[VOIPSEC] CALEA Enforcement

Voiceline Patrick at Voiceline.dk
Mon May 8 10:08:51 CDT 2006 

In Denmark the law enforcers "still" need a curt order to access any 
information "call-identifying information" and/or "call content 
information". We are aware of the potential dangers of riding the wave of 
fear. Yes we want to be secure - only security can sometimes be nothing more 
than an illusion. The question is; do we risk sacrificing our personal 
privacy in exchange fore an illusion? "Geoff" - Service providers storing 
call content information by law, and intercepting (mid-stream encryption / 
decryption) performed by some law enforcement agency is hardly the same 
thing... how can it be feasible fore an ISP to store waste amounts of data 
(storage don't com cheap), just in case some law enforcement agency, my or 
my not decide that they want to look at a few Mb´s of data?

/Patrick

----- Original Message ----- 
From: "Jim Donovan" <jdonovan at covergence.com>
To: <Voipsec at voipsa.org>
Sent: Monday, May 08, 2006 12:23 PM
Subject: Re: [VOIPSEC] CALEA Enforcement


> Hi Sachin -
>
> The CALEA requirements you mention in your note are one of the reasons
> why Covergence has developed mid-stream encryption / decryption
> capabilities as well as extensive call recording capabilities.    The
> mid-stream encryption / decryption capabilities allow you to run SIP TLS
> and/or SRTP in your network and our appliance will remove the
> encryption, capture the bidirectional RTP packets, and if necessary,
> re-encrypt for transmission to the next hop in the network.     Our
> appliance has dedicated hardware to ensure that the integrity of the
> media is not impaired as a result of this process.   The captured RTP
> streams are then coupled with an accounting record.    This information
> can be stored on our appliance or swept out to third-party database.
> The stored media recording and associated call record allows the
> captured media to be accessed by law enforcement personnel or network
> technicians for the purpose of troubleshooting call quality.   Whether
> or not an individual call is recorded is done based on a finely granular
> policy that allows the network operator and law enforcement personnel to
> determine who, what, and when to record.
>
> Thanks,
> Jim
> www.covergence.com
> jdonovan at covergence.com
>
> ----- Original Message -----
> From: "Gupta, Sachin" <s-gupta2 at ti.com>
> To: <voipsec at voipsa.org>
> Sent: Friday, May 05, 2006 10:33 PM
> Subject: [VOIPSEC] CALEA Enforcement
>
>
>>I came across an article which mentions the enforcement of CALEA .
> Would
>> this mean no end-to-end security ?
>> How would any kind of legal intercept be possible if there is
> end-to-end
>> security ?
>>
>> http://hraunfoss.fcc.gov/edocs_public/attachmatch/DOC-265221A1.pdf
>>
>> Sachin
>> _______________________________________________
>> Voipsec mailing list
>> Voipsec at voipsa.org
>> http://voipsa.org/mailman/listinfo/voipsec_voipsa.org
>
> _______________________________________________
> Voipsec mailing list
> Voipsec at voipsa.org
> http://voipsa.org/mailman/listinfo/voipsec_voipsa.org

More information about the Voipsec mailing list