Difference between revisions of "OpenLI Intercept Management"
From neil.tappsville.com
Jump to navigationJump to searchm |
m |
||
Line 1: | Line 1: | ||
=OpenLI Intercept Manager= | =OpenLI Intercept Manager= | ||
− | + | * Keeps track of individual intercepts. | |
+ | * Reduplicates dual intercepts | ||
+ | * Push configuration to freeRadius (Filter AAA messages and transpose Chargeable-User-Identity to user-name field expected by OpenLI) and reload its configuration. | ||
+ | * Terminate expired intercepts (push coa deactivate if the subscribers session is active) | ||
+ | * Push configuration to OpenLI | ||
==Relationships and Terminology== | ==Relationships and Terminology== | ||
Line 9: | Line 13: | ||
* LEA - Law Enforcement Agencies | * LEA - Law Enforcement Agencies | ||
* Warrant - Document naming a (or multiple) person(s), place(s) or object(s) that are subject to LI | * Warrant - Document naming a (or multiple) person(s), place(s) or object(s) that are subject to LI | ||
− | + | Example. Person: Big Bird, Place: 123 Sesame Street, Object: Blue Car | |
* Intercept - Single wiretap instance delivered to a specific LEA with a unique identifier. | * Intercept - Single wiretap instance delivered to a specific LEA with a unique identifier. | ||
− | + | Example. Internet Access Connection for subscriber ABC123 delivered to 'The Spooks' | |
---- | ---- | ||
Line 17: | Line 21: | ||
* SelectorID - Unique identifier used to identify a service instance | * SelectorID - Unique identifier used to identify a service instance | ||
− | + | Example: BNG Chargeable-User-Identity, VoIP: username or phonenumber | |
* MediatorID - IP traffic is only intercepted once within the network, each packet is given this tag and sent to the LI Collector where it will then attribute the raw packet with corresponding intercept(s) | * MediatorID - IP traffic is only intercepted once within the network, each packet is given this tag and sent to the LI Collector where it will then attribute the raw packet with corresponding intercept(s) | ||
* LIID - Lawful Interception Identifier - unique identifier (for that LEA) for which an specific intercepted service is tagged. | * LIID - Lawful Interception Identifier - unique identifier (for that LEA) for which an specific intercepted service is tagged. | ||
− | + | ---- | |
− | |||
− | |||
− | |||
− | |||
NOTE: A single customers service may be intercepted multiple times by a one LEA (the target is the subject of multiple concurrent investigations) and can also be intercepted by multiple agencies at the same time, | NOTE: A single customers service may be intercepted multiple times by a one LEA (the target is the subject of multiple concurrent investigations) and can also be intercepted by multiple agencies at the same time, |
Revision as of 03:19, 25 November 2019
OpenLI Intercept Manager
- Keeps track of individual intercepts.
- Reduplicates dual intercepts
- Push configuration to freeRadius (Filter AAA messages and transpose Chargeable-User-Identity to user-name field expected by OpenLI) and reload its configuration.
- Terminate expired intercepts (push coa deactivate if the subscribers session is active)
- Push configuration to OpenLI
Relationships and Terminology
LEA 1 - n Warrant 1 - n Intercept
- LEA - Law Enforcement Agencies
- Warrant - Document naming a (or multiple) person(s), place(s) or object(s) that are subject to LI
Example. Person: Big Bird, Place: 123 Sesame Street, Object: Blue Car
- Intercept - Single wiretap instance delivered to a specific LEA with a unique identifier.
Example. Internet Access Connection for subscriber ABC123 delivered to 'The Spooks'
SelectorID 1-1 Mediator ID 1-n LIIDs
- SelectorID - Unique identifier used to identify a service instance
Example: BNG Chargeable-User-Identity, VoIP: username or phonenumber
- MediatorID - IP traffic is only intercepted once within the network, each packet is given this tag and sent to the LI Collector where it will then attribute the raw packet with corresponding intercept(s)
- LIID - Lawful Interception Identifier - unique identifier (for that LEA) for which an specific intercepted service is tagged.
NOTE: A single customers service may be intercepted multiple times by a one LEA (the target is the subject of multiple concurrent investigations) and can also be intercepted by multiple agencies at the same time,