ETSI Technical Committee

Lawful Interception
ETSI/TC LI
1

Peter van der Arend (Royal KPN)

Chairman ETSI/TC LI
 Why LI

The providers of public telecommunications

networks and services are legally required
to make available to the authorities the
2 information necessary to enable them to
investigate telecommunications.
 History
• ETSI/TC Security Techniques Advisory Group
(STAG) (1991)

3
• ETSI/TC Security (TC SEC)
– Working Group Lawful Interception (SEC-WGLI)
(1997)

• ETSI/TC Lawful Interception (TC LI)

(Oct 2002)
 Terms of Reference
• To develop a suite of standards that allow ETSI
standards to support industry compliance to the
requirements of national and international law.
• To capture the requirements of “Law Enforcement
4
Agencies” and translating those into requirements
to be applied to technical specifications.
• To develop and publish handover interfaces, and
of rules for the carriage of technology specific
interception across these interfaces.
 Relationships inside ETSI

• 3GPP (SA3-LI) (LI for UMTS)

• TC AT (LI for IP Cablecom)
• TC SPAN & EP TIPHON ---> TISPAN
5
• PLT (LI for Powerline Communications)
• EP TETRA
• TC MTS
 Relationships outside ETSI

• National and Regional Law Enforcement Agencies

• OASIS (TC LegalXML-LI)
• T1S1 LAES AHG
6
• ANSI
•
 Participation in TC LI
• Law Enforcement Agencies
– NL, UK, DE, AS, USA, IT, CA, FR, FIN, RU

• Operators
– KPN, BT, DT, Telia, Inmarsat, T-Mobile, Vodafone, Telenor, Telstra
7
• Manufacturers (switch)
– Nokia, Siemens, Ericsson, Alcatel, Cisco, Marconi, Nortel, Lucent
Technologies

• Manufacturers (mediator / LEA equipement)

– Aqsacom, ETI, VeriSign, TopLayer, GTEN, Verint, Pine, Nice
 LEA requirements

• TS 101 331:
Requirements of Law Enforcement Agencies
– Provides guidance in the area of co-operation by
8 network operators/service providers with the
lawful interception of telecommunications.
– Provides a set of requirements relating to
handover interfaces for the interception.
 Other specifications

• ES 201 158 Requirements for Network Functions

• ES 201 671 / TS 101 671
Handover Interface for the Lawful Interception
9
of Telecommunications Traffic
• TR 102 053 Notes on ISDN LI functionalities
• TR 101 943 Concepts of Interception in a Generic Network
Architecture.
• TR 101 944 Issues on IP Interception.
 Handover Interface Concept

10
 Latest published specifications
• Delivery of IP based interception
TS 102 232
HI2 and HI3 interfaces for handover via IP networks
• Service specific details for E-Mail Services
11
TS 102 233
Description for handover of E-mail messages
• Service specific details for Internet Access Services
TS 102 234
Description for handover of Internet Access Information and
TCP/IP information
 Relation TS 102 232 to other standards
Internet
E-mail Service-
access
Application service specific
service
details details
details
Other
TS 102 234 TS 102 233
standards

Presentation Generic Headers

12
Handover manager
Session Delivery session

Transport Transport layer

Network layer

Network and below

Delivery network

TS 102 232
 Actual working issues

• DTR 00014: Lawful Interception of public

Wireless LAN Internet Access
• General update of:
13
TR 101 943 Concepts of Interception in a
Generic Network Architecture
• Keeping up to date of the LI specifications
 LI standards in 3GPP (UMTS)

• TS 133 106
Lawful interception requirements
• TS 133 107
14
Lawful interception architecture and functions
• TS 133 108
Handover interface for Lawful Interception
 Future developments

• Lawful Interception of IP Cablecom

• Lawful Interception of TIPHON
• Lawful Interception of third generation mobile systems
15
• Maintenance of existing documents; especially
ES 201 671 / TS 101 671 and TS 101 331.
 More details on ETSI/TC LI can be found on:

http://portal.etsi.org/li/Summary.asp
16
17