p. 1

gd0lshep1200809000010 gorilla ximfoni lawful interception total solution for carriers going beyond regulation compliance accurate target provisioning across heterogeneous networks context of lawful interception for carriers today for crime investigation and homeland security lawful interception li is one of the most critical missions in most countries usually communication service providers are mandated by law to be responsible for deploying the lawful interception mediation devices that communicate with the monitoring center at the lawful enforcement agencies lea however traditional mediation and monitoring technologies are now being challenged by new and advanced communication technologies as new technologies for communications continues to develop and various technologies continuously being adopted the design of network architecture system management and daily operations have become more complex and challenging to carriers or network operators facing increasingly diversified telecommunications networks conventionally lawful interception needs to be performed only in tdm network such as pstn or 2g however thanks to rapid advance in technologies in the telecommunication industry nowadays people as well as criminals have more convenient ways to communicate other than simple voice calls consequently the more convenient communication is for them the harder li is for leas the gorilla ximfoni can deal with multiple communication technologies and even multiple service providers simultaneously to overcome technical barriers in all telecom networks such as 2g 3g gprs adsl wimax ngn etc moreover the trend in network convergence of fixed-line and wireless which is not uncommon for many telecom operators around the world could mean not only the li mediation systems need to be scalable to handle the growth of the network size and the traffic volume within the network but also easy enough to be extended or upgraded to provide li capability for both traditional and next generation communication technology for example the gorilla ximfoni being used on adsl network should be easily upgraded by adding a module to support the new wimax or lte networks rather than replacing the whole mediation system this also implies easy management low overhead for adopting new technologies and higher efficiency in system deployment disclaimer specifications are subject to change without notice while due caution has been exercised in the production of this document possible errors and omissions are unintentional © 2009 gorilla technology group inc all other trademarks are the property of their respective ownersall rights reserved 1

[close]

p. 2

gd0lshep1200809000010 dealing with ip packets one of the most critical differences in new technologies is that most or sometimes all intercepted content has now become ip packets instead of analog voices for example internet access has definitely become the major communication behavior besides voice calls over internet communication content is solely based on massive ip packets which if presented as is make very little sense to the average human eyes the gorilla ximfoni restores those packets into human-readable content exactly like what the intercept target is seeing in real time however simply restoring packets is not enough as some type of applications or services will have significant throughput impact packet filtering is another mission critical feature of the gorilla ximfoni for example iptv broadcast content not generated by individual targets should not be of interest to lea yet this huge volume of data traffic in the network will be an unnecessary burden if the li mediation system does not have the capability to differentiate these kinds of packets from others resulting in large amount of system resources being wasted on useless data that being said in the case of video on demand the communication can be regarded as personal and therefore interception may be required accurate target provisioning across heterogeneous networks target provisioning in new networks is another area that is going to become complicated for example wireless internet service deploys highly secured handshaking mechanism which brings difficulties for li target identification from number portability to user roaming from msisdn to sip uri from adsl account to wimax inner user id the gorilla ximfoni provisions the correct target identity on the correct networks and prevent li loopholes beyond regulation compliance the gorilla ximfoni lawful interception mediation system not only allows carriers to be regulation compliant etsi or calea but also assist lea officers generate meaningful patterns and information from the massive pool of intercepted data gorilla ximfoni s advanced analytical tools will correlate different activities of the same target or several logically related targets on the other hand there are usually several leas in a country it is not uncommon that more than one lea needs to inspect the same target the gorilla ximfoni can accommodate such requests and connect to several leas at the same time furthermore if certain leas only require ad hoc interception gorilla ximfoni has that flexibility as well disclaimer specifications are subject to change without notice while due caution has been exercised in the production of this document possible errors and omissions are unintentional © 2009 gorilla technology group inc all other trademarks are the property of their respective ownersall rights reserved 2

[close]

p. 3

gd0lshep1200809000010 gorilla ximfoni total solution to modern li for carriers gorilla has spent more than 5 years on intercepting modern communications especially on ip based services such as 3g packet switch domain ip multimedia subsystems internet access on adsl and wimax the gorilla ximfoni is a field-proven mediation solution for carrier side li in one of our deployment sites the ximfoni is connected to 10 different networks intercepted 110,000 minutes of voice content per day and facilitated monitoring for over 5,000 provisioned targets the gorilla ximfoni correctly correlated all the intercepted dat cc and iris of the same call session are identified in the li database intercepted data is replicated to the centralized database of the gorilla shepherd for intelligence analysis for example the gorilla enhanced link analysis system is a powerful tool to analyze the target s communication behavior patterns and relationship matrix with other entities disclaimer specifications are subject to change without notice while due caution has been exercised in the production of this document possible errors and omissions are unintentional © 2009 gorilla technology group inc all other trademarks are the property of their respective ownersall rights reserved 3

[close]

p. 4

gd0lshep1200809000010 key features benefits protocol decoding restore the content at application layer from the ip packets data integrity all intercepted data are signed by the digital signature server robust mediation multiple etsi-compliant hi support to cover internet access services voip service and traditional phone service in circuit-switch domain master-slave component based architecture enables scalable li systems target provision and system management is in the master server and each slave server can be correspondent to a specific network built-in filtering capability enables the li system to filter out huge volume of data that are of no interest to lea saving valuable system resources from unnecessary operations support multiple leas so that each of them can intercept the same target simultaneously and independently for different types of network and services the point of interception will be different which is summarized as below network type type of service 2g gsm point of interception msc mss mgw class 5 switch broadband ras ggsn ha,aaa server mail server sbc cscf sbc tdm 3g umts pstn adsl cable ip 3g umts gprs wimax mail box service voip soft-switch network ims disclaimer specifications are subject to change without notice while due caution has been exercised in the production of this document possible errors and omissions are unintentional © 2009 gorilla technology group inc all other trademarks are the property of their respective ownersall rights reserved 4

[close]

p. 5

gd0lshep1200809000010 technical specifications lemf lawful interception standards etsi ts 101.331 etsi ts 101.671 voice call etsi tr 101.671 etsi es 201.671 etsi 102-232 part1 to part 6 internet access email voip 3gpp ts 33.108 umts circuit switch domain packet switch domain ip multimedia subsystem ansi j-std-025-b cdma voice ansi t1.678 voip ansi t1.iasip wimax forum nwg compliant data retention standard etsi ts 102.656 etsi ts 102.657 etsi tr 102.661 protocol decoder engines instant messenger msn® messenger yahoo® messenger google® talk xmpp simple email pop3 smtp imap gmail® msn® mail yahoo® mail voip sip rtp h.323 g.729 t.38 3gp others http telnet ftp wap mms bt emule edonkey capacity of lemf tier provisioned targets 20,000 identities tdm network tig suite pstn 2g 3g circuit switch 150 simultaneous calls for tx rx separated voip network collection system suite isdn softswitch ngn ims 150 simultaneouscalls for tx rx separated ip network collection system suite network service adsl cable wimax fixed internet access e-mail 100mb/sec input for hi3 offline iri 6 month concurrent real-time interceptions 50 sessions needs 50 swss disclaimer specifications are subject to change without notice while due caution has been exercised in the production of this document possible errors and omissions are unintentional © 2009 gorilla technology group inc all other trademarks are the property of their respective ownersall rights reserved 5

[close]

p. 6

gd0lshep1200809000010 physical interface 1 2 3 4 100mb 1000mb 10gb ethernet e1 isup e1 ip fiber ip integrated network equipment vendors ericsson® nokia-siemens® alcatel-lucent® nortel® cisco® juniper® huawei® starenttm nortel® motorola® bridgewater® utstarcom® nextone® acme packet® disclaimer specifications are subject to change without notice while due caution has been exercised in the production of this document possible errors and omissions are unintentional © 2009 gorilla technology group inc all other trademarks are the property of their respective ownersall rights reserved 6

[close]

p. 7

gd0lshep1200809000010 gorilla total solution services consulting services having worked with many different global vendors in the industry as well as conducting research and development over the years our experts from gorilla professional service team are eager to share their expertise in a wide range of areas with you these areas include but not limited to current and future business opportunity analysis industry standards operation flows system design both hardware and software complex project planning implementation and system integration with multiple vendors the goal of gorilla professional service team is to ensure our clients to achieve their business objectives while maximizing their return on investment at the same time training services in order to obtain the maximum benefit from the solution for you gorilla is happy to provide tailored training program typically onsite and training materials to help users understand and utilize the systems provided so that users know how the gorilla solutions be utilized to best-fit into their daily operations support services gorilla understands that issues and problems may occur to you from time to time this is why gorilla support service team is always dedicated to work with you on these issues and technical problems until they are resolved the support programs offered by gorilla include gold silver bronze and corporate service agreement you may select the appropriate support service level to suit you business or operational needs in the best possible way disclaimer specifications are subject to change without notice while due caution has been exercised in the production of this document possible errors and omissions are unintentional © 2009 gorilla technology group inc all other trademarks are the property of their respective ownersall rights reserved 7

[close]