[55829] in North American Network Operators' Group
RE: Lawful Interception in the world...
daemon@ATHENA.MIT.EDU (Ben Buxton)
Wed Feb 12 03:33:59 2003
Date: Wed, 12 Feb 2003 09:30:10 +0100
From: "Ben Buxton" <B.Buxton@Planettechnologies.nl>
To: <nanog@nanog.org>
Errors-To: owner-nanog-outgoing@merit.edu
> I'm trying to collect some informations on Lawfull=20
> Interception over the
> world...
> Does any country in the world require such things ?
It's a legal requirement for all ISPs in the Netherlands. If the
government wants to snoop on someone, they have to issue a special
warrant type, and the ISP must provide copies of all packets for the
particular person.
From memory, there is no requirement to "decode" the packets
and extract L4+ info. Just the raw IP suffices.
There is a system developed and adopted by many ISPs to do this
with minumum effort, and almost automated, involving dedicated
switches and servers.
A users packets are not logged until the warrant arrives, so
they cannot say "give us all traffic that user bob sent last
week".
Ben
> LOGS (6 months archive required)
> - mail header logs (all mails, in, out, relay)
> - pop3/imap/webmail access logs (all accounts)
> - dhcp/dial/adsl/gprs/whatever accounting logs (all users)
>=20
> RealTime
> - mail interception (IN,OUT,RELAY) for a certain From/To=20
> address or a
> certain IP.
> the mail has to be encrypted with PGP and sent directly to the Law
> enforcement as a mail attachement.
>=20
>=20
> Thank you for taking 2 minutes to answer to nanog or privatly, this is
> important.
>=20
> P.
>=20
>=20
