Hi,
As a new member of WISPA I am reading with interest all of the postings
about CALEA from the past few weeks.
Thankfully, we have designed our network in such a way that all customer IP
traffic passes through at least one Cisco switch before it can be bridged to
any other customer or routed to the Internet, so I think we'll be able to
SPAN all customer traffic and from there manipulate the data streams and
hand them off to law enforcement. The only exception to this case might be
our Waverider CCU's, which are routing packets between various end-users. I
am going to contact them to see what their take is on implementing LI -- we
might need to stop using the CCU's as routers.
The main questions I have for the forum are ... assuming we can at least
make a copy of a given customer's traffic without the customer realizing it
(i.e. non-intrusively), how are we going to be able to format the data to be
able to hand it off to law enforcement? We obviously want to do this in the
most cost-effective way possible (read: open source solution).
http://www.opencalea.org/ definitely looks promising, but it is just getting
off the ground as far as I can tell. I wonder if there are any other groups
out there working on this.
As far as compliance standards go, as far as I can tell, the one that most
fits us might be ATIS -T1.IPNA -ISP data, but I'm still confused about that.
When I visit http://www.askcalea.net/standards.html, I see a link for
"Wireline: PTSC T1.IAS" which takes me to
https://www.atis.org/docstore/product.aspx?id=22665. Is this all the same as
ATIS -T1.IPNA -ISP? Somehow I don't have the feeling that paying $164.00 for
this standard is going to help get me in the right direction ....
We do have a couple savvy Linux guru-types in house that could deploy a good
open-source solution and keep it updated, I think. But I don't think we're
up to developing such a solution ourselves from scratch.
I did find a device made by a company called Solera
(http://www.voip-news.com/feature/solera-calea-voip-packet-capture-031907/)
which looks like it could be cost-effective (read: ~$7000.00) for a small
ISP (read: ~1,000 customers) like us. Obviously we would prefer open source,
but at least it was a relief to see that we might be able to avoid the
$40,000 - $100,000 solutions I've been hearing about from TTP's and other
(larger) ISPs.
Matt Liotta, you mentioned that you "have the ability to provide lawful
intercept in compliance with CALEA for our single-homed downstream ISP
customers assuming there is no NAT involved." Would you be willing to share
some details about the solution you've been able to come up with?
I do see the opportunity that this whole CALEA thing could provide to some
ISP's who figure out a way to develop a cost-effective solution and then
offer consulting services or **affordable** TTP services to other companies
...
I also read with interest the "Baller law group's Key Legal and Technical
Requirements and Options for CALEA
(http://www.baller.com/pdfs/BHLG-CTC_CALEA_Memo.pdf)" that Peter Radizeski
forwarded to the list. I had not taken seriously the possibility of filing a
section 109(b) petition, but if we do due diligence and really do not find
an affordable solution to deploy on our network, I think we may have to
seriously consider that (for example, the part about asking to be considered
compliant as long as we can meet most of LI's requirements, if not all of
them).
Please excuse the long and rambling post ... I'm just having a hard time
finding out how to grab a hold of this CALEA beast.
Thanks,
Adam
-------------------------------------------
Adam Greene
VP, Operations
Webjogger Internet Services
http://www.webjogger.net
(845) 757-4000 x134
--
WISPA Wireless List: [email protected]
Subscribe/Unsubscribe:
http://lists.wispa.org/mailman/listinfo/wireless
Archives: http://lists.wispa.org/pipermail/wireless/
