Telephone tapping

"Wiretap" redirects here. For the radio program, see WireTap (radio program).
For the method of making telephone calls by depressing the hook switch, see Pulse dialing#Tapping.

Telephone tapping (also wire tapping or wiretapping in American English) is the monitoring of telephone and Internet conversations by a third party, often by covert means. The wire tap received its name because, historically, the monitoring connection was an actual electrical tap on the telephone line. Legal wiretapping by a government agency is also called lawful interception. Passive wiretapping monitors or records the traffic, while active wiretapping alters or otherwise affects it.[1][2]

Legal status

Telephone line control device "Jitka", used in late 1960s by Czechoslovakian StB to signal line occupancy, and connect a recorder

Lawful interception is officially strictly controlled in many countries to safeguard privacy; this is the case in all developed democracies. In theory, telephone tapping often needs to be authorized by a court, and is, again in theory, normally only approved when evidence shows it is not possible to detect criminal or subversive activity in less intrusive ways; often the law and regulations require that the crime investigated must be at least of a certain severity.[3] Illegal or unauthorized telephone tapping is often a criminal offense.[3] However, in certain jurisdictions such as Germany and France, courts will accept illegally recorded phone calls without the other party's consent as evidence, but the unauthorized telephone tapping will still be prosecuted.[4][5]

In the United States, under the Foreign Intelligence Surveillance Act, federal intelligence agencies can get approval for wiretaps from the United States Foreign Intelligence Surveillance Court, a court with secret proceedings, or in certain circumstances from the Attorney General without a court order.[6]

Under the law of the United States and most state laws, there is nothing illegal about one of the parties to a telephone call recording the conversation, or giving permission for calls to be recorded or permitting their telephone line to be tapped. However the telephone recording laws in most U.S. states require only one party to be aware of the recording, while 12 states require both parties to be aware. In Nevada, the state legislature enacted a law making it legal for a party to record a conversation if one party to the conversation consented, but the Nevada Supreme Court issued two judicial opinions changing the law and requiring all parties to consent to the recording of a private conversation for it to be legal.[7] It is considered better practice to announce at the beginning of a call that the conversation is being recorded.[8]

Methods

Official use

Main article: Lawful interception

The contracts or licenses by which the state controls telephone companies often require that the companies must provide access for tapping lines to law enforcement. In the U.S., telecommunications carriers are required by law to cooperate in the interception of communications for law enforcement purposes under the terms of Communications Assistance for Law Enforcement Act (CALEA).[9]

When telephone exchanges were mechanical, a tap had to be installed by technicians, linking circuits together to route the audio signal from the call. Now that many exchanges have been converted to digital technology tapping is far simpler and can be ordered remotely by computer. This central office switch wiretapping technology using the Advanced Intelligent Network (AIN) was invented by Wayne Howe and Dale Malik at BellSouth's Advanced Technology R&D group in 1995 and was issued as US Patent #5,590,171. Telephone services provided by cable TV companies also use digital switching technology. If the tap is implemented at a digital switch, the switching computer simply copies the digitized bits that represent the phone conversation to a second line and it is impossible to tell whether a line is being tapped. A well-designed tap installed on a phone wire can be difficult to detect. In some instances some law enforcement may be able to even access a mobile phone's internal microphone even while it isn't actively being used on a phone call (unless the battery is removed or drained).[10] The noises that some people believe to be telephone taps are simply crosstalk created by the coupling of signals from other phone lines.[11]

Data on the calling and called number, time of call and duration, will generally be collected automatically on all calls and stored for later use by the billing department of the phone company. These data can be accessed by security services, often with fewer legal restrictions than for a tap. This information used to be collected using special equipment known as pen registers and trap and trace devices and U.S. law still refers to it under those names. Today, a list of all calls to a specific number can be obtained by sorting billing records. A telephone tap during which only the call information is recorded but not the contents of the phone calls themselves, is called a pen register tap.

For telephone services via digital exchanges, the information collected may additionally include a log of the type of communications media being used (some services treat data and voice communications differently, in order to conserve bandwidth).

Non-official use

A telephone recording adapter (in-line tap). The phone jack connects to the wall socket while the phone being monitored is connected to the adapter's socket. The audio plug connects to the recording device (computer, tape recorder, etc.).

Conversations can be recorded or monitored unofficially, either by tapping by a third party without the knowledge of the parties to the conversation, or recorded by one of the parties. This may or may not be illegal, according to the circumstances and the jurisdiction.

There are a number of ways to monitor telephone conversations. One of the parties may record the conversation, either on a tape or solid-state recording device, or on a computer running call recording software. The recording, whether overt or covert, may be started manually, automatically by detecting sound on the line (VOX), or automatically whenever the phone is off the hook.

The conversation may be monitored (listened to or recorded) covertly by a third party by using an induction coil or a direct electrical connection to the line using a beige box. An induction coil is usually placed underneath the base of a telephone or on the back of a telephone handset to pick up the signal inductively. An electrical connection can be made anywhere in the telephone system, and need not be in the same premises as the telephone. Some apparatus may require occasional access to replace batteries or tapes. Poorly designed tapping or transmitting equipment can cause interference audible to users of the telephone.

The tapped signal may either be recorded at the site of the tap or transmitted by radio or over the telephone wires. As of 2007 state-of-the-art equipment operates in the 30–300 GHz range to keep up with telephone technology compared to the 772 kHz systems used in the past.[14][15] The transmitter may be powered from the line to be maintenance-free, and only transmits when a call is in progress. These devices are low-powered as not much power can be drawn from the line, but a state-of-the-art receiver could be located as far away as ten kilometers under ideal conditions, though usually located much closer. Research has shown that a satellite can be used to receive terrestrial transmissions with a power of a few milliwatts.[16] Any sort of radio transmitter whose presence is suspected is detectable with suitable equipment.

Conversation on many early cordless telephones could be picked up with a simple radio scanner or sometimes even a domestic radio. Widespread digital spread spectrum technology and encryption make eavesdropping this way much more difficult.

A problem with recording a telephone conversation is that the recorded volume of the two speakers may be very different. A simple tap will have this problem. An in-ear microphone, while involving an additional distorting step by converting the electrical signal to sound and back again, in practice gives better-matched volume. Dedicated, and relatively expensive, telephone recording equipment equalizes the sound at both ends from a direct tap much better.

Location data

Mobile phones are, in surveillance terms, a major liability. This liability will only increase as the new third-generation (3G), LTE, WiMAX, and fourth-generation (4G) phones are introduced, as the base stations will be located closer together. For mobile phones the major threat is the collection of communications data.[17][18] This data does not only include information about the time, duration, originator and recipient of the call, but also the identification of the base station where the call was made from, which equals its approximate geographical location. This data is stored with the details of the call and has utmost importance for traffic analysis.

It is also possible to get greater resolution of a phone's location by combining information from a number of cells surrounding the location, which cells routinely communicate (to agree on the next handoff—for a moving phone) and measuring the timing advance, a correction for the speed of light in the GSM standard. This additional precision must be specifically enabled by the telephone company—it is not part of the network's ordinary operation.

Internet

In 1995, Peter Garza, a Special Agent with the Naval Criminal Investigative Service, conducted the first court-ordered Internet wiretap in the United States while investigating Julio Cesar Ardita ("El Griton").

As technologies emerge, including VoIP, new questions are raised about law enforcement access to communications (see VoIP recording). In 2004, the Federal Communications Commission was asked to clarify how the Communications Assistance for Law Enforcement Act (CALEA) related to Internet service providers. The FCC stated that “providers of broadband Internet access and voice over Internet protocol (“VoIP”) services are regulable as “telecommunications carriers” under the Act.”[19] Those affected by the Act will have to provide access to law enforcement officers who need to monitor or intercept communications transmitted through their networks. As of 2009, warrantless surveillance of internet activity has consistently been upheld in FISA court.[20]

The Internet Engineering Task Force has decided not to consider requirements for wiretapping as part of the process for creating and maintaining IETF standards.[21]

Typically, illegal Internet wiretapping will be conducted via Wi-Fi connection to someone's internet by cracking the WEP or WPA key, using a tool such as Aircrack-ng or Kismet.[22][23] Once in, the intruder will rely on a number of potential tactics, for example an ARP spoofing attack which will allow the intruder to view packets in a tool such as Wireshark or Ettercap.

One issue that Internet wiretapping is yet to overcome is that of steganography, whereby a user encodes, or “hides”, one file inside another (usually a larger, dense file like a MP3 or JPEG image). With modern advancements in encoding technologies, the resulting combined file is essentially indistinguishable to anyone attempting to view it, unless they have the necessary protocol to extract the hidden file.[24][25] US News reported that this technique was commonly used by Osama bin Laden as a way to communicate with his terrorist cells.[26]

There are a number of steganographic programs available online, such as Wnstorm, QuickCrypto, and TextHide.

Mobile phone

Mobile phones have numerous privacy issues. Governments, law enforcement and intelligence services use mobiles to perform surveillance in the UK and the US. They possess technology to activate the microphones in cell phones remotely in order to listen to conversations that take place near to the person who holds the phone.[27][28]

Mobile phones are also commonly used to collect location data. While the phone is turned on, the geographical location of a mobile phone can be determined easily (whether it is being used or not), using a technique known as multilateration to calculate the differences in time for a signal to travel from the cell phone to each of several cell towers near the owner of the phone.[29][30]

The second generation mobile phones (circa 1978 through 1990) could be easily monitored by anyone with a 'scanning all-band receiver' because the system used an analog transmission system-like an ordinary radio transmitter. The third generation digital phones are harder to monitor because they use digitally encoded and compressed transmission. However the government can tap mobile phones with the cooperation of the phone company.[31] It is also possible for organizations with the correct technical equipment to monitor mobile phone communications and decrypt the audio.

A device called an "IMSI-catcher" pretends to the mobile phones in its vicinity to be a legitimate base station of the mobile phone network, subjecting the communication between the phone and the network to a man-in-the-middle attack. This is possible because while the mobile phone has to authenticate itself to the mobile telephone network, the network does not authenticate itself to the phone.[32] There is no defense against IMSI-catcher based eavesdropping, except using end-to-end call encryption; products offering this feature, secure telephones, are already beginning to appear on the market, though they tend to be expensive and incompatible with each other, which limits their proliferation.[33]

Webtapping

Logging the IP addresses of users that access certain websites is commonly called "webtapping".[34]

Webtapping is used to monitor websites that presumably contain dangerous or sensitive materials, and the people that access them. Though it is allowed by the USA PATRIOT Act, it is considered a questionable practice by many citizens,[35] if not an all-out violation of civil liberties.

History

Many state legislatures in the United States enacted statutes that prohibited anybody from listening in on telegraph communication. Telephone wiretapping began in the 1890s, following the invention of the telephone recorder,[36] and its constitutionality was established in the Prohibition-Era conviction of bootlegger Roy Olmstead. Wiretapping has also been carried out under most Presidents, sometimes with a lawful warrant since the Supreme Court ruled it constitutional in 1928. On October 19, 1963, U.S. Attorney General Robert F. Kennedy, who served under John F. Kennedy and Lyndon B. Johnson, authorized the FBI to begin wiretapping the communications of Rev. Martin Luther King, Jr. The wiretaps remained in place until April 1965 at his home and June 1966 at his office.[37]

The history of voice communication technology begins in 1876 with the invention of Alexander Graham Bell’s telephone. In the 1890s, “law enforcement agencies begin tapping wires on early telephone networks”.[38] Remote voice communications “were carried almost exclusively by circuit-switched systems,” where telephone switches would connect wires to form a continuous circuit and disconnect the wires when the call ended). All other telephone services, such as call forwarding and message taking, were handled by human operators.[39] However, the first computerized telephone switch was developed by Bell Labs in 1965. This got rid of standard wiretapping techniques.[38]

In the 1970s, optical fibers become a medium for telecommunications. These fiber lines, which are “long, thin strands of glass that carry signals via laser light”, are more secure than radio, and have become very cheap. From the 1990s to the present, the majority of communications between fixed locations is achieved by fiber. Because these fiber communications are wired, they're given greater protection under U.S. law.[38][39]

The earliest wiretaps were extra wires —physically inserted to the line between the switchboard and the subscriber— that carried the signal to a pair of earphones and a recorder. Later on wiretaps were installed at the central office on the frames that held the incoming wires.”[39]

Before the attack on Pearl Harbor and the subsequent entry of the United States into World War II, the U.S. House of Representatives held hearings on the legality of wiretapping for national defense. Significant legislation and judicial decisions on the legality and constitutionality of wiretapping had taken place years before World War II.[40] However, it took on new urgency at that time of national crisis. The actions of the government regarding wiretapping for the purpose of national defense in the current war on terror have drawn considerable attention and criticism. In the World War II era, the public was also aware of the controversy over the question of the constitutionality and legality of wiretapping. Furthermore, the public was concerned with the decisions that the legislative and judicial branches of the government were making regarding wiretapping.[41]

CrimethInc. sticker on a telephone warning users of phone tapping by the U.S. government.

In 1967 the U.S. Supreme Court ruled that wiretapping (or “intercepting communications”) requires a warrant in Katz v. United States.[42] In 1968 Congress passed a law that provided warrants for wiretapping in criminal investigations.[43] In 1978 the Foreign Intelligence Surveillance Act (FISA) created a "secret federal court" for issuing wiretap warrants in national security cases. This was in response to findings from the Watergate break-in, which allegedly uncovered a history of presidential operations that had used surveillance on domestic and foreign political organizations.[44]

In 1994, Congress approved the Communications Assistance for Law Enforcement Act (CALEA), which “requires telephone companies to be able to install more effective wiretaps. In 2004, the Federal Bureau of Investigation (FBI), United States Department of Justice (DOJ), Bureau of Alcohol, Tobacco, Firearms, and Explosives (ATF), and Drug Enforcement Administration (DEA) wanted to expand CALEA requirements to VoIP service.”[38][39]

The Federal Communications Commission (FCC) ruled in August 2005 that “broadband-service providers and interconnected VoIP providers fall within CALEA’s scope. Currently, instant messaging, web boards and site visits are not included in CALEA’s jurisdiction.[45] In 2007 Congress amended FISA to “allow the government to monitor more communications without a warrant”. In 2008 President George W. Bush expanded the surveillance of internet traffic to and from the U.S. government by signing a national security directive.[38]

In the Greek telephone tapping case 2004–2005 more than 100 mobile phone numbers belonging mostly to members of the Greek government, including the Prime Minister of Greece, and top-ranking civil servants were found to have been illegally tapped for a period of at least one year. The Greek government concluded this had been done by a foreign intelligence agency, for security reasons related to the 2004 Olympic Games, by unlawfully activating the lawful interception subsystem of the Vodafone Greece mobile network. An Italian tapping case which surfaced in November 2007 revealed significant manipulation of the news at the national television company RAI.[46]

In 2008, Wired and other media reported a lamplighter disclosed a "Quantico Circuit", a 45 megabit/second DS-3 line linking a carrier's most sensitive network in an affidavit that was the basis for a lawsuit against Verizon Wireless. The circuit provides direct access to all content and all information concerning the origin and termination of telephone calls placed on the Verizon Wireless network as well as the actual content of calls, according to the filing.[47]

The most recent case of U.S. wiretapping was the NSA warrantless surveillance controversy discovered in December 2005. It aroused much controversy after then President George W. Bush admitted to violating a specific federal statute (FISA) and the warrant requirement of the Fourth Amendment to the United States Constitution. The President claimed his authorization was consistent with other federal statutes (AUMF) and other provisions of the Constitution, it was necessary to keep America safe from terrorism and could lead to the capture of notorious terrorists responsible for the September 11 attacks in 2001.

One difference between foreign wiretapping and domestic wiretapping is that, when operating in other countries, “American intelligence services could not place wiretaps on phone lines as easily as they could in the U.S.” Also, domestically, wiretapping is regarded as an extreme investigative technique, whereas outside of the country, the interception of communications is huge. The National Security Agency (NSA) “spends billions of dollars every year intercepting foreign communications from ground bases, ships, airplanes and satellites”.[39]

FISA distinguishes between U.S. persons and foreigners, between communications inside and outside the U.S., and between wired and wireless communications. Wired communications within the United States are protected, since intercepting them requires a warrant.[39]

See also

References

  1. "ch_01.fm" (PDF). Retrieved 2011-12-20.
  2. RFC 4949
  3. 3.0 3.1 Harris, Tom (2001-05-08). "How Stuff Works Page 3". People.howstuffworks.com. Retrieved 2011-12-20.
  4. "Klass and others v Federal Republic of Germany". European Court of Human Rights. 1979-80. Retrieved 22 July 2014. Check date values in: |date= (help)
  5. "Huvig v France". European Court of Human Rights. 24 April 1990. Retrieved 22 July 2014.
  6. According to the US Code Title 50 § 1805
  7. Zachariah B. Parry. "Is It Legal to Record a Conversation in Nevada?". Pickard Parry Pfau. Retrieved 2015-01-24.
  8. Oleg Afonin. "United States Telephone Recording Laws". Callcorder.com. Retrieved 2011-12-20.
  9. Communications Assistance for Law Enforcement Act of 1994
  10. Declan McCullagh; Anne Broache (December 1, 2006). "FBI taps cell phone mic as eavesdropping tool". Cnet. Retrieved June 24, 2010. The FBI appears to have begun using a novel form of electronic surveillance in criminal investigations: remotely activating a mobile phone's microphone and using it to eavesdrop on nearby conversations. [. . . ] Kaplan's opinion said that the eavesdropping technique "functioned whether the phone was powered on or off." Some handsets can't be fully powered down without removing the battery; for instance, some Nokia models will wake up when turned off if an alarm is set.
  11. "Fact Sheet 9: Wiretapping and Eavesdropping on Telephone Calls". Privacyrights.org. Retrieved 2011-12-20.
  12. "Use of magnetic telephone pickup coil" (PDF). Retrieved 2011-12-20.
  13. "An example of an in-ear telephone recording microphone". Olympus.co.uk. Retrieved 2011-12-20.
  14. Biswas, Debobroto; Galib, Sa ad Yosuf; Mamun, Noor (Aug 2009). "Performance Analysis of Optical CDMA in Transmission Systems" (PDF). p. 14. Retrieved 22 July 2014.
  15. "An Introduction to Load Coils and Bridge Taps". 22 July 2011. Retrieved 22 July 2014.
  16. Chartrand, Mark R. (2004). Satellite communications for the nonspecialist. Belingham, WA: SPIE Press. p. 136. ISBN 0819451851.
  17. Kelly, John; Kepple, Kevin; Mosemak, Jerry; Loehrke, Janet; Dionise, Jeff. "Cellphone data spying: It's not just the NSA". USA Today. Retrieved 22 July 2014.
  18. "Cell Phone Location Tracking Public Records Request". American Civil Liberties Union. Retrieved 22 July 2014.
  19. "O:\Slip\WP\2005\05-1404.wpd" (PDF). Retrieved 2010-06-01.
  20. James Risen; Eric Lichtblau (15 January 2009). "Court Affirms Wiretapping Without Warrant". The New York Times.
  21. RFC 2804
  22. "Aircrack-ng (WEP, WPA-PSK Crack)". Retrieved 22 July 2014.
  23. Weiss, Aaron. "Introduction to Kismet". Wi-Fi Planet. Retrieved 22 July 2014.
  24. J. William Gurley. "Wire-tapping the Internet - CNET News". News.cnet.com. Retrieved 2010-06-01.
  25. Updated: 02 Nov 2010 (2010-11-02). "10". Securityfocus.com. Retrieved 2011-12-20.
  26. "Under Siege - US News and World Report". Usnews.com. Retrieved 2010-06-01.
  27. McCullagh, Declan; Anne Broache (December 1, 2006). "FBI taps cell phone mic as eavesdropping tool". CNet News. Retrieved 14 March 2009.
  28. Odell, Mark (August 1, 2005). "Use of mobile helped police keep tabs on suspect". Financial Times. Retrieved 14 March 2009.
  29. "Tracking a suspect by mobile phone". BBC News. August 3, 2005. Retrieved 14 March 2009.
  30. Miller, Joshua (March 14, 2009). "Cell Phone Tracking Can Locate Terrorists — But Only Where It's Legal". FOX News. Retrieved 14 March 2009.
  31. Flaherty, Anne (10 July 2013). "U.S. Government Pays Hundreds Of Dollars To AT&T And Verizon For Every Wiretap". Huffington Post. Retrieved 22 July 2014.
  32. Messmer, Ellen. "Apple iOS Apps Subject to Man-in-the-Middle Attacks". Network World. Retrieved 22 July 2014.
  33. Wang, Zidu. "Crypto Phones". Retrieved 22 July 2014.
  34. "Webtapping". First Monday. Retrieved 3 November 2008.
  35. "Google Wiretapping Charges Are Legit, Says US Appeals Court". redOrbit.com. Retrieved September 11, 2013.
  36. Harris, Tom. "How Wiretapping Works". How Stuff Works. Retrieved 22 July 2014.
  37. Garrow, David J. "The FBI and Martin Luther King - Magazine". The Atlantic. Retrieved 2010-06-01.
  38. 38.0 38.1 38.2 38.3 38.4 "09/2008-A History of Listening In". Issuu.com. Retrieved 2010-06-01.
  39. 39.0 39.1 39.2 39.3 39.4 39.5 "Internet Eavesdropping: A Brave New World of Wiretapping". Scientific American. 2008-08-22. Retrieved 2010-06-01.
  40. Congress, House, Committee on the Judiciary, To Authorize Wire Tapping, 76th Cong., first sess., 1941-02-03, 1.
  41. Congress, House, Committee on the Judiciary, Authorizing Wire Tapping in the Prosecution of the War, 77th Cong., second sess., 1942-02-18, 7-8.
  42. "FACTS AND CASE SUMMARY: KATZ V. UNITED STATES".
  43. "Federal Statutes: Relevant in the Information Sharing Environment (ISE)". DHS/Office for Civil Rights and Civil Liberties and the DHS/Privacy Office in cooperation with the DOJ, Office of Justice Programs, Bureau of Justice Assistance. Retrieved 2012-03-20.
  44. "Foreign Intelligence Surveillance Court". Federal Judicial Center. Retrieved 22 July 2014.
  45. "The Instant Expert Guide to CALEA". VoIP News. Retrieved 2010-06-01.
  46. Philippe Naughton Last updated December 20, 2011 2:25PM. "The Times, 23 November 2008". London. Retrieved 2011-12-20.
  47. Poulsen, # Kevin (2008-03-06). "Whistle-Blower: Feds Have a Backdoor Into Wireless Carrier — Congress Reacts". Wired. Threat Level. Retrieved 2010-06-01.

External links