On Sun, 2009-01-04 at 20:34 -0800, Nitzan Kon wrote: > --- On Sun, 1/4/09, Alex Balashov <[email protected]> wrote: > > > Would disabling LCR and forcing the route to one of the > > carriers you normally use that will do the CALEA tapping for > > you be considered "tipping off" the customer being recorded? > > I *seriously* doubt the makers of CALEA thought it this far. > Hell, I'd be surprised if they even know or care what ReINVITE > is.
vinton cer and whitfield diffie have authored a paper on calea implementation in voip networks including some of its problems. http://www.itaa.org/news/docs/CALEAVOIPreport.pdf http://www.fcc.gov/calea/ discusses some of the issues that carriers have to deal with, stuff they have to file, etc. RFC 3924 addresses some of the omitted CALEA issues in the original SIP standards as well. http://tools.ietf.org/html/rfc3924 A more global guide can be found at http://www.ss8.com/pdfs/Ready_Guide_Download_Version.pdf A general theme throughout seems to be that the tap be "undetectable" which is why I think that LEOs would likely go after a provider if it was discovered that they were doing it in a detectable way, such as by changing where the media stream goes for those customers that are being tapped vs those that are not. It is often not difficult to see the IP where your media is going, and if it usually goes to X and all of a sudden its going to Y, that makes it detectable in a somewhat significant way. As a result I personally do not think its wise, nor legal to bypass media until there is a calea request, but as I said before afaik there have been no FCC rules, statutes or case law that specifically addresses what is and what is not "detectable" in a voip set up. As such making anything different from your customers perspective would be a gamble as to whether or not you are going to be slammed for this. It does however seem to be common sense that changing the fundamental way the call is routed when a wiretap request comes in - from the customers perspective (ie RTP grabbing only then) is "detectable" and thus illegal to do. To address something someone asked that I do not think was answered, if you only do wholesale, that does not preclude you from CALEA requirements or the filing of the System Security and Integrity Plan. For all you know you may be served with a request to tap all calls from a particular carrier customer (although that is not likely to happen it *could*). -- Trixter http://www.0xdecafbad.com Bret McDanel pgp key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x8AE5C721
signature.asc
Description: This is a digitally signed message part
_______________________________________________ --Bandwidth and Colocation Provided by http://www.api-digital.com-- asterisk-biz mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-biz
