Is VOIP easier to "wire tap" than regular (POTS) telephone service?

[AndrewR]

I was just thinking about the issue today, and I wondered if VOIP is easier or harder for law enforcement (or private individuals, for that matter) to tap than regular phones. I'm not one of those privacy freaks or anything -- just idle curiousity.

Anyone have any idea?

 

[KLin]

I obviously don't know what I'm talking about.


/backs out of thread

 

[RadiclDreamer]

VOIP is harder to intercept

 

[AndrewR]

Originally posted by: KLin
I believe protocols used with VoIP is encrypted. you'd have to have a listening device on the phone itself. A phone tap is just connected to the POTS line(Tip and Ring) and intercepts the analog signal.

Any indication the companies shared a backdoor with law enforcement? I'm not surprised that VOIP would be harder.

Of course, LEOs could just get a scanner and sit near the house being targeted for people with cordless phones (ie., everyone!).

 

[her209]

MITM...

 

[kalster]

its harder, but the government now has a rule to have voip network providers be CALEA compliant. its basically setting up an infrastructure for them to 'tap' calls if and when they want to.

http://www.voip-info.org/wiki/view/CALEA

 

[Rubycon]

No matter how much effort to make it harder to break you would be surprised how something so simple can hear everything in the room - 100% surreptitiously!

 

[biggestmuff]

Originally posted by: KLin
I believe protocols used with VoIP is encrypted. you'd have to have a listening device on the phone itself. A phone tap is just connected to the POTS line(Tip and Ring) and intercepts the analog signal.

incorrect. There isn't much of an analog path in a POTS phoneline. Any technical control facility has the equipment to break out a T-1 or DS-3 to an individual DS-0 and have a listen.

 

[Imdmn04]

Most RTP formats are unencrypted, encryption adds delay, which is unaffordable in real time applications.

 

[mugs]

Originally posted by: KLin
I believe protocols used with VoIP is encrypted. you'd have to have a listening device on the phone itself. A phone tap is just connected to the POTS line(Tip and Ring) and intercepts the analog signal.

It sounds like you're saying they install the tap at the crossbox or central office on a POTS line? If they get that level of access from the telcos, they should be able to get the same level of access from the VOIP providers.

 

[biggestmuff]

mugs, they don't need that level of access. The gov' just needs access to the network at or need a decent sized hub to capture traffic for analysis. Typically, that can be had at the same CO. The major phone companies operate huge interconnecting networks. To them, it's all data.

 

[SagaLore]

Originally posted by: RadiclDreamer
VOIP is harder to intercept

True, since most networks utilize switches now, and the only way to intercept the data is with a span port or some kind of network tap. However, the security problem with VOIP is not sniffing, but now it opens up a door between regular phone systems and your data network since VOIP is typically ran over the existing data infrastructure. I'd be more worried about people dialing into your network and using that as a vector to your servers (or home pc if you're using www voip).

 

[txrandom]

You can't wire tap VOIP because the internet is a set of tubes.

 

[mugs]

Originally posted by: biggestmuff
mugs, they don't need that level of access. The gov' just needs access to the network at or need a decent sized hub to capture traffic for analysis. Typically, that can be had at the same CO. The major phone companies operate huge interconnecting networks. To them, it's all data.

That's what I said

 

[spidey07]

Originally posted by: SagaLore

Originally posted by: RadiclDreamer
VOIP is harder to intercept

True, since most networks utilize switches now, and the only way to intercept the data is with a span port or some kind of network tap. However, the security problem with VOIP is not sniffing, but now it opens up a door between regular phone systems and your data network since VOIP is typically ran over the existing data infrastructure. I'd be more worried about people dialing into your network and using that as a vector to your servers (or home pc if you're using www voip).

telephone uses switches as well. Plus it's trival to flood cam tables of a network switch and receive all the data moving through it.

taping a VoIP call is just as easy as a regular one. In fact it's easier if somebody is on a broadcast media. In fact it's even easier because to tap you just redirect the call to a recording device that sits in the middle.

 

[JS80]

Originally posted by: kalster
its harder, but the government now has a rule to have voip network providers be CALEA compliant. its basically setting up an infrastructure for them to 'tap' calls if and when they want to.

http://www.voip-info.org/wiki/view/CALEA

whew, i thought the terrorists found a loophole