Hi, ISOCNZ have a working group looking at Internet Surveillance, and are attempting to decide on a position from which to make recommendations to the Government. It hasn't been running long. http://listserver.actrix.co.nz/mailman/listinfo/isocnz-iswg There was some noise in the press about police powers with respect to internet surveillance recently (although not much signal). I'm trying to look at the operational impact of legislation in this area. Ignoring the philosophical debate about what is and what isn't appropriate about surveillance in general, or about police powers to gather evidence from ISPs: + suppose the police have sufficient cause to be suspicious about the antics of one of your customers that they obtain a court order which entitles them to "tap their internet traffic". Suppose you decided (or were compelled) to facilitate the "tap". o what is reasonable for them to tap? Incoming (to-customer) e-mail? Outgoing (from-customer) e-mail? A complete packet dump? o If you have customers who don't have static IP addresses, is it feasible to collect data from an individual subscriber without collecting it from a whole bunch of others at the same time? o would you be happy letting someone from the police connect her own equipment to your network in order to gather the evidence the court order entitled them to collect? Would you prefer to do it yourself? o would your company expect to be reimbursed for the time spent facilitating the "tap"? o how easy would it be for you to insert something in your network to capture all packets to/from one of your customers? (scale of 1 [trivial] to 10 [impossible]) o assuming it was possible, how much inconvenience would it cause to other customers to put the tap in place? (scale of 1 [none] to 10 [take them off the air for the duration of the tap]) + suppose all interception of network traffic was prohibited across the board without a court order; i.e. you were compelled to shift your customers' traffic blindfolded, and were absolutely not allowed to look at it. Would this be feasible? How much troubleshooting would be impossible under these kinds of conditions? + do you have a clause in your contract with your customers which permits you to inspect customer traffic for operational (or other) purposes? + are you aware of hooks in your network hardware which are designed to allow customer traffic to be intercepted? Joe --------- To unsubscribe from nznog, send email to majordomo(a)list.waikato.ac.nz where the body of your message reads: unsubscribe nznog