Stuart Corner
Monday, 14 September 2009 06:48
IT Industry -
Strategy
Page 1 of 2
The Internet Industry Association is developing an eSecurity code to help ISPs improve Internet security by checking customers' computers for malicious activity. It envisages ISPs being able, in extreme cases, to disconnect compromised computers. The IIA has invited comments on the draft version.
The primary aim of the code is to get ISPs to monitor customer computers connected to their networks for malicious activity, to identify any that have been compromised, and then to take appropriate action.
According to the draft code, "ISPs can typically find out about malicious activity and compromised computers in two ways: by active monitoring as part of normal network management activities; and/or by notification by trusted third party sources."(A list of sources is included with the draft code.)
The code then gives a list of suggested actions an ISP can take. Notify the customer directly (by phone or email); apply an 'abuse' plan where the customer's Internet service is speed throttled; temporarily suspend the customer's account until they advise that they have taken remedial action; place the customer's account in a 'walled garden' with links to relevant software/information pages that will assist them to clean-up their computers; temporarily suspend compromised ports/protocol activity; regenerate the customer's account password to prompt customers to call the helpdesk so they can be educated about the issue; in the case of Spam sources, apply restrictions to outbound SMTP; and/or provide the customer with a timeframe in which to take remedial access and if this is not adhered to, terminate their service.
Termination of a customer's service would generally only be suggested in the most extreme of cases, where the customer has refused to take action to resolve the situation, eg by installing anti-virus software, or where the amount of spam being sent via the customer's account is causing network impacts, etc.
ISPs signing up to the code would be required to make available to their customers a quite lengthy list of "steps to be taken to ensure that your computer and its associated hardware is fit for connection to the Internet." They would also be entitled to use the IIA Security Friendly ISP Trustmark on their websites and other communications materials.
CONTINUED
Need all the latest news on telecommunications?
If telecoms is your business: you'll find in-depth, industry-specific news, analysis and commentary in ExchangeDaily
Check out a
recent edition (no forms to fill in) or take a free trial
Latest Headlines from IT INDUSTRY
