I'm trying to collect some informations on Lawfull
Interception over the
world...
Does any country in the world require such things ?
It's a legal requirement for all ISPs in the Netherlands. If the
government wants to snoop on someone, they have to issue a special
warrant type, and the ISP must provide copies of all packets for the
particular person.
From memory, there is no requirement to "decode" the packets
and extract L4+ info. Just the raw IP suffices.
There is a system developed and adopted by many ISPs to do this
with minumum effort, and almost automated, involving dedicated
switches and servers.
A users packets are not logged until the warrant arrives, so
they cannot say "give us all traffic that user bob sent last
week".
Ben