There may well be a mismatch between data protection laws and lawful
intercept but I think it is outside my realm to solve that problem.
On the SIP Identity and 3GPP: To my knowledge the 3GPP IMS does not make
use of SIP Identity; it only relies on PAI.
On 11.09.2013 02:59, SM wrote:
Hi Hannes,
At 01:26 09-09-2013, Hannes Tschofenig wrote:
I gave a presentation last week to a group of international data
protection authorities about VoIP security & privacy. I produced a
blog post about the presentation and put it here:
http://www.tschofenig.priv.at/wp/?p=997
It contains a number of recommendations, which are addressed to VoIP
providers and vendors but have to be enforced by data protection
authorities.
There seems to be an agreement between a country which you can guess and
a country in Europe which bypasses data protection requirements. I did
not verify the information.
I suggest looking at the 3GPP use-case in respect to SIP identity.
One of the issues with transparency is that it is overruled by "in
accordance with the law".
Lawful intercept seems to be quite broad in a country even though the
legislation says otherwise.
The list of recommendations is a good start.
Regards,
-sm
_______________________________________________
perpass mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/perpass
_______________________________________________
perpass mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/perpass
