As replied to Peter;
(Bear in mind we are talking 24/7 and not interview)

The team radio transmissions are recorded in-house for 'company' acrchive
and saved periodicaly with checksums, just for good measure.
The transmission also streams live mp3 via secure FTP to a server with
access held only by the supreme court.

As the radio signal starts it triggers the whole record & ftp-to-server
function so bandwidth and disk space is not wasted with silence. Recording
only stops after 15 minutes (or whatever) from cut of radio.

Any cracks in there?

--
dE|_

dE|_ wrote:

> As replied to Peter;
> (Bear in mind we are talking 24/7 and not interview)

> The team radio transmissions are recorded in-house for 'company'
> acrchive and saved periodicaly with checksums, just for good measure.
> The transmission also streams live mp3 via secure FTP to a server with
> access held only by the supreme court.

You do not stream to an ftp site, you upload a file with a start and an end.

> As the radio signal starts it triggers the whole record &
> ftp-to-server function so bandwidth and disk space is not wasted with
> silence. Recording only stops after 15 minutes (or whatever) from cut
> of radio.

> Any cracks in there?

Yes, you need a forensics expert - with an insurance in case he is wrong -
to evaluate it. You're not the first guys on a planet to need logging, I
think there is a shrinkwrapped solution out there.

Start searching here:

http://www.bing.com/search?q=secure+audio+logging&mkt=en-GB&FORM=IEFM&src=IE-Address

Amazing what the proper search term can do for you ...

Kind regards

Peter Larsen

"Peter Larsen" replied with a usefull:
>
>> As replied to Peter;
>> (Bear in mind we are talking 24/7 and not interview)
>
>> The team radio transmissions are recorded in-house for 'company'
>> acrchive and saved periodicaly with checksums, just for good measure.
>> The transmission also streams live mp3 via secure FTP to a server with
>> access held only by the supreme court.
>
> You do not stream to an ftp site, you upload a file with a start and an
> end.

Okay make that some other upload method, and it won't be to an online
server, it would be a court's backroom RAID drive.

>> As the radio signal starts it triggers the whole record &
>> ftp-to-server function so bandwidth and disk space is not wasted with
>> silence. Recording only stops after 15 minutes (or whatever) from cut
>> of radio.
>
>> Any cracks in there?
>
> Yes, you need a forensics expert - with an insurance in case he is wrong -
> to evaluate it. You're not the first guys on a planet to need logging, I
> think there is a shrinkwrapped solution out there.
>
> Start searching here:
>
> http://www.bing.com/search?q=secure+audio+logging&mkt=en-GB&FORM=IEFM&src=IE-Address

http://www.totalrecallvr.com/trmserver.html sounds pretty cool. They quote
'.TRC' as their secure format. That must be heavy duty because when I
googled it every site is offering me scans for TRC file errors!!

Inputs via VoIP & ISDN so I'm hoping the radio handset's monitor board can
output ISDN.

--
dE|_

dE|_ wrote:

>> Start searching here:

>> http://www.bing.com/search?q=secure+audio+logging&mkt=en-GB&FORM=IEFM&src=IE-Address

> http://www.totalrecallvr.com/trmserver.html sounds pretty cool. They
> quote '.TRC' as their secure format. That must be heavy duty because
> when I googled it every site is offering me scans for TRC file
> errors!!

> Inputs via VoIP & ISDN so I'm hoping the radio handset's monitor
> board can output ISDN.

Please do not think that I know a helluwa lot about this.

Kind regards

Peter Larsen

"dE|_" wrote ...
> Okay make that some other upload method, and it won't be to an online
> server, it would be a court's backroom RAID drive.

If it goes through the "internet" then it is "online" by definition.
Dunno how you could do anything otherwise.

"Secure" web-based protocols (httpS) are good enough for most
of us to use our credit cards to purchase stuff. And one could
devise a scheme where the recording system also records the
MAC address of the sender, and the traceroute the path of the
connection, etc. That would give a much more traceable (note
that I did NOT use the words "authentic" or "assured') record
of where the information (audio, video, files, etc.) came from
and when and how. But it would still take years to get a scheme
something like that to become legally accepted, likely in most
countries.

"Richard Crowley" > wrote in message
...
> "dE|_" wrote ...
>> Okay make that some other upload method, and it won't be to an online
>> server, it would be a court's backroom RAID drive.
>
> If it goes through the "internet" then it is "online" by definition.
> Dunno how you could do anything otherwise.
>
> "Secure" web-based protocols (httpS) are good enough for most
> of us to use our credit cards to purchase stuff. And one could
> devise a scheme where the recording system also records the
> MAC address of the sender, and the traceroute the path of the
> connection, etc. That would give a much more traceable (note
> that I did NOT use the words "authentic" or "assured') record
> of where the information (audio, video, files, etc.) came from
> and when and how. But it would still take years to get a scheme
> something like that to become legally accepted, likely in most
> countries.

VPN is what I was looking for.

--
dE|_

"Peter Larsen" > wrote in message
k...
> dE|_ wrote:
>
>>> Start searching here:
>
>>> http://www.bing.com/search?q=secure+audio+logging&mkt=en-GB&FORM=IEFM&src=IE-Address
>
>> http://www.totalrecallvr.com/trmserver.html sounds pretty cool. They
>> quote '.TRC' as their secure format. That must be heavy duty because
>> when I googled it every site is offering me scans for TRC file
>> errors!!
>
>> Inputs via VoIP & ISDN so I'm hoping the radio handset's monitor
>> board can output ISDN.
>
> Please do not think that I know a helluwa lot about this.

No worries, that was rhetorical. I'd have to see the monitor board myself
for that but the total recall range does offer analogue recording too.

--
dE|_

"dE|_" wrote ...
> VPN is what I was looking for.

Yes, VPN is pretty secure. It requires pre-arrangement between
the parties for secure connection. But it still wouldn't likely be
immediately accepted by the legal community.

dE|_ > wrote:
>
>VPN is what I was looking for.

The VPN buys you nothing over an encrypted connection like ssh, though.
It exists only to provide a convenient user interface to make it appear
like you are in a private line network when you really aren't.

And, in fact, even ssh doesn't really buy you all that much. The chance
your network connection will be snooped is so minimal it's hard to even
worry about. It provides not additional certification of authenticity.

Your worry is data authenticity, not data integrity or data security.
--scott

--
"C'est un Nagra. C'est suisse, et tres, tres precis."

"dE|_" > wrote in message
...
>
> "Peter Larsen" replied with a usefull:
>>
>>> As replied to Peter;
>>> (Bear in mind we are talking 24/7 and not interview)
>>
>>> The team radio transmissions are recorded in-house for 'company'
>>> acrchive and saved periodicaly with checksums, just for good measure.
>>> The transmission also streams live mp3 via secure FTP to a server with
>>> access held only by the supreme court.
>>
>> You do not stream to an ftp site, you upload a file with a start and an
>> end.
>
> Okay make that some other upload method, and it won't be to an online
> server, it would be a court's backroom RAID drive.
>
>>> As the radio signal starts it triggers the whole record &
>>> ftp-to-server function so bandwidth and disk space is not wasted with
>>> silence. Recording only stops after 15 minutes (or whatever) from cut
>>> of radio.
>>
>>> Any cracks in there?
>>
>> Yes, you need a forensics expert - with an insurance in case he is
>> wrong - to evaluate it. You're not the first guys on a planet to need
>> logging, I think there is a shrinkwrapped solution out there.
>>
>> Start searching here:
>>
>> http://www.bing.com/search?q=secure+audio+logging&mkt=en-GB&FORM=IEFM&src=IE-Address
>
> http://www.totalrecallvr.com/trmserver.html sounds pretty cool. They quote
> '.TRC' as their secure format. That must be heavy duty because when I
> googled it every site is offering me scans for TRC file errors!!
>
> Inputs via VoIP & ISDN so I'm hoping the radio handset's monitor board can
> output ISDN.

In this context, 'ISDN' means ISDN signaling for a TDM line like T1 or E1.
This is a hardware path and will not be cheap or easy.

VoIP could have some promise since it's a streamed format and there are some
open source soft-switches that you can work with. However, VoIP is also a
'lossy' protocol, which means that what comes out doesn't have to be exactly
the same as what goes in. For authenticating the content they really need to
be a bit-perfect match.

What I would look for is something which does PPK encryption - where the
data is encrypted as close to the source as possible with a private key, and
then decrypted on demand with the public key. This gives security in that
the data can only be decrypted with the public key, and only if it hasn't
been tampered with. Once it's in a secure format the transport is almost
trivial because you don't care if people can see the data, they can't use it
or alter it.

All that is technically feasible, the question is whether it is legally
feasible. Ultimately a technically sound solution doesn't guarantee a
legally acceptable solution, which is why you still need a third party
consultant.

Sean

"Scott Dorsey" > wrote in message
...
> dE|_ > wrote:
>>
>>VPN is what I was looking for.
>
> The VPN buys you nothing over an encrypted connection like ssh, though.
> It exists only to provide a convenient user interface to make it appear
> like you are in a private line network when you really aren't.
>
> And, in fact, even ssh doesn't really buy you all that much. The chance
> your network connection will be snooped is so minimal it's hard to even
> worry about. It provides not additional certification of authenticity.
>
> Your worry is data authenticity, not data integrity or data security.

Agreed, it's recordings of radio transmission anyway! 128bit SSL will be
fine.
The idea of VPN is to make the various offices over the country feel more at
home / less likely to cock up with their networking. If the bandwidth for
sending recorded files to court servers does turn out high, then it might
have to be T1.

--
dE|_