Title: 3GPP SA3 Lawful Intercept
13GPP SA3 Lawful Intercept
23GPP Organization
- Services Aspect (SA) Security (SA WG3) Lawful
Intercept (SA WG3-LI)
- UMTS, GSM.
- 3GPP - WLAN IW
3GPP TS 33.106 (stage 1)
GSM TR 01.33 3GPP TR 41.033
3GPP TS 33.107 Stage 2
Interworking
GSM TS 02.33/03.33 3GPP TS 42.033/43.033
3GPP TS 33.108 Stage 3
33GPP Schedule for latest release
- Release 6 developed over last 14 months
- Frozen September 2004
- All 3GPP documents frozen at same time to allow
manufacturers to develop product across all 3GPP
standards. Partnership companies (ETSI is one)
then ballot the release with or without national
addendums. - Four times a year Plenary meets and approves
change requests. Once approved by the plenary the
document becomes stable and can be implemented if
needed. - SA3-LI expects to freeze 33.106 (Stage 1) now.
- Does not expect to change 33.108 (Stage 3) but is
asking that it be left open until October - Is asking that 33.107 (stage 2) be left open to
complete WLAN stage 2 work.
4Work Items for LI rel 6
- Justification
- to develop IP-based Services, which need to be
addressed by lawful interception. SA WG3-LI will
study IMS phase 2, Multimedia Broadcast and
Multicast Services, Priority Service, Presence
Service, Subscriber Certificates, and WLAN for
possible lawful interception systems. - Objective
- The objective of this work item is to create a
lawful interception specification for the latest
Rel-6 architecture and services as described in
the above justification. - The enhancements to specification TS 33.108
addresses the additional work to specify the HI2
(Intercepted Related Information) and the HI3
(Content) interfaces for Packet Data, Circuit
Switched and IMS delivery to the Law Enforcement
Monitoring Facilities for 3G networks for Release
6. In the first step the 3G Packet Domain and
phase 1 Multi Media Domain have been addressed
in this specification for Rel 5. The
Circuit-Switched Domain was already addressed by
different regional specifications for 2G
networks, and for 3G networks the
Circuit-Switched Domain will be based on these
documents and incorporated into Rel 6. HI1
(Administration) is not covered in this
specification and is considered to be a matter of
national regulation.
53GPP Object Tree
6IRI parameters
Mapping between Events information and IRI
information
parameter description
observed MSISDN Target Identifier with the MSISDN of the target subscriber (monitored subscriber).
observed IMSI Target Identifier with the IMSI of the target subscriber (monitored subscriber).
observed IMEI Target Identifier with the IMEI of the target subscriber (monitored subscriber)
observed PDP address PDP address used by the target..
event type Description which type of event is delivered PDP Context Activation, PDP Context Deactivation,GPRS Attach, etc.
event date Date of the event generation in the xGSN
event time Time of the event generation in the xGSN
access point name The APN of the access point
PDP type This field describes the PDP type as defined in TS GSM 09.60, TS GSM 04.08, TS GSM 09.02
initiator This field indicates whether the PDP context activation, deactivation, or modification is MS directed or network initiated.
correlation number Unique number for each PDP context delivered to the LEMF, to help the LEA, to have a correlation between each PDP Context and the IRI.
7IRI parameters
location information When authorized, this field provides the location information of the target that is present at the SGSN at the time of event record production.
SMS The SMS content with header which is sent with the SMS-service
failed context activation reason This field gives information about the reason for a failed context activation of the target subscriber.
failed attach reason This field gives information about the reason for a failed attach attempt of the target subscriber.
service center address This field identifies the address of the relevant server within the calling (if server is originating) or called (if server is terminating) party address parameters for SMS-MO or SMS-MT.
umts QOS This field indicates the Quality of Service associated with the PDP Context procedure.
context deactivation reason This field gives information about the reason for context deactivation of the target subscriber.
network identifier Operator ID plus SGSN or GGSN address.
iP assignment Observed PDP address is statically or dynamically assigned.
SMS originating address Identifies the originator of the SMS message.
SMS terminating address Identifies the intended recipient of the SMS message.
8IRI parameters
SMS initiator Indicates whether the SMS is MO, MT, or Undefined
serving SGSN number An E.164 number of the serving SGSN.
serving SGSN address An IP address of the serving SGSN.