to design protocols which minimize the extent of the damage done under these circumstances. For a more narrow statement with a similar theme (but extended to the Web platform, see https://www.chromium.org/Home/chromium-security/security-faq#TOC-Why-aren-t-physically-local-attacks-in-Chrome-s-threat-model- and https://www.chromium.org/Home/chromium-security/security-faq#TOC-Why-aren-t-compromised-infected-machines-in-Chrome-s-threat-model- ): This is essentially the same situation as with physically-local attacks. The attacker's code, when it runs as your user account on your machine, can do anything you can do. (See also Microsoft's Ten Immutable Laws Of Security.) However, RFC 3552 is primarily oriented towards what can be standardized and in particular towards protocols, and generally secure protocols require some sort of TCB to be effective. Obviously, as alluded to in 3552, to the extent to which protocols can be designed to minimize damage, and we routinely attempt to do so. Examples of this include the use of Forward Secure algorithms and trying to avoid or mitigate designs with single points of failure (as with Certificate Transparency). I know that PHB has some ideas along these lines; I haven't studied them enough to know what I think, but that sort of thing is generally in scope as well. This to some extent goes to Section 2 of draft-lazanski. I certainly agree that to the extent to which it is possible to design cryptographic solutions to prevent data breaches, it is useful to do so, and protocols for doing that would potentially be in scope for IETF. I say "potentially" because I'm not sure that (a) standards are necessary in this space beyond the kind of work we are already doing or (b) that we would have the community to define them, but I don't see an in principle barrier [0] I certainly would not expect 3552 to be deployed to preclude that kind of work. Similarly, I don't think that the kinds of botnet attacks described in Section 3 are out of scope for 3552, though I see how it could be read this way. However I think that the idea of a malicious counterparty is clearly in scope if we assume that the attacker controls the network. Here too, I wouldn't expect 3552 to be deployed to preclude that kind of work; we have done plenty of anti-DoS work in IETF (whether it is good enough is a different story). Turning now to the document itself, its language seems to be trying to stake out a very strong position, but I'm not quite sure what that position is. For instance: themselves. These assumptions have led to a focus on communications security and the development of protocols that place this kind of security above all else. Ironically - or coincidentally - as the development of these protocols have taken place over the last several decades, there has been and continues to be a sharp rise in cyber attacks. The Internet threat model in RFC 3552 does not even mention that the greatest threat to the Internet is the growing scale and variety of cyber attacks against all types of endpoints that is resulting in significant data breaches. This now needs to change. First, I'm not sure that I agree that cyber attacks on endpoints are the greatest threat to the Internet, but even assuming that's so, what are the implications of that for work in the IETF? It's one thing to change the words of 3552, but what work specifically would we do if those words were different. Second, I think it's quite likely true that the IETF has focused on communications security, and this document seems to be trying to argue that that's to the detriment of other kinds of security, both here and in other places: Internet security research and technical development must accept the reality of all the security issues in the Internet ecosystem. Decisions being made in the name of privacy are sometimes leading to larger inadvertent security and privacy losses. I'd like to try to explore this argument a bit. Specifically, it might be the case that the IETF has just ignored non-comsec and that if we had spent more time on it, that would be better. Alternatively, it could be true that the IETF's focus on comsec has actively harmed other kinds of security. One gets the sense that this document wants to argue the latter point, but it doesn't really come out and say it, let alone substantiate it. That, rather than arguing about the completeness or appropriateness of RFC 3552, might be a better place to start. -Ekr [0] Indeed, work like token binding is arguably a stab at some of this stuff. On Sun, Jul 14, 2019 at 3:26 AM Stephen Farrell wrote: > > Hiya, > > On 14/07/2019 03:06, Kathleen Moriarty wrote: > > It's a good start toward broadening > > the conversation on the Internet threat model and I do agree that is > > necessary. > > FWIW, I don't agree that this is a good start. > > ISTM that this draft is far too opinionated, for example > claiming that "IETF attendees are privacy-focused", (how > does the author know?), claiming it "unthinkable" that > something isn't done, and that "Internet security research > and technical development must accept the reality of all > the security issues in the Internet ecosystem" (though > I'm not sure I can parse that last quote at all). > > Towards the end we get: "Endpoints have changed over the > last 10 years, but assumptions about endpoints in the IETF > hasn't changed in that time" - I don't know how the > author knows what assumptions may or may not be made > by IETF participants (not "attendees" of course). > > And perhaps most oddly, this bold assertion: "Further, it > is imperative that new conclusions and recommendations > from a revisited threat model are backed up by research, case > studies and experience - rather than bold assertions." ;-) > > The list of breaches and botnets is fine, but not much > use without any analysis of how those happened. We need a > good bit more work to figure out whether any changes to > protocols or protocol design are actually warranted or > useful in the face of these kinds of incident. (Hence > the oddity of the bold assertion above.) > > Lastly, ISTM important, if any discussion here is to > be worthwhile, to recognise from the start that existing > IETF consensus positions in this space are not likely to > be discarded - those were arrived at after a lot iterations > of a lot of debate by well-informed IETF participants. > (Despite what some may claim;-) So I reckon the right > discussion to have is about how to extend and not discard > the 3552 threat model. Any other attempted changes would > seem to me to require a shift in deployments from 2-party > to multi-party protocols, which is unrealistic, or to > require magical trust in middleboxes, which would be plain > silly and seems highly unlikely to be something for which > IETF consensus would be established. > > > Also - is this a request to present at SecDispatch? > > I hope not. This draft is IMO clearly not ready for that. > An initial discussion about threat models and how to > approach this kind of work at saag may be worthwhile (and > I think Jari has asked the sec ADs for such a slot). > > Cheers, > S. > _______________________________________________ > Secdispatch mailing list > Secdispatch@ietf.org > https://www.ietf.org/mailman/listinfo/secdispatch > --0000000000000f55e1058daac7b7 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
I more or less agree with Stephen's position.

F= irst, I recognize that this focus on secure endpoints talking to each
ot= her is probably the part of 3552 that people are most unhappy
about. As = I was almost certainly the person who wrote that text, it might
be helpf= ul if I laid out some background.

First, RFC 3552 isn't intended= to say that endpoint threats aren't
real, but merely that they are = out of scope because they are hard
to address. Here's the text in co= ntext:

=C2=A0 =C2=A0The Internet environment has a fairly well under= stood threat model.
=C2=A0 =C2=A0In general, we assume that the end-syst= ems engaging in a protocol
=C2=A0 =C2=A0exchange have not themselves bee= n compromised.=C2=A0 Protecting against an
=C2=A0 =C2=A0attack when one = of the end-systems has been compromised is
=C2=A0 =C2=A0extraordinarily = difficult.=C2=A0 It is, however, possible to design
=C2=A0 =C2=A0protoco= ls which minimize the extent of the damage done under these
=C2=A0 =C2= =A0circumstances.

For a more narrow statement with a similar theme (= but extended to
the Web platform, see https://www.chromium.org/Home/chromium-securi= ty/security-faq#TOC-Why-aren-t-physically-local-attacks-in-Chrome-s-threat-= model- and
https://www.chromium.org/Home/chromium-security/security-faq#TO= C-Why-aren-t-compromised-infected-machines-in-Chrome-s-threat-model-):<= br>
=C2=A0 =C2=A0This is essentially the same situation as with physical= ly-local
=C2=A0 =C2=A0attacks. The attacker's code, when it runs as = your user account on
=C2=A0 =C2=A0your machine, can do anything you can = do. (See also Microsoft's Ten
=C2=A0 =C2=A0Immutable Laws Of Securit= y.)

However, RFC 3552 is primarily oriented towards what can be
s= tandardized and in particular towards protocols, and generally secure
pr= otocols require some sort of TCB to be effective. Obviously, as
alluded = to in 3552, to the extent to which protocols can be designed
to minimize= damage, and we routinely attempt to do so. Examples of
this include the= use of Forward Secure algorithms and trying to avoid
or mitigate design= s with single points of failure (as with Certificate
Transparency).=C2= =A0 I know that PHB has some ideas along these lines; I
haven't stud= ied them enough to know what I think, but that sort of
thing is generall= y in scope as well.

This to some extent goes to Section 2 of draft-l= azanski. I certainly
agree that to the extent to which it is possible to= design
cryptographic solutions to prevent data breaches, it is useful t= o do
so, and protocols for doing that would potentially be in scope for<= br>IETF. I say "potentially" because I'm not sure that (a) st= andards are
necessary in this space beyond the kind of work we are alrea= dy doing
or (b) that we would have the community to define them, but I d= on't
see an in principle barrier [0] I certainly would not expect 35= 52 to
be deployed to preclude that kind of work.

Similarly, I don= 't think that the kinds of botnet attacks described
in Section 3 are= out of scope for 3552, though I see how it could
be read this way. Howe= ver I think that the idea of a malicious
counterparty is clearly in scop= e if we assume that the attacker
controls the network. Here too, I would= n't expect 3552 to be deployed
to preclude that kind of work; we hav= e done plenty of anti-DoS work
in IETF (whether it is good enough is a d= ifferent story).


Turning now to the document itself, its languag= e seems to be trying
to stake out a very strong position, but I'm no= t quite sure what that
position is. For instance:

=C2=A0 =C2=A0th= emselves. These assumptions have led to a focus on communications
=C2=A0= =C2=A0security and the development of protocols that place this kind of=C2=A0 =C2=A0security above all else. Ironically - or coincidentally - as = the
=C2=A0 =C2=A0development of these protocols have taken place over th= e last
=C2=A0 =C2=A0several decades, there has been and continues to be = a sharp rise in
=C2=A0 =C2=A0cyber attacks. The Internet threat model in= RFC 3552 does not even
=C2=A0 =C2=A0mention that the greatest threat to= the Internet is the growing
=C2=A0 =C2=A0scale and variety of cyber att= acks against all types of endpoints
=C2=A0 =C2=A0that is resulting in si= gnificant data breaches. This now needs to
=C2=A0 =C2=A0change.

F= irst, I'm not sure that I agree that cyber attacks on endpoints are
= the greatest threat to the Internet, but even assuming that's so,
wh= at are the implications of that for work in the IETF? It's one thingto change the words of 3552, but what work specifically would we
do if = those words were different.

Second, I think it's quite likely tr= ue that the IETF has focused
on communications security, and this docume= nt seems to be trying
to argue that that's to the detriment of other= kinds of security,
both here and in other places:

=C2=A0 =C2=A0I= nternet security research and technical development must accept the
=C2= =A0 =C2=A0reality of all the security issues in the Internet ecosystem.
= =C2=A0 =C2=A0Decisions being made in the name of privacy are sometimes lead= ing to
=C2=A0 =C2=A0larger inadvertent security and privacy losses.
<= br>I'd like to try to explore this argument a bit. Specifically, it mig= ht
be the case that the IETF has just ignored non-comsec and that if we<= br>had spent more time on it, that would be better. Alternatively, it
co= uld be true that the IETF's focus on comsec has actively harmed
othe= r kinds of security. One gets the sense that this document wants
to argu= e the latter point, but it doesn't really come out and say it,
let a= lone substantiate it. That, rather than arguing about the completeness
o= r appropriateness of RFC 3552, might be a better place to start.

-Ek= r


[0] Indeed, work like token binding is arguably a stab at some= of this
stuff.

On Sun, Jul 14, 2019 at 3:26 AM Stephen Farrell <<= a href=3D"mailto:stephen.farrell@cs.tcd.ie">stephen.farrell@cs.tcd.ie&g= t; wrote:

Hiya,

On 14/07/2019 03:06, Kathleen Moriarty wrote:
> It's a good start toward broadening
> the conversation on the Internet threat model and I do agree that is > necessary.

FWIW, I don't agree that this is a good start.

ISTM that this draft is far too opinionated, for example
claiming that "IETF attendees are privacy-focused", (how
does the author know?), claiming it "unthinkable" that
something isn't done, and that "Internet security research
and technical development must accept the reality of all
the security issues in the Internet ecosystem" (though
I'm not sure I can parse that last quote at all).

Towards the end we get: "Endpoints have changed over the
last 10 years, but assumptions about endpoints in the IETF
hasn't changed in that time" - I don't know how the
author knows what assumptions may or may not be made
by IETF participants (not "attendees" of course).

And perhaps most oddly, this bold assertion: "Further, it
is imperative that new conclusions and recommendations
from a revisited threat model are backed up by research, case
studies and experience - rather than bold assertions." ;-)

The list of breaches and botnets is fine, but not much
use without any analysis of how those happened. We need a
good bit more work to figure out whether any changes to
protocols or protocol design are actually warranted or
useful in the face of these kinds of incident. (Hence
the oddity of the bold assertion above.)

Lastly, ISTM important, if any discussion here is to
be worthwhile, to recognise from the start that existing
IETF consensus positions in this space are not likely to
be discarded - those were arrived at after a lot iterations
of a lot of debate by well-informed IETF participants.
(Despite what some may claim;-) So I reckon the right
discussion to have is about how to extend and not discard
the 3552 threat model. Any other attempted changes would
seem to me to require a shift in deployments from 2-party
to multi-party protocols, which is unrealistic, or to
require magical trust in middleboxes, which would be plain
silly and seems highly unlikely to be something for which
IETF consensus would be established.

> Also - is this a request to present at SecDispatch?

I hope not. This draft is IMO clearly not ready for that.
An initial discussion about threat models and how to
approach this kind of work at saag may be worthwhile (and
I think Jari has asked the sec ADs for such a slot).

Cheers,
S.
_______________________________________________
Secdispatch mailing list
Secdispatch@ietf.= org
https://www.ietf.org/mailman/listinfo/secdispatch
--0000000000000f55e1058daac7b7-- From nobody Sun Jul 14 17:24:04 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 721EA1202A4 for ; Sun, 14 Jul 2019 17:24:02 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.998 X-Spam-Level: X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id npLYT8haXHim for ; Sun, 14 Jul 2019 17:24:00 -0700 (PDT) Received: from mail-pf1-x429.google.com (mail-pf1-x429.google.com [IPv6:2607:f8b0:4864:20::429]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D4AD51200B7 for ; Sun, 14 Jul 2019 17:24:00 -0700 (PDT) Received: by mail-pf1-x429.google.com with SMTP id r7so6592370pfl.3 for ; Sun, 14 Jul 2019 17:24:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=y0jbE+k4jT0+OCGVre0LSQAGSM2NOmFLpgf5T5P6RrE=; b=H3UYeEGAPUZSgoRS3oOUR/hwIdMgsYngRNHNMew51WoVLAdiXbQ6RqAmsh55cZCHo7 edR1lpDhZI0CIYzCJYH86Dnn9cLLnObxdwMhlVViVssgkC+BWoM4auGnSUiJ2w614PZ3 WT1QYNfBsb8BAnuFK33PA3lAHDXvVtkgZQbGKLxKg0+bkA+k8gpbPZ0DgecMw8XCTgii 4ZYzhPkmC6twHfYA6Sjq4OlHiIxyXlMmy3OdqUr79uU3tV8XCgjpHB3Y2uUnFvys120B ySw2GBrp87d8x1YzYtfRjKeF6QOVbNcOgyYu3KpeAx5znlWz+E5JFIxJya4CWZx5KMFC kslg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=y0jbE+k4jT0+OCGVre0LSQAGSM2NOmFLpgf5T5P6RrE=; b=U40PGnj29WMIv+gW1fciaPk1Ub4NwTibgj5x4jNUb+L0XndcaNP/r+1UkQbswu8nlI cQi3aw2H6ZilQ1UbfrryAR1TuE4jmcSijeXKUC0kVmIjIjlvflBeD4PJ+9rxXS4Pn+iM Rkf4rS7FnkIPKopsO0iugBOUfAOfgn1itCvOQ0iRrAebXm3NcNMHAbxQp0AS0O9HoME0 gEoHjdDLIg1lgEJG+6CuPM/7JC9QlW/SPYtpLOYrHu5yxOnl2Ze5BWDDoZ9Vsla0J70h jXHLVD5J/ZypjC17PKZw+64XEj3AFdW35v7PuF/DuvkPJmGDZalyoXFa1/80WR23DR4t wnXQ== X-Gm-Message-State: APjAAAVTpSE8k3lJHeHB9QuffWncw8InCFnX163vmtzRr1sfDsuu5EgC /22zYSs5F6WDW1Fana35KDc= X-Google-Smtp-Source: APXvYqwThSgYsUu6pZI08G6w4I6GSLF8mM1qPo2glAEMh5R0uUOjg6hsDs8AqSQfDYXkiSZLBvpwuA== X-Received: by 2002:a63:6110:: with SMTP id v16mr20665239pgb.60.1563150240260; Sun, 14 Jul 2019 17:24:00 -0700 (PDT) Received: from ?IPv6:2605:a601:a990:4d00:6893:ce36:fd8f:62a0? ([2605:a601:a990:4d00:6893:ce36:fd8f:62a0]) by smtp.gmail.com with ESMTPSA id 143sm23368747pgc.6.2019.07.14.17.23.58 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sun, 14 Jul 2019 17:23:59 -0700 (PDT) From: Bret Jordan Message-Id: Content-Type: multipart/alternative; boundary="Apple-Mail=_C12D523E-97BA-4FAA-BAB8-C954A0D4E07C" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Sun, 14 Jul 2019 18:23:56 -0600 In-Reply-To: Cc: Melinda Shore , secdispatch@ietf.org, smart@irtf.org To: Eliot Lear References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <45cc67f6-3dd4-9788-29e5-4cc82471e6ee@nomountain.net> <9683DFBC-1816-4C0A-8D8A-4CE36318C72C@cisco.com> X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 00:24:03 -0000 --Apple-Mail=_C12D523E-97BA-4FAA-BAB8-C954A0D4E07C Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii Hi Elliot. =20 There are a few additional questions to consider, that are more = relevant, IMO: > To your point below, there are three questions we can ask: >=20 > Is the device known to be compromised? > Is the device not known to be compromised? > Is the device in a known good state? >=20 1) Is the content or content provider that the user is going to = compromised and trying to attack the endpoint? 2) Is the content provider that the user is going to a stage 2 delivery = site? 3) Is the content provider that the user is going to the location for = outbound malicious content (data exfiltration, CnC traffic) 4) Is the content provider that the user is going to adversely tracking = and monitoring everything the end client does, aka active surveillance = versus passive surveillance? 5) Is the remote site that the user did not go to attack the end point.=20= All of this in network based / Internet based. Protocol designs can = help make it much more difficult for threat actors, crime syndicates, = and intrusion sets from being as effective.=20 Thanks, Bret PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 "Without cryptography vihv vivc ce xhrnrw, however, the only thing that = can not be unscrambled is an egg." --Apple-Mail=_C12D523E-97BA-4FAA-BAB8-C954A0D4E07C Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=us-ascii Hi = Elliot.  

There = are a few additional questions to consider, that are more relevant, = IMO:


To your point below, there are three questions we can = ask:

  • Is the device known to be = compromised?
  • Is the device not known to be = compromised?
  • Is the device in a known good = state?


1) Is the content or content provider that the = user is going to compromised and trying to attack the = endpoint?
2) Is the content provider that the user is going to = a stage 2 delivery site?
3) Is the content provider that the = user is going to the location for outbound malicious content (data = exfiltration, CnC traffic)
4) Is the content provider that the = user is going to adversely tracking and monitoring everything the end = client does, aka active surveillance versus passive = surveillance?
5) Is the remote site that the user did not go = to attack the end point. 

All = of this in network based / Internet based.  Protocol designs can = help make it much more difficult for threat actors, crime syndicates, = and intrusion sets from being as effective. 


Thanks,
Bret
PGP = Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 = 0050
"Without = cryptography vihv vivc ce xhrnrw, however, the only thing that can not = be unscrambled is an egg."


= --Apple-Mail=_C12D523E-97BA-4FAA-BAB8-C954A0D4E07C-- From nobody Sun Jul 14 17:34:15 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C391512001A for ; Sun, 14 Jul 2019 17:34:12 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d1Nrj-Kc4_Wu for ; Sun, 14 Jul 2019 17:34:11 -0700 (PDT) Received: from mail-lj1-x232.google.com (mail-lj1-x232.google.com [IPv6:2a00:1450:4864:20::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7E22C1200B7 for ; Sun, 14 Jul 2019 17:34:10 -0700 (PDT) Received: by mail-lj1-x232.google.com with SMTP id x25so14393972ljh.2 for ; Sun, 14 Jul 2019 17:34:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Z9rkWk9v2WlIyeEZ2QDYLGT2TpQRFMvMfs7x/hZ0kq0=; b=MZ6AwemFNuPGc4/7mNmG48NZamSAkzIvkU+dmS+iZWfjfUa+BKwRh/B99ROH5CICE6 3+xxluCsM5YirH1dVQX0ky65tdmwxWbWD4cQ6he9MgSXHaLOjm83TWgr5G6NxSgm6krr yC6eQTyWc4qO9YrR8o9qbI7h5aBF0FM49SpLxwFKM6GtlaQFgRGbtXWncUEsuAO/ryov RUVHzDHNXaDGpjyIJFow1pf1Rqq1sGd4himBA24ym4Z0R9NYbhoAhil9Y7/pNtJ7GIRO 5pG+udBGJPASZMfhuAfKMHWazn8+1784cP/XqCKMyXCNGKpB4lRo3P7CSFkCC7K3VmBB eapQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Z9rkWk9v2WlIyeEZ2QDYLGT2TpQRFMvMfs7x/hZ0kq0=; b=QcszqjRC3FSVfilMXVDNU8BihPCeYBUoRGSdn7nMt5N21JDgxW9rFq+KCUqjCnY89w HItowteb1vgLjvGQT2dOE4p4J6jQX7WtlZ/GNTiGv2kZwjHJBy3ZJ+ST2g3RNBg07V5k /FerDJDNVCyB5472nhhz/C/vYrS2rn+72R6lF7Y2HKVAR17vHSO2BaGQqjUuMfJTkLAG 7wbZabQ6ipAU7BSR0V/mxZm3G8IiqNZ44x8lI+uGO7X6GYhF2DzSxgeJmijMMwbpP+WY WsCFqB76WMgz6BKSKh/ys3A9hlx7yXvD26DaOutI3UcrrmTUB3rVgxjIxCziPGgl0WLQ SE8w== X-Gm-Message-State: APjAAAXYMB/pBC2gNwkxbZUqyeTssSyCotFRI20Mx70IRAEDcAR6uyaF AYQLLm7nmAHmBj34qAOVwvdYwKLTKHAtKhfbqMQ= X-Google-Smtp-Source: APXvYqw6heQzDgmHxVWJ0RWnCBG6y+YpZUGREfUEwSNBl4QGQ1Xg5zmdCwXQjqWuLAPB7wKLGZn4/N24BNzot2nGabg= X-Received: by 2002:a2e:8892:: with SMTP id k18mr12524142lji.239.1563150848732; Sun, 14 Jul 2019 17:34:08 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> In-Reply-To: From: Eric Rescorla Date: Sun, 14 Jul 2019 17:33:32 -0700 Message-ID: To: Phillip Hallam-Baker Cc: Stephen Farrell , smart@irtf.org, Kathleen Moriarty , Dominique Lazanski , IETF SecDispatch Content-Type: multipart/alternative; boundary="00000000000011c2d1058dad6be9" Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 00:34:13 -0000 --00000000000011c2d1058dad6be9 Content-Type: text/plain; charset="UTF-8" On Sun, Jul 14, 2019 at 5:27 PM Phillip Hallam-Baker wrote: > > > On Sun, Jul 14, 2019 at 5:25 PM Eric Rescorla wrote: > >> I more or less agree with Stephen's position. >> >> First, I recognize that this focus on secure endpoints talking to each >> other is probably the part of 3552 that people are most unhappy >> about. As I was almost certainly the person who wrote that text, it might >> be helpful if I laid out some background. >> >> First, RFC 3552 isn't intended to say that endpoint threats aren't >> real, but merely that they are out of scope because they are hard >> to address. Here's the text in context: >> >> The Internet environment has a fairly well understood threat model. >> In general, we assume that the end-systems engaging in a protocol >> exchange have not themselves been compromised. Protecting against an >> attack when one of the end-systems has been compromised is >> extraordinarily difficult. It is, however, possible to design >> protocols which minimize the extent of the damage done under these >> circumstances. >> > > Hmm... restricting the requirements according to what problems we think we > know how to solve seems to be a bit of a systematic problem in the > industry. > Without taking the position on the industry as a whole, the E in IETF stands for "engineering", so I think trying to solve problems we know how to solve is prudent. As the list of things we know how to solve increases, then we ought to attempt to solve those as well. First, I'm not sure that I agree that cyber attacks on endpoints are >> the greatest threat to the Internet, but even assuming that's so, >> what are the implications of that for work in the IETF? It's one thing >> to change the words of 3552, but what work specifically would we >> do if those words were different. >> > > I'm not keen on the focus on the end point. It seems like it is brought up > as a trump card to 'prove' that all security efforts are futile and the > criminals must always win. > Well, that's certainly not my position. Endpoints don't require standards in quite the same degree. But that > doesn't mean that nothing we do is relevant to endpoints. > Nor is this. -Ekr For example, forget 95% of trustworthy computing, the main residual > vulnerability of crypto protocols is the risk of private keys being leaked > off the machine. That is an endpoint security control that provides real > leverage for relatively little cost. But it is a mechanism that can only be > used in communication protocols if they are designed with that constraint > in mind. > > > > --00000000000011c2d1058dad6be9 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


=
On Sun, Jul 14, 2019 at 5:27 PM Phill= ip Hallam-Baker <phill@hallambaker.com> wrote:


On Sun, Jul 14, 2019 at 5:25 PM Eric Rescorla <= ekr@rtfm.com> wrot= e:
I more or less agree with Stephen's position.

First, I recog= nize that this focus on secure endpoints talking to each
other is probab= ly the part of 3552 that people are most unhappy
about. As I was almost = certainly the person who wrote that text, it might
be helpful if I laid = out some background.

First, RFC 3552 isn't intended to say that = endpoint threats aren't
real, but merely that they are out of scope = because they are hard
to address. Here's the text in context:
=C2=A0 =C2=A0The Internet environment has a fairly well understood threat = model.
=C2=A0 =C2=A0In general, we assume that the end-systems engaging = in a protocol
=C2=A0 =C2=A0exchange have not themselves been compromised= .=C2=A0 Protecting against an
=C2=A0 =C2=A0attack when one of the end-sy= stems has been compromised is
=C2=A0 =C2=A0extraordinarily difficult.=C2= =A0 It is, however, possible to design
=C2=A0 =C2=A0protocols which mini= mize the extent of the damage done under these
=C2=A0 =C2=A0circumstance= s.

Hmm... restricting the requirements according to what problems we think we= know how to solve seems to be a bit of a systematic problem in the industr= y.

Without tak= ing the position on the industry as a whole, the E in IETF stands for "= ;engineering", so I think trying to solve problems we know how to solv= e is prudent. As the list of things we know how to solve increases, then we= ought to attempt to solve those as well.

<= div class=3D"gmail_quote">
<= blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-l= eft:1px solid rgb(204,204,204);padding-left:1ex">
First, I&= #39;m not sure that I agree that cyber attacks on endpoints are
the grea= test threat to the Internet, but even assuming that's so,
what are t= he implications of that for work in the IETF? It's one thing
to chan= ge the words of 3552, but what work specifically would we
do if those wo= rds were different.

I'm not keen on the focus on the end point. It seems = like it is brought up as a trump card to 'prove' that all security = efforts are futile and the criminals must always win.

Well, that's certainly not my positi= on.


Endpoints don't require standards in quite the same degree. But= that doesn't mean that nothing we do is relevant to endpoints.

Nor is this.
-Ekr

For example, forget 95% of trustworthy computing, the mai= n residual vulnerability of crypto protocols is the risk of private keys be= ing leaked off the machine. That is an endpoint security control that provi= des real leverage for relatively little cost. But it is a mechanism that ca= n only be used in communication protocols if they are designed with that co= nstraint in mind.


=C2=A0
--00000000000011c2d1058dad6be9-- From nobody Sun Jul 14 17:45:28 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 716BA12018D for ; Sun, 14 Jul 2019 17:45:27 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.998 X-Spam-Level: X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id owfEvbcK4sis for ; Sun, 14 Jul 2019 17:45:25 -0700 (PDT) Received: from mail-pg1-x536.google.com (mail-pg1-x536.google.com [IPv6:2607:f8b0:4864:20::536]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1B43C12010C for ; Sun, 14 Jul 2019 17:45:25 -0700 (PDT) Received: by mail-pg1-x536.google.com with SMTP id l21so6868773pgm.3 for ; Sun, 14 Jul 2019 17:45:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=gyoGR8Vw+tWFHlSz5+QiQ4kpvJ/bOGeNbks2BNstQSU=; b=oXm42KdhX7CY96ozikbQ2Z5KzAN2JSFN8A2qAzvat+UXxoFGbq7ZVkB3i62nLAHfaQ h0e/QX9Sn9hWLaQXPftmH5VVSsou7UiTwgB/8EhA0pOjBSiKnSjfMwo2ZLo/CuOYtlLn 1RTBLhQINyJdrzmUliCZcpdmwordA3H9ykX5fd3d1EJ//e6Cr/EnOvHNjYkTdZ1X3/Nj BYixkbb3YXn+b1dIyuYlI9gFoOotzGTkcngNmL2WgA/od0FaI81b+X4Ol9KOr7Hz408+ cnXROZ1L0sNAW37gNBEisf190KH/WcVzYjkcCqC2752qB8I7NFUyq/g/vKMzHAVtLLbW sKsw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=gyoGR8Vw+tWFHlSz5+QiQ4kpvJ/bOGeNbks2BNstQSU=; b=QltxdlnC1L/XeNQ8wgoidY24Qj73R3JlmNG6eHoHOMjxFiOrVR4BhzYMvSDopdsrvU MPgXE6VFZrC+6satalLb3cndnCSJxxjtfaCDPwJOv701xK6Rw+UDYgsuuKqdxT4HVglg Y1+zXD6gUNOCiR/gFSgHQmdtdIy8Hib/J1qYLxA7qv9qmAag3tZkp5xyGgZVW89Pw8pT XMS63ccEu3lVW/bjYZ65sxLcjcJpjptwrYDLpPDnIt0IRdnZIJXV0hUOpKv9utSJvs90 uNDSkJanutrVJn4LMU+AM9ZJbWvm86OPdvgJNU3vQX+MC9q9/LGM+2G4ZeetS44zGIcu jLuA== X-Gm-Message-State: APjAAAXz/heI1fwbwFXGbVfanUCNJrH6IoNFxFkooBbtpFFDSI6uv2U6 CKhsfRS6nxOwA3+sr0CCAo4= X-Google-Smtp-Source: APXvYqymkA/GonY23/ji9lkTi1ZmoPlR4IV5VGQ6oPEm62OUKbGXn5H+e4TeQFTUo+JBflfRV7rIOQ== X-Received: by 2002:a17:90a:5806:: with SMTP id h6mr25488907pji.126.1563151524648; Sun, 14 Jul 2019 17:45:24 -0700 (PDT) Received: from ?IPv6:2605:a601:a990:4d00:6893:ce36:fd8f:62a0? ([2605:a601:a990:4d00:6893:ce36:fd8f:62a0]) by smtp.gmail.com with ESMTPSA id k36sm16589396pgl.42.2019.07.14.17.45.23 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sun, 14 Jul 2019 17:45:23 -0700 (PDT) From: Bret Jordan Message-Id: Content-Type: multipart/alternative; boundary="Apple-Mail=_89C7521D-F535-4D79-BC7F-913F8135617D" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Sun, 14 Jul 2019 18:45:21 -0600 In-Reply-To: Cc: Phillip Hallam-Baker , smart@irtf.org, Kathleen Moriarty , Dominique Lazanski , IETF SecDispatch , Stephen Farrell To: Eric Rescorla References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 00:45:27 -0000 --Apple-Mail=_89C7521D-F535-4D79-BC7F-913F8135617D Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii Hello, > Hmm... restricting the requirements according to what problems we = think we know how to solve seems to be a bit of a systematic problem in = the industry.=20 >=20 > Without taking the position on the industry as a whole, the E in IETF = stands for "engineering", so I think trying to solve problems we know = how to solve is prudent. As the list of things we know how to solve = increases, then we ought to attempt to solve those as well. >=20 Yes, but first we need to make sure we have the open discussions in a = congenial manner. We also need to full understand what is needed by = operational security to prevent threat actors and intrusion sets from = destroying their networks, users, systems, and data. =20 There are many good eco-systems that have very advanced security = engineers in them, we should work with them and communicate with them. = It would be good for some of us from the IETF to go to these groups and = explain what we are working on, why we are working on it, and then ask = for feedback from their perspective. =20 I believe a document written by the IETF that talks more plainly about = the whole security pie, and what parts the IETF is going to try and work = on, would be helpful. We can not boil the ocean. Further, some parts = are better solved outside of the IETF. We just need to make sure the = things we do, do not make other elements of operational security = impossible.=20 Bret --Apple-Mail=_89C7521D-F535-4D79-BC7F-913F8135617D Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=us-ascii Hello,


Hmm... restricting the requirements according to what = problems we think we know how to solve seems to be a bit of a systematic = problem in the industry.

Without taking the position on the = industry as a whole, the E in IETF stands for "engineering", so I think = trying to solve problems we know how to solve is prudent. As the list of = things we know how to solve increases, then we ought to attempt to solve = those as well.


Yes, but first we need to make sure we have the = open discussions in a congenial manner.  We also need to full = understand what is needed by operational security to prevent threat = actors and intrusion sets from destroying their networks, users, = systems, and data.  

There are = many good eco-systems that have very advanced security engineers in = them, we should work with them and communicate with them. It would be = good for some of us from the IETF to go to these groups and explain what = we are working on, why we are working on it, and then ask for feedback = from their perspective.  

I = believe a document written by the IETF that talks more plainly about the = whole security pie, and what parts the IETF is going to try and work on, = would be helpful.  We can not boil the ocean.  Further, some = parts are better solved outside of the IETF.  We just need to make = sure the things we do, do not make other elements of operational = security impossible. 

Bret

= --Apple-Mail=_89C7521D-F535-4D79-BC7F-913F8135617D-- From nobody Sun Jul 14 17:50:58 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 06D6612018D for ; Sun, 14 Jul 2019 17:50:51 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kDTib9E6D7ma for ; Sun, 14 Jul 2019 17:50:49 -0700 (PDT) Received: from mail-lj1-x235.google.com (mail-lj1-x235.google.com [IPv6:2a00:1450:4864:20::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B19B112018E for ; Sun, 14 Jul 2019 17:50:48 -0700 (PDT) Received: by mail-lj1-x235.google.com with SMTP id v18so14369660ljh.6 for ; Sun, 14 Jul 2019 17:50:48 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=QGIhVYSmjmh4nM8xi+E7SRPNK+JFUYv3oepC2kpSQrk=; b=GmvL+FmlovmYvzzSsYVeMDEvImaNcDRTcKhVF+FvNN/4SnJ0r/AJYnO3TS1EfEuhRw lV7UI3i5sQO8mfCeNZ9lGQaEf2mJ4FGTv2fJIMqkskD46NHQrnrSrIv1f9UC7389jppI agC6sYoSuAVtRplxvvleBla8YqsGhHl9sImZWzDhvJIDH5OJAPvXOx9IrmMYNNBzBaFr Mb/VsERNQOJqIPyB1j3BBVZfC57qfepeeohFM3neznyw3+h/Q4StVGDtdcvPg+nnoD8H xV0fNS5/7hizi90A15o1ULuhVzNqi19AdAI7Rc2zpDQ7r+lXC44hQEUe6F5mUnc20Ft1 09LQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=QGIhVYSmjmh4nM8xi+E7SRPNK+JFUYv3oepC2kpSQrk=; b=NXOpxfzMzf+Ckv+PKgHtoe9ThqVz+/U3btLVPTc23YMGUvGAyo0G7iZl+CtXrmdcQC McB/zDAQ9ZIcuJ7+1n/Fm3ozHVH5I39hF+pA2heo5xNWynEvheiwAMOGuyS6FYMrzK3h DC401f6xQArJP16CpAmxfEfEt5fsVzIPFXG8qgRnOfeXmkIV5JW5gtItgXlvbMEYdBJg hLmUKYwS+fIhlFepDX33+TcQ0gxI3tXzFXAgYZ4HNwCAoGeayA4o6q6/lnu1mWMLbIzQ 9QPg/WOasAMUKZWIVLY86RbFvPQb8S5AC+C9Rq9V3RituTsKMzSCi0Hhjr2SGMRU4Qz3 Oh5g== X-Gm-Message-State: APjAAAVLeBNvbkSJsVJwAuCB3SggbcFCHt68JwjZesd8UoF2zGyajms0 BfcJ03IEwkmGE1IgkyeVvP5XI9oUHYinAoa1TTQ= X-Google-Smtp-Source: APXvYqw4pFzWCeswJXUt+4jfBV59obDS7Ymbp7uU5iMzw8QFj3b40bSNIUwsom+WvwNrP8/g/Jp+JqObaBmGt0QVKzM= X-Received: by 2002:a2e:9b84:: with SMTP id z4mr12418814lji.75.1563151846983; Sun, 14 Jul 2019 17:50:46 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> In-Reply-To: From: Eric Rescorla Date: Sun, 14 Jul 2019 17:50:10 -0700 Message-ID: To: Bret Jordan Cc: Phillip Hallam-Baker , smart@irtf.org, Kathleen Moriarty , Dominique Lazanski , IETF SecDispatch , Stephen Farrell Content-Type: multipart/alternative; boundary="00000000000091d942058dada688" Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 00:50:51 -0000 --00000000000091d942058dada688 Content-Type: text/plain; charset="UTF-8" Bret, Thanks for your note. On Sun, Jul 14, 2019 at 5:45 PM Bret Jordan wrote: > > I believe a document written by the IETF that talks more plainly about the > whole security pie, and what parts the IETF is going to try and work on, > would be helpful. We can not boil the ocean. Further, some parts are > better solved outside of the IETF. We just need to make sure the things we > do, do not make other elements of operational security impossible. > Much like the original draft, this seems to be implying, but not really stating something. If your position is that some protocol engineering that the IETF is doing is making operational security impossible, it would be useful for you to argue that directly. As is, it's not really clear how to respond. -Ekr > Bret > > --00000000000091d942058dada688 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Bret,

Thanks for your note.<= br>

On Sun, Jul 14, 2019 at 5:45 PM Bret Jordan <jordan.ietf@gmail.com> wrote:
=

=
I believe a document written by the IETF that talks more plainly about= the whole security pie, and what parts the IETF is going to try and work o= n, would be helpful.=C2=A0 We can not boil the ocean.=C2=A0 Further, some p= arts are better solved outside of the IETF.=C2=A0 We just need to make sure= the things we do, do not make other elements of operational security impos= sible.=C2=A0

Much like t= he original draft, this seems to be implying, but not really stating someth= ing.

I= f your position is that some protocol engineering that the IETF is doing is= making operational security impossible, it would be useful for you to argu= e that directly. As is, it's not really clear how to respond.
=

-Ekr

<= div>

Bret

<= /div>
--00000000000091d942058dada688-- From nobody Sun Jul 14 18:52:17 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9B21F12001B for ; Sun, 14 Jul 2019 18:52:10 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.3 X-Spam-Level: X-Spam-Status: No, score=-4.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Tw2rbFOxtx6M for ; Sun, 14 Jul 2019 18:52:07 -0700 (PDT) Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6FA9F120143 for ; Sun, 14 Jul 2019 18:52:06 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id F22BCBE51; Mon, 15 Jul 2019 02:52:03 +0100 (IST) X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KM5mNt3eVy_Q; Mon, 15 Jul 2019 02:52:02 +0100 (IST) Received: from [10.244.2.138] (95-45-153-252-dynamic.agg2.phb.bdt-fng.eircom.net [95.45.153.252]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 5EC56BE50; Mon, 15 Jul 2019 02:51:58 +0100 (IST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1563155522; bh=wuoKWRJJq/FbkNAT2Bv5/4BmhW808a0naV7cYxrAwB4=; h=To:Cc:References:From:Subject:Date:In-Reply-To:From; b=xW8a0tbR5nFu3FF3ucrV/Xm7+PBSP7NY7RtXYtPZOv0BCOdibZdv1qMIf5rThmjQ7 TdTZFYjf777PAFudGwdNtnN9UGcZFQJf8lNR9fEYDWVN3RZAH1OQ8c45PPBv1kpg7m iZsQJ2Nf55zL2aKexaogWviNIil2SWNdR657R0BM= To: Bret Jordan , Eric Rescorla Cc: smart@irtf.org, Dominique Lazanski , IETF SecDispatch , Kathleen Moriarty , Phillip Hallam-Baker References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> From: Stephen Farrell Openpgp: id=5BB5A6EA5765D2C5863CAE275AB2FAF17B172BEA; url= Autocrypt: addr=stephen.farrell@cs.tcd.ie; prefer-encrypt=mutual; keydata= mQINBFo9UDIBEADUH4ZPcUnX5WWRWO4kEkHea5Y5eEvZjSwe/YA+G0nrTuOU9nemCP5PMvmh 5Cg8gBTyWyN4Z2+O25p9Tja5zUb+vPMWYvOtokRrp46yhFZOmiS5b6kTq0IqYzsEv5HI58S+ QtaFq978CRa4xH9Gi9u4yzUmT03QNIGDXE37honcAM4MOEtEgvw4fVhVWJuyy3w//0F2tzKr EMjmL5VGuD/Q9+G/7abuXiYNNd9ZFjv4625AUWwy+pAh4EKzS1FE7BOZp9daMu9MUQmDqtZU bUv0Q+DnQAB/4tNncejJPz0p2z3MWCp5iSwHiQvytYgatMp34a50l6CWqa13n6vY8VcPlIqO Vz+7L+WiVfxLbeVqBwV+4uL9to9zLF9IyUvl94lCxpscR2kgRgpM6A5LylRDkR6E0oudFnJg b097ZaNyuY1ETghVB5Uir1GCYChs8NUNumTHXiOkuzk+Gs4DAHx/a78YxBolKHi+esLH8r2k 4LyM2lp5FmBKjG7cGcpBGmWavACYEa7rwAadg4uBx9SHMV5i33vDXQUZcmW0vslQ2Is02NMK 7uB7E7HlVE1IM1zNkVTYYGkKreU8DVQu8qNOtPVE/CdaCJ/pbXoYeHz2B1Nvbl9tlyWxn5Xi HzFPJleXc0ksb9SkJokAfwTSZzTxeQPER8la5lsEEPbU/cDTcwARAQABtDJTdGVwaGVuIEZh cnJlbGwgKDIwMTcpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPokCQAQTAQgAKgIbAwUJ CZQmAAULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAUCWj6jdwIZAQAKCRBasvrxexcr6o7QD/9m x9DPJetmW794RXmNTrbTJ44zc/tJbcLdRBh0KBn9OW/EaAqjDmgNJeCMyJTKr1ywaps8HGUN hLEVkc14NUpgi4/Zkrbi3DmTp25OHj6wXBS5qVMyVynTMEIjOfeFFyxG+48od+Xn7qg6LT7G rHeNf+z/r0v9+8eZ1Ip63kshQDGhhpmRMKu4Ws9ZvTW2ACXkkTFaSGYJj3yIP4R6IgwBYGMz DXFX6nS4LA1s3pcPNxOgrvCyb60AiJZTLcOk/rRrpZtXB1XQc23ZZmrlTkl2HaThL6w3YKdi Ti1NbuMeOxZqtXcUshII45sANm4HuWNTiRh93Bn5bN6ddjgsaXEZBKUBuUaPBl7gQiQJcAlS 3MmGgVS4ZoX8+VaPGpXdQVFyBMRFlOKOC5XJESt7wY0RE2C8PFm+5eywSO/P1fkl9whkMgml 3OEuIQiP2ehRt/HVLMHkoM9CPQ7t6UwdrXrvX+vBZykav8x9U9M6KTgfsXytxUl6Vx5lPMLi 2/Jrsz6Mzh/IVZa3xjhq1OLFSI/tT2ji4FkJDQbO+yYUDhcuqfakDmtWLMxecZsY6O58A/95 8Qni6Xeq+Nh7zJ7wNcQOMoDGj+24di2TX1cKLzdDMWFaWzlNP5dB5VMwS9Wqj1Z6TzKjGjru q8soqohwb2CK9B3wzFg0Bs1iBI+2RuFnxLkCDQRaPVAyARAA+g3R0HzGr/Dl34Y07XqGqzq5 SU0nXIu9u8Ynsxj7gR5qb3HgUWYEWrHW2jHOByXnvkffucf5yzwrsvw8Q8iI8CFHiTYHPpey 4yPVn6R0w/FOMcY70eTIu/k6EEFDlDbs09DtKcrsT9bmN0XoRxITlXwWTufYqUnmS+YkAuk+ TLCtUin7OdaS2uU6Ata3PLQSeM2ZsUQMmYmHPwB9rmf+q2I005AJ9Q1SPQ2KNg/8xOGxo13S VuaSqYRQdpV93RuCOzg4vuXtR+gP0KQrus/P2ZCEPvU9cXF/2MIhXgOz207lv3iE2zGyNXld /n8spvWk+0bH5Zqd9Wcba/rGcBhmX9NKKDARZqjkv/zVEP1X97w1HsNYeUFNcg2lk9zQKb4v l1jx/Uz8ukzH2QNhU4R39dbF/4AwWuSVkGW6bTxHJqGs6YimbfdQqxTzmqFwz3JP0OtXX5q/ 6D4pHwcmJwEiDNzsBLl6skPSQ0Xyq3pua/qAP8MVm+YxCxJQITqZ8qjDLzoe7s9X6FLLC/DA L9kxl5saVSfDbuI3usH/emdtn0NA9/M7nfgih92zD92sl1yQXHT6BDa8xW1j+RU4P+E0wyd7 zgB2UeYgrp2IIcfG+xX2uFG5MJQ/nYfBoiALb0+dQHNHDtFnNGY3Oe8z1M9c5aDG3/s29QbJ +w7hEKKo9YMAEQEAAYkCJQQYAQgADwUCWj1QMgIbDAUJCZQmAAAKCRBasvrxexcr6qwvD/9b Rek3kfN8Q+jGrKl8qwY8HC5s4mhdDJZI/JP2FImf5J2+d5/e8UJ4fcsT79E0/FqX3Z9wZr6h sofPqLh1/YzDsYkZDHTYSGrlWGP/I5kXwUmFnBZHzM3WGrL3S7ZmCYMdudhykxXXjq7M6Do1 oxM8JofrXGtwBTLv5wfvvygJouVCVe87Ge7mCeY5vey1eUi4zSSF1zPpR6gg64w2g4TXM5qt SwkZVOv1g475LsGlYWRuJV8TA67yp1zJI7HkNqCo8KyHX0DPOh9c+Sd9ZX4aqKfqH9HIpnCL AYEgj7vofeix7gM3kQQmwynqq32bQGQBrKJEYp2vfeO30VsVx4dzuuiC5lyjUccVmw5D72J0 FlGrfEm0kw6D1qwyBg0SAMqamKN6XDdjhNAtXIaoA2UMZK/vZGGUKbqTgDdk0fnzOyb2zvXK CiPFKqIPAqKaDHg0JHdGI3KpQdRNLLzgx083EqEc6IAwWA6jSz+6lZDV6XDgF0lYqAYIkg3+ 6OUXUv6plMlwSHquiOc/MQXHfgUP5//Ra5JuiuyCj954FD+MBKIj8eWROfnzyEnBplVHGSDI ZLzL3pvV14dcsoajdeIH45i8DxnVm64BvEFHtLNlnliMrLOrk4shfmWyUqNlzilXN2BTFVFH 4MrnagFdcFnWYp1JPh96ZKjiqBwMv/H0kw== Message-ID: <26db543e-268e-7511-d97c-731d668a7dc3@cs.tcd.ie> Date: Mon, 15 Jul 2019 02:51:56 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.7.2 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="YJn8C4YlS97Z44e7Uoq48WaW616u3L2xd" Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 01:52:11 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --YJn8C4YlS97Z44e7Uoq48WaW616u3L2xd Content-Type: multipart/mixed; boundary="o3X70RtpkiFpLHR6AlcTNq6ZJtHaK9eXz"; protected-headers="v1" From: Stephen Farrell To: Bret Jordan , Eric Rescorla Cc: smart@irtf.org, Dominique Lazanski , IETF SecDispatch , Kathleen Moriarty , Phillip Hallam-Baker Message-ID: <26db543e-268e-7511-d97c-731d668a7dc3@cs.tcd.ie> Subject: Re: [Secdispatch] [Smart] New Version Notification for draft-lazanski-smart-users-internet-00.txt References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> In-Reply-To: --o3X70RtpkiFpLHR6AlcTNq6ZJtHaK9eXz Content-Type: multipart/mixed; boundary="------------8768D883644FD43792D3CC21" Content-Language: en-GB This is a multi-part message in MIME format. --------------8768D883644FD43792D3CC21 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable In addition to Ekr's query (to which I'd also like to see an answer)... On 15/07/2019 01:45, Bret Jordan wrote: > Yes, but first we need to make sure we have the open discussions in a > congenial manner. We also need to full understand what is needed by > operational security to prevent threat actors and intrusion sets from > destroying their networks, users, systems, and data. Congeniality is great. Clarity is required. Your statement is so unclear as to be unwelcome, and the term unwelcome, as it turns out, seems to be an antonym for congenial. [1] I'm sorry for being a bit of a smartass there, (and I accept considering me a smartass would be a fair reaction to the quip above:-) but ISTM that such absences of clarity too-often accompany claims that the IETF needs to change rough consensus positions on comsec and privacy, and I don't think that's acceptable in what ought be a serious and considered discussion. (And IMO that criticism applies to the draft mentioned in the subject line as well.) A couple of examples of how your statement is unclear: - "Operational security" could be some unqualified set of people or it could be a category of for-profit vendors. The relevant "needs" of those are vastly different IMO. In either case the term seems pretty badly chosen. - "Their networks..." could refer to networks (etc.) owned and operated by some entities or by the customers of some entities. Again, very different interests are involved. - Few to zero n/w attacks would be usefully described via the phrase "destroying...users" - in fact destroy isn't really a useful verb here generally (as it implies a lack of e.g. backup and restore functionality). For the few attacks that one might consider as destroying users (e.g. drones/bombs that kill humans), I'd argue those ought not be considered in the same way as attacks that muck about with network settings. - It makes no sense to to me to talk about "intrusion sets" "destroying" things. Cheers, S. [1] https://www.merriam-webster.com/dictionary/congenial --------------8768D883644FD43792D3CC21 Content-Type: application/pgp-keys; name="0x5AB2FAF17B172BEA.asc" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="0x5AB2FAF17B172BEA.asc" -----BEGIN PGP PUBLIC KEY BLOCK----- mQINBFo9UDIBEADUH4ZPcUnX5WWRWO4kEkHea5Y5eEvZjSwe/YA+G0nrTuOU9nem CP5PMvmh5Cg8gBTyWyN4Z2+O25p9Tja5zUb+vPMWYvOtokRrp46yhFZOmiS5b6kT q0IqYzsEv5HI58S+QtaFq978CRa4xH9Gi9u4yzUmT03QNIGDXE37honcAM4MOEtE gvw4fVhVWJuyy3w//0F2tzKrEMjmL5VGuD/Q9+G/7abuXiYNNd9ZFjv4625AUWwy +pAh4EKzS1FE7BOZp9daMu9MUQmDqtZUbUv0Q+DnQAB/4tNncejJPz0p2z3MWCp5 iSwHiQvytYgatMp34a50l6CWqa13n6vY8VcPlIqOVz+7L+WiVfxLbeVqBwV+4uL9 to9zLF9IyUvl94lCxpscR2kgRgpM6A5LylRDkR6E0oudFnJgb097ZaNyuY1ETghV B5Uir1GCYChs8NUNumTHXiOkuzk+Gs4DAHx/a78YxBolKHi+esLH8r2k4LyM2lp5 FmBKjG7cGcpBGmWavACYEa7rwAadg4uBx9SHMV5i33vDXQUZcmW0vslQ2Is02NMK 7uB7E7HlVE1IM1zNkVTYYGkKreU8DVQu8qNOtPVE/CdaCJ/pbXoYeHz2B1Nvbl9t lyWxn5XiHzFPJleXc0ksb9SkJokAfwTSZzTxeQPER8la5lsEEPbU/cDTcwARAQAB tCFTdGVwaGVuIEZhcnJlbGwgPHN0ZXBoZW5AamVsbC5pZT6JAj0EEwEIACcFAlo9 UYwCGwMFCQmUJgAFCwkIBwIGFQgJCgsCBBYCAwECHgECF4AACgkQWrL68XsXK+qG CxAApYHWYgGOIL3G6/OpkejdAkQoCVQAK8LJUSf6vzwost4iVfxIKcKW/3RqKNKk rRl8beJ7j1CWXAz9+VXAOsE9+zNxXIDgGA7HlvJnhffl+qwibVgiHgUcJFhCSbBr sjC+1uULaTU8zYEyET//GOGPLF+X+degkE/sesh4zcEAjF7fGPnlncdCCH3tvPZZ sdTcjwOCRVonKsDgQzBTCMz/RPBfEFX44HZx4g1UQAcCA4xlucY8QkJEyCrSNGpG nvGK8DcGSmnstl1/a9fnlhpdFxieX3oY2phJ1WKkYTn6Advrek3UP71CKxpgtPmk d3iUUz/VZa0Cv6YxQXskspRDVEvdCMYSQBtJPQ4y2+5UxVR9GIQXenwYp9AP2niv Voh+ITsDWWeWnnvYMq07rSDjq0nGdj41MJkNX+Yb2PXVyXItcj5ybE3T2+y3pSBG FEZYJGuaL4NwtBJFMOdOtBmUOPbetS2971EL3Izxb7ibOZWDwexv+8R6SWYfP1wV N3p46RyBQuXqJV8ccE11m6vtZTGSYgnLUUFZMRQYH+0hwuYe0T3AA18xDdSYsa8v ovCCd3l5S4UNzIM2PMChqGrEzKapUpZg7+8ACcxRU3b9Ihd7WYjJ+pQPCoWYKozv tEvenbNpE/govO/ED3B14e+R2yevRPjRrsN7PJzSf15fQLuJARwEEAEIAAYFAlo9 UqAACgkQLzyHNoBfjaLrSwf+MIHbFRQ4O5cmLYR5sIByWelN3SuRN/gW8rpKo9Ok Cz6An8uV/iCXy5tNMLzzi0BFl8f22DwBcC5qy9qnlIAdogWam1qWoTAoAD8veEqm uKhYrqJsCcAyNrKYmK0hP3rpHxx1LySDmKYXmw/8qtBXKHTouMm+5tSsznhykRMT AAr2p7PSaHgo+hIVaW/rKSspHjDhhZS+G9mtOZad1IH29M6G1Q1NCO0Ywe8krKLQ IAQlFxtgvOqpPOZNzeKBa/+KbE8TGgMWrkOhC8OeEM5PVzdDhlhD9kPzB/pCKDF5 DofJ/ZRqnDpbKPQ0bsW38AOig3kOc0A27awiBEw3urqR1YkCMwQQAQgAHRYhBH4X CgRchM9GDit5oBDvedn9g1MSBQJbtyScAAoJEBDvedn9g1MSI/oP/0A9J9nrnBMq Zpm857lfYWw+rshLK+tyeP4OQeOqnDFvs9jePpcyJLG3DF2r6VbVKPQq+AE6Uf5h cJBDEN6BjEhRPSbLcqG3A1cz/nNwm8rPmNp+oKhmaBBQGxwciMLmzgynsDydnjPp MyEs04zvsbsl4vrp2095o105l8KcrrxQrioFjbwveGwHQK9bxJKhx9D+gIk+MouB ur45UDKTZkMZrr9FGrtkyXCGAxvKdcNC5Oa8z9sj1rcUJfG/OpVAMWhArdlZbFUQ yoX6pU2Zb1CR2qpWAVerGSfBhmfCyStjARqaKxlftjO+Bj3Jj73Cr5eqej3qB5+V 4BCsPjr4RLvVbYUCPsRdxWc+nBLlfVYkRURu21g1hFm5KFPjgUkyo1s4vjUOY8Dy I+xLGF7f/IhUBG6l+Vswhpwu7ydalZkeFiPx5xna5NfbEYxvsIf71DvipGvIOaHv X4egWoFgm8n/9c3rcMxJtpwHPSsUt5dgLsyu6VE0IbvOAc3dN7CWJ355DVFJq9Zg 2YVf0izSpyyzJeGsgkfjW6xpmdvZxuT2UcN4BTcm6vYqueASGrb3lfhzC5gpeVsc /MoSjTS65vNWbpzONZWMZuLEFraxWJzC0JrDK3NCd0VN3kstqGkVbUIiYOnUm8Vu 4zoVMLlGWzHLIGoPRG2nRezn1YyNfyb5iQGcBBABCgAGBQJbxcflAAoJEGo7ETk8 pK1gE7QL/ApC5P68W5DrI1787WJVZv1u4t/g39vTr7Xer3UMTVQg10vpa7pmqOGh jIDzDMg3Pe3K3M7fVzfAlUA1qw6ne4RCueVoRKpubeF4AlYbMr0K6hNCPjt5uAxm bBVuejKTc6pru5rv5gKL0nDbr+Snft5xt7juBLSSimw0/41sZnkjCxo9rF/RA/v6 +uWyK171RKmsEYu8fFtw1eqUNt/Xj792TUixE3pxXheNtQtZGk/9P3W83ChhG4Fh 5EQsn0pIh9wZIAbMRLpgRKyW87fWHZC8/YH8h7afarvn9Thl5pFUldCe22mNJj6K LChn2aEHQd+PdY1GBpZEcmNEUPuovwzatM0h64hCzTm41eDqRfihZVBT7TbfXQnv 8rywa42Mk756RGzzEZcQEhwQXZcMQUfxIQQ2VyJo0zG36VdZTQF7TF/4Lz7/3cJ5 6jOIm+dwPXtu+C2wAQuD4USOLt4JWPYpqzDfHYJIND/497P9Z9SuQeahr2ez3DRB g3qsHEjBV7QyU3RlcGhlbiBGYXJyZWxsICgyMDE3KSA8c3RlcGhlbi5mYXJyZWxs QGNzLnRjZC5pZT6JAkAEEwEIACoCGwMFCQmUJgAFCwkIBwIGFQgJCgsCBBYCAwEC HgECF4AFAlo+o3cCGQEACgkQWrL68XsXK+qO0A//ZsfQzyXrZlu/eEV5jU620yeO M3P7SW3C3UQYdCgZ/TlvxGgKow5oDSXgjMiUyq9csGqbPBxlDYSxFZHNeDVKYIuP 2ZK24tw5k6duTh4+sFwUualTMlcp0zBCIzn3hRcsRvuPKHfl5+6oOi0+xqx3jX/s /69L/fvHmdSKet5LIUAxoYaZkTCruFrPWb01tgAl5JExWkhmCY98iD+EeiIMAWBj Mw1xV+p0uCwNbN6XDzcToK7wsm+tAIiWUy3DpP60a6WbVwdV0HNt2WZq5U5Jdh2k 4S+sN2CnYk4tTW7jHjsWarV3FLISCOObADZuB7ljU4kYfdwZ+WzenXY4LGlxGQSl AblGjwZe4EIkCXAJUtzJhoFUuGaF/PlWjxqV3UFRcgTERZTijguVyREre8GNERNg vDxZvuXssEjvz9X5JfcIZDIJpdzhLiEIj9noUbfx1SzB5KDPQj0O7elMHa1671/r wWcpGr/MfVPTOik4H7F8rcVJelceZTzC4tvya7M+jM4fyFWWt8Y4atTixUiP7U9o 4uBZCQ0GzvsmFA4XLqn2pA5rVizMXnGbGOjufAP/efEJ4ul3qvjYe8ye8DXEDjKA xo/tuHYtk19XCi83QzFhWls5TT+XQeVTMEvVqo9Wek8yoxo67qvLKKqIcG9givQd 8MxYNAbNYgSPtkbhZ8SJARwEEAEIAAYFAlo9UqAACgkQLzyHNoBfjaLzHAgAlWT6 NXEGtw/r1miKNGcopzvzILQ9oB8rKI9U9EL6tOf/y2V5oYee/GyQDb3ZdoPxxYYc Jf+RyiH1nMoqUIZiZJaf3bJXinDZ5+AdfE++UR2NBvqaNyC6u3r24jo1B/sagKbY tWgsYtRqHLD4IWi37MZrVyjBuF7u14Q07+uhjq6mX2O/tHpCYw/Q82tbeTRPyUf1 WQOAfD1kfBpW9PvAva5Iw9FWeXpCXRzwxnCZhYfGfqtuSw6CPBYLdbikqML6FZ7E DuTBb/8um1wK7Y9bgeIQC+CYjhYB5RXa1tDJRab2Js4luCvSR0w/CgHw26293tlv e2Q6UTrmHxP5U22DlokCPQQTAQgAJwUCWj1QMgIbAwUJCZQmAAULCQgHAgYVCAkK CwIEFgIDAQIeAQIXgAAKCRBasvrxexcr6tJpD/4rrILH+meP07vrx8wW5eYuqCiP GYnh/CXxIF8eLrfbe5d4QRgtq+w6UeQPMyzKRIRiCoBXB2oJLBZHyxBPxZlg33dT MrEGn8QWKx2iNuz9rZMXyOSWFetuO01d/aUPd5BnbLbIyK5of8xCQlXM6KH8bc+9 gQ7edR9mfLTdvBf2FR522hg8BRBM1imKc3vO8v39+qIHHRjuiwxBBCAOhHtHRsZX ripS0uFA07dM46Oi/E8osjx6fQt/lH5z/PN+2adxYSrLSAXfr1oD3RxYNhuWgyGF L64/VCQb1YGjf0Z5MBPnWm9jgUoOY5K9eNSS0L83WeJjlF5+Q/WOgB+rb49Prm2D Feo9+S9f2V53Llz1WIspXJg6f+n9lmHE94MfQj1GAHCzI0FeL19lvM+LhD8jJSCb hrC3+yobyy/AUOs5Z3E+njjX1FF/VCVAs6iOa6i+XG+Y1hh3ir2y1kckJ5auT10M SU8GEZu9ayU4M3o3N9yxOjaoP0NuQ4MMLL/n/u4u94AeZaHPNBXn/hVfVRRmpRXt GKvJtFAEppGEYezB+bLKIm6XlpPkhnwYzleLZ7AMEco2C6QM8QPB3g3JpS3sqRhA 5rEP4lL16BmijmF+CHoPE/zwgKZbKpyVDqvIW5IDgvfIC2X4pbZDRvGIUKaGSB4+ ksZgUUnNyvfQr2p7jokCMwQQAQgAHRYhBH4XCgRchM9GDit5oBDvedn9g1MSBQJb tySbAAoJEBDvedn9g1MSeKkQAJm44jt1kwHgQgeDBKdjdvl0AjE0xVEQxriZ6lP/ l//34YT0auFfzsYIrChSpQXAEtobBAr4Ohw1Us+BZe+H5P8vm6LRuPwozC3SjwfX 4Iec8+9ot6tIVg4sbedDSgb/CCFVjsmIGcQ1P73JLJTBJ6mxYCV/gn3QC6bwDOFo 7kD9FDHCjRN8XfhHQ4Q9cYyt06uF31qG/aumgWYC9geCGgAwiHgwxNYb9GoJ0iZj CROwbYvLTcQgsVUW2bTmsVR13UVKDsdl02sRV7qcVYW6R0a3Ra8KudX+nt25H5DR Gd382KZ5W8pydsy/viTvD9z6v0ulChBYxAedIvGIClrhbxlLEPmIg4ImVOLGqsUg Vm32J95WOjEkk4PEZ12xSDBtwhSJqmJNboWlfmw43KdIbY8zNhffIO3N6O7FsdGx mqyHeLoTpqY+ySVUPpbuyW8ujnI/J//+6hdTZ9dQsEJQlWngKuWOQ5ma58MPSN88 zllsqhZAFQjNxqnkSzL6ZQ+v/jvuRRe16B80AeO55DsmbWsMv/YLLD1mSi7+Khy2 EtMBhgojWwrGMvdLN6X3mnzNJEscYyLxM9tSk+iySP2sLthK0BVgpAzBSdaf/ezI z60P+neHDzteNFf8Mn7lmgYk1amvZoJ29s5+n2HwxyRL5dVMyMdyQmntubbctfqr Z0tIiQGcBBABCgAGBQJbxcflAAoJEGo7ETk8pK1gnCYMAJY4FeIYjlIXGghFWzsB 4fYwK1+iaFpU3fSto5qcrqVtVPjXpwqczqBWeXGyQxiB0kan4OVAXydIeaP8EAuF CA7paP3s9STLJBO3KurkwyRkPW5zo0X7xVqaVToRsX2Ul98KVJoHYQD1KdezEtwl vpNwiiBr42AYR751Vm6JBVAbQXuFpB3c8bUV0OkkRxNFtL8/2PieHar58n5dntGk bPlPkztahsFqktgacIgXHX5vaT+7YeeZ1DWLOYjGO0wNhkOSeroCmxwJUikU7joB p823L7r5KfpqWTPpSCzVstQKZUGmmoE1qCswY/Ud5wvp9SccpIILkRXj0rZRtfnE 5MpL3hjmtNzfDd9qIsJtBJlSB2hZwAsVm1l+EWN9hG3tqyA43niUMy2n6q690of3 berSiQ+kvY/aC9Hx8I+bKzOV9/J2VUTqfaPZa4Uy2rVX5Q2p69n/PMj7mEer0rCL 3j9V16J9c+s0BSkXoKdtYdB0TWVhBgUybd9qtYcwHWvhP7QuU3RlcGhlbiBGYXJy ZWxsIDxzdGVwaGVuQHRvbGVyYW50bmV0d29ya3MuY29tPokCPQQTAQgAJwUCWj1R WgIbAwUJCZQmAAULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAAKCRBasvrxexcr6jsc EADEcB0WQEZn2AkrzDs1RhL0Lp6cZi0BigofkbcGfdhJyMSs19C0dhvncrAFClVI 6/Udw3yFtDyYtOCf2W3M3A1K6/RfEizCLzTsdFIhni9gOJLlUpXViQtgrlstjk7h qVV3Ooz4BlCqS4cG7rfqf4LQQPpTAuFUEV9I28FBUB2irqC+v4gTysIgpMw0bA1y BU9sX5jE/tRkzqnuzZrkwiobDtRFJ9qp+7O2JtcY4EsVtLAsaodJKc5cF8R4OvB1 n66vxxcgg9Eh4JNWZ47xsaCmAGo1Bcb2jIY35OtgAL7gCGLRSMKTtAaPy1/fEgIq hCljJ9x40Fkn/3r2BX21WC9HFSPFTBz2RluLRzxdgxOrkYK8EiHUPoE5b1AEzZKw 2AbeXfr57f5zYsN3IqfbQLUjMYtUN1wK3Pjb+idD972wyXMWt8uOzlI7b9Ocu+nY m2whBfJv9Pmp3QYTmPz+LB9lH65VNVUSxSXVr5iWXO3qx1HtEiGEqkporMQCTh3T 5Ud3PvMSRBFFKNs9WhJ/Lxz+SV30WLwG6dr5mQqlzAhb4Phc/zekZyXRdS/oDKrB LUucS36O//49JeyRi1QvOfxnfmIqRIAf/k3PoYJmTo5E82//r5Qj3YGlRu78ba0H Arxs+ACD6AnEHHcbswpbtVEKYzlSu0Ar0Dc7vRWM/IyQdIkBHAQQAQgABgUCWj1S oAAKCRAvPIc2gF+NosIsB/9f/29FNla3BJfGIEIDnhrqGD0i9bSa89SqBd++uG06 TQgW5wsqtNcrwn81yZTq6XE6i9VtD4GKfqC0d4KZJr9bnbeD81cI64VOdL8zJWJs 0vj5EIXCobKyX74Kb4uePUyZqwT2Q74I116u/HwA9/FXsPo5isbh4ZqD4t0VHpWk mfq1FPT9a/JPyX46qKqB2Fce/7Qy+SQP1NfkuUlbhUH/JG9aSSYvk3lznNiH41x9 M+FDlL106itXOubrl3oi2fT3fsSedq7uzt+IV0DQEeNaoQAUuwEhdB8IWOMqN2wo DjGVKJftfsSWY9ilZrnDBNDrp0vRqcx33LUMkIw4d7iBiQIzBBABCAAdFiEEfhcK BFyEz0YOK3mgEO952f2DUxIFAlu3JJwACgkQEO952f2DUxJjuw/6ApHSsVTWD4a0 H6FJ23A9Ftpy+aXZ4vYlzkSrfsn2ECrEfK3lXQh/uzwjJUDYZeB1/BQsFZtcYNQO JSSHbQ49BFRLwb1J/wBZG4bbmrkLxnNbKDKQvzxEpclkMW0Dj0J6o7kGrmzIGGrh B+JJN99AcineHRug8ZSFIERRCmigxdhAKU0BFD7P+5HNHltSL3DF1c2fFOf2JrgB KVoE+9RhMZjWNbYetFFLCkjXb5Rpay9zeMm1DxfSTGAnuOwUXW6qq4hnl5+VC/48 ceDZElLLfu7RQUZv44pkSTOWZs+iQoJiHMFHk9wPqyB2Vok1yJ2a2j27WhXrJlPw nZbgJO5RyWDG3p/eVmpl5Uuc2dsfIpR17KnAuWpghK6V+cyFncDoGCl/YG2Mvool sW08FiZh3Ej4dnJjj25TZkeFG74JJDXLvMYpJfSBGnmETv4Dhcm2xPqVMuFuL1qJ lMbVLrMo2GXeo03OzNyvbs+u8WLIaGm5hC7N1CXY8wZs4jo6OJ/expvnc07dEuws 4zT3AiWv3nIouWReRStZy9QkavDocqbyPmilcdPCYk4BsOlzpwwO74hNG7iyl0Kd AlwTxGQ7y0rJou6HYa1TmRhIEr3vKvlW+JfUUrqtjXgsuacTXo4+Ira2JUErL2cY zQMq1j4r1ZyhFnuz93s7Rsx/Nw0+0YuJAZwEEAEKAAYFAlvFx+UACgkQajsROTyk rWCJqwv+NLVPE4sD4sDA2/6Ek7UsRIUkg+S39fhqWsLc4rtw/mDunv8Un61I3K04 fZ2Ry4nF9hZM0a710UvXFbStvrzRJO3EAAcdJR9LTCd19e8UeruQbIee3YT91U4N kC9JMpecfq62/teOAU2e5P3fWYaLs5ZX7zCLwWuBcW2l3SyoljQczM85HhJ3XHm+ FnwQ6D9xRle+lvWTcuC9d1yAyUb8IOospcL2lJTmy8e3r79R24hPlSB4LDe0wEN8 AXbagrcAQZjwyaHyWxjJbTwZ0b43WGdfIqZ1ElOeoffbketPGRmWvx5xUvb2ALFB BdETzV270gs5XDJgJ1SIIKOyDADxwvroTe2jD8C/841eEql5QSow3s/U3zRqk3mt tto8Qw/DN71aeh6dmYSsvd2UjsHw/vofOPRBGxZLEkKTEvMnhmMW9hiKPkPia+Qg evYE020qpKSxLEdWA8nprHwxmGiDNesCfXSC6vm1qfyj5g8HzxSckq9ZaMhKMCo7 vxflUEDuuQINBFo9UDIBEAD6DdHQfMav8OXfhjTteoarOrlJTSdci727xiezGPuB HmpvceBRZgRasdbaMc4HJee+R9+5x/nLPCuy/DxDyIjwIUeJNgc+l7LjI9WfpHTD 8U4xxjvR5Mi7+ToQQUOUNuzT0O0pyuxP1uY3RehHEhOVfBZO59ipSeZL5iQC6T5M sK1SKfs51pLa5ToC1rc8tBJ4zZmxRAyZiYc/AH2uZ/6rYjTTkAn1DVI9DYo2D/zE 4bGjXdJW5pKphFB2lX3dG4I7ODi+5e1H6A/QpCu6z8/ZkIQ+9T1xcX/YwiFeA7Pb TuW/eITbMbI1eV3+fyym9aT7Rsflmp31Zxtr+sZwGGZf00ooMBFmqOS//NUQ/Vf3 vDUew1h5QU1yDaWT3NApvi+XWPH9TPy6TMfZA2FThHf11sX/gDBa5JWQZbptPEcm oazpiKZt91CrFPOaoXDPck/Q61dfmr/oPikfByYnASIM3OwEuXqyQ9JDRfKrem5r +oA/wxWb5jELElAhOpnyqMMvOh7uz1foUssL8MAv2TGXmxpVJ8Nu4je6wf96Z22f Q0D38zud+CKH3bMP3ayXXJBcdPoENrzFbWP5FTg/4TTDJ3vOAHZR5iCunYghx8b7 Ffa4UbkwlD+dh8GiIAtvT51Ac0cO0Wc0Zjc57zPUz1zloMbf+zb1Bsn7DuEQoqj1 gwARAQABiQIlBBgBCAAPBQJaPVAyAhsMBQkJlCYAAAoJEFqy+vF7FyvqrC8P/1tF 6TeR83xD6MasqXyrBjwcLmziaF0Mlkj8k/YUiZ/knb53n97xQnh9yxPv0TT8Wpfd n3BmvqGyh8+ouHX9jMOxiRkMdNhIauVYY/8jmRfBSYWcFkfMzdYasvdLtmYJgx25 2HKTFdeOrszoOjWjEzwmh+tca3AFMu/nB++/KAmi5UJV7zsZ7uYJ5jm97LV5SLjN JIXXM+lHqCDrjDaDhNczmq1LCRlU6/WDjvkuwaVhZG4lXxMDrvKnXMkjseQ2oKjw rIdfQM86H1z5J31lfhqop+of0cimcIsBgSCPu+h96LHuAzeRBCbDKeqrfZtAZAGs okRina9947fRWxXHh3O66ILmXKNRxxWbDkPvYnQWUat8SbSTDoPWrDIGDRIAypqY o3pcN2OE0C1chqgDZQxkr+9kYZQpupOAN2TR+fM7JvbO9coKI8Uqog8CopoMeDQk d0YjcqlB1E0svODHTzcSoRzogDBYDqNLP7qVkNXpcOAXSVioBgiSDf7o5RdS/qmU yXBIeq6I5z8xBcd+BQ/n/9Frkm6K7IKP3ngUP4wEoiPx5ZE5+fPIScGmVUcZIMhk vMvem9XXh1yyhqN14gfjmLwPGdWbrgG8QUe0s2WeWIyss6uTiyF+ZbJSo2XOKVc3 YFMVUUfgyudqAV1wWdZinUk+H3pkqOKoHAy/8fST =3DYzQY -----END PGP PUBLIC KEY BLOCK----- --------------8768D883644FD43792D3CC21-- --o3X70RtpkiFpLHR6AlcTNq6ZJtHaK9eXz-- --YJn8C4YlS97Z44e7Uoq48WaW616u3L2xd Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEW7Wm6ldl0sWGPK4nWrL68XsXK+oFAl0r3DwACgkQWrL68XsX K+pjFw//WreZ/5QwN0A6v/PaaLw0sv3qMUbR0n+GLUW2hLUYO5jFvpIkIYcMJUx/ SiVPhSv8xxNNH3qTQHakbFslA9Mlfmc7sDPmWb85QMKuO5c0BgavnUwVh1iP4ND5 axy6vPUmBlIWaDq0ugfxiASa3VILbky+/I5W2ww5p/iKXtX/fqt/Ki36QdH2pOB+ imee+x7kmsuYx2Gyo1gzjVFq5RFXn51EOYV7z0/rCVQMsTzQ0KPpc9PO6kGhnjt1 MPoC7X13aXTe7kwIU4Re96TG0rfa5/Xtwgw56nTETmh7I21bs9OQ1wKVP7J68opi bkxfWqD2uBXWRI/BesdF+1cpr8JM1S5pz6DwX0PQRjc2iu22yoN6c/jynY+liZm5 JOStqbpbzR+R4vUriOOBFQ70/bZ9GDSco0G5YC4TyLU15Oq9Oc5U42X/ymL55agg buPl8Em3EiEaPSwjbWaQ2oxvYrF/37JwXmKe9P8mOewQsU6J9KJUvErx+MmfcDbP Fq2K02EoHyljfFnTLzmcXYTYsA0vE3Bw3TfWRPq6Hm5ouYFXYAzdIVvfL5J3DTRn vyWPyVcJb3flcSiW0PXvve04va2e9ikqR4v/646AEu+pio9TjWAU2pucK1wZRIZw Kj4EdW+zP52BVszmHtVXT7YjJTlmXKbUl991VrPtWK5FUVmtrVs= =LJfp -----END PGP SIGNATURE----- --YJn8C4YlS97Z44e7Uoq48WaW616u3L2xd-- From nobody Mon Jul 15 01:27:55 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7578E12083A for ; Fri, 12 Jul 2019 11:40:57 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.106 X-Spam-Level: X-Spam-Status: No, score=-0.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.247, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, PDS_NO_HELO_DNS=1.295, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8Gh1zKGrvPGl for ; Fri, 12 Jul 2019 11:40:54 -0700 (PDT) Received: from mail-oi1-f177.google.com (mail-oi1-f177.google.com [209.85.167.177]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 70B2E120835 for ; Fri, 12 Jul 2019 11:40:52 -0700 (PDT) Received: by mail-oi1-f177.google.com with SMTP id e189so7965399oib.11 for ; Fri, 12 Jul 2019 11:40:52 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=goZ1W/qUS37NwsTXBe/YvFKXHRR+lVSncml/c9V2Nlo=; b=CwqARtTCKpAx5ESFMiUAXdRIrPeyWJaIAyQol8N5ahUetgCJ2XjpzYdHQqo3Vk41ra I9LURRN5hiiH9qaNDjxrDU6C+ukHjDfuJCsJfE+9POE8FN0jyQY2juCV+tkdY3pe+RkD 5M24RFsu5rA8TaTzj7sfj8HtDSY+iY5rWsND2jSUJlreE2r2fyiulJG26qO1lY52e6VY KZcuGGRSnWuclJGhvVsdznRUHITHHzAGQuHmHWyf8no0IVNP8kmMdoJRKGVwV6EzfOw9 c3m0n5J3sm+uxdqf0QlG42Z3n2zcYdRwGnLxViADFXgt9bS9Pyow4gs4oO0bLs3aRt3m E3Lw== X-Gm-Message-State: APjAAAVnEyfU5IVE6frtNB+F25y1fvN0LqWThgB8g0p2UGRRM+ldO+cn re0SmXcebh3CHpTXZ50PrUGg4i335tpRiUOJKcQ= X-Google-Smtp-Source: APXvYqx7KmhYZP3A03w7CURLbAzcKecxz6smevOmxbomgClUROWJUIgH0d0UoMKZ/nsiSf1QhbTtAwtGHF77QM5xNx4= X-Received: by 2002:aca:4255:: with SMTP id p82mr6983694oia.6.1562956851260; Fri, 12 Jul 2019 11:40:51 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> In-Reply-To: From: Phillip Hallam-Baker Date: Fri, 12 Jul 2019 14:40:39 -0400 Message-ID: To: Bret Jordan Cc: Dominique Lazanski , smart@irtf.org, IETF SecDispatch Content-Type: multipart/alternative; boundary="000000000000eb32a8058d803f84" Archived-At: X-Mailman-Approved-At: Mon, 15 Jul 2019 01:27:53 -0700 Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Jul 2019 18:40:59 -0000 --000000000000eb32a8058d803f84 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Applied properly, the cloud service never has anything but encrypted data and a pile of random numbers. Mesh group encryption is genuinely end to end. There is never plaintext on the server. The server never has sufficient information to decrypt. Assuming only that the random numbers used to split keys are unguessable, the system is information theroretic secure with respect to the requirement for two keys to be used to decrypt. There will always be an endpoint vulnerability in that data has to be decrypted to present it to the user, edit it, etc. But reducing the attack surface from every server and every endpoint in the enterprise to the dozen or so endpoints with a need to know the information is powerful. I have not considered the ransomware issue in depth because the solution is pretty obvious - take backups, verify the ability to recover at regular intervals. That said, obvious solutions can be very complex to deploy. This is actually one of the very few applications that Blockchain or at least the Haber-Stornetta hash chain could help us with. A DARE container is an append only log with optional Merkle Tree integrity checking. So we can do a continuous backup to a write only storage array behind a very very simple and limited firewall that only allows the backup requests through. If the online system is compromized, we recover from the firewalled, write-only array. Getting to that point in the mesh is likely to take five years. But Microsoft owns GitHub. And Git could at least in theory be extended to provide some of this functionality. Alternatively, bring down the BitCoin infrastructure by auditing Tether and the payment infrastrastructure that makes ransomware profitable would be gone. On Fri, Jul 12, 2019 at 12:05 PM Bret Jordan wrote: > Unfortunately I think you are misunderstanding the attack surface how > attacks can work and wrongfully assume how threat actors and intrusions > sets operate. It is not always about exfiltrating your super secret > =E2=80=9Crecipe" as you call it. So database encryption will not always = help you, > nor will putting your database on a block chain. Yes, it can reduce the > attack surface or exposure of your data under legitimate use. But once th= e > server is compromised, the attacker can simply pull decrypted information > from memory. Or can continue to move laterally through the organization a= nd > pull the data of endpoints that do have access to the data. Further, the > threat actor may not be interested in exfiltrating the data at all. But > may simply be interested in using your =E2=80=9C1980s=E2=80=9D crypto as = you call it to > encrypt your database with their own key. This attack is commonly called > Ransomware. > > The key point is that you can not patch your way into security. This is = a > common misunderstand that many people have outside of operational > security. End points are always weak and highly vulnerable to attack. I= t > does not matter if they are end user devices, servers, IoT devices, or > components soldered in to SCADA systems. > > I would encourage you to look at the MITRE ATT&CK framework to better > understand how these attacks work and how threat actors can disrupt, > exfiltrate, and destroy a company. > > We have to realize that the security model has changed since some of thes= e > documents were written. Yes, pervasive monitoring of users on the interne= t > is a problem, but it is only 1 piece of a large pie of problems. We in t= he > IETF need to communicate better with operational security, so that we can > design solutions that hollistically help improve security and not make on= e > part better at the huge expense of everything else. > > > > Thanks, > Bret > PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 > "Without cryptography vihv vivc ce xhrnrw, however, the only thing that > can not be unscrambled is an egg." > > On Jul 11, 2019, at 7:22 PM, Phillip Hallam-Baker > wrote: > > It is an interesting read. But I see a very important distinction that > needs to be made between compromise of user end points and compromise of > server end points. > > Most breaches that occur are when an enterprise is penetrated and the > firewall is the first and last line of defense. So Percy the Pinhead clic= ks > on a link in an email and six hours later the attacker has root privilege > on the corporate server. This is not Percy's fault, the fault is that a > single mistake by a single employee results in compromise of data Percy w= as > never authorized to access. > > So right now we have systems where one compromise at any one of 10,000 > endpoints results in a breach. > > Now lets consider using some 1980s style end to end cryptography. So that > the ultra important recipe data is only available to the dozen members of > group. This improves matters because we have reduced the points of > compromise from 10,000 cooks and service staff to 12 trusted employees. > > That is a start but we are still vulnerable to a single end point > compromise so lets apply threshold cryptography so members of group W onl= y > have one half of the decryption key, the other is on the server and both > halves of the key are needed to perform decryption. In this scenario, we > now require two separate compromises of two different end points. > > > On Wed, Jul 10, 2019 at 11:29 AM Bret Jordan > wrote: > >> Dominique, >> >> I have read over your draft, and I think it highlights some very key >> things we all need to look at and address. Thanks for putting these idea= s >> down on paper. Hopefully this I-D can help us all start a broader >> discussion to improve things. >> >> SMART / SecDispatch, >> >> If you have not yet read this I-D, I would encourage you to look at it. >> It is a very fast read. >> >> Thanks, >> Bret >> PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 >> "Without cryptography vihv vivc ce xhrnrw, however, the only thing that >> can not be unscrambled is an egg." >> >> On Jul 8, 2019, at 12:54 PM, Dominique Lazanski >> wrote: >> >> Cross posting to this mailing list. >> >> Dominique >> >> A new version of I-D, draft-lazanski-smart-users-internet-00.txt >> has been successfully submitted by Dominique Lazanski and posted to the >> IETF repository. >> >> Name: draft-lazanski-smart-users-internet >> Revision: 00 >> Title: An Internet for Users Again >> Document date: 2019-07-08 >> Group: Individual Submission >> Pages: 12 >> URL: >> https://www.ietf.org/internet-drafts/draft-lazanski-smart-users-internet= -00.txt >> Status: >> https://datatracker.ietf.org/doc/draft-lazanski-smart-users-internet/ >> Htmlized: >> https://tools.ietf.org/html/draft-lazanski-smart-users-internet-00 >> Htmlized: >> https://datatracker.ietf.org/doc/html/draft-lazanski-smart-users-interne= t >> >> >> Abstract: >> RFC 3552 introduces a threat model that does not include endpoint >> security. In the fifteen years since RFC 3552 security issues and >> cyber attacks have increased, especially on the endpoint. This >> document proposes a new approach to Internet cyber security protocol >> development that focuses on the user of the Internet, namely those >> who use the endpoint and are the most vulnerable to attacks. >> -- >> Smart mailing list >> Smart@irtf.org >> https://www.irtf.org/mailman/listinfo/smart >> >> >> _______________________________________________ >> Secdispatch mailing list >> Secdispatch@ietf.org >> https://www.ietf.org/mailman/listinfo/secdispatch >> > > --000000000000eb32a8058d803f84 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Applied properly, the cloud service never has anything but en= crypted data and a pile of random numbers.

Mesh group encryption is genuinely end to end. There is n= ever plaintext on the server. The server never has sufficient information t= o decrypt. Assuming only that the random numbers used to split keys are ung= uessable, the system is information theroretic secure with respect to the r= equirement for two keys to be used to decrypt.

There will always be an endpoint vulnerability in tha= t data has to be decrypted to present it to the user, edit it, etc. But red= ucing the attack surface from every server and every endpoint in the enterp= rise to the dozen or so endpoints with a need to know the information is po= werful.


I have not considered the r= ansomware issue in depth because the solution is pretty obvious - take back= ups, verify the ability to recover at regular intervals. That said, obvious= solutions can be very complex to deploy.

This is actually one of the very few applications that Blo= ckchain or at least the Haber-Stornetta hash chain could help us with. A DA= RE container is an append only log with optional Merkle Tree integrity chec= king. So we can do a continuous backup to a write only storage array behind= a very very simple and limited firewall that only allows the backup reques= ts through. If the online system is compromized, we recover from the firewa= lled, write-only array.=C2=A0

Getting to that point in the mesh is likely to take five years. But Mi= crosoft owns GitHub. And Git could at least in theory be extended to provid= e some of this functionality.=C2=A0

Alternatively, bring down the BitCoin infrastructure by auditing= Tether and the payment infrastrastructure that makes ransomware profitable= would be gone.

On Fri, Jul 12, 2019 at 12:05 PM Bret Jordan <jordan.ietf@gmail.com> wrote:
Unfortunately I think you are misunderstanding the = attack surface how attacks can work and wrongfully assume how threat actors= and intrusions sets operate.=C2=A0 It is not always about exfiltrating you= r super secret =E2=80=9Crecipe" as you call it.=C2=A0 So database encr= yption will not always help you, nor will putting your database on a block = chain. Yes, it can reduce the attack surface or exposure of your data under= legitimate use. But once the server is compromised, the attacker can simpl= y pull decrypted information from memory. Or can continue to move laterally= through the organization and pull the data of endpoints that do have acces= s to the data.=C2=A0 Further, the threat actor may not be interested in exf= iltrating the data at all.=C2=A0 But may simply be interested in using your= =E2=80=9C1980s=E2=80=9D crypto as you call it to encrypt your database wit= h their own key.=C2=A0 This attack is commonly called Ransomware.=C2=A0

The key point is that you can not patch your way into = security.=C2=A0 This is a common misunderstand that many people have outsid= e of operational security.=C2=A0 End points are always weak and highly vuln= erable to attack.=C2=A0 It does not matter if they are end user devices, se= rvers, IoT devices, or components soldered in to SCADA systems.
<= br>
I would encourage you to look at the MITRE ATT&CK framewo= rk to better understand how these attacks work and how threat actors can di= srupt, exfiltrate, and destroy a company.=C2=A0

We= have to realize that the security model has changed since some of these do= cuments were written. Yes, pervasive monitoring of users on the internet is= a problem, but it is only 1 piece of a large pie of problems.=C2=A0 We in = the IETF need to communicate better with operational security, so that we c= an design solutions that hollistically help improve security and not make o= ne part better at the huge expense of everything else.=C2=A0



Thanks,
Bret
PGP Fingerprint:=C2=A063B4 FC53 680A 6B7D 1447 =C2=A0F2C0 74F8 ACAE 7415 0050
"With= out cryptography vihv vivc ce xhrnrw, however, the only thing that can not = be unscrambled is an egg."

On Jul 11, 2019, at 7:22 PM, Philli= p Hallam-Baker <phill@hallambaker.com> wrote:

It is an interesting read. But I see a very important distin= ction that needs to be made between compromise of user end points and compr= omise of server end points.

<= div style=3D"font-size:small">Most breaches that occur are when an enterpri= se is penetrated and the firewall is the first and last line of defense. So= Percy the Pinhead clicks on a link in an email and six hours later the att= acker has root privilege on the corporate server. This is not Percy's f= ault, the fault is that a single mistake by a single employee results in co= mpromise of data Percy was never authorized to access.

So right now we ha= ve systems where one compromise at any one of 10,000 endpoints results in a= breach.=C2=A0

Now lets consider using some 1980s style end to end crypto= graphy. So that the ultra important recipe data is only available to the do= zen members of group. This improves matters because we have reduced the poi= nts of compromise from 10,000 cooks and service staff to 12 trusted employe= es.

That is a start but we are still vulnerable to a single end point com= promise so lets apply threshold cryptography so members of group W only hav= e one half of the decryption key, the other is on the server and both halve= s of the key are needed to perform decryption. In this scenario, we now req= uire two separate compromises of two different end points.


On Wed, Jul 10, 2019 at 11:29 AM Bret Jordan= <jordan.ietf= @gmail.com> wrote:
Dominique,

I have read over your draft, = and I think it highlights some very key things we all need to look at and a= ddress. Thanks for putting these ideas down on paper.=C2=A0 Hopefully this = I-D can help us all start a broader discussion to improve things.

SMART / SecDispatch,

If you have n= ot yet read this I-D, I would encourage you to look at it.=C2=A0 It is a ve= ry fast read.=C2=A0

Thanks,
Bret
<= div>
PGP Fingerprint:=C2=A063B4 FC53 680A 6B7D 1447 =C2=A0F2C0 74F8 ACAE 7415 0050
"Without cryptograp= hy vihv vivc ce xhrnrw, however, the only thing that can not be unscrambled= is an egg."

On Jul 8, 2019, at 12:54 PM, Domini= que Lazanski <dml@lastpresslabel.com> wrote:

Cross posting to this mailing lis= t.

Dominique=C2=A0

A new version of I-D, draf= t-lazanski-smart-users-internet-00.txt
has been successfully submitted b= y Dominique Lazanski and posted to the
IETF repository.

Name: =C2= =A0 =C2=A0 =C2=A0 =C2=A0draft-lazanski-smart-users-internet
Revision: = =C2=A0 =C2=A000
Title: =C2=A0 =C2=A0 =C2=A0 =C2=A0An Internet for Users = Again
Document date: =C2=A0 =C2=A02019-07-08
Group: =C2=A0 =C2=A0 =C2= =A0 =C2=A0Individual Submission
Pages: =C2=A0 =C2=A0 =C2=A0 =C2=A012
= URL: =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0https://www.ietf.org/internet-dr= afts/draft-lazanski-smart-users-internet-00.txt
Status: =C2=A0=C2=A0= =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0ht= tps://datatracker.ietf.org/doc/draft-lazanski-smart-users-internet/
= Htmlized: =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0https://tools.ietf.org/html/draft-lazanski-smart-users-internet-00=
Htmlized: =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0https://datatracker.ietf.org/doc/html/draft-lazanski-smart-= users-internet


Abstract:
=C2=A0=C2=A0RFC 3552 introduces = a threat model that does not include endpoint
=C2=A0=C2=A0security. In t= he fifteen years since RFC 3552 security issues and
=C2=A0=C2=A0cyber at= tacks have increased, especially on the endpoint. This
=C2=A0=C2=A0docum= ent proposes a new approach to Internet cyber security protocol
=C2=A0= =C2=A0development that focuses on the user of the Internet, namely those=C2=A0=C2=A0who use the endpoint and are the most vulnerable to attacks.= =C2=A0
--
Smart mailing list
Smart@irtf.org
https:/= /www.irtf.org/mailman/listinfo/smart

_______________________________________________
Secdispatch mailing list
Secdispatch@ietf.= org
https://www.ietf.org/mailman/listinfo/secdispatch

--000000000000eb32a8058d803f84-- From nobody Mon Jul 15 01:28:03 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CEA271202A4 for ; Sun, 14 Jul 2019 17:27:42 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.558 X-Spam-Level: X-Spam-Status: No, score=-1.558 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.091, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wwEQN1xdi2aE for ; Sun, 14 Jul 2019 17:27:41 -0700 (PDT) Received: from mail-oi1-f169.google.com (mail-oi1-f169.google.com [209.85.167.169]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6C77912001A for ; Sun, 14 Jul 2019 17:27:41 -0700 (PDT) Received: by mail-oi1-f169.google.com with SMTP id 65so11357149oid.13 for ; Sun, 14 Jul 2019 17:27:41 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=FTUIeqZ88mr1G0vLDXqzKSBvmb7ykHZBdLT8a+IxpVM=; b=hyTkqKOwfrvHjNqp/Do3Dy8qh/1WuWP5KIPTwvWclLKk2uxGJZUW0VBrPeA9KxfG4g QCnwMdakK1G5KpZZbgElWN96UAEOpih41jwMHjjumWxIxhDy4I9fhFlGloTM8PXBgQgZ jo2H04fRKKZ52m1gnjQ1TBaVLiDdAkk2lvtD6K8Z+tbeZEwZX+O5yCV1lXYXqzpDfCUj g7f9saOUfTL3QmxrsbmLh4qeqmSZnWKTm6T6dyPO1Pkz0PiWM5CTnCW40QwLZ64tbnxg plSBkR2MCpHOrVr2mAFscSOj5von2OXbsiox0WmC7GKGWUAcnI7KeDVXjSkpljE56uwN VFcg== X-Gm-Message-State: APjAAAWjOuG/+MgFxtU+waPeztt7i347jgOrm3oyOX3x3sttHUwSDeNw FO8Y9inyS0hmwh7TAWzae2crrS3vA/xKedqEDxI= X-Google-Smtp-Source: APXvYqwNyH0XBLsIhVbtQEIdFiKiy7uePunZ/RaFdqEwOa5kwI/A7B+JgC2x9biIHK0E/eO+K88Umh0+2t7qXUd1T8I= X-Received: by 2002:aca:5883:: with SMTP id m125mr12276617oib.58.1563150460652; Sun, 14 Jul 2019 17:27:40 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> In-Reply-To: From: Phillip Hallam-Baker Date: Sun, 14 Jul 2019 20:27:29 -0400 Message-ID: To: Eric Rescorla Cc: Stephen Farrell , smart@irtf.org, Kathleen Moriarty , Dominique Lazanski , IETF SecDispatch Content-Type: multipart/alternative; boundary="000000000000f01188058dad533f" Archived-At: X-Mailman-Approved-At: Mon, 15 Jul 2019 01:27:53 -0700 Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 00:27:43 -0000 --000000000000f01188058dad533f Content-Type: text/plain; charset="UTF-8" On Sun, Jul 14, 2019 at 5:25 PM Eric Rescorla wrote: > I more or less agree with Stephen's position. > > First, I recognize that this focus on secure endpoints talking to each > other is probably the part of 3552 that people are most unhappy > about. As I was almost certainly the person who wrote that text, it might > be helpful if I laid out some background. > > First, RFC 3552 isn't intended to say that endpoint threats aren't > real, but merely that they are out of scope because they are hard > to address. Here's the text in context: > > The Internet environment has a fairly well understood threat model. > In general, we assume that the end-systems engaging in a protocol > exchange have not themselves been compromised. Protecting against an > attack when one of the end-systems has been compromised is > extraordinarily difficult. It is, however, possible to design > protocols which minimize the extent of the damage done under these > circumstances. > Hmm... restricting the requirements according to what problems we think we know how to solve seems to be a bit of a systematic problem in the industry. I remember when the malware issue hit and the anti-Virus vendors refused to consider it as their problem because they didn't replicate as viruses. First, I'm not sure that I agree that cyber attacks on endpoints are > the greatest threat to the Internet, but even assuming that's so, > what are the implications of that for work in the IETF? It's one thing > to change the words of 3552, but what work specifically would we > do if those words were different. > I'm not keen on the focus on the end point. It seems like it is brought up as a trump card to 'prove' that all security efforts are futile and the criminals must always win. And I don't think it is true its just defeatism. The reason we need the IETF is that communications protocols are most useful when everyone uses the same thing so we can talk to each other. So communications protocols need standards and hence standards for security. Endpoints don't require standards in quite the same degree. But that doesn't mean that nothing we do is relevant to endpoints. For example, forget 95% of trustworthy computing, the main residual vulnerability of crypto protocols is the risk of private keys being leaked off the machine. That is an endpoint security control that provides real leverage for relatively little cost. But it is a mechanism that can only be used in communication protocols if they are designed with that constraint in mind. --000000000000f01188058dad533f Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


On Sun, Jul 14, 2019 at 5:25 PM Eric Rescorla <<= a href=3D"mailto:ekr@rtfm.com">ekr@rtfm.com> wrote:
I more or less = agree with Stephen's position.

First, I recognize that this focu= s on secure endpoints talking to each
other is probably the part of 3552= that people are most unhappy
about. As I was almost certainly the perso= n who wrote that text, it might
be helpful if I laid out some background= .

First, RFC 3552 isn't intended to say that endpoint threats ar= en't
real, but merely that they are out of scope because they are ha= rd
to address. Here's the text in context:

=C2=A0 =C2=A0The I= nternet environment has a fairly well understood threat model.
=C2=A0 = =C2=A0In general, we assume that the end-systems engaging in a protocol
= =C2=A0 =C2=A0exchange have not themselves been compromised.=C2=A0 Protectin= g against an
=C2=A0 =C2=A0attack when one of the end-systems has been co= mpromised is
=C2=A0 =C2=A0extraordinarily difficult.=C2=A0 It is, howeve= r, possible to design
=C2=A0 =C2=A0protocols which minimize the extent o= f the damage done under these
=C2=A0 =C2=A0circumstances.

Hmm... restricting the requirements according to what problems we t= hink we know how to solve seems to be a bit of a systematic problem in the = industry. I remember when the malware issue hit and the anti-Virus vendors = refused to consider it as their problem because they didn't replicate a= s viruses.

First, I'm not sure that I agree that cybe= r attacks on endpoints are
the greatest threat to the Internet, but even= assuming that's so,
what are the implications of that for work in t= he IETF? It's one thing
to change the words of 3552, but what work s= pecifically would we
do if those words were different.

I'm not keen on the focus on the end point. It seems like it is br= ought up as a trump card to 'prove' that all security efforts are f= utile and the criminals must always win. And I don't think it is true i= ts just defeatism.=C2=A0

= The reason we need the IETF is that communications protocols are most usefu= l when everyone uses the same thing so we can talk to each other. So commun= ications protocols need standards and hence standards for security.

Endpoints don't require st= andards in quite the same degree. But that doesn't mean that nothing we= do is relevant to endpoints.

For example, forget 95% of trustworthy computing, the main residual vu= lnerability of crypto protocols is the risk of private keys being leaked of= f the machine. That is an endpoint security control that provides real leve= rage for relatively little cost. But it is a mechanism that can only be use= d in communication protocols if they are designed with that constraint in m= ind.


=C2=A0
--000000000000f01188058dad533f-- From nobody Mon Jul 15 01:28:11 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5BA1F1202A5 for ; Sun, 14 Jul 2019 17:48:47 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.556 X-Spam-Level: X-Spam-Status: No, score=-1.556 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.091, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bxiw6jqXoPVs for ; Sun, 14 Jul 2019 17:48:46 -0700 (PDT) Received: from mail-ot1-f52.google.com (mail-ot1-f52.google.com [209.85.210.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DDCF312018E for ; Sun, 14 Jul 2019 17:48:45 -0700 (PDT) Received: by mail-ot1-f52.google.com with SMTP id h59so11298505otb.10 for ; Sun, 14 Jul 2019 17:48:45 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Okvd/cugBl0cOhRAaxCj9Rul/laZKddU6PVLk/2ULXY=; b=qz4xyBN28Oe3r/ay0ACr9ECZdjvh8bsz53EN32nReymNuNrVUbRQv2cDPjo51AKX5g B4qs+UO/oWEJ+TxWWWXEEdh5AZHn1JxyD+3mN67uJ0H4WJOH+0ObgkzpCEquiJzVmMcQ AGJ8vZ3cXS8kAZuM8vLDFUJUTcLil6Q9GELgV2uwd+V2sg9vny5iLmKwWPuuzZnrDve9 R0cG3lLnHuMwOhDNqVE7kf/t3cNYs1BtEOs8IBwBpkjp184+Topg7bFqIlYCtUCB8tXG lCxfN967UVFRUbonwLfr8iz8En/UFTElBd/E686YmTrjq5ehK6fIGDBozIjcir2rsv+s hqcw== X-Gm-Message-State: APjAAAVyiSrLCMFsW89pLlbj6CBFZCjPGRYeHOAgmK2gGyE6pzQGu54V wEEYen6HOLjZC3RKB/gOSgyiNFrv6ky1niD0VVY= X-Google-Smtp-Source: APXvYqwUD+g2VmcXTgEu8Ww0oH3asHkDxcqW57dCPDk1nOtWQRyiFDU26IeWmo4gmrchyNTJNZ9hgN1KM5ly6jlQskg= X-Received: by 2002:a9d:7d02:: with SMTP id v2mr10033295otn.112.1563151725282; Sun, 14 Jul 2019 17:48:45 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> In-Reply-To: From: Phillip Hallam-Baker Date: Sun, 14 Jul 2019 20:48:34 -0400 Message-ID: To: Eric Rescorla Cc: Stephen Farrell , smart@irtf.org, Kathleen Moriarty , Dominique Lazanski , IETF SecDispatch Content-Type: multipart/alternative; boundary="00000000000050cb1c058dad9fbc" Archived-At: X-Mailman-Approved-At: Mon, 15 Jul 2019 01:27:53 -0700 Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 00:48:47 -0000 --00000000000050cb1c058dad9fbc Content-Type: text/plain; charset="UTF-8" On Sun, Jul 14, 2019 at 8:34 PM Eric Rescorla wrote: > > > On Sun, Jul 14, 2019 at 5:27 PM Phillip Hallam-Baker < > phill@hallambaker.com> wrote: > >> >> > First, I'm not sure that I agree that cyber attacks on endpoints are >>> the greatest threat to the Internet, but even assuming that's so, >>> what are the implications of that for work in the IETF? It's one thing >>> to change the words of 3552, but what work specifically would we >>> do if those words were different. >>> >> >> I'm not keen on the focus on the end point. It seems like it is brought >> up as a trump card to 'prove' that all security efforts are futile and the >> criminals must always win. >> > > Well, that's certainly not my position. > I wasn't suggesting it was. It is just my experience that whenever I discuss some security protocol development in the wider context there is always some smart ass who wants to talk about end-point security rather than the thing the presentation is actually about. It is like the idea that the hackers have to be smarter than the security specialists because they can always find a Ford Cortina with its doors unlocked and the keys in the ignition. --00000000000050cb1c058dad9fbc Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


On Sun, Jul 14, 2019 at 8:34 PM Eric Rescorla <<= a href=3D"mailto:ekr@rtfm.com">ekr@rtfm.com> wrote:


On Sun, Jul 14, 2019 at 5:27 PM Phillip Hallam-Baker <phill@hallambaker.com>= ; wrote:

<= /div>

First, I'm not sure that I agree that cyber attacks= on endpoints are
the greatest threat to the Internet, but even assuming= that's so,
what are the implications of that for work in the IETF? = It's one thing
to change the words of 3552, but what work specifical= ly would we
do if those words were different.

I'm not keen on the focu= s on the end point. It seems like it is brought up as a trump card to '= prove' that all security efforts are futile and the criminals must alwa= ys win.

Well, that&= #39;s certainly not my position.

I wasn't sugg= esting it was. It is just my experience that whenever I discuss some securi= ty protocol development in the wider context there is always some smart ass= who wants to talk about end-point security rather than the thing the prese= ntation is actually about.

It is like the idea that the hackers have to be smarter than the security= specialists because they can always find a Ford Cortina with its doors unl= ocked and the keys in the ignition.

--00000000000050cb1c058dad9fbc-- From nobody Mon Jul 15 01:28:19 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8974E12001E for ; Mon, 15 Jul 2019 01:01:46 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.502 X-Spam-Level: X-Spam-Status: No, score=-14.502 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id knZwdvJRnVLC for ; Mon, 15 Jul 2019 01:01:44 -0700 (PDT) Received: from aer-iport-2.cisco.com (aer-iport-2.cisco.com [173.38.203.52]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5EB02120074 for ; Mon, 15 Jul 2019 01:01:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1659; q=dns/txt; s=iport; t=1563177704; x=1564387304; h=from:message-id:mime-version:subject:date:in-reply-to:cc: to:references; bh=DT44yFxss/vyM1I3fKBf5AKRUL7m9TiYbAZ0OLUMe0k=; b=LjXaN0b8DJz8t7Z6AQYzHwfW/ZvEZfwxwqAJ3Zaysh9EjcvF3wgToTDR j9wta+OyJh9jpreR2VNrvkCv6DY8UAyK40URhWfy+S0nwJXUMjhyg862N 4hK2oML21SwaAduT6KKrHoIcw/EszBKR6IodEYktT2r5ACsPLLDFhkAbj 8=; X-Files: signature.asc : 195 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AHAAABMixd/xbLJq1lGgEBAQEBAgE?= =?us-ascii?q?BAQEHAgEBAQGBVAQBAQEBCwGDUQEgEoREiHuLd5h9gXsCBwEBAQkDAQEvAQG?= =?us-ascii?q?EQAKDATUIDgEDAQEEAQECAQVthUiFSwECAgEjUQMCEAtCAgJXBoM1AYF7D6o?= =?us-ascii?q?sgTKFR4RjEIE0AYFQh0V2gWqBf4E4H4IeLj6HTjKCJgSUcZVyCYIbgh+BDJB?= =?us-ascii?q?hG5gKoXqDCwIEBgUCFYFSAzM+gRozGggbFWUBgVlpPYIPFxSODz0DkFsBAQ?= X-IronPort-AV: E=Sophos;i="5.63,493,1557187200"; d="asc'?scan'208";a="14312101" Received: from aer-iport-nat.cisco.com (HELO aer-core-4.cisco.com) ([173.38.203.22]) by aer-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 15 Jul 2019 08:01:42 +0000 Received: from ams3-vpn-dhcp3718.cisco.com (ams3-vpn-dhcp3718.cisco.com [10.61.78.134]) by aer-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id x6F81fLb027082 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Mon, 15 Jul 2019 08:01:41 GMT From: Eliot Lear Message-Id: <469416D4-F549-4CAD-9C81-3D4A5A271B6A@cisco.com> Content-Type: multipart/signed; boundary="Apple-Mail=_7A3F131B-C9C8-4863-9760-29E96A502C13"; protocol="application/pgp-signature"; micalg=pgp-sha1 Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Mon, 15 Jul 2019 10:01:40 +0200 In-Reply-To: Cc: Melinda Shore , secdispatch@ietf.org, smart@irtf.org To: Bret Jordan References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <45cc67f6-3dd4-9788-29e5-4cc82471e6ee@nomountain.net> <9683DFBC-1816-4C0A-8D8A-4CE36318C72C@cisco.com> X-Mailer: Apple Mail (2.3445.104.11) X-Outbound-SMTP-Client: 10.61.78.134, ams3-vpn-dhcp3718.cisco.com X-Outbound-Node: aer-core-4.cisco.com Archived-At: X-Mailman-Approved-At: Mon, 15 Jul 2019 01:27:53 -0700 Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 08:01:46 -0000 --Apple-Mail=_7A3F131B-C9C8-4863-9760-29E96A502C13 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Hi Bret, >=20 > 1) Is the content or content provider that the user is going to = compromised and trying to attack the endpoint? > 2) Is the content provider that the user is going to a stage 2 = delivery site? > 3) Is the content provider that the user is going to the location for = outbound malicious content (data exfiltration, CnC traffic) > 4) Is the content provider that the user is going to adversely = tracking and monitoring everything the end client does, aka active = surveillance versus passive surveillance? > 5) Is the remote site that the user did not go to attack the end = point. While we tend to think of endpoints as being equivalent in class, in = which case your use of the term "content provider=E2=80=9D would be = somewhat redundant, from a scaling perspective I am far more concerned = about unwatched unmanaged endpoints than I am about content services. = And again, to me it is a matter of what problems I think might be = tractable. Eliot --Apple-Mail=_7A3F131B-C9C8-4863-9760-29E96A502C13 Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP -----BEGIN PGP SIGNATURE----- iF0EARECAB0WIQTgo4LlIIJ5lIBumWpugA9nE248uAUCXSwy5AAKCRBugA9nE248 uJZGAJ49p34KQ2bqZS8lBekpODO90vFrDQCcD/KC66GSSl035alCkKOd3wWtDaM= =VVX4 -----END PGP SIGNATURE----- --Apple-Mail=_7A3F131B-C9C8-4863-9760-29E96A502C13-- From nobody Mon Jul 15 01:28:26 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C349F1200B8 for ; Mon, 15 Jul 2019 01:11:36 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.501 X-Spam-Level: X-Spam-Status: No, score=-14.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zBVSWSIfeoND for ; Mon, 15 Jul 2019 01:11:35 -0700 (PDT) Received: from aer-iport-3.cisco.com (aer-iport-3.cisco.com [173.38.203.53]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 58D5512001E for ; Mon, 15 Jul 2019 01:11:34 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=9825; q=dns/txt; s=iport; t=1563178294; x=1564387894; h=from:message-id:mime-version:subject:date:in-reply-to:cc: to:references; bh=i+2SHSKPSv+QfCMIt13BeZ0drGNb0wLhXfzBkt/EccA=; b=k/FRo8OCx2MzUzODXKjffw1DHTorv4Kn0BQoEi7Yyj7Dl5B5RzS8bh80 Lj7dBXBZtnBBx0jxN66/WerjNXUfjbNptFHjU68nKeNFS6/ev7soSFtdP pYSPpNp+hDH86bi9vCv1w/JzxG+cVAEb3ZsVIPrF7kpoHkXj9P8DxXKmW 8=; X-Files: signature.asc : 195 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0ADAAAzNCxd/xbLJq1lGQEBAQEBAQE?= =?us-ascii?q?BAQEBAQcBAQEBAQGBUwQBAQEBAQsBgRSCPQEgEiiEHIgcX4tTJYczi0eGA4F?= =?us-ascii?q?7AgcBAQEJAwEBLwEBhEACgwM0CQ4BAwEBBAEBAgEFbYVIhUoBAQEBAgEjRBA?= =?us-ascii?q?CBQsLDgoqAgJXBhODIgGBew+qLoEyhUeEZBCBNAGBUIdFgmCBf4E4DBOCHi4?= =?us-ascii?q?+h04ygiYElHGVcgmCG4IfgQyQYRuCLYsxiiyheoMLAgQGBQIVgVA4PoEaMxo?= =?us-ascii?q?IGxVlAYFZaD6COo4PPQMwkCsBAQ?= X-IronPort-AV: E=Sophos;i="5.63,493,1557187200"; d="asc'?scan'208,217";a="14250137" Received: from aer-iport-nat.cisco.com (HELO aer-core-2.cisco.com) ([173.38.203.22]) by aer-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 15 Jul 2019 08:11:32 +0000 Received: from ams3-vpn-dhcp3718.cisco.com (ams3-vpn-dhcp3718.cisco.com [10.61.78.134]) by aer-core-2.cisco.com (8.15.2/8.15.2) with ESMTPS id x6F8BVof017424 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Mon, 15 Jul 2019 08:11:32 GMT From: Eliot Lear Message-Id: Content-Type: multipart/signed; boundary="Apple-Mail=_EA31B6AB-BD70-49D7-B596-EB987AA88125"; protocol="application/pgp-signature"; micalg=pgp-sha1 Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Mon, 15 Jul 2019 10:11:30 +0200 In-Reply-To: Cc: Stephen Farrell , smart@irtf.org, Kathleen Moriarty , Dominique Lazanski , IETF SecDispatch To: Eric Rescorla References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> X-Mailer: Apple Mail (2.3445.104.11) X-Outbound-SMTP-Client: 10.61.78.134, ams3-vpn-dhcp3718.cisco.com X-Outbound-Node: aer-core-2.cisco.com Archived-At: X-Mailman-Approved-At: Mon, 15 Jul 2019 01:27:53 -0700 Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 08:11:37 -0000 --Apple-Mail=_EA31B6AB-BD70-49D7-B596-EB987AA88125 Content-Type: multipart/alternative; boundary="Apple-Mail=_E1560EBF-EAD9-40FF-B9EB-523295548262" --Apple-Mail=_E1560EBF-EAD9-40FF-B9EB-523295548262 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Hi Eric, > On 14 Jul 2019, at 23:24, Eric Rescorla wrote: >=20 > Similarly, I don't think that the kinds of botnet attacks described > in Section 3 are out of scope for 3552, though I see how it could > be read this way. However I think that the idea of a malicious > counterparty is clearly in scope if we assume that the attacker > controls the network. When you say =E2=80=9Cnetwork=E2=80=9D do you mean the botnet or the = wired network connecting devices? The former is where I and most people = would argument most of the trouble stems from: since a great many = attacks are coming from batted devices. I seem to recall that we shut = down a botnet some time ago that had more devices than all of the = Internet infrastructure at all major carriers combined (it was in the = millions). > Here too, I wouldn't expect 3552 to be deployed > to preclude that kind of work; we have done plenty of anti-DoS work > in IETF (whether it is good enough is a different story). And I would expand that to cover not just DoS, but other forms of = attack. To your point on the E in IETF, I agree that there needs to be clarity = on what E is needed. As I wrote elsewhere, I would be happy with quite a = bit more R from the sister organization. Eliot --Apple-Mail=_E1560EBF-EAD9-40FF-B9EB-523295548262 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 Hi = Eric,

On 14 Jul 2019, at 23:24, Eric Rescorla = <ekr@rtfm.com> = wrote:

Similarly, I don't think that = the kinds of botnet attacks described
in Section 3 are out of scope for 3552, though I see how it = could
be read this = way. However I think that the idea of a malicious
counterparty is clearly in scope = if we assume that the attacker
controls the network.


When you say = =E2=80=9Cnetwork=E2=80=9D do you mean the botnet or the wired network = connecting devices?  The former is where I and most people would = argument most of the trouble stems from: since a great many attacks are = coming from batted devices.  I seem to recall that we shut down a = botnet some time ago that had more devices than all of the Internet = infrastructure at all major carriers combined (it was in the = millions). 

Here too, I wouldn't expect 3552 to be deployed
to preclude that kind of work; = we have done plenty of anti-DoS work
in IETF (whether it is good enough is a different = story).


And I would expand that to cover not = just DoS, but other forms of attack.

To your point on the E in IETF, I agree = that there needs to be clarity on what E is needed. As I wrote = elsewhere, I would be happy with quite a bit more R from the sister = organization.

Eliot

= --Apple-Mail=_E1560EBF-EAD9-40FF-B9EB-523295548262-- --Apple-Mail=_EA31B6AB-BD70-49D7-B596-EB987AA88125 Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP -----BEGIN PGP SIGNATURE----- iF0EARECAB0WIQTgo4LlIIJ5lIBumWpugA9nE248uAUCXSw1MgAKCRBugA9nE248 uKjfAJ0azW+lj1jQTvClU8IpYhU84/0yhwCffXlOSLbMyAJ+53MNAAadnwv8ipw= =Vo2g -----END PGP SIGNATURE----- --Apple-Mail=_EA31B6AB-BD70-49D7-B596-EB987AA88125-- From nobody Mon Jul 15 04:32:49 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 52C8B120077 for ; Mon, 15 Jul 2019 04:32:40 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fnPCmGRsMJ9m for ; Mon, 15 Jul 2019 04:32:38 -0700 (PDT) Received: from mail-lj1-x234.google.com (mail-lj1-x234.google.com [IPv6:2a00:1450:4864:20::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E0EDF120018 for ; Mon, 15 Jul 2019 04:32:37 -0700 (PDT) Received: by mail-lj1-x234.google.com with SMTP id k18so15797040ljc.11 for ; Mon, 15 Jul 2019 04:32:37 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=U8ozZZyh4ljfD75AvyK62E63F88X745s9RGGlFyDHsc=; b=Ff5x4rhv8in9Rvih9hoFFJSCoQquvMDCK9IvN4pWrddBssVSOB+8DbTbV/ZdBDxmeY rnXGiA183aDbj+WOuCMAjTS3TJRo9paSOET7eqprldCPksMvPj5/ebOtPy5DgLwH05Eo ciUvmZ0JWG7OfmUGK3kP07tvU0MnI60lpxjQ827gsoS2Z9sVgDqiY5MbfidUmkvihtZw StwBSz/U/jPkgVfLmkaWlHMbmG4ANOv6UUTvSF9RHpiBEr5uXTvLXTYhPgsvS7Bx5vR0 qJFvF9S/fBcgNJEb6FoSg5U8TqbI0UBYMMATd4x3zUSSKjI3CkeywEGz1UXAZZFtS5aq zKIw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=U8ozZZyh4ljfD75AvyK62E63F88X745s9RGGlFyDHsc=; b=Hj5n2+3O+KepWmHpBLM0mChb1gbmnH1K0KNpUyQcUS3bqEQMqlNZ8jZ1txUa+dqgYM 87x+6VQClsdwTTR1QkZ+BxXFPo9Rq230uZLnmdBPHoiDyVI2CVfV1D7/4smdqWSogq41 wMVaVhl7sTtKe+t2DalSCKyLpTT20RxCWhPVmJW9Xyr7R3UmnZU0hBuyqiaTq16IysJI 7393ZbDqbGIvT/DJ424FL4j5v2nffC3qOZzbHy8C4hyxW8K9RdBVE7mjgYac/gptOVn4 7aAllXcR7WFWKZCeLDacX6XMNmqtMUcaFPM8wEsuxDQLkkQrVhU7XKdMY+VfHk3/2s/2 fcZQ== X-Gm-Message-State: APjAAAUdlWS5k0c8h3PiAMoCeC6cCiF8USmwnpv1w5dsx/CM+iYDpBRa ypxSE4iJx+JYY0blRbnPai9aRkIdH2kCtp6GhpM= X-Google-Smtp-Source: APXvYqx7Y+YwVvkVrC0bZbS7FvcR+lEFi2yqWoNatPF0h+R+JmS3o6Syh0P4af3167Qqf3QGFI6hF8ZckXniMneD7Lk= X-Received: by 2002:a2e:9cd4:: with SMTP id g20mr13068538ljj.205.1563190356173; Mon, 15 Jul 2019 04:32:36 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> In-Reply-To: From: Eric Rescorla Date: Mon, 15 Jul 2019 04:31:58 -0700 Message-ID: To: Eliot Lear Cc: Stephen Farrell , smart@irtf.org, Kathleen Moriarty , Dominique Lazanski , IETF SecDispatch Content-Type: multipart/alternative; boundary="000000000000e58d53058db69dc7" Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 11:32:40 -0000 --000000000000e58d53058db69dc7 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Mon, Jul 15, 2019 at 1:11 AM Eliot Lear wrote: > Hi Eric, > > On 14 Jul 2019, at 23:24, Eric Rescorla wrote: > > Similarly, I don't think that the kinds of botnet attacks described > in Section 3 are out of scope for 3552, though I see how it could > be read this way. However I think that the idea of a malicious > counterparty is clearly in scope if we assume that the attacker > controls the network. > > > > When you say =E2=80=9Cnetwork=E2=80=9D do you mean the botnet or the wire= d network > connecting devices? > Well, from the perspective of the receiver of traffic, these are kind of the same thing, because you're just receiving packets. I agree it's a bit of an awkward fit, and I wish 3552 talked more about compromised counterparties -- this is mostly due to my comsec orientation, I agree -- but I'm not sure that it would change what work we do... -Ekr The former is where I and most people would argument most of the trouble > stems from: since a great many attacks are coming from batted devices. I > seem to recall that we shut down a botnet some time ago that had more > devices than all of the Internet infrastructure at all major carriers > combined (it was in the millions). > > > Here too, I wouldn't expect 3552 to be deployed > to preclude that kind of work; we have done plenty of anti-DoS work > in IETF (whether it is good enough is a different story). > > > > And I would expand that to cover not just DoS, but other forms of attack. > > To your point on the E in IETF, I agree that there needs to be clarity on > what E is needed. As I wrote elsewhere, I would be happy with quite a bit > more R from the sister organization. > > Eliot > > --000000000000e58d53058db69dc7 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


=
On Mon, Jul 15, 2019 at 1:11 AM Eliot= Lear <lear@cisco.com> wrote:
Hi Eric,

On 14 Jul 2019, at 23:24, Eric Rescorla <ekr@rtfm.com> wrote:

Similarly, I don't think that the kinds of botn= et attacks described
in Section 3 are out of scope for 3552, though I see ho= w it could
be read this way. However I think that the idea of a malicious
cou= nterparty is clearly in scope if we assume that the attacker
controls the ne= twork.


When yo= u say =E2=80=9Cnetwork=E2=80=9D do you mean the botnet or the wired network= connecting devices?

Wel= l, from the perspective of the receiver of traffic, these are kind of the s= ame thing, because you're just receiving packets.

<= div>I agree it's a bit of an awkward fit, and I wish 3552 talked more a= bout compromised counterparties -- this is mostly due to my comsec orientat= ion, I agree -- but I'm not sure that it would change what work we do..= .

-Ekr

=
=C2=A0The former is where I and most people would argument most o= f the trouble stems from: since a great many attacks are coming from batted= devices.=C2=A0 I seem to recall that we shut down a botnet some time ago t= hat had more devices than all of the Internet infrastructure at all major c= arriers combined (it was in the millions).=C2=A0

=C2=A0

Here too,= I wouldn't expect 3552 to be deployed
to preclude that kind of work; we= have done plenty of anti-DoS work
in IETF (whether it is good enough is a d= ifferent story).


And= I would expand that to cover not just DoS, but other forms of attack.

To your point on the E in IETF, I agree that there nee= ds to be clarity on what E is needed. As I wrote elsewhere, I would be happ= y with quite a bit more R from the sister organization.

Eliot

--000000000000e58d53058db69dc7-- From nobody Mon Jul 15 06:06:00 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 042D012011B for ; Mon, 15 Jul 2019 05:20:56 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.501 X-Spam-Level: X-Spam-Status: No, score=-14.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id f_SgbDZbkNCy for ; Mon, 15 Jul 2019 05:20:54 -0700 (PDT) Received: from aer-iport-2.cisco.com (aer-iport-2.cisco.com [173.38.203.52]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0CE241200F4 for ; Mon, 15 Jul 2019 05:20:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=5617; q=dns/txt; s=iport; t=1563193254; x=1564402854; h=from:message-id:mime-version:subject:date:in-reply-to:cc: to:references; bh=8EEQFK1vDpWmqyeMf6E2Q6FR2oye2HmULv8hg9ozJIs=; b=SqzCRANDMWb/7bL/YfkGkisRDjVaqPQNNKJEjV6k+eJaYtZNKrA819Wh doHPTzuenF9YMfqsILxI33IZifk2fzu6G5lVk8/1Jy0iWmeehYALM1Bs7 o9IphBKfJrViqQ/Lk5aTjhwnyPfhKBd+KDYUUm+gfCqR0R/Jk+e7/o/H6 4=; X-Files: signature.asc : 195 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AQAAAmbyxd/xbLJq1lGQEBAQEBAQE?= =?us-ascii?q?BAQEBAQcBAQEBAQGBVgEBAQEBAQsBg1EBIBIohByIe4tUJZJ6h34CBwEBAQk?= =?us-ascii?q?DAQEvAQGEQAKDBjcGDgEDAQEEAQECAQVthUiFSgEBAQECASNUAgULCwQKCio?= =?us-ascii?q?CAlcGExSDDgGBew+rM4EyhUeEZhCBNAGBUIg7gWqBf4ERJwwTgh4uPodOMoI?= =?us-ascii?q?mBJRxlXIJghuCH4EMhG+LchuCLZVdoXqDCwIEBgUCFYFmIj6BGjMaCBsVZQG?= =?us-ascii?q?BWWg+gg8XFI4PPQMwkCsBAQ?= X-IronPort-AV: E=Sophos;i="5.63,493,1557187200"; d="asc'?scan'208,217";a="14319685" Received: from aer-iport-nat.cisco.com (HELO aer-core-4.cisco.com) ([173.38.203.22]) by aer-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 15 Jul 2019 12:20:51 +0000 Received: from ams3-vpn-dhcp3718.cisco.com (ams3-vpn-dhcp3718.cisco.com [10.61.78.134]) by aer-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id x6FCKoJc026171 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Mon, 15 Jul 2019 12:20:51 GMT From: Eliot Lear Message-Id: Content-Type: multipart/signed; boundary="Apple-Mail=_03E7ABDC-DD4F-4485-B749-C998451B2639"; protocol="application/pgp-signature"; micalg=pgp-sha1 Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Mon, 15 Jul 2019 14:20:50 +0200 In-Reply-To: Cc: Stephen Farrell , smart@irtf.org, Kathleen Moriarty , Dominique Lazanski , IETF SecDispatch To: Eric Rescorla References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> X-Mailer: Apple Mail (2.3445.104.11) X-Outbound-SMTP-Client: 10.61.78.134, ams3-vpn-dhcp3718.cisco.com X-Outbound-Node: aer-core-4.cisco.com Archived-At: X-Mailman-Approved-At: Mon, 15 Jul 2019 06:05:58 -0700 Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 12:20:56 -0000 --Apple-Mail=_03E7ABDC-DD4F-4485-B749-C998451B2639 Content-Type: multipart/alternative; boundary="Apple-Mail=_CE9E273F-1917-4978-B147-4582263111A4" --Apple-Mail=_CE9E273F-1917-4978-B147-4582263111A4 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Hi Eric, > On 15 Jul 2019, at 13:31, Eric Rescorla wrote: >=20 > When you say =E2=80=9Cnetwork=E2=80=9D do you mean the botnet or the = wired network connecting devices? >=20 > Well, from the perspective of the receiver of traffic, these are kind = of the same thing, because you're just receiving packets. >=20 > I agree it's a bit of an awkward fit, and I wish 3552 talked more = about compromised counterparties -- this is mostly due to my comsec = orientation, I agree -- but I'm not sure that it would change what work = we do=E2=80=A6 Right. =46rom the perspective of 3352 I would have to agree as well, = because it is about security considerations relating to a specific = protocol mechanism that we are defining and not a broad device threat = model.(*) That having been said, I still think the iRtf should be looking more at = the latter with an eye toward finding new mechanisms that might improve = the overarching Internet security posture. Sorry for beating this drum, = and I realize that there are often better publication venues for = academics, but the IRTF can inform the IETF and broader community about = what the threats are, and maybe even how to plug them in an economical = fashion. Eliot (*) Parenthetically while it=E2=80=99s amazing how long that doc has = withstood the test of time (congratulations!), 3552 probably could use = at least a review for other reasons. The IETF has delivered some really = good capabilities in the last 16 years, and some of those, like TLS 1.3 = and QUIC probably deserve honorable mention. I also wonder whether we = should be pushing common coding approaches in terms of REST, etc, rather = than people reinventing approaches. --Apple-Mail=_CE9E273F-1917-4978-B147-4582263111A4 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 Hi = Eric,

On 15 Jul 2019, at 13:31, Eric Rescorla = <ekr@rtfm.com> = wrote:

When you say =E2=80=9Cnetwork=E2=80=9D = do you mean the botnet or the wired network connecting devices? =

Well, from the perspective of the receiver of traffic, these = are kind of the same thing, because you're just receiving = packets.

I = agree it's a bit of an awkward fit, and I wish 3552 talked more about = compromised counterparties -- this is mostly due to my comsec = orientation, I agree -- but I'm not sure that it would change what work = we do=E2=80=A6


Right.  =46rom the = perspective of 3352 I would have to agree as well, because it is about = security considerations relating to a specific protocol mechanism that = we are defining and not a broad device threat = model.(*)

That having been said, I = still think the iRtf should be looking more at the latter with an eye = toward finding new mechanisms that might improve the overarching = Internet security posture.  Sorry for beating this drum, and I = realize that there are often better publication venues for academics, = but the IRTF can inform the IETF and broader community about what the = threats are, and maybe even how to plug them in an economical = fashion.

Eliot

(*) Parenthetically while it=E2=80=99s amazing how = long that doc has withstood the test of time (congratulations!), 3552 = probably could use at least a review for other = reasons.  The IETF has delivered some really good capabilities in = the last 16 years, and some of those, like TLS 1.3 and QUIC probably = deserve honorable mention.  I also wonder whether we should be = pushing common coding approaches in terms of REST, etc, rather than = people reinventing approaches.
= --Apple-Mail=_CE9E273F-1917-4978-B147-4582263111A4-- --Apple-Mail=_03E7ABDC-DD4F-4485-B749-C998451B2639 Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP -----BEGIN PGP SIGNATURE----- iF0EARECAB0WIQTgo4LlIIJ5lIBumWpugA9nE248uAUCXSxvogAKCRBugA9nE248 uFNwAKDDE6C8mYSdqSIeywNoO53Q4CnXNwCgssCajZjJ/JnSKySbPO9So+yjSmw= =cta6 -----END PGP SIGNATURE----- --Apple-Mail=_03E7ABDC-DD4F-4485-B749-C998451B2639-- From nobody Mon Jul 15 06:08:36 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1477912004C for ; Mon, 15 Jul 2019 06:08:29 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.998 X-Spam-Level: X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pn96dKel5uQZ for ; Mon, 15 Jul 2019 06:08:26 -0700 (PDT) Received: from mail-ot1-x333.google.com (mail-ot1-x333.google.com [IPv6:2607:f8b0:4864:20::333]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1C45512011B for ; Mon, 15 Jul 2019 06:08:25 -0700 (PDT) Received: by mail-ot1-x333.google.com with SMTP id n5so16892743otk.1 for ; Mon, 15 Jul 2019 06:08:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=NiH7quLBgk+PF83LxOGVwFuKuQXFIuYoyp7V6hpdEe4=; b=W0xlhsoVnlbC5wCrGliKoXX0X/uIhSWJ7Jm3BNfvSkuV1mb7D920BJOQn2SSjnfbj8 HaV6mFewp8ZjDiHe5t0Nh5uOEyXXFLa4E/Kc31nUTz3PFqIun3KCsfgt67vMftj2hFj6 xFQv7SJqLXxzvvIR9LqUzfo9V1Ji6Wxi2bH8PUsIwQw0UruX8aJumhVBh58kWOjZ+tL3 dX+PT6lFvKoWjnpqb7PZlB2PwJB8VZIzgzNcB3leua9tUHOk9vvBYkXfnIKxrbocFExS GzThySm3/sgaZsccCqW8w9tZ9w4ARiMK+HbPTa5mMu7sWJurSqDo8Z3tFIK4S/SBe2Ap Ddcg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=NiH7quLBgk+PF83LxOGVwFuKuQXFIuYoyp7V6hpdEe4=; b=UeLHFMuuUY/xGDDI3U7ebfJ5sN9q9GMqC0DfZR5eg0lYXVDm8t6PhnCbmJaSfOFaJv V7Nw6F6DAr8Fs8QFaa7w3vINgmZ8mJpb+r7VFtXxk4VsOWQYSAwwl7hqW8wJ5wT0WK+q mCsrYFg76QzzEv5EiMlytHmzEqXcC+8gr/6di0DfYidcO9O+y7fvQM3kLSKgKlHFHx7h lWRFSHjrXnvYqxdoLkuumVDwiWEqKfVLk831ixTq9KOHb3CBPtlsYigSi3ch/zCSbxNB aQp3hGDez6P2As0qXN08qXgQ9BoA5DEQgSIle6ILDwtzrz/vKcNd6YWdX+yM/O2TAlcZ H1IQ== X-Gm-Message-State: APjAAAVdgHPz/9UPvEcDDmcUaVA36UtE1U1vVtupdUVScdyLqXgFVAcZ dZMFo/NaOkg1ZnGmjArH3vnpozMd8KTgkCYAtqQ= X-Google-Smtp-Source: APXvYqwdyJHagCX8F9MdQisJMyQVhR5Imju16OGYBdFfvV//32J6ZZ1EN4M0s/IH0Wk+BQMHaiyDbQ9hMIhDSRt44LY= X-Received: by 2002:a05:6830:210f:: with SMTP id i15mr19853194otc.250.1563196104379; Mon, 15 Jul 2019 06:08:24 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> In-Reply-To: From: Kathleen Moriarty Date: Mon, 15 Jul 2019 09:07:48 -0400 Message-ID: To: Eliot Lear Cc: Eric Rescorla , Stephen Farrell , smart@irtf.org, Dominique Lazanski , IETF SecDispatch Content-Type: multipart/alternative; boundary="0000000000008413a2058db7f43f" Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 13:08:29 -0000 --0000000000008413a2058db7f43f Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Mon, Jul 15, 2019 at 8:20 AM Eliot Lear wrote: > Hi Eric, > > On 15 Jul 2019, at 13:31, Eric Rescorla wrote: > >> >> When you say =E2=80=9Cnetwork=E2=80=9D do you mean the botnet or the wir= ed network >> connecting devices? >> > > Well, from the perspective of the receiver of traffic, these are kind of > the same thing, because you're just receiving packets. > > I agree it's a bit of an awkward fit, and I wish 3552 talked more about > compromised counterparties -- this is mostly due to my comsec orientation= , > I agree -- but I'm not sure that it would change what work we do=E2=80=A6 > > > > Right. From the perspective of 3352 I would have to agree as well, > because it is about security considerations relating to a specific protoc= ol > mechanism that *we *are defining and not a broad device threat model.(*) > The work areas for security have expanded out since 3552 was written and the security area largely has 2 focus groups now. The SACM, RATS, and incident response work such as MILE and DOTS cover some of these points that could better fill out a revision of 3552 along the lines of what this draft is getting at. My hope is that this will help with traction for work to improve control management and attestation adoption as SACM and RATS progress (MUD too). Eliot pointed out NEA, there have been efforts previously that have had limited adoption that help in these scenarios. The time to detect attacks in well managed networks with tight monitoring of security controls is significantly less than those that are not monitored. These are IETF and not IRTF efforts, but a change in the threat model and more focus in 3552 could be beneficial. There are thousands of YANG modules that went through to publication where it was possible to add monitoring capabilities for security related configurations, but this didn't happen. If the IETF expressed this as a concern and area of focus, we get get more people interested to do the work. Since controls will shift to the endpoint with strong encryption, the shift in control management to the endpoint and us ensuring it's baked in where possible will aid in the adoption of strong transport encryption. > > That having been said, I still think the iRtf should be looking more at > the latter with an eye toward finding new mechanisms that might improve t= he > overarching Internet security posture. Sorry for beating this drum, and = I > realize that there are often better publication venues for academics, but > the IRTF can inform the IETF and broader community about what the threats > are, and maybe even how to plug them in an economical fashion. > I do think there is work for the IRTF as well and would like to see that encouraged. The shift to strong encryption is good, but upends the current security management models for many. Best regards, Kathleen > > Eliot > > (*) Parenthetically while it=E2=80=99s amazing how long that doc has with= stood the > test of time (congratulations!), 3552 probably *could *use at least a > review for other reasons. The IETF has delivered some really good > capabilities in the last 16 years, and some of those, like TLS 1.3 and QU= IC > probably deserve honorable mention. I also wonder whether we should be > pushing common coding approaches in terms of REST, etc, rather than peopl= e > reinventing approaches. > --=20 Best regards, Kathleen --0000000000008413a2058db7f43f Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


=
On Mon, Jul 15, 2019 at 8:20 AM Eliot= Lear <lear@cisco.com> wrote:
Hi Eric,

On 15 Jul 2019, at 13:31, Eric Rescorla <ekr@rtfm.com> wrote:

When you say =E2=80=9Cnetwork=E2=80=9D do = you mean the botnet or the wired network connecting devices?

Well, from the perspective of the rece= iver of traffic, these are kind of the same thing, because you're just = receiving packets.

I agree it's a bit of an aw= kward fit, and I wish 3552 talked more about compromised counterparties -- = this is mostly due to my comsec orientation, I agree -- but I'm not sur= e that it would change what work we do=E2=80=A6


Right.=C2=A0 From the perspective of= 3352 I would have to agree as well, because it is about security considera= tions relating to a specific protocol mechanism that we are defining= and not a broad device threat model.(*)

<= /div>
The work areas for security have expanded out since 3552 was writ= ten and the security area largely has 2 focus groups now.=C2=A0 The SACM, R= ATS, and incident response work such as MILE and DOTS cover some of these p= oints that could better fill out a revision of 3552 along the lines of what= this draft is getting at.=C2=A0 My hope is that this will help with tracti= on for work to improve control management and attestation adoption as SACM = and RATS progress (MUD too).=C2=A0 Eliot pointed out NEA, there have been e= fforts previously that have had limited adoption that help in these scenari= os.=C2=A0 The time to detect attacks in well managed networks with tight mo= nitoring of security controls is significantly less than those that are not= monitored.=C2=A0=C2=A0

These are IETF and not IRT= F efforts, but a change in the threat model and more focus in 3552 could be= beneficial.=C2=A0 There are thousands of YANG modules that went through to= publication where it was possible to add monitoring capabilities for secur= ity related configurations, but this didn't happen.=C2=A0 If the IETF e= xpressed this as a concern and area of focus, we get get more people intere= sted to do the work.=C2=A0 Since controls will shift to the endpoint with s= trong encryption, the shift in control management to the endpoint and us en= suring it's baked in where possible will aid in the adoption of strong = transport encryption.

=C2=A0

That having been said, I still think the iRtf should b= e looking more at the latter with an eye toward finding new mechanisms that= might improve the overarching Internet security posture.=C2=A0 Sorry for b= eating this drum, and I realize that there are often better publication ven= ues for academics, but the IRTF can inform the IETF and broader community a= bout what the threats are, and maybe even how to plug them in an economical= fashion.

I do think there is w= ork for the IRTF as well and would like to see that encouraged.=C2=A0 The s= hift to strong encryption is good, but upends the current security manageme= nt models for many.

Best regards,
Kathle= en
=C2=A0
=

Eliot

(*) Parenthetically while it=E2=80=99s amazing how long t= hat doc has withstood the test of time (congratulations!), 3552 probably=C2= =A0could use at least a review for other reasons.=C2=A0 The IETF has= delivered some really good capabilities in the last 16 years, and some of = those, like TLS 1.3 and QUIC probably deserve honorable mention.=C2=A0 I al= so wonder whether we should be pushing common coding approaches in terms of= REST, etc, rather than people reinventing approaches.


--

Best regards,
Kathlee= n
--0000000000008413a2058db7f43f-- From nobody Mon Jul 15 07:50:32 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A9AA5120116 for ; Mon, 15 Jul 2019 07:50:24 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.998 X-Spam-Level: X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WNDgtxODWjA7 for ; Mon, 15 Jul 2019 07:50:22 -0700 (PDT) Received: from mail-pg1-x52f.google.com (mail-pg1-x52f.google.com [IPv6:2607:f8b0:4864:20::52f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E590C120172 for ; Mon, 15 Jul 2019 07:50:22 -0700 (PDT) Received: by mail-pg1-x52f.google.com with SMTP id z75so7827291pgz.5 for ; Mon, 15 Jul 2019 07:50:22 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=JLPuo2OVxed6SkGZsCOFYnhf0veQ4fefMur2lkQpciM=; b=ldmdXjXcf2DPsKcE2hmNoJDIg5VwpAhyiUlSUI7bMfU6RKa8D5szTCnEfCSjFSULKQ 6dV/RuMHHSyJP/9T8JCWGiclm3jcv3nE7cWgpm4s9E71BBgmj2SHuZ5R+HgrjJc2DLfl 9TmA4GSWlq4D2Opse8jiksQON4UXnXneg/8s9vwc8JB2bLK4bvgHQoO1+h9vjvXiosmW 0J+6PAk7o2anpW4kafad59PwREx4nsJ+FKqFVzHji9ePcbaRHf7X+QFqKV/qb2KnjZKw DzNOTsPllKh7C9PmDnQxZQv+la6cgm0fVzLAPAjCU3DDJuDvIZkLTSDk0iflbkqUI4LK BSdQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=JLPuo2OVxed6SkGZsCOFYnhf0veQ4fefMur2lkQpciM=; b=ISLQzA2cTnr+Nif7kEAcxP7CMteU8Bo8fkoQohgX0ZVR9yz9X6o9cLHL60s4LDMLBY IQAgACI7kdSR+/qGlJiyQDiSH9i+wrKdN7puLO6LHYPEWJCdsI0wiJIPDRcWZ4MMcVr8 ix/HobeOjLVhi0Hh1JifQsyx692ggAHUmheNmAd9sAVw53kRek9UfK3UpdMdRhkbhusO c182vr/j3/CJ9UWI0y/9AHIX6ivoKOGqgmRNVztTk1z1Us5pLyri6kBD5+1lI4gK700r rsgXp9zqaGbea0QLQi2DParF/T4DXQbbsuZSU49S3ED0pAGkr5nw3NONrEvHpSLtuzGl BV8g== X-Gm-Message-State: APjAAAVoPaXVzlgwsodXxhN5q32Fj7BwGPDJbejTHDlV5BBgHti29jIg /NG+qA0KFWLqjigadcwCQ9o= X-Google-Smtp-Source: APXvYqw1erdgq9mZ0LM3FxbCjrIMTtsCaBjfm+74+b0MWItfoJJcdhdbvDlL3ZEczBQdHorBKviZ7g== X-Received: by 2002:a63:7358:: with SMTP id d24mr27355311pgn.224.1563202222445; Mon, 15 Jul 2019 07:50:22 -0700 (PDT) Received: from ?IPv6:2605:a601:a990:4d00:c449:d519:8ae0:afe7? ([2605:a601:a990:4d00:c449:d519:8ae0:afe7]) by smtp.gmail.com with ESMTPSA id p19sm21872629pfn.99.2019.07.15.07.50.20 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 15 Jul 2019 07:50:21 -0700 (PDT) From: Bret Jordan Message-Id: Content-Type: multipart/alternative; boundary="Apple-Mail=_8E2B2E27-5B60-40A3-9A94-FAF44A31223A" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Mon, 15 Jul 2019 08:50:18 -0600 In-Reply-To: Cc: Eliot Lear , smart@irtf.org, Eric Rescorla , Dominique Lazanski , IETF SecDispatch , Stephen Farrell To: Kathleen Moriarty References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 14:50:25 -0000 --Apple-Mail=_8E2B2E27-5B60-40A3-9A94-FAF44A31223A Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii Kathleen, > I do think there is work for the IRTF as well and would like to see = that encouraged. The shift to strong encryption is good, but upends the = current security management models for many. This is one of the points I made during my talk at RSA. These = technologies by themselves, are all really great. The problem comes is = when you start using all of them together. To the naive comment earlier = that this is about vendors trying to sell product, no, this is about = network and cyber defenders and SoC analysts trying to do their job. = There are things like regulatory compliance that organizations and = enterprises are required to follow. Some times I feel like we are so = worried about one piece of the security pie, that we completely neglect = the others.=20 Here in the IETF everyone needs to better understand how SoC analysts = and network/cyber defenders do their jobs, what they are asked to do, = and what tools are available to them.=20 Bret= --Apple-Mail=_8E2B2E27-5B60-40A3-9A94-FAF44A31223A Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=us-ascii Kathleen,


I do think there is work for the IRTF as well and would like = to see that encouraged.  The shift to strong encryption is good, = but upends the current security management models for = many.

This is = one of the points I made during my talk at RSA.  These technologies = by themselves, are all really great.  The problem comes is when you = start using all of them together.  To the naive comment earlier = that this is about vendors trying to sell product, no, this is about = network and cyber defenders and SoC analysts trying to do their job. = There are things like regulatory compliance that organizations and = enterprises are required to follow. Some times I feel like we are so = worried about one piece of the security pie, that we completely neglect = the others. 

Here in the IETF = everyone needs to better understand how SoC analysts and network/cyber = defenders do their jobs, what they are asked to do, and what tools are = available to them. 

Bret
= --Apple-Mail=_8E2B2E27-5B60-40A3-9A94-FAF44A31223A-- From nobody Mon Jul 15 08:07:27 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8B34812016B for ; Mon, 15 Jul 2019 08:07:26 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.998 X-Spam-Level: X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uRRXUFvTjOuz for ; Mon, 15 Jul 2019 08:07:24 -0700 (PDT) Received: from mail-pl1-x632.google.com (mail-pl1-x632.google.com [IPv6:2607:f8b0:4864:20::632]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 289CC12015C for ; Mon, 15 Jul 2019 08:07:24 -0700 (PDT) Received: by mail-pl1-x632.google.com with SMTP id b3so8441820plr.4 for ; Mon, 15 Jul 2019 08:07:24 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=9An9YjiEvFHUQTK28Q5c1nYoLy5wPreotca4uLsJF6E=; b=XIVKhzCHmW32nTSlc6mhG1ZKcG2RDN6PIa9AcRcmxyeZSw/VWm1dyRRVxnitOBYfVs RLvyrpHUpbmvZ5gFjYedz+gr3ieW+6SItC0QalqUGRmRvbGXoatwmdWS3bfOnBqNaJEH J9u7v/4wmqzTj+iT4kju7K2EsIyeVIwW8yYQAewKFfchmY/knOXjO3VvKo+B2NSI1E1W eGuBaA/vWo/TW2BzO9bOys/lO67xb7wDWh5aXiibdLRpATBFg+1w97DEgjY0Vzs0H/94 oRANApc9BOuyY3JMHnIsF7CEY5fgnlcTFFveAXFWS20sER77/9JYaZKyZOfvprE+hTCd ywpg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=9An9YjiEvFHUQTK28Q5c1nYoLy5wPreotca4uLsJF6E=; b=CXeSK3Uo+R1vkW8T6qgOo63kyxKDZj8YVXW+JZbd93uGZarRNCIRpzE8CHnP7xEGCG LDb0/SgbteTD/RR00Mc8Nh5/bHzeYQ9KDQ0/o4a9geode0lqIrft3no+dnJe5SuR+Tdl G//MKB2RiGLhLZsxb/O8QgBy237SCawMWxWEDFqKFszbl6IgOtQsS0lQFiPvGnAKQqIi NYim5QaXpxx9AwOVSoGVsRMvPn2BoEYqqlmGMgc+aHlF340kjUYP48/ZK/l5VhtE6fW0 iCelt/NPo2JRTcx/mQFIQ7x6qzefxYJVOnp5Lr7WQBJn3CB92AQmZi+ple8W0nhDI99k QZNA== X-Gm-Message-State: APjAAAXC2ZOYTTvC6fetYOIpTRYe1AiAQkTRe+huRdZkrdDfZVt9UlXj 4lm7yrB+ePrD8gkO7X8ophg= X-Google-Smtp-Source: APXvYqxGhwyHJJBn/hxtblcp/yUV+EtvlSt8CvCwGpjlclMa/I6HZkabNdtg85YyqOYtTQm0Ly9Frg== X-Received: by 2002:a17:902:e287:: with SMTP id cf7mr28613368plb.32.1563203243740; Mon, 15 Jul 2019 08:07:23 -0700 (PDT) Received: from ?IPv6:2605:a601:a990:4d00:c449:d519:8ae0:afe7? ([2605:a601:a990:4d00:c449:d519:8ae0:afe7]) by smtp.gmail.com with ESMTPSA id p15sm16802880pjf.27.2019.07.15.08.07.22 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 15 Jul 2019 08:07:22 -0700 (PDT) From: Bret Jordan Message-Id: Content-Type: multipart/alternative; boundary="Apple-Mail=_D8AD0D2F-7809-4D28-807C-1CE9250CE918" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Mon, 15 Jul 2019 09:07:19 -0600 In-Reply-To: <469416D4-F549-4CAD-9C81-3D4A5A271B6A@cisco.com> Cc: Melinda Shore , secdispatch@ietf.org, smart@irtf.org To: Eliot Lear References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <45cc67f6-3dd4-9788-29e5-4cc82471e6ee@nomountain.net> <9683DFBC-1816-4C0A-8D8A-4CE36318C72C@cisco.com> <469416D4-F549-4CAD-9C81-3D4A5A271B6A@cisco.com> X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 15:07:27 -0000 --Apple-Mail=_D8AD0D2F-7809-4D28-807C-1CE9250CE918 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Eliot, However, many here assume that the endpoint can run security software, = that security software is available for all endpoints, or that security = software can be updated all at once across an organization/enterprise. = Other also assume that if you just patched your software, you would be = safe. These assumptions are horribly wrong and goes to show the = fundamental lack of understanding. The reason I called them out the way I did was I was trying to be = explicitly clear on where the attack was coming from and what role the = endpoint had in that attack. I did not want to assume that everyone = understood the attack surface and threat model.=20 So a client may initiate the connection to a compromised site or = content. This is a very common case for initial infection. However, = once the threat actor is in the network, they often move laterally = through the network and compromise machines where the attack is not = initiated from the victim endpoint, but rather initiated from a = compromised endpoint. So what you can see and do to protect your network = changes.=20 All of this is pretty basic network/cyber security 101 stuff. What the = IETF needs to know is how SoC analysts need and require sensors on the = network, network log data, and DNS data to help identify these attacks = and find them. We always had a saying when I was on the other side of = the fence, =E2=80=9Coperating systems and software can always be made to = lie, but the network never does..=E2=80=9D Network analysis and network = forensics is a critical part of the day-to-day analysis in a SoC. This = is often how intrusion sets are detected and threat actors behavior in = the network is tracked. This is not about selling product as some = believe. This is about organizations and enterprises protecting their = systems, networks, and data. =20 Thanks, Bret PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 "Without cryptography vihv vivc ce xhrnrw, however, the only thing that = can not be unscrambled is an egg." > On Jul 15, 2019, at 2:01 AM, Eliot Lear wrote: >=20 > Hi Bret, >=20 >>=20 >> 1) Is the content or content provider that the user is going to = compromised and trying to attack the endpoint? >> 2) Is the content provider that the user is going to a stage 2 = delivery site? >> 3) Is the content provider that the user is going to the location for = outbound malicious content (data exfiltration, CnC traffic) >> 4) Is the content provider that the user is going to adversely = tracking and monitoring everything the end client does, aka active = surveillance versus passive surveillance? >> 5) Is the remote site that the user did not go to attack the end = point. >=20 > While we tend to think of endpoints as being equivalent in class, in = which case your use of the term "content provider=E2=80=9D would be = somewhat redundant, from a scaling perspective I am far more concerned = about unwatched unmanaged endpoints than I am about content services. = And again, to me it is a matter of what problems I think might be = tractable. >=20 > Eliot --Apple-Mail=_D8AD0D2F-7809-4D28-807C-1CE9250CE918 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 Eliot,

However, many here assume that the endpoint can run security = software, that security software is available for all endpoints, or that = security software can be updated all at once across an = organization/enterprise. Other also assume that if you just patched your = software, you would be safe.  These assumptions are horribly wrong = and goes to show the fundamental lack of understanding.

The reason I called them = out the way I did was I was trying to be explicitly clear on where the = attack was coming from and what role the endpoint had in that attack. I = did not want to assume that everyone understood the attack surface and = threat model. 

So a client may initiate the connection to a compromised site = or content. This is a very common case for initial infection. =  However, once the threat actor is in the network, they often move = laterally through the network and compromise machines where the attack = is not initiated from the victim endpoint, but rather initiated from a = compromised endpoint. So what you can see and do to protect your network = changes. 

All of this is pretty basic network/cyber security 101 stuff. =  What the IETF needs to know is how SoC analysts need and require = sensors on the network, network log data, and DNS data to help identify = these attacks and find them. We always had a saying when I was on the = other side of the fence, =E2=80=9Coperating systems and software can = always be made to lie, but the network never does..=E2=80=9D Network = analysis and network forensics is a critical part of the day-to-day = analysis in a SoC.  This is often how intrusion sets are detected = and threat actors behavior in the network is tracked.  This is not = about selling product as some believe. This is about organizations and = enterprises protecting their systems, networks, and data. =  

Thanks,
Bret
PGP = Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 = 0050
"Without = cryptography vihv vivc ce xhrnrw, however, the only thing that can not = be unscrambled is an = egg."

On Jul 15, 2019, at 2:01 AM, Eliot Lear <lear@CISCO.COM> = wrote:

Hi Bret,


1) Is the content or content provider that = the user is going to compromised and trying to attack the endpoint?
2) Is the content provider that the user is going to a stage = 2 delivery site?
3) Is the content provider that the user = is going to the location for outbound malicious content (data = exfiltration, CnC traffic)
4) Is the content provider that = the user is going to adversely tracking and monitoring everything the = end client does, aka active surveillance versus passive surveillance?
5) Is the remote site that the user did not go to attack the = end point.

While we tend to = think of endpoints as being equivalent in class, in which case your use = of the term "content provider=E2=80=9D would be somewhat redundant, from = a scaling perspective I am far more concerned about unwatched unmanaged = endpoints than I am about content services.  And again, to me it is = a matter of what problems I think might be tractable.

Eliot

= --Apple-Mail=_D8AD0D2F-7809-4D28-807C-1CE9250CE918-- From nobody Mon Jul 15 08:26:30 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BFDD912017C for ; Mon, 15 Jul 2019 08:26:28 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MLgSF7cgj9s2 for ; Mon, 15 Jul 2019 08:26:27 -0700 (PDT) Received: from mail-lj1-x229.google.com (mail-lj1-x229.google.com [IPv6:2a00:1450:4864:20::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 16A8B12017D for ; Mon, 15 Jul 2019 08:26:27 -0700 (PDT) Received: by mail-lj1-x229.google.com with SMTP id v18so16662272ljh.6 for ; Mon, 15 Jul 2019 08:26:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=OWDyWD33hzbv9s0lcBRqtrRbzGS1jUX+gGSbwjHKLXc=; b=cDAXH+iKAJcPHMe8JQ/q3gDcURoEddX/yM3ci4+VOHZ5hYlVzWa7v96k1IplBXU8TD iuFeNC6bhF12frJc+m0rsYYeG5a3B0gmR+pIgnKiMElQDbtz0rFsn4RKo6lkb7/oyfKx gBDXkF8R/P5SLSqArlG20DyYn8CRIx3sgkSCjHQ0vLQRS9Y78LwRbe8HtsI9zOaqTmlx YXDuA2JmGv2rugkfTKa+QKDq7d2jRwUhi7PvqywbG8/qW2i9Nl12J6vK8/BqqYOs1vA4 9gnSeZWfk3vlnAQqRaav5uk0YOjlHXCVqeKL8FV6chlh9T7kOEgo8dwjfozKMbgCHdvC jbTA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=OWDyWD33hzbv9s0lcBRqtrRbzGS1jUX+gGSbwjHKLXc=; b=Hn/NhHCqEZgY06R4Hi7puOfLUxeC0a/ErAyCVhyycGvJZYUyrYgA+JC46feCVVPHEt 4UW8TiVt673avzIpV++wvnaQYQHTvPgTc6wFouMOeuVX3bUdr35IwbYbGu6zF9HgHMl0 SlzhqyHXUJ+RpEmnLX4gVsKYmmyJoRlK5TA0Po0/QzDsMBHUZpG0vVQ14jIB7ETajWbj YfybcFWihyiFvn2PkQ3nskRR2P4kRZHC0/l+QZlNZVhgPVEhNFFv69G2q15GklFW1RnJ 4btkvYyZ1KA2qDIEAI5hr5VSnuzEiQItWMD8WDTBSFRtVx+hkg4iHinyNrRg5WoF9+ra eDvg== X-Gm-Message-State: APjAAAWjOtfFSt5oReKevCWVYe8JwU9GiMBtNLt65Bxjj9K5Q35WkL2T hqY/d+8T35BNgIkdUSnSlxdjKWNJV8vt+zSVCSw= X-Google-Smtp-Source: APXvYqzbwgvNI1gH8/uEuYdCkB+zE3OQmp3i3fDb6n7kTwu1QzHCHRI7vpDobbW1nEEP4TwdGl1ZDllMGdSEZRqyAFo= X-Received: by 2002:a2e:8892:: with SMTP id k18mr14680637lji.239.1563204385337; Mon, 15 Jul 2019 08:26:25 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> In-Reply-To: From: Eric Rescorla Date: Mon, 15 Jul 2019 08:25:48 -0700 Message-ID: To: Bret Jordan Cc: Kathleen Moriarty , Eliot Lear , smart@irtf.org, Dominique Lazanski , IETF SecDispatch , Stephen Farrell Content-Type: multipart/alternative; boundary="0000000000001982b2058db9e2e1" Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 15:26:29 -0000 --0000000000001982b2058db9e2e1 Content-Type: text/plain; charset="UTF-8" On Mon, Jul 15, 2019 at 7:50 AM Bret Jordan wrote: > Kathleen, > > > I do think there is work for the IRTF as well and would like to see that > encouraged. The shift to strong encryption is good, but upends the current > security management models for many. > > > This is one of the points I made during my talk at RSA. These > technologies by themselves, are all really great. The problem comes is > when you start using all of them together. To the naive comment earlier > that this is about vendors trying to sell product, no, this is about > network and cyber defenders and SoC analysts trying to do their job. There > are things like regulatory compliance that organizations and enterprises > are required to follow. Some times I feel like we are so worried about one > piece of the security pie, that we completely neglect the others. > Bret, As I said before, this is extremely general and hard to act on. What would be most helpful at this point would be for you to describe a few ways in which you think the IETF should have designed protocols differently, so that we can discuss them. -Ekr > Here in the IETF everyone needs to better understand how SoC analysts and > network/cyber defenders do their jobs, what they are asked to do, and what > tools are available to them. > > Bret > --0000000000001982b2058db9e2e1 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable



On Mon, Jul 15, 2019 at 7:50 AM Bret Jordan <jordan.ietf@gmail.com> wrote:=
Kathleen,<= div>

<= /div>
I do think there is work for the IRTF as well and would like to s= ee that encouraged.=C2=A0 The shift to strong encryption is good, but upend= s the current security management models for many.

This is one of the points I made during my talk at RSA= .=C2=A0 These technologies by themselves, are all really great.=C2=A0 The p= roblem comes is when you start using all of them together.=C2=A0 To the nai= ve comment earlier that this is about vendors trying to sell product, no, t= his is about network and cyber defenders and SoC analysts trying to do thei= r job. There are things like regulatory compliance that organizations and e= nterprises are required to follow. Some times I feel like we are so worried= about one piece of the security pie, that we completely neglect the others= .=C2=A0

Bret,
<= br>
As I said before, this is extremely general and hard to act o= n.

What would be most helpful at this point would = be for you to describe a few ways in which you think the IETF should have d= esigned protocols differently, so that we can discuss them.

<= /div>
-Ekr


Here in the IETF everyone needs to= better understand how SoC analysts and network/cyber defenders do their jo= bs, what they are asked to do, and what tools are available to them.=C2=A0<= /div>

Bret
--0000000000001982b2058db9e2e1-- From nobody Mon Jul 15 09:24:21 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C404C120168 for ; Mon, 15 Jul 2019 09:24:12 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.997 X-Spam-Level: X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, LOTS_OF_MONEY=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vE05Z7M9Ipua for ; Mon, 15 Jul 2019 09:24:09 -0700 (PDT) Received: from mail-pg1-x52e.google.com (mail-pg1-x52e.google.com [IPv6:2607:f8b0:4864:20::52e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2CED812011C for ; Mon, 15 Jul 2019 09:24:09 -0700 (PDT) Received: by mail-pg1-x52e.google.com with SMTP id m4so7964606pgk.0 for ; Mon, 15 Jul 2019 09:24:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=yHZnHZQT7W1VbBLWQy2PoMdnhJkjmXv/qcHKp6GSFhs=; b=M+5o1SR15lvoyjb0o+2ZWufsaaRpGFuTX1u115CWHkN+4aj7NKKWd/lRqWtVFZqsQ9 AYEttH8RFac2BvsLp0pazt2LHAMhJCFF2WgKJKi9gir5PxuVjfqyHYT5mVIwbJHdPkjh 5Dm3rCf5hSarjxz045+fKI34Jdc9gsExUVmG0acnW06vQnqcCdtHKYlCeD9Pt9SaVVFW 73mL2CvzqXBvgG/faLWoHd4cv8f9T0ThNJDUA+Q2wFadBBO6Xen6WG1yxw0k+Y0/jXxe zEUtGf8ITqY6C70kjFSxRbzVWBROc5sSg9UKxgm6xCwYxKPlGVL+Vl98hWTdcX8bPpD8 7yzw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=yHZnHZQT7W1VbBLWQy2PoMdnhJkjmXv/qcHKp6GSFhs=; b=CquyWUFYExYsi/NF5b/Lgs9VDiubsSus7tJCd0j6okiJcIXGxlbDT3nR7GwIJwcOjg 1CwJt2u1fTLgRQg/A7qrxGW07NAk4kcbMSTLDVZ0I5hV0GNZQHLYQ5lQ0hEk3HndSNeG 80Q9NZO0vSBV7XYgBEYKCzqzP1D2m2UqFiZTcZfxXHMoT3rdJxUWfnaqjGfDsem2GfjA tagSrIw9UDWloGe6qlccyH+neQNruTZwuWO2ucZtj3DaZ3j7bNa7RrMIxCncplQVRcny uf8bJyqpdp0I5zhBkxJUFwcoU0TwE447rOxURaZwFLtaGx15Qi39DPsfileJcqw3+ujP x2ow== X-Gm-Message-State: APjAAAVAkKA8NwuRHzAzTZ1g4UJfQpRXmPAo3WXlzEt622eqdQRT1Wi0 Bxj9GzVfRnf9FEh/lzICwf0= X-Google-Smtp-Source: APXvYqzemOfg7fCJHQZYUL4WDhv2zmEXKYX8+v5EkklN0v1BM1ehnBTQAeXFF/nRxjGjNBFiyOdc7A== X-Received: by 2002:a63:fd50:: with SMTP id m16mr27471960pgj.192.1563207848687; Mon, 15 Jul 2019 09:24:08 -0700 (PDT) Received: from ?IPv6:2605:a601:a990:4d00:a925:658c:7e16:1f17? ([2605:a601:a990:4d00:a925:658c:7e16:1f17]) by smtp.gmail.com with ESMTPSA id z2sm15997596pgg.58.2019.07.15.09.24.07 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 15 Jul 2019 09:24:07 -0700 (PDT) From: Bret Jordan Message-Id: <57C9DB3F-7694-45F1-A8AF-8BC242CC1383@gmail.com> Content-Type: multipart/alternative; boundary="Apple-Mail=_E2A33079-237E-45BF-8835-D2F9BF6D37BC" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Mon, 15 Jul 2019 10:24:05 -0600 In-Reply-To: <2E98BE46-174B-4423-976C-6EB48A3A714F@cisco.com> Cc: Phillip Hallam-Baker , smart@irtf.org, Melinda Shore , IETF SecDispatch To: Eliot Lear References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <45cc67f6-3dd4-9788-29e5-4cc82471e6ee@nomountain.net> <9683DFBC-1816-4C0A-8D8A-4CE36318C72C@cisco.com> <469416D4-F549-4CAD-9C81-3D4A5A271B6A@cisco.com> <2E98BE46-174B-4423-976C-6EB48A3A714F@cisco.com> X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 16:24:13 -0000 --Apple-Mail=_E2A33079-237E-45BF-8835-D2F9BF6D37BC Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 My key points were due to the responses I hear form some in the IETF, = specifically =E2=80=9CIf you just patched your endpoints there would be no issue=E2=80=9D= =E2=80=9CAll endpoints can easily run security software=E2=80=9D Thanks, Bret PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 "Without cryptography vihv vivc ce xhrnrw, however, the only thing that = can not be unscrambled is an egg." > On Jul 15, 2019, at 10:16 AM, Eliot Lear wrote: >=20 > Phil, >=20 >=20 >=20 >> On 15 Jul 2019, at 18:03, Phillip Hallam-Baker > wrote: >>=20 >> I am pretty sure this is not security 101 stuff. In fact I am pretty = sure that it will be quite a while before the academy really gets to = grips with this stuff. They don't have the same biases we do but they = have different ones.=20 >>=20 >> For example, the need to patch systems is brought up and this is = almost always seen as a good thing. Not in the process control world it = isn't. The problem of unauthorized updates is a very serious concern for = them. >=20 >=20 > I think I agree with your thesis statement but not your supporting = statement above. There are a great many =E2=80=9Cbest practices=E2=80=9D = that are coming out, and they all to a one usually involve usernames and = passwords for a good number of devices that might not require either. = And in fact, the idea of a password for machine controlled devices is = Just Bad. >=20 > Patches themselves from the vendors are absolutely required to be = available, but the timing of their installation needs to be left to = customers based on when =E2=80=93 if at all =E2=80=93 those devices can = allow for a window where the device may miss a beat. But even in these = cases, process control systems need in service upgrade mechanisms, = because the reality is that the bugs will be there. >=20 >=20 >>=20 >> Devices that automatically update themselves are vulnerable to a = denial of service attack by the device provider. >>=20 >> This is not an attack many device providers are worried about because = it isn't an attack that is going to affect them (for a start) and they = think they can trust themselves. Which may well not be true. I have seen = a single employee cause $1 million worth of vandalism after being upset = that his wages were being garnished for alimony. I really doubt that = more than 5% of the companies that make IoT devices have effective = controls. >=20 > Ok, but that is no reason to not have automated updates available. = That is more of a reason to have strong audit processes in place. >=20 >>=20 >> The same is true of devices that depend on a tied service. My Revolv = hub is useless because Google bought the company and shut down the = service leaving me with $2500 worth of dead equipment in my walls. >>=20 >> This is not 101 stuff and in fact I don't think that a single one of = the IoT vendors out there is showing that they understand it. We are = still at what I call the 'narcissistic' phase of the market in which = every medium sized IoT vendor thinks it is all about themselves. >>=20 >>=20 >> The fact that an IoT device makes the owner dependent on the provider = is totally a security issue. The fact that the device providers don't = want to acknowledge it doesn't make it any less so. >=20 > I agree that this is indeed a security issue, but that doesn=E2=80=99t = mean that it=E2=80=99s the wrong way to go. There are other factors to = take into consideration, not the least of which is cogs and e-Waste = associated with unnecessarily shipping extra horse power to 20 million = endpoints when a little elastic processing in the cloud will do. >=20 > Eliot >=20 --Apple-Mail=_E2A33079-237E-45BF-8835-D2F9BF6D37BC Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 My = key points were due to the responses I hear form some in the IETF, = specifically

=E2=80=9C= If you just patched your endpoints there would be no issue=E2=80=9D
<= div class=3D"">=E2=80=9CAll endpoints can easily run security = software=E2=80=9D



Thanks,
Bret
PGP = Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 = 0050
"Without = cryptography vihv vivc ce xhrnrw, however, the only thing that can not = be unscrambled is an = egg."

On Jul 15, 2019, at 10:16 AM, Eliot Lear <lear@CISCO.COM> = wrote:

Phil,


On 15 = Jul 2019, at 18:03, Phillip Hallam-Baker <phill@hallambaker.com> wrote:

I am pretty sure this is not security 101 = stuff. In fact I am pretty sure that it will be quite a while before the = academy really gets to grips with this stuff. They don't have the same = biases we do but they have different ones. 

For example, the need to patch systems is = brought up and this is almost always seen as a good thing. Not in the = process control world it isn't. The problem of unauthorized updates is a = very serious concern for them.


I think I agree with your thesis statement but not your = supporting statement above.  There are a great many =E2=80=9Cbest = practices=E2=80=9D that are coming out, and they all to a one usually = involve usernames and passwords for a good number of devices that might = not require either.  And in fact, the idea of a password for = machine controlled devices is Just Bad.

Patches themselves from the vendors are = absolutely required to be available, but the = timing of their installation needs to be left to customers based on when = =E2=80=93 if at all =E2=80=93 those devices can allow for a window where = the device may miss a beat.  But even in these cases, process = control systems need in service upgrade mechanisms, because the reality = is that the bugs will be there.



Devices that automatically update themselves = are vulnerable to a denial of service attack by the device = provider.

This is not an attack many device providers = are worried about because it isn't an attack that is going to affect = them (for a start) and they think they can trust themselves. Which may = well not be true. I have seen a single employee cause $1 million worth = of vandalism after being upset that his wages were being garnished for = alimony. I really doubt that more than 5% of the companies that make IoT = devices have effective controls.

Ok, but that is no reason to not have = automated updates available.  That is more of a reason to have = strong audit processes in place.


The same is true of = devices that depend on a tied service. My Revolv hub is useless because = Google bought the company and shut down the service leaving me with = $2500 worth of dead equipment in my walls.

This is not 101 stuff and in fact I don't = think that a single one of the IoT vendors out there is showing that = they understand it. We are still at what I call the 'narcissistic' phase = of the market in which every medium sized IoT vendor thinks it is all = about themselves.


The fact that an IoT device makes the owner = dependent on the provider is totally a security issue. The fact that the = device providers don't want to acknowledge it doesn't make it any less = so.

I = agree that this is indeed a security issue, but that doesn=E2=80=99t = mean that it=E2=80=99s the wrong way to go.  There are other = factors to take into consideration, not the least of which is cogs and = e-Waste associated with unnecessarily shipping extra horse power to 20 = million endpoints when a little elastic processing in the cloud will = do.

Eliot


= --Apple-Mail=_E2A33079-237E-45BF-8835-D2F9BF6D37BC-- From nobody Mon Jul 15 09:33:45 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D3B08120168 for ; Mon, 15 Jul 2019 09:03:16 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.557 X-Spam-Level: X-Spam-Status: No, score=-1.557 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.091, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, LOTS_OF_MONEY=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eQrZvltbqQfL for ; Mon, 15 Jul 2019 09:03:15 -0700 (PDT) Received: from mail-oi1-f179.google.com (mail-oi1-f179.google.com [209.85.167.179]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DFA33120045 for ; Mon, 15 Jul 2019 09:03:14 -0700 (PDT) Received: by mail-oi1-f179.google.com with SMTP id a127so13058267oii.2 for ; Mon, 15 Jul 2019 09:03:14 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=A3NMHzTbFmd8amKtpXobfQ09YZpe852mIYIiZ8N/Afk=; b=EHEhtQ/KV4FtGKdwQ3pdxHeXYOlBiLbkE9IQ5UcW6Ea0gipdgaCEXXF2cjeLax14/Y v9LTh+9Xk0olGXv04TLbFo37HhQHVmJlSTmczlZNmfuCI8nDUNHMAsWJ32iYdLeiiiHQ Xq/sWU8E/QzfIelrvKugsw/cW00thFoJvRhIjWWQFmdD3fjyEpIBSWU7CDU6yzKlInVa LQ5n5qjWc7sgM8MXKWQCea2uahT6wRBHU3IJkwzlt53aKIDqmAEBtToBd7JVCHZkcx4a 3+TIVYF79hR25BBgsszDbIYM8zXCv2sxq/uEk0I12fG9ctbqftH2zXf91DrPKIeRtNNV 7x4g== X-Gm-Message-State: APjAAAVXi+yWxVZUHcK6POPL75vBlI4MqDrGpqmKePAVekqzuSK5SZ29 ojI8nB+LMGUXwUNpqgSkSnS3ITpKLg+TruCSlPU= X-Google-Smtp-Source: APXvYqzFqxl0IjWXJ6VsUKmp0LNovIDeYnKlWBu0d67Ipu4adFoYIKtAwsc4ag5C5XQllo4kLVUl7kHCVw8+PZNBbSE= X-Received: by 2002:aca:5883:: with SMTP id m125mr14119366oib.58.1563206594054; Mon, 15 Jul 2019 09:03:14 -0700 (PDT) MIME-Version: 1.0 References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <45cc67f6-3dd4-9788-29e5-4cc82471e6ee@nomountain.net> <9683DFBC-1816-4C0A-8D8A-4CE36318C72C@cisco.com> <469416D4-F549-4CAD-9C81-3D4A5A271B6A@cisco.com> In-Reply-To: From: Phillip Hallam-Baker Date: Mon, 15 Jul 2019 12:03:01 -0400 Message-ID: To: Bret Jordan Cc: Eliot Lear , smart@irtf.org, Melinda Shore , IETF SecDispatch Content-Type: multipart/alternative; boundary="000000000000bfcf54058dba6512" Archived-At: X-Mailman-Approved-At: Mon, 15 Jul 2019 09:33:44 -0700 Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 16:03:17 -0000 --000000000000bfcf54058dba6512 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable I am pretty sure this is not security 101 stuff. In fact I am pretty sure that it will be quite a while before the academy really gets to grips with this stuff. They don't have the same biases we do but they have different ones. For example, the need to patch systems is brought up and this is almost always seen as a good thing. Not in the process control world it isn't. The problem of unauthorized updates is a very serious concern for them. Devices that automatically update themselves are vulnerable to a denial of service attack by the device provider. This is not an attack many device providers are worried about because it isn't an attack that is going to affect them (for a start) and they think they can trust themselves. Which may well not be true. I have seen a single employee cause $1 million worth of vandalism after being upset that his wages were being garnished for alimony. I really doubt that more than 5% of the companies that make IoT devices have effective controls. The same is true of devices that depend on a tied service. My Revolv hub is useless because Google bought the company and shut down the service leaving me with $2500 worth of dead equipment in my walls. This is not 101 stuff and in fact I don't think that a single one of the IoT vendors out there is showing that they understand it. We are still at what I call the 'narcissistic' phase of the market in which every medium sized IoT vendor thinks it is all about themselves. The fact that an IoT device makes the owner dependent on the provider is totally a security issue. The fact that the device providers don't want to acknowledge it doesn't make it any less so. I have spent well over $25,000 on IoT devices in the past few years. Of these, I cannot think of a single one that I can give an unqualified recommendation for. And there are security issues with every single one of them. On Mon, Jul 15, 2019 at 11:07 AM Bret Jordan wrote: > Eliot, > > However, many here assume that the endpoint can run security software, > that security software is available for all endpoints, or that security > software can be updated all at once across an organization/enterprise. > Other also assume that if you just patched your software, you would be > safe. These assumptions are horribly wrong and goes to show the > fundamental lack of understanding. > > The reason I called them out the way I did was I was trying to be > explicitly clear on where the attack was coming from and what role the > endpoint had in that attack. I did not want to assume that everyone > understood the attack surface and threat model. > > So a client may initiate the connection to a compromised site or content. > This is a very common case for initial infection. However, once the thre= at > actor is in the network, they often move laterally through the network an= d > compromise machines where the attack is not initiated from the victim > endpoint, but rather initiated from a compromised endpoint. So what you c= an > see and do to protect your network changes. > > All of this is pretty basic network/cyber security 101 stuff. What the > IETF needs to know is how SoC analysts need and require sensors on the > network, network log data, and DNS data to help identify these attacks an= d > find them. We always had a saying when I was on the other side of the > fence, =E2=80=9Coperating systems and software can always be made to lie,= but the > network never does..=E2=80=9D Network analysis and network forensics is a= critical > part of the day-to-day analysis in a SoC. This is often how intrusion se= ts > are detected and threat actors behavior in the network is tracked. This = is > not about selling product as some believe. This is about organizations an= d > enterprises protecting their systems, networks, and data. > > Thanks, > Bret > PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 > "Without cryptography vihv vivc ce xhrnrw, however, the only thing that > can not be unscrambled is an egg." > > On Jul 15, 2019, at 2:01 AM, Eliot Lear wrote: > > Hi Bret, > > > 1) Is the content or content provider that the user is going to > compromised and trying to attack the endpoint? > 2) Is the content provider that the user is going to a stage 2 delivery > site? > 3) Is the content provider that the user is going to the location for > outbound malicious content (data exfiltration, CnC traffic) > 4) Is the content provider that the user is going to adversely tracking > and monitoring everything the end client does, aka active surveillance > versus passive surveillance? > 5) Is the remote site that the user did not go to attack the end point. > > > While we tend to think of endpoints as being equivalent in class, in whic= h > case your use of the term "content provider=E2=80=9D would be somewhat re= dundant, > from a scaling perspective I am far more concerned about unwatched > unmanaged endpoints than I am about content services. And again, to me i= t > is a matter of what problems I think might be tractable. > > Eliot > > > _______________________________________________ > Secdispatch mailing list > Secdispatch@ietf.org > https://www.ietf.org/mailman/listinfo/secdispatch > --000000000000bfcf54058dba6512 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
I a= m pretty sure this is not security 101 stuff. In fact I am pretty sure that= it will be quite a while before the academy really gets to grips with this= stuff. They don't have the same biases we do but they have different o= nes.=C2=A0

=
For example, t= he need to patch systems is brought up and this is almost always seen as a = good thing. Not in the process control world it isn't. The problem of u= nauthorized updates is a very serious concern for them.

Devices that automatically update themselves= are vulnerable to a denial of service attack by the device provider.
=

This is not an attack many dev= ice providers are worried about because it isn't an attack that is goin= g to affect them (for a start) and they think they can trust themselves. Wh= ich may well not be true. I have seen a single employee cause $1 million wo= rth of vandalism after being upset that his wages were being garnished for = alimony. I really doubt that more than 5% of the companies that make IoT de= vices have effective controls.

The same is true of devices that depend on a tied service. My Revolv = hub is useless because Google bought the company and shut down the service = leaving me with $2500 worth of dead equipment in my walls.

This is not 101 stuff and in fact I don&= #39;t think that a single one of the IoT vendors out there is showing that = they understand it. We are still at what I call the 'narcissistic' = phase of the market in which every medium sized IoT vendor thinks it is all= about themselves.


The fact that an= IoT device makes the owner dependent on the provider is totally a security= issue. The fact that the device providers don't want to acknowledge it= doesn't make it any less so.

I have spent well over $25,000 on IoT devices in the past few ye= ars. Of these, I cannot think of a single one that I can give an unqualifie= d recommendation for. And there are security issues with every single one o= f them.


On Mon, Jul 15, 2019 at 11:07 AM Bret Jordan <jordan.ietf@gmail.com> wrote:
Eliot,

However, many here assume that the endpoint= can run security software, that security software is available for all end= points, or that security software can be updated all at once across an orga= nization/enterprise. Other also assume that if you just patched your softwa= re, you would be safe.=C2=A0 These assumptions are horribly wrong and goes = to show the fundamental lack of understanding.

The= reason I called them out the way I did was I was trying to be explicitly c= lear on where the attack was coming from and what role the endpoint had in = that attack. I did not want to assume that everyone understood the attack s= urface and threat model.=C2=A0

So a client may ini= tiate the connection to a compromised site or content. This is a very commo= n case for initial infection.=C2=A0 However, once the threat actor is in th= e network, they often move laterally through the network and compromise mac= hines where the attack is not initiated from the victim endpoint, but rathe= r initiated from a compromised endpoint. So what you can see and do to prot= ect your network changes.=C2=A0

All of this is pre= tty basic network/cyber security 101 stuff.=C2=A0 What the IETF needs to kn= ow is how SoC analysts need and require sensors on the network, network log= data, and DNS data to help identify these attacks and find them. We always= had a saying when I was on the other side of the fence, =E2=80=9Coperating= systems and software can always be made to lie, but the network never does= ..=E2=80=9D Network analysis and network forensics is a critical part of th= e day-to-day analysis in a SoC.=C2=A0 This is often how intrusion sets are = detected and threat actors behavior in the network is tracked.=C2=A0 This i= s not about selling product as some believe. This is about organizations an= d enterprises protecting their systems, networks, and data. =C2=A0

Thanks,
Bret
= PGP Fingerprint:=C2=A063B4 FC53 680A 6B7D 1447 =C2=A0F2C0 74F8 ACAE 7415 00= 50
&qu= ot;Without cryptography vihv vivc ce xhrnrw, however, the only thing that c= an not be unscrambled is an egg."

On Jul 15, 2019, at 2:01 AM, Eliot = Lear <lear@CISCO.COM= > wrote:

Hi Bret,


1) Is= the content or content provider that the user is going to compromised and = trying to attack the endpoint?
2) Is the content provider that the user = is going to a stage 2 delivery site?
3) Is the content provider that the= user is going to the location for outbound malicious content (data exfiltr= ation, CnC traffic)
4) Is the content provider that the user is going to= adversely tracking and monitoring everything the end client does, aka acti= ve surveillance versus passive surveillance?
5) Is the remote site that = the user did not go to attack the end point.

While we t= end to think of endpoints as being equivalent in class, in which case your = use of the term "content provider=E2=80=9D would be somewhat redundant= , from a scaling perspective I am far more concerned about unwatched unmana= ged endpoints than I am about content services.=C2=A0 And again, to me it i= s a matter of what problems I think might be tractable.

Eliot

_______________________________= ________________
Secdispatch mailing list
Secdispatch@ietf.= org
https://www.ietf.org/mailman/listinfo/secdispatch
--000000000000bfcf54058dba6512-- From nobody Mon Jul 15 09:33:51 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BE6731201E4 for ; Mon, 15 Jul 2019 09:16:34 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.5 X-Spam-Level: X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, LOTS_OF_MONEY=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T64bhqitv96o for ; Mon, 15 Jul 2019 09:16:32 -0700 (PDT) Received: from aer-iport-3.cisco.com (aer-iport-3.cisco.com [173.38.203.53]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 10A0C1201C6 for ; Mon, 15 Jul 2019 09:16:31 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=9579; q=dns/txt; s=iport; t=1563207392; x=1564416992; h=from:message-id:mime-version:subject:date:in-reply-to:cc: to:references; bh=N13LoiowyybiA01V642pR/uJJ3WHqu6HXtG7jhCpMqA=; b=bhb1ppWJV6GrAk8w6Y2owsQLtpcjf9+ZUVI5CslMUrCro0SFjQ5fMGxz KpEjyqQJ+OoZdyTk/tH+JEGxnYw5MKQ6AGSDfHycWuT/PzCNsGhjp8hUS CNZV6ZENH4EsT8Llvp7EG4Q8CNDtMmghFEMB+yqXpu0usjSxFhdt9YGKZ Y=; X-Files: signature.asc : 195 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AYAAB9pixd/xbLJq1lGgEBAQEBAgE?= =?us-ascii?q?BAQEHAgEBAQGBVgIBAQEBCwGBZwWBOisBIBIohByIe4tTJZJ6h34CBwEBAQk?= =?us-ascii?q?DAQEvAQGEQAIOgno3Bg4BAwEBBAEBAgEFbYVIhUoBAQEBAgEjTQcCBQsLGBg?= =?us-ascii?q?SAgJXBhODIgGBew+rcIEyhUeEZhCBNAGBUIdFgmCBf4E4DBOBTlAuPoQoa4I?= =?us-ascii?q?7MoImBIwFTQKIHZUFbQmCG4IfgQyOLoIzG4ItlV2OZpMUgwsCBAYFAhWBZiI?= =?us-ascii?q?3B4EaMxoIGxVlAYFZaD6COm8BDI0TPQMwjX2CLgEB?= X-IronPort-AV: E=Sophos;i="5.63,494,1557187200"; d="asc'?scan'208,217";a="14262987" Received: from aer-iport-nat.cisco.com (HELO aer-core-3.cisco.com) ([173.38.203.22]) by aer-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 15 Jul 2019 16:16:30 +0000 Received: from ams3-vpn-dhcp3718.cisco.com (ams3-vpn-dhcp3718.cisco.com [10.61.78.134]) by aer-core-3.cisco.com (8.15.2/8.15.2) with ESMTPS id x6FGFWeN028388 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Mon, 15 Jul 2019 16:16:29 GMT From: Eliot Lear Message-Id: <2E98BE46-174B-4423-976C-6EB48A3A714F@cisco.com> Content-Type: multipart/signed; boundary="Apple-Mail=_DB5207E9-3DF1-48CC-8377-66F138A7E1E5"; protocol="application/pgp-signature"; micalg=pgp-sha1 Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Mon, 15 Jul 2019 18:16:29 +0200 In-Reply-To: Cc: Bret Jordan , smart@irtf.org, Melinda Shore , IETF SecDispatch To: Phillip Hallam-Baker References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <45cc67f6-3dd4-9788-29e5-4cc82471e6ee@nomountain.net> <9683DFBC-1816-4C0A-8D8A-4CE36318C72C@cisco.com> <469416D4-F549-4CAD-9C81-3D4A5A271B6A@cisco.com> X-Mailer: Apple Mail (2.3445.104.11) X-Outbound-SMTP-Client: 10.61.78.134, ams3-vpn-dhcp3718.cisco.com X-Outbound-Node: aer-core-3.cisco.com Archived-At: X-Mailman-Approved-At: Mon, 15 Jul 2019 09:33:44 -0700 Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 16:16:35 -0000 --Apple-Mail=_DB5207E9-3DF1-48CC-8377-66F138A7E1E5 Content-Type: multipart/alternative; boundary="Apple-Mail=_2BE77785-3AC0-4B0F-A62D-9BEE6E6AFA43" --Apple-Mail=_2BE77785-3AC0-4B0F-A62D-9BEE6E6AFA43 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Phil, > On 15 Jul 2019, at 18:03, Phillip Hallam-Baker = wrote: >=20 > I am pretty sure this is not security 101 stuff. In fact I am pretty = sure that it will be quite a while before the academy really gets to = grips with this stuff. They don't have the same biases we do but they = have different ones. >=20 > For example, the need to patch systems is brought up and this is = almost always seen as a good thing. Not in the process control world it = isn't. The problem of unauthorized updates is a very serious concern for = them. I think I agree with your thesis statement but not your supporting = statement above. There are a great many =E2=80=9Cbest practices=E2=80=9D = that are coming out, and they all to a one usually involve usernames and = passwords for a good number of devices that might not require either. = And in fact, the idea of a password for machine controlled devices is = Just Bad. Patches themselves from the vendors are absolutely required to be = available, but the timing of their installation needs to be left to = customers based on when =E2=80=93 if at all =E2=80=93 those devices can = allow for a window where the device may miss a beat. But even in these = cases, process control systems need in service upgrade mechanisms, = because the reality is that the bugs will be there. >=20 > Devices that automatically update themselves are vulnerable to a = denial of service attack by the device provider. >=20 > This is not an attack many device providers are worried about because = it isn't an attack that is going to affect them (for a start) and they = think they can trust themselves. Which may well not be true. I have seen = a single employee cause $1 million worth of vandalism after being upset = that his wages were being garnished for alimony. I really doubt that = more than 5% of the companies that make IoT devices have effective = controls. Ok, but that is no reason to not have automated updates available. That = is more of a reason to have strong audit processes in place. >=20 > The same is true of devices that depend on a tied service. My Revolv = hub is useless because Google bought the company and shut down the = service leaving me with $2500 worth of dead equipment in my walls. >=20 > This is not 101 stuff and in fact I don't think that a single one of = the IoT vendors out there is showing that they understand it. We are = still at what I call the 'narcissistic' phase of the market in which = every medium sized IoT vendor thinks it is all about themselves. >=20 >=20 > The fact that an IoT device makes the owner dependent on the provider = is totally a security issue. The fact that the device providers don't = want to acknowledge it doesn't make it any less so. I agree that this is indeed a security issue, but that doesn=E2=80=99t = mean that it=E2=80=99s the wrong way to go. There are other factors to = take into consideration, not the least of which is cogs and e-Waste = associated with unnecessarily shipping extra horse power to 20 million = endpoints when a little elastic processing in the cloud will do. Eliot --Apple-Mail=_2BE77785-3AC0-4B0F-A62D-9BEE6E6AFA43 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 Phil,



On 15 Jul 2019, at 18:03, Phillip Hallam-Baker <phill@hallambaker.com> wrote:

I am pretty sure this is not security 101 = stuff. In fact I am pretty sure that it will be quite a while before the = academy really gets to grips with this stuff. They don't have the same = biases we do but they have different ones. 

For example, the need to patch systems is = brought up and this is almost always seen as a good thing. Not in the = process control world it isn't. The problem of unauthorized updates is a = very serious concern for them.


I think I agree with = your thesis statement but not your supporting statement above. =  There are a great many =E2=80=9Cbest practices=E2=80=9D that are = coming out, and they all to a one usually involve usernames and = passwords for a good number of devices that might not require either. =  And in fact, the idea of a password for machine controlled devices = is Just Bad.

Patches themselves from = the vendors are absolutely required to be = available, but the timing of their installation needs to be left to = customers based on when =E2=80=93 if at all =E2=80=93 those devices can = allow for a window where the device may miss a beat.  But even in = these cases, process control systems need in service upgrade mechanisms, = because the reality is that the bugs will be there.



Devices that automatically update themselves = are vulnerable to a denial of service attack by the device = provider.

This is not an attack many device providers = are worried about because it isn't an attack that is going to affect = them (for a start) and they think they can trust themselves. Which may = well not be true. I have seen a single employee cause $1 million worth = of vandalism after being upset that his wages were being garnished for = alimony. I really doubt that more than 5% of the companies that make IoT = devices have effective controls.

Ok, but that is no reason to not have automated updates = available.  That is more of a reason to have strong audit processes = in place.


The same is true of devices that depend on a = tied service. My Revolv hub is useless because Google bought the company = and shut down the service leaving me with $2500 worth of dead equipment = in my walls.

This is not 101 stuff = and in fact I don't think that a single one of the IoT vendors out there = is showing that they understand it. We are still at what I call the = 'narcissistic' phase of the market in which every medium sized IoT = vendor thinks it is all about themselves.


The fact that an IoT = device makes the owner dependent on the provider is totally a security = issue. The fact that the device providers don't want to acknowledge it = doesn't make it any less so.

I agree that this is indeed a security issue, but that = doesn=E2=80=99t mean that it=E2=80=99s the wrong way to go.  There = are other factors to take into consideration, not the least of which is = cogs and e-Waste associated with unnecessarily shipping extra horse = power to 20 million endpoints when a little elastic processing in the = cloud will do.

Eliot

= --Apple-Mail=_2BE77785-3AC0-4B0F-A62D-9BEE6E6AFA43-- --Apple-Mail=_DB5207E9-3DF1-48CC-8377-66F138A7E1E5 Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP -----BEGIN PGP SIGNATURE----- iF0EARECAB0WIQTgo4LlIIJ5lIBumWpugA9nE248uAUCXSym3QAKCRBugA9nE248 uLeqAJ9c4Rhwq3HmtlWZIlUSDDMg5GpkdACg7CibsPhcSwhl13CC3/lHvbBrKNU= =LUmE -----END PGP SIGNATURE----- --Apple-Mail=_DB5207E9-3DF1-48CC-8377-66F138A7E1E5-- From nobody Mon Jul 15 10:02:27 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6AECA1201D9 for ; Mon, 15 Jul 2019 10:02:25 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.998 X-Spam-Level: X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Lxc3sE-zMpbU for ; Mon, 15 Jul 2019 10:02:23 -0700 (PDT) Received: from mail-pg1-x531.google.com (mail-pg1-x531.google.com [IPv6:2607:f8b0:4864:20::531]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1A9F6120203 for ; Mon, 15 Jul 2019 10:02:17 -0700 (PDT) Received: by mail-pg1-x531.google.com with SMTP id u17so8004405pgi.6 for ; Mon, 15 Jul 2019 10:02:17 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=bbvN+6WQO48xJUmt7zYKXGwf7rFwSwcvFIYLA3WzvWc=; b=JqYpU/+3gZVEotgozAgkr+oCXGhpepcz+6+U2yIyfzr+g/KEQ484n9xB4BAXsM7iEj J7H/5ZJ/CEtpxNxrg0FKaROOJp7x7myMpx1DhHHMjOC2/hghI8dffyFVl8bgV+HIAvDb EK7VTn2iPX3bqR+DdEAoo9/YorebtrCbfybOXxZmLPr1GxNUEuIHnNf9T16eFMCdN3Tg fVs2MGL1pr4SAV/AgUk3N+6Lw8X6fnoEmwd4CTjvtWmToM6KEqlG1FeW3qEgp5T5KUo3 v/6NA0zVR2vOU0b0QPi+O3aOJPf1tPHdbhjFREmGI9iLbTnC78LYTpcwDf6CW6ynRP1N PRIQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=bbvN+6WQO48xJUmt7zYKXGwf7rFwSwcvFIYLA3WzvWc=; b=P38r3/R+tUKciaLn9tGoCtDozjpiYCcvpeYesVP69Yh6xW4msyTYwifYCdezymlOcC TG/zLuupdy6b8KdoIe0JAKTwPRTiV+ONHVluhQ2WHQsC1kxYnnrTB8KwRKhb3yL3+opA qjDuIs8vSuBnPZucmdvy6or3sclx1/3NTxDsR5if64zPLuJzonK45iVQ/nhZArYvjSnA JTgcPn7fkB89F0EJQDjEDdMxS9NYONP4Qe48b6BHvAHL9U5g6k3fiOx7POGmggN1Yc9D MF27WmnTzo7pwYAfwQ7u3/m/jdQBFxMeRwv6BYixW5LfgOCLksMm9JBukrf0wGxdCd6C wOvw== X-Gm-Message-State: APjAAAXCXh+Zv6I1iHIxt+ABP75fh/IC1mHRqbJfjerMFnCPubIsG3Iq r8qIO58ibxdcPP6NDuM3z68= X-Google-Smtp-Source: APXvYqyVk8cpVwKiB5S8sCwirFHGxRGUYU5B9+TE+rgqMY4DydfDEPqOJ0ug7UGZ8Df4lZ3tNhpwFQ== X-Received: by 2002:a65:4cc4:: with SMTP id n4mr28980894pgt.307.1563210136582; Mon, 15 Jul 2019 10:02:16 -0700 (PDT) Received: from ?IPv6:2605:a601:a990:4d00:a925:658c:7e16:1f17? ([2605:a601:a990:4d00:a925:658c:7e16:1f17]) by smtp.gmail.com with ESMTPSA id e6sm21596962pfn.71.2019.07.15.10.02.14 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 15 Jul 2019 10:02:15 -0700 (PDT) From: Bret Jordan Message-Id: Content-Type: multipart/alternative; boundary="Apple-Mail=_A11723D8-9DF2-4580-96FD-04AA3FEEDC82" Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\)) Date: Mon, 15 Jul 2019 11:02:12 -0600 In-Reply-To: Cc: Kathleen Moriarty , Eliot Lear , smart@irtf.org, Dominique Lazanski , IETF SecDispatch , Stephen Farrell To: Eric Rescorla References: <0A8948DB-F97C-4F68-9173-7E627FB5019C@lastpresslabel.com> <4B10655B-8753-4B10-ACC9-16D7F78AD9F9@gmail.com> <50E59504-CA00-4792-AA72-FC08051E2486@gmail.com> <78ccb680-9ccb-f13f-0442-02833cc7cc92@cs.tcd.ie> X-Mailer: Apple Mail (2.3445.104.11) Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Jul 2019 17:02:26 -0000 --Apple-Mail=_A11723D8-9DF2-4580-96FD-04AA3FEEDC82 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Ekr, It is not so much that it was designed wrong, but that when critical = functionality was removed, there was no alternative method added to = support critical use cases. So one can argue that some decisions were = done from a myopic point of view, without realizing the problems they = will create.=20 There are many examples, but let us just take two for right now. I am = sure I will enrage people to no end and cause an uproar, but so be it.=20= Hiding the Server Certificate This is a wonderful thing for open internet sessions as it help prevent = passive analysis of users traffic and where a user is going. So from = that side, it is great. However, from the managed network stand point it = is terrible. This feature/data is a critical element used in managed = networks and is critical for ensuring regulatory compliance. The problem = is not so much that the WG decided to hide it. The problem is the WG did = not and has not yet provided an alternative solution to fill in the = missing gap. So either the WG does not understand the operational = security requirements around it, or they are just choosing to ignore = them. DNS over HTTPS and DANE This is also a really neat idea. However, when you layer this with = DANE+DNS_SEC you get to a point where installed trust anchors no longer = become effective. Further, managed networks really rely on DNS data for = both first line defense and retrospective analysis of threat actor / CnC = behavior. So DNS over HTTPs by itself is not a bad thing. But the way = it is being implemented in products and the possibility of using it with = other solutions like DANE can make operational security significantly = more challenging if not impossible. Threat Actors are already starting = to use DoH to launch attacks, since it provides a way for them to get = around some security controls. So it becomes critical that for things = like DoH that products provide a way for it to be turned off, or for = managed networks to specify their own DoH servers. Further, managed = networks need to start looking at locating their internal DNS servers on = the WAN side of their proxies / firewalls so that they can create = islands of trust and rewrite the DNS_SEC on the fly if they need too. = But all of this should be called out and where possible, we should = provide ways for management networks to still do what they need.=20 So I would like the security considerations to be updated to help ensure = that we ask the questions, like =E2=80=9Cwhat is this going to do to = operational security?=E2=80=9D, =E2=80=9Chow is this going to impact = incident response and network forensics?=E2=80=9D. I want to also be = super clear that I am not against these technologies by themselves. But = we need to ask these hard questions and provide solutions that can still = enable managed networks to protect themselves. Thinking that = everything can and should be done on the endpoint is just outright = naive.=20 Thanks, Bret PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 "Without cryptography vihv vivc ce xhrnrw, however, the only thing that = can not be unscrambled is an egg." > On Jul 15, 2019, at 9:25 AM, Eric Rescorla wrote: >=20 >=20 >=20 >=20 > On Mon, Jul 15, 2019 at 7:50 AM Bret Jordan > wrote: > Kathleen, >=20 >=20 >> I do think there is work for the IRTF as well and would like to see = that encouraged. The shift to strong encryption is good, but upends the = current security management models for many. >=20 > This is one of the points I made during my talk at RSA. These = technologies by themselves, are all really great. The problem comes is = when you start using all of them together. To the naive comment earlier = that this is about vendors trying to sell product, no, this is about = network and cyber defenders and SoC analysts trying to do their job. = There are things like regulatory compliance that organizations and = enterprises are required to follow. Some times I feel like we are so = worried about one piece of the security pie, that we completely neglect = the others.=20 >=20 > Bret, >=20 > As I said before, this is extremely general and hard to act on. >=20 > What would be most helpful at this point would be for you to describe = a few ways in which you think the IETF should have designed protocols = differently, so that we can discuss them. >=20 > -Ekr >=20 >=20 > Here in the IETF everyone needs to better understand how SoC analysts = and network/cyber defenders do their jobs, what they are asked to do, = and what tools are available to them.=20 >=20 > Bret --Apple-Mail=_A11723D8-9DF2-4580-96FD-04AA3FEEDC82 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 Ekr,

It = is not so much that it was designed wrong, but that when critical = functionality was removed, there was no alternative method added to = support critical use cases. So one can argue that some decisions were = done from a myopic point of view, without realizing the problems they = will create. 

There are many examples, but let us just take two for right = now.  I am sure I will enrage people to no end and cause an uproar, = but so be it. 


Hiding the Server = Certificate
This is a wonderful thing for open = internet sessions as it help prevent passive analysis of users traffic = and where a user is going. So from that side, it is great. However, from = the managed network stand point it is terrible. This feature/data is a = critical element used in managed networks and is critical for ensuring = regulatory compliance. The problem is not so much that the WG decided to = hide it. The problem is the WG did not and has not yet provided an = alternative solution to fill in the missing gap. So either the WG does = not understand the operational security requirements around it, or they = are just choosing to ignore them.


DNS = over HTTPS and DANE
This is also a really neat = idea. However, when you layer this with DANE+DNS_SEC you get to a point = where installed trust anchors no longer become effective.  Further, = managed networks really rely on DNS data for both first line defense and = retrospective analysis of threat actor / CnC behavior.  So DNS over = HTTPs by itself is not a bad thing.  But the way it is being = implemented in products and the possibility of using it with other = solutions like DANE can make operational security significantly more = challenging if not impossible.  Threat Actors are already starting = to use DoH to launch attacks, since it provides a way for them to get = around some security controls. So it becomes critical that for things = like DoH that products provide a way for it to be turned off, or for = managed networks to specify their own DoH servers.  Further, = managed networks need to start looking at locating their internal DNS = servers on the WAN side of their proxies / firewalls so that they can = create islands of trust and rewrite the DNS_SEC on the fly if they need = too.  But all of this should be called out and where possible, we = should provide ways for management networks to still do what they = need. 


So I would like the security = considerations to be updated to help ensure that we ask the questions, = like =E2=80=9Cwhat is this going to do to operational security?=E2=80=9D, = =E2=80=9Chow is this going to impact incident response and network = forensics?=E2=80=9D.  I want to also be super clear that I am not = against these technologies by themselves. But we need to ask these hard = questions and provide solutions that can still enable managed networks = to protect themselves.   Thinking that everything can and should be = done on the endpoint is just outright naive. 



Thanks,
Bret
PGP = Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 = 0050
"Without = cryptography vihv vivc ce xhrnrw, however, the only thing that can not = be unscrambled is an = egg."

On Jul 15, 2019, at 9:25 AM, Eric Rescorla <ekr@rtfm.com> = wrote:




On Mon, Jul = 15, 2019 at 7:50 AM Bret Jordan <jordan.ietf@gmail.com> wrote:
Kathleen,


I do think there = is work for the IRTF as well and would like to see that = encouraged.  The shift to strong encryption is good, but upends the = current security management models for = many.

This is one of the points I made during my talk at RSA.  = These technologies by themselves, are all really great.  The = problem comes is when you start using all of them together.  To the = naive comment earlier that this is about vendors trying to sell product, = no, this is about network and cyber defenders and SoC analysts trying to = do their job. There are things like regulatory compliance that = organizations and enterprises are required to follow. Some times I feel = like we are so worried about one piece of the security pie, that we = completely neglect the others. 

Bret,

As I said before, this = is extremely general and hard to act on.

What would be most helpful at this = point would be for you to describe a few ways in which you think the = IETF should have designed protocols differently, so that we can discuss = them.

-Ekr


Here in = the IETF everyone needs to better understand how SoC analysts and = network/cyber defenders do their jobs, what they are asked to do, and = what tools are available to them. 

Bret
=

= --Apple-Mail=_A11723D8-9DF2-4580-96FD-04AA3FEEDC82-- From nobody Wed Jul 17 02:24:32 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5D89A12063D for ; Wed, 17 Jul 2019 02:24:30 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2 X-Spam-Level: X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ncsc.gov.uk Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HzVFhIx4Y0h4 for ; Wed, 17 Jul 2019 02:24:27 -0700 (PDT) Received: from GBR01-CWL-obe.outbound.protection.outlook.com (mail-eopbgr110098.outbound.protection.outlook.com [40.107.11.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C4A0112063B for ; Wed, 17 Jul 2019 02:24:26 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jvP8/d1q2VGlQIvd3DYWIa0p1qziRa9kgAqO1jI1QD7dwJGwaEj63KBe1vJf3A5hPkHY3JIDKiuFep6MU/8NbHBjMcG6UqD3ezDTtelzjciK0/aSpMPWAgI2zHzjRY5BLP42bbBD5V4kz+yhBNrX1S6q9qC3Mbn8f/7ZUUllC34d2BUAtfY7KXmrTcRbnfwcHh6w9kbX7MzcKxFP7YXtLus/N/1HmBYOq+WsPo2Q/QdwoURQamPW0Ubinr14BWXljhZ4xkxpQNcZD7Hl+/sndIS3/EfQq2fwIxhd81YzIYGLknbxrJXYS444GEeKodecW7ivHFp19ScdMLrbIp13sw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Bw9FGM82UohAq41Zn8mi1Vo+CjQQ2yzp+kB2gaEHCDY=; b=aiGa7LL2ANMrh6Ld53gRnV9vguZI9AMLerlfoLS/URfH5+VeVJ6u9Xoaud5fYdbksYBt1+623baXiNv+/86InPzW2m7OgTieygzDk4mG8dgY2pqvodh1V1/aJZVFLaPU673rdJQE3z9+j0zhnTQ+HvqB5CQTkKZNT7xBd2teymODp2DM2v4C3QEofZ3jTFKX7QDAwRzlpDuKGXEF7SQEXni4EoWatQqiAcyttl8tK98txHwUXlVG4n79K5SlhMf/fbsR4fegIXYvjZE6AI1UM1oISnIrCAaDPsPiEhzON+2a8aGhe1rQaliSPmQlbAmmVnBfKVSCLSrTWrgSI9BGVA== ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=ncsc.gov.uk;dmarc=pass action=none header.from=ncsc.gov.uk;dkim=pass header.d=ncsc.gov.uk;arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ncsc.gov.uk; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Bw9FGM82UohAq41Zn8mi1Vo+CjQQ2yzp+kB2gaEHCDY=; b=ZOqBddBv7biXwMvMPl+PaXLYYA6UKgj4nL2HrcL64El6b/L0uEe3Zfdl3JcO/lmt0JbpdPFIX6Mt+mIIHm4ItuwxW4kvgifwpHPEr/TKr70vX1nJzh+h32HcF0t15lCpVrtyyAi5i8YgkGrpeii9084cTM6zuILfoMVOToxeTCw= Received: from LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM (20.176.156.14) by LO2P123MB2080.GBRP123.PROD.OUTLOOK.COM (20.176.155.85) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2073.14; Wed, 17 Jul 2019 09:24:23 +0000 Received: from LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM ([fe80::2cbc:76fa:96ae:d4dd]) by LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM ([fe80::2cbc:76fa:96ae:d4dd%3]) with mapi id 15.20.2073.012; Wed, 17 Jul 2019 09:24:23 +0000 From: Kirsty P To: "smart@irtf.org" Thread-Topic: SMART meeting at IETF 105 Thread-Index: AQHVPHi+JXYb+6dMW06Yy8pMgLn3fA== Date: Wed, 17 Jul 2019 09:24:23 +0000 Message-ID: Accept-Language: en-GB, en-US Content-Language: en-GB X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=Kirsty.p@ncsc.gov.uk; x-originating-ip: [51.141.26.231] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: e6b3d14a-0395-4e4e-8039-08d70a988e88 x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(7168020)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:LO2P123MB2080; x-ms-traffictypediagnostic: LO2P123MB2080: x-ms-exchange-purlcount: 7 x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-forefront-prvs: 01018CB5B3 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(39850400004)(396003)(346002)(376002)(366004)(136003)(199004)(189003)(13624006)(486006)(19627405001)(2351001)(5640700003)(99286004)(8936002)(66066001)(81156014)(6116002)(3846002)(64756008)(81166006)(68736007)(966005)(66574012)(316002)(25786009)(6436002)(478600001)(33656002)(52536014)(14454004)(5660300002)(476003)(6506007)(606006)(71190400001)(105004)(55236004)(7696005)(86362001)(102836004)(2906002)(9686003)(6306002)(236005)(53936002)(2501003)(186003)(26005)(54896002)(1730700003)(74316002)(8676002)(7736002)(55016002)(71200400001)(66946007)(66556008)(66476007)(76116006)(6916009)(14444005)(256004)(66446008); DIR:OUT; SFP:1102; SCL:1; SRVR:LO2P123MB2080; H:LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1; received-spf: None (protection.outlook.com: ncsc.gov.uk does not designate permitted sender hosts) x-ms-exchange-senderadcheck: 1 x-microsoft-antispam-message-info: 21qkLP+0bbSCb9gdQXZ16lfzyGg2mT98W/eX/BwYO6O2NVCRuJSitLI5X3K+DiBshHLhCX3C49RYWXIJv9mZwPya+jqXYmicrG7Sz44fX1g6DMSzmr+ppm6FzdIhsaLgeOP3eFgffPKK7tCfqEIzONZifH7LzYo91FY1MItSdGSlscyeI/lWzgFRuL3jzhqMKqKovS8B6Cb5nbVMruQXMAIvXoWDeVUyrOG+G1zPcqphcll+MWswirqV6BNPFW+AZh/d7nYTI8Tz/CaF0/BBIeMOoQDt1mlUmtk6LqFnvrNc3Zu4R9Mx0grnvposOUiwVkgSwK8dWB0SS+GKhmn+pN/BvJ70yY2CGCMDPGjKis+C9qI0RDEd7EDcQslnBXHDi55Iv+hlyh4pJFIi46WfAMWn1/oobMoS4C86zz5mfYg= Content-Type: multipart/alternative; boundary="_000_LO2P123MB17279FC615A3C1795CFDE12DD7C90LO2P123MB1727GBRP_" MIME-Version: 1.0 X-OriginatorOrg: ncsc.gov.uk X-MS-Exchange-CrossTenant-Network-Message-Id: e6b3d14a-0395-4e4e-8039-08d70a988e88 X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Jul 2019 09:24:23.7472 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 14aa5744-ece1-474e-a2d7-34f46dda64a1 X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: kirsty62596@ncsc.gov.uk X-MS-Exchange-Transport-CrossTenantHeadersStamped: LO2P123MB2080 Archived-At: Subject: [Smart] SMART meeting at IETF 105 X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 17 Jul 2019 09:24:30 -0000 --_000_LO2P123MB17279FC615A3C1795CFDE12DD7C90LO2P123MB1727GBRP_ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable SMART folks, We will be meeting at IETF 105 on Wednesday 24th July 09:00-10:30 ET in the= C2 room (21st Floor). The meeting will include plans for the group going forward and discussion o= f the six drafts under SMART themes, listed below. Everyone is welcome to join and we looking forward to seeing you there! Kirsty =3D=3D=3D=3D=3D=3D draft-taddei-smart-cless-introduction * Also known as CLESS: Capabilities and Limitations of Endpoint Securit= y Solutions: https://datatracker.ietf.org/doc/draft-taddei-smart-cless-intr= oduction/ * CLESS attempts to establish the capabilities and limitations of endpo= int-only security solutions and explore potential alternative approaches. draft-mcfadden-smart-endpoint-taxonomy-for-cless * Endpoint Taxonomy for CLESS: https://datatracker.ietf.org/doc/draft-m= cfadden-smart-endpoint-taxonomy-for-cless/ * CLESS discusses endpoints in general terms. It has been suggested tha= t there are classes of endpoints that have different characteristics. Those= classes may have completely different threat landscapes and the endpoints = may have completely different security capabilities. In support of the work= on CLESS, this document provides a taxonomy of endpoints that is intended = to provide a foundation for further work on CLESS and research on approache= s to providing endpoint security alternatives in a diverse group of setting= s. draft-sasse-smart-secui-questions * Open Questions in Supporting Secure User Interactions: https://github= .com/smart-rg/drafts/blob/master/draft-sasse-smart-secui-questions.txt * Describes open questions in supporting usable security at the UI leve= l. The questions are split into defining a set of manageable security tasks= for countering the most common attacks, and the UI elements for signalling= whether an intended action is secure. draft-lazanski-smart-users-internet * An Internet for Users Again: https://datatracker.ietf.org/doc/draft-l= azanski-smart-users-internet * RFC 3552 introduces a threat model that does not include endpoint sec= urity. In the fifteen years since RFC 3552 security issues and cyber attack= s have increased, especially on the endpoint. This document proposes a new = approach to Internet cyber security protocol development that focuses on th= e user of the Internet, namely those who use the endpoint and are the most = vulnerable to attacks. draft-moriarty-caris2 * Coordinating Attack Response at Internet Scale 2 Report: https://data= tracker.ietf.org/doc/draft-moriarty-caris2/ * Coordinating Attack Response at Internet Scale (CARIS) 2 (https://www= .internetsociety.org/events/caris2), sponsored by the Internet Society, too= k place 28 February and 1 March 2019 in Cambridge, Massachusetts, USA. Part= icipants spanned regional, national, international, and enterprise CSIRTs, = operators, service providers, network and security operators, transport ope= rators and researchers, incident response researchers, vendors, and partici= pants from standards communities. draft-mcfadden-smart-rfc3552-research-methodology * Methodology for Researching Security Considerations Sections: https:/= /datatracker.ietf.org/doc/draft-mcfadden-smart-rfc3552-research-methodology * RFC3552 provides guidance to authors in crafting RFC text on Security= Considerations. The RFC is more than fifteen years old. With the threat la= ndscape and security ecosystem significantly changed since the RFC was publ= ished, RFC3552 is a candidate for update. This draft proposes that, prior t= o drafting an update to RFC3552, an examination of recent, published Securi= ty Considerations sections be carried out as a baseline for how to improve = RFC3552. It suggests a methodology for examining Security Considerations se= ctions in published RFCs and the extraction of both quantitative and qualit= ative information that could inform a revision of the older guidance. This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk. All material is UK Crown Copyright =A9 --_000_LO2P123MB17279FC615A3C1795CFDE12DD7C90LO2P123MB1727GBRP_ Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable

SMART folks,


We will be meeting at= IETF 105 on Wednesday 24th July 09:00-10:30 ET in the C2 room (21st Floor).

The meeting will incl= ude plans for the group going forward and discussion of the six drafts= under SMART themes, listed below. 

Everyone is welcome t= o join and we looking forward to seeing you there!


Kirsty


=3D=3D=3D=3D=3D=3D


draft-taddei-smart-cless-introduction


draft-mcfadden-smart-endpoint-taxonomy-for-cless


draft-sasse-smart-secui-questions

draft-lazanski-smart-users-internet

  • An Internet for Users Again: https://datatracker.ietf.org/= doc/draft-lazanski-smart-users-internet
  • RFC 3552 introduces a threat model that does not include e= ndpoint security. In the fifteen years since RFC 3552 security issues and c= yber attacks have increased, especially on the endpoint. This document proposes a new approach to Internet cyber s= ecurity protocol development that focuses on the user of the Internet, name= ly those who use the endpoint and are the most vulnerable to attacks.

draft-moriarty-caris2

  • Coordinating Attack Response at Intern= et Scale 2 Report: = https://datatracker.ietf.org/doc/draft-mor= iarty-caris2/
  • Coordinat= ing Attack Response at Internet Scale (CARIS) 2 (htt= ps://www.internetsociety.org/events/caris2), sponsored by the Internet Society, took place 28 February and 1 March 2019= in Cambridge, Massachusetts, USA. Participants spanned regional, national,= international, and enterprise CSIRTs, operators, service providers, networ= k and security operators, transport operators and researchers, incident response researchers, vendors, and par= ticipants from standards communities.

draft-mcfadden-smart-rfc3552-research-methodology

   &nb= sp;            =             &nb= sp;            =             &nb= sp;            =       


This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk. All material is UK Crown Copyright =A9 --_000_LO2P123MB17279FC615A3C1795CFDE12DD7C90LO2P123MB1727GBRP_-- From nobody Thu Jul 18 02:05:47 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 663C9120178 for ; Thu, 18 Jul 2019 02:05:45 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ncsc.gov.uk Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id g-Yviy6VoKRE for ; Thu, 18 Jul 2019 02:05:41 -0700 (PDT) Received: from GBR01-CWL-obe.outbound.protection.outlook.com (mail-eopbgr110097.outbound.protection.outlook.com [40.107.11.97]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B742112016D for ; Thu, 18 Jul 2019 02:05:40 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=SvtSICVMmhuHSawC4GhPpdTc/sAdP0PNJtRjR3xO9AIKhCezRwvkfb3QJR6AAENuhBcEaz0izQ2rm1qiqSSfoX4Yn+Tq/Nm4XN7txeAB47ylpx2UZ8alYoCgMdRfkAgM/fFGjfzMRyluKsWvsVQBjdguux3w0Fwavvq8odIme38Yr177YNOrgCJnqTATMdnnb8LfcFYTR5VlQd1qVJpKi3a4T6a6aAespIJbhJxqwYWjMaKazo+3BJxA+rzWcQUfaBb4a0kZxZjm+C5mwtYdv9ZcAVaMVCuQIsSawA+Qgt6VkZbJ3c6XIxV9+APQGKF7wTGtXgPsF1j9K1dakQATsw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=CIOBBppyAcCekXdSFxX7HsoGfjJC8ALGc7XQ6sSQVIU=; b=ncJiaOJIfVzUnV5U/HxhzcQHsRlO8jh/zgfhW5x/cKTslbn47+g2l4YGu7xmnUoDDmlswg3ujWvi/k0ejcMovgkSihlS3KwVGvA0laH5bnFE8rvbtJ9WHe4lLKLD3XLbHJAtzg8DRW8orGjjjLrqWsaEZOR8aZR6meBht+fO4UQONe1PJ2BFhoErU4q1GTEWtJgH7/FYxq2zuYFmxGRpXVTP9ge5iwz509QptEQdQb+cIe+wCrX5Rls//fsCjaGuInPio8Imetx1IUjBwtro3uHngB2cvJSrwY3FTVMjTWD3jIezHhc6n567rx9dGcZhJ3Nyh5quleaVpyt7KX/K3A== ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=ncsc.gov.uk;dmarc=pass action=none header.from=ncsc.gov.uk;dkim=pass header.d=ncsc.gov.uk;arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ncsc.gov.uk; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=CIOBBppyAcCekXdSFxX7HsoGfjJC8ALGc7XQ6sSQVIU=; b=UgeB0JM+K3Dems/NkYFNxGhqtZJhgB5fQDU3zOpKden5FIH7vUi7ohATVk6pQODzOOxlWPQjHJLzAxwYeBlmIbLq9bEibRWqERmakk+xEyOdTmSEIACxgpa+jLVsZDobyyGq+hKC7pkGSIQdXnBDREGddEhIs7+3K/S/bj8QOtM= Received: from LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM (20.176.156.14) by LO2P123MB1693.GBRP123.PROD.OUTLOOK.COM (20.176.154.212) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2094.12; Thu, 18 Jul 2019 09:05:37 +0000 Received: from LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM ([fe80::2cbc:76fa:96ae:d4dd]) by LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM ([fe80::2cbc:76fa:96ae:d4dd%3]) with mapi id 15.20.2073.012; Thu, 18 Jul 2019 09:05:37 +0000 From: Kirsty P To: Kirsty P , "smart@irtf.org" Thread-Topic: SMART meeting at IETF 105 Thread-Index: AQHVPHi+JXYb+6dMW06Yy8pMgLn3fKbQFeoV Date: Thu, 18 Jul 2019 09:05:37 +0000 Message-ID: References: In-Reply-To: Accept-Language: en-GB, en-US Content-Language: en-GB X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=Kirsty.p@ncsc.gov.uk; x-originating-ip: [51.140.114.144] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: e8859ed3-f5b5-4c0a-10c7-08d70b5f19c0 x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(7168020)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:LO2P123MB1693; x-ms-traffictypediagnostic: LO2P123MB1693: x-ms-exchange-purlcount: 7 x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-forefront-prvs: 01026E1310 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(39850400004)(136003)(396003)(346002)(366004)(376002)(13624006)(189003)(199004)(64756008)(66476007)(66946007)(66446008)(66556008)(966005)(2906002)(66574012)(76116006)(19627405001)(52536014)(9686003)(14444005)(256004)(25786009)(6306002)(236005)(66066001)(3846002)(6116002)(33656002)(55016002)(54896002)(5660300002)(478600001)(8676002)(74316002)(7736002)(53936002)(110136005)(81166006)(86362001)(14454004)(6506007)(26005)(11346002)(186003)(81156014)(229853002)(476003)(6246003)(68736007)(446003)(99286004)(76176011)(486006)(2501003)(7696005)(71200400001)(71190400001)(6436002)(606006)(53546011)(55236004)(105004)(8936002)(316002)(102836004); DIR:OUT; SFP:1102; SCL:1; SRVR:LO2P123MB1693; H:LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; received-spf: None (protection.outlook.com: ncsc.gov.uk does not designate permitted sender hosts) x-ms-exchange-senderadcheck: 1 x-microsoft-antispam-message-info: 9/d/DiyIWb1p+fW3whzUFuhPDWOsNV4NedUadLTSUnlRZwnR7IWq9l5B/q8B66QFlFkIlcn8Q5ktfgjfiYO5AODzw/AnoEkkYskmwvdJUVfZMZXN//4GiWXSe5Ziga17A7nsDQFxOjlp1wHHljAytufF/ShhWjUKAvI49y+1xvqQ3mrCQcbKY6HTPrs2okweO5wAbYEX1B8RoxVhUXv3xPLvz7CwY/Tr0NoxUeoIbv/+3V8qub3PVixInHAhtVDHM83AQqlIdLZgIfcsEVPeKg6f8kQWlxHck1w0F8di/2BEwTkh1ZjTlHQ5E1OIefK4hlvhLny45PG9Lb4nWsy07gJZ08MBMj7Z04aXXLKiP/ufbdXp3s12hHZNRe9US9m7zqQVNUvmrQCB/uvhqc1/qGDPpYkT3CwgH6UiCjRRjN0= Content-Type: multipart/alternative; boundary="_000_LO2P123MB1727636D9187E8E4E0199133D7C80LO2P123MB1727GBRP_" MIME-Version: 1.0 X-OriginatorOrg: ncsc.gov.uk X-MS-Exchange-CrossTenant-Network-Message-Id: e8859ed3-f5b5-4c0a-10c7-08d70b5f19c0 X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Jul 2019 09:05:37.6791 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 14aa5744-ece1-474e-a2d7-34f46dda64a1 X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: kirsty62596@ncsc.gov.uk X-MS-Exchange-Transport-CrossTenantHeadersStamped: LO2P123MB1693 Archived-At: Subject: Re: [Smart] SMART meeting at IETF 105 X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 18 Jul 2019 09:05:46 -0000 --_000_LO2P123MB1727636D9187E8E4E0199133D7C80LO2P123MB1727GBRP_ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable SMART folks, Just to note that this will be a *side* meeting at IETF 105 - this also mea= ns you won't see it in the main agenda. Apologies for any confusion! Kirsty ________________________________ From: Smart on behalf of Kirsty P Sent: 17 July 2019 10:24 To: smart@irtf.org Subject: [Smart] SMART meeting at IETF 105 SMART folks, We will be meeting at IETF 105 on Wednesday 24th July 09:00-10:30 ET in the= C2 room (21st Floor). The meeting will include plans for the group going forward and discussion o= f the six drafts under SMART themes, listed below. Everyone is welcome to join and we looking forward to seeing you there! Kirsty =3D=3D=3D=3D=3D=3D draft-taddei-smart-cless-introduction * Also known as CLESS: Capabilities and Limitations of Endpoint Securit= y Solutions: https://datatracker.ietf.org/doc/draft-taddei-smart-cless-intr= oduction/ * CLESS attempts to establish the capabilities and limitations of endpo= int-only security solutions and explore potential alternative approaches. draft-mcfadden-smart-endpoint-taxonomy-for-cless * Endpoint Taxonomy for CLESS: https://datatracker.ietf.org/doc/draft-m= cfadden-smart-endpoint-taxonomy-for-cless/ * CLESS discusses endpoints in general terms. It has been suggested tha= t there are classes of endpoints that have different characteristics. Those= classes may have completely different threat landscapes and the endpoints = may have completely different security capabilities. In support of the work= on CLESS, this document provides a taxonomy of endpoints that is intended = to provide a foundation for further work on CLESS and research on approache= s to providing endpoint security alternatives in a diverse group of setting= s. draft-sasse-smart-secui-questions * Open Questions in Supporting Secure User Interactions: https://github= .com/smart-rg/drafts/blob/master/draft-sasse-smart-secui-questions.txt * Describes open questions in supporting usable security at the UI leve= l. The questions are split into defining a set of manageable security tasks= for countering the most common attacks, and the UI elements for signalling= whether an intended action is secure. draft-lazanski-smart-users-internet * An Internet for Users Again: https://datatracker.ietf.org/doc/draft-l= azanski-smart-users-internet * RFC 3552 introduces a threat model that does not include endpoint sec= urity. In the fifteen years since RFC 3552 security issues and cyber attack= s have increased, especially on the endpoint. This document proposes a new = approach to Internet cyber security protocol development that focuses on th= e user of the Internet, namely those who use the endpoint and are the most = vulnerable to attacks. draft-moriarty-caris2 * Coordinating Attack Response at Internet Scale 2 Report: https://data= tracker.ietf.org/doc/draft-moriarty-caris2/ * Coordinating Attack Response at Internet Scale (CARIS) 2 (https://www= .internetsociety.org/events/caris2), sponsored by the = Internet Society, took place 28 February and 1 March 2019 in Cambridge, Mas= sachusetts, USA. Participants spanned regional, national, international, an= d enterprise CSIRTs, operators, service providers, network and security ope= rators, transport operators and researchers, incident response researchers,= vendors, and participants from standards communities. draft-mcfadden-smart-rfc3552-research-methodology * Methodology for Researching Security Considerations Sections: https:/= /datatracker.ietf.org/doc/draft-mcfadden-smart-rfc3552-research-methodology= * RFC3552 provides guidance to authors in crafting RFC text on Security= Considerations. The RFC is more than fifteen years old. With the threat la= ndscape and security ecosystem significantly changed since the RFC was publ= ished, RFC3552 is a candidate for update. This draft proposes that, prior t= o drafting an update to RFC3552, an examination of recent, published Securi= ty Considerations sections be carried out as a baseline for how to improve = RFC3552. It suggests a methodology for examining Security Considerations se= ctions in published RFCs and the extraction of both quantitative and qualit= ative information that could inform a revision of the older guidance. This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk. All material is UK Crown Copyright =A9 --_000_LO2P123MB1727636D9187E8E4E0199133D7C80LO2P123MB1727GBRP_ Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
SMART folks,

Just to note that this will be a *side* meeting at IETF 105 - this also mea= ns you won't see it in the main agenda. Apologies for any confusion!

Kirsty
From: Smart <smart-bounc= es@irtf.org> on behalf of Kirsty P <Kirsty.p=3D40ncsc.gov.uk@dmarc.ie= tf.org>
Sent: 17 July 2019 10:24
To: smart@irtf.org
Subject: [Smart] SMART meeting at IETF 105
 

SMART folks,


We will be meeting at IETF = 105 on Wednesday 24th July 09:00-10:30 ET in the C2 room (21st Floor).

The meeting will include pl= ans for the group going forward and discussion of the six drafts under= SMART themes, listed below. 

Everyone is welcome to join= and we looking forward to seeing you there!


Kirsty


=3D=3D=3D=3D=3D=3D


draft-taddei-smart-cless-introduction

draft-mcfadden-smart-endpoint-taxonomy-for-cless

  • Endpoint Taxonomy for CLESS: https://datatracker.ietf.org/doc/draft-mc= fadden-smart-endpoint-taxonomy-for-cless/
  • CLESS discusses endpoints in general terms. It has been sugge= sted that there are classes of endpoints that have different characteristic= s. Those classes may have completely different threat landscapes and the endpoints may have completely differen= t security capabilities. In support of the work on CLESS, this document pro= vides a taxonomy of endpoints that is intended to provide a foundation for = further work on CLESS and research on approaches to providing endpoint security alternatives in a diverse gro= up of settings.

draft-sasse-smart-secui-questions


draft-lazanski-smart-users-internet

  • An Internet for Users Again: https://datatracker.ietf.org/doc/draft-lazanski-smart-users-internet
  • RFC 3552 introduces a threat m= odel that does not include endpoint security. In the fifteen years since RF= C 3552 security issues and cyber attacks have increased, especially on the endpoint. This document proposes a new approach to Internet cyber s= ecurity protocol development that focuses on the user of the Internet, name= ly those who use the endpoint and are the most vulnerable to attacks.

draft-moriarty-caris2

  • Coordinating Attack Response at Internet Sc= ale 2 Report: https://datatracker.ie= tf.org/doc/draft-moriarty-caris2/
  • Coordinating Attack Response at Internet Scale (CARIS) 2 (https://www.internetsociety.org/events/caris2), sponsored by the Internet Society, took place 28 February and 1 March 2019= in Cambridge, Massachusetts, USA. Participants spanned regional, national,= international, and enterprise CSIRTs, operators, service providers, networ= k and security operators, transport operators and researchers, incident response researchers, vendors, and par= ticipants from standards communities.

draft-mcfadden-smart-rfc3552-research-methodology

  • Methodology for Researching Security Consid= erations Sections: https://datatracker.ietf.org/doc/draft-mcf= adden-smart-rfc3552-research-methodology
  • RFC3552 provides guidance to authors in crafting RFC text on S= ecurity Considerations. The RFC is more than fifteen years old. With the th= reat landscape and security ecosystem significantly changed since the RFC was published, RFC3552 is a candidate = for update. This draft proposes that, prior to drafting an update to RFC355= 2, an examination of recent, published Security Considerations sections be = carried out as a baseline for how to improve RFC3552. It suggests a methodology for examining Security Consi= derations sections in published RFCs and the extraction of both quantitativ= e and qualitative information that could inform a revision of the older gui= dance.

    &nb= sp;            =             &nb= sp;            =             &nb= sp;            =      


This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk. All material is UK Crown Copyright =A9
--_000_LO2P123MB1727636D9187E8E4E0199133D7C80LO2P123MB1727GBRP_-- From nobody Tue Jul 23 06:14:17 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 37BE212023E for ; Tue, 23 Jul 2019 06:14:15 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.895 X-Spam-Level: X-Spam-Status: No, score=0.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_WORDY=1.571, FROM_WORDY_SHORT=2.022, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bo25RHyUGttp for ; Tue, 23 Jul 2019 06:14:13 -0700 (PDT) Received: from mail1.protonmail.ch (mail1.protonmail.ch [185.70.40.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1050D120119 for ; Tue, 23 Jul 2019 06:14:13 -0700 (PDT) Date: Tue, 23 Jul 2019 13:14:04 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1563887651; bh=/CnbQFi5tkWx6FIftRrDLORjougyxzGeiN65LwUkjHg=; h=Date:To:From:Reply-To:Subject:Feedback-ID:From; b=x3X8zEovhCyP07XVhSIKuc+0hYRs1ZT5G4CVWD1CYACi+tEcr4eTbGvPXN3uROBup ZLai9rFzUHuhaXag0xtHfq8ZwJzrvjNJqzFvjAoXMzKCcZVjDQdGIBEhxY/PpbwNnM B2L2J+na+n2Q0wqwA6hrgwoWTpj6HapIuZPE10sQ= To: "smart@irtf.org" From: "Arnaud.Taddei.IETF" Reply-To: "Arnaud.Taddei.IETF" Message-ID: Feedback-ID: kou6vaSHQeY5dgFN9dCIYKo4z6hnnNmKuV4IBJw2wx4vSVPtftyhWUTBigri6zMJ3K1hxYJjI-3RAIGaizMt5g==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_f5e17b6da6e6c7d9fd74dd13e64ddf8a" Archived-At: Subject: [Smart] CLESS side meeting change X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 Jul 2019 13:14:15 -0000 This is a multi-part message in MIME format. --b1_f5e17b6da6e6c7d9fd74dd13e64ddf8a Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: base64 RGVhciBhbGwsIG15IG1pc3Rha2UgSSBqdXN0IHJlYWxpc2VkIHRoZSBDTEVTUyBzaWRlIG1lZXRp bmcgd291bGQgYmUgYXQgdGhlIHNhbWUgdGltZSBhcyB0aGUgVExTIHNlc3Npb24gb24gVGh1cnNk YXkgc28gSSBqdXN0IGNoYW5nZWQgaXQgdG8gdG9tb3Jyb3cgYmVmb3JlIHRoZSBwbGVuYXJ5LiBT bzoKCkNMRVNTIHNpZGUgbWVldGluZyBXZWRuZXNkYXkgMTU6MzAgLSAxNjozMCBpbiBOb3RyZSBE YW1lCgpJIGhvcGUgdGhpcyBpcyBhY2NlcHRhYmxlCgpTZW50IHdpdGggW1Byb3Rvbk1haWxdKGh0 dHBzOi8vcHJvdG9ubWFpbC5jb20pIFNlY3VyZSBFbWFpbC4= --b1_f5e17b6da6e6c7d9fd74dd13e64ddf8a Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: base64 PGRpdj5EZWFyIGFsbCwgbXkgbWlzdGFrZSBJIGp1c3QgcmVhbGlzZWQgdGhlIENMRVNTIHNpZGUg bWVldGluZyB3b3VsZCBiZSBhdCB0aGUgc2FtZSB0aW1lIGFzIHRoZSBUTFMgc2Vzc2lvbiBvbiBU aHVyc2RheSBzbyBJIGp1c3QgY2hhbmdlZCBpdCB0byB0b21vcnJvdyBiZWZvcmUgdGhlIHBsZW5h cnkuIFNvOjxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2PkNMRVNTIHNpZGUgbWVldGluZyBX ZWRuZXNkYXkgMTU6MzAgLSAxNjozMCBpbiBOb3RyZSBEYW1lJm5ic3A7PGJyPjwvZGl2PjxkaXY+ PGJyPjwvZGl2PjxkaXY+SSBob3BlIHRoaXMgaXMgYWNjZXB0YWJsZTwvZGl2PjxkaXY+PGJyPjwv ZGl2PjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2lnbmF0dXJlX2Jsb2NrIj48ZGl2IGNsYXNzPSJw cm90b25tYWlsX3NpZ25hdHVyZV9ibG9jay11c2VyIHByb3Rvbm1haWxfc2lnbmF0dXJlX2Jsb2Nr LWVtcHR5Ij48YnI+PC9kaXY+PGRpdiBjbGFzcz0icHJvdG9ubWFpbF9zaWduYXR1cmVfYmxvY2st cHJvdG9uIj5TZW50IHdpdGggPGEgaHJlZj0iaHR0cHM6Ly9wcm90b25tYWlsLmNvbSIgdGFyZ2V0 PSJfYmxhbmsiPlByb3Rvbk1haWw8L2E+IFNlY3VyZSBFbWFpbC48YnI+PC9kaXY+PC9kaXY+PGRp dj48YnI+PC9kaXY+ --b1_f5e17b6da6e6c7d9fd74dd13e64ddf8a-- From nobody Tue Jul 23 15:32:44 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 314A3120352 for ; Tue, 23 Jul 2019 15:32:33 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2 X-Spam-Level: X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ncsc.gov.uk Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8TKGAfYc0Jxp for ; Tue, 23 Jul 2019 15:32:24 -0700 (PDT) Received: from GBR01-LO2-obe.outbound.protection.outlook.com (mail-eopbgr100125.outbound.protection.outlook.com [40.107.10.125]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9877C1203C2 for ; Tue, 23 Jul 2019 15:32:23 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=WQkNeC8rI2KP+8i+NyGsmkru92b2gMm8SGG23u/+mngBOFjS9XN3p/IhneYJvNnUpBzMIk/vlGtcTZUcWeRh99EYSZSAwLyI/Z7phSdCqgfgWK4BjlIAia/iDCXzRnY+TS4THrtncQcR2h+OW3O08iuOyJXqSsWuVX7s56jd6xr9dzSORKInIDNiNRuKm1jdtqAqUPplLPG4WVyznjqlBcPQfQXyy5wMiUEuYWCXN2Augou6IXw78HMFKd/S9Fgv709ZYjYgStEaWe943LMHtlAtPAIk8XZOJbVWd9LT7mbyoVYfbAOLq7meSmG1gurqoGjGmCIA/G6FU6HSYZwsgg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=2lMen621WF/oqoAv3aHIqwQck/8jcxXwVNptyygEMps=; b=eBoUWE47za2oTGN0FpWnGjVBi7onb3hjNq85Bk+zjYm9skiYLviYEz5fseufPe+zUiqMByipnGhRqf4EcFNhRCU8gzPyN8+u48wley5bOM8xVChTVQ9JjTYszCcY05d/QQ8ao+f1RJKuDsMye1m4Jmg8AaD9affj7FrXVLAIHMW8KQ+eI9A8zKwaY8QVJ1cJ0PUXfbd0YVym6nxMtAUY7y9b3oGpe0JggquDY3Ce3NU0NOLgfFiocKA3LlFM242c5FgMOXZeLb6Kjj7Ql9xCLwqUIV/h6i5x3qJIaUdB7O/tdLJAZnRxqBzDXPkNRi50i84hSLr80wqCNjgbI8g4KQ== ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=ncsc.gov.uk;dmarc=pass action=none header.from=ncsc.gov.uk;dkim=pass header.d=ncsc.gov.uk;arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ncsc.gov.uk; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=2lMen621WF/oqoAv3aHIqwQck/8jcxXwVNptyygEMps=; b=GasmMTz0FBd5Cx30FApbYZIsewPRVe0NK1bVvtKkRjB0/a94/33+0ri0NfTJlUAp0R+9KUFyRaf+FwMg7rjUrtfVCTMqhVjxT42ZyVVIw3kRxpS/v8tSw2UIBQeWlT3z8ujZEOPTt/QKd88txKjD95sJH1hqmDyQnTD+UHu6B9Q= Received: from LNXP123MB2570.GBRP123.PROD.OUTLOOK.COM (20.176.159.147) by LNXP123MB2250.GBRP123.PROD.OUTLOOK.COM (20.176.159.202) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2094.16; Tue, 23 Jul 2019 22:32:20 +0000 Received: from LNXP123MB2570.GBRP123.PROD.OUTLOOK.COM ([fe80::36:e9a5:cb51:4859]) by LNXP123MB2570.GBRP123.PROD.OUTLOOK.COM ([fe80::36:e9a5:cb51:4859%5]) with mapi id 15.20.2094.013; Tue, 23 Jul 2019 22:32:20 +0000 From: Mark O To: "smart@irtf.org" , "secdispatch@ietf.org" Thread-Topic: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt Thread-Index: AdVBpXaIHMgcNuHoTa6WtdnBmIdnnw== Date: Tue, 23 Jul 2019 22:32:20 +0000 Message-ID: Accept-Language: en-GB, en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=Mark.O@ncsc.gov.uk; x-originating-ip: [51.141.26.231] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: b1729b0b-59a7-4433-30d7-08d70fbda01e x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(7168020)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:LNXP123MB2250; x-ms-traffictypediagnostic: LNXP123MB2250: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:6430; x-forefront-prvs: 0107098B6C x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(136003)(376002)(39850400004)(396003)(346002)(366004)(189003)(199004)(51444003)(54896002)(9686003)(6306002)(53936002)(55016002)(486006)(2420400007)(45080400002)(6116002)(66574012)(3846002)(33656002)(2906002)(478600001)(7736002)(8936002)(26005)(25786009)(74316002)(476003)(81156014)(790700001)(6436002)(15650500001)(71200400001)(8676002)(186003)(66066001)(7110500001)(102836004)(53546011)(71190400001)(55236004)(966005)(99286004)(316002)(110136005)(81166006)(6506007)(14454004)(575854001)(14444005)(256004)(2501003)(6246003)(229853002)(68736007)(30864003)(64756008)(52536014)(66946007)(86362001)(66446008)(66556008)(7696005)(66476007)(5660300002)(76116006); DIR:OUT; SFP:1102; SCL:1; SRVR:LNXP123MB2250; H:LNXP123MB2570.GBRP123.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; received-spf: None (protection.outlook.com: ncsc.gov.uk does not designate permitted sender hosts) x-ms-exchange-senderadcheck: 1 x-microsoft-antispam-message-info: uuahvh1gd90dMCwie3n5JfLUl8j7avKSk5BRoI3CKCDfsmYYJ1ysvUxSaVgs/YQqz1u4lowFfJDaYYFTrc+oXdYt0QIga9AzGG8K1UqiHqxBhoc0zM2jfPB7EUKmW304s2VggFTyLED6SSnsSp1GtvaJxNOtRGHVWCni13P9Qkr0kwuTFiEhpsBhdscmtN7QNQjBWDfoh91Xwr8tGhISC15pvtWwTjukcf2bHFHO+TfFcmgUdNmJZSfW5vEkcHjQI4VBtxyVHJafsY2n9BYED2cbaikgjXdsfORdz3bYc4NEPBoJMbt8PX/3tbkgPxleB01YTxkCbaAdbo8hEcuLX9wD+DDCjctHUVUgCoSTcUsaKghWd0TiXbW6KVlIlzgVgUxs/n+2FgTkn5woeDvkAsPuBbNmXBzzEANmu2ZOfEg= Content-Type: multipart/alternative; boundary="_000_LNXP123MB257091D6FEE0D59AFD577BE1D3C70LNXP123MB2570GBRP_" MIME-Version: 1.0 X-OriginatorOrg: ncsc.gov.uk X-MS-Exchange-CrossTenant-Network-Message-Id: b1729b0b-59a7-4433-30d7-08d70fbda01e X-MS-Exchange-CrossTenant-originalarrivaltime: 23 Jul 2019 22:32:20.5323 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 14aa5744-ece1-474e-a2d7-34f46dda64a1 X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: Mark38706@ncsc.gov.uk X-MS-Exchange-Transport-CrossTenantHeadersStamped: LNXP123MB2250 Archived-At: Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazanski-smart-users-internet-00.txt X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 23 Jul 2019 22:32:34 -0000 --_000_LNXP123MB257091D6FEE0D59AFD577BE1D3C70LNXP123MB2570GBRP_ Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Thanks, Dominique, for bringing this draft to the list. It's not a complete= survey of all the threats facing users and systems on the Internet but it = does highlight some omissions from the current threat model. I attended the tutorial session on how to write security considerations on = 20 July. Something I heard Yoav say was that the IETF mostly focuses on Com= Sec issues, and as a result there's not usually any discussion in the secur= ity considerations of how to protect the host so that private information d= oesn't leak out; also that the security considerations all too often ignore= operational considerations. This reflects what I have seen in Internet dra= fts but does seem to be ignoring a class of attacks that arguably ought to = be in scope. Checking RFC 3552 to see what's actually in scope for the security consider= ations, it says (Section 2: The Goals of Security): We can loosely divide security goals into those related to protecting communications (COMMUNICATION SECURITY, also known as COMSEC) and those relating to protecting systems (ADMINISTRATIVE SECURITY or SYSTEM SECURITY). Since communications are carried out by systems and access to systems is through communications channels, these goals obviously interlock, but they can also be independently provided. So System Security and the protection of systems is apparently in scope. Se= ction 3 specifies the Internet threat model - and we can classify the attac= ks here according to whether they are Communications Security or System Sec= urity: 3.2.1 Confidentiality violation - COMSEC 3.2.2 Password sniffing - COMSEC 3.2.3 Offline cryptographic attacks - COMSEC (capturing challenge-response)= ; SYSTEM SECURITY (stealing password file) 3.3.1 Replay attacks - COMSEC 3.3.2 Message insertion - COMSEC 3.3.3 Message deletion - COMSEC 3.3.4 Message modification - COMSEC 3.3.5 Man-in-the-middle - COMSEC 3.5 On-path versus off-path - COMSEC 3.6 Link-local - COMSEC Then Section 5 describes the mandatory components of the security considera= tions: Authors MUST describe 1. which attacks are out of scope (and why!) 2. which attacks are in-scope 2.1 and the protocol is susceptible to 2.2 and the protocol protects against At least the following forms of attack MUST be considered: eavesdropping, replay, message insertion, deletion, modification, and man-in-the-middle. Potential denial of service attacks MUST be identified as well. So although System Security is recognised as a security goal, there's no sp= ecific guidance on what the threats to System Security are and no requireme= nt for them to be addressed in the security considerations section. This ma= y have contributed towards protocol design concentrating more on ComSec tha= n on other aspects of System security. The security considerations section = should at least call out the threats that result from the compromise of end= points, even if no mitigation is possible. I note that Jari Arkko's draft-arkko-arch-internet-threat-model-01 has been= updated and that this makes similar points regarding the need to address s= ecurity threats other than ComSec. I support the additions to the text of t= he draft, including this one: 7. Treat parties that your equipment connects to with suspicion, even if the communications are encrypted. The other endpoint may misuse any information or control opportunity in the communication. Similarly, even parties within your own system need to be treated with suspicision, as some nodes may become compromised. I also welcome that Stephen Farrell's draft-farrell-etm-03 recognises addit= ional categories of attacks including supply chain attacks and leaky bucket= s, as well as the kinds of breaches detailed in Dominique's draft. I do thi= nk however that Stephen's suggested change to the wording of RFC 3552: OLD: In general, we assume that the end-systems engaging in a protocol exchange have not themselves been compromised. NEW: In general, we assume that one of the protocol engines engaging in a protocol exchange has not been compromised at the run-time of the exchange. is restrictive. We use PFS to protect systems against compromises of the en= dpoint _after_ the protocol exchange has taken place. The Lazanski, Arkko and Farrell drafts could all make valuable contribution= s towards an improved Internet threat model. In response to Eric: * I'd like to try to explore this argument a bit. Specifically, it migh= t be the case that the IETF has just ignored non-comsec and that if we had spent more time on it, that would be better. Alternatively, it could be true that the IETF's focus on comsec has actively harmed other kinds of security. One gets the sense that this document wants to argue the latter point, but it doesn't really come out and say it, let alone substantiate it. That, rather than arguing about the completeness or appropriateness of RFC 3552, might be a better place to start. I agree. Research into the effects that the focus on ComSec has had on othe= r forms of security has not been brought to the IETF in a systematic way. -- Mark From: Smart On Behalf Of Eric Rescorla Sent: 14 July 2019 17:24 To: Stephen Farrell Cc: smart@irtf.org; Kathleen Moriarty ; D= ominique Lazanski ; IETF SecDispatch Subject: Re: [Smart] [Secdispatch] New Version Notification for draft-lazan= ski-smart-users-internet-00.txt I more or less agree with Stephen's position. First, I recognize that this focus on secure endpoints talking to each other is probably the part of 3552 that people are most unhappy about. As I was almost certainly the person who wrote that text, it might be helpful if I laid out some background. First, RFC 3552 isn't intended to say that endpoint threats aren't real, but merely that they are out of scope because they are hard to address. Here's the text in context: The Internet environment has a fairly well understood threat model. In general, we assume that the end-systems engaging in a protocol exchange have not themselves been compromised. Protecting against an attack when one of the end-systems has been compromised is extraordinarily difficult. It is, however, possible to design protocols which minimize the extent of the damage done under these circumstances. For a more narrow statement with a similar theme (but extended to the Web platform, see https://www.chromium.org/Home/chromium-security/secur= ity-faq#TOC-Why-aren-t-physically-local-attacks-in-Chrome-s-threat-model- a= nd https://www.chromium.org/Home/chromium-security/security-faq#TOC-Why-aren-t= -compromised-infected-machines-in-Chrome-s-threat-model-): This is essentially the same situation as with physically-local attacks. The attacker's code, when it runs as your user account on your machine, can do anything you can do. (See also Microsoft's Ten Immutable Laws Of Security.) However, RFC 3552 is primarily oriented towards what can be standardized and in particular towards protocols, and generally secure protocols require some sort of TCB to be effective. Obviously, as alluded to in 3552, to the extent to which protocols can be designed to minimize damage, and we routinely attempt to do so. Examples of this include the use of Forward Secure algorithms and trying to avoid or mitigate designs with single points of failure (as with Certificate Transparency). I know that PHB has some ideas along these lines; I haven't studied them enough to know what I think, but that sort of thing is generally in scope as well. This to some extent goes to Section 2 of draft-lazanski. I certainly agree that to the extent to which it is possible to design cryptographic solutions to prevent data breaches, it is useful to do so, and protocols for doing that would potentially be in scope for IETF. I say "potentially" because I'm not sure that (a) standards are necessary in this space beyond the kind of work we are already doing or (b) that we would have the community to define them, but I don't see an in principle barrier [0] I certainly would not expect 3552 to be deployed to preclude that kind of work. Similarly, I don't think that the kinds of botnet attacks described in Section 3 are out of scope for 3552, though I see how it could be read this way. However I think that the idea of a malicious counterparty is clearly in scope if we assume that the attacker controls the network. Here too, I wouldn't expect 3552 to be deployed to preclude that kind of work; we have done plenty of anti-DoS work in IETF (whether it is good enough is a different story). Turning now to the document itself, its language seems to be trying to stake out a very strong position, but I'm not quite sure what that position is. For instance: themselves. These assumptions have led to a focus on communications security and the development of protocols that place this kind of security above all else. Ironically - or coincidentally - as the development of these protocols have taken place over the last several decades, there has been and continues to be a sharp rise in cyber attacks. The Internet threat model in RFC 3552 does not even mention that the greatest threat to the Internet is the growing scale and variety of cyber attacks against all types of endpoints that is resulting in significant data breaches. This now needs to change. First, I'm not sure that I agree that cyber attacks on endpoints are the greatest threat to the Internet, but even assuming that's so, what are the implications of that for work in the IETF? It's one thing to change the words of 3552, but what work specifically would we do if those words were different. Second, I think it's quite likely true that the IETF has focused on communications security, and this document seems to be trying to argue that that's to the detriment of other kinds of security, both here and in other places: Internet security research and technical development must accept the reality of all the security issues in the Internet ecosystem. Decisions being made in the name of privacy are sometimes leading to larger inadvertent security and privacy losses. I'd like to try to explore this argument a bit. Specifically, it might be the case that the IETF has just ignored non-comsec and that if we had spent more time on it, that would be better. Alternatively, it could be true that the IETF's focus on comsec has actively harmed other kinds of security. One gets the sense that this document wants to argue the latter point, but it doesn't really come out and say it, let alone substantiate it. That, rather than arguing about the completeness or appropriateness of RFC 3552, might be a better place to start. -Ekr [0] Indeed, work like token binding is arguably a stab at some of this stuff. On Sun, Jul 14, 2019 at 3:26 AM Stephen Farrell = wrote: Hiya, On 14/07/2019 03:06, Kathleen Moriarty wrote: > It's a good start toward broadening > the conversation on the Internet threat model and I do agree that is > necessary. FWIW, I don't agree that this is a good start. ISTM that this draft is far too opinionated, for example claiming that "IETF attendees are privacy-focused", (how does the author know?), claiming it "unthinkable" that something isn't done, and that "Internet security research and technical development must accept the reality of all the security issues in the Internet ecosystem" (though I'm not sure I can parse that last quote at all). Towards the end we get: "Endpoints have changed over the last 10 years, but assumptions about endpoints in the IETF hasn't changed in that time" - I don't know how the author knows what assumptions may or may not be made by IETF participants (not "attendees" of course). And perhaps most oddly, this bold assertion: "Further, it is imperative that new conclusions and recommendations from a revisited threat model are backed up by research, case studies and experience - rather than bold assertions." ;-) The list of breaches and botnets is fine, but not much use without any analysis of how those happened. We need a good bit more work to figure out whether any changes to protocols or protocol design are actually warranted or useful in the face of these kinds of incident. (Hence the oddity of the bold assertion above.) Lastly, ISTM important, if any discussion here is to be worthwhile, to recognise from the start that existing IETF consensus positions in this space are not likely to be discarded - those were arrived at after a lot iterations of a lot of debate by well-informed IETF participants. (Despite what some may claim;-) So I reckon the right discussion to have is about how to extend and not discard the 3552 threat model. Any other attempted changes would seem to me to require a shift in deployments from 2-party to multi-party protocols, which is unrealistic, or to require magical trust in middleboxes, which would be plain silly and seems highly unlikely to be something for which IETF consensus would be established. > Also - is this a request to present at SecDispatch? I hope not. This draft is IMO clearly not ready for that. An initial discussion about threat models and how to approach this kind of work at saag may be worthwhile (and I think Jari has asked the sec ADs for such a slot). Cheers, S. _______________________________________________ Secdispatch mailing list Secdispatch@ietf.org https://www.ietf.org/mailman/listinfo/secdispatch This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk. All material is UK Crown Copyright (c) --_000_LNXP123MB257091D6FEE0D59AFD577BE1D3C70LNXP123MB2570GBRP_ Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

&nbs= p;

Thanks, Dominique, fo= r bringing this draft to the list. It’s not a complete survey of all = the threats facing users and systems on the Internet but it does highlight = some omissions from the current threat model.

 

I attended the tutori= al session on how to write security considerations on 20 July. Something I = heard Yoav say was that the IETF mostly focuses on ComSec issues, and as a = result there’s not usually any discussion in the security considerations of how to protect the host so that private = information doesn’t leak out; also that the security considerations a= ll too often ignore operational considerations. This reflects what I have s= een in Internet drafts but does seem to be ignoring a class of attacks that arguably ought to be in scope.

 

Checking RFC 3552 to = see what’s actually in scope for the security considerations, it says= (Section 2: The Goals of Security):

 

   We can loosely divide securit=
y goals into those related to protecting
   communications (COMMUNICATION=
 SECURITY, also known as COMSEC) and
   those relating to protecting =
systems (ADMINISTRATIVE SECURITY or
   SYSTEM SECURITY).  Since=
 communications are carried out by systems
   and access to systems is thro=
ugh communications channels, these goals
   obviously interlock, but they=
 can also be independently provided.
 
So System Security and the protection of systems is app=
arently in scope. Section 3 specifies the Internet threat model – and=
 we can classify the attacks here according to whether they are Communicati=
ons Security or System Security:<=
/o:p>

 

3.2.1 Confidentiality= violation – COMSEC

3.2.2 Password sniffi= ng – COMSEC

3.2.3 Offline cryptog= raphic attacks – COMSEC (capturing challenge-response); SYSTEM SECURI= TY (stealing password file)

3.3.1 Replay attacks = – COMSEC

3.3.2 Message inserti= on – COMSEC

3.3.3 Message deletio= n – COMSEC

3.3.4 Message modific= ation – COMSEC

3.3.5 Man-in-the-midd= le – COMSEC

3.5 On-path versus of= f-path – COMSEC

3.6 Link-local –= ; COMSEC

 

Then Section 5 descri= bes the mandatory components of the security considerations:

 

   Authors MUST describe

 

      1.  = which attacks are out of scope (and why!)

      2.  = which attacks are in-scope=

      2.1  and = the protocol is susceptible to

      2.2  and = the protocol protects against

 

   At least the following forms of = attack MUST be considered:<= /span>

   eavesdropping, replay, message i= nsertion, deletion, modification, and<= o:p>

   man-in-the-middle.  Potenti= al denial of service attacks MUST be

   identified as well.

 

So although System Se= curity is recognised as a security goal, there’s no specific guidance= on what the threats to System Security are and no requirement for them to = be addressed in the security considerations section. This may have contributed towards protocol design concentrating m= ore on ComSec than on other aspects of System security. The security consid= erations section should at least call out the threats that result from the = compromise of endpoints, even if no mitigation is possible.

 

I note that Jari Arkk= o’s draft-arkko-arch-internet-threat-model-01 has been updated and th= at this makes similar points regarding the need to address security threats= other than ComSec. I support the additions to the text of the draft, including this one:

 

   7.  Treat parties that your= equipment connects to with suspicion,=

       even if = the communications are encrypted.  The other endpoint may

       misuse a= ny information or control opportunity in the

       communic= ation.  Similarly, even parties within your own system

       need to = be treated with suspicision, as some nodes may become

       compromi= sed.

 

I also welcome that S= tephen Farrell’s draft-farrell-etm-03 recognises additional categorie= s of attacks including supply chain attacks and leaky buckets, as well as t= he kinds of breaches detailed in Dominique’s draft. I do think however that Stephen’s suggested change to the wor= ding of RFC 3552:

 

   OLD: In general, we assume that = the end-systems engaging in a

   protocol exchange have not thems= elves been compromised.

 

   NEW:

 

   In general, we assume that one o= f the protocol engines engaging in a

   protocol exchange has not been c= ompromised at the run-time of the=

   exchange.

 

is restrictive. We us= e PFS to protect systems against compromises of the endpoint _after_= the protocol exchange has taken place.

 

The Lazanski, Arkko a= nd Farrell drafts could all make valuable contributions towards an improved= Internet threat model.

 

In response to Eric:<= o:p>

  • I'd like to try to explore this argument a bit. Specifically, it might
    be the case that the IETF has just ignored non-comsec and that if we
    had spent more time on it, that would be better. Alternatively, it
    could be true that the IETF's focus on comsec has actively harmed
    other kinds of security. One gets the sense that this document wants
    to argue the latter point, but it doesn't really come out and say it,
    let alone substantiate it. That, rather than arguing about the completeness=
    or appropriateness of RFC 3552, might be a better place to start.

 

I agree. Research int= o the effects that the focus on ComSec has had on other forms of security h= as not been brought to the IETF in a systematic way.

 

-- Mark

 

 

 

 

Fro= m: Smart <smart-= bounces@irtf.org>On Behalf Of Eric Rescorla
Sent: 14 July 2019 17:24
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Cc: smart@irtf.org; Kathleen Moriarty <kathleen.moriarty.ietf@gma= il.com>; Dominique Lazanski <dml@lastpresslabel.com>; IETF SecDisp= atch <Secdispatch@ietf.org>
Subject: Re: [Smart] [Secdispatch] New Version Notification for draf= t-lazanski-smart-users-internet-00.txt=

 

I more or less agree = with Stephen's position.

First, I recognize that this focus on secure endpoints talking to each
other is probably the part of 3552 that people are most unhappy
about. As I was almost certainly the person who wrote that text, it might be helpful if I laid out some background.

First, RFC 3552 isn't intended to say that endpoint threats aren't
real, but merely that they are out of scope because they are hard
to address. Here's the text in context:

   The Internet environment has a fairly well understood threat m= odel.
   In general, we assume that the end-systems engaging in a proto= col
   exchange have not themselves been compromised.  Protectin= g against an
   attack when one of the end-systems has been compromised is
   extraordinarily difficult.  It is, however, possible to d= esign
   protocols which minimize the extent of the damage done under t= hese
   circumstances.

For a more narrow statement with a similar theme (but extended to
the Web platform, see https://www.chromium.org/Home/chromium-security/secur= ity-faq#TOC-Why-aren-t-physically-local-attacks-in-Chrome-s-threat-model- a= nd
https://www.chromium.org/Home/chromium-security/security-faq#TOC-Why-aren-t= -compromised-infected-machines-in-Chrome-s-threat-model-):

   This is essentially the same situation as with physically-loca= l
   attacks. The attacker's code, when it runs as your user accoun= t on
   your machine, can do anything you can do. (See also Microsoft'= s Ten
   Immutable Laws Of Security.)

However, RFC 3552 is primarily oriented towards what can be
standardized and in particular towards protocols, and generally secure
protocols require some sort of TCB to be effective. Obviously, as
alluded to in 3552, to the extent to which protocols can be designed
to minimize damage, and we routinely attempt to do so. Examples of
this include the use of Forward Secure algorithms and trying to avoid
or mitigate designs with single points of failure (as with Certificate
Transparency).  I know that PHB has some ideas along these lines; I haven't studied them enough to know what I think, but that sort of
thing is generally in scope as well.

This to some extent goes to Section 2 of draft-lazanski. I certainly
agree that to the extent to which it is possible to design
cryptographic solutions to prevent data breaches, it is useful to do
so, and protocols for doing that would potentially be in scope for
IETF. I say "potentially" because I'm not sure that (a) standards= are
necessary in this space beyond the kind of work we are already doing
or (b) that we would have the community to define them, but I don't
see an in principle barrier [0] I certainly would not expect 3552 to
be deployed to preclude that kind of work.

Similarly, I don't think that the kinds of botnet attacks described
in Section 3 are out of scope for 3552, though I see how it could
be read this way. However I think that the idea of a malicious
counterparty is clearly in scope if we assume that the attacker
controls the network. Here too, I wouldn't expect 3552 to be deployed
to preclude that kind of work; we have done plenty of anti-DoS work
in IETF (whether it is good enough is a different story).


Turning now to the document itself, its language seems to be trying
to stake out a very strong position, but I'm not quite sure what that
position is. For instance:

   themselves. These assumptions have led to a focus on communica= tions
   security and the development of protocols that place this kind= of
   security above all else. Ironically - or coincidentally - as t= he
   development of these protocols have taken place over the last<= br>    several decades, there has been and continues to be a sharp ri= se in
   cyber attacks. The Internet threat model in RFC 3552 does not = even
   mention that the greatest threat to the Internet is the growin= g
   scale and variety of cyber attacks against all types of endpoi= nts
   that is resulting in significant data breaches. This now needs= to
   change.

First, I'm not sure that I agree that cyber attacks on endpoints are
the greatest threat to the Internet, but even assuming that's so,
what are the implications of that for work in the IETF? It's one thing
to change the words of 3552, but what work specifically would we
do if those words were different.

Second, I think it's quite likely true that the IETF has focused
on communications security, and this document seems to be trying
to argue that that's to the detriment of other kinds of security,
both here and in other places:

   Internet security research and technical development must acce= pt the
   reality of all the security issues in the Internet ecosystem.<= br>    Decisions being made in the name of privacy are sometimes lead= ing to
   larger inadvertent security and privacy losses.

I'd like to try to explore this argument a bit. Specifically, it might
be the case that the IETF has just ignored non-comsec and that if we
had spent more time on it, that would be better. Alternatively, it
could be true that the IETF's focus on comsec has actively harmed
other kinds of security. One gets the sense that this document wants
to argue the latter point, but it doesn't really come out and say it,
let alone substantiate it. That, rather than arguing about the completeness=
or appropriateness of RFC 3552, might be a better place to start.

-Ekr


[0] Indeed, work like token binding is arguably a stab at some of this
stuff.

 

On Sun, Jul 14, 2019 = at 3:26 AM Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote:


Hiya,

On 14/07/2019 03:06, Kathleen Moriarty wrote:
> It's a good start toward broadening
> the conversation on the Internet threat model and I do agree that is > necessary.

FWIW, I don't agree that this is a good start.

ISTM that this draft is far too opinionated, for example
claiming that "IETF attendees are privacy-focused", (how
does the author know?), claiming it "unthinkable" that
something isn't done, and that "Internet security research
and technical development must accept the reality of all
the security issues in the Internet ecosystem" (though
I'm not sure I can parse that last quote at all).

Towards the end we get: "Endpoints have changed over the
last 10 years, but assumptions about endpoints in the IETF
hasn't changed in that time" - I don't know how the
author knows what assumptions may or may not be made
by IETF participants (not "attendees" of course).

And perhaps most oddly, this bold assertion: "Further, it
is imperative that new conclusions and recommendations
from a revisited threat model are backed up by research, case
studies and experience - rather than bold assertions." ;-)

The list of breaches and botnets is fine, but not much
use without any analysis of how those happened. We need a
good bit more work to figure out whether any changes to
protocols or protocol design are actually warranted or
useful in the face of these kinds of incident. (Hence
the oddity of the bold assertion above.)

Lastly, ISTM important, if any discussion here is to
be worthwhile, to recognise from the start that existing
IETF consensus positions in this space are not likely to
be discarded - those were arrived at after a lot iterations
of a lot of debate by well-informed IETF participants.
(Despite what some may claim;-) So I reckon the right
discussion to have is about how to extend and not discard
the 3552 threat model. Any other attempted changes would
seem to me to require a shift in deployments from 2-party
to multi-party protocols, which is unrealistic, or to
require magical trust in middleboxes, which would be plain
silly and seems highly unlikely to be something for which
IETF consensus would be established.

> Also - is this a request to present at SecDispatch?

I hope not. This draft is IMO clearly not ready for that.
An initial discussion about threat models and how to
approach this kind of work at saag may be worthwhile (and
I think Jari has asked the sec ADs for such a slot).

Cheers,
S.
_______________________________________________
Secdispatch mailing list
Secdispatch@ietf.org
https://www.ietf.org/mailman/listinfo/secdispatch

 

This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk. All material is UK Crown Copyright ©= ; --_000_LNXP123MB257091D6FEE0D59AFD577BE1D3C70LNXP123MB2570GBRP_-- From nobody Wed Jul 24 05:45:50 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D12B81200C4 for ; Wed, 24 Jul 2019 05:45:48 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.001 X-Spam-Level: X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ncsc.gov.uk Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QWWRscz6M7cr for ; Wed, 24 Jul 2019 05:45:47 -0700 (PDT) Received: from GBR01-LO2-obe.outbound.protection.outlook.com (mail-eopbgr100115.outbound.protection.outlook.com [40.107.10.115]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A69AC12000F for ; Wed, 24 Jul 2019 05:45:46 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=CnDCEQC2jx9rJnTUmyrCNw3e6TLBamzjTMscNzO8EDSlyayiLvk8LrM1yPt1SqvpG+f3iceyfrf1KJ2FYBpDUqQSsiK8mU1oRTFLQZdgN33FOw+n2oV4ku3LRcylT6NX7CIVTCEM5E1wk/WQK9c/HRhWdCJPAQ22Roz0qExw/M5gioUA1LxD+rKainda8Eu3bvrMT8bfwA7AUV3vZFx6uGAAsoWhPwFy3pj/8maUPuwoSrSURaPDB94d2lciAhpizWJo6z+OiLECwnR8Dczh0r6/fdzA9X8F3szLMpGj7NXQy7wJ5sfyDVfr/HlZL7quP/t2xF4BXqzpamkf7xiGhg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=b4bWDGKFwbLWWYyk3wsQhJUhKJB5aAfgC5V9WXytSmc=; b=EzMgOSezLzRg9offF7WPhL8H87zcNwYEAO7CNMxMzXl6rYBvoimm2v/i1A6RjnOxiEoDv+zPEb8Fjn2ppzih8KF0wcdX1XjePkUNlmYhtWrD1HjfgXt8xetNrvdIfBKySuV2ibeSMr9iq4rMJwygr/7eZHv61LV++0m1Nb17lhbJCAW8vF/DJRABIBmy8CzRcN5+hufI1Ah6uivDdH458SS+YEH6e3g3ThETAHw3XFUBxEszqfOMl8MEH5HwzvpxT8tD99RT5Y6wmweblQpd+riy/hHKRjSxBQyzCwISfWNdxB5+tBlyXMzViuvwmWfh738g4NWY6mC7S1ZiYCi7Tw== ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=ncsc.gov.uk;dmarc=pass action=none header.from=ncsc.gov.uk;dkim=pass header.d=ncsc.gov.uk;arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ncsc.gov.uk; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=b4bWDGKFwbLWWYyk3wsQhJUhKJB5aAfgC5V9WXytSmc=; b=UmLIUwP4JuxiZ0H2RvYfBP4AOv0TNmT1rvx9B0s7C2MJgqsZKyCYQO5oC4+Ben2pjXkTbPenmcBAPxLLwIaZ3jnURb2MjCx9i4MtJpjDV7H+YCF9Zqb3W3/wkDMmAJGhJvhbNwGL8IK9z88JFFesFvwBIEnnIj+1dHNoN3Cdhtw= Received: from LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM (20.176.156.14) by LO2P123MB2015.GBRP123.PROD.OUTLOOK.COM (20.176.155.19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2094.16; Wed, 24 Jul 2019 12:45:44 +0000 Received: from LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM ([fe80::6c2f:602c:52c8:92fe]) by LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM ([fe80::6c2f:602c:52c8:92fe%4]) with mapi id 15.20.2094.017; Wed, 24 Jul 2019 12:45:44 +0000 From: Kirsty P To: "smart@irtf.org" Thread-Topic: Side Meeting This Morning Thread-Index: AQHVQh2ogEjYRIUA9ku/wPkjJN5+mA== Date: Wed, 24 Jul 2019 12:45:44 +0000 Message-ID: Accept-Language: en-GB, en-US Content-Language: en-GB X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=Kirsty.p@ncsc.gov.uk; x-originating-ip: [51.141.26.231] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 184589a5-6ea3-4dd6-5b12-08d71034d7fd x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(7168020)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:LO2P123MB2015; x-ms-traffictypediagnostic: LO2P123MB2015: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:8273; x-forefront-prvs: 0108A997B2 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(136003)(376002)(346002)(396003)(366004)(39850400004)(199004)(189003)(497574002)(71200400001)(4744005)(66066001)(71190400001)(68736007)(316002)(8936002)(52536014)(55016002)(66476007)(8676002)(66946007)(5640700003)(6436002)(33656002)(9686003)(66446008)(64756008)(54896002)(66556008)(3480700005)(99286004)(74316002)(7736002)(76116006)(5660300002)(81156014)(86362001)(102836004)(2501003)(476003)(6506007)(1730700003)(55236004)(7696005)(81166006)(53936002)(256004)(14444005)(486006)(2906002)(14454004)(478600001)(3846002)(6116002)(2351001)(25786009)(105004)(6916009)(186003)(26005)(19627405001); DIR:OUT; SFP:1102; SCL:1; SRVR:LO2P123MB2015; H:LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1; received-spf: None (protection.outlook.com: ncsc.gov.uk does not designate permitted sender hosts) x-ms-exchange-senderadcheck: 1 x-microsoft-antispam-message-info: ijSOuRbZ/2ywqgUtx9arnxMCpSE2xR5uhFQQ5TvdUAWyLygXu1J8MRw/DbQZY8hroynflCV1udeKCEkRNmWIoyRumLQO/OjA3DruxN+lycnsrQ4LJTXhidHKtZA89mkzGChq8eY7yrvKo6btKdUOMRqm6WfeGKQBCNDgwrkVWpePyX30Ydp3cS0q+49jrLEvWVZcUTtEa8k1Mqjwq9o3ceYjxQ37s9BZ/uIoSHcFez/bSKv4oqY1+3J6T4x43+l13n7p27g2S/xdWOGWyVxybfwvx+txBQ4BRdQoX36xk9k6knImVjQXPwQAko1T4c24WWRCabQk+wLWLJXZOr0owZpXI4QqtNenoMxEuri2er1clUQE6ltaDU7f6nNX7B6SGdKKOxcH9aEnGgXm/9HgVWA+Ci6aPj8NHIaJ5SvnnQQ= Content-Type: multipart/alternative; boundary="_000_LO2P123MB1727CE594804C63891AC2704D7C60LO2P123MB1727GBRP_" MIME-Version: 1.0 X-OriginatorOrg: ncsc.gov.uk X-MS-Exchange-CrossTenant-Network-Message-Id: 184589a5-6ea3-4dd6-5b12-08d71034d7fd X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Jul 2019 12:45:44.3134 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 14aa5744-ece1-474e-a2d7-34f46dda64a1 X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: kirsty62596@ncsc.gov.uk X-MS-Exchange-Transport-CrossTenantHeadersStamped: LO2P123MB2015 Archived-At: Subject: [Smart] Side Meeting This Morning X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 24 Jul 2019 12:45:49 -0000 --_000_LO2P123MB1727CE594804C63891AC2704D7C60LO2P123MB1727GBRP_ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Reminder: SMART side meeting at 09:00-10:30 this morning in the C2 room* on= the 21st floor at IETF 105. [*of course, we had to book this room!] Rough agenda: - History of SMART - The charter, which was rejected, and going forward - 5-10 minute discussion of each of the six drafts - Next steps for SMART Everyone is welcome; we looking forward to seeing you there! This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk. All material is UK Crown Copyright =A9 --_000_LO2P123MB1727CE594804C63891AC2704D7C60LO2P123MB1727GBRP_ Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Reminder: SMART side meeting at 09:00-10:30 this morning in the C2 ro= om* on the 21st floor at IETF 105.
[*of course, we had to book this room!]

Rough agenda:
- History of SMART
- The charter, which was rejected, and going forward
- 5-10 minute discussion of each of the six drafts
- Next steps for SMART

Everyone is welcome; we looking forward to seeing you there!

This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk. All material is UK Crown Copyright =A9 --_000_LO2P123MB1727CE594804C63891AC2704D7C60LO2P123MB1727GBRP_-- From nobody Wed Jul 24 07:32:15 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C79B8120254 for ; Wed, 24 Jul 2019 07:32:09 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.998 X-Spam-Level: X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QWvKkOZhvhwn for ; Wed, 24 Jul 2019 07:32:08 -0700 (PDT) Received: from mail-yb1-xb2e.google.com (mail-yb1-xb2e.google.com [IPv6:2607:f8b0:4864:20::b2e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21D0512037E for ; Wed, 24 Jul 2019 07:32:08 -0700 (PDT) Received: by mail-yb1-xb2e.google.com with SMTP id p85so4723134yba.2 for ; Wed, 24 Jul 2019 07:32:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=WQtJGPXHozc0ZbD72pjezSVBXulNqrv4soZ4Oe0pOQE=; b=YHLRsbtKD7VrBvikFqpa35LSZbgDslGL2Jvmk1oc20y7txvqR6NbQamNOr9g1rBrQA Qcr9dPZJQKnPyMNhMWwtbzQ+vgROMnNZm1Oa1+MkRvRY6/u0Qmp59fEppgBHkOz95QXe Km6qitnP236EgAMKUQcenGEnRDJlDkwg+U3Azbpcot0h+7uvzMev14lFBDjUwv9l20EM W+kgsDHrspsSwKWK/zRzpY+q2oZzY7WyUuJgU1UmlmjgfdvzZvjANpZtncSQ5yqTnA9I fYkFmCIi5yhfjRdAiZAKP5pxqixMXxJdNcYeFDJ6ZzxxvgpYYOWiSM8RRHG+OSTwzR3c J8pw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=WQtJGPXHozc0ZbD72pjezSVBXulNqrv4soZ4Oe0pOQE=; b=KM9bkLf1fuZBb/aaWDFviFHV2mgG+aletEx5h2/dZw+5kwIOZLlV4onXNJQ0ua7CeE 7zkeWTAF9Sb/l24UJZ5UYn7K8oFQS2QYj++HymoZAKK2jTC639gMTWyzslKCBw26lmEJ ird8ZqSuUcSniEDgWQVhCuuqM8WPCgY1tTFapdoCjrLAQ7nsXIi9Y+/t1K7BlKEpoNeE QJ5MTFdo5hsolXcqC5HDjPN76ZGTnEauM5KqsYHoD95ZHrS1wm97kVt/wQiOIDws8rHR KYArtV130ftxF0vLo5V724AqAROOZN4qZcyfRa2zm3xppgCE/JC37/noRxSq5abTio5c oXww== X-Gm-Message-State: APjAAAVtA7JqOAPdvD3rF+gaPFXY3BjtU68i+L5GNHLHDJxtAcTmDAda +DEf1rv4PFajjeHdF7PFeXDXv9yTTbxL85t9XK0= X-Google-Smtp-Source: APXvYqwtm/Rt7OLulmkTMyLhmUF8QnYorVMD1bSZOotjsGso1HqLswfI94hkd+QZZ01Cyws3uWnlvl9D3n/z7HHiUoI= X-Received: by 2002:a25:1ac2:: with SMTP id a185mr48773664yba.312.1563978727208; Wed, 24 Jul 2019 07:32:07 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: =?UTF-8?Q?T=C3=B6ma_Gavrichenkov?= Date: Wed, 24 Jul 2019 17:31:49 +0300 Message-ID: To: Kirsty P Cc: "smart@irtf.org" Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Archived-At: Subject: Re: [Smart] Side Meeting This Morning X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 24 Jul 2019 14:32:14 -0000 Peace, On Wed, Jul 24, 2019 at 3:45 PM Kirsty P wrote: > Reminder: SMART side meeting at 09:00-10:30 this morning in the C2 room* = on the 21st floor at IETF 105. Would you be publishing meeting notes? -- T=C3=B6ma From nobody Wed Jul 24 07:50:37 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E38B01201D3 for ; Wed, 24 Jul 2019 07:50:35 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.397 X-Spam-Level: X-Spam-Status: No, score=0.397 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_WORDY=1.571, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, TO_EQ_FM_DIRECT_MX=1.524, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dfhW1SiAx4b9 for ; Wed, 24 Jul 2019 07:50:33 -0700 (PDT) Received: from mail2.protonmail.ch (mail2.protonmail.ch [185.70.40.22]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 42C1E12011F for ; Wed, 24 Jul 2019 07:50:33 -0700 (PDT) Date: Wed, 24 Jul 2019 14:50:25 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1563979830; bh=dCZDlMrd/pClKfTeN99GfE73DVfJn11/DAwEeeAnkE8=; h=Date:To:From:Cc:Reply-To:Subject:In-Reply-To:References: Feedback-ID:From; b=bbUv1p8LCpE3frSe9MpjGkd/f7sqSJ1RypfJAXWPro0ngAZ9nM5cJkAYuNarTZWG6 S0XEdtLR2Mo9qJbj8P0geh8KAVlhzEvKgzzTh2SFlQaT4U1dUFPcCHyhfE+I67koqC Xsswekt5vDr2pjrWddsjbhBk5xQTO9d2VVOllsXs= To: "Arnaud.Taddei.IETF" From: "Arnaud.Taddei.IETF" Cc: "smart@irtf.org" Reply-To: "Arnaud.Taddei.IETF" Message-ID: <5pLVt2rL1KMdKDskvwbJlG2rMYgXeSp-yF61DaWDYb7kVvs7aaCWmFiT0R4UlC-rdIeYYfb-0lsQtsuAiHUzhUbHy7Sk5XS6G7PU00lA8Tk=@protonmail.com> In-Reply-To: References: Feedback-ID: kou6vaSHQeY5dgFN9dCIYKo4z6hnnNmKuV4IBJw2wx4vSVPtftyhWUTBigri6zMJ3K1hxYJjI-3RAIGaizMt5g==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_5e5e695c8586c1d5289b25f316308940" Archived-At: Subject: Re: [Smart] CLESS side meeting change X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 24 Jul 2019 14:50:36 -0000 This is a multi-part message in MIME format. --b1_5e5e695c8586c1d5289b25f316308940 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: base64 TXkgYXBvbG9neSwgSSBkaWRuJ3QgcmVhbGlzZSBOb3RyZSBEYW1lIHdhcyB0YWtlbiBzbyBJIGNo YW5nZWQgdG8gVmlnZXIKCkl0IGlzIGEgYmlnIHJvb20gYnV0IHdlIGNhbiBzaXQgaW4gZnJvbnQK ClNlZSB5b3UgYXQgMTU6MzAKClNlbnQgd2l0aCBbUHJvdG9uTWFpbF0oaHR0cHM6Ly9wcm90b25t YWlsLmNvbSkgU2VjdXJlIEVtYWlsLgoK4oCQ4oCQ4oCQ4oCQ4oCQ4oCQ4oCQIE9yaWdpbmFsIE1l c3NhZ2Ug4oCQ4oCQ4oCQ4oCQ4oCQ4oCQ4oCQCk9uIFR1ZXNkYXkgMjMgSnVseSAyMDE5IDA5OjE0 LCBBcm5hdWQuVGFkZGVpLklFVEYgPEFybmF1ZC5UYWRkZWkuSUVURj00MHByb3Rvbm1haWwuY29t QGRtYXJjLmlldGYub3JnPiB3cm90ZToKCj4gRGVhciBhbGwsIG15IG1pc3Rha2UgSSBqdXN0IHJl YWxpc2VkIHRoZSBDTEVTUyBzaWRlIG1lZXRpbmcgd291bGQgYmUgYXQgdGhlIHNhbWUgdGltZSBh cyB0aGUgVExTIHNlc3Npb24gb24gVGh1cnNkYXkgc28gSSBqdXN0IGNoYW5nZWQgaXQgdG8gdG9t b3Jyb3cgYmVmb3JlIHRoZSBwbGVuYXJ5LiBTbzoKPgo+IENMRVNTIHNpZGUgbWVldGluZyBXZWRu ZXNkYXkgMTU6MzAgLSAxNjozMCBpbiBOb3RyZSBEYW1lCj4KPiBJIGhvcGUgdGhpcyBpcyBhY2Nl cHRhYmxlCj4KPiBTZW50IHdpdGggW1Byb3Rvbk1haWxdKGh0dHBzOi8vcHJvdG9ubWFpbC5jb20p IFNlY3VyZSBFbWFpbC4= --b1_5e5e695c8586c1d5289b25f316308940 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: base64 PGRpdj5NeSBhcG9sb2d5LCBJIGRpZG4ndCByZWFsaXNlIE5vdHJlIERhbWUgd2FzIHRha2VuIHNv IEkgY2hhbmdlZCB0byBWaWdlcjxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2Pkl0IGlzIGEg YmlnIHJvb20gYnV0IHdlIGNhbiBzaXQgaW4gZnJvbnQ8YnI+PC9kaXY+PGRpdj48YnI+PC9kaXY+ PGRpdj5TZWUgeW91IGF0IDE1OjMwPC9kaXY+PGRpdj48YnI+PC9kaXY+PGRpdiBjbGFzcz0icHJv dG9ubWFpbF9zaWduYXR1cmVfYmxvY2siPjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2lnbmF0dXJl X2Jsb2NrLXVzZXIgcHJvdG9ubWFpbF9zaWduYXR1cmVfYmxvY2stZW1wdHkiPjxicj48L2Rpdj48 ZGl2IGNsYXNzPSJwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jay1wcm90b24iPlNlbnQgd2l0aCA8 YSBocmVmPSJodHRwczovL3Byb3Rvbm1haWwuY29tIiB0YXJnZXQ9Il9ibGFuayI+UHJvdG9uTWFp bDwvYT4gU2VjdXJlIEVtYWlsLjxicj48L2Rpdj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2PuKA kOKAkOKAkOKAkOKAkOKAkOKAkCBPcmlnaW5hbCBNZXNzYWdlIOKAkOKAkOKAkOKAkOKAkOKAkOKA kDxicj48L2Rpdj48ZGl2PiBPbiBUdWVzZGF5IDIzIEp1bHkgMjAxOSAwOToxNCwgQXJuYXVkLlRh ZGRlaS5JRVRGICZsdDtBcm5hdWQuVGFkZGVpLklFVEY9NDBwcm90b25tYWlsLmNvbUBkbWFyYy5p ZXRmLm9yZyZndDsgd3JvdGU6PGJyPjwvZGl2PjxkaXY+IDxicj48L2Rpdj48YmxvY2txdW90ZSBj bGFzcz0icHJvdG9ubWFpbF9xdW90ZSIgdHlwZT0iY2l0ZSI+PGRpdj5EZWFyIGFsbCwgbXkgbWlz dGFrZSBJIGp1c3QgcmVhbGlzZWQgdGhlIENMRVNTIHNpZGUgbWVldGluZyB3b3VsZCBiZSBhdCB0 aGUgc2FtZSB0aW1lIGFzIHRoZSBUTFMgc2Vzc2lvbiBvbiBUaHVyc2RheSBzbyBJIGp1c3QgY2hh bmdlZCBpdCB0byB0b21vcnJvdyBiZWZvcmUgdGhlIHBsZW5hcnkuIFNvOjxicj48L2Rpdj48ZGl2 Pjxicj48L2Rpdj48ZGl2PkNMRVNTIHNpZGUgbWVldGluZyBXZWRuZXNkYXkgMTU6MzAgLSAxNjoz MCBpbiBOb3RyZSBEYW1lJm5ic3A7PGJyPjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+SSBob3Bl IHRoaXMgaXMgYWNjZXB0YWJsZTxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2IGNsYXNzPSJw cm90b25tYWlsX3NpZ25hdHVyZV9ibG9jayI+PGRpdiBjbGFzcz0icHJvdG9ubWFpbF9zaWduYXR1 cmVfYmxvY2stdXNlciBwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jay1lbXB0eSI+PGJyPjwvZGl2 PjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2lnbmF0dXJlX2Jsb2NrLXByb3RvbiI+U2VudCB3aXRo IDxhIGhyZWY9Imh0dHBzOi8vcHJvdG9ubWFpbC5jb20iIHRhcmdldD0iX2JsYW5rIj5Qcm90b25N YWlsPC9hPiBTZWN1cmUgRW1haWwuPGJyPjwvZGl2PjwvZGl2PjxkaXY+PGJyPjwvZGl2PjwvYmxv Y2txdW90ZT48ZGl2Pjxicj48L2Rpdj4= --b1_5e5e695c8586c1d5289b25f316308940-- From nobody Wed Jul 24 12:03:03 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CA321203B5 for ; Wed, 24 Jul 2019 12:03:01 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.199 X-Spam-Level: X-Spam-Status: No, score=-4.199 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tG8Y-TtY9XJL for ; Wed, 24 Jul 2019 12:02:59 -0700 (PDT) Received: from huawei.com (szxga03-in.huawei.com [45.249.212.189]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B9545120293 for ; Wed, 24 Jul 2019 12:02:58 -0700 (PDT) Received: from nkgeml411-hub.china.huawei.com (unknown [172.30.72.54]) by Forcepoint Email with ESMTP id 5B6D3F62D5E4D0CB89E3; Thu, 25 Jul 2019 03:02:55 +0800 (CST) Received: from NKGEML513-MBS.china.huawei.com ([169.254.2.207]) by nkgeml411-hub.china.huawei.com ([10.98.56.70]) with mapi id 14.03.0439.000; Thu, 25 Jul 2019 03:02:50 +0800 From: "Panwei (William)" To: Kirsty P , "smart@irtf.org" Thread-Topic: Side Meeting This Morning Thread-Index: AQHVQh2ogEjYRIUA9ku/wPkjJN5+mKbaHyBg Date: Wed, 24 Jul 2019 19:02:50 +0000 Message-ID: <30E95A901DB42F44BA42D69DB20DFA6A6DDF476B@nkgeml513-mbs.china.huawei.com> References: In-Reply-To: Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.124.93.107] Content-Type: multipart/alternative; boundary="_000_30E95A901DB42F44BA42D69DB20DFA6A6DDF476Bnkgeml513mbschi_" MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [Smart] Side Meeting This Morning X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 24 Jul 2019 19:03:02 -0000 --_000_30E95A901DB42F44BA42D69DB20DFA6A6DDF476Bnkgeml513mbschi_ Content-Type: text/plain; charset="gb2312" Content-Transfer-Encoding: base64 SGksDQoNCkEgU21hbGwgcXVlc3Rpb246IENhbiBJIGZpbmQgdGhlIHNsaWRlcyBzb21ld2hlcmU/ DQoNCg0KUmVnYXJkcyAmIFRoYW5rcyENCsXLzrAgV2VpIFBhbg0KSHVhd2VpIFRlY2hub2xvZ2ll cyBDby4sIEx0ZC4NCg0KRnJvbTogU21hcnQgW21haWx0bzpzbWFydC1ib3VuY2VzQGlydGYub3Jn XSBPbiBCZWhhbGYgT2YgS2lyc3R5IFANClNlbnQ6IFdlZG5lc2RheSwgSnVseSAyNCwgMjAxOSA4 OjQ2IEFNDQpUbzogc21hcnRAaXJ0Zi5vcmcNClN1YmplY3Q6IFtTbWFydF0gU2lkZSBNZWV0aW5n IFRoaXMgTW9ybmluZw0KDQpSZW1pbmRlcjogU01BUlQgc2lkZSBtZWV0aW5nIGF0IDA5OjAwLTEw OjMwIHRoaXMgbW9ybmluZyBpbiB0aGUgQzIgcm9vbSogb24gdGhlIDIxc3QgZmxvb3IgYXQgSUVU RiAxMDUuDQpbKm9mIGNvdXJzZSwgd2UgaGFkIHRvIGJvb2sgdGhpcyByb29tIV0NCg0KUm91Z2gg YWdlbmRhOg0KLSBIaXN0b3J5IG9mIFNNQVJUDQotIFRoZSBjaGFydGVyLCB3aGljaCB3YXMgcmVq ZWN0ZWQsIGFuZCBnb2luZyBmb3J3YXJkDQotIDUtMTAgbWludXRlIGRpc2N1c3Npb24gb2YgZWFj aCBvZiB0aGUgc2l4IGRyYWZ0cw0KLSBOZXh0IHN0ZXBzIGZvciBTTUFSVA0KDQpFdmVyeW9uZSBp cyB3ZWxjb21lOyB3ZSBsb29raW5nIGZvcndhcmQgdG8gc2VlaW5nIHlvdSB0aGVyZSENCg0KVGhp cyBpbmZvcm1hdGlvbiBpcyBleGVtcHQgdW5kZXIgdGhlIEZyZWVkb20gb2YgSW5mb3JtYXRpb24g QWN0IDIwMDAgKEZPSUEpIGFuZCBtYXkgYmUgZXhlbXB0IHVuZGVyIG90aGVyIFVLIGluZm9ybWF0 aW9uIGxlZ2lzbGF0aW9uLiBSZWZlciBhbnkgRk9JQSBxdWVyaWVzIHRvIG5jc2NpbmZvbGVnQG5j c2MuZ292LnVrPG1haWx0bzpuY3NjaW5mb2xlZ0BuY3NjLmdvdi51az4uIEFsbCBtYXRlcmlhbCBp cyBVSyBDcm93biBDb3B5cmlnaHQgKGMpDQo= --_000_30E95A901DB42F44BA42D69DB20DFA6A6DDF476Bnkgeml513mbschi_ Content-Type: text/html; charset="gb2312" Content-Transfer-Encoding: quoted-printable

Hi,

 <= /p>

A Small question: Can I f= ind the slides somewhere?

 <= /p>

 

Regards & Thanks!

=C5=CB=CE=B0= Wei Pan

Huawei Technologies Co., Ltd.

 <= /p>

From: = Smart [mailto:smart-bounces@irtf.org] On Behalf Of Kirsty P
Sent: Wednesday, July 24, 2019 8:46 AM
To: smart@irtf.org
Subject: [Smart] Side Meeting This Morning

 

Reminder: SMART side meeting at 09:00-10:= 30 this morning in the C2 room* on the 21st floor at IETF 105.

[*of course, we had to book this room!]

 

Rough agenda:

- History of SMART

- The charter, which was rejected, and go= ing forward

- 5-10 minute discussion of each of the s= ix drafts

- Next steps for SMART<= /p>

 

Everyone is welcome; we looking forward t= o seeing you there!

 

This information is exempt unde= r the Freedom of Information Act 2000 (FOIA) and may be exempt under other = UK information legislation. Refer any FOIA queries to ncscinfoleg@ncsc.gov.uk. All= material is UK Crown Copyright ©

--_000_30E95A901DB42F44BA42D69DB20DFA6A6DDF476Bnkgeml513mbschi_-- From nobody Wed Jul 24 12:22:21 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0F9D9120429 for ; Wed, 24 Jul 2019 12:22:19 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.397 X-Spam-Level: X-Spam-Status: No, score=0.397 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_WORDY=1.571, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, TO_EQ_FM_DIRECT_MX=1.524, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id j8RuX2k2tuZa for ; Wed, 24 Jul 2019 12:22:16 -0700 (PDT) Received: from mail-40132.protonmail.ch (mail-40132.protonmail.ch [185.70.40.132]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8663E120409 for ; Wed, 24 Jul 2019 12:22:16 -0700 (PDT) Date: Wed, 24 Jul 2019 19:22:13 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1563996134; bh=QWMxa45vwroLo5d/uuQybbZoYFFjcrTasmzTE4bQBkc=; h=Date:To:From:Cc:Reply-To:Subject:In-Reply-To:References: Feedback-ID:From; b=FlvSt77G2hxS98b3is7g5C2oQp9tdMc9u3ikIV1rpBDjr0Y0/2sODqTe0SUmeWkr8 FuOw+Ot2XN7i+x/zwXR7gFkCvcKpvwxcFWHOMNVR5B+fuuAcjF+diyPE3GhicS/j5A T0ZtGU/PklKU1ZS2WvhP9c/wFoT8aY752d1uR3wk= To: "Arnaud.Taddei.IETF" From: "Arnaud.Taddei.IETF" Cc: "smart@irtf.org" Reply-To: "Arnaud.Taddei.IETF" Message-ID: In-Reply-To: <5pLVt2rL1KMdKDskvwbJlG2rMYgXeSp-yF61DaWDYb7kVvs7aaCWmFiT0R4UlC-rdIeYYfb-0lsQtsuAiHUzhUbHy7Sk5XS6G7PU00lA8Tk=@protonmail.com> References: <5pLVt2rL1KMdKDskvwbJlG2rMYgXeSp-yF61DaWDYb7kVvs7aaCWmFiT0R4UlC-rdIeYYfb-0lsQtsuAiHUzhUbHy7Sk5XS6G7PU00lA8Tk=@protonmail.com> Feedback-ID: kou6vaSHQeY5dgFN9dCIYKo4z6hnnNmKuV4IBJw2wx4vSVPtftyhWUTBigri6zMJ3K1hxYJjI-3RAIGaizMt5g==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_8c30aa1c635089dd8e333366b980f723" Archived-At: Subject: Re: [Smart] CLESS side meeting change X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 24 Jul 2019 19:22:19 -0000 This is a multi-part message in MIME format. --b1_8c30aa1c635089dd8e333366b980f723 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: base64 SSBhbSBzaW5jZXJlbHkgc29ycnkgZm9yIHRoZSBiaWcgY29uZnVzaW9uIGJ1dCBieSBjaGFuY2Ug b2YgY2hlY2tpbmcgd2l0aCBJRVRGIHN0YWZmLCBub3Qga25vd2luZyBidXQgVmlnZXIgaXMgbm90 IGF2YWlsYWJsZSBlaXRoZXIgYXMgdGhleSBhcmUgcHJlcGFyaW5nIGl0IGZvciBwbGVuYXJ5IQoK U28gYXMgd2UgcmFuIG91dCBvZiByb29tcyBJIG5lZWQgdG8gbW92ZSBDTEVTUyBzZXNzaW9uIGFn YWluIHRvCgpUaHVyc2RheSAyNXRoIGF0IDRwbSBpbiBDT0xMRVIKCkFnYWluIG15IHNpbmNlcmUg YXBvbG9neSwgdGhpcyB3YXMgdGhlIGZpcnN0IHRpbWUgSSBoYWQgdG8gc2V0dXAgYSBzaWRlIG1l ZXRpbmcgYW5kIGEgZ29vZCBsZXNzb24gZm9yIHRoZSBmdXR1cmUKClNlbnQgd2l0aCBbUHJvdG9u TWFpbF0oaHR0cHM6Ly9wcm90b25tYWlsLmNvbSkgU2VjdXJlIEVtYWlsLgoK4oCQ4oCQ4oCQ4oCQ 4oCQ4oCQ4oCQIE9yaWdpbmFsIE1lc3NhZ2Ug4oCQ4oCQ4oCQ4oCQ4oCQ4oCQ4oCQCk9uIFdlZG5l c2RheSAyNCBKdWx5IDIwMTkgMTA6NTAsIEFybmF1ZC5UYWRkZWkuSUVURiA8QXJuYXVkLlRhZGRl aS5JRVRGPTQwcHJvdG9ubWFpbC5jb21AZG1hcmMuaWV0Zi5vcmc+IHdyb3RlOgoKPiBNeSBhcG9s b2d5LCBJIGRpZG4ndCByZWFsaXNlIE5vdHJlIERhbWUgd2FzIHRha2VuIHNvIEkgY2hhbmdlZCB0 byBWaWdlcgo+Cj4gSXQgaXMgYSBiaWcgcm9vbSBidXQgd2UgY2FuIHNpdCBpbiBmcm9udAo+Cj4g U2VlIHlvdSBhdCAxNTozMAo+Cj4gU2VudCB3aXRoIFtQcm90b25NYWlsXShodHRwczovL3Byb3Rv bm1haWwuY29tKSBTZWN1cmUgRW1haWwuCj4KPiDigJDigJDigJDigJDigJDigJDigJAgT3JpZ2lu YWwgTWVzc2FnZSDigJDigJDigJDigJDigJDigJDigJAKPiBPbiBUdWVzZGF5IDIzIEp1bHkgMjAx OSAwOToxNCwgQXJuYXVkLlRhZGRlaS5JRVRGIDxBcm5hdWQuVGFkZGVpLklFVEY9NDBwcm90b25t YWlsLmNvbUBkbWFyYy5pZXRmLm9yZz4gd3JvdGU6Cj4KPj4gRGVhciBhbGwsIG15IG1pc3Rha2Ug SSBqdXN0IHJlYWxpc2VkIHRoZSBDTEVTUyBzaWRlIG1lZXRpbmcgd291bGQgYmUgYXQgdGhlIHNh bWUgdGltZSBhcyB0aGUgVExTIHNlc3Npb24gb24gVGh1cnNkYXkgc28gSSBqdXN0IGNoYW5nZWQg aXQgdG8gdG9tb3Jyb3cgYmVmb3JlIHRoZSBwbGVuYXJ5LiBTbzoKPj4KPj4gQ0xFU1Mgc2lkZSBt ZWV0aW5nIFdlZG5lc2RheSAxNTozMCAtIDE2OjMwIGluIE5vdHJlIERhbWUKPj4KPj4gSSBob3Bl IHRoaXMgaXMgYWNjZXB0YWJsZQo+Pgo+PiBTZW50IHdpdGggW1Byb3Rvbk1haWxdKGh0dHBzOi8v cHJvdG9ubWFpbC5jb20pIFNlY3VyZSBFbWFpbC4= --b1_8c30aa1c635089dd8e333366b980f723 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: base64 PGRpdj5JIGFtIHNpbmNlcmVseSBzb3JyeSBmb3IgdGhlIGJpZyBjb25mdXNpb24gYnV0IGJ5IGNo YW5jZSBvZiBjaGVja2luZyB3aXRoIElFVEYgc3RhZmYsIG5vdCBrbm93aW5nIGJ1dCBWaWdlciBp cyBub3QgYXZhaWxhYmxlIGVpdGhlciBhcyB0aGV5IGFyZSBwcmVwYXJpbmcgaXQgZm9yIHBsZW5h cnkhPGJyPjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+U28gYXMgd2UgcmFuIG91dCBvZiByb29t cyBJIG5lZWQgdG8gbW92ZSBDTEVTUyBzZXNzaW9uIGFnYWluIHRvJm5ic3A7PGJyPjwvZGl2Pjxk aXY+PGJyPjwvZGl2PjxkaXY+VGh1cnNkYXkgMjV0aCBhdCA0cG0gaW4gQ09MTEVSPGJyPjwvZGl2 PjxkaXY+PGJyPjwvZGl2PjxkaXY+QWdhaW4gbXkgc2luY2VyZSBhcG9sb2d5LCB0aGlzIHdhcyB0 aGUgZmlyc3QgdGltZSBJIGhhZCB0byBzZXR1cCBhIHNpZGUgbWVldGluZyBhbmQgYSBnb29kIGxl c3NvbiBmb3IgdGhlIGZ1dHVyZTxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2Pjxicj48L2Rp dj48ZGl2Pjxicj48L2Rpdj48ZGl2IGNsYXNzPSJwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jayI+ PGRpdiBjbGFzcz0icHJvdG9ubWFpbF9zaWduYXR1cmVfYmxvY2stdXNlciBwcm90b25tYWlsX3Np Z25hdHVyZV9ibG9jay1lbXB0eSI+PGJyPjwvZGl2PjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2ln bmF0dXJlX2Jsb2NrLXByb3RvbiI+U2VudCB3aXRoIDxhIGhyZWY9Imh0dHBzOi8vcHJvdG9ubWFp bC5jb20iIHRhcmdldD0iX2JsYW5rIj5Qcm90b25NYWlsPC9hPiBTZWN1cmUgRW1haWwuPGJyPjwv ZGl2PjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+4oCQ4oCQ4oCQ4oCQ4oCQ4oCQ4oCQIE9yaWdp bmFsIE1lc3NhZ2Ug4oCQ4oCQ4oCQ4oCQ4oCQ4oCQ4oCQPGJyPjwvZGl2PjxkaXY+IE9uIFdlZG5l c2RheSAyNCBKdWx5IDIwMTkgMTA6NTAsIEFybmF1ZC5UYWRkZWkuSUVURiAmbHQ7QXJuYXVkLlRh ZGRlaS5JRVRGPTQwcHJvdG9ubWFpbC5jb21AZG1hcmMuaWV0Zi5vcmcmZ3Q7IHdyb3RlOjxicj48 L2Rpdj48ZGl2PiA8YnI+PC9kaXY+PGJsb2NrcXVvdGUgY2xhc3M9InByb3Rvbm1haWxfcXVvdGUi IHR5cGU9ImNpdGUiPjxkaXY+TXkgYXBvbG9neSwgSSBkaWRuJ3QgcmVhbGlzZSBOb3RyZSBEYW1l IHdhcyB0YWtlbiBzbyBJIGNoYW5nZWQgdG8gVmlnZXI8YnI+PC9kaXY+PGRpdj48YnI+PC9kaXY+ PGRpdj5JdCBpcyBhIGJpZyByb29tIGJ1dCB3ZSBjYW4gc2l0IGluIGZyb250PGJyPjwvZGl2Pjxk aXY+PGJyPjwvZGl2PjxkaXY+U2VlIHlvdSBhdCAxNTozMDxicj48L2Rpdj48ZGl2Pjxicj48L2Rp dj48ZGl2IGNsYXNzPSJwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jayI+PGRpdiBjbGFzcz0icHJv dG9ubWFpbF9zaWduYXR1cmVfYmxvY2stdXNlciBwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jay1l bXB0eSI+PGJyPjwvZGl2PjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2lnbmF0dXJlX2Jsb2NrLXBy b3RvbiI+U2VudCB3aXRoIDxhIGhyZWY9Imh0dHBzOi8vcHJvdG9ubWFpbC5jb20iIHRhcmdldD0i X2JsYW5rIj5Qcm90b25NYWlsPC9hPiBTZWN1cmUgRW1haWwuPGJyPjwvZGl2PjwvZGl2PjxkaXY+ PGJyPjwvZGl2PjxkaXY+4oCQ4oCQ4oCQ4oCQ4oCQ4oCQ4oCQIE9yaWdpbmFsIE1lc3NhZ2Ug4oCQ 4oCQ4oCQ4oCQ4oCQ4oCQ4oCQPGJyPjwvZGl2PjxkaXY+T24gVHVlc2RheSAyMyBKdWx5IDIwMTkg MDk6MTQsIEFybmF1ZC5UYWRkZWkuSUVURiAmbHQ7QXJuYXVkLlRhZGRlaS5JRVRGPTQwcHJvdG9u bWFpbC5jb21AZG1hcmMuaWV0Zi5vcmcmZ3Q7IHdyb3RlOjxicj48L2Rpdj48ZGl2Pjxicj48L2Rp dj48YmxvY2txdW90ZSBjbGFzcz0icHJvdG9ubWFpbF9xdW90ZSIgdHlwZT0iY2l0ZSI+PGRpdj5E ZWFyIGFsbCwgbXkgbWlzdGFrZSBJIGp1c3QgcmVhbGlzZWQgdGhlIENMRVNTIHNpZGUgbWVldGlu ZyB3b3VsZCBiZSBhdCB0aGUgc2FtZSB0aW1lIGFzIHRoZSBUTFMgc2Vzc2lvbiBvbiBUaHVyc2Rh eSBzbyBJIGp1c3QgY2hhbmdlZCBpdCB0byB0b21vcnJvdyBiZWZvcmUgdGhlIHBsZW5hcnkuIFNv Ojxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2PkNMRVNTIHNpZGUgbWVldGluZyBXZWRuZXNk YXkgMTU6MzAgLSAxNjozMCBpbiBOb3RyZSBEYW1lJm5ic3A7PGJyPjwvZGl2PjxkaXY+PGJyPjwv ZGl2PjxkaXY+SSBob3BlIHRoaXMgaXMgYWNjZXB0YWJsZTxicj48L2Rpdj48ZGl2Pjxicj48L2Rp dj48ZGl2IGNsYXNzPSJwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jayI+PGRpdiBjbGFzcz0icHJv dG9ubWFpbF9zaWduYXR1cmVfYmxvY2stdXNlciBwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jay1l bXB0eSI+PGJyPjwvZGl2PjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2lnbmF0dXJlX2Jsb2NrLXBy b3RvbiI+U2VudCB3aXRoIDxhIGhyZWY9Imh0dHBzOi8vcHJvdG9ubWFpbC5jb20iIHRhcmdldD0i X2JsYW5rIj5Qcm90b25NYWlsPC9hPiBTZWN1cmUgRW1haWwuPGJyPjwvZGl2PjwvZGl2PjxkaXY+ PGJyPjwvZGl2PjwvYmxvY2txdW90ZT48ZGl2Pjxicj48L2Rpdj48L2Jsb2NrcXVvdGU+PGRpdj48 YnI+PC9kaXY+ --b1_8c30aa1c635089dd8e333366b980f723-- From nobody Thu Jul 25 08:40:58 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C696A120235 for ; Thu, 25 Jul 2019 08:40:56 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2 X-Spam-Level: X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ncsc.gov.uk Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ijDtP_TJhI5y for ; Thu, 25 Jul 2019 08:40:52 -0700 (PDT) Received: from GBR01-CWL-obe.outbound.protection.outlook.com (mail-eopbgr110132.outbound.protection.outlook.com [40.107.11.132]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E8757120240 for ; Thu, 25 Jul 2019 08:40:51 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=mKEYyLkjTXYOKc5SP6S9YnPJDtUgaJ6mYOFp2mS1AEAuBbgS72udDftyMedOY+IkNrP+ZcTBLp3b4J3RIsm15OsqvSRHXmviOkmG7zo2sEg+LUfmauBqNCYKRZCDfNNrz7RebaT67zuQqrVEGxqJMr50lXs3r1AT3lOQe6oPfkkxs3giQLZ87QZB9vG7Ebc8Fnpc491sKWycFvg3z4p+SFXJwCRzP9dcFhPvOTgFJ5G88liN9G/Vgp8OgBiD7SfIFHYA1RuE+FFVorh/7Y4zA+Mva0NrPIr/jpbdEEcpShWj8CM0Czvv+eWIiZKfOsPJzaLpQdRHyzvWyrEH4QNl9g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=zaBt0MZ4M2T5dRU7+THZBF8eApjj/3TqagpmCVRd0jc=; b=L1UOaNj9XDr/XHpHr7ZWIJkkghPLJHGAIm2uM6awzlqmF9tgqQaSHYM5n36gmKD2/RfdyPXOfUikwW08aowMz55D3GkKQUyOMXTgxDSj0blc4bGazhbmPkGHVSykKEYftsONL/koVw7a7hDfglOuC0+V2F3B3+FOQShu76ix6RBuXW5ye7ve9TejJVIAJugzb2GHFwdpX+MjULXeMrliPOwsYRAHMe5CNCNvFpi1SmTr19ehOAd5n/JVu2yEcpqE6i/JviixpCU2/y8if5bMajrhPcWvKHk1Pvb02/sYG4XBo3/7eTN6OzPYTAOYqsUcEEV3VCu/WhaAJLE1+P3TzA== ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=ncsc.gov.uk;dmarc=pass action=none header.from=ncsc.gov.uk;dkim=pass header.d=ncsc.gov.uk;arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ncsc.gov.uk; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=zaBt0MZ4M2T5dRU7+THZBF8eApjj/3TqagpmCVRd0jc=; b=AEp2yR9J8lNHZuCpCzDMDGDfrB55GUddh5XWCr800U3cLWyXsJ3kkRMZKZ+GWAXcOp1KfEmwPdeysGg309mK/IuVXeOGB1NkRWAGkxIPD/xTTlTXVGN2bI0BWqw3yo9+fQ70pQQXdznNizzbqK8cZHtL+wwFRsVfW2OOLXYAmkI= Received: from LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM (20.176.156.14) by LO2P123MB2621.GBRP123.PROD.OUTLOOK.COM (20.176.155.17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2094.16; Thu, 25 Jul 2019 15:40:49 +0000 Received: from LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM ([fe80::6c2f:602c:52c8:92fe]) by LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM ([fe80::6c2f:602c:52c8:92fe%4]) with mapi id 15.20.2094.017; Thu, 25 Jul 2019 15:40:49 +0000 From: Kirsty P To: "Panwei (William)" , "smart@irtf.org" Thread-Topic: Side Meeting This Morning Thread-Index: AQHVQh2ogEjYRIUA9ku/wPkjJN5+mKbaHyBggAFTKRs= Date: Thu, 25 Jul 2019 15:40:49 +0000 Message-ID: References: , <30E95A901DB42F44BA42D69DB20DFA6A6DDF476B@nkgeml513-mbs.china.huawei.com> In-Reply-To: <30E95A901DB42F44BA42D69DB20DFA6A6DDF476B@nkgeml513-mbs.china.huawei.com> Accept-Language: en-GB, en-US Content-Language: en-GB X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=Kirsty.p@ncsc.gov.uk; x-originating-ip: [51.141.26.231] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: af15ba95-8109-4ec5-07d9-08d711167815 x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(7168020)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:LO2P123MB2621; x-ms-traffictypediagnostic: LO2P123MB2621: x-ms-exchange-purlcount: 1 x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:7219; x-forefront-prvs: 0109D382B0 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(376002)(346002)(39850400004)(396003)(366004)(136003)(189003)(199004)(497574002)(6506007)(86362001)(68736007)(110136005)(966005)(53546011)(54896002)(3846002)(6116002)(446003)(66556008)(11346002)(55236004)(105004)(186003)(99286004)(2906002)(476003)(33656002)(25786009)(26005)(9686003)(66446008)(55016002)(7696005)(236005)(53936002)(6436002)(64756008)(76116006)(76176011)(6306002)(66946007)(19627405001)(2501003)(81166006)(8936002)(606006)(102836004)(81156014)(3480700005)(14454004)(52536014)(74316002)(486006)(66476007)(14444005)(66066001)(478600001)(71200400001)(316002)(5024004)(5660300002)(71190400001)(8676002)(229853002)(256004)(6246003)(7736002); DIR:OUT; SFP:1102; SCL:1; SRVR:LO2P123MB2621; H:LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; received-spf: None (protection.outlook.com: ncsc.gov.uk does not designate permitted sender hosts) x-ms-exchange-senderadcheck: 1 x-microsoft-antispam-message-info: AZRM531ifYN/Eju1mDCxTcmyplKvqqJOY/HVevxSfRj1wk+8ych8N0532KVKEvJ7JjNbOzZly/WLCacM2W5n95+TLnUKExM3A9a/TzUPDNHhbfUNKkubJ22wznA9preZMJs6PHW7Go79YfuTNaGoW+iKU96V1xwGnKVKGsGr8kpCj+d410H1cQMuN/PZCZgA45Typpbgf/bSG+j3kGEyvs4R7t8qCEvbZglDf4Gmzx/K6GJGXkWKbDoNbj07JEDUJCPsVfZ3MZPRbHNsVp8aY7yioYd/5qv/j0ezTvWdwCLL7e8am56XXb1A2cCh5zPets2Go0zpusEBx9GBX5YeuQWEAFgLrGr+LGdItd4VaZCtjEWCtANHrQrmi1x/2+Jj9VeicDFFyq3t4qky0XFG9hc+quXlMWRKcCTA6M2IF18= Content-Type: multipart/alternative; boundary="_000_LO2P123MB1727FDA2F79D2F873ACE6FF3D7C10LO2P123MB1727GBRP_" MIME-Version: 1.0 X-OriginatorOrg: ncsc.gov.uk X-MS-Exchange-CrossTenant-Network-Message-Id: af15ba95-8109-4ec5-07d9-08d711167815 X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jul 2019 15:40:49.6352 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 14aa5744-ece1-474e-a2d7-34f46dda64a1 X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: kirsty62596@ncsc.gov.uk X-MS-Exchange-Transport-CrossTenantHeadersStamped: LO2P123MB2621 Archived-At: Subject: Re: [Smart] Side Meeting This Morning X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 Jul 2019 15:40:57 -0000 --_000_LO2P123MB1727FDA2F79D2F873ACE6FF3D7C10LO2P123MB1727GBRP_ Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 SGksDQoNClRoYW5rcyBmb3IgeW91ciBxdWVzdGlvbiEgWW91IGNhbiBmaW5kIHRoZSBzbGlkZXMg YXJlIG9uIHRoZSBJRVRGIDEwNSBzaWRlIG1lZXRpbmdzIHdpa2k6IGh0dHBzOi8vdHJhYy5pZXRm Lm9yZy90cmFjL2lldGYvbWVldGluZy9hdHRhY2htZW50L3dpa2kvMTA1c2lkZS1zbGlkZXMvDQoN CktpcnN0eQ0KX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18NCkZyb206IFBhbndlaSAo V2lsbGlhbSkgPHdpbGxpYW0ucGFud2VpQGh1YXdlaS5jb20+DQpTZW50OiAyNCBKdWx5IDIwMTkg MjA6MDINClRvOiBLaXJzdHkgUCA8S2lyc3R5LnBAbmNzYy5nb3YudWs+OyBzbWFydEBpcnRmLm9y ZyA8c21hcnRAaXJ0Zi5vcmc+DQpTdWJqZWN0OiBSRTogU2lkZSBNZWV0aW5nIFRoaXMgTW9ybmlu Zw0KDQoNCkhpLA0KDQoNCg0KQSBTbWFsbCBxdWVzdGlvbjogQ2FuIEkgZmluZCB0aGUgc2xpZGVz IHNvbWV3aGVyZT8NCg0KDQoNCg0KDQpSZWdhcmRzICYgVGhhbmtzIQ0KDQrmvZjkvJ8gV2VpIFBh bg0KDQpIdWF3ZWkgVGVjaG5vbG9naWVzIENvLiwgTHRkLg0KDQoNCg0KRnJvbTogU21hcnQgW21h aWx0bzpzbWFydC1ib3VuY2VzQGlydGYub3JnXSBPbiBCZWhhbGYgT2YgS2lyc3R5IFANClNlbnQ6 IFdlZG5lc2RheSwgSnVseSAyNCwgMjAxOSA4OjQ2IEFNDQpUbzogc21hcnRAaXJ0Zi5vcmcNClN1 YmplY3Q6IFtTbWFydF0gU2lkZSBNZWV0aW5nIFRoaXMgTW9ybmluZw0KDQoNCg0KUmVtaW5kZXI6 IFNNQVJUIHNpZGUgbWVldGluZyBhdCAwOTowMC0xMDozMCB0aGlzIG1vcm5pbmcgaW4gdGhlIEMy IHJvb20qIG9uIHRoZSAyMXN0IGZsb29yIGF0IElFVEYgMTA1Lg0KDQpbKm9mIGNvdXJzZSwgd2Ug aGFkIHRvIGJvb2sgdGhpcyByb29tIV0NCg0KDQoNClJvdWdoIGFnZW5kYToNCg0KLSBIaXN0b3J5 IG9mIFNNQVJUDQoNCi0gVGhlIGNoYXJ0ZXIsIHdoaWNoIHdhcyByZWplY3RlZCwgYW5kIGdvaW5n IGZvcndhcmQNCg0KLSA1LTEwIG1pbnV0ZSBkaXNjdXNzaW9uIG9mIGVhY2ggb2YgdGhlIHNpeCBk cmFmdHMNCg0KLSBOZXh0IHN0ZXBzIGZvciBTTUFSVA0KDQoNCg0KRXZlcnlvbmUgaXMgd2VsY29t ZTsgd2UgbG9va2luZyBmb3J3YXJkIHRvIHNlZWluZyB5b3UgdGhlcmUhDQoNCg0KDQpUaGlzIGlu Zm9ybWF0aW9uIGlzIGV4ZW1wdCB1bmRlciB0aGUgRnJlZWRvbSBvZiBJbmZvcm1hdGlvbiBBY3Qg MjAwMCAoRk9JQSkgYW5kIG1heSBiZSBleGVtcHQgdW5kZXIgb3RoZXIgVUsgaW5mb3JtYXRpb24g bGVnaXNsYXRpb24uIFJlZmVyIGFueSBGT0lBIHF1ZXJpZXMgdG8gbmNzY2luZm9sZWdAbmNzYy5n b3YudWs8bWFpbHRvOm5jc2NpbmZvbGVnQG5jc2MuZ292LnVrPi4gQWxsIG1hdGVyaWFsIGlzIFVL IENyb3duIENvcHlyaWdodCDCqQ0K --_000_LO2P123MB1727FDA2F79D2F873ACE6FF3D7C10LO2P123MB1727GBRP_ Content-Type: text/html; charset="utf-8" Content-Transfer-Encoding: base64 PGh0bWw+DQo8aGVhZD4NCjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSIgY29udGVudD0i dGV4dC9odG1sOyBjaGFyc2V0PXV0Zi04Ij4NCjxzdHlsZSB0eXBlPSJ0ZXh0L2NzcyIgc3R5bGU9 ImRpc3BsYXk6bm9uZTsiPiBQIHttYXJnaW4tdG9wOjA7bWFyZ2luLWJvdHRvbTowO30gPC9zdHls ZT4NCjwvaGVhZD4NCjxib2R5IGRpcj0ibHRyIj4NCjxkaXYgc3R5bGU9ImZvbnQtZmFtaWx5OkNh bGlicmksQXJpYWwsSGVsdmV0aWNhLHNhbnMtc2VyaWY7IGZvbnQtc2l6ZToxMnB0OyBjb2xvcjpy Z2IoMCwwLDApIj4NCkhpLDwvZGl2Pg0KPGRpdiBzdHlsZT0iZm9udC1mYW1pbHk6Q2FsaWJyaSxB cmlhbCxIZWx2ZXRpY2Esc2Fucy1zZXJpZjsgZm9udC1zaXplOjEycHQ7IGNvbG9yOnJnYigwLDAs MCkiPg0KPGJyPg0KPC9kaXY+DQo8ZGl2IHN0eWxlPSJmb250LWZhbWlseTpDYWxpYnJpLEFyaWFs LEhlbHZldGljYSxzYW5zLXNlcmlmOyBmb250LXNpemU6MTJwdDsgY29sb3I6cmdiKDAsMCwwKSI+ DQpUaGFua3MgZm9yIHlvdXIgcXVlc3Rpb24hIFlvdSBjYW4gZmluZCB0aGUgc2xpZGVzIGFyZSBv biB0aGUgSUVURiAxMDUgc2lkZSBtZWV0aW5ncyB3aWtpOiZuYnNwOzxhIGhyZWY9Imh0dHBzOi8v dHJhYy5pZXRmLm9yZy90cmFjL2lldGYvbWVldGluZy9hdHRhY2htZW50L3dpa2kvMTA1c2lkZS1z bGlkZXMvIj5odHRwczovL3RyYWMuaWV0Zi5vcmcvdHJhYy9pZXRmL21lZXRpbmcvYXR0YWNobWVu dC93aWtpLzEwNXNpZGUtc2xpZGVzLzwvYT48L2Rpdj4NCjxkaXYgc3R5bGU9ImZvbnQtZmFtaWx5 OkNhbGlicmksQXJpYWwsSGVsdmV0aWNhLHNhbnMtc2VyaWY7IGZvbnQtc2l6ZToxMnB0OyBjb2xv cjpyZ2IoMCwwLDApIj4NCjxicj4NCjwvZGl2Pg0KPGRpdiBzdHlsZT0iZm9udC1mYW1pbHk6Q2Fs aWJyaSxBcmlhbCxIZWx2ZXRpY2Esc2Fucy1zZXJpZjsgZm9udC1zaXplOjEycHQ7IGNvbG9yOnJn YigwLDAsMCkiPg0KS2lyc3R5PC9kaXY+DQo8ZGl2IGlkPSJhcHBlbmRvbnNlbmQiPjwvZGl2Pg0K PGhyIHRhYmluZGV4PSItMSIgc3R5bGU9ImRpc3BsYXk6aW5saW5lLWJsb2NrOyB3aWR0aDo5OCUi Pg0KPGRpdiBpZD0iZGl2UnBseUZ3ZE1zZyIgZGlyPSJsdHIiPjxmb250IGZhY2U9IkNhbGlicmks IHNhbnMtc2VyaWYiIGNvbG9yPSIjMDAwMDAwIiBzdHlsZT0iZm9udC1zaXplOjExcHQiPjxiPkZy b206PC9iPiBQYW53ZWkgKFdpbGxpYW0pICZsdDt3aWxsaWFtLnBhbndlaUBodWF3ZWkuY29tJmd0 Ozxicj4NCjxiPlNlbnQ6PC9iPiAyNCBKdWx5IDIwMTkgMjA6MDI8YnI+DQo8Yj5Ubzo8L2I+IEtp cnN0eSBQICZsdDtLaXJzdHkucEBuY3NjLmdvdi51ayZndDs7IHNtYXJ0QGlydGYub3JnICZsdDtz bWFydEBpcnRmLm9yZyZndDs8YnI+DQo8Yj5TdWJqZWN0OjwvYj4gUkU6IFNpZGUgTWVldGluZyBU aGlzIE1vcm5pbmc8L2ZvbnQ+DQo8ZGl2PiZuYnNwOzwvZGl2Pg0KPC9kaXY+DQo8ZGl2IGxhbmc9 IlpILUNOIj4NCjxkaXYgY2xhc3M9InhfV29yZFNlY3Rpb24xIj4NCjxwIGNsYXNzPSJ4X01zb05v cm1hbCIgc3R5bGU9Im1hcmdpbi10b3A6IDBweDsgbWFyZ2luLWJvdHRvbTogMHB4O21hcmdpbjog MGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXplOiAxMnB0OyBmb250LWZhbWlseTogJnF1b3Q7VGlt ZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjttYXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7IGZvbnQt c2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6ICZxdW90O1RpbWVzIE5ldyBSb21hbiZxdW90Oywgc2Vy aWY7Ij4NCjxzcGFuIGxhbmc9IkVOLVVTIiBzdHlsZT0iZm9udC1zaXplOjExLjBwdDsgZm9udC1m YW1pbHk6JnF1b3Q7R2FkdWdpJnF1b3Q7LHNhbnMtc2VyaWY7IGNvbG9yOmJsYWNrIj5IaSw8L3Nw YW4+PC9wPg0KPHAgY2xhc3M9InhfTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLXRvcDogMHB4OyBt YXJnaW4tYm90dG9tOiAwcHg7bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0OyBmb250LXNpemU6IDEy cHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4mcXVvdDssIHNlcmlmO21hcmdp bjogMGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXplOiAxMnB0OyBmb250LWZhbWlseTogJnF1b3Q7 VGltZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjsiPg0KPHNwYW4gbGFuZz0iRU4tVVMiIHN0eWxl PSJmb250LXNpemU6MTEuMHB0OyBmb250LWZhbWlseTomcXVvdDtHYWR1Z2kmcXVvdDssc2Fucy1z ZXJpZjsgY29sb3I6YmxhY2siPiZuYnNwOzwvc3Bhbj48L3A+DQo8cCBjbGFzcz0ieF9Nc29Ob3Jt YWwiIHN0eWxlPSJtYXJnaW4tdG9wOiAwcHg7IG1hcmdpbi1ib3R0b206IDBweDttYXJnaW46IDBj bSAwY20gMC4wMDAxcHQ7IGZvbnQtc2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6ICZxdW90O1RpbWVz IE5ldyBSb21hbiZxdW90Oywgc2VyaWY7bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0OyBmb250LXNp emU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4mcXVvdDssIHNlcmlm OyI+DQo8c3BhbiBsYW5nPSJFTi1VUyIgc3R5bGU9ImZvbnQtc2l6ZToxMS4wcHQ7IGZvbnQtZmFt aWx5OiZxdW90O0dhZHVnaSZxdW90OyxzYW5zLXNlcmlmOyBjb2xvcjpibGFjayI+QSBTbWFsbCBx dWVzdGlvbjogQ2FuIEkgZmluZCB0aGUgc2xpZGVzIHNvbWV3aGVyZT88L3NwYW4+PC9wPg0KPHAg Y2xhc3M9InhfTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLXRvcDogMHB4OyBtYXJnaW4tYm90dG9t OiAwcHg7bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFt aWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4mcXVvdDssIHNlcmlmO21hcmdpbjogMGNtIDBjbSAw LjAwMDFwdDsgZm9udC1zaXplOiAxMnB0OyBmb250LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJv bWFuJnF1b3Q7LCBzZXJpZjsiPg0KPHNwYW4gbGFuZz0iRU4tVVMiIHN0eWxlPSJmb250LXNpemU6 MTEuMHB0OyBmb250LWZhbWlseTomcXVvdDtHYWR1Z2kmcXVvdDssc2Fucy1zZXJpZjsgY29sb3I6 YmxhY2siPiZuYnNwOzwvc3Bhbj48L3A+DQo8ZGl2Pg0KPHAgY2xhc3M9InhfTXNvTm9ybWFsIiBz dHlsZT0ibWFyZ2luLXRvcDogMHB4OyBtYXJnaW4tYm90dG9tOiAwcHg7bWFyZ2luOiAwY20gMGNt IDAuMDAwMXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBOZXcg Um9tYW4mcXVvdDssIHNlcmlmO21hcmdpbjogMGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXplOiAx MnB0OyBmb250LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjt0ZXh0 LWFsaWduOmp1c3RpZnk7IHRleHQtanVzdGlmeTppbnRlci1pZGVvZ3JhcGg7IGxpbmUtaGVpZ2h0 OjEzMCUiPg0KPHNwYW4gbGFuZz0iRU4tVVMiIHN0eWxlPSJmb250LXNpemU6MTEuMHB0OyBsaW5l LWhlaWdodDoxMzAlOyBmb250LWZhbWlseTomcXVvdDtHYWR1Z2kmcXVvdDssc2Fucy1zZXJpZjsg Y29sb3I6YmxhY2siPiZuYnNwOzwvc3Bhbj48L3A+DQo8cCBjbGFzcz0ieF9Nc29Ob3JtYWwiIHN0 eWxlPSJtYXJnaW4tdG9wOiAwcHg7IG1hcmdpbi1ib3R0b206IDBweDttYXJnaW46IDBjbSAwY20g MC4wMDAxcHQ7IGZvbnQtc2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6ICZxdW90O1RpbWVzIE5ldyBS b21hbiZxdW90Oywgc2VyaWY7bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0OyBmb250LXNpemU6IDEy cHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4mcXVvdDssIHNlcmlmO3RleHQt YWxpZ246anVzdGlmeTsgdGV4dC1qdXN0aWZ5OmludGVyLWlkZW9ncmFwaDsgbGluZS1oZWlnaHQ6 MTMwJSI+DQo8c3BhbiBsYW5nPSJFTi1VUyIgc3R5bGU9ImZvbnQtc2l6ZToxMS4wcHQ7IGxpbmUt aGVpZ2h0OjEzMCU7IGZvbnQtZmFtaWx5OiZxdW90O0dhZHVnaSZxdW90OyxzYW5zLXNlcmlmOyBj b2xvcjpibGFjayI+UmVnYXJkcyAmYW1wOyBUaGFua3MhPC9zcGFuPjwvcD4NCjxwIGNsYXNzPSJ4 X01zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi10b3A6IDBweDsgbWFyZ2luLWJvdHRvbTogMHB4O21h cmdpbjogMGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXplOiAxMnB0OyBmb250LWZhbWlseTogJnF1 b3Q7VGltZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjttYXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7 IGZvbnQtc2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6ICZxdW90O1RpbWVzIE5ldyBSb21hbiZxdW90 Oywgc2VyaWY7dGV4dC1hbGlnbjpqdXN0aWZ5OyB0ZXh0LWp1c3RpZnk6aW50ZXItaWRlb2dyYXBo OyBsaW5lLWhlaWdodDoxMTAlIj4NCjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTEuMHB0OyBsaW5l LWhlaWdodDoxMTAlOyBmb250LWZhbWlseTrlrovkvZM7IGNvbG9yOmJsYWNrIj7mvZjkvJ88L3Nw YW4+PHNwYW4gbGFuZz0iRU4tVVMiIHN0eWxlPSJmb250LXNpemU6MTEuMHB0OyBsaW5lLWhlaWdo dDoxMTAlOyBmb250LWZhbWlseTomcXVvdDtHYWR1Z2kmcXVvdDssc2Fucy1zZXJpZjsgY29sb3I6 YmxhY2siPiBXZWkgUGFuPC9zcGFuPjwvcD4NCjxwIGNsYXNzPSJ4X01zb05vcm1hbCIgc3R5bGU9 Im1hcmdpbi10b3A6IDBweDsgbWFyZ2luLWJvdHRvbTogMHB4O21hcmdpbjogMGNtIDBjbSAwLjAw MDFwdDsgZm9udC1zaXplOiAxMnB0OyBmb250LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJvbWFu JnF1b3Q7LCBzZXJpZjttYXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7IGZvbnQtc2l6ZTogMTJwdDsg Zm9udC1mYW1pbHk6ICZxdW90O1RpbWVzIE5ldyBSb21hbiZxdW90Oywgc2VyaWY7dGV4dC1hbGln bjpqdXN0aWZ5OyB0ZXh0LWp1c3RpZnk6aW50ZXItaWRlb2dyYXBoOyBsaW5lLWhlaWdodDoxMzAl Ij4NCjxzcGFuIGxhbmc9IkVOLVVTIiBzdHlsZT0iZm9udC1zaXplOjExLjBwdDsgbGluZS1oZWln aHQ6MTMwJTsgZm9udC1mYW1pbHk6JnF1b3Q7R2FkdWdpJnF1b3Q7LHNhbnMtc2VyaWY7IGNvbG9y OmJsYWNrIj5IdWF3ZWkgVGVjaG5vbG9naWVzIENvLiwgTHRkLjwvc3Bhbj48L3A+DQo8L2Rpdj4N CjxwIGNsYXNzPSJ4X01zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi10b3A6IDBweDsgbWFyZ2luLWJv dHRvbTogMHB4O21hcmdpbjogMGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXplOiAxMnB0OyBmb250 LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjttYXJnaW46IDBjbSAw Y20gMC4wMDAxcHQ7IGZvbnQtc2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6ICZxdW90O1RpbWVzIE5l dyBSb21hbiZxdW90Oywgc2VyaWY7Ij4NCjxzcGFuIGxhbmc9IkVOLVVTIiBzdHlsZT0iZm9udC1z aXplOjExLjBwdDsgZm9udC1mYW1pbHk6JnF1b3Q7R2FkdWdpJnF1b3Q7LHNhbnMtc2VyaWY7IGNv bG9yOmJsYWNrIj4mbmJzcDs8L3NwYW4+PC9wPg0KPGRpdiBzdHlsZT0iYm9yZGVyOm5vbmU7IGJv cmRlci1sZWZ0OnNvbGlkIGJsdWUgMS41cHQ7IHBhZGRpbmc6MGNtIDBjbSAwY20gNC4wcHQiPg0K PGRpdj4NCjxkaXYgc3R5bGU9ImJvcmRlcjpub25lOyBib3JkZXItdG9wOnNvbGlkICNFMUUxRTEg MS4wcHQ7IHBhZGRpbmc6My4wcHQgMGNtIDBjbSAwY20iPg0KPHAgY2xhc3M9InhfTXNvTm9ybWFs IiBzdHlsZT0ibWFyZ2luLXRvcDogMHB4OyBtYXJnaW4tYm90dG9tOiAwcHg7bWFyZ2luOiAwY20g MGNtIDAuMDAwMXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBO ZXcgUm9tYW4mcXVvdDssIHNlcmlmO21hcmdpbjogMGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXpl OiAxMnB0OyBmb250LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjsi Pg0KPGI+PHNwYW4gbGFuZz0iRU4tVVMiIHN0eWxlPSJmb250LXNpemU6MTEuMHB0OyBmb250LWZh bWlseTomcXVvdDtDYWxpYnJpJnF1b3Q7LHNhbnMtc2VyaWYiPkZyb206PC9zcGFuPjwvYj48c3Bh biBsYW5nPSJFTi1VUyIgc3R5bGU9ImZvbnQtc2l6ZToxMS4wcHQ7IGZvbnQtZmFtaWx5OiZxdW90 O0NhbGlicmkmcXVvdDssc2Fucy1zZXJpZiI+IFNtYXJ0IFttYWlsdG86c21hcnQtYm91bmNlc0Bp cnRmLm9yZ10NCjxiPk9uIEJlaGFsZiBPZiA8L2I+S2lyc3R5IFA8YnI+DQo8Yj5TZW50OjwvYj4g V2VkbmVzZGF5LCBKdWx5IDI0LCAyMDE5IDg6NDYgQU08YnI+DQo8Yj5Ubzo8L2I+IHNtYXJ0QGly dGYub3JnPGJyPg0KPGI+U3ViamVjdDo8L2I+IFtTbWFydF0gU2lkZSBNZWV0aW5nIFRoaXMgTW9y bmluZzwvc3Bhbj48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPHAgY2xhc3M9InhfTXNvTm9ybWFsIiBz dHlsZT0ibWFyZ2luLXRvcDogMHB4OyBtYXJnaW4tYm90dG9tOiAwcHg7bWFyZ2luOiAwY20gMGNt IDAuMDAwMXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBOZXcg Um9tYW4mcXVvdDssIHNlcmlmO21hcmdpbjogMGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXplOiAx MnB0OyBmb250LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjsiPg0K PHNwYW4gbGFuZz0iRU4tVVMiPiZuYnNwOzwvc3Bhbj48L3A+DQo8ZGl2Pg0KPHAgY2xhc3M9Inhf TXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLXRvcDogMHB4OyBtYXJnaW4tYm90dG9tOiAwcHg7bWFy Z2luOiAwY20gMGNtIDAuMDAwMXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVv dDtUaW1lcyBOZXcgUm9tYW4mcXVvdDssIHNlcmlmO21hcmdpbjogMGNtIDBjbSAwLjAwMDFwdDsg Zm9udC1zaXplOiAxMnB0OyBmb250LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJvbWFuJnF1b3Q7 LCBzZXJpZjsiPg0KPHNwYW4gbGFuZz0iRU4tVVMiIHN0eWxlPSJmb250LWZhbWlseTomcXVvdDtD YWxpYnJpJnF1b3Q7LHNhbnMtc2VyaWY7IGNvbG9yOmJsYWNrIj5SZW1pbmRlcjogU01BUlQgc2lk ZSBtZWV0aW5nIGF0IDA5OjAwLTEwOjMwIHRoaXMgbW9ybmluZyBpbiB0aGUgQzIgcm9vbSogb24g dGhlIDIxc3QgZmxvb3IgYXQgSUVURiAxMDUuPC9zcGFuPjwvcD4NCjxkaXY+DQo8cCBjbGFzcz0i eF9Nc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tdG9wOiAwcHg7IG1hcmdpbi1ib3R0b206IDBweDtt YXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7IGZvbnQtc2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6ICZx dW90O1RpbWVzIE5ldyBSb21hbiZxdW90Oywgc2VyaWY7bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0 OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4mcXVv dDssIHNlcmlmOyI+DQo8c3BhbiBsYW5nPSJFTi1VUyIgc3R5bGU9ImZvbnQtZmFtaWx5OiZxdW90 O0NhbGlicmkmcXVvdDssc2Fucy1zZXJpZjsgY29sb3I6YmxhY2siPlsqb2YgY291cnNlLCB3ZSBo YWQgdG8gYm9vayB0aGlzIHJvb20hXTwvc3Bhbj48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFz cz0ieF9Nc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tdG9wOiAwcHg7IG1hcmdpbi1ib3R0b206IDBw eDttYXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7IGZvbnQtc2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6 ICZxdW90O1RpbWVzIE5ldyBSb21hbiZxdW90Oywgc2VyaWY7bWFyZ2luOiAwY20gMGNtIDAuMDAw MXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4m cXVvdDssIHNlcmlmOyI+DQo8c3BhbiBsYW5nPSJFTi1VUyIgc3R5bGU9ImZvbnQtZmFtaWx5OiZx dW90O0NhbGlicmkmcXVvdDssc2Fucy1zZXJpZjsgY29sb3I6YmxhY2siPiZuYnNwOzwvc3Bhbj48 L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0ieF9Nc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4t dG9wOiAwcHg7IG1hcmdpbi1ib3R0b206IDBweDttYXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7IGZv bnQtc2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6ICZxdW90O1RpbWVzIE5ldyBSb21hbiZxdW90Oywg c2VyaWY7bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFt aWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4mcXVvdDssIHNlcmlmOyI+DQo8c3BhbiBsYW5nPSJF Ti1VUyIgc3R5bGU9ImZvbnQtZmFtaWx5OiZxdW90O0NhbGlicmkmcXVvdDssc2Fucy1zZXJpZjsg Y29sb3I6YmxhY2siPlJvdWdoIGFnZW5kYTo8L3NwYW4+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAg Y2xhc3M9InhfTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLXRvcDogMHB4OyBtYXJnaW4tYm90dG9t OiAwcHg7bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFt aWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4mcXVvdDssIHNlcmlmO21hcmdpbjogMGNtIDBjbSAw LjAwMDFwdDsgZm9udC1zaXplOiAxMnB0OyBmb250LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJv bWFuJnF1b3Q7LCBzZXJpZjsiPg0KPHNwYW4gbGFuZz0iRU4tVVMiIHN0eWxlPSJmb250LWZhbWls eTomcXVvdDtDYWxpYnJpJnF1b3Q7LHNhbnMtc2VyaWY7IGNvbG9yOmJsYWNrIj4tIEhpc3Rvcnkg b2YgU01BUlQ8L3NwYW4+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9InhfTXNvTm9ybWFs IiBzdHlsZT0ibWFyZ2luLXRvcDogMHB4OyBtYXJnaW4tYm90dG9tOiAwcHg7bWFyZ2luOiAwY20g MGNtIDAuMDAwMXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBO ZXcgUm9tYW4mcXVvdDssIHNlcmlmO21hcmdpbjogMGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXpl OiAxMnB0OyBmb250LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjsi Pg0KPHNwYW4gbGFuZz0iRU4tVVMiIHN0eWxlPSJmb250LWZhbWlseTomcXVvdDtDYWxpYnJpJnF1 b3Q7LHNhbnMtc2VyaWY7IGNvbG9yOmJsYWNrIj4tIFRoZSBjaGFydGVyLCB3aGljaCB3YXMgcmVq ZWN0ZWQsIGFuZCBnb2luZyBmb3J3YXJkPC9zcGFuPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNs YXNzPSJ4X01zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi10b3A6IDBweDsgbWFyZ2luLWJvdHRvbTog MHB4O21hcmdpbjogMGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXplOiAxMnB0OyBmb250LWZhbWls eTogJnF1b3Q7VGltZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjttYXJnaW46IDBjbSAwY20gMC4w MDAxcHQ7IGZvbnQtc2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6ICZxdW90O1RpbWVzIE5ldyBSb21h biZxdW90Oywgc2VyaWY7Ij4NCjxzcGFuIGxhbmc9IkVOLVVTIiBzdHlsZT0iZm9udC1mYW1pbHk6 JnF1b3Q7Q2FsaWJyaSZxdW90OyxzYW5zLXNlcmlmOyBjb2xvcjpibGFjayI+LSA1LTEwIG1pbnV0 ZSBkaXNjdXNzaW9uIG9mIGVhY2ggb2YgdGhlIHNpeCBkcmFmdHMNCjwvc3Bhbj48L3A+DQo8L2Rp dj4NCjxkaXY+DQo8cCBjbGFzcz0ieF9Nc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tdG9wOiAwcHg7 IG1hcmdpbi1ib3R0b206IDBweDttYXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7IGZvbnQtc2l6ZTog MTJwdDsgZm9udC1mYW1pbHk6ICZxdW90O1RpbWVzIE5ldyBSb21hbiZxdW90Oywgc2VyaWY7bWFy Z2luOiAwY20gMGNtIDAuMDAwMXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVv dDtUaW1lcyBOZXcgUm9tYW4mcXVvdDssIHNlcmlmOyI+DQo8c3BhbiBsYW5nPSJFTi1VUyIgc3R5 bGU9ImZvbnQtZmFtaWx5OiZxdW90O0NhbGlicmkmcXVvdDssc2Fucy1zZXJpZjsgY29sb3I6Ymxh Y2siPi0gTmV4dCBzdGVwcyBmb3IgU01BUlQ8L3NwYW4+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAg Y2xhc3M9InhfTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luLXRvcDogMHB4OyBtYXJnaW4tYm90dG9t OiAwcHg7bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFt aWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4mcXVvdDssIHNlcmlmO21hcmdpbjogMGNtIDBjbSAw LjAwMDFwdDsgZm9udC1zaXplOiAxMnB0OyBmb250LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJv bWFuJnF1b3Q7LCBzZXJpZjsiPg0KPHNwYW4gbGFuZz0iRU4tVVMiIHN0eWxlPSJmb250LWZhbWls eTomcXVvdDtDYWxpYnJpJnF1b3Q7LHNhbnMtc2VyaWY7IGNvbG9yOmJsYWNrIj4mbmJzcDs8L3Nw YW4+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9InhfTXNvTm9ybWFsIiBzdHlsZT0ibWFy Z2luLXRvcDogMHB4OyBtYXJnaW4tYm90dG9tOiAwcHg7bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0 OyBmb250LXNpemU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4mcXVv dDssIHNlcmlmO21hcmdpbjogMGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXplOiAxMnB0OyBmb250 LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjsiPg0KPHNwYW4gbGFu Zz0iRU4tVVMiIHN0eWxlPSJmb250LWZhbWlseTomcXVvdDtDYWxpYnJpJnF1b3Q7LHNhbnMtc2Vy aWY7IGNvbG9yOmJsYWNrIj5FdmVyeW9uZSBpcyB3ZWxjb21lOyB3ZSBsb29raW5nIGZvcndhcmQg dG8gc2VlaW5nIHlvdSB0aGVyZSE8L3NwYW4+PC9wPg0KPC9kaXY+DQo8cCBjbGFzcz0ieF9Nc29O b3JtYWwiIHN0eWxlPSJtYXJnaW4tdG9wOiAwcHg7IG1hcmdpbi1ib3R0b206IDBweDttYXJnaW46 IDBjbSAwY20gMC4wMDAxcHQ7IGZvbnQtc2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6ICZxdW90O1Rp bWVzIE5ldyBSb21hbiZxdW90Oywgc2VyaWY7bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0OyBmb250 LXNpemU6IDEycHQ7IGZvbnQtZmFtaWx5OiAmcXVvdDtUaW1lcyBOZXcgUm9tYW4mcXVvdDssIHNl cmlmOyI+DQo8c3BhbiBsYW5nPSJFTi1VUyIgc3R5bGU9ImZvbnQtZmFtaWx5OiZxdW90O0NhbGli cmkmcXVvdDssc2Fucy1zZXJpZjsgY29sb3I6YmxhY2siPiZuYnNwOzwvc3Bhbj48L3A+DQo8L2Rp dj4NCjxwIGNsYXNzPSJ4X01zb05vcm1hbCIgc3R5bGU9Im1hcmdpbi10b3A6IDBweDsgbWFyZ2lu LWJvdHRvbTogMHB4O21hcmdpbjogMGNtIDBjbSAwLjAwMDFwdDsgZm9udC1zaXplOiAxMnB0OyBm b250LWZhbWlseTogJnF1b3Q7VGltZXMgTmV3IFJvbWFuJnF1b3Q7LCBzZXJpZjttYXJnaW46IDBj bSAwY20gMC4wMDAxcHQ7IGZvbnQtc2l6ZTogMTJwdDsgZm9udC1mYW1pbHk6ICZxdW90O1RpbWVz IE5ldyBSb21hbiZxdW90Oywgc2VyaWY7Ij4NCjxzcGFuIGxhbmc9IkVOLVVTIj5UaGlzIGluZm9y bWF0aW9uIGlzIGV4ZW1wdCB1bmRlciB0aGUgRnJlZWRvbSBvZiBJbmZvcm1hdGlvbiBBY3QgMjAw MCAoRk9JQSkgYW5kIG1heSBiZSBleGVtcHQgdW5kZXIgb3RoZXIgVUsgaW5mb3JtYXRpb24gbGVn aXNsYXRpb24uIFJlZmVyIGFueSBGT0lBIHF1ZXJpZXMgdG8NCjxhIGhyZWY9Im1haWx0bzpuY3Nj aW5mb2xlZ0BuY3NjLmdvdi51ayI+bmNzY2luZm9sZWdAbmNzYy5nb3YudWs8L2E+LiBBbGwgbWF0 ZXJpYWwgaXMgVUsgQ3Jvd24gQ29weXJpZ2h0IMKpDQo8L3NwYW4+PC9wPg0KPC9kaXY+DQo8L2Rp dj4NCjwvZGl2Pg0KPC9ib2R5Pg0KPC9odG1sPg0K --_000_LO2P123MB1727FDA2F79D2F873ACE6FF3D7C10LO2P123MB1727GBRP_-- From nobody Thu Jul 25 08:41:47 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E1EEC1201DA for ; Thu, 25 Jul 2019 08:41:44 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2 X-Spam-Level: X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ncsc.gov.uk Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 87rb1YGkKkjh for ; Thu, 25 Jul 2019 08:41:42 -0700 (PDT) Received: from GBR01-CWL-obe.outbound.protection.outlook.com (mail-eopbgr110094.outbound.protection.outlook.com [40.107.11.94]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2B96912028F for ; Thu, 25 Jul 2019 08:41:42 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Em6e+UIA6FHc6J4n+RBCEdnjUYpu3s0SiymkDJGYDkEuUmrtqq8GgLeQksxq5rRfiZTPbIcGk3iGpTKhTh0QFlJnn3KjFptxhLUNnjyMtwYFtz1/OalKTUXaKgdE5XtSjm08TcFjBv9IQqTkXdn8pz1NcPU/nCAoe8/KJqiCak1v3TdTYbC/W9YJhEdfWD0Ofd7RlzdGVXXyulNIc+Zme0ZSVzHycotTecre4tffDu4ZTGSuczvQw4VM+peqAey3kMfEvigjX75VV0s+jGs892zfgYNmyBgJCxBV9DnPjni3U4j+Rl0t0QR+O7BfEA+jxYTPZBhQ53FIFNvEQ6g2ZA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ji7iaVy2GNc3mKcw5/jmc7vv7pqAc/hyCKA4azjEyB8=; b=DLJxJXwUZVj3CkaHpXmAEbfeDcb06YH6Nj6InfqOlVdQlIhFsychdUmBXnE7+Nsxk/i8b/Np9clhR2ndBCEXM96Wvy6nMq9vAG300WRB5+5tBX4Tizdc4O+QmO/hCONygK1OiVJoAMMQSgBacExDydWtQBrD8au+eBkYeIB9mSLXg5k9Dm1hDv8EYO684ZsE6B9Sq2XfT42BjCciBGWHCUGJx8IsbrMW1IY/iE3v8ihEbOUQ0nx/4CHPGFM74BvOZGmgucoy0WM48dJM8oANJ+Gr0mDeyn+hhTGv206g4nHVp8QUTDfQ3GI/XfQmiLqbc+MIeS3L56hOClY8VXtiFQ== ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=ncsc.gov.uk;dmarc=pass action=none header.from=ncsc.gov.uk;dkim=pass header.d=ncsc.gov.uk;arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ncsc.gov.uk; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ji7iaVy2GNc3mKcw5/jmc7vv7pqAc/hyCKA4azjEyB8=; b=U3rU3UtJWCQNK1ZnfJHeO6ONG9Tr4RFsF/YJ8Kusyx59fAjglX3bBHtLCckDxwJUgbaZMormyI2HTIZZdeKyUYmSrgkYn+477mHpA6YDhiJDeXQ4pyX6EfGn8Rza0L4LZkHo7qSMB8F+uGzRsnc+/asbri39lOxQsw78FdPKnXE= Received: from LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM (20.176.156.14) by LO2P123MB2621.GBRP123.PROD.OUTLOOK.COM (20.176.155.17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2094.16; Thu, 25 Jul 2019 15:41:40 +0000 Received: from LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM ([fe80::6c2f:602c:52c8:92fe]) by LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM ([fe80::6c2f:602c:52c8:92fe%4]) with mapi id 15.20.2094.017; Thu, 25 Jul 2019 15:41:40 +0000 From: Kirsty P To: =?iso-8859-1?Q?T=F6ma_Gavrichenkov?= CC: "smart@irtf.org" Thread-Topic: [Smart] Side Meeting This Morning Thread-Index: AQHVQh2ogEjYRIUA9ku/wPkjJN5+mKbZ1NKAgAGfL9Y= Date: Thu, 25 Jul 2019 15:41:40 +0000 Message-ID: References: , In-Reply-To: Accept-Language: en-GB, en-US Content-Language: en-GB X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=Kirsty.p@ncsc.gov.uk; x-originating-ip: [51.141.26.231] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: a2f59835-ccbb-4dfa-d0da-08d71116963f x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(7168020)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:LO2P123MB2621; x-ms-traffictypediagnostic: LO2P123MB2621: x-ms-exchange-purlcount: 1 x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:8273; x-forefront-prvs: 0109D382B0 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(136003)(366004)(396003)(39850400004)(346002)(376002)(199004)(189003)(52536014)(74316002)(486006)(14454004)(14444005)(66476007)(66574012)(606006)(8936002)(81166006)(102836004)(81156014)(71190400001)(1411001)(7736002)(6246003)(229853002)(8676002)(256004)(4744005)(316002)(71200400001)(478600001)(66066001)(5660300002)(54896002)(6916009)(446003)(6116002)(3846002)(86362001)(6506007)(68736007)(966005)(53546011)(7696005)(55016002)(6436002)(53936002)(236005)(9686003)(26005)(25786009)(66446008)(66946007)(19627405001)(6306002)(4326008)(64756008)(76176011)(76116006)(105004)(186003)(55236004)(11346002)(66556008)(2906002)(33656002)(476003)(99286004); DIR:OUT; SFP:1102; SCL:1; SRVR:LO2P123MB2621; H:LO2P123MB1727.GBRP123.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1; received-spf: None (protection.outlook.com: ncsc.gov.uk does not designate permitted sender hosts) x-ms-exchange-senderadcheck: 1 x-microsoft-antispam-message-info: c5JuWIzLUx/wJXClp82cAuac81OM5znN5mwz7IH8XQ9AmRBe6GolWEoP/phs4osvRcR9kDTlfumPTHaiQNyOGUAMW57CXN9VyUOE4Vn2/MED1piy8LnE5ClYPzc14uJUAVZlrjSyU0hVT4aQwFTccGLRYGI3bxAhTkX7kh1GoWqNkXmlSPTnB0rTTiBHSppCoPP0YB+kCNgrf3QBkunu8/hqzmOAjGzXcLf51WPZQo9jFjEMCA3fmgJvA36bHyil0C058sHfWaqpYr0xUh2i5w7JFln2q+esshsPiDGxUFUHOFHuQhsvDL33TNU9NUfWjbhjxlKbjTiWpoWoMxBFqu2PETgXkQmBgXmQfh/gFsufK9ZQDvzVapn45Xv4qcstBkOxLR/Yc1zQJZMWTvk4Gcbi+Jj5N6h41cOjP3bNrU8= Content-Type: multipart/alternative; boundary="_000_LO2P123MB1727A681E0D6E8AEAA1F8EF2D7C10LO2P123MB1727GBRP_" MIME-Version: 1.0 X-OriginatorOrg: ncsc.gov.uk X-MS-Exchange-CrossTenant-Network-Message-Id: a2f59835-ccbb-4dfa-d0da-08d71116963f X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jul 2019 15:41:40.3092 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 14aa5744-ece1-474e-a2d7-34f46dda64a1 X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: kirsty62596@ncsc.gov.uk X-MS-Exchange-Transport-CrossTenantHeadersStamped: LO2P123MB2621 Archived-At: Subject: Re: [Smart] Side Meeting This Morning X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 Jul 2019 15:41:45 -0000 --_000_LO2P123MB1727A681E0D6E8AEAA1F8EF2D7C10LO2P123MB1727GBRP_ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi T=F6ma, Thanks for your question! Yes, we've just put notes from the meeting on Git= hub here: https://github.com/smart-rg/meetings/blob/master/105/meeting-note= s.md Kirsty ________________________________ From: T=F6ma Gavrichenkov Sent: 24 July 2019 15:31 To: Kirsty P Cc: smart@irtf.org Subject: Re: [Smart] Side Meeting This Morning Peace, On Wed, Jul 24, 2019 at 3:45 PM Kirsty P wrote: > Reminder: SMART side meeting at 09:00-10:30 this morning in the C2 room* = on the 21st floor at IETF 105. Would you be publishing meeting notes? -- T=F6ma This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk. All material is UK Crown Copyright =A9 --_000_LO2P123MB1727A681E0D6E8AEAA1F8EF2D7C10LO2P123MB1727GBRP_ Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi T=F6ma,

Thanks for your question! Yes, we've just put notes from the meeting on Github here: https://gith= ub.com/smart-rg/meetings/blob/master/105/meeting-notes.md

Kirsty

From: T=F6ma Gavrichenkov &= lt;ximaera@gmail.com>
Sent: 24 July 2019 15:31
To: Kirsty P <Kirsty.p@ncsc.gov.uk>
Cc: smart@irtf.org <smart@irtf.org>
Subject: Re: [Smart] Side Meeting This Morning
 
Peace,

On Wed, Jul 24, 2019 at 3:45 PM Kirsty P
<Kirsty.p=3D40ncsc.gov.uk@dmarc.ietf.org> wrote:
> Reminder: SMART side meeting at 09:00-10:30 this morning in the C2 roo= m* on the 21st floor at IETF 105.

Would you be publishing meeting notes?

--
T=F6ma
This information is exempt under the Freedom of Information Act 2000 (FOIA)= and may be exempt under other UK information legislation. Refer any FOIA q= ueries to ncscinfoleg@ncsc.gov.uk. All material is UK Crown Copyright =A9
--_000_LO2P123MB1727A681E0D6E8AEAA1F8EF2D7C10LO2P123MB1727GBRP_-- From nobody Thu Jul 25 12:30:41 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 74E441201C5 for ; Thu, 25 Jul 2019 12:30:39 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.895 X-Spam-Level: X-Spam-Status: No, score=0.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_WORDY=1.571, FROM_WORDY_SHORT=2.022, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iLsOuYxnpXoB for ; Thu, 25 Jul 2019 12:30:37 -0700 (PDT) Received: from mail-40132.protonmail.ch (mail-40132.protonmail.ch [185.70.40.132]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5CFF91201C6 for ; Thu, 25 Jul 2019 12:30:37 -0700 (PDT) Date: Thu, 25 Jul 2019 19:30:31 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1564083035; bh=aMLPs9JSHabxXjLDxQIYIVe4kWFq2BmdjQ6p4EAYfRE=; h=Date:To:From:Reply-To:Subject:Feedback-ID:From; b=nmb/nVFpnUe8IDHtkhArNdu3k8iVIcvdgRHZoqslqsDXHRFX2zlsOXt/7UfRNb8Za j97MUupt2f1/qaBgErZIQcdujNNA32+k3YDSVFIVOgSYLaXVoIiGV+OJSdElG93t31 274YdGVSc6CoEtdg9R7GzUVC3QCDrzFGuEfiFjtQ= To: "smart@irtf.org" , "saag@ietf.org" From: "Arnaud.Taddei.IETF" Reply-To: "Arnaud.Taddei.IETF" Message-ID: Feedback-ID: kou6vaSHQeY5dgFN9dCIYKo4z6hnnNmKuV4IBJw2wx4vSVPtftyhWUTBigri6zMJ3K1hxYJjI-3RAIGaizMt5g==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_e8230ec015baeca3cb58a47784e63144" Archived-At: Subject: [Smart] CLESS side meeting in Coller (3rd floor) at 4pm X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 25 Jul 2019 19:30:40 -0000 This is a multi-part message in MIME format. --b1_e8230ec015baeca3cb58a47784e63144 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: base64 SnVzdCB0byBjb25maXJtIHRoYXQgdGhlIHNpZGUgbWVldGluZyBvbiBDTEVTUyAoQ2FwYWJpbGl0 aWVzIGFuZCBMaW1pdGF0aW9ucyBvZiBFbmRwb2ludCBTZWN1cml0eSBTb2x1dGlvbnMpIGlzIGlu IENvbGxlciAoM3JkIGZsb29yKSBhdCA0cG0KClNlbnQgd2l0aCBbUHJvdG9uTWFpbF0oaHR0cHM6 Ly9wcm90b25tYWlsLmNvbSkgU2VjdXJlIEVtYWlsLg== --b1_e8230ec015baeca3cb58a47784e63144 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: base64 PGRpdj5KdXN0IHRvIGNvbmZpcm0gdGhhdCB0aGUgc2lkZSBtZWV0aW5nIG9uIENMRVNTIChDYXBh YmlsaXRpZXMgYW5kIExpbWl0YXRpb25zIG9mIEVuZHBvaW50IFNlY3VyaXR5IFNvbHV0aW9ucykg aXMgaW4gQ29sbGVyICgzcmQgZmxvb3IpIGF0IDRwbTxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48 ZGl2IGNsYXNzPSJwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jayI+PGRpdiBjbGFzcz0icHJvdG9u bWFpbF9zaWduYXR1cmVfYmxvY2stdXNlciBwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jay1lbXB0 eSI+PGJyPjwvZGl2PjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2lnbmF0dXJlX2Jsb2NrLXByb3Rv biI+U2VudCB3aXRoIDxhIGhyZWY9Imh0dHBzOi8vcHJvdG9ubWFpbC5jb20iIHRhcmdldD0iX2Js YW5rIj5Qcm90b25NYWlsPC9hPiBTZWN1cmUgRW1haWwuPGJyPjwvZGl2PjwvZGl2PjxkaXY+PGJy PjwvZGl2Pg== --b1_e8230ec015baeca3cb58a47784e63144-- From nobody Wed Jul 31 05:36:05 2019 Return-Path: X-Original-To: smart@ietfa.amsl.com Delivered-To: smart@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 27AD21200D7 for ; Wed, 31 Jul 2019 05:36:04 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.028 X-Spam-Level: X-Spam-Status: No, score=-0.028 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, BITCOIN_SPAM_04=1, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FROM_WORDY=1.571, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=protonmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1LCk-ldkD2jW for ; Wed, 31 Jul 2019 05:36:00 -0700 (PDT) Received: from mail2.protonmail.ch (mail2.protonmail.ch [185.70.40.22]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 922DE1200E6 for ; Wed, 31 Jul 2019 05:36:00 -0700 (PDT) Date: Wed, 31 Jul 2019 12:35:52 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1564576557; bh=bb5wZoBILjhiPp7JqV5Mzj0VA2QjTnF3yJUeNQwzy9s=; h=Date:To:From:Reply-To:Subject:Feedback-ID:From; b=GRWV+UpNwSogcQ52YO+SqxSwlqZpk2mJi7ErkxGKcLiR9HbRyFhL827JHN+962O2g ONMK/dnWcZXu9pKRADHsKTF+qj6ssiThA9ZOgdfuT5fdLsJ9U/VUp2grUbMujXeO3A snhcwTFtvZBhSCkmsmRc8KOujggPnvcHJKZwSfqs= To: "smart@irtf.org" From: "Arnaud.Taddei.IETF" Reply-To: "Arnaud.Taddei.IETF" Message-ID: Feedback-ID: kou6vaSHQeY5dgFN9dCIYKo4z6hnnNmKuV4IBJw2wx4vSVPtftyhWUTBigri6zMJ3K1hxYJjI-3RAIGaizMt5g==:Ext:ProtonMail MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_7d0eb3576a37fe3960600ceecc428494" Archived-At: Subject: [Smart] CLESS side meeting notes X-BeenThere: smart@irtf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Stopping Malware And Researching Threats List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 31 Jul 2019 12:36:04 -0000 This is a multi-part message in MIME format. --b1_7d0eb3576a37fe3960600ceecc428494 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: base64 RGVhciBhbGwgZmluZCBiZWxvdyB0aGUgbm90ZXMgY29uc29saWRhdGVkIGR1cmluZyB0aGUgQ0xF U1Mgc2lkZSBtZWV0aW5nLgpNeSB0aGFua3MgdG8gS2lyc3R5IGZvciBiZWluZyBteSBzY3JpYmUg b24gbXkgRnJlbmNoLVN3aXNzIGNvbXB1dGVyIGtleWJvYXJkCkFzIHdlbGwsIEkgY2xlYXJseSBk byBub3QgbWFzdGVyaXNlIEdpdGh1YiBhbmQgSSBwcm9taXNlIHRvIGltcHJvdmUgbXlzZWxmIGhl cmUgYnV0LCBiZWluZyBpbiBob2xpZGF5cyBpbiAyIGRheXMsIHRoaXMgaXMgbm90IGdvaW5nIHRv IGhhcHBlbiBub3cuCgpJIHNpbmNlcmVseSBob3BlIHRoaXMgaGVscHMKClRoZSBzaWRlIG1lZXRp bmcgaGFwcGVuZWQgYXMgc2NoZWR1bGVkIGluIENvbGxlciBvbiBUaHVyc2RheSAyNXRoIGZyb20g NHBtIHVudGlsIDU6MjBwbSBhbmQgd2FzIGF0dGVuZGVkIGJ5IDEyIHBlcnNvbnMKVG8gaGVscCB0 aGUgbWVldGluZyBBcm5hdWQgVGFkZGVpIHByZXBhcmVkIHNvbWUgc2xpZGVzIHRoYXQgYXJlIGFs cmVhZHkgaW4gdGhlIHN5c3RlbSBhbmQgcHJvdmlkZSBhIGxvdCBvZiBkZXRhaWxzIHJlZ2FyZGlu ZyB0aGUgc3RhdHVzCmh0dHBzOi8vdHJhYy5pZXRmLm9yZy90cmFjL2lldGYvbWVldGluZy9hdHRh Y2htZW50L3dpa2kvMTA1c2lkZS1zbGlkZXMvQ0xFU1MtVVBEQVRFLVNNQVJULnBwdHgKClRoZSBn b2FsIG9mIHRoZSBtZWV0aW5nIHdhcyB0byBkaXNjdXNzIHRoZSBzdGF0dXMgb2YgMiBJLUQgYW5k IGdldCBmZWVkYmFjayBmcm9tIHRoZSB0ZWFtIG9uIHRoZSB3YXkgZm9yd2FyZApodHRwczovL2Rh dGF0cmFja2VyLmlldGYub3JnL2RvYy9kcmFmdC10YWRkZWktc21hcnQtY2xlc3MtaW50cm9kdWN0 aW9uLwpodHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9kcmFmdC1tY2ZhZGRlbi1zbWFy dC1lbmRwb2ludC10YXhvbm9teS1mb3ItY2xlc3MvCgpUaGUgbWVldGluZyBzdGFydGVkIHdpdGgg YSBmZXcgcmVtaW5kZXJzIHRoYXQgYXMgbGFzdCB5ZWFyLCB3ZSBnb3QgdGhlIG1lc3NhZ2UgZnJv bSBJRVRGIHRoYXQgc2VjdXJpdHkgY2FuIGJlIG9ubHkgZG9uZSBvbiB0aGUgZW5kcG9pbnRzLCB3 aXRoIG5vdGhpbmcgaW4gdGhlIG1pZGRsZS4gV2Ugd2VudCB0byByZXNlYXJjaCBvbiB0aGF0IHN0 YXRlbWVudCBhbmQsIGJlbGlldmluZyB0aGlzIHdhcyBmdWxseSBjb2RpZmllZCBzaW5jZSAzMCB5 ZWFycywgdG8gb3VyIHN1cnByaXNlIHRoZXJlIHdlcmUgcmVzZWFyY2ggbWF0ZXJpYWxzIGJ1dCBh bGwgcGFydGlhbCBhdCBiZXN0IHdpdGggbm8gMzYwIGRlZ3JlZSB2aWV3LgoKU28gd2UgcmVhbGl6 ZWQgdGhhdCBpdCB3b3VsZCBiZSBnb29kIHRvIGNyZWF0ZSBhbiBJLUQgYWJvdXQgQ2FwYWJpbGl0 aWVzIGFuZCBMaW1pdGF0aW9ucyBvZiBFbmRwb2ludCBTZWN1cml0eSBTb2x1dGlvbnMgKENMRVNT KSBmcm9tIGFuIHdob2xpc3RpYyBwZXJzcGVjdGl2ZSBhbmQgd2Ugd2VudCBvbiB0aGUgcmVtaW5k ZXJzIG9mIGl0cyBjb250ZW50LgoKV2Ugc3RhcnRlZCB3aXRoOgoKLSBFbmRwb2ludCBtb2RlbHMK Ci0gVGhlIHRocmVhdCBsYW5kc2NhcGUgZm9yIHRoZXNlIGVuZHBvaW50cwoKLSBFbmRwb2ludCBz ZWN1cml0eSBjYXBhYmlsaXRpZXM6IHdoYXQgY2FuIEkgZG8KCi0gQW4gaWRlYWwgZW5kcG9pbnQg c2VjdXJpdHk6IGlmIHdlIGNvdWxkIGFpbSBmb3IgaW4gYSBwZXJmZWN0IHdvcmxkCgotIERlZmVu Y2UgaW4gZGVwdGg6IHRoZSBub3Rpb24gb2Ygbm90IGhhdmluZyBhIHNpbmdsZSBwb2ludCBvZiBm YWlsdXJlIGFuZCBoYXZpbmcgbXVsdGlwbGUgb3Bwb3J0dW5pdGllcyB0byBwcmV2ZW50IGFuIGF0 dGFjawoKLSBMaW1pdGF0aW9ucyBvZiBlbmRwb2ludCBzZWN1cml0eTogZm91bmQgZnJvbSByZXNl YXJjaAoKLSBFdmlkZW5jZS1iYXNlZCBleGFtcGxlcyBmcm9tIHByb2R1Y3Rpb24gZGF0YSAob3Ro ZXJzIHdlbGNvbWUgdG8gYnJpbmcgZXhhbXBsZXMgZnJvbSB0aGVpciBkYXRhKQoKLSBSZWd1bGF0 b3J5IGFzcGVjdHMKCi0gSHVtYW4gcmlnaHRzIGFzcGVjdHMgKHN0aWxsIHRvIGRvKQoKWWV0IGl0 IHJldmVhbGVkIHRoYXQgdGhpcyB3YXMgcXVpdGUgb2YgYSBjb2xvc3NhbCB0YXNrIGFuZCBpdCBy ZXF1aXJlZCBzb21lIG9yZ2FuaXNhdGlvbiBvZiB0aGUgZG9jdW1lbnRzIGFuZCB0aGlzIGlzIHdo eSB3ZSBjb25zaWRlcmVkIHRvIHNwbGl0IDIgSS1Ecywgb25lIGZvciBlbmRwb2ludCBtb2RlbHMg KHRoZSBvbmUgb2YgTWFyayBNY0ZhZGRlbikgd2hpY2ggZ29hbCBpcyB0byBvZmZlciBhIGdvb2Qg bW9kZWwgb2YgYXR0YWNrIHN1cmZhY2UgYW5kIG9uZSBvbiB0aGUgdGhyZWF0IG1vZGVsIHdoaWNo IFNpbW9uIEVkd2FyZHMgKGNoYWlyIG9mIEFNVFNPKSBhZ3JlZWQgdG8gZHJpdmUuIFdlIHRoZXJl Zm9yZSBvcmdhbml6ZWQgYW4gb3BlbiBjYWxsIG9mIHRoZSA0dGggb2YgSnVuZSwgd2UgYWdyZWVk IDUgcHJvcG9zaXRpb25zIGFuZCB0aGUgc2Vjb25kIEktRCBhYm92ZSBpcyBpbiBmYWN0IHRoZSBl eGVjdXRpb24gb24gdGhlIGZpcnN0IHByb3Bvc2FsIHRvIHNwbGl0IHRoZSBlbmRwb2ludCBtb2Rl bCBpbiBhIHNlcGFyYXRlIEktRC4gTWFyayBNYWNGYWRkZW4gdm9sdW50ZWVyZWQgZm9yIHNwZWFy aGVhZGluZyB0aGlzIHdvcmsgYW5kIHN0YXJ0ZWQgYSBmaXJzdCB2ZXJzaW9uIG9mIHRoaXMgbmV3 IGRyYWZ0LgoKSW4gb3RoZXIgd29yZHMgd2Ugd2FudCB0byBoYXZlIHRoZSBsb2dpY2FsIGNvbnN0 cnVjdGlvbiBhcyBwZXIgYmVsb3cKCkVuZHBvaW50IG1vZGVscyAvIEF0dGFjayBTdXJmYWNlIMOg IE1pdGlnYXRpb24gKENMRVNTKSDDnyBUaHJlYXQgTW9kZWxzCgpPZiBjb3Vyc2UgdGhpcyBjcmVh dGVzIGEgc2NvcGUgcmUtdmFsaWRhdGlvbiBhcyB3ZSB1bmRlcnN0b29kIGEgZmV3IHRoaW5ncwoK UHJvYmxlbXMgdG8gd29yayBvbjogcGVvcGxlIHdhbnQgaXQgdG8gZ3JvdyBhbmQgd2UgZG9u4oCZ dCB3YW50IGl0IHRvIHNjb3BlIGNyZWVwLiBNYXliZSBDTEVTUyBpcyBqdXN0IGEgZnJhbWV3b3Jr LCBhbmQgb3RoZXIgc3BlY2lmaWMgdmVydGljYWxzIChpb3QsIG1vYmlsZSwgYnJvd3NlciwgZW50 ZXJwcmlzZSBzZXJ2ZXIpIGNhbiBjb21lIGFuZCBkbyByZXNlYXJjaCBvbiB0aGVpciBzcGVjaWZp YyBhcmVhLiBJdOKAmXMgZ29hbCBpcyBub3QgdG8gZ28gdG8gZXZlcnkgZGV0YWlscyBidXQgd2Ug cmVjb2duaXplIGl0IHNob3VsZCBhbGxvdyBvdGhlciByZXNlYXJjaGVycyBvbiBzcGVjaWZpYyBj b21iaW5hdGlvbnMgb2YgZW5kcG9pbnQsIHRocmVhdCBtb2RlbHMgYW5kIG1pdGlnYXRpb25zIHRv IGNvbm5lY3QgdGhlaXIgd29yayBpbiB0aGUgYmlnZ2VyIENMRVNTIGZyYW1ld29yay4gV2UgcmVj b2duaXplIGl0IGNvdWxkIGJlIGEgdmVyeSBmcnVpdGZ1bCBhcHByb2FjaCBpbiB0aGUgbG9uZyB0 ZXJtLiBDTEVTUyBncm91cCBvZiBJLURzIGlzIGluIGZhY3QgYmVjb21pbmcgYSBmcmFtZXdvcmsu CgpIb3c/CgpGb3IgU2VwdGVtYmVyLCB3ZWxsIHN0YXJ0IHdpdGggcGhvbmUgY2FsbHMgYW5kIEdv b2dsZSBkb2NzLiBJbiBDTEVTUywgd2UgYXJlIGxvb2tpbmcgdG8gd29yayB0b2dldGhlciBpbiBh IG5pY2Ugd2F5IGFuZCBub3Qgd2l0aCBob3JyaWJsZSBjb21iYXRpdmUgYXRtb3NwaGVyZS4gT2Yg Y291cnNlIHJvYnVzdCByZXZpZXdzIGFyZSBnb29kIGFuZCB3ZWxjb21lLCBidXQgZ29vZCByZXZp ZXdzIGFyZSBub3QgcnVkZSBvciBob3N0aWxlLgoKV2hhdCBpcyB0aGUgcGxhbj8KClBsYW4gUEFS VCAxOiBNYXJrIE1jRmFkZGVuIHdyb3RlIGVuZHBvaW50LXRheG9ub215LWNsZXNzIHRvIGRlc2Ny aWJlIHRoZSBlbmRwb2ludHMgbW9yZSBhY2N1cmF0ZWx5IGFuZCBnaXZlIGEgbGFuZ3VhZ2UgZm9y IHdvcmtpbmcgd2l0aCB0aGVzZS4gUmVhY2ggb3V0IHRvIEhlbmsgdG8gd29yayBvbiB0aGlzLiBT dWdnZXN0aW9uIHRvIG1ha2UgdGhpbmdzIGxlc3MgcXVhbGl0YXRpdmUgYW5kIG1vcmUgcXVhbnRp dGF0aXZlLiBEdWUgdG8gdmlydHVhbGl6YXRpb24gYW5kIGNvbnRhaW5lcml6YXRpb24sIHRoaXMg dmFyaWVzIOKAkyBJb1QgY2hhcmFjdGVyaXN0aWMgd29yayBkb25lIGVsc2V3aGVyZSAoRGF2aWQg TklTVCBnaXZlcyByZWZlcmVuY2U6IFJGQyA3MjI4KS4gSGUgcGxhbnMgdG8gaXNzdWUgcmV2aXNp b24gaW4gQXVndXN0IGJhc2VkIG9uIGNvbW1lbnRzIGZyb20gTW9udHJlYWw7IGFuZCBnZXQgYW5v dGhlciB2ZXJzaW9uIGZvciB0aGlzIGJlZm9yZSBTaW5nYXBvcmUuIE5lZWRzIHRvIGdyb3VwIHZp cnR1YWxpemVkIGVudmlyb25tZW50cyB3aXRoIHRoZWlyIGRldmljZXMsIGhhdmUgbW9yZSBkZXRh aWwgb24gdGhlIHRheG9ub215LiBTaG91bGQgaXQgYmUgYSB0YXhvbm9teSBvciBhIGNhdGVnb3Jp emF0aW9uPyAoSG93IGRlZXAgdG8gZ28/KQoKSG93IGNhbiB5b3UgdXNlIGl0PyBHaXZlbiBhIGRl dmljZSwgaG93IGRvIEkgY2F0ZWdvcmlzZSBpdD8gKENyZWF0ZSBzb21lIGRlY2lzaW9uIHRyZWU/ KSBJcyBzb2Z0d2FyZSBpbiB0cnVzdGVkL3VudHJ1c3RlZCBzeXN0ZW0/CgpPbiB3aGljaCBsZXZl bCBvZiBkZXRhaWxzIHRvIHJlYWNoPyBGb3IgZXhhbXBsZSB0aGlzIGlzIGEgcmVhbCBxdWVzdGlv biBmb3IgdGhlIGVuZHBvaW50IG1vZGVsczogVG9kYXkgdGhlIGZlZWRiYWNrIGlzIHRoYXQgdGhl IGRyYWZ0IGlzIHBlcmhhcHMgdG9vIHNpbXBsaXN0aWMgYW5kIGlzIG1vcmUgYSBjYXRlZ29yaXph dGlvbiB0aGFuIGEgdGF4b25vbXkuIE1hcmsgTWFjRmFkZGVuIG9mIGNvdXJzZSBjb25zaWRlcmVk IHRob3NlIGFzcGVjdHMgYnV0IGhvdyB0byBkZWZpbmUgd2hpY2ggbGV2ZWwgb2YgZGV0YWlscyBh bmQgd2hpY2ggYXNwZWN0cyB0byBwcmlvcml0aXNlPyBUb2RheSB3ZSBhcmUgbW9yZSBvbiBxdWFs aXRhdGl2ZSBhc3BlY3RzIHZzIHF1YW50aXRhdGl2ZSB0byByZXByZXNlbnQgZW5kcG9pbnRzLiBB bm90aGVyIGNvbnNpZGVyYXRpb24gaXMgdGhhdCBpbiBmYWN0IENMRVNTIGNhbiBiZSB0aGUgbGlt aXRpbmcgZmFjdG9yIHRvIHRoZSByYWNlIHRvIGRldGFpbHMuIEluZGVlZCBBcm5hdWQgVGFkZGVp IGV4cGxhaW5lZCB0aGF0IHRoZSBjcml0ZXJpYSBjb3VsZCBiZSBhcyBzaW1wbGUgYXMgbG9va2lu ZyBhdCB0aGUgZXhhbXBsZXMgdGhhdCBDTEVTUyBpcyBjYWxsaW5nIG91dCBhbmQgd2hlbiBjb25z aWRlcmluZyB0aGUgaW5mZXJyZWQgdGF4b25vbXkgdGhhdCB0aGVzZSBleGFtcGxlcyBleHByZXNz LCBpZiB0aGUgZW5kcG9pbnQgSS1EIGlzIG5vdCBvZmZlcmluZyB0aGUgdGF4b25vbXkgdGhhdCBt ZWFucyB3ZSBoYXZlIGEgcHJvYmxlbSBlaXRoZXIgaW4gZGVwdGggb2YgdGhlIHRheG9ub215IHRy ZWUgb3IgaW4gd2lkdGggb2YgdGhlIHRheG9ub215IHRyZWUuIFRoaXMgZWNob2VzIGEgcmVtYXJr IGZyb20gSGVuayBpbiB0aGUgU01BUlQgc2lkZSBtZWV0aW5nIGluIHRoZSBtb3JuaW5nLCBob3Bp bmcgSGVuayBjYW4gc3VwcG9ydCBvdXIgVGF4b25vbXkgYXBwcm9hY2ggaGVyZQoKTWFyayB3aWxs IHdvcmsgb24gaXQgaW4gQXVndXN0IGFuZCB3ZSB3aWxsIHRha2UgaXQgZnJvbSB0aGVyZQoKUGxh biBQQVJUIDI6IHBsYW4gdG8gZGV0YWNoIHRocmVhdCBsYW5kc2NhcGUgKHJlYWxseSBoYXJkKSDi gJMgc2VjdGlvbiA2IOKAkyB3aGljaCBpcyB0aGUgaW50ZW50aW9uIG9mIHRoZSBhdHRhY2sgKGRv IG5vdCBtaXggdGhpcyB3aXRoIHRoZSB2dWxuZXJhYmlsaXR5IHRoYXQgaXMgYXR0YWNrZWQpLiBU aGlzIHdvdWxkIGhhdmUgdG8gYmUgZG9uZSBwZXIgdGF4b25vbXkgY2xhc3MsIHNwZWNpZmljIHRv IGVhY2ggdGF4b25vbXkgcGFydC4gVGhlIGF0dGFjayBzdXJmYWNlIGlzIGRpZmZlcmVudCBkZXBl bmRpbmcgb24gdGhlIGVuZHBvaW50IOKAkyB3b3VsZCBpbmNsdWRlIHRoZSBhdHRhY2sgc3VyZmFj ZSBhbmQgbWl0aWdhdGlvbnMuIFRoaXMgaXMgdHJ1ZSAtIGRpZmZlcmVudCBkZXZpY2VzIGhhdmUg ZGlmZmVyZW50IGNhcGFiaWxpdGllcywgcGVvcGxlIGFzc3VtZSBldmVyeSBlbmRwb2ludCBpcyBh IGJyb3dzZXIvbGFwdG9wIG9yIHNlcnZlciDigJMgbm90IGEgY29uc3RyYWluZWQgSW9UIGRldmlj ZSB0aGF0IHdvbnQgYmUgdXBkYXRlZCwgb3IgbGVnYWN5LiBTbyB3ZSBoYXZlIHRvIGJ1aWxkIGEg bGFuZ3VhZ2Ugd2UgY2FuIHRhbGsgYWJvdXQgdG8gYnJpbmcgaW4gdGhlc2UgYXNwZWN0cy4KCi0g V2hpY2ggb25lIGlzIGJlc3QgdG8gZG8gZmlyc3Q/IFRoZSB0cmFkaXRpb25hbCBlbmRwb2ludCBp cyB0aGUgZWFzaWVzdCBidXQgbm90IHRoZSBtb3N0IHZhbHVhYmxlIGFuZCBmZWVkcyBpbnRvIHRo ZSBjb25maXJtYXRpb24gYmlhcy4gSGlnaGx5IGNvbnN0cmFpbmVkIGRldmljZXMgd291bGQgYWxz byBiZSBlYXN5LWlzaC4gTW9iaWxlPwoKLSBNZXNoLWJhc2VkIHNlbnNvciBuZXR3b3JrLCBpbiBh IGNhciDigJMgaXMgdGhlIGVuZHBvaW50IHRoZSB0eXJlIHByZXNzdXJlIG1vbml0b3Igb3IgdGhl IEVDVT8KClBsYW4gUEFSVCAzOiBEZXZlbG9wIHRoZSBodW1hbiByaWdodHMgc2VjdGlvbiAoRGF2 ZSBNY0dyZXcsIENpc2NvIC8gTWFsbG9yeSwgQXJ0aWNsZSAxOSkKCi0gQWdyZWVkIHRvIGRldmVs b3AgdGhpcyB0b2dldGhlcgoKLSBJbmNsdWRlcyByZWd1bGF0b3J5IGNvbXBsaWFuY2UKCi0gR2Vy bWFuIGdvdmVybm1lbnQgQnVuZGVzdHJveWFuIChHb3Zlcm5tZW50IFRyb2phbiksIGZyb20gc3Vj aCBhIHByaXZhY3ktZm9jdXNlZCBjb3VudHJ5CgpQbGFuIFBBUlQgNDogaW5jbHVkZSBtb3JlIHBy b2R1Y3Rpb24gZGF0YSAoSkosIENpc2NvIC8gRGVsbCAvIE1jQWZlZSkKCi0gUmVzcGVjdGluZyBh bm9ueW1pdHkKCi0gTWFrZSBhIGZyYW1ld29yayBmb3Igc2VsZWN0aW9uIG9mIGRhdGEKCi0gQWdy ZWUgbWV0aG9kb2xvZ3kgdG8gc2VsZWN0IGRhdGEgZm9yIGhvbW9nZW5laXR5IGFuZCByZWFzb25h YmxlIGNvbXBhcmlzb24g4oCTIHBvc3NpYmxlIGRldGFjaCBpbiBmdXR1cmUgaWYgaXQgYmVjb21l cyB0b28gYmlnPwoKUGxhbiBQQVJUIDU6IEVjb25vbWljczogaWYgeW91IHB1c2ggZXZlcnl0aGlu ZyB0byB0aGUgZW5kcG9pbnQsIHdobyBwYXlzPwoKLSBTZWN1cml0eSBwYXlzLiBObyBJbSBraWRk aW5nOiB0aGlzIGlzIGFib3V0IHdobyBwYXlzIHRvZGF5IGFuZCB0b21vcnJvdywgaG93IG11Y2gg d2lsbCBiZT8KCi0gQ29zdCBvZiBzZWN1cmluZyB2cyBub3Qgc2VjdXJpbmcg4oCTIGZvciB3aGlj aCByZXN1bHQKCk90aGVyIHRvIGRldmVsb3AgQ0xFU1MgZ2VuZXJhbGx5OiBmZWVkYmFjayB0byBp bmNvcnBvcmF0ZSwgZGV2ZWxvcCBpbnRyaW5zaWMgY2FwYWJpbGl0aWVzIChIYW5uZXMgVHNjaG9l bmZpZywgQVJNIC0gbWVudGlvbmVkIGFib3V0IGNoaXAgY2FwYWJpbGl0eSBpbiBzYWFnIOKAkyB0 byBmb2xsb3ctdXApLCBicmluZyBpbiB3b3JrIGZyb20gVEVFUCAoZnJvbSByZXNlYXJjaGVyKQoK SW5kZWVkIENvbnNpZGVyYXRpb25zIGFib3V0IGNvbnN0cmFpbmVkIGRldmljZXMgd2VyZSBleHBy ZXNzZWQgYW5kIHdlIHJlbWVtYmVyIHdoYXQgSGFubmVzIChBUk0pIHdvcmtpbmcgb24gdGhlIFRF RVAgd29ya2luZyBncm91cCBleHByZXNzZWQgYXQgdGhlIFNBQUcgbWVldGluZyBhYm91dCBhbGwg dGhlIHNlY3VyaXR5IHRoYXQgQVJNIGFuZCBvdGhlcnMgcHV0IGF0IHZhcmlvdXMgbGV2ZWxzIGFz IGludHJpbnNpbmMgc2VjdXJpdHkgYXNwZWN0cy4gQXJuYXVkIGV4cGxhaW5lZCB0aGF0IFRFRVAg d2FzIGltcG9ydGFudCAoTWluZyBQZWkgb25lIG9mIHRoZSBhdXRob3JzIGJlaW5nIGF0IFN5bWFu dGVjIHRvbykgYW5kIHRoYXQgQ0xFU1MgcmVjb2duaXplcyAoaW4gdGhlIGRvY3VtZW50KSB0aGF0 IHRoZSBtYXNzaXZlIGVmZm9ydCB0aGF0IFRFRVAgZGlkIHRvIHVuaWZ5IHRoZSBlbmRwb2ludHMg ZnJvbSBib3RoIHNpZGVzIG9mIHRoZSBjb21tdW5pY2F0aW9uOiBVc2VyIEVxdWlwbWVudHMvSW9U IGJ1dCBhcyB3ZWxsIEhvc3RzIGZyb20gcGh5c2ljYWwgdG8gc2VydmVyLWxlc3MuIFRoZXJlIGlz IGFzIHdlbGwgYW5vdGhlciBtZW1iZXIgb2YgVEVFUCB3aG8gbWFkZSBhbiBpbnRlcmVzdGluZyBJ LUQgZm9yIGNvbnNpZGVyYXRpb24gRmFpYmlzaCBTb3JpbiBbaHR0cHM6Ly9kYXRhdHJhY2tlci5p ZXRmLm9yZy9kb2MvZHJhZnQtZmFpYmlzaC1pb3QtZGRvcy11c2VjYXNlcy9dKGh0dHBzOi8vY2xp Y2t0aW1lLnN5bWFudGVjLmNvbS8zTHFnUXlCejFlUXFyNmgxTUpBeDZOdzdWYz91PWh0dHBzJTNB JTJGJTJGZGF0YXRyYWNrZXIuaWV0Zi5vcmclMkZkb2MlMkZkcmFmdC1mYWliaXNoLWlvdC1kZG9z LXVzZWNhc2VzJTJGKQoKQ0xFU1MgaW4gSVJURiAvIElFVEYgLyBzaG91bGQgaXQgZ28gb3V0c2lk ZSB0aGlzIGNvbW11bml0eSA/IFRheG9ub215IGNvdWxkIGJlIHVzZWQgaW4gU0FDTT8gV2lkZXIg dGhhbiBTQUNNLiBPcHBvcnR1bml0eSB0byBzdGFiaWxpemUgbGFuZ3VhZ2UgYWNyb3NzIFdHcy4g Q291bGQgaGF2ZSBiZWVuIHVzZWQgaW4gU0FDTSwgVEVFUCwgUkFUUyDigJMgcGVyaGFwcyBpdCBz aG91bGQgYmUgcHJlc2VudGVkIGF0IHRoZXNlIGdyb3VwcyBmb3IgaW5wdXQuCgpDb25jbHVzaW9u CgotIE1hcmsgd2lsbCB3b3JrIG9uIGhpcyBJLUQgaW4gQXVndXN0CgotIFN5bWFudGVjIHdpbGwg d29yayB3aXRoIERCIGluIEF1Z3VzdAoKLSBBcm5hdWQgd2lsbCBvcmdhbml6ZSBhIGNhbGwgZm9y IFNlcHRlbWJlciBhbmQgY29uc2lkZXJzIHRoZSBmb2xsb3dpbmcgdGFza3Mgb24gdG9wIG9mIHdo YXQgaXMgZGVzY3JpYmVkIGluIHRoZSBzbGlkZSBkZWNrCgotIG1lZXQgd2l0aCBBTVRTTyBhdCB0 aGVpciBtZWV0aW5nIDMxc3Qgb2YgU2VwLCAxc3Qgb2YgT2N0b2JlciBhbmQgaGVscCB0aGVtIHN0 YXJ0IHRoZWlyIEktRAoKLSBBcm5hdWQgYW5kIERhdmlkIE1jR3JldyB3aWxsIHdvcmsgb24gdGhl IEh1bWFuIFJpZ2h0cyBzZWN0aW9uCgotIHN0YXJ0IHRvIHJldmlldyBTQUNNLCBSQVRTLCBURUVQ IGFuZCBvdGhlciBJRVRGIGdyb3VwIHRoYXQgc3BlYWsgYWJvdXQgdGhlIGVuZHBvaW50CgotIGNv bnRhY3QgSGFubmVzIHRocm91Z2ggTWluZwoKLSBjb250YWN0IEZhaWJpc2gKCi0gd29yayB3aXRo IEphcmkgQXJra28gZnJvbSBoaXMgSS1EIGFuZCBzZWUgaWYgdGhlcmUgaXMgYSBjaGFuY2UgZm9y IGFuIGludGVyZmFjaW5nIGJldHdlZW4gdGhlIGhpcyBJLUQgYW5kIHRoZSBDTEVTUyBncm91cCBv ZiBJLURzCgpTZW50IHdpdGggW1Byb3Rvbk1haWxdKGh0dHBzOi8vcHJvdG9ubWFpbC5jb20pIFNl Y3VyZSBFbWFpbC4= --b1_7d0eb3576a37fe3960600ceecc428494 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: base64 PGRpdj5EZWFyIGFsbCBmaW5kIGJlbG93IHRoZSBub3RlcyBjb25zb2xpZGF0ZWQgZHVyaW5nIHRo ZSBDTEVTUyBzaWRlIG1lZXRpbmcuJm5ic3A7PGJyPjwvZGl2PjxkaXY+TXkgdGhhbmtzIHRvIEtp cnN0eSBmb3IgYmVpbmcgbXkgc2NyaWJlIG9uIG15IEZyZW5jaC1Td2lzcyBjb21wdXRlciBrZXli b2FyZDxicj48L2Rpdj48ZGl2PkFzIHdlbGwsIEkgY2xlYXJseSBkbyBub3QgbWFzdGVyaXNlIEdp dGh1YiBhbmQgSSBwcm9taXNlIHRvIGltcHJvdmUgbXlzZWxmIGhlcmUgYnV0LCBiZWluZyBpbiBo b2xpZGF5cyBpbiAyIGRheXMsIHRoaXMgaXMgbm90IGdvaW5nIHRvIGhhcHBlbiBub3cuPGJyPjwv ZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+SSBzaW5jZXJlbHkgaG9wZSB0aGlzIGhlbHBzPGJyPjwv ZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+PHNwYW4gc3R5bGU9ImZvbnQt c2l6ZToxMXB0Ij5UaGUgc2lkZSBtZWV0aW5nIGhhcHBlbmVkIGFzIHNjaGVkdWxlZCBpbiBDb2xs ZXIgb24gVGh1cnNkYXkgMjU8c3VwPnRoPC9zdXA+IGZyb20gNHBtIHVudGlsIDU6MjBwbSBhbmQg d2FzIGF0dGVuZGVkIGJ5IDEyIHBlcnNvbnM8L3NwYW4+PGJyPjwvZGl2PjxkaXY+PHNwYW4gc3R5 bGU9ImZvbnQtc2l6ZToxMXB0Ij5UbyBoZWxwIHRoZSBtZWV0aW5nIEFybmF1ZCBUYWRkZWkgcHJl cGFyZWQgc29tZSBzbGlkZXMgdGhhdCBhcmUgYWxyZWFkeQ0KaW4gdGhlIHN5c3RlbSBhbmQgcHJv dmlkZSBhIGxvdCBvZiBkZXRhaWxzIHJlZ2FyZGluZyB0aGUgc3RhdHVzPC9zcGFuPjxicj48L2Rp dj48ZGl2PjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+PGEgaHJlZj0iaHR0cHM6Ly90cmFj LmlldGYub3JnL3RyYWMvaWV0Zi9tZWV0aW5nL2F0dGFjaG1lbnQvd2lraS8xMDVzaWRlLXNsaWRl cy9DTEVTUy1VUERBVEUtU01BUlQucHB0eCI+PHNwYW4gc3R5bGU9Im1zby1hbnNpLWxhbmd1YWdl OkVOLVVTIiBsYW5nPSJFTi1VUyI+aHR0cHM6Ly90cmFjLmlldGYub3JnL3RyYWMvaWV0Zi9tZWV0 aW5nL2F0dGFjaG1lbnQvd2lraS8xMDVzaWRlLXNsaWRlcy9DTEVTUy1VUERBVEUtU01BUlQucHB0 eDwvc3Bhbj48L2E+PC9zcGFuPjxicj48L2Rpdj48ZGl2Pjxicj48L2Rpdj48ZGl2PjxzcGFuIHN0 eWxlPSJmb250LXNpemU6MTFwdCI+VGhlIGdvYWwgb2YgdGhlIG1lZXRpbmcgd2FzIHRvIGRpc2N1 c3MgdGhlIHN0YXR1cyBvZiAyIEktRCBhbmQgZ2V0DQpmZWVkYmFjayBmcm9tIHRoZSB0ZWFtIG9u IHRoZSB3YXkgZm9yd2FyZDwvc3Bhbj48YnI+PC9kaXY+PGRpdj48c3BhbiBzdHlsZT0iZm9udC1z aXplOjExcHQiPjxhIGhyZWY9Imh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2RyYWZ0 LXRhZGRlaS1zbWFydC1jbGVzcy1pbnRyb2R1Y3Rpb24vIj48c3BhbiBzdHlsZT0ibXNvLWFuc2kt bGFuZ3VhZ2U6RU4tVVMiIGxhbmc9IkVOLVVTIj5odHRwczovL2RhdGF0cmFja2VyLmlldGYub3Jn L2RvYy9kcmFmdC10YWRkZWktc21hcnQtY2xlc3MtaW50cm9kdWN0aW9uLzwvc3Bhbj48L2E+PC9z cGFuPjxicj48L2Rpdj48ZGl2PjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+PGEgaHJlZj0i aHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2MvZHJhZnQtbWNmYWRkZW4tc21hcnQtZW5k cG9pbnQtdGF4b25vbXktZm9yLWNsZXNzLyI+aHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9k b2MvZHJhZnQtbWNmYWRkZW4tc21hcnQtZW5kcG9pbnQtdGF4b25vbXktZm9yLWNsZXNzLzwvYT48 L3NwYW4+PGJyPjwvZGl2PjxkaXY+PGJyPjwvZGl2PjxkaXY+PHNwYW4gc3R5bGU9ImZvbnQtc2l6 ZToxMXB0Ij5UaGUgbWVldGluZyBzdGFydGVkIHdpdGggYSBmZXcgcmVtaW5kZXJzIHRoYXQgYXMg bGFzdCB5ZWFyLCB3ZSBnb3QgdGhlIDwvc3Bhbj48c3BhbiBzdHlsZT0iY29sb3I6YmxhY2siPjxz cGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+bWVzc2FnZSBmcm9tIElFVEYgdGhhdCBzZWN1cml0 eSBjYW4gYmUgb25seSBkb25lIG9uIHRoZSBlbmRwb2ludHMsIHdpdGgNCm5vdGhpbmcgaW4gdGhl IG1pZGRsZS4gV2Ugd2VudCB0byByZXNlYXJjaCBvbiB0aGF0IHN0YXRlbWVudCBhbmQsIGJlbGll dmluZw0KdGhpcyB3YXMgZnVsbHkgY29kaWZpZWQgc2luY2UgMzAgeWVhcnMsIHRvIG91ciBzdXJw cmlzZSB0aGVyZSB3ZXJlIHJlc2VhcmNoIG1hdGVyaWFscw0KYnV0IGFsbCBwYXJ0aWFsIGF0IGJl c3Qgd2l0aCBubyAzNjAgZGVncmVlIHZpZXcuPC9zcGFuPjwvc3Bhbj48YnI+PC9kaXY+PGRpdj48 YnI+PC9kaXY+PGRpdj48c3BhbiBzdHlsZT0iY29sb3I6YmxhY2siPjxzcGFuIHN0eWxlPSJmb250 LXNpemU6MTFwdCI+U28gd2UgcmVhbGl6ZWQgdGhhdCBpdCB3b3VsZCBiZSBnb29kIHRvIGNyZWF0 ZQ0KYW4gSS1EIGFib3V0IENhcGFiaWxpdGllcyBhbmQgTGltaXRhdGlvbnMgb2YgRW5kcG9pbnQg U2VjdXJpdHkgU29sdXRpb25zIChDTEVTUykNCmZyb20gYW4gd2hvbGlzdGljIHBlcnNwZWN0aXZl IGFuZCB3ZSB3ZW50IG9uIHRoZSByZW1pbmRlcnMgb2YgaXRzIGNvbnRlbnQuPC9zcGFuPjwvc3Bh bj48YnI+PC9kaXY+PGRpdj48YnI+PC9kaXY+PGRpdj48c3BhbiBzdHlsZT0iY29sb3I6YmxhY2si PjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+V2Ugc3RhcnRlZCB3aXRoOjwvc3Bhbj48L3Nw YW4+PGJyPjwvZGl2Pjx1bCB0eXBlPSJkaXNjIiBzdHlsZT0ibWFyZ2luLXRvcDowY20iPjxsaSBz dHlsZT0iY29sb3I6YmxhY2s7bXNvLWxpc3Q6bDQgbGV2ZWwxIGxmbzE7dGFiLXN0b3BzOmxpc3Qg MzYuMHB0Ij48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPkVuZHBvaW50IG1vZGVsczwvc3Bh bj48YnI+PC9saT48bGkgc3R5bGU9ImNvbG9yOmJsYWNrO21zby1saXN0Omw0IGxldmVsMSBsZm8x O3RhYi1zdG9wczpsaXN0IDM2LjBwdCI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0Ij5UaGUg dGhyZWF0IGxhbmRzY2FwZSBmb3IgdGhlc2UgZW5kcG9pbnRzPC9zcGFuPjxicj48L2xpPjxsaSBz dHlsZT0iY29sb3I6YmxhY2s7bXNvLWxpc3Q6bDQgbGV2ZWwxIGxmbzE7dGFiLXN0b3BzOmxpc3Qg MzYuMHB0Ij48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPkVuZHBvaW50IHNlY3VyaXR5IGNh cGFiaWxpdGllczogd2hhdCBjYW4gSSBkbzwvc3Bhbj48YnI+PC9saT48bGkgc3R5bGU9ImNvbG9y OmJsYWNrO21zby1saXN0Omw0IGxldmVsMSBsZm8xO3RhYi1zdG9wczpsaXN0IDM2LjBwdCI+PHNw YW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0Ij5BbiBpZGVhbCBlbmRwb2ludCBzZWN1cml0eTogaWYg d2UgY291bGQgYWltIGZvciBpbiBhIHBlcmZlY3Qgd29ybGQ8L3NwYW4+PGJyPjwvbGk+PGxpIHN0 eWxlPSJjb2xvcjpibGFjazttc28tbGlzdDpsNCBsZXZlbDEgbGZvMTt0YWItc3RvcHM6bGlzdCAz Ni4wcHQiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+RGVmZW5jZSBpbiBkZXB0aDogdGhl IG5vdGlvbiBvZiBub3QgaGF2aW5nIGEgc2luZ2xlIHBvaW50IG9mIGZhaWx1cmUNCiAgICAgYW5k IGhhdmluZyBtdWx0aXBsZSBvcHBvcnR1bml0aWVzIHRvIHByZXZlbnQgYW4gYXR0YWNrPC9zcGFu Pjxicj48L2xpPjxsaSBzdHlsZT0iY29sb3I6YmxhY2s7bXNvLWxpc3Q6bDQgbGV2ZWwxIGxmbzE7 dGFiLXN0b3BzOmxpc3QgMzYuMHB0Ij48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPkxpbWl0 YXRpb25zIG9mIGVuZHBvaW50IHNlY3VyaXR5OiBmb3VuZCBmcm9tIHJlc2VhcmNoPC9zcGFuPjxi cj48L2xpPjxsaSBzdHlsZT0iY29sb3I6YmxhY2s7bXNvLWxpc3Q6bDQgbGV2ZWwxIGxmbzE7dGFi LXN0b3BzOmxpc3QgMzYuMHB0Ij48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPkV2aWRlbmNl LWJhc2VkIGV4YW1wbGVzIGZyb20gcHJvZHVjdGlvbiBkYXRhIChvdGhlcnMgd2VsY29tZSB0byBi cmluZw0KICAgICBleGFtcGxlcyBmcm9tIHRoZWlyIGRhdGEpPC9zcGFuPjxicj48L2xpPjxsaSBz dHlsZT0iY29sb3I6YmxhY2s7bXNvLWxpc3Q6bDQgbGV2ZWwxIGxmbzE7dGFiLXN0b3BzOmxpc3Qg MzYuMHB0Ij48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPlJlZ3VsYXRvcnkgYXNwZWN0czwv c3Bhbj48YnI+PC9saT48bGkgc3R5bGU9ImNvbG9yOmJsYWNrO21zby1saXN0Omw0IGxldmVsMSBs Zm8xO3RhYi1zdG9wczpsaXN0IDM2LjBwdCI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0Ij5I dW1hbiByaWdodHMgYXNwZWN0cyAoc3RpbGwgdG8gZG8pPC9zcGFuPjxicj48L2xpPjwvdWw+PHA+ PHNwYW4gc3R5bGU9ImNvbG9yOmJsYWNrIj48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPlll dCBpdCByZXZlYWxlZCB0aGF0IHRoaXMgd2FzIHF1aXRlIG9mIGENCmNvbG9zc2FsIHRhc2sgYW5k IGl0IHJlcXVpcmVkIHNvbWUgb3JnYW5pc2F0aW9uIG9mIHRoZSBkb2N1bWVudHMgYW5kIHRoaXMg aXMNCndoeSB3ZSBjb25zaWRlcmVkIHRvIHNwbGl0IDIgSS1Ecywgb25lIGZvciBlbmRwb2ludCBt b2RlbHMgKHRoZSBvbmUgb2YgTWFyaw0KTWNGYWRkZW4pIHdoaWNoIGdvYWwgaXMgdG8gb2ZmZXIg YSBnb29kIG1vZGVsIG9mIGF0dGFjayBzdXJmYWNlIGFuZCBvbmUgb24gdGhlDQp0aHJlYXQgbW9k ZWwgd2hpY2ggU2ltb24gRWR3YXJkcyAoY2hhaXIgb2YgQU1UU08pIGFncmVlZCB0byBkcml2ZS4g V2UgdGhlcmVmb3JlDQpvcmdhbml6ZWQgYW4gPC9zcGFuPjwvc3Bhbj48c3BhbiBzdHlsZT0iZm9u dC1zaXplOjExcHQiPm9wZW4gY2FsbCBvZiB0aGUgNDxzdXA+dGg8L3N1cD4gb2YgSnVuZSwgd2Ug YWdyZWVkIDUgcHJvcG9zaXRpb25zIGFuZA0KdGhlIHNlY29uZCBJLUQgYWJvdmUgaXMgaW4gZmFj dCB0aGUgZXhlY3V0aW9uIG9uIHRoZSBmaXJzdCBwcm9wb3NhbCB0byBzcGxpdA0KdGhlIGVuZHBv aW50IG1vZGVsIGluIGEgc2VwYXJhdGUgSS1ELiBNYXJrIE1hY0ZhZGRlbiB2b2x1bnRlZXJlZCBm b3Igc3BlYXJoZWFkaW5nDQp0aGlzIHdvcmsgYW5kIHN0YXJ0ZWQgYSBmaXJzdCB2ZXJzaW9uIG9m IHRoaXMgbmV3IGRyYWZ0Ljwvc3Bhbj48YnI+PC9wPjxwPjxzcGFuIHN0eWxlPSJjb2xvcjpibGFj ayI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0Ij5JbiBvdGhlciB3b3JkcyB3ZSB3YW50IHRv IGhhdmUgdGhlIGxvZ2ljYWwgY29uc3RydWN0aW9uDQphcyBwZXIgYmVsb3c8L3NwYW4+PC9zcGFu Pjxicj48L3A+PGRpdj48c3BhbiBzdHlsZT0iY29sb3I6YmxhY2siPjxzcGFuIHN0eWxlPSJmb250 LXNpemU6MTFwdCI+RW5kcG9pbnQgbW9kZWxzIC8gQXR0YWNrIFN1cmZhY2UgPC9zcGFuPjxzcGFu IHN0eWxlPSJmb250LWZhbWlseTpXaW5nZGluZ3MiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFw dCI+PHNwYW4gc3R5bGU9Im1zby1jaGFyLXR5cGU6c3ltYm9sO21zby1zeW1ib2wtZm9udC1mYW1p bHk6V2luZ2RpbmdzIj7DoDwvc3Bhbj48L3NwYW4+PC9zcGFuPjxzcGFuIHN0eWxlPSJmb250LXNp emU6MTFwdCI+IE1pdGlnYXRpb24gKENMRVNTKSA8L3NwYW4+PHNwYW4gc3R5bGU9ImZvbnQtZmFt aWx5OldpbmdkaW5ncyI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0Ij48c3BhbiBzdHlsZT0i bXNvLWNoYXItdHlwZTpzeW1ib2w7bXNvLXN5bWJvbC1mb250LWZhbWlseToNCldpbmdkaW5ncyI+ w588L3NwYW4+PC9zcGFuPjwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPiBUaHJl YXQgTW9kZWxzPC9zcGFuPjwvc3Bhbj48YnI+PC9kaXY+PGRpdj48YnI+PC9kaXY+PGRpdj48c3Bh biBzdHlsZT0iY29sb3I6YmxhY2siPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+T2YgY291 cnNlIHRoaXMgY3JlYXRlcyBhIHNjb3BlIHJlLXZhbGlkYXRpb24gYXMNCndlIHVuZGVyc3Rvb2Qg YSBmZXcgdGhpbmdzPC9zcGFuPjwvc3Bhbj48YnI+PC9kaXY+PGRpdj48YnI+PC9kaXY+PGRpdj48 c3BhbiBzdHlsZT0iY29sb3I6YmxhY2siPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+UHJv YmxlbXMgdG8gd29yayBvbjogcGVvcGxlIHdhbnQgaXQgdG8gZ3JvdyBhbmQgd2UNCmRvbuKAmXQg d2FudCBpdCB0byBzY29wZSBjcmVlcC4gTWF5YmUgQ0xFU1MgaXMganVzdCBhIGZyYW1ld29yaywg YW5kIG90aGVyDQpzcGVjaWZpYyB2ZXJ0aWNhbHMgKGlvdCwgbW9iaWxlLCBicm93c2VyLCBlbnRl cnByaXNlIHNlcnZlcikgY2FuIGNvbWUgYW5kIGRvDQpyZXNlYXJjaCBvbiB0aGVpciBzcGVjaWZp YyBhcmVhLiBJdOKAmXMgZ29hbCBpcyBub3QgdG8gZ28gdG8gZXZlcnkgZGV0YWlscyBidXQgd2UN CnJlY29nbml6ZSBpdCBzaG91bGQgYWxsb3cgb3RoZXIgcmVzZWFyY2hlcnMgb24gc3BlY2lmaWMg Y29tYmluYXRpb25zIG9mDQplbmRwb2ludCwgdGhyZWF0IG1vZGVscyBhbmQgbWl0aWdhdGlvbnMg dG8gY29ubmVjdCB0aGVpciB3b3JrIGluIHRoZSBiaWdnZXINCkNMRVNTIGZyYW1ld29yay4gV2Ug cmVjb2duaXplIGl0IGNvdWxkIGJlIGEgdmVyeSBmcnVpdGZ1bCBhcHByb2FjaCBpbiB0aGUgbG9u Zw0KdGVybS4gQ0xFU1MgZ3JvdXAgb2YgSS1EcyBpcyBpbiBmYWN0IGJlY29taW5nIGEgZnJhbWV3 b3JrLjwvc3Bhbj48L3NwYW4+PGJyPjwvZGl2PjxwPjx1PjxzcGFuIHN0eWxlPSJjb2xvcjpibGFj ayI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0Ij5Ib3c/PC9zcGFuPjwvc3Bhbj48L3U+PGJy PjwvcD48cD48c3BhbiBzdHlsZT0iY29sb3I6YmxhY2siPjxzcGFuIHN0eWxlPSJmb250LXNpemU6 MTFwdCI+Rm9yIFNlcHRlbWJlciwgd2VsbCBzdGFydCB3aXRoIHBob25lIGNhbGxzIGFuZA0KR29v Z2xlIGRvY3MuIEluIENMRVNTLCB3ZSBhcmUgbG9va2luZyB0byB3b3JrIHRvZ2V0aGVyIGluIGEg bmljZSB3YXkgYW5kIG5vdA0Kd2l0aCBob3JyaWJsZSBjb21iYXRpdmUgYXRtb3NwaGVyZS4gT2Yg Y291cnNlIHJvYnVzdCByZXZpZXdzIGFyZSBnb29kIGFuZA0Kd2VsY29tZSwgYnV0IGdvb2QgcmV2 aWV3cyBhcmUgbm90IHJ1ZGUgb3IgaG9zdGlsZS48L3NwYW4+PC9zcGFuPjxicj48L3A+PHA+PHU+ PHNwYW4gc3R5bGU9ImNvbG9yOmJsYWNrIj48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPldo YXQgaXMgdGhlIHBsYW4/PC9zcGFuPjwvc3Bhbj48L3U+PGJyPjwvcD48cD48c3BhbiBzdHlsZT0i Y29sb3I6YmxhY2siPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+UGxhbiBQQVJUIDE6IE1h cmsgTWNGYWRkZW4gd3JvdGUNCmVuZHBvaW50LXRheG9ub215LWNsZXNzIHRvIGRlc2NyaWJlIHRo ZSBlbmRwb2ludHMgbW9yZSBhY2N1cmF0ZWx5IGFuZCBnaXZlIGENCmxhbmd1YWdlIGZvciB3b3Jr aW5nIHdpdGggdGhlc2UuIFJlYWNoIG91dCB0byBIZW5rIHRvIHdvcmsgb24gdGhpcy4gU3VnZ2Vz dGlvbg0KdG8gbWFrZSB0aGluZ3MgbGVzcyBxdWFsaXRhdGl2ZSBhbmQgbW9yZSBxdWFudGl0YXRp dmUuIER1ZSB0byB2aXJ0dWFsaXphdGlvbiBhbmQNCmNvbnRhaW5lcml6YXRpb24sIHRoaXMgdmFy aWVzIOKAkyBJb1QgY2hhcmFjdGVyaXN0aWMgd29yayBkb25lIGVsc2V3aGVyZSAoRGF2aWQNCk5J U1QgZ2l2ZXMgcmVmZXJlbmNlOiBSRkMgNzIyOCkuIEhlIHBsYW5zIHRvIGlzc3VlIHJldmlzaW9u IGluIEF1Z3VzdCBiYXNlZCBvbg0KY29tbWVudHMgZnJvbSBNb250cmVhbDsgYW5kIGdldCBhbm90 aGVyIHZlcnNpb24gZm9yIHRoaXMgYmVmb3JlIFNpbmdhcG9yZS4NCk5lZWRzIHRvIGdyb3VwIHZp cnR1YWxpemVkIGVudmlyb25tZW50cyB3aXRoIHRoZWlyIGRldmljZXMsIGhhdmUgbW9yZSBkZXRh aWwgb24NCnRoZSB0YXhvbm9teS4gU2hvdWxkIGl0IGJlIGEgdGF4b25vbXkgb3IgYSBjYXRlZ29y aXphdGlvbj8gKEhvdyBkZWVwIHRvIGdvPyk8L3NwYW4+PC9zcGFuPjxicj48L3A+PHA+PHNwYW4g c3R5bGU9ImNvbG9yOmJsYWNrIj48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPkhvdyBjYW4g eW91IHVzZSBpdD8gR2l2ZW4gYSBkZXZpY2UsIGhvdyBkbyBJDQpjYXRlZ29yaXNlIGl0PyAoQ3Jl YXRlIHNvbWUgZGVjaXNpb24gdHJlZT8pIElzIHNvZnR3YXJlIGluIHRydXN0ZWQvdW50cnVzdGVk DQpzeXN0ZW0/PC9zcGFuPjwvc3Bhbj48YnI+PC9wPjxwPjxzcGFuIHN0eWxlPSJjb2xvcjpibGFj ayI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0Ij5PbiB3aGljaCBsZXZlbCBvZiBkZXRhaWxz IHRvIHJlYWNoPyBGb3IgZXhhbXBsZSB0aGlzDQppcyBhIHJlYWwgcXVlc3Rpb24gZm9yIHRoZSBl bmRwb2ludCBtb2RlbHM6IFRvZGF5IHRoZSBmZWVkYmFjayBpcyB0aGF0IHRoZSBkcmFmdA0KaXMg cGVyaGFwcyB0b28gc2ltcGxpc3RpYyBhbmQgaXMgbW9yZSBhIGNhdGVnb3JpemF0aW9uIHRoYW4g YSB0YXhvbm9teS4gTWFyaw0KTWFjRmFkZGVuIG9mIGNvdXJzZSBjb25zaWRlcmVkIHRob3NlIGFz cGVjdHMgYnV0IGhvdyB0byBkZWZpbmUgd2hpY2ggbGV2ZWwgb2YNCmRldGFpbHMgYW5kIHdoaWNo IGFzcGVjdHMgdG8gcHJpb3JpdGlzZT8gVG9kYXkgd2UgYXJlIG1vcmUgb24gcXVhbGl0YXRpdmUN CmFzcGVjdHMgdnMgcXVhbnRpdGF0aXZlIHRvIHJlcHJlc2VudCBlbmRwb2ludHMuIEFub3RoZXIg Y29uc2lkZXJhdGlvbiBpcyB0aGF0DQppbiBmYWN0IENMRVNTIGNhbiBiZSB0aGUgbGltaXRpbmcg ZmFjdG9yIHRvIHRoZSByYWNlIHRvIGRldGFpbHMuIEluZGVlZCBBcm5hdWQNClRhZGRlaSBleHBs YWluZWQgdGhhdCB0aGUgY3JpdGVyaWEgY291bGQgYmUgYXMgc2ltcGxlIGFzIGxvb2tpbmcgYXQg dGhlDQpleGFtcGxlcyB0aGF0IENMRVNTIGlzIGNhbGxpbmcgb3V0IGFuZCB3aGVuIGNvbnNpZGVy aW5nIHRoZSBpbmZlcnJlZCB0YXhvbm9teQ0KdGhhdCB0aGVzZSBleGFtcGxlcyBleHByZXNzLCBp ZiB0aGUgZW5kcG9pbnQgSS1EIGlzIG5vdCBvZmZlcmluZyB0aGUgdGF4b25vbXkNCnRoYXQgbWVh bnMgd2UgaGF2ZSBhIHByb2JsZW0gZWl0aGVyIGluIGRlcHRoIG9mIHRoZSB0YXhvbm9teSB0cmVl IG9yIGluIHdpZHRoDQpvZiB0aGUgdGF4b25vbXkgdHJlZS4gVGhpcyBlY2hvZXMgYSByZW1hcmsg ZnJvbSBIZW5rIGluIHRoZSBTTUFSVCBzaWRlIG1lZXRpbmcNCmluIHRoZSBtb3JuaW5nLCBob3Bp bmcgSGVuayBjYW4gc3VwcG9ydCBvdXIgVGF4b25vbXkgYXBwcm9hY2ggaGVyZTwvc3Bhbj48L3Nw YW4+PGJyPjwvcD48cD48c3BhbiBzdHlsZT0iY29sb3I6YmxhY2siPjxzcGFuIHN0eWxlPSJmb250 LXNpemU6MTFwdCI+TWFyayB3aWxsIHdvcmsgb24gaXQgaW4gQXVndXN0IGFuZCB3ZSB3aWxsIHRh a2UgaXQNCmZyb20gdGhlcmU8L3NwYW4+PC9zcGFuPjxicj48L3A+PHA+PHNwYW4gc3R5bGU9ImNv bG9yOmJsYWNrIj48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPlBsYW4gUEFSVCAyOiBwbGFu IHRvIGRldGFjaCB0aHJlYXQgbGFuZHNjYXBlDQoocmVhbGx5IGhhcmQpIOKAkyBzZWN0aW9uIDYg 4oCTIHdoaWNoIGlzIHRoZSBpbnRlbnRpb24gb2YgdGhlIGF0dGFjayAoZG8gbm90IG1peA0KdGhp cyB3aXRoIHRoZSB2dWxuZXJhYmlsaXR5IHRoYXQgaXMgYXR0YWNrZWQpLiBUaGlzIHdvdWxkIGhh dmUgdG8gYmUgZG9uZSBwZXINCnRheG9ub215IGNsYXNzLCBzcGVjaWZpYyB0byBlYWNoIHRheG9u b215IHBhcnQuIFRoZSBhdHRhY2sgc3VyZmFjZSBpcyBkaWZmZXJlbnQNCmRlcGVuZGluZyBvbiB0 aGUgZW5kcG9pbnQg4oCTIHdvdWxkIGluY2x1ZGUgdGhlIGF0dGFjayBzdXJmYWNlIGFuZCBtaXRp Z2F0aW9ucy4NClRoaXMgaXMgdHJ1ZSAtIGRpZmZlcmVudCBkZXZpY2VzIGhhdmUgZGlmZmVyZW50 IGNhcGFiaWxpdGllcywgcGVvcGxlIGFzc3VtZQ0KZXZlcnkgZW5kcG9pbnQgaXMgYSBicm93c2Vy L2xhcHRvcCBvciBzZXJ2ZXIg4oCTIG5vdCBhIGNvbnN0cmFpbmVkIElvVCBkZXZpY2UgdGhhdA0K d29udCBiZSB1cGRhdGVkLCBvciBsZWdhY3kuIFNvIHdlIGhhdmUgdG8gYnVpbGQgYSBsYW5ndWFn ZSB3ZSBjYW4gdGFsayBhYm91dCB0bw0KYnJpbmcgaW4gdGhlc2UgYXNwZWN0cy48L3NwYW4+PC9z cGFuPjxicj48L3A+PHVsIHR5cGU9ImRpc2MiIHN0eWxlPSJtYXJnaW4tdG9wOjBjbSI+PGxpIHN0 eWxlPSJjb2xvcjpibGFjazttc28tbGlzdDpsMyBsZXZlbDEgbGZvMjt0YWItc3RvcHM6bGlzdCAz Ni4wcHQiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+V2hpY2ggb25lIGlzIGJlc3QgdG8g ZG8gZmlyc3Q/IFRoZSB0cmFkaXRpb25hbCBlbmRwb2ludCBpcyB0aGUgZWFzaWVzdA0KICAgICBi dXQgbm90IHRoZSBtb3N0IHZhbHVhYmxlIGFuZCBmZWVkcyBpbnRvIHRoZSBjb25maXJtYXRpb24g Ymlhcy4gSGlnaGx5DQogICAgIGNvbnN0cmFpbmVkIGRldmljZXMgd291bGQgYWxzbyBiZSBlYXN5 LWlzaC4gTW9iaWxlPzwvc3Bhbj48YnI+PC9saT48bGkgc3R5bGU9ImNvbG9yOmJsYWNrO21zby1s aXN0OmwzIGxldmVsMSBsZm8yO3RhYi1zdG9wczpsaXN0IDM2LjBwdCI+PHNwYW4gc3R5bGU9ImZv bnQtc2l6ZToxMXB0Ij5NZXNoLWJhc2VkIHNlbnNvciBuZXR3b3JrLCBpbiBhIGNhciDigJMgaXMg dGhlIGVuZHBvaW50IHRoZSB0eXJlDQogICAgIHByZXNzdXJlIG1vbml0b3Igb3IgdGhlIEVDVT88 L3NwYW4+PGJyPjwvbGk+PC91bD48cD48c3BhbiBzdHlsZT0iY29sb3I6YmxhY2siPjxzcGFuIHN0 eWxlPSJmb250LXNpemU6MTFwdCI+UGxhbiBQQVJUIDM6IERldmVsb3AgdGhlIGh1bWFuIHJpZ2h0 cyBzZWN0aW9uDQooRGF2ZSBNY0dyZXcsIENpc2NvIC8gTWFsbG9yeSwgQXJ0aWNsZSAxOSk8L3Nw YW4+PC9zcGFuPjxicj48L3A+PHVsIHR5cGU9ImRpc2MiIHN0eWxlPSJtYXJnaW4tdG9wOjBjbSI+ PGxpIHN0eWxlPSJjb2xvcjpibGFjazttc28tbGlzdDpsMCBsZXZlbDEgbGZvMzt0YWItc3RvcHM6 bGlzdCAzNi4wcHQiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+QWdyZWVkIHRvIGRldmVs b3AgdGhpcyB0b2dldGhlcjwvc3Bhbj48YnI+PC9saT48bGkgc3R5bGU9ImNvbG9yOmJsYWNrO21z by1saXN0OmwwIGxldmVsMSBsZm8zO3RhYi1zdG9wczpsaXN0IDM2LjBwdCI+PHNwYW4gc3R5bGU9 ImZvbnQtc2l6ZToxMXB0Ij5JbmNsdWRlcyByZWd1bGF0b3J5IGNvbXBsaWFuY2U8L3NwYW4+PGJy PjwvbGk+PGxpIHN0eWxlPSJjb2xvcjpibGFjazttc28tbGlzdDpsMCBsZXZlbDEgbGZvMzt0YWIt c3RvcHM6bGlzdCAzNi4wcHQiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+R2VybWFuIGdv dmVybm1lbnQgQnVuZGVzdHJveWFuIChHb3Zlcm5tZW50IFRyb2phbiksIGZyb20gc3VjaCBhDQog ICAgIHByaXZhY3ktZm9jdXNlZCBjb3VudHJ5PC9zcGFuPjxicj48L2xpPjwvdWw+PHA+PHNwYW4g c3R5bGU9ImNvbG9yOmJsYWNrIj48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPlBsYW4gUEFS VCA0OiBpbmNsdWRlIG1vcmUgcHJvZHVjdGlvbiBkYXRhIChKSiwNCkNpc2NvIC8gRGVsbCAvIE1j QWZlZSk8L3NwYW4+PC9zcGFuPjxicj48L3A+PHVsIHR5cGU9ImRpc2MiIHN0eWxlPSJtYXJnaW4t dG9wOjBjbSI+PGxpIHN0eWxlPSJjb2xvcjpibGFjazttc28tbGlzdDpsMiBsZXZlbDEgbGZvNDt0 YWItc3RvcHM6bGlzdCAzNi4wcHQiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+UmVzcGVj dGluZyBhbm9ueW1pdHk8L3NwYW4+PGJyPjwvbGk+PGxpIHN0eWxlPSJjb2xvcjpibGFjazttc28t bGlzdDpsMiBsZXZlbDEgbGZvNDt0YWItc3RvcHM6bGlzdCAzNi4wcHQiPjxzcGFuIHN0eWxlPSJm b250LXNpemU6MTFwdCI+TWFrZSBhIGZyYW1ld29yayBmb3Igc2VsZWN0aW9uIG9mIGRhdGE8L3Nw YW4+PGJyPjwvbGk+PGxpIHN0eWxlPSJjb2xvcjpibGFjazttc28tbGlzdDpsMiBsZXZlbDEgbGZv NDt0YWItc3RvcHM6bGlzdCAzNi4wcHQiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+QWdy ZWUgbWV0aG9kb2xvZ3kgdG8gc2VsZWN0IGRhdGEgZm9yIGhvbW9nZW5laXR5IGFuZCByZWFzb25h YmxlDQogICAgIGNvbXBhcmlzb24g4oCTIHBvc3NpYmxlIGRldGFjaCBpbiBmdXR1cmUgaWYgaXQg YmVjb21lcyB0b28gYmlnPzwvc3Bhbj48YnI+PC9saT48L3VsPjxwPjxzcGFuIHN0eWxlPSJjb2xv cjpibGFjayI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0Ij5QbGFuIFBBUlQgNTogRWNvbm9t aWNzOiBpZiB5b3UgcHVzaCBldmVyeXRoaW5nDQp0byB0aGUgZW5kcG9pbnQsIHdobyBwYXlzPzwv c3Bhbj48L3NwYW4+PGJyPjwvcD48dWwgdHlwZT0iZGlzYyIgc3R5bGU9Im1hcmdpbi10b3A6MGNt Ij48bGkgc3R5bGU9ImNvbG9yOmJsYWNrO21zby1saXN0Omw1IGxldmVsMSBsZm81O3RhYi1zdG9w czpsaXN0IDM2LjBwdCI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0Ij5TZWN1cml0eSBwYXlz LiBObyBJbSBraWRkaW5nOiB0aGlzIGlzIGFib3V0IHdobyBwYXlzIHRvZGF5IGFuZA0KICAgICB0 b21vcnJvdywgaG93IG11Y2ggd2lsbCBiZT88L3NwYW4+PGJyPjwvbGk+PGxpIHN0eWxlPSJjb2xv cjpibGFjazttc28tbGlzdDpsNSBsZXZlbDEgbGZvNTt0YWItc3RvcHM6bGlzdCAzNi4wcHQiPjxz cGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+Q29zdCBvZiBzZWN1cmluZyB2cyBub3Qgc2VjdXJp bmcg4oCTIGZvciB3aGljaCByZXN1bHQ8L3NwYW4+PGJyPjwvbGk+PC91bD48cD48c3BhbiBzdHls ZT0iY29sb3I6YmxhY2siPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+T3RoZXIgdG8gZGV2 ZWxvcCBDTEVTUyBnZW5lcmFsbHk6IGZlZWRiYWNrIHRvDQppbmNvcnBvcmF0ZSwgZGV2ZWxvcCBp bnRyaW5zaWMgY2FwYWJpbGl0aWVzIChIYW5uZXMgVHNjaG9lbmZpZywgQVJNIC0gbWVudGlvbmVk DQphYm91dCBjaGlwIGNhcGFiaWxpdHkgaW4gc2FhZyDigJMgdG8gZm9sbG93LXVwKSwgYnJpbmcg aW4gd29yayBmcm9tIFRFRVAgKGZyb20NCnJlc2VhcmNoZXIpPC9zcGFuPjwvc3Bhbj48YnI+PC9w PjxwPjxzcGFuIHN0eWxlPSJjb2xvcjpibGFjayI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0 Ij5JbmRlZWQgPC9zcGFuPjwvc3Bhbj48c3BhbiBzdHlsZT0iY29sb3I6YmxhY2siPjxzcGFuIHN0 eWxlPSJmb250LXNpemU6MTFwdCI+Q29uc2lkZXJhdGlvbnMgYWJvdXQgY29uc3RyYWluZWQNCmRl dmljZXMgd2VyZSBleHByZXNzZWQgYW5kIHdlIHJlbWVtYmVyIHdoYXQgSGFubmVzIChBUk0pIHdv cmtpbmcgb24gdGhlIFRFRVANCndvcmtpbmcgZ3JvdXAgZXhwcmVzc2VkIGF0IHRoZSBTQUFHIG1l ZXRpbmcgYWJvdXQgYWxsIHRoZSBzZWN1cml0eSB0aGF0IEFSTSBhbmQNCm90aGVycyBwdXQgYXQg dmFyaW91cyBsZXZlbHMgYXMgaW50cmluc2luYyBzZWN1cml0eSBhc3BlY3RzLiBBcm5hdWQgZXhw bGFpbmVkDQp0aGF0IFRFRVAgd2FzIGltcG9ydGFudCAoTWluZyBQZWkgb25lIG9mIHRoZSBhdXRo b3JzIGJlaW5nIGF0IFN5bWFudGVjIHRvbykgYW5kDQp0aGF0IENMRVNTIHJlY29nbml6ZXMgKGlu IHRoZSBkb2N1bWVudCkgdGhhdCB0aGUgbWFzc2l2ZSBlZmZvcnQgdGhhdCBURUVQIGRpZCB0bw0K dW5pZnkgdGhlIGVuZHBvaW50cyBmcm9tIGJvdGggc2lkZXMgb2YgdGhlIGNvbW11bmljYXRpb246 IFVzZXIgRXF1aXBtZW50cy9Jb1QNCmJ1dCBhcyB3ZWxsIEhvc3RzIGZyb20gcGh5c2ljYWwgdG8g c2VydmVyLWxlc3MuIFRoZXJlIGlzIGFzIHdlbGwgYW5vdGhlciBtZW1iZXINCm9mIFRFRVAgd2hv IG1hZGUgYW4gaW50ZXJlc3RpbmcgSS1EIGZvciBjb25zaWRlcmF0aW9uIEZhaWJpc2ggU29yaW4g PC9zcGFuPjwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1zaXplOjExcHQiPjxhIHRpdGxlPSJodHRw czovL2NsaWNrdGltZS5zeW1hbnRlYy5jb20vM0xxZ1F5QnoxZVFxcjZoMU1KQXg2Tnc3VmM/dT1o dHRwcyUzQSUyRiUyRmRhdGF0cmFja2VyLmlldGYub3JnJTJGZG9jJTJGZHJhZnQtZmFpYmlzaC1p b3QtZGRvcy11c2VjYXNlcyUyRiIgaHJlZj0iaHR0cHM6Ly9jbGlja3RpbWUuc3ltYW50ZWMuY29t LzNMcWdReUJ6MWVRcXI2aDFNSkF4Nk53N1ZjP3U9aHR0cHMlM0ElMkYlMkZkYXRhdHJhY2tlci5p ZXRmLm9yZyUyRmRvYyUyRmRyYWZ0LWZhaWJpc2gtaW90LWRkb3MtdXNlY2FzZXMlMkYiPjxzcGFu IHN0eWxlPSJjb2xvcjpwdXJwbGUiPmh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2Ry YWZ0LWZhaWJpc2gtaW90LWRkb3MtdXNlY2FzZXMvPC9zcGFuPjwvYT48L3NwYW4+PGJyPjwvcD48 cD48c3BhbiBzdHlsZT0iY29sb3I6YmxhY2siPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTFwdCI+ Q0xFU1MgaW4gSVJURiAvIElFVEYgLyBzaG91bGQgaXQgZ28gb3V0c2lkZSB0aGlzDQpjb21tdW5p dHkgPyBUYXhvbm9teSBjb3VsZCBiZSB1c2VkIGluIFNBQ00/IFdpZGVyIHRoYW4gU0FDTS4gT3Bw b3J0dW5pdHkgdG8NCnN0YWJpbGl6ZSBsYW5ndWFnZSBhY3Jvc3MgV0dzLiBDb3VsZCBoYXZlIGJl ZW4gdXNlZCBpbiBTQUNNLCBURUVQLCBSQVRTIOKAkw0KcGVyaGFwcyBpdCBzaG91bGQgYmUgcHJl c2VudGVkIGF0IHRoZXNlIGdyb3VwcyBmb3IgaW5wdXQuPC9zcGFuPjwvc3Bhbj48YnI+PC9wPjxw PjxzcGFuIHN0eWxlPSJjb2xvcjpibGFjayI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMXB0Ij5D b25jbHVzaW9uPC9zcGFuPjwvc3Bhbj48YnI+PC9wPjx1bCB0eXBlPSJkaXNjIj48bGkgc3R5bGU9 ImNvbG9yOmJsYWNrO21zby1saXN0OmwxIGxldmVsMSBsZm82Ij48c3BhbiBzdHlsZT0ibXNvLWFu c2ktbGFuZ3VhZ2U6RU4tVVMiIGxhbmc9IkVOLVVTIj5NYXJrIHdpbGwgd29yayBvbiBoaXMgSS1E IGluDQogICAgIEF1Z3VzdDwvc3Bhbj48YnI+PC9saT48bGkgc3R5bGU9ImNvbG9yOmJsYWNrO21z by1saXN0OmwxIGxldmVsMSBsZm82Ij48c3BhbiBzdHlsZT0ibXNvLWFuc2ktbGFuZ3VhZ2U6RU4t VVMiIGxhbmc9IkVOLVVTIj5TeW1hbnRlYyB3aWxsIHdvcmsgd2l0aCBEQiBpbg0KICAgICBBdWd1 c3Q8L3NwYW4+PGJyPjwvbGk+PGxpIHN0eWxlPSJjb2xvcjpibGFjazttc28tbGlzdDpsMSBsZXZl bDEgbGZvNiI+PHNwYW4gc3R5bGU9Im1zby1hbnNpLWxhbmd1YWdlOkVOLVVTIiBsYW5nPSJFTi1V UyI+QXJuYXVkIHdpbGwgb3JnYW5pemUgYSBjYWxsIGZvcg0KICAgICBTZXB0ZW1iZXIgYW5kIGNv bnNpZGVycyB0aGUgZm9sbG93aW5nIHRhc2tzIG9uIHRvcCBvZiB3aGF0IGlzIGRlc2NyaWJlZCBp bg0KICAgICB0aGUgc2xpZGUgZGVjazwvc3Bhbj48YnI+PC9saT48bGkgc3R5bGU9ImNvbG9yOmJs YWNrO21zby1saXN0OmwxIGxldmVsMSBsZm82Ij48c3BhbiBzdHlsZT0ibXNvLWFuc2ktbGFuZ3Vh Z2U6RU4tVVMiIGxhbmc9IkVOLVVTIj5tZWV0IHdpdGggQU1UU08gYXQgdGhlaXINCiAgICAgbWVl dGluZyAzMTxzdXA+c3Q8L3N1cD4gb2YgU2VwLCAxPHN1cD5zdDwvc3VwPiBvZiBPY3RvYmVyIGFu ZCBoZWxwIHRoZW0NCiAgICAgc3RhcnQgdGhlaXIgSS1EPC9zcGFuPjxicj48L2xpPjxsaSBzdHls ZT0iY29sb3I6YmxhY2s7bXNvLWxpc3Q6bDEgbGV2ZWwxIGxmbzYiPjxzcGFuIHN0eWxlPSJtc28t YW5zaS1sYW5ndWFnZTpFTi1VUyIgbGFuZz0iRU4tVVMiPkFybmF1ZCBhbmQgRGF2aWQgTWNHcmV3 IHdpbGwNCiAgICAgd29yayBvbiB0aGUgSHVtYW4gUmlnaHRzIHNlY3Rpb248L3NwYW4+PGJyPjwv bGk+PGxpIHN0eWxlPSJjb2xvcjpibGFjazttc28tbGlzdDpsMSBsZXZlbDEgbGZvNiI+PHNwYW4g c3R5bGU9Im1zby1hbnNpLWxhbmd1YWdlOkVOLVVTIiBsYW5nPSJFTi1VUyI+c3RhcnQgdG8gcmV2 aWV3IFNBQ00sIFJBVFMsDQogICAgIFRFRVAgYW5kIG90aGVyIElFVEYgZ3JvdXAgdGhhdCBzcGVh ayBhYm91dCB0aGUgZW5kcG9pbnQ8L3NwYW4+PGJyPjwvbGk+PGxpIHN0eWxlPSJjb2xvcjpibGFj azttc28tbGlzdDpsMSBsZXZlbDEgbGZvNiI+PHNwYW4gc3R5bGU9Im1zby1hbnNpLWxhbmd1YWdl OkVOLVVTIiBsYW5nPSJFTi1VUyI+Y29udGFjdCBIYW5uZXMgdGhyb3VnaCBNaW5nPC9zcGFuPjxi cj48L2xpPjxsaSBzdHlsZT0iY29sb3I6YmxhY2s7bXNvLWxpc3Q6bDEgbGV2ZWwxIGxmbzYiPjxz cGFuIHN0eWxlPSJtc28tYW5zaS1sYW5ndWFnZTpFTi1VUyIgbGFuZz0iRU4tVVMiPmNvbnRhY3Qg RmFpYmlzaDwvc3Bhbj48YnI+PC9saT48bGkgc3R5bGU9ImNvbG9yOmJsYWNrO21zby1saXN0Omwx IGxldmVsMSBsZm82Ij48c3BhbiBzdHlsZT0ibXNvLWFuc2ktbGFuZ3VhZ2U6RU4tVVMiIGxhbmc9 IkVOLVVTIj53b3JrIHdpdGggSmFyaSBBcmtrbyBmcm9tIGhpcw0KICAgICBJLUQgYW5kIHNlZSBp ZiB0aGVyZSBpcyBhIGNoYW5jZSBmb3IgYW4gaW50ZXJmYWNpbmcgYmV0d2VlbiB0aGUgaGlzIEkt RA0KICAgICBhbmQgdGhlIENMRVNTIGdyb3VwIG9mIEktRHM8L3NwYW4+PGJyPjwvbGk+PC91bD48 ZGl2Pjxicj48L2Rpdj48ZGl2IGNsYXNzPSJwcm90b25tYWlsX3NpZ25hdHVyZV9ibG9jayI+PGRp diBjbGFzcz0icHJvdG9ubWFpbF9zaWduYXR1cmVfYmxvY2stdXNlciBwcm90b25tYWlsX3NpZ25h dHVyZV9ibG9jay1lbXB0eSI+PGJyPjwvZGl2PjxkaXYgY2xhc3M9InByb3Rvbm1haWxfc2lnbmF0 dXJlX2Jsb2NrLXByb3RvbiI+U2VudCB3aXRoIDxhIHRhcmdldD0iX2JsYW5rIiBocmVmPSJodHRw czovL3Byb3Rvbm1haWwuY29tIj5Qcm90b25NYWlsPC9hPiBTZWN1cmUgRW1haWwuPGJyPjwvZGl2 PjwvZGl2PjxkaXY+PGJyPjwvZGl2Pg== --b1_7d0eb3576a37fe3960600ceecc428494--