Features Podcasts Family Video Comics Music Tech Science Books Film & TV Games ✚

Jill

Infoporn: VeriSign NetDiscovery "Lawful Interception Service"

Xeni Jardin at 9:40 am Thu, Aug 30, 2007

— FEATURED —

THE LATEST

Guatemala: Archive of documents from Rios Montt genocide trial, overturned 10 days after guilty verdict

Feature

Eurovision 2013: An American in London

Book Review

The Twelve-Fingered Boy - mesmerizing YA horror novel

Book Review

Black Code: how spies, cops and crims are making cyberspace unfit for human habitation

— FOLLOW US —

Boing Boing is on Twitter and Facebook. Subscribe to our RSS feed or daily email.

 

— POLICIES —

Except where indicated, Boing Boing is licensed under a Creative Commons License permitting non-commercial sharing with attribution

 

— FONTS —

Tweet
Kindle
Jake Appelbaum points us to an interesting page on Verisign.com: a graph that illustrates how Verisign (apparently) works with with the FBI Wiretap Network described in this previous BB post.


Link.

Boing Boing editor/partner and tech culture journalist Xeni Jardin hosts and produces Boing Boing's in-flight TV channel on Virgin America airlines (#10 on the dial), and writes about living with breast cancer. Diagnosed in 2011. @xeni on Twitter. email: xeni@boingboing.net.

More at Boing Boing

Eurovision 2013: An American in London

The technology that links taxonomy and Star Trek

  • Bill_Owens

    It’s an implementation of a CALEA “Trusted Third Party” service. Makes your ISP network CALEA-compliant without you having to worry about pesky things like subpoenas and network taps. Is CALEA a terrible thing? Is outsourcing your wiretapping wise? Dunno. But it doesn’t appear to be an FBI plot (at least, not as far as I can tell).

    Bill.

  • Burz

    I was struck by this fact when reading this Wired article just yesterday. It mentions in passing that VeriSign contracts as a wiretapper in addition to phone companies.

    IMHO this sort of activity is possibly a deep, deep conflict interest and betrayal of trust for a certificate authority like VeriSign to be engaged in. I could be wrong but it seems likely that VeriSign could, with help from ISPs, use their position to stage man-in-the-middle attacks on unsuspecting users without prompting any certificate warnings.

    Would someone with detailed background care to comment on this possibility?

  • Anonymous

    Well now we know why Verisign always gets it’s contract to manage the DNS renewed.

  • Anonymous

    As far as “the law” is concerned, do “lawful” and “legal” mean the same thing?

  • Anonymous

    This is a design that many of the IP based phone carriers are utilizing instead of building the hugely expensive infrastructure to do it themselves. Verisign is not the only provider offering this service, there are several others and these products provide the compliance that companies like Vonage are required to maintain.

    I have many customers who use these products but none of them have ever been served with warrants to tap their lines.