Slashdot Mirror

← Back to Stories (view on slashdot.org)

VOIP Progress To Be Hobbled By Wiretap Costs?

Posted by Hemos on from the changing-the-base-level-assumptions dept.

vaporland writes "This article @ nytimes.com talks about the reasons that development of commercial VOIP may be stifled by the costs required to allow the federal government to listen in on conversations. It is the intention of the FBI, et al, to provide a truly unfunded mandate to force VOIP service providers to develop and provide this wiretap access to them at no cost to the U.S. government, which is to say, the consumer of VOIP will foot the bill for allowing the government to listen in on our phone calls. Perhaps they should just hire some script kiddies to show them how to do it on the cheap?"

26 of 392 comments (clear)

  1. Better idea.. by t_allardyce · · Score: 5, Insightful

    Perhaps we should just all (i mean everyone) start using encryption everywhere and make the whole thing pointless just so they give up..

    --
    This comment does not represent the views or opinions of the user.
    1. Re:Better idea.. by ifdef · · Score: 5, Interesting

      In that case, it won't be long at all before the use of encryption becomes illegal. Simply using encryption will be a enough to put you behind bars, regardless of what you are encrypting.

      That's how a police state works.

    2. Re:Better idea.. by TheRealMindChild · · Score: 5, Informative

      Not necessarily. If it worked like PGP, the encryption could be done right on the phone. And just like it works today, you could use any phone, not just the phne companys.

      --

      "When life gives you lemons, don't make lemonade. Make life take the lemons back!" -- Cave Johnson
    3. Re:Better idea.. by gl4ss · · Score: 5, Insightful

      correction, encryption is ESSENTIAL if you can't trust the phone company.

      --
      world was created 5 seconds before this post as it is.
    4. Re:Better idea.. by Cato · · Score: 4, Informative

      Skype already does this, and is of course growing at an amazing rate (see skype.com) - because the signalling and voice data may go through another computer or two before reaching the final computer, all calls are encrypted end to end. Will be interesting to see how the lawmakers deal with Skype (which is Luxembourg based and hence not governed by US regulations, unless it sets up a US subsidiary).

    5. Re:Better idea.. by arivanov · · Score: 4, Insightful

      And that is just one of the reasons I have banned it as a network admin and will not use it.

      In fact, if the letter of law is followed strictly it is already illegal in the UK (quite likely in other countries as well). UK laws mandate that you must be capable of supplying keys for any of your encrypted communications so that police can retroactively decrypt anything encrypted by you. It is called the RIP act. Thanks god, it does not yet have approved guidelines for enforcement as the initial proposal got shot down in flames because it was allowing even the post offices and local counsils to issue requests for keys... Bless his Blunketness for the jolly good idea...

      Skype session keys generation and key exchange mechanisms are not documented. In fact they are not publically available so the actual security is a big unknown. Anyway, if the police asks you for the keys you can only say Ugh... and swallow the corresponding 2 year jail sentence. So they are entitled to jail you for using it already at least in one EU country.

      --
      Baker's Law: Misery no longer loves company. Nowadays it insists on it
      http://www.sigsegv.cx/
    6. Re:Better idea.. by Alsee · · Score: 4, Informative

      Surely your last point is prevented by the right to silence and the right not to incriminate yourself?

      The US Supreme Court has already revoked your right to remain silent when a police officer asks you your name. Google: Hiibel

      And in 2001 the US signed the Cybercrime Treaty, but fortunately the US Senate has not (yet) ratified it. There are a ton of problems with the treaty, from extensive wiretap/data_retention provisions, to requiring the US to issue such warrants and gather evidence and hand it over to foreign police - for activities which are LEGAL in the US (for example France could demand investigations and data for Nazi item auctions), it appears to turn copyright infringment into an extraditable criminal offence, criminalization of vital and fundamental software ("hacking tools").

      Oh yeah, and it also says you shall be compelled to divulge your passwords, keys, and other information. And obviously the only way they can do that is by throwing you in prison if you attempt to remain silent.

      While the treaty has been signed by 26 european nations, the US, Canada, South Africa, and Japan, it has only been ratified by Lithuania, Croatia, Estonia, Hungary and Albania. Of course Bush and the DOJ support it.

      -

      --
      - - You can't take something off the Internet! That's like trying to take pee out of a swimming pool.
  2. I would like the option by ifdef · · Score: 5, Funny

    If I don't pay for the wiretapping costs, don't wiretap me.

  3. Who do you think ultimately pays for it anyway? by Anonymous Coward · · Score: 5, Insightful

    Users of VOIP are taxpayers. At least this can be considered a use tax. If a citizen never uses VOIP should they pay for your wiretap? Just a thought.

  4. Script Tix are for Kids by slashnutt · · Score: 5, Interesting

    The PGP Phone Project is dead now but it would be great of GPGP would revive it. The script kiddes would have a much tougher time cracking this and this is why the goverment is wanting a little help.

  5. No cost to the U.S. government by kfg · · Score: 5, Funny

    Yeah. Why don't they just use their own money instead of making us pay for it?

    KFG

  6. I forgot... by ALeavitt · · Score: 4, Insightful

    When did it become the duty of a government to spy on its own citizens and force them to pay for the privelege of being spied on?

    --
    This sig has been stolen. Return it to its original user for a reward.
    1. Re:I forgot... by Sanity · · Score: 5, Interesting
      When did it become the duty of a government to spy on its own citizens and force them to pay for the privelege of being spied on?
      Since the constitution went from being a list of things the government can do to a list of the things it can't.
  7. remember--only applies to commercial apps by bodrell · · Score: 5, Insightful
    Any person who rolls their own VOIP can avoid being wiretapped at all. If I were a criminal who wanted to not be detected, I sure as hell wouldn't do my illicit communications over a regular phone, anyway. Much easier to just encrypt text and send it through insecure email. Even if the email is intercepted, who cares?

    Public/private keys are great and all, but for organized crime it would work just as well to use a symmetric cipher and just share the keys. If the criminals are all working together, it shouldn't matter if they all know the key.

    Anyway, it always rubs me the wrong way when the feds demand to have backdoor access to spy on us. It's bad enough they have the right to tap a phone at all, but now they're trying to make sure that ability is built into the software? No thanks--I'll use an offshore VOIP provider who doesn't have those nasty requirements.

    --
    Si la vida me da palo, yo la voy a soportar Si la vida me da palo, yo la voy a espabilar
  8. On the bill by peterdaly · · Score: 4, Funny

    Oh how interesting things would be if the likes of Vonage added "Federal Wiretap Fee" as a lineitem on the bill.

    I bet some federal officials would get an earfull. If the general population will have to pay for this feature, they should at least know.

    --
    Soccer Goal Plans
  9. my own service by mrpuffypants · · Score: 5, Insightful

    What prevents me from writing my own VOIP software and using that? Will it need to be wiretap-emabled as well? What if I use SSH or PGP to secure and authenticate the connections?

    Does the government really think that the terrorists are going to sign up for Vonage and not use Skype or their own small app?

  10. VOIP Business Plan? by Skjellifetti · · Score: 5, Insightful

    I've never understood how the VOIP cos. expect to survive long-term. VOIP is just another TCP/IP protocol like ftp or smtp. The only reason a VOIP connection requires a third party provider is because most of the phone network is still POTS and so VOIP cos are essentially brokers between the POTS and the internet. But eventually, most calls will be peer-to-peer across the internet just like most other IP protocols and there will be no need for VOIP cos.

    This makes the whole wiretap thing moot. The VOIP cos. won't survive anyway, so who cares if they die a little earlier because of some silly wiretap requirements?

    --
    FreeSpeech.org
  11. What would the Founding Fathers think? by Anonymous Coward · · Score: 5, Insightful

    Does it ever occur to anyone to wonder what the reaction of the founding fathers would have been to all this crap?

    "Hey, how about we

    (1) make sure the government can listen to folks' private conversations, and make 'em pay for the privelige?

    (2) restrict political protest to 'free speech zones' where no-one can hear it?

    (3) have armed government agents at all ports?

    (4) make everyone carry ID documents if they want to travel, and arrange it so we can secretly scan them without the citizen even knowing?

    (5) refuse to let someone travel if their name resembles the name of someone we have declared an enemy?

    (6) etc etc etc"

    Bottom line: do you think the framers would have

    (a) enshrined the government's right to do this crap in the constitution, or

    (b) enshrined the People's right not to suffer this crap in the constitution?

    It baffles me why Americans are not rioting in the streets.

    1. Re:What would the Founding Fathers think? by dasmegabyte · · Score: 4, Funny

      It baffles me why Americans are not rioting in the streets.

      Easy. The streets are not a designated free speech zone.

      --
      Hey freaks: now you're ju
  12. The Europeans are laughing all the way to the bank by danharan · · Score: 4, Insightful

    With allies like Congress, who needs competition?

    Put in idiotic, technically dubious and extremely expensive regulations, and watch as start-ups flounder. Meanwhile, watch foreign corporations refine their (simpler) systems and develop low-cost ways to deliver their service.

    The US now has a choice to make: paranoia or progress.

    --
    Information: "I want to be anthropomorphized"
  13. Re:Cost of civilization by e2ka · · Score: 5, Insightful
    I for one, say let's trust the people that we have put in positions of power (for the most part), and let them decide when to use this power.

    Which people? You mean the CIA/FBI? Did you vote to give them this power? Did you vote to elect the people who have access to this power? Did you even vote for the person that hired those people?

    The beuracracy is thick. Who is in control? I certainly don't feel like I am.

  14. Re:Cost of civilization by AKnightCowboy · · Score: 5, Insightful
    However, these means are the primary ways of detecting terrorist chatter. If an attack were to happen on US soil for which the planning occurred over VOIP lines, or email, or normal phone lines, and the CIA couldn't prevent it because they couldn't tap lines, then we would all be up in arms.

    Instead of trying to detect attacks, how about eliminating the reasons the terrorists have for attacking us in the first place? Everybody has a reason for doing something... find out what their reason is and eliminate it. I imagine their reason has nothing to do with being really evil and wanting to eliminate freedom, so don't even throw that one in the ring. Nobody is really evil, just greedy and motivated by their own self-interests.

  15. Re:Ditch the phone by Hansu · · Score: 4, Insightful
    they have a reason to bug the phonelines, it's called security. They use it to catch criminals

    You misspelled 'invasion of privacy'. I always thought 'innocent until proven guilty' was somewhat dominant idea of US justice system. Obviously I was wrong.
    If you actually justify spying of people by the fact that some of them are (or may be) criminals you are stating, that all of them are guilty of a crime, until proven innocent.

    --
    .signature: Command not found
  16. Doesn't "hobble" progress by CurMo · · Score: 5, Insightful

    I was a software engineer on Nortel Network's VoIP "succession" line of products, and I can attest that wiretapping ability is something that was required for us to add.

    The issue is with conversations now being transmitted in packets as opposed to analog signals, its impossible to tap the wire conventionally. The only place you could do that is from where the signal is converted back to POTS (plain old telephone service) to the house. Which, in a perfect VoIP world, isn't going to even be an option as people are using things like cable modems as their VoIP gateways (so its digital all the way from the house).

    However, I don't think this "feature" hobbled our progress. It was just another feature in an extremely long list of features that were necessary. I don't think it took the engineer more than a week to implement, but possibly its more difficult in different architectures? (A key to Nortels architecture was being able to seemlessly integrate with POTS service, so digital->analog conversion was basically a built-in).

    Now, whether I agree with the "feature" or not is a different story, but I won't go into that....

  17. *sigh* by FireFury03 · · Score: 4, Insightful
    *sigh* no it won't kill VoIP because:

    • Believe it or not, the whole world doesn't hinge on the US - it may stop development by companies in the US but it won't stop the rest of the world. Once the rest of the world have VoIP the US will _have_ to catch up or be left out in the cold
    • The _only_ time you need to go via a 3rd-party VoIP provider is when you're gatewaying to the PSTN. Calls made purely over the internet don't need to go via "VoIP providers", they can be made as end-to-end calls in the same way as you SSH into a machine. You don't even need to pay a provider to route your VoIP calls since the ENUM system lets you translate normal PSTN numbers into VoIP URIs. So unless you're gatewaying to the PSTN I don't see how these laws are enforcable - you can't regulate end users like that. And if your call is ending up on the PSTN it's tappable there anyway.
    • IMHO eventually (hopefully sooner rather than later) the PSTN will die out in favor or a purely VoIP system. We will nolonger have those hard to remember phone numbers, it will all be tied in with DNS the same as the rest of the internet, so we won't even need PSTN to URI translation systems. i.e. at the moment you can phone IAX2/pabx.nexusuk.org/slashdot and you will get through to the speaking clock running on my VoIP server.


    So basically what I'm saying is that VoIP wiretapping regulations seem to be pointless. They can't prevent individuals from encrypting their own traffic when making direct connections to eachother anymore than they can prevent people from using SSH or HTTPS. And the only time 3rd party VoIP providers (who can be regulated) are even needed is when gatewaying to the PSTN, which can be tapped anyway.
    --
    http://blog.nexusuk.org
  18. I don't get it. by pclminion · · Score: 4, Interesting
    Why do you people complain about this, but not about traditional wiretaps on traditional phones? You seem to think the government is eager to listen to your communications, yet the vast majority of people continue to use the telephone system regardless. Are you being purposefully inconsistent, or just stupid?

    Are you trying to say the government should never be allowed to eavesdrop on criminal communications even with a warrant?! I can't distinguish between that and anarchy. Can somebody please help me?