Apparatuses, methods, and computer program products for data retention and lawful intercept for law enforcement agencies
First Claim
1. A method performed in a network node for providing a Law Enforcement Agency LEA with retention or interception data related to a target user over a telecommunications network, the method comprising steps of:
- the network node inspecting traffic packets transmitted over the telecommunications network involving the target user;
the network node generating a plurality of usage data records based on the inspected traffic packets, each record comprising information relating to a certain service class and to a respective communications stack layer;
for each communications session involving a plurality of different communications stack layers, the network node providing said plurality of usage data records with a same correlation identity number for correlating the data at said different communications stack layers;
the network node sending, over the telecommunications network to the LEA, a usage data record for each communication stack layer included in the plurality of different communications stack layers, each usage data record comprising the correlation identity number,wherein the correlation identity number is a unique Communications Identity Number (CIN) identifying the lowest communications stack layer of said plurality of different communications stack layers,wherein each usage data record comprises a session CIN identifying a respective session in a respective communications stack layer, andwherein the usage data records sent from the network node to the LEA include;
at least one usage data record comprising application layer information, the unique CIN and the session CIN used to correlate the data for the application layer,at least one usage data record comprising transport layer information, the unique CIN and the session CIN used to correlate the data for the transport layer,at least one usage data record comprising network layer information for IP services, the unique CIN and the session CIN used to correlate the data for the network layer, andat least one usage data record comprising data link layer information, the unique CIN and the session CIN used to correlate the data for the data link layer.
1 Assignment
0 Petitions
Accused Products
Abstract
The method provides a Law Enforcement Agency LEA with retention or interception data related to a target user. At a data retention source node or at an interception control element of a telecommunications network, traffic packets involving the target user are inspected and a plurality of usage data records based on the inspected traffic packets are generated. Each record comprises information relating to a certain service class and to a respective communications stack layer. For each communications session involving a plurality of different communications stack layers, at the data retention source node or, respectively, the interception control element, the plurality of usage data records are provided with a same correlation identity number for correlating the data at the different communications stack layers. Then, the usage data records comprising the correlation identity number to the LEA are sent, for instance to the LI system or the data Retention System, respectively.
94 Citations
16 Claims
-
1. A method performed in a network node for providing a Law Enforcement Agency LEA with retention or interception data related to a target user over a telecommunications network, the method comprising steps of:
-
the network node inspecting traffic packets transmitted over the telecommunications network involving the target user; the network node generating a plurality of usage data records based on the inspected traffic packets, each record comprising information relating to a certain service class and to a respective communications stack layer; for each communications session involving a plurality of different communications stack layers, the network node providing said plurality of usage data records with a same correlation identity number for correlating the data at said different communications stack layers; the network node sending, over the telecommunications network to the LEA, a usage data record for each communication stack layer included in the plurality of different communications stack layers, each usage data record comprising the correlation identity number, wherein the correlation identity number is a unique Communications Identity Number (CIN) identifying the lowest communications stack layer of said plurality of different communications stack layers, wherein each usage data record comprises a session CIN identifying a respective session in a respective communications stack layer, and wherein the usage data records sent from the network node to the LEA include; at least one usage data record comprising application layer information, the unique CIN and the session CIN used to correlate the data for the application layer, at least one usage data record comprising transport layer information, the unique CIN and the session CIN used to correlate the data for the transport layer, at least one usage data record comprising network layer information for IP services, the unique CIN and the session CIN used to correlate the data for the network layer, and at least one usage data record comprising data link layer information, the unique CIN and the session CIN used to correlate the data for the data link layer. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A data retention source node in communication with a Data Retention system comprising:
-
a memory; and a processor, wherein said processor is configured to; generate a plurality of usage data records based on inspected traffic packets transmitted over a telecommunications network, each record comprising information relating to a certain service class and to a respective communications stack layer, for each communications session involving a plurality of different communications stack layers, provide said plurality of usage data records with a same correlation identity number for correlating the data at said different communications stack layers, and send, over the telecommunications network to the Data Retention system, a usage data record for each communication stack layer included in the plurality of different communications stack layers, each usage data record comprising the correlation identity number, wherein the correlation identity number is a unique Communications Identity Number (CIN) identifying the lowest communications stack layer of said plurality of different communications stack layers, wherein each usage data record comprises a session CIN identifying a respective session in a respective communications stack layer, and wherein the usage data records sent from the data retention source node to the Data Retention System include; at least one usage data record comprising application layer information, the unique CIN and the session CIN used to correlate the data for the application layer, at least one usage data record comprising transport layer information, the unique CIN and the session CIN used to correlate the data for the transport layer, at least one usage data record comprising network layer information for IP services, the unique CIN and the session CIN used to correlate the data for the network layer, and at least one usage data record comprising data link layer information, the unique CIN and the session CIN used to correlate the data for the data link layer. - View Dependent Claims (8, 9, 10, 11)
-
-
12. An Intercepting Control Element ICE in communication with a Data Retention System comprising:
-
a memory; and a processor, wherein said processor is configured to; provide Intercept Related Information IRI and Content of Communication CC to a Lawful Interception LI system, generate a plurality of IRIs based on inspected traffic packets transmitted over a telecommunication network, each IRI comprising information relating to a certain service class and to a respective communications stack layer, for each communications session involving a plurality of different communications stack layers, provide said plurality of IRIs with a same correlation identity number for correlating the data at said different communications stack layers, and send said IRIs, over the telecommunications network to the LI system, an IRI for each communication stack layer included in the plurality of different communications stack layers, each IRI comprising the correlation identity number, wherein the correlation identity number is a unique Communications Identity Number (CIN) identifying the lowest communications stack layer of said plurality of different communications stack layers, wherein each IRI comprises a session CIN identifying a respective session in a respective communications stack layer, and wherein each IRI'"'"'s sent from the ICE to the LI system include at least one IRI comprising application layer information, the unique CIN and the CIN used to correlate the data for the application layer, at least one IRI comprising transport layer information, the unique CIN and the CIN used to correlate the data for the transport layer, at least one IRI comprising network layer information, the unique CIN and the CIN used to correlate the data for the network layer, and at least one IRI comprising Layer 2 information for IP services, the unique CIN and the CIN used to correlate the data for the Layer 2 layer. - View Dependent Claims (13, 14, 16)
-
-
15. A non-transitory computer readable medium having instructions stored therein, which when executed by a processor of a network node, causes the processor to execute a computer program that includes code adapted to
a) inspect traffic packets transmitted over the telecommunication network involving the target user; -
b) generate a plurality of usage data records based on the inspected traffic packets, each record comprising information relating to a certain service class and to a respective communications stack layer; c) for each communications session involving a plurality of different Communications stack layers, provide said plurality of usage data records with a same correlation identity number for correlating the data at said different communications stack layers; d) send, over the telecommunications network to a Law Enforcement Agency LEA, a usage data record for each communication stack layer included in the plurality of different communications stack layers, each usage data record comprising the correlation identity number, wherein the correlation identity number is a unique Communications Identity Number (CIN) identifying the lowest communications stack layer of said plurality of different communications stack layers, wherein each usage data record comprises a Communications Identity Number CIN identifying a respective session in a respective communications stack layer, and wherein the usage data records sent from the network node to the LEA include; at least one usage data record comprising application layer information, the unique CIN and the session CIN used to correlate the data for the application layer, at least one usage data record comprising transport layer information, the unique CIN and the session CIN used to correlate the data for the transport layer, at least one usage data record comprising network layer information for IP services, the unique CIN and the session CIN used to correlate the data for the network layer, and at least one usage data record comprising data link layer information, the unique CIN and the session CIN used to correlate the data for the data link layer.
-
Specification