Lawful interception of real time packet data

US 8,599,747 B1
Filed: 12/20/2007
Issued: 12/03/2013
Est. Priority Date: 12/20/2006
Status: Active Grant

First Claim

Patent Images

1. A method of conducting a lawful intercept of real time media packet traffic with low latency and detection avoidance, comprising:

directing real time media packet streams between a caller and callee through a media server, the media server being dedicated to the lawful intercept of real time media packet traffic;

replicating the media packet streams within the media server, the replication resulting in original media packet streams and replicated media packet streams;

forwarding, using the media server, the original media packet streams between the caller and the callee;

modifying address and port information in packet headers of the replicated packet streams, without encapsulating packets of the replicated packet streams or modifying payload data of the replicated packet streams so as to reduce latency and avoid detection, wherein the modifications comprise;

changing a source address to an address of the media server;

changing a source port to a source port of the media server;

changing a destination address to an address of a monitoring system; and

changing a destination port to at least one monitoring port; and

directing, based on the modified address and port information, the modified packet streams to the at least one monitoring port.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method of conducting a lawful intercept of real time media packet traffic involves redirecting real time media packet streams between a caller and callee through a media server; replicating the media packet streams within the media server; modifying packet headers of the replicated packet streams; and directing the modified packet streams to at least one monitoring port.

116 Citations

View as Search Results

22 Claims

1. A method of conducting a lawful intercept of real time media packet traffic with low latency and detection avoidance, comprising:
- directing real time media packet streams between a caller and callee through a media server, the media server being dedicated to the lawful intercept of real time media packet traffic;
  
  replicating the media packet streams within the media server, the replication resulting in original media packet streams and replicated media packet streams;
  
  forwarding, using the media server, the original media packet streams between the caller and the callee;
  
  modifying address and port information in packet headers of the replicated packet streams, without encapsulating packets of the replicated packet streams or modifying payload data of the replicated packet streams so as to reduce latency and avoid detection, wherein the modifications comprise;
  
  changing a source address to an address of the media server;
  
  changing a source port to a source port of the media server;
  
  changing a destination address to an address of a monitoring system; and
  
  changing a destination port to at least one monitoring port; and
  
  directing, based on the modified address and port information, the modified packet streams to the at least one monitoring port.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 20)
- - 2. A method as claimed in claim 1, wherein a real time packet stream is established in each direction between the caller and callee, and replicated versions of said packet streams are directed to respective monitoring ports on the media server.
  - 3. A method as claimed in claim 2, wherein the real time packet stream comprises RTP (realtime transport protocol) packets.
  - 4. A method as claimed in claim 3, wherein the MAC, IP addresses, and port numbers of incoming RTP packets are modified to create outgoing RTP packets directed to said monitoring ports.
  - 5. A method as claimed in claim 1, wherein the packets are forwarded and replicated within the media server on a common digital signal processor.
  - 6. A method as claimed in claim 5, wherein the replicated packets are processed further on a separate digital signal processor.
  - 7. A method as claimed in claim 1, wherein the call is established by means of a call agent, which routes a call subject to lawful intercept through the media server.
  - 8. A method as claimed in claim 7, wherein in the absence of a lawful intercept said call agent handles said call without sending said packets through the media server, and in the presence of a lawful intercept said call agents redirects incoming packets from the caller through the media server.
  - 9. A method as claimed in claim 7, wherein the call agent communicates with the media server using SIP/MSML protocol.
  - 10. A method as claimed in claim 1, wherein the modified packet streams include sequence numbers and timestamps that are the same as original sequence numbers and timestamps in the original media packet streams, and wherein the step of replicating the media packet streams includes causing packets to by-pass de-jitter buffers and pass directly through the media server without further processing to modify the original sequence numbers and timestamps so as to maintain minimum delay passing through the media server.
  - 11. A method as claimed in claim 1, further comprising creating a packet replicate group for the replicated packets, and assigning a group identifier to the replicate packet group.
  - 12. A method as claimed in claim 11, wherein said packet replicate group includes a group service context specifying the number of parties in the replicate group, and a collate parameter for co-locating port resources on a common digital signal processor.
  - 13. A method as claimed in claim 1, wherein said real time media packet traffic comprises a VoIP call.
  - 20. A communications system as claimed in claim 1, wherein the media server adds no more than 20 milliseconds delay to the packets forwarded between the caller and callee.

14. A dedicated gateway for permitting the lawful interception of real time media packet traffic with low latency and detection avoidance, comprising:
- a first port for connection to a caller;
  
  a second port for connection to a callee;
  
  a processor for forwarding packets between the caller and callee, said processor also replicating said packets; and
  
  at least one port for supplying replicated packet streams to at least one monitoring port,wherein the processor modifies, without encapsulating packets of the replicated packet streams or modifying payload data, address and port information in headers of the replicated packets to direct them to the at least one monitoring port.
- View Dependent Claims (15, 16, 17, 18, 21)
- - 15. A gateway as claimed in claim 14, further comprising a control port for communicating with a call agent establishing a call between the caller and callee.
  - 16. A gateway as claimed in claim 15, wherein the media server is configured to communicate with the call agent using SIP/MSML protocol.
  - 17. A gateway as claimed in claim 14, wherein the media server is configured to create a group service associated with a replicate group and to assign a group identifier to the group service.
  - 18. A gateway as claimed in claim 17, wherein said group service includes a group service context specifying the number of parties in the replicate group, and a collate parameter for co-locating port resources on a common digital signal processor.
  - 21. A communications system as claimed in claim 14, wherein the gateway adds no more than 20 milliseconds delay when forwarding packets between the caller and callee.

19. A communications system for permitting the lawful interception of real time media packet traffic with low latency and detection avoidance, comprising:
- a call agent for establishing a call between a caller and callee over a packet network; and
  
  a dedicated media server for processing real time media packets including a first port for connection to a caller, a second port of connection to a callee, a processor for forwarding packets between the caller and callee and replicating said packets, and at least one port for supplying replicated packet streams to at least one monitoring port,wherein said processor modifies source and destination address and port information in headers of the replicated packet streams, without encapsulating packets of the replicated packet streams, so as to direct the replicated packet streams to the at least one monitoring port, andwherein said call agent redirects said packets through said media server in the event of a lawful intercept request.
- View Dependent Claims (22)
- - 22. A communications system as claimed in claim 19, wherein the media server adds no more than 20 milliseconds delay to the packets forwarded between the caller and callee.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Radisys Corporation (Reliance Industries Limited)
Original Assignee
Radisys Canada Inc.
Inventors
Saleem, Adnan, Gunn, Neil, Xin, Yong, Gill, Jagtar, Chubbs, Alvin
Primary Examiner(s)
Pollack, Melvin H

Application Number

US11/961,645
Time in Patent Office

2,175 Days
Field of Search

455/453, 379/93.09, 709/203, 709/218, 709/231, 709/235, 709/249, 370/235, 370/321, 370/355, 370/356
US Class Current

370/321
CPC Class Codes

H04L 63/306   intercepting packet switche...

H04L 65/103   in the network

H04L 65/1076   Screening of IP real time c...

H04L 65/1093   by adding participants; by ...

H04L 65/765   intermediate

Lawful interception of real time packet data

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

116 Citations

22 Claims

Specification

Use Cases

Quick Links

Others

Lawful interception of real time packet data

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

116 Citations

22 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others