VoIP & Convergence
Are VoIP and CALEA incompatible?
Last week I wrote about the potential impact of new FCC wiretapping rules on enterprise network managers. This week the subject is the impact of some of these rules on the Internet itself.
Related links
Story tools
Sponsored by:
E-Mail article
|
|
Print article
|
|
Contact author
|
|
AIM article
|
del.icio.us |
Reddit
|
Digg
|
Stumble
|
Slashdot It!
|
A new report shows it may be nearly impossible to implement comprehensive wiretapping of VoIP without reengineering and rebuilding most of the United States' Internet. Not only would such reengineering be extremely costly, it would also relegate the United States to second- or third-class status in Internet-related technological innovation.
As I mentioned in passing last week, the same FCC orders (see here and here) extending the Communications Assistance for Law Enforcement Act (CALEA) to Internet service providers and enterprise networks also extend the legislation to interconnected VoIP service providers. By interconnected, the FCC means a VoIP service that connects calls to and from telephone networks.
A new report from the Information Technology Association of America (ITAA) examines the security implications of applying CALEA to VoIP. I do not know much about the ITAA and did not learn much from its Web site other than its claim to be "the nation's leading information technology (IT) trade association." But I do know - or at least know of - many of the report's authors: a very impressive collection of security and Internet experts indeed.
The report explains VoIP and why it is not your father's phone network. In your father's phone network - after it had been reengineered at great cost but with little user visibility - wiretapping is done quite easily by functions within the phone switches. When VoIP runs over the Internet, however, it does not follow the same model at all.
For example, instead of voice exchanges running through phone switches, in VoIP the voice-carrying data packets run directly between the two phones engaged in the call. The path these packets take often has little in common with the path taken by the packets used to start and stop the call. The path voice packets take is generally through routers not under the control of the VoIP provider. Even if those routers were equipped to perform wiretapping, they would not know what traffic to intercept. Another difficulty, not mentioned in the report, is that traffic paths in the Internet are almost always asymmetric - traffic in different directions takes different paths. This means there are very few places in the network where an intercept would get the whole conversation.
| Use this form to start a public discussion with other Linux World users on this article. Log In | Register for an account (Why you should) |
Note: Register to have your user name appear; otherwise your comment will show up as "Anonymous."
*Anonymous comments will only appear once they are approved by the moderator.
• Dell puts Linux and Atom in Vostro PCs
• Mozilla names best Firefox 3 add-ons
• Torvalds: Fed up with the 'security circus'
• Dell Latitude ON - big win for Linux
• Open source advocates hail appeals court ruling
LinuxWorld Conference and Expo San Francisco, August 4-7, 2008.
Linux Plumbers Conference Portland, OR, Sept. 16-19, 2008.
FreedomHEC Santa Monica, November 8-9, 2008.
Featured Whitepapers