TB SiteMapbreadcrumb separatorLIbreadcrumb separatorActivity Report

LI Activity Report 2018-2019

Chairman: Gerald McQuaid, Vodafone Group Plc

Responsible for developing standards that support the technical requirements of national and international obligations for law enforcement (including the lawful interception and retention of the communications-related data of electronic communications.

Lawful Interception and Retained Data (RD) plays a crucial role in the growth and development of the Information Society, by helping law enforcement agencies (LEAs) to investigate terrorism and serious criminal activity.

Bringing together the interests of governments and law enforcement agencies (LEAs) as well as mobile network operators and equipment vendors, our Technical Committee Lawful Interception (TC LI) develops standards supporting common international requirements for LEAs, including the interception of content and retention/disclosure of electronic communications related data with supporting standards for warrantry and internal interfaces.

In 2018 we continued to update our Lawful Interception (LI) and Retained Data (RD) standards, specifications and reports. This included maintenance of the seven-part TS on the handover interface and service-specific details for Internet Protocol (IP) delivery. We completed a specification of an interface for communication between authorized Law Enforcement Monitoring Facilities (LEMFs) to support European Investigation Orders related to LI and/or RD. Comprising an exchange protocol together with an associated data schema, this specification is focused on the secure handling of real-time and stored data transfer between LEMFs.

Work continued on defining an electronic interface for the exchange of information between systems relating to the establishment and management of LI. Following previous publication of a specification for an internal network interface X1 for LI-related messages over Handover Interface 1 (HI1), work neared completion on another specification for both interfaces X2 and X3, supporting other related work in 3GPP.

Service and network architectures are becoming increasingly non-monolithic, with multiple operators involved in supplying a service to a single user. In 2018 updates progressed to a TS on the dynamic triggering of interception required as a result of this diversification of architectures.


  • Technical Report (TR) to assess and characterise problems associated with interception and delivery of high-bandwidth user traffic using TCP or TLS
  • Revision to Technical Specification (TS) on Handover Interface 1 (HI1): interface for warrant information
  • Revision to TS on HI & Service-Specific Details for IP delivery
  • TS on dynamic triggering of interception / CCTF standardization
  • Revision to TS on service-specific details for IP delivery of messaging services