Hacker News new | ask | show | jobs
by jc01480 1664 days ago
Major service providers do not maintain SMS history beyond 24 hours, let alone 1-7 years (last time I worked a case that is). They’re transparent about it as well. Look up the LE liaison contacts on their sites and they’ll clearly list what is available or not available. That’s why it’s crucial to get the actual devices themselves. Reason: the infrastructure to manage SMS content for every customer for 7 years with zero business justification/use case is phenomenal. They’d spend most of their time responding to civil and criminal subpoenas/warrants. That would be a feat the NSA would be proud of. Been there and done that a 100 times. (This also aligns with certain VPN providers refusing to keep logs. It’s a cost that provides zero returns, so they cut it as a business decision, not because they’re trying to stick it to the man.
4 comments
lrvick 1664 days ago
I went to a major cell provider and asked them nicely for access to SMS for all their customers and they happily took money and gave me an API.

This was for a startup.

I have no doubt they do the same for governments.

link
jc01480 1664 days ago
If I understand this correctly you’re saying a major cell provider is selling you access to subscriber SMS message content?
link
lrvick 1660 days ago
They sold access to send or send/receive messages for use cases where customers would legitimately consent. E.G. a wireless Bluetooth accessory that wants to access and reply to SMS message content on Apple devices that Apple won't grant access to.

Still. It meant a very powerful API key had to be protected and never abused.

I can only imagine others obtain God SMS access like this with less than ethical intentions.

link
superkuh 1664 days ago
I'm surprised to hear this has changed so significantly since the snowden leaks. Especially after the blatant attack on Qwest CEO Joseph Nacchio for refusing to spy. It was established then that the major mobile telcos in the USA were keeping and providing sms full data for 2-5 years (t-mobile, at&t, verizon, etc).
link
yownie 1664 days ago
and also that the government was subsidizing the programs when the companies complained about the added costs.
link
wyldfire 1664 days ago
There's no reason for them to keep those records, other than for law enforcement's sake. No use case for calling up your operator to ask about that text message you got "from Fred at 4am one day a couple years ago."
link
Terretta 1664 days ago
> Major service providers do not maintain SMS history beyond 24 hours, let alone 1-7 years

Nobody should make decisions based on this comment.

link
jc01480 1664 days ago
Agreed. Do your own due diligence.
link