Publication:
Digital Wiretap Warrant: Improving the security of ETSI Lawful Interception

Thumbnail Image
Identifiers
URI: http://hdl.handle.net/10016/24620
ISSN: 1742-2876
DOI: https://dx.doi.org/10.1016/j.diin.2015.04.005c
UXXI: AR/0000017418
Files
digital_DI_2015_ps.pdf (919.26 KB)
Publication date
2015-09
Defense date
Authors
Advisors
Tutors
Journal Title
Journal ISSN
Volume Title
Publisher
Elsevier
Impact
Google Scholar
Export
Research Projects
Organizational Units
Journal Issue
Abstract
Lawful Interception (LI) of data communications is an essential tool for Law Enforcement Agencies (LEA) in order to investigate criminal activities carried out or coordinated by means of Internet. However, the ability to secretly monitor the activities of citizens also has a great impact on civil rights. Therefore, democratic societies must prevent abuse and ensure that LI is only employed in specific cases with justifiable grounds or a probable cause. Nowadays, in many countries each interception must be authorized by a wiretap warrant, usually issued by a judge. However, this wiretap warrant is merely an administrative document that should be checked by the network or service operator before enabling the monitoring of its customers, whose communications are later handed over to a LEA in plaintext. This paper proposes the idea of employing a Digital Wiretap Warrant (DWW), which further protects the civil liberties, security and privacy of LI by ensuring that monitoring devices can only be enabled with a valid DWW, and by encrypting the captured data so only the authorized LEA is able to decrypt those communications. Moreover, in the proposed DWW framework all digital evidence is securely time-stamped and signed, thus guaranteeing that it has not been tampered with, and that a proper chain of custody has been met. In particular this paper proposes how to apply the DWW concept to the lawful interception framework defined by the ETSI LI Technical Committee, and evaluates how the additional security mechanisms could impact the performance and storage costs of a LI platform.
Description
Keywords
Digital Wiretap Warrant (DWW), Lawful Interception (LI), ETSI LI Technical Committee, Civil rights, Security, Privacy, Digital evidence, Chain of custody
Bibliographic citation
Digital Investigation, 2015, 14, pp. 1-16.
Collections
DIT - RYSC - Artículos en Revistas Internacionales / International Journals
OpenAIRE: Open Access Infrastructure for Research in Europe