InfBrok100

Effective from 1st December 2021, due to the Telecommunications Modernisation Act (TKMoG) amending the Telecommunications Act (TKG) and the regulations in Technical Guideline TR TKÜV Version 7.2 (published on 16th June 2021 by the Federal Network Agency (BNetzA)), telecommunications providers are required to implement this technical guideline. They must also use an electronic interface for investigation authority requests (ETSI-ESB or E-MAIL-ESB). From 1st December 2022 (after a one-year transition period) this requirement also applies to providers of number-independent interpersonal services, such as e-mail. Furthermore, within two years, beginning on 1st December 2023, this requirement extends to providers of messenger services.

Part B of the Technical Guideline specifically pertains to the provision of information on subscriber and traffic data, for which the providers are now also required to provide corresponding automated solutions.

With over 20 years of experience in Lawful Disclosure, DIaLOGIKa GmbH can timely provide solutions for these requirements. One option for a particularly swift implementation of regulatory requirements is our InfBrok100 hosting solution, which has been successfully used by numerous companies in the telecommunications sector for many years. In this setup, DIaLOGIKa provides the technical infrastructure for responding to authority requests, which the obligated company’s employees process through the InfBrok100 web application.

• Traffic data requests according to §9 TTDSG: InfBrok100 receives the requests in accordance with the requirements of the TR TKÜV via ETSI-ESB and supports the verification of the court order or prosecutorial order. The response can be uploaded as a CSV file or provided automatically via a JSON interface. Additional delivery interfaces are supported on request. The application uses the format of the ETSI interface when generating the report. Real-time traffic data can be monitored as part of a surveillance measure without accessing the data content. The currently suspended requests for data retention according to §176 TKG can be supported if the legal situation were to change again.
• Subscriber data requests according to §174 TKG: Manual subscriber data requests can be received through the ETSI and EMAIL-ESB interfaces (for subscriber data requests according to §173 TKG we offer a separate product: InfBrok90). InfBrok100 can retrieve response data from customer systems through a JSON interface, which can be manually supplemented or entered entirely into a data entry form. Integration with existing interfaces is also possible. For dynamic IP address requests, traffic data can be accessed to determine the result. Depending on the interface used, the results are transmitted as a report in the format of the ETSI interface, or as a docx file if EMAIL-ESB is used. The docx file is generated with the help of customisable templates.
• Lawful interception / (TKÜ) according to §170 TKG Requests can be received via ETSI-ESB or EMAIL-ESB. InfBrok100 supports the complete workflow for prosecutorial orders, extensions and deactivations. The execution of the surveillance can be carried out through an interface to the surveillance system.
• Location investigations: Both location investigations in the mobile phone network (§171 TKG) and location investigations for IP addresses can be processed with InfBrok100. To expedite the application’s result determination, existing interfaces can be programmed. A data entry form for entering the results manually is also available.
• Requests within the scope of an investigation into service fraud or other unlawful use of a telecommunications service (§12 TTDSG) can use the same interfaces as subscriber data requests. Since the processing of these requests is often complex, InfBrok100 offers the possibility to define a workflow that supports the operators in preparing responses to the authorities.
• To implement malicious call identification in accordance with §14 TTDSG, InfBrok100 can access traffic data and determine the caller’s subscriber data, or request it from other providers. InfBrok100 also generates the necessary documents for malicious call identification.

InfBrok100 also provides the option of storing traffic and subscriber data:

• Highly efficient traffic data storage: InfBrok100 offers IB-CDR (InfBrok100-related traffic data storage), a structure for the efficient loading and retrieval of traffic data, which contains all the information required to comply with the TKG. Thanks to specially optimised storage procedures, up to several billion CDRs (Call Data Records) per day can be stored and efficiently searched. IB-CDR can be configured to implement the (well-known, but currently discontinued) Federal Network Agency requirements catalogue. Alternatively, traffic data can be retrieved from existing (e.g. billing) systems.
• Subscriber data can be stored in the database, which is also used by InfBrok90 for automated information requests. The loading programs are highly configurable and can be tailored to our clients' existing data structures.
• Any number and structure of data-supplying systems: InfBrok100 or the IB-CDR storage system can obtain the subscriber and traffic data to be provided from various sources, including Billing, Customer-Care, IN, Switch, Mediation Device etc., and, of course, from the §112/§173(n.F.)-system InfBrok90. Additionally, responses to subscriber data requests can be manually supplemented, or traffic data can be uploaded as a CSV file.

The following interfaces to the authorities are supported:

• ETSI-ESB: This interface allows for the transmission of XML files via http within a VPN secured with SINA boxes, in accordance with TR TKUEV 7.2 ff and ETSI TS 102 657. It enables efficient processing of requests, where the operators only need to check the court decision and no longer need to enter any data. This interface is mandatory for providers with more than 100,000 contractual partners.
• EMAIL-ESB: The reception and sending of PGP-encrypted emails can be completely handled within InfBrok100, ensuring end-to-end encryption throughout. Key management is integrated into InfBrok100.
• The support of the OTT interface according to TR TKUEV 7.2 ff and ETSI TS 103 707 or TS 103 120 is integrated.

• Web user interface: A web browser serves as the user interface for InfBrok100 (http/https) via remote access. Thus, the need for the time-consuming installation of an individual frontend application on each PC is eliminated.
• Task-oriented: InfBrok100 manages operations that are subdivided into individual cases. An operation is typically assigned to exactly one authority request.
• High modularity: Due to its high modularity, InfBrok100 can easily be adapted to customer-specific requirements (e.g. to the structure of the data-supplying systems). Due to the separate presentation level (3-tier), the graphical user interface can also be easily changed (and individualised).
• Report generation: InfBrok100 includes a template system for the automatic generation of personalised text documents (reports, malicious call identification requests and responses).
• Auditing: InfBrok100 automatically handles auditing in accordance with §16 TKÜV for interception, traffic and subscriber data requests:
  • Audit Support: The application supports the mandatory quarterly review of 20 % of interceptions and 5 % of traffic data requests as required by §17 TKÜV. It randomly selects the processes to be audited and guides the auditor through the review process, and prepares the quarterly report for submission to the Federal Network Agency.
• Timeout monitoring: Each individual measure and sub-process is time-monitored. If a measure-specific maximum time limit is exceeded, an escalation procedure is triggered.
• Automatic invoice generation: InfBrok100 supports interfaces to financial accounting systems (e.g. via CSV files for SAP), through which invoice data, automatically generated according to the JVEG price list and potentially manually supplemented, can be transferred (including electronic invoice indication according to TR TKÜV).
• Fail-safe operation through automatic restart: InfBrok100 is optimised for maximum operational reliability. All states and intermediate results are persistently stored in a database, ensuring that the system continues to operate without data loss in the event of, for example, a power outage, provided the database is properly secured.
• Various user roles: InfBrok100 supports different user profiles (e.g. operators, administrators, auditors) that can be customized to the structure of the obligated party, allowing effective control over access to sensitive data.
• Multi-client capability: InfBrok100 supports the processing of requests for multiple obligated companies within a single installation.
• We also support you in completing the operating concepts prescribed by the Federal Network Agency.
• Legal adjustments: Adjustments required as a result of legal changes are included in the maintenance contract at no additional cost.