Slashdot Mirror

← Back to Stories (view on slashdot.org)

VOIP Tappings Under Scrutiny

Posted by CmdrTaco on from the as-well-they-should-be dept.

dynooomite writes "CNN.com is reporting that Privacy groups have asked an appellate court to overturn an FCC rule that allows for phone-taps on VOIP calls. The privacy groups made their case saying taps would seriously hinder innovation on the web."

107 comments

  1. Encryption? by GreyWolf3000 · · Score: 5, Interesting

    If I choose to encrypt my VOIP traffic using some sort of TLS, would such a ruling allow the FCC to force me to give them my encryption key?

    --
    Slashdot: Where people pretend to be twice as smart as they really are by behaving like children.
    1. Re:Encryption? by Anonymous+Cowpat · · Score: 3, Insightful

      it already does it Britain (not to the FCC, obviously)

      --
      FGD 135
    2. Re:Encryption? by Anonymous Coward · · Score: 0

      Better yet, if the VoIP calls are encrypted, how can a government organization possibly tap the conversations?

    3. Re:Encryption? by MaceyHW · · Score: 3, Insightful

      The rule applies to VoIP providers such as Vonage that use a central telephone company to complete Internet calls. It also applies to cable and phone companies that provide broadband services. The companies must comply by May 2007.

      Apparently not. I think the really interesting issue there is would be third party companies that were to provide certificate services for ad hoc encryption be subject to the requirement

    4. Re:Encryption? by mholt108 · · Score: 0, Troll

      The way they speak about it, tapping is just a matter of law. I thought my skype calls were safe .. is the encryption that easy to work around? Has anybody here done it?

    5. Re:Encryption? by Anonymous Coward · · Score: 3, Funny

      Yeah, if only an agency existed that could intercept and decrypt encrypted communication....

      too bad there's No Such Agency.

    6. Re:Encryption? by Anonymous Coward · · Score: 0

      I have. But I'm not going to tell YOU how I did it. Also, your sister sounds hot...

    7. Re:Encryption? by Sloppy · · Score: 1

      Well, if we copy the UK law, then the way it will work is that you'll be forced to hand over your key, but you will also be prohibited from informing yourself that you did so. So if men in black ever show up and demand your key, be sure you don't suddenly change your behavior, or else they'll accuse you of tipping yourself off, and then you'll be held in contempt of court.

      --
      As copyright owner of this comment, I authorize everyone to defeat any technological measure which limits access to it.
    8. Re:Encryption? by Dwonis · · Score: 1

      If the men in black show up, they'll just "flashy-thing" you once you're done.

    9. Re:Encryption? by Jason+Pollock · · Score: 2, Informative

      If you use a private codec, you aren't going to be interconnecting with the PSTN. If you aren't interconnecting with the PSTN, you aren't covered by the wire tap rule.

      They don't care if you and your friend Jeff write your own codec and use that.

    10. Re:Encryption? by Software+Salesman · · Score: 0, Troll

      Skype is a law unto itself. Remember that these are the guys who developed 'illegal' file sharing technology and don't feel it prudent to ever enter the USA. Skype port-hops in a way that makes it REALLY hard to detect. Check it for yourself by making a H.323 call, a SIP call and a Skype call and monitoring the results with something like Ethereal. SIP and H.323 both appear as calls - Skype never appears as a call. This is what pisses the FEDs off. Legal encryption can always be broken - this kind of shit is tricky. Notebooks out, plagiarists!

  2. Taps on VOIP? by tyroney · · Score: 1

    If the taps are on VOIP, what concern is it of the web? Slippery slopes don't count. Or is it possible to tap only VOIP, leaving other traffic alone?

    1. Re:Taps on VOIP? by bypedd · · Score: 3, Insightful
      "The whole process of innovation on the Internet would be seriously damaged..."

      That does seem a little overemphasized. I think the taps on VoIP does raise (again) the concern of what is the FCC's business. If I should at my neighbor over my fence, do I have to do it in such a way that is compliant with FCC's regulations? What if we decide to use tin cans connected with a string? When does it fall inside the FCC's four flags?

      Furthermore, May 2007 isn't very far away for system-wide changes. So then it comes back to the triangle of manufacturing Quality - Price - Speed -- pick any two. If they say it's a requirement within 2 years, indrectly they may be demanding a chunk of revenues going into maintenance instead of expanding service or what have you. Either way, it doesn't seem like it will help consumers in the average case.

    2. Re:Taps on VOIP? by ucahg · · Score: 3, Insightful

      VoIP is the web, in a way. It's just a different protocol. If you read the SIP standards, they are very much like instant messaging standards, so can the FCC tap instant messages too? And it's not that different from normal HTTP either, ultimately, so can they tap that? At what point is it under their juridiction? If you are continuously sending packets of voice? What about sending an entire recording at once? How is it different?

      These are the questions that I believe were behind the point that it will ruin innovation.

  3. Huh? by HebrewToYou · · Score: 1

    From TFA:

    To meet the rule's requirements, Internet call providers would have to rewire networks at great cost, Morris said. In addition, there is fear the rule would stifle development of new technologies by placing more regulatory burdens on innovators.

    Can someone explain to me (a) why they would have to rewire these networks and (b) how this would stifle the development of new technology? I must be dense...

    --
    I'm not popular enough to be different.

    Homer Simpson, The Simpsons

    1. Re:Huh? by kannibal_klown · · Score: 2, Interesting
      Can someone explain to me (a) why they would have to rewire these networks and (b) how this would stifle the development of new technology? I must be dense...


      Well, I'm just guessing, perhaps they don't mean to physically re-wire the networks but completely change the data flow.

      For example, it's highly probable that for privacy concerns they specifically set everything up so nobody in the home office can listen in on any calls. It makes sense, as in case of a security audit they can say "we don't have the ability to eavesdrop, check our infrastructure if you doubt us."

      With this ruling they may have to allow feds access to a hub or something that will allow them to intercept all traffic and listen in on both sides. Skype would be a real pain in the but as they supposedly encrypt their transmissions. They'd need access to everyone's keys.

      But I'm just guessing here.
    2. Re:Huh? by temojen · · Score: 5, Informative

      RTP and H.323 communications that do not have a PSTN endpoint are routed point to point. Wiretapping would require them to be routed through or multicasted to a central wiretap server (at least the ones that are being tapped).

    3. Re:Huh? by temojen · · Score: 1
      They'd need access to everyone's keys.

      Or just the public key of law enforcement agency x and provisions so that any endpoint being tapped can flip a switch (invisible to the end user) and start transmitting all data to the wiretap server.

    4. Re:Huh? by P3NIS_CLEAVER · · Score: 1

      Why not just tap into the phone/dsl/cable line near the house that is under survailence?

      --
      Please sign petition to restore sanity to our banking system!!!

      http://financialpetition.org/
    5. Re:Huh? by HebrewToYou · · Score: 1

      Thanks, temojen.

      That clears up my first question, but what about that innovation stifling bit?
      Sensationalism on the part of Privacy Pundits and Mass Media?

      --
      I'm not popular enough to be different.

      Homer Simpson, The Simpsons

    6. Re:Huh? by csirac · · Score: 1

      I believe the concern is they have to "upgrade" to specific software or equipment. Not sure if they have an FCC approved wiretap patch for Asterisk...

    7. Re:Huh? by kannibal_klown · · Score: 1

      True, but they don't do that too often anymore unless there's no other choice. There's too much chance for it to be found or heard (clicks).

      Also, it's a lot of work for a non-priority case. Sure a mob case or terror case is one thing, but all the others?

      Most of their taps now-a-days are just getting the telcos to allow them to tap their conversations remotely. They want to maintain it for VoIP.

  4. Weasel words, Ho! by AKAImBatman · · Score: 5, Funny

    The privacy groups made their case saying taps would seriously hinder innovation on the web.

    Can we STOP using that word? This is getting worse than "Synergy"! If you have a point, try to quantify it in a reasonable manner. For example, "Tapping VOIP would drive up costs, thus resulting in slower adoption in an otherwise emerging market."

    "Innovation" is nothing more than a weasel word that get bandied about everytime someone wants to argue against something, but has no argument prepared.

    So, for the sake of the Children, everything Holy, and the nerves of all of us in the tech industry, please STOP USING THAT WORD as a defense. Thank you, have a nice day.

    --
    Javascript + Nintendo DSi = DSiCade
    1. Re:Weasel words, Ho! by fshalor · · Score: 2, Interesting

      Ohoh... we're (a campus) actually looking at rolling out an inhouse VOIP solution to save us money over the pots system.

      The new policy is " for every network drop, put in a phone line" (so cat-5 and cat-3 ran to every wall box) and "for every phone line ran, run a network drop". (same) And this is now (increased) to , two cat-5's and one cat-3 per box.

      The thing is, we have so much internal bandwidth that there's no sense paying for the phones they way we are. I mean, for the price of three phone lines per month I can drop a fresh multimode fiber into a core switch. (One time cost!).

      We'll see how it goes. I'm hoping for the VoIP solution, since we'll be able to be a lot more flexible and move people and numbers around a lot more. Not to mention all the crap we'll get out of the pipes.

      Best,

      --
      -=fshalor ::this post not spellchecked. move along::
    2. Re:Weasel words, Ho! by Anonymous Coward · · Score: 0

      I find your lack of innovation to be most disturbing!

    3. Re:Weasel words, Ho! by Krach42 · · Score: 2, Funny

      Your not wanting me to use the word "innovation" is stifling my innovative use of the word innovation!

      --

      I am unamerican, and proud of it!
    4. Re:Weasel words, Ho! by Control+Group · · Score: 2, Interesting

      1.8026175 × 10^12 furlongs per fortnight

      c?

      --

      Reality has a conservative bias: it conserves mass, energy, momentum...
    5. Re:Weasel words, Ho! by Krach42 · · Score: 1

      First person to comment on it. Yep, it's c

      --

      I am unamerican, and proud of it!
    6. Re:Weasel words, Ho! by ScrewMaster · · Score: 2, Insightful

      I agree, and may we add two additional weasel words, "rampant" and "piracy" to the list?

      Thanks.

      --
      The higher the technology, the sharper that two-edged sword.
  5. Read it again by dr_dank · · Score: 0, Redundant

    For the very first time.

    --
    Where does the school board find them and why do they keep sending them to ME?
    1. Re:Read it again by UOZaphod · · Score: 5, Funny

      I don't like this special edition.

      In the original, the FCC shot first.

      --
      "The unicode stuff in the latest version is working fabulously well. My russian mafia friends are ecstatic."
  6. Yes please by dzafez · · Score: 1

    Yes, everyone saying people in the EU are less free then those in the USA might please post here, after RTFA. After Posting your humble opinion, you may want to reconsider searching for more information about the wiretapping in Europe.

    Thank you. I would be pleased to see some people to stop spamming /. with this topic over and over again with this stupid topic.

  7. The facts here are simple by Work+Account · · Score: 5, Insightful

    To "sit on a wire" anywhere you should need a probable cause and a warrant.

    Anyone without this is simply hacking, which is illegal.

    --

    If you "get" pointers add me as a friend (116)!
    1. Re:The facts here are simple by DrJimbo · · Score: 5, Insightful
      To "sit on a wire" anywhere you should need a probable cause and a warrant.
      If by should, you mean in a ideal world, or at least in a world more ideal than ours, then I fully agree with you that such things should be needed. Unfortunately they are not, unless the Patriot Act was recently repealed and no one told me.

      --
      We don't see the world as it is, we see it as we are.
      -- Anais Nin
    2. Re:The facts here are simple by Rydia · · Score: 2, Insightful

      Still need a warrant from a federal judge, albeit in some cases a secret one. If you don't have one, you can go for the immediacy excuse, but then you have to explain later or get slapped. Federal Judges aren't monkeys, you know.

    3. Re:The facts here are simple by DrJimbo · · Score: 1
      A Google("patriot act" wiretap warrant) led to this page, which says:
      The Foreign Intelligence Surveillance Act (FISA) regulates the FBI's collection of "foreign intelligence" information for intelligence purposes. Under the Fourth Amendment, a Title III warrant to intercept a communication must be based on probable cause to believe that a crime has been or is being committed. This is not the general rule under FISA: surveillance under FISA is permitted based on a finding of probable cause that the surveillance target is a foreign power or an agent of a foreign power, irrespective of whether the target is suspected of engaging in criminal activity. The USA PATRIOT Act expanded law enforcement authority to conduct searches and obtain communications under Title III, and also rolled back the already lax restrictions on the FBI's ability to gather information about individuals under FISA.
      And from this page:
      [...] the PATRIOT Act specifically lowers the threshold for obtaining a full collection warrant for Internet traffic. Instead of needing probable cause as required by Title III, the FBI now only needs to show that the information to be gathered is "relevant to an ongoing criminal investigation." That is a much lower standard than showing probable cause that a crime has been committed.
      Clearly, probable cause to believe that criminal activity is occuring is no longer required. It appears that warrants are still technically needed but the requirements are so lax they make the need for a warrant a mere fig leaf of decency.

      If Orwell were alive, he'd be rolling in his grave.

      --
      We don't see the world as it is, we see it as we are.
      -- Anais Nin
    4. Re:The facts here are simple by Anonymous Coward · · Score: 0

      This brings to mind a wiretapping case that came up during Prohibition. The police wiretapped the phonelines outside a man's house instead of his telephone and used the evidence they collected to arrest him. He sued and lost, the court ruling that because the phone lines where not inside the man's house, the tap was not unconstitutional or illegal.

      Following the same logic, the police (or whoever is eavesdropping) could theorectially dip into the servers that handle VOIP and claim their actions were in bounds.

      I can't for the life of me remember the name of the case. Anybody know?

    5. Re:The facts here are simple by susano_otter · · Score: 1

      Successful bank robbers are successful in part because they are careful to do their planning and preparation in ways that don't support the belief that criminal activity is occuring. That is, they game the system to ensure that the people charged with stopping them have no legal justification for doing so.

      One question worth asking here is, is it beneficial to our society to give up earlier and more effective prevention of bank robberies in exchange for greater privacy and freedom for law-abiding citizens?

      The answer to this question is generally an overwhelming "yes".

      Support for the Patriot Act seems to come largely from people who believe that the "yes" answer is not as compelling when you alter the sceneario such that instead of robbing banks, the "bank robbers" are plotting to detonate nuclear bombs at crowded stadiums, or crash passenger liners into large office buildings, or mail anthrax to everybody in the tri-state area.

      In principle, I wholeheartedly agree that the old "yes" answer isn't automatically appropriate to this new scenario.

      --

      Any sufficiently well-organized community is indistinguishable from Government.

    6. Re:The facts here are simple by DrJimbo · · Score: 1
      I couldn't disagree with you more.

      First, I can't believe that you really believe your facile, Hollywood fairy tale of the crafty bank robber. We have bank robbers in the region where I live. They are usually poor and desperate. The successful ones use a gun and a mask and a getaway vehicle. They aren't gaming any system.

      Second, I know for sure that the people who championed the Patriot Act are the same people who now want to subvert the overwhelming will of the American people and legalize torture.

      Third, the Patriot Act was rushed through a panicked Congress six weeks after the 9/11 attacks. Most members of Congress didn't have time to read it all, let alone analyze it carefully.

      Fourth, my first post in this thread was to correct an apparent misconception that the government still needed probably cause to tap phone conversations. The fact that there is still a lot of confusion about what the Patriot Act really does, combined with the fact that it was rushed through Congress imply that part of the reason some people support it is because they don't really know what it does.

      Fifth, the real debate over the Patriot Act is not about bank robbers versus terrorists. One real debate would center around whether provisions in the Patriot Act violate the 4th Amendment of the Constitution.

      A better debate would center around Benjamin Franklin's prophetic:

      They that would give up essential liberty to obtain a little temporary safety, deserve neither liberty nor safety.
      You would need to show that the provisions in the Patriot Act would actually be effective in preventing the Hollywood styled terrorist act you proposed. Whatever added safety is provided would then have to be compared with the very real threat of the Patriot Act being misused to stifle politic dissent.

      History shows us that every police power that has been enacted has also been abused. In my opinion, the Patriot Act clearly violates the Constitution and is a very dangerous step towards the USA becoming a police state. The measures in the Patriot Act would have done nothing to help prevent the 9/11 attacks although it has already been used against non-terrorist political groups in the US. I think it must have been named for the Patriot Missile which was famous for never hitting its intended target.

      --
      We don't see the world as it is, we see it as we are.
      -- Anais Nin
    7. Re:The facts here are simple by Anonymous Coward · · Score: 0

      Let me give you a hint. If the USA is "becoming a Police State, then everywhere else in the ENTIRE WORLD is already a police state. Your second lie is that the adminsitration wants to legalize torture. What they want is to preserve the priveledge of being mean. *your* definition of torture seems to include anything that's unpleasent. Let me give you a hint. I put up with "offensive music" driving to work that our interrogators are not allowed to "victimize" WAR CRIMINALS at guantanamo. In other words. You're a cunt.

    8. Re:The facts here are simple by Anonymous Coward · · Score: 0

      If the USA is "becoming a Police State, then everywhere else in the ENTIRE WORLD is already a police state.

      How is this different than "But Dad, all the other kids are doing it...." ?

      Not good enough. Not nearly good enough

    9. Re:The facts here are simple by Anonymous Coward · · Score: 0

      Huh? What war criminals at Gitmo?

      How many have been charged or prosecuted in any way?

      Let me save you some time. 2.

      That's roughly a 0.002 success rate.

      So sing it with me, "Ameeerica, FUCK YEAH!"

    10. Re:The facts here are simple by Anonymous Coward · · Score: 0

      Right on. If you throw your principles out the window the first time they're challeneged, that's pretty sad. We must fight the urge to be cowards.

      It's a hell of a lot worse than making somebody listen to Britney Spears. FYI, I've been through multiple levels of SERE training. Nobody, and I repeat nobody should ever/ever have to undergo some of the things that we are now doing to uncharged and unconvicted people. Are we Americans or not?

      I don't really care about the warm/fuzzy position. Torture simply doesn't work. From a utility point of view, any professional military interrogator will tell you: It. Just. Doesn't. Work. Period. Before long, you are told exactly what you want to hear. Then you get things like the recent NYC metro scare. Repeated over days. Elaborate. Self Consistent. And wrong. All it can do is breed more terrorists by justifying their (formerly) flawed assertions that we are evil hypocrites.

    11. Re:The facts here are simple by susano_otter · · Score: 1

      You're assuming that the liberties being given up are "essential" in the sense that Franklin used the term.

      Do you have anything better than CNN to offer, in support of this assumption? It's obvious that Franklin didn't consider all liberties to be essential, since the government he endorsed certainly curtailed quite a few.

      --

      Any sufficiently well-organized community is indistinguishable from Government.

    12. Re:The facts here are simple by Anonymous Coward · · Score: 0

      You're reaching. That was an oft-quoted example to illustrate how s/he felt about something that on the surface appears to violate something explicit in the bill of rights. ...and you don't trust CNN?! :-)

    13. Re:The facts here are simple by Anonymous Coward · · Score: 0

      Buzzz! Sorry, even before the Patriot debacle those were sealed by the court. You've never heard of a mafioso who outwitted the FBI by simply requesting public records on current wiretaps they themselves were the target of....

      Turns out they were rarely denied either.

      Given the ~130 separate alleged FBI abuses of the Patriot Act (and those were just the new ones this week), I pray we are starting to come to our senses about one of the most embarassingly un-American pieces of legislation in our history.

    14. Re:The facts here are simple by dpmapping · · Score: 1
      To "sit on a wire" anywhere you should need a probable cause and a warrant.

      Does that mean the birds sitting on the wire outside my window are actually "Police Birds" and are merely carrying out surveillance of my telephone usage? Should I ask them for their warrant?

      As it is cold, should I use the phone more to send more current down the wires to warm their little feet up?

      I think we should be told these secrets.....

  8. What type of lawsuit? by ryturner · · Score: 1

    How do you file a lawsuit on the grounds that it will "seriously hinder innovation on the web"? It is not illegal to have a stupid rule. Maybe someone with more legal knowledge can clarify this for me.

    1. Re:What type of lawsuit? by E-Rock · · Score: 2, Insightful

      No, stupid rules aren't illegal, but stuipd rules that will cause harm can be blocked. I didn't RTFA, but you can get an injunction that either prevents the stupid rule from being enforced or invalidates the rule altogether.

    2. Re:What type of lawsuit? by MaceyHW · · Score: 5, Insightful

      IANAL, but judging by the similar pattern of events with the "broadcast flag" it has to do with the fact that this is a regulation created by the FCC, not a law passed by Congress. FCC decisions can be challenged in court because the FCC has a specific, limited mandate and you can argue that it has exceeded it's authority.

      Also, the "seriously hinder innovation" line is most likely a rhetorical tool more than the actual central legal argument of the case

  9. Whenever I hear duping... by aicrules · · Score: 0, Offtopic

    I know my voip is wire tapped. I think CmdrTaco has a loopback on his dupe machine.

  10. Get the FBI to tap /. Editors by RingDev · · Score: 0, Offtopic

    That way maybe we can track these dupists ;)

    -Rick

    --
    "Most people in the U.S. wouldn't know they live in a tyrannical state if it walked up and grabbed their junk." - MyFirs
  11. Innovation? by P3NIS_CLEAVER · · Score: 5, Insightful

    What does innovation have to do with it? Aren't our constitutional rights more important than if companies can make money off something?

    --
    Please sign petition to restore sanity to our banking system!!!

    http://financialpetition.org/
    1. Re:Innovation? by millennial · · Score: 0, Offtopic

      You know, I'd be more inclined to agree with you if your name didn't imply grievous bodily harm.

      --
      I am scientifically inaccurate.
    2. Re:Innovation? by P3NIS_CLEAVER · · Score: 0, Offtopic

      I guess your not a girl.

      --
      Please sign petition to restore sanity to our banking system!!!

      http://financialpetition.org/
    3. Re:Innovation? by keraneuology · · Score: 1
      According to US Senator John McCain, R-AZ, no, money is more important that Constitutional rights.

      "There's only one thing more important than money _ and that's lives"

      Quoted in the Washington Post, 10/20/05 in an article about a $3 billion dollar federal subsidy to ensure that the poor in this country can afford digital television. (There ain't enough money for bread, but there's enough for Beavis and Butthead).

      A request for clarification to Sen. McCain's office was ignored. Other Senators refused to distance themselves from the remark.

      --
      If the g'vt kept the data on you that google does you'd better believe you'd be calling it "doing evil"
  12. It's not possible by MoogMan · · Score: 4, Interesting

    Well, if they had any fucking sense, they'd realise it wasn't possible. You can still (In the SIP/SDP case) send an arbitrary codec description over a call. The actual call is point-to-point.

    Even taking into consideration the possibility of codec recognition and denying calls based on a restricted set of codecs, you could just place a "signature signal" at the start of the call - something relatively inaudible to the human ear - that triggers encryption etc. Maybe in the same way as Amateur Radioers have a blip at the start/end of speech.

    1. Re:It's not possible by garver · · Score: 1

      If it's law, it'll be made possible. It'll be engineered that way by the law abiding and in this case, anyone that wants to make money from VoIP falls into the "law abiding" category. I'm talking about service providers, equipment manufacturers, and software vendors. Given the choice of breaking the law and protecting what should be your right to privacy, you'll lose.

      I think what you're referring to are those that don't care about making money. Call them the "VoIP underground." But its worse than that. As soon as they organize, the government has something to go after. Open source projects count as organized. You'll be left with getting your renegade VoIP software from some kiddy in an IRC channel. Who knows what'll worms/trojans/nastiness will be in that code? Or you can writing it yourself. These are the people the FBI will never be able to stop. A small population and not ideal for the FBI, but I gather they're willing take what they can get easily and work on these deviants later. (Of course they're deviants! Why else would they be hiding?)

    2. Re:It's not possible by radionerd · · Score: 1

      "Maybe in the same way as Amateur Radioers have a blip at the start/end of speech."

      What blip would that be? Amateur Radio rules forbid encryption. Some Amateur radio repeater systems insert "beeps" to signal the end of transmissions, but generally serve no real purpose other than entertaining the system users. I've only been an active ham radio opperator for about 28 years, so as a newbie, I may simply have never have heard of these blips. Maybe you were thinking of that other service, Childrens Band, they like lots of beeps and sundry noises, but that entire service has no purpose at all, except to entertain the children.... er, users

      73 DE WB7RSG

    3. Re:It's not possible by Anonymous Coward · · Score: 0

      Haha I like it - Childrens Band. I didn't imply that Amateur/CBers encrypt their signals, only that they occasionally have the EOF message, and that it is technically feasible to encrypt some sort of "start encryption" message within that.

  13. The real question is... by 2names · · Score: 5, Interesting

    if you encrypt your traffic and the FCC or some other Govt agency attempts/succeeds in breaking your encryption, could it ("they") be found guilty under the DMCA?

    --
    "I'm just here to regulate funkiness."
    1. Re:The real question is... by squiggleslash · · Score: 0, Troll

      No.

      --
      You are not alone. This is not normal. None of this is normal.
    2. Re:The real question is... by LilGuy · · Score: 2, Insightful

      Very unlikely. Often times the ones who enforce the rules don't abide by them. Especially in this day and age when anyone can be considered a "national security risk". That's the only excuse they'd have to barf up to weasle out of any litigation.

      --

      You're nothing; like me.
    3. Re:The real question is... by Sloppy · · Score: 5, Informative

      DMCA contains an exemption for Law Enforcement.

      --
      As copyright owner of this comment, I authorize everyone to defeat any technological measure which limits access to it.
    4. Re:The real question is... by timeOday · · Score: 0, Troll
      if you encrypt your traffic and the FCC or some other Govt agency attempts/succeeds in breaking your encryption, could it ("they") be found guilty under the DMCA?
      Uh huh. Right after a cop gives you a speeding ticket, and you issue him one for catching up to pull you over. Good luck with that.
    5. Re:The real question is... by Mac+Degger · · Score: 1, Interesting

      I agree with your sentiment that in the current administration, this is a very dangerous development, I'd say a land grab, really.

      However, here at /. and elsewhere, we're always bitching about new laws being drafted to cover stuff which happens on the 'net, when there are perfectly sane and established ones which would cover the case. And here's just a situation like that, only the other way 'round. Wire-tapping is (if there is oversight to prevent abuse, checks and balances etc) something which law-enforcement needs. Any non-tinfoil hat type would agree to that. And that should apply to any instance, be it POTS or VoIP (or email, I'd say). Wiretapping is about intercepting communications between criminals, irrespective of the system used.

      Now I can understand people being quite scared of the current US administration (what with the Guantanamo, we can put you away and no-one will ever hear from you again, AND we can torture you 'cause we say the Geneva convention doesn't apply to us government you have right now), but !!with a decent government and decent checks and balances in place!!, I personally find it rediculous that anyone could be against the tapping of VoIP/e-mail or whatever. It's how you catch criminals.

      Note, however, that I'm fully for encryption; you really don't want your next door neighbour/copeting company to be tempted to read that open communication you're discussing your trade secrets over. But then a government would just have to outspend if they want to decrypt and read it...having to hand over keys is too insecure; encryption is secure so long as it's only governments which have the computing power to crack it.

      --
      -- Waht? Tehr's a preveiw buottn?
  14. s/allow/require/ by frankie · · Score: 5, Interesting

    Aside from being a dupe, this submission is worded horribly. The FCC ruling does not allow VOIP-tapping; that's already allowed under standard warrant laws. The ruling is that VOIP providers should be required to make it just as easy to tap a VOIP call as it is to tap a land or cell call, by hooking into the phone company trunk. Given the wandering nature of internet packets, it would be intrusive, expensive, and possibly infeasible to add to an existing system.

    1. Re:s/allow/require/ by P3NIS_CLEAVER · · Score: 1

      Hence the talk about innovation. I guess implementing these taps would be very expensive- don't tell me I should of RTFA!

      --
      Please sign petition to restore sanity to our banking system!!!

      http://financialpetition.org/
    2. Re:s/allow/require/ by moviepig.com · · Score: 2, Interesting
      The ruling is that VOIP providers should be required to make it just as easy to tap a VOIP call as it is to tap a land or cell call.

      "While I nodded, nearly napping, suddenly there came a tapping..." - E. A. Poe

      Is it naive to suppose that serious miscreants know how to evade eavesdroppers?

      --
      Seeing bad movies only encourages them. Watch responsibly
    3. Re:s/allow/require/ by kharchenko · · Score: 1

      You'd think so, but then we've read about anyone from real terrorists to CIA operatives get nabbed through tracking plain ol' cell phones!

  15. fail to see the big deal by chinadrum · · Score: 1

    I really fail to see the big deal. They wiretap analog phone lines now. This is just tapping digital lines. Whoopdie do, now they have to be able to send a call's packets to a second place to be listened to. They have control over their routing and should already be able to tell which customer data is coming from. Implimenting something that can sort and redirect seems pretty small. Isn't this part of what carnivore did anyway with all other data from a user?

    1. Re:fail to see the big deal by Anonymous Coward · · Score: 0
      Proplem is smart criminals will just use traceroute and see if they are being tapped. The whole point of wiretapping is that is covert in nature. It will be really difficult to tap voip once criminals learn the easy out. However this could be a good thing as it will keep voip respectable because criminals will know that it is not an easy cheap communication line. Double encripted voip using proprietary devices is another question all together. I am sure that the military and the government already employs this strategy.

      Criminals with enough cash to buy these devices will be really hard to listen in on, one good way is if the government releases honeypot phony voipphone devices and uses tricks to lure know and wanted serious offenders into traps.

      I have ho qualms about using tricks to trap some of the jerks that take advantage of our freedom to seriously screw people! Of course we have to be judicious and not malicious about these issues. Freedom does have a price and a good deal of common sense must be used to protect it.

    2. Re:fail to see the big deal by Detritus · · Score: 1

      Think of it like banning any car that can go faster than 75 mph, because police cars have a maximum speed of 85 mph. They want to cripple and dictate the designs of data networks in order to make the life of a wiretapper easier. Since it was relatively easy to tap analog phone lines, they think they are entitled to similar ease-of-use in tapping digital voice and data networks.

      --
      Mea navis aericumbens anguillis abundat
  16. Other "VOIP" sources? by jtroutman · · Score: 2, Insightful

    I'm wondering if this could affect other ways that voice communications get transmitted over the internet. Could they force tapping of voice transmissions over IM? How about conversations on Xbox Live? There are many ways other than Skype, Vonage, etc. to communicate with voice over the internet, would this affect all of them?

    And yeah, I could go find the original posting to see if someone already answered this, but I'm here now, so...

    --
    I stole this sig from a more creative user.
  17. Easy workaround by dtfinch · · Score: 3, Interesting

    Use open source secure VOIP software, preferably developed outside the US. If it doesn't go through a service provider, and it's encrypted, they won't succeed in tapping it without first hacking one of the endpoints, no matter what outrageous laws the FCC takes upon itself to pass.

  18. Now Thats funny! by Anonymous Coward · · Score: 0

    I always thought CmdrTaco was just an incarnation of the Cookie Monster, stoned on php. If he starts using voip with cookies then I would worry! You can bet if /. every does become voip enabled someone will want to tap it! Effective cheap and widespread communication through voip is still a long way off thank GOD. Somehow just reading things like /. is enough!

  19. IANAL, but I play one on tv... by TiggertheMad · · Score: 2, Funny

    if you encrypt your traffic and the FCC or some other Govt agency attempts/succeeds in breaking your encryption, could it ("they") be found guilty under the DMCA?

    Yes, but you would only be allowed to take posession of all the Brittiny Spears mp3s that they have on their hard drives.

    --

    HA! I just wasted some of your bandwidth with a frivolous sig!
  20. policy makers lack of understanding by ChrisGilliard · · Score: 4, Insightful

    Articles like this show that the people making laws do not understand what their talking about. It's very easy to encrypt your data (including voice conversations). If the US decides that all VOIP should be tapable/unencrypted, the bad guys can use a service based in a foreign country that doesn't force phone taps. They can then communicate. Or better yet, they can develop their own software to encrypt phone calls and would anyone notice? No way, it would just sounds like static or something. Sorry guys, but there's no way to block people from encrypting stuff and keeping their keys locked safely in their own possession. Unless of course, you make encryption illegal, which would be difficult to do, because the privacy hounds would never let something like that happen.

    --
    No Sigs!
  21. Did you get some sort of jolly from this? by Anonymous Coward · · Score: 0
    Did you have a happy ending?

    Honestly, what's the point of trolling?

  22. They can tap my line... by Juanaplain · · Score: 2, Funny

    because they'd only hear every 10th word out of my mouth. Comcast Cable can't seem to guarantee me enough upload bandwidth to... decent... VoIP... bullsh... back to... fu...ng analog!

    1. Re:They can tap my line... by tom+vendetta · · Score: 1

      I ahead

  23. Re:VOIP and platform independence by mschuyler · · Score: 1

    All that can be said equally of Linux users.

    --
    How about a moderation of -1 pedantic.
  24. Stop using "stop using"! by HTH+NE1 · · Score: 2, Funny

    OK, so we have innovation , indeed, intuitive, copy protection, boxen, turbo, cyber, and FLOSS,

    Got any other words, phrases, or acronyms we should stop using?

    --
    Oh, say does that Star-Spangled Banner entwine / The myrtle of Venus with Bacchus's vine?
    1. Re:Stop using "stop using"! by AKAImBatman · · Score: 1

      Indeed. Turbo-boxen protected by intuitive use of TCPA copy protetion would make for an innovative new FLOSS cyber-platform. Just think of the synergy that could be harnessed through such strategic mergers of technology! :-P

      Seriously, it's all about context. My humorous post was intended to point out the outright abuse of the term "innovation". It's fine when someone uses it as, "innovations like the new O(1) search method are changing the face of database technology." It's not okay when every yahoo (especially Microsoft) begins decrying, "You're stifling my innovation!" My only response to such nonsense is, "First you tell me *what* innovation you're speaking of, and then we'll find a way not to stifle it."

      --
      Javascript + Nintendo DSi = DSiCade
    2. Re:Stop using "stop using"! by HTH+NE1 · · Score: 1

      Sorry, it's just that "stop using the word..." is looking like it could become the next troll meme.

      "First you tell me *what* innovation you're speaking of, and then we'll find a way not to stifle it."

      If I knew what my innovations would be in advance, they wouldn't be innovative.

      Will my high-latency VOIP by tamper-evident avian carriers have to be trained to fly to a special government office for inspection before they are allowed to reach their intended destination?

      --
      Oh, say does that Star-Spangled Banner entwine / The myrtle of Venus with Bacchus's vine?
  25. Finally at home. by tom+vendetta · · Score: 1

    finally boots up. Sorry about that post above, was at work, were to poor to afford anything faster than 28kbs. Anyway, as i was saying.... They can tap my line, as far as I care they can go and tap the damn thing cause they would only hear every 23 words I say. Once again, feel to hack me.

  26. Time for a change by QuantumG · · Score: 1

    I believe it was US Secretary of State Henry Stimson who said "Gentlemen don't read each other's mail."

    --
    How we know is more important than what we know.
  27. Only with a warrant by Anonymous Coward · · Score: 0

    Only with a warrant - the RIP laws do NOT involve mandatory key escrow as you seem to imply (history has shown such a requirement is futile and will be ignored by the criminals anyway).

    Besides, the same is true in the U.S. - you can be held in contempt of court in most places for obstructing an investigation (using crypto to hinder the case is just another charge they may add on).

  28. Don't let VOIP be outlawed over stupidity. by SeaFox · · Score: 1

    Yesterday we had a story about VoIP wiretapping that makes this one feel like a dupe. One of the comments on that story jokingly asked why VoIP users shouldn't have to deal with the same government abuses PSTN telephone users do. It was actually a valid question. They should be dealt with any differently?

    Now remember that P2P networks have been fighting hard to gain any legitamacy becuase they are used so much for pirating music and movies. The RIAA/MPAA has been trying to get P2P networks themselves deemed illegal because of this.

    Has it occured to anyone the bellco's can play just as stupid a card if VoIP is not tappable. They'll say VoIP is a haven for drug dealers and those plotting against America to communicate and will try to get all VoIP banned the same way recording industry stooges try to P2P banned.

    1. Re:Don't let VOIP be outlawed over stupidity. by BlueStrat · · Score: 1

      "Has it occured to anyone the bellco's can play just as stupid a card if VoIP is not tappable. They'll say VoIP is a haven for drug dealers and those plotting against America to communicate and will try to get all VoIP banned the same way recording industry stooges try to P2P banned."

      They won't have to bother with any type of scare or FUD campaign.

      The way things are going, with the push on for laws and regulation that increase dramatically the expense of VOIP while at the same time decreasing the advantages, VOIP could easily be regulated and legislated out of existance without banning it outright.

      Strat

      --
      Progressivism (aka US 'Liberalism'): Ideas so good they need a police/surveillance-state to enforce.
  29. Encryption laws are sneaking in by bitkari · · Score: 1

    Unless of course, you make encryption illegal, which would be difficult to do, because the privacy hounds would never let something like that happen.

    You'd think so, eh?

    Unfortunately in the UK the police already have powers to demand that you hand over your keys/passwords to any encrypted data. Under the Regulation of Investigatory Powers bill the UK government can demand that you to hand over your encryption keys to the police.

    Laws like these are getting slipped through very easily, with little counter from the opposition parties. With all of the hype around "terror" there is an even stronger drive to give more and more power to the police - the privacy hounds, at least here, are too quiet a voice to halt laws such as RIP when more media-friendly laws such as smoking and fox hunting seem to dominate. :/

    1. Re:Encryption laws are sneaking in by Ash-Fox · · Score: 1

      This is why you shouldn't make things decryptable with your key, which is the default in certain encryption software like PGP.

      --
      Change is certain; progress is not obligatory.
  30. CALEA is worse than you think by jesup · · Score: 1

    CALEA requires that the tap be undetectable, and able to set up effectively by flipping a virtual switch. Since RTP in VoIP can be point-to-point (i.e. untappable), and since tapping by routing a call through a proxy that could record the packets would be detectable (given a network sniffer), VoIP providers would have to route ALL calls through proxies just in case they might have to tap them. Realize they already had the power to ask for a subpoena for a tap, but that VoIP providers didn't have to engineer their network to make it easy and quick (or possible). Now they will have to. And it includes all the universities, who say it may cost them 5-10 BILLION dollars to comply.

    This means added delay to all calls (lower quality), and extra expense for the VoIP companies (proxies and/or Session Border Controllers for all calls, and the associated bandwidth. For students, increased tuition (and not a small amount). Plus, part of why you don't want this done ever is that the easier it is technically to do, the more temptation there is to use this ability. Slippery slope and all that. The FBI/NSA/etc already tried to force OnStar to let them turn on the mic's in cars remotely as bugging devices; the judge stopped them because it would have disabled or otherwise interfered with safety features in OnStar (reporting of airbag deployments, etc).

    Yes, you can make direct SIP/RTP calls without going through a VoIP provider. However, the FCC ruled that all 200Kbps and above broadband suppliers were ALSO required to comply with CALEA and make it possible for them to tap (all) traffic easily.

    Can you say, huge blinking arrow saying "Hack this box"? Talk about a tempting target for malicious people, not to mention espionage.

    As for encryption in a direct SIP call - it's hard (though not totally impossible) to avoid a possible MiTM attack in that case, unless you have communicated with that destination before, and cached their credentials, and it was before the MiTM attack was put in place. And if they realize you are in that situation (where you could detect MiTM due to credentials), then all they have to do is find some way to subvert/kill/etc one of the two endpoints. (Product recall, software update, cleaning lady knocked it over "by mistake", etc.) If you're using encryption via a VoIP provider, then who's verifying these certs you're accepting? Even if you did cache credentials, that only helps if they don't have a copy of the private cert subpoenaed from whomever provided it.

  31. Speaking of Stupid Rules.... by pr0t0 · · Score: 2, Insightful

    Didn't the FCC just recently win the Brand-X case in the Supreme Court arguing that broadband was an information service and not a telecommunications service, therefore broadband providers were not considered common carriers and under no obligation to "open up" their lines to competitors?

    Doesn't it seem at least on the surface, if not directly, contradictory for this agency to have any discussion regarding wiretapping as far as VOIP goes? Doesn't wiretapping only happen on communication services? Doesn't the 'IP' part of VOIP primarily use broadband?

    If these two events are contradictory in nature, how can they possibly co-exist without everyone drawing the conclusion that FCC functions, at least in part, to create rules allowing large (or perhaps simply first-to-market) broadband providers to maintain an unfair advantage over smaller or late-comer competitors?

    Is this evidence of the belief that fair competition does not exist in the United States? That you can only have as much justice and fairness as you can buy, bribe, and lobby for?

    Unless I'm completely misinformed...which may be the case so I'll apologize now...but plesase don't let that stop you from hurling your flames of vitriolic righteousness.

    --
    I'm sorry, but your opinion seems to be wrong.
  32. Re:Dupe by Tetch · · Score: 1
    > Dupe! At least the stories didn't appear on the same page

    Yes they did - at least they did for me - they're on the same front page as I write this.

    That's some pretty dismal editing :(

    --
    If you don't pray in my school, I won't think in your church.
  33. International implications. by ariosto007 · · Score: 1

    Under the New Zealand Telecommunications Act, all telcos in NZ are required to have "interception capability" for all communications going through their networks, so as to assist law enforcement agencies who present a valid warrant. Other countries have similar laws. Does the US have any similar laws on its books? And for a product like VoIP, which is very easy to use internationally, will there be governments in other countries demanding VoIP providers provision similar capabilities within their products?

  34. The Real Problem: FBI wants REMOTE Wiretapping by cjdavis · · Score: 1

    In an npr story about this, it was mentioned that the FBI - the actual source of this FCC rule - really wants to be able to do this wiretapping remotely. So rather than needing to physically go to a site and install equipment and or software, collect data, then come back for it later, the FBI tech can just go [click][click] in his remote wiretapping console and now they're wiretapping. And if its not remote, you basically need to have your IT guy available 24/7 with keys to your building. That's one thing for a big university, its another world for your average small town library. They barely have enough money as it is!

    Some observations:
    • The security hole this creates is very big. If the FBI can get in, how do you keep the crackers out? Not just at the point when you install the new telephone switch, but forever? Making it NOT be a security hole is going to end up being a major ongoing cost to everyone.
    • I see this being a problem with OSS. After all, if the terists can modify the code for their asterisk pbx, they'll be able to defeat or circumvent the wiretap. And then they'll be able to sneak their NOOKS INTO DC!!! OHNOES!! DIRTY DIRTY OSS!!!
    • I dont have a problem with legally done wiretapping - go right ahead and snoop on the criminals. I'll help. But this stuff ALWAYS ends up getting abused in one way or another. Whether institutionally or personally.
  35. How is the parent a troll? by 2names · · Score: 1

    I thought you made a good point.

    --
    "I'm just here to regulate funkiness."