On Tue, Jun 24, 2025 at 8:40 PM Stipo via NANOG <nanog@lists.nanog.org> wrote:
This policy enforcement should be done on endpoints/user devices. Not telco. Full stop.
Indeed. The whole point of a Telco service is to deliver your communications safely and privately without looking at the content of the message - common carrier. The second a provider intercepts a message and looks at its content, or has an automated agent look at its content. That is called a wiretap. And tapping into any of your customer's communication content generically (without a legal warrant) is the exact opposite of respecting privacy. You are not really a Telco anymore if you are tapping all your customers; that would be a fundamental infringement to the right to privacy. It's just as invasive as if the US mail were to start opening all the letters and resealing after scanning for suspicious correspondence. This is a technology that belongs in the endpoint with zero service provider involvement, And should only exist with the specific and continued consent of the owner of that device and full disclosure to its user. -- -JA