Solved

Voip and Communications Assistance for  Law Enforcement  Act

Posted on 2011-03-23
1
307 Views
Last Modified: 2012-05-11
Hi:
I need help in resolving the following question:
I have a company which uses Voip which has a server with all the company user’s registered names. That server is used to set up each call by giving each participant the IP address of the other party. The actual phone calls are peer to peer encrypted links ( which do not go through any of  my servers, and the keys do not come from the company but, instead it comes from a Diffie Helman exchange).
My company is required to comply with the Communications Assistance for  Law Enforcement  Act (CALEA) for all calls to and from USA phones.
A)      How can my company determine if a phone call is being made in the USA?
B)      Where would the CALEA have to put the hardware or software to eavesdrop on the calls?


0
Comment
Question by:Sundayy
1 Comment
 
LVL 39

Accepted Solution

by:
noci earned 500 total points
ID: 35203367
The only way I can see is that you need some "Man in the middle" ...
for example a proxy server that is presented to both as the endpoint, on that endpoint you can log a conversation.
If you have a zrtp based connection this will not exactly work though. ( due to the missing end to end encryption)...
It might not even work in your case depending on the protocol around the DH exchange.
It might be sufficient to have the encrypted stream and a key to decode the data (if that is possible), then you just need a proxy that logs the raw stream (still a proxy in the middle) + a way to get the key.

This might be tough to undoable depending on the exact technology involved.
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
EXSi 6.x hosts on vCenter 5.5 7 78
PC and VOIP network issues 1 49
Monitoring Exchange 2013 8 94
Wireshark filtering IP and port 4 37
This article is focussed on erradicating the confusion with slash notations. This article will help you identify and understand the purpose and use of slash notations. A deep understanding of this will help you identify networks quicker especially w…
Managing 24/7 IT Operations is a hands-on job and indeed a difficult one. Over the years I have found some simple tips and techniques to increase the efficiency of the overall operations. The core concept has always been on continuous improvement; a…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now