I'm trying to collect some informations on Lawfull Interception over the world... Does any country in the world require such things ?
It's a legal requirement for all ISPs in the Netherlands. If the government wants to snoop on someone, they have to issue a special warrant type, and the ISP must provide copies of all packets for the particular person.
From memory, there is no requirement to "decode" the packets and extract L4+ info. Just the raw IP suffices.
There is a system developed and adopted by many ISPs to do this with minumum effort, and almost automated, involving dedicated switches and servers. A users packets are not logged until the warrant arrives, so they cannot say "give us all traffic that user bob sent last week". Ben
LOGS (6 months archive required) - mail header logs (all mails, in, out, relay) - pop3/imap/webmail access logs (all accounts) - dhcp/dial/adsl/gprs/whatever accounting logs (all users)
RealTime - mail interception (IN,OUT,RELAY) for a certain From/To address or a certain IP. the mail has to be encrypted with PGP and sent directly to the Law enforcement as a mail attachement.
Thank you for taking 2 minutes to answer to nanog or privatly, this is important.
P.