High Speed Protocol

Description

The High Speed Protocol (HSP) is a standardized protocol within the 3GPP security architecture, primarily specified in TS 33.224. It is designed to facilitate the secure, reliable, and high-performance transport of intercepted communication content and associated intercept-related information (IRI) from network elements, such as the Packet Data Network Gateway (PGW) or User Plane Function (UPF), to a Lawful Interception (LI) mediation or collection function. The protocol operates over TCP/IP and is engineered to handle large volumes of data with minimal latency and high throughput, which is critical for real-time interception scenarios in modern high-bandwidth networks.

Architecturally, HSP defines a client-server model where the network element generating the intercept data acts as the HSP client, and the Law Enforcement Monitoring Facility (LEMF) or a mediation device acts as the HSP server. The protocol specifies message formats, session establishment procedures, and mechanisms for flow control and error recovery. It supports the transmission of both content of communication (CC), which is the actual user data (e.g., voice packets, IP flows), and intercept-related information (IRI), which is metadata about the communication (e.g., call details, location). These are delivered on separate logical channels within the HSP session to allow for differentiated handling and prioritization.

Key components of the HSP protocol stack include the connection management layer for establishing and maintaining secure TCP connections, the message formatting layer for structuring IRI and CC payloads according to 3GPP standards, and the security layer which mandates the use of TLS (Transport Layer Security) to provide confidentiality and integrity for the intercepted data in transit. Its role is crucial for compliance with legal requirements for telecommunications surveillance, ensuring that intercepted data is delivered accurately, completely, and securely from the carrier's network to the authorized law enforcement agency, without impacting the performance or integrity of the commercial network services.

Purpose & Motivation

HSP was created to address the specific challenges of Lawful Interception (LI) in evolving 3GPP packet-switched networks. Prior methods for delivering intercepted data were often vendor-specific, lacked standardized high-performance transport mechanisms, and struggled to keep pace with the increasing data speeds offered by technologies like HSPA and LTE. The proliferation of high-bandwidth services, such as video streaming and large file downloads, necessitated a standardized protocol capable of handling high-volume, real-time data feeds from network nodes to interception collection systems without becoming a bottleneck.

The protocol solves the problem of secure and reliable mass data delivery for interception purposes. It provides a common interface that ensures interoperability between equipment from different network vendors and law enforcement system suppliers, which is a key regulatory requirement in many jurisdictions. By specifying a robust transport mechanism with built-in security (TLS), flow control, and error handling, HSP ensures the integrity and completeness of the evidentiary chain, which is paramount for legal admissibility. Its creation was motivated by the need to modernize interception capabilities in line with 3GPP's all-IP architecture, moving beyond legacy circuit-switched interception models to a scalable, packet-based framework suitable for the high-speed internet era.

Key Features

• Standardized transport for Lawful Interception data (IRI and CC)
• Client-server architecture over TCP/IP
• Mandatory use of TLS for confidentiality and integrity
• Support for high-throughput, low-latency data delivery
• Separate logical channels for Intercept Related Information (IRI) and Content of Communication (CC)
• Defined procedures for session management, flow control, and error recovery

Evolution Across Releases

Defining Specifications