Designing Lawful Interception in IPv6 Networks

The aim of this paper isto enumerate major issues in designing a lawful interception systemfor IPv6 networks. Today, network and content providers arerequired to cooperate with Law Enforcement Agencies (LEAs) in orderto provide a lawful interception (LI) similarly as it is requiredfrom telecommunication operators. LI in IP networks is not as easy asin telecommunications. One major challenge is the identification of atracked person. IPv6 brings new challenges, e.g. a support oftemporary IP addresses, privacy extension or default IPv6 tunnels.There are LI implementation recommendations given by US law(Communications Assistance for Law Enforcement Act - CALEA) or EUstandards (defined by European Telecommunications Standards Institute- ETSI). Nevertheless, these documents do not cover IPv6 networks.This paper overviews related documents and current state-of-the-art.Then, it identifies issues of IPv6 LI and proposes possible approachto user's identity detection, and other issues related to IPv6 LIdeployment - enhancement of privacy ofusers in small networks, issues of multicast traffic and IPv6transition mechanisms. Finally, this paper shows an architecturaldesign of the system based on ETSI standard and describes how ETSIfunctions blocks are designed. It also describes some basicconsiderations and issues when implementing proposed architecture.Proposed architecture is mapped onto network devices. Suggesteddeployment of the system allows for the scalability of eavesdroppingwith respect to identified issues.