Lawful Intercept Edition  ·  CALEA  ·  ETSI LI

CALEA compliance built
on your SIP infrastructure.
No black box. No blind hand-off.

Warrant management, legal hold, chain-of-custody audit trail, and role-gated law enforcement access — all running on infrastructure you own and control.

FCC fines up to $100,000/day for CALEA non-compliance  ·  Applies to all interconnected VoIP providers

SIPLens Platform LI — Warrant Management LI Edition
Active warrants
WR-2025-0041
sip:+13055550142@...
Expires Jun 30
WR-2025-0038
sip:john.doe@pbx...
Expires Jul 15
Expired
WR-2025-0031
Expired May 1
WR-2025-0041
Issued 2025-06-01  ·  Expires 2025-06-30  ·  Agent: LEA-7
Active
Intercept targets
IP 192.168.10.45
Audit trail (last 3)
2025-06-08 10:04:42 CALL_MATCHED call=uuid-abc admin=system
2025-06-07 14:22:11 WARRANT_VIEWED admin=lea-agent-7
2025-06-01 09:00:00 WARRANT_CREATED admin=compliance-admin
HMAC chain: valid  ·  47 events total
LI capabilities

Everything CALEA requires

Built to satisfy the Access, Content, and Call-Identifying Information requirements of CALEA — on infrastructure you own and control.

Warrant & target management

Create warrants with interception targets by URI, phone number, or IP. Assign LEA users to specific warrants. Set expiration dates and track active status.

Legal hold

Place calls under legal hold to prevent retention-based deletion. Tamper-evident storage ensures held calls cannot be altered or destroyed.

HMAC audit trail

Every administrative action is logged and chained with HMAC signatures. The hash chain detects any gap, deletion, or modification in the audit log.

Role-gated LEA access

Three-tier RBAC: admin, analyst, law enforcement. LEA users see only calls matching their assigned warrants — no other calls are visible or accessible.

Evidence export

Export warrant-covered calls as pcap files with a signed chain-of-custody record. Suitable for submission to law enforcement as court-admissible evidence.

Full SIPLens Platform

Platform LI is the same SIPLens Platform with LI features unlocked via license key. All capture, search, ladder diagrams, and RTP metrics are included.

Regulatory coverage

Built to the standards that matter

US CALEA

47 U.S.C. §§ 1001–1010

Communications Assistance for Law Enforcement Act. Mandates intercept capability for all interconnected VoIP providers. FCC enforcement began 2007. Fines up to $100K/day.

ETSI LI

ETSI TS 102 232

ETSI TS 102 232 series defines the Handover Interface for IP-based lawful intercept. Required across EU member states and adopted internationally for VoIP operators.

Identity & Access

Zitadel + Prism

Role-based access control via Zitadel project roles. Prism entitlements gate the LI feature set. Audit trail signed with HMAC hash chain — tamper-evident by design.

Get in touch

Talk to our compliance team

We'll walk you through CALEA requirements for your network and show you how SIPLens Platform LI fits your compliance posture.

Or email us directly at [email protected]

Pen Register & Trap-and-Trace

The most common legal process. Covered.

Pen register and trap-and-trace orders are the highest-volume, lowest-complexity compliance obligation for VoIP carriers — far more common than full content intercept warrants. SIPLens Platform LI captures complete Call-Identifying Information for every call, ready for court-ordered disclosure.

  • CII captured automatically — caller, callee, Call-ID, timestamps, duration, IP addresses, and codec for every call
  • Warrant-scoped export — filter to the target number or URI and export the full call record for the order period
  • Legally defensible chain of custody — HMAC-signed audit log documents every access and export event
Pen register disclosure — call records
Target / DirectionCII
+13055550142 → +18005551234
2025-06-02 10:04:12 · 28s · G.711
Outbound
+17185559876 → +13055550142
2025-06-03 14:22:51 · 4m 12s · G.722
Inbound
+13055550142 → +19175553011
2025-06-03 16:55:07 · 1m 44s · Opus
Outbound
WR-2025-0041 · 2025-06-01–06-30 · 3 calls matched Export CSV / pcap
Premium add-on  ·  Heimdall AI

AI-powered analysis built into the intercept workflow

No CALEA compliance product on the market offers integrated AI analysis. Heimdall layers LLM-based intelligence directly onto intercepted call records — turning raw pcaps into actionable intelligence, on your infrastructure.

Call transcription

Whisper ASR converts intercepted calls to timestamped, speaker-diarized transcripts. Fully searchable — find any utterance across your entire warrant corpus.

Watchword alerting

Configurable watchword lists trigger real-time alerts when matched in transcripts. Conversation-level threat scoring surfaces high-priority calls without manual review.

Entity extraction

Names, locations, phone numbers, dates, and financial references automatically extracted from call content and indexed for cross-call correlation.

Fraud pattern analysis

Behavioral models flag call patterns consistent with toll fraud, SIM swapping, and social engineering campaigns across your entire subscriber base.

LLM call summaries

Each intercepted call gets a one-paragraph summary with key facts extracted — eliminates hours of manual review for compliance teams and law enforcement analysts.

Local inference, no cloud

All AI processing runs on-premises alongside SIPLens Platform. Intercepted content never touches a third-party API. Air-gapped deployment supported.

Available as an add-on to SIPLens Platform LI
Heimdall runs on your infrastructure alongside the platform. Contact us to discuss requirements and deployment sizing.
Request access →