OpenLI Intercept Manager

Purpose

• Track individual intercepts.
• Reflect the state of LI components in the network
• Deduplicate dual intercepts
• Terminate expired intercepts (push coa deactivate if the subscribers session is active).
• Push configuration to freeRadius and reload its configuration.
• Push configuration to OpenLI and reload its configuration.

Relationships and Terminology

LEA [1 - n] Warrant [1 - n] Intercept

• LEA - Law Enforcement Agencies
• Warrant - Document naming a (or multiple) person(s), place(s) or object(s) that are subject to LI

Example. Person: Big Bird, Place: 123 Sesame Street, Object: Blue Car

• Intercept - Single wiretap instance delivered to a specific LEA with a unique identifier.

Example. Internet Access Connection for subscriber ABC123 delivered to 'The Spooks'

SelectorID [1 - 1] MediatorID [1 - n] LIIDs

• SelectorID - Unique identifier used to identify a service instance

Example: BNG Chargeable-User-Identity, VoIP: username or phonenumber

• MediatorID - IP traffic is only intercepted once within the network, each packet is given this tag and sent to the LI Collector where it will then attribute the raw packet with corresponding intercept(s)
• LIID - Lawful Interception Identifier - unique identifier (for that LEA) for which an specific intercepted service is tagged.

accesstype's

Provisioner API valid values for 'accesstype' --- > ETSI InternetAccessType (102 232-3)

https://github.com/wanduow/openli/blob/a1ea51c30fc9f22cbe03b419d6dfbbcb79df62df/src/collector/internetaccess.c https://www.etsi.org/deliver/etsi_ts/102200_102299/10223203/03.07.01_60/ts_10223203v030701p.pdf

NOTES

NOTE: A single customers service may be intercepted multiple times by a one LEA (the target is the subject of multiple concurrent investigations) and can also be intercepted by multiple agencies at the same time,