[asterisk-biz] Experimental/new VoIP rate search engine.
Trixter aka Bret McDanel
trixter at 0xdecafbad.com
Sun Jan 4 23:04:01 CST 2009
On Sun, 2009-01-04 at 20:34 -0800, Nitzan Kon wrote:
> --- On Sun, 1/4/09, Alex Balashov <abalashov at evaristesys.com> wrote:
>
> > Would disabling LCR and forcing the route to one of the
> > carriers you normally use that will do the CALEA tapping for
> > you be considered "tipping off" the customer being recorded?
>
> I *seriously* doubt the makers of CALEA thought it this far.
> Hell, I'd be surprised if they even know or care what ReINVITE
> is.
vinton cer and whitfield diffie have authored a paper on calea
implementation in voip networks including some of its problems.
http://www.itaa.org/news/docs/CALEAVOIPreport.pdf
http://www.fcc.gov/calea/ discusses some of the issues that carriers
have to deal with, stuff they have to file, etc.
RFC 3924 addresses some of the omitted CALEA issues in the original SIP
standards as well. http://tools.ietf.org/html/rfc3924
A more global guide can be found at
http://www.ss8.com/pdfs/Ready_Guide_Download_Version.pdf
A general theme throughout seems to be that the tap be "undetectable"
which is why I think that LEOs would likely go after a provider if it
was discovered that they were doing it in a detectable way, such as by
changing where the media stream goes for those customers that are being
tapped vs those that are not. It is often not difficult to see the IP
where your media is going, and if it usually goes to X and all of a
sudden its going to Y, that makes it detectable in a somewhat
significant way.
As a result I personally do not think its wise, nor legal to bypass
media until there is a calea request, but as I said before afaik there
have been no FCC rules, statutes or case law that specifically addresses
what is and what is not "detectable" in a voip set up. As such making
anything different from your customers perspective would be a gamble as
to whether or not you are going to be slammed for this.
It does however seem to be common sense that changing the fundamental
way the call is routed when a wiretap request comes in - from the
customers perspective (ie RTP grabbing only then) is "detectable" and
thus illegal to do.
To address something someone asked that I do not think was answered, if
you only do wholesale, that does not preclude you from CALEA
requirements or the filing of the System Security and Integrity Plan.
For all you know you may be served with a request to tap all calls from
a particular carrier customer (although that is not likely to happen it
*could*).
--
Trixter http://www.0xdecafbad.com Bret McDanel
pgp key: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x8AE5C721
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part
Url : http://lists.digium.com/pipermail/asterisk-biz/attachments/20090105/aa3a1ece/attachment-0001.pgp
More information about the asterisk-biz
mailing list