Just a heads-up.
CALEA compliance ain't your only concern anymore.
[snip]
U.S. Attorney General Alberto Gonzales and FBI Director Robert Mueller on Friday urged telecommunications officials to record their customers' Internet activities, CNET News.com has learned.
In a private meeting with industry representatives, Gonzales, Mueller and other senior members of the Justice Department said Internet service providers should retain subscriber information and network data for two years, according to two sources familiar with the discussion who spoke on condition of anonymity.
[snip]
More here:
http://news.com.com/2100-1028_3-6077654.html
Cheers,
- ferg
Here in europe officials deny that their intention ever was to have telcos actually record calls and/or internet traffic and save it for 2 years. They want to have metadata such as radius login logs, dhcp logs, MTA logs, web server logs etc saved for 2 years, not the actual contents of email, web traffic etc. They would of course love to have netflow/sflow logs but that's going to be a hard sell since a lot of equipment out there do not support it.
Some politicians have made statements that might be interpreted that they want actual content saved, but when asked I have usually ended upp with that it's only metadata that needs to be saved. This is often done 6 months anyway, so I don't see it as a major hassle to save it 24 months instead. The interesting part is the "collission" with the Electronic Commerce law in EU that states that data for privacy reasons should never be saved longer than absolutely neccessary for billing.
The EU data retention directive is in the implementation phase so we still do not know the actual implemented law yet (at least not here in Sweden).