ETSI TS 102 232-5-2016 Lawful Interception (LI) Handover Interface and Service-Specific Details (SSD) for IP delivery Part 5 Service-specific details for IP Multimedia Services (V3.pdf

1、 ETSI TS 102 232-5 V3.6.1 (2016-08) Lawful Interception (LI); Handover Interface and Service-Specific Details (SSD) for IP delivery; Part 5: Service-specific details for IP Multimedia Services floppy3TECHNICAL SPECIFICATION ETSI ETSI TS 102 232-5 V3.6.1 (2016-08)2 Reference RTS/LI-00135-5 Keywords I

2、MS, IP, lawful interception, security ETSI 650 Route des Lucioles F-06921 Sophia Antipolis Cedex - FRANCE Tel.: +33 4 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N 348 623 562 00017 - NAF 742 C Association but non lucratif enregistre la Sous-Prfecture de Grasse (06) N 7803/88 Important notice The prese

3、nt document can be downloaded from: http:/www.etsi.org/standards-search The present document may be made available in electronic versions and/or in print. The content of any electronic and/or print versions of the present document shall not be modified without the prior written authorization of ETSI

4、. In case of any existing or perceived difference in contents between such versions and/or in print, the only prevailing document is the print of the Portable Document Format (PDF) version kept on a specific network drive within ETSI Secretariat. Users of the present document should be aware that th

5、e document may be subject to revision or change of status. Information on the current status of this and other ETSI documents is available at https:/portal.etsi.org/TB/ETSIDeliverableStatus.aspx If you find errors in the present document, please send your comment to one of the following services: ht

6、tps:/portal.etsi.org/People/CommiteeSupportStaff.aspx Copyright Notification No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm except as authorized by written permission of ETSI. The content of the PDF version shall not

7、be modified without the written authorization of ETSI. The copyright and the foregoing restriction extend to reproduction in all media. European Telecommunications Standards Institute 2016. All rights reserved. DECTTM, PLUGTESTSTM, UMTSTMand the ETSI logo are Trade Marks of ETSI registered for the b

8、enefit of its Members. 3GPPTM and LTE are Trade Marks of ETSI registered for the benefit of its Members and of the 3GPP Organizational Partners. GSM and the GSM logo are Trade Marks registered and owned by the GSM Association. ETSI ETSI TS 102 232-5 V3.6.1 (2016-08)3 Contents Intellectual Property R

9、ights 5g3Foreword . 5g3Modal verbs terminology 5g3Introduction 5g31 Scope 6g32 References 6g32.1 Normative references . 6g32.2 Informative references 7g33 Definitions and abbreviations . 7g33.1 Definitions 7g33.2 Abbreviations . 8g34 General . 9g34.1 Reference Model for Lawful Interception 9g34.2 Re

10、ference system model . 10g34.2.1 Network layer Interception . 11g34.2.2 Service layer Interception . 11g34.3 General Requirements 12g35 Interception of IP Multimedia services 12g35.1 Identification of target of interception 12g35.1.1 SIP Target Identification . 12g35.1.2 H.323 Target Identification

11、. 13g35.2 Interception of signalling 13g35.2.1 Provisioning of the SIP IRI IIF . 13g35.2.2 Provisioning of the H.323 IRI IIF . 13g35.2.3 Location information 13g35.2.4 Supplementary Services 13g35.3 Assigning a value to the Communication Identity Number . 14g35.3.1 Assigning a CIN value to SIP relat

12、ed IRI . 14g35.3.2 Assigning a CIN value to H.323 related IRI . 14g35.4 Events and IRI record types . 14g35.5 Interception of Content of Communication 15g35.6 Direction for IMS IRI for Signalling Messages . 15g35.7 Direction for IMS sessions . 16g35.7.1 Direction for SIP sessions . 16g35.7.2 Directi

13、on for H.323 sessions . 16g36 Handover Interface . 16g36.1 Intercepted Related Information . 16g36.2 Correlation of IRI and CC 16g37 ASN.1 specification for IRI and CC. 16g3Annex A (informative): Interception using H.248 . 20g3A.1 Purpose of this annex . 20g3A.2 Notes on interception using H.248 . 2

14、0g3A.2.1 Target identification (see also clause 5.1) 20g3A.2.2 Provisioning of the H.248 IRI IIF (see also clause 5.2) . 21g3A.3 Problems in H.248 interception 21g3A.3.1 Missing information in H.248 signalling 21g3A.3.2 Missing call content 22g3Annex B (normative): Minimum set of functional attribut

15、es to be provided . 23g3ETSI ETSI TS 102 232-5 V3.6.1 (2016-08)4 B.1 General requirements . 23g3B.2 Result of interception . 24g3B.3 Location information 24g3B.4 Time constraints . 24g3B.5 Technical handover interfaces and format requirements 25g3Annex C (informative): Change request history 26g3His

16、tory 28g3ETSI ETSI TS 102 232-5 V3.6.1 (2016-08)5 Intellectual Property Rights IPRs essential or potentially essential to the present document may have been declared to ETSI. The information pertaining to these essential IPRs, if any, is publicly available for ETSI members and non-members, and can b

17、e found in ETSI SR 000 314: “Intellectual Property Rights (IPRs); Essential, or potentially Essential, IPRs notified to ETSI in respect of ETSI standards“, which is available from the ETSI Secretariat. Latest updates are available on the ETSI Web server (https:/ipr.etsi.org/). Pursuant to the ETSI I

18、PR Policy, no investigation, including IPR searches, has been carried out by ETSI. No guarantee can be given as to the existence of other IPRs not referenced in ETSI SR 000 314 (or the updates on the ETSI Web server) which are, or may be, or may become, essential to the present document. Foreword Th

19、is Technical Specification (TS) has been produced by ETSI Technical Committee Lawful Interception (LI). The present document is part 5 of a multi-part deliverable. Full details of the entire series can be found in part 1 2. The ASN.1 module is also available as an electronic attachment to the origin

20、al document from the ETSI site (see clause 7 for details). Modal verbs terminology In the present document “shall“, “shall not“, “should“, “should not“, “may“, “need not“, “will“, “will not“, “can“ and “cannot“ are to be interpreted as described in clause 3.2 of the ETSI Drafting Rules (Verbal forms

21、 for the expression of provisions). “must“ and “must not“ are NOT allowed in ETSI deliverables except when used in direct citation. Introduction The present document focuses on Lawful Interception of IP Multimedia Services. It is to be used in conjunction with ETSI TS 102 232-1 2, in which the handl

22、ing of the intercepted information is described. ETSI ETSI TS 102 232-5 V3.6.1 (2016-08)6 1 Scope The present document specifies interception of Internet Protocol (IP) Multimedia (MM) Services based on the Session Initiation Protocol (SIP) and Real Time Transport Protocol (RTP) and Message Session R

23、elay Protocol (MSRP) and IP MM services as described by the Recommendations ITU-T H.323 6 and H.248 7. The present document is consistent with the definition of the Handover Interface, as described in ETSI TS 102 232-1 2. The present document does not override or supersede any specifications or requ

24、irements in 3GPP TS 33.108 9 and ETSI TS 101 671 1. 2 References 2.1 Normative references References are either specific (identified by date of publication and/or edition number or version number) or non-specific. For specific references, only the cited version applies. For non-specific references,

25、the latest version of the referenced document (including any amendments) applies. Referenced documents which are not found to be publicly available in the expected location might be found at http:/docbox.etsi.org/Reference. NOTE: While any hyperlinks included in this clause were valid at the time of

26、 publication, ETSI cannot guarantee their long term validity. The following referenced documents are necessary for the application of the present document. 1 ETSI TS 101 671: “Lawful Interception (LI); Handover interface for the lawful interception of telecommunications traffic“. NOTE: Periodically

27、TS 101 671 is published as ES 201 671. A reference to the latest version of the TS as above reflects the latest stable content from ETSI/TC LI. 2 ETSI TS 102 232-1: “Lawful Interception (LI); Handover Interface and Service-Specific Details (SSD) for IP delivery; Part 1: Handover specification for IP

28、 delivery“. 3 Recommendation ITU-T X.680: “Information technology - Abstract Syntax Notation One (ASN.1): Specification of basic notation“. 4 IETF RFC 3261: “SIP: Session Initiation Protocol“. 5 IETF RFC 3550: “RTP: A Transport Protocol for Real-Time Applications“. 6 Recommendation ITU-T H.323: “Pac

29、ket-based multimedia communications systems“. 7 Recommendation ITU-T H.248: “Gateway control protocol“. NOTE: H.248 was renumbered when revised on 2002-03-29. H.248 main body, Annexes A to E and Appendix I were included in H.248.1. Subsequent annexes were sequentially numbered in the series, e.g. H.

30、248 Annex F became H.248.2. 8 Void. 9 ETSI TS 133 108: “Universal Mobile Telecommunications System (UMTS); LTE; 3G security; Handover interface for Lawful Interception (LI) (3GPP TS 33.108 Release 9)“. 10 ETSI TS 101 331: “Lawful Interception (LI); Requirements of Law Enforcement Agencies“. 11 ATIS-

31、PP-1000678.2006: “Lawfully Authorized Electronic Surveillance (LAES) for Voice over Packet Technologies in Wireline Telecommunications Networks“, Version 2 (Revision of T1.678-2004). ETSI ETSI TS 102 232-5 V3.6.1 (2016-08)7 12 Recommendation ITU-T H.225.0: “Call signalling protocols and media stream

32、 packetization for packet-based multimedia communication systems“. 13 Recommendation ITU-T H.245: “Control protocol for multimedia communication“. 14 Void. 15 IETF RFC 4975: “The Message Session Relay Protocol (MSRP)“. 16 Recommendation ITU-T T.38: “Procedures for real-time Group 3 facsimile communi

33、cation over IP networks“. 17 IETF RFC 4825: “The Extensible Markup Language (XML) Configuration Access Protocol (XCAP)“. 18 ETSI TS 124 623: “Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); LTE; Extensible Markup Language (XML) Configuration

34、Access Protocol (XCAP) over the Ut interface for Manipulating Supplementary Services (3GPP TS 24.623)“. 2.2 Informative references References are either specific (identified by date of publication and/or edition number or version number) or non-specific. For specific references, only the cited versi

35、on applies. For non-specific references, the latest version of the referenced document (including any amendments) applies. NOTE: While any hyperlinks included in this clause were valid at the time of publication, ETSI cannot guarantee their long term validity. The following referenced documents are

36、not necessary for the application of the present document but they assist the user with regard to a particular subject area. i.1 ETSI TR 102 528: “Lawful Interception (LI); Interception domain Architecture for IP networks“. i.2 ETSI TR 102 503: “Lawful Interception (LI); ASN.1 Object Identifiers in

37、Lawful Interception and Retained data handling Specifications“. 3 Definitions and abbreviations 3.1 Definitions For the purposes of the present document, the terms and definitions given in ETSI TS 101 671 1, ETSI TS 102 232-1 2 and the following apply: context: logical collection of H.248 terminatio

38、ns IP MultiMedia service: multimedia service that utilizes the Internet Protocol (IP) for the transport of data MultiMedia (MM): use of computers to present text, graphics, video, animation, and sound in an integrated way MultiMedia service: communication service that offers Multimedia communication

39、 to end-users termination: entity in H.248 that acts as a source or sink of media NOTE: Terminations may be physical, such as a given channel on a TDM line, or ephemeral, such as an IP endpoint. ETSI ETSI TS 102 232-5 V3.6.1 (2016-08)8 TSAP identifier: piece of information used to multiplex several

40、transport connections of the same type on a single H.323 entity with all transport connections sharing the same Network Address (e.g. the port number in a TCP/UDP/IP environment) NOTE: Transport layer Service Access Point (TSAP) identifiers may be (pre)assigned statically by some international autho

41、rity or may be allocated dynamically during the setup of a call. Dynamically assigned TSAP identifiers are of transient nature, i.e. their values are only valid for the duration of a single call. 3.2 Abbreviations For the purposes of the present document, the following abbreviations apply: AF Admini

42、stration Function ASN.1 Abstract Syntax Notation One CC IIF CC Internal Interception Function CC Content of Communication CCCI Content of Communication Control Interface CCTF Content of Communication Trigger Function CCTI Content of Communication Trigger Interface CID Communication IDentifier CIN Co

43、mmunication Identity Number CLI Calling Line Identity CSP Communications Service Provider NOTE: Covers all AP/NWO/SvP. DTMF Dual Tone Multi Frequency GW GateWay HI1 Handover Interface 1 (for Administrative Information) HI2 Handover Interface 2 (for Intercept Related Information) HI3 Handover Interfa

44、ce 3 (for Content of Communication) ID IDentity IF Interception Function IIF Internal Interception Function IMS IP Multimedia Subsystem INI Internal Network Interface IP Internet Protocol IRI IIF IRI Internal Interception Function IRI Intercept Related Information LEA Law Enforcement Agency LEMF Law

45、 Enforcement Monitoring Facility LI Lawful Interception LIAF Lawful Interception Administration Function LIID Lawful Interception IDentifier MF Mediation Function MG Media Gateway MGC Media Gateway Controller MM MultiMedia MSRP Message Session Relay Protocol OID Object IDentifier PDU Protocol Data U

46、nit RAS Registration, Administration and Status RTCP RTP Control Protocol RTP Realtime Transport Protocol SDP Session Description Protocol SIP Session Initiation Protocol SSD Service-Specific Details SvP Service Provider TCP Transmission Control Protocol TDM Time Division Multiplex TSAP Transport la

47、yer Service Access Point UDP User Datagram Protocol ETSI ETSI TS 102 232-5 V3.6.1 (2016-08)9 UDPTL Facsimile UDP Transport Layer (protocol) UE User Equipment URI Uniform Resource Identifier URL Uniform Resource Locator 4 General 4.1 Reference Model for Lawful Interception The present document adopts

48、 the generic reference model for the interception domain from ETSI TR 102 528 i.1, its internal intercept functions, Intercept Related Information Interception Function (IRI IIF), Content of Communication Trigger Function (CCTF), and Content of Communication Internal Interception Function (CC IIF),

49、and the Internal Network Interfaces INI1, INI2, INI3, Content of Communication Trigger Interface (CCTI) and Content of Communication Control Interface (CCCI) as shown in figure 1. Figure 1: Reference Model for Lawful Interception The reference model depicts the following functions and interfaces: INI1a provisions Intercept Related Information Internal Interception Function (IRI IIF). INI1b may (statically) provision Content of Communications Trigger Function (CCTF). INI1c provisions the Mediation Function (MF).