Enter to open, tab to navigate, enter to select
ISPs Agree to Implement CSRIC Recommendations for Improved Cybersecurity
Practical Law Legal Update 6-518-6269 (Approx. 3 pages)
ISPs Agree to Implement CSRIC Recommendations for Improved Cybersecurity
by PLC Intellectual Property & Technology
| Published on 26 Mar 2012 • USA (National/Federal) |
On March 22, 2012, the Communications, Security, Reliability and Interoperability Council (CSRIC), an industry advisory committee for the Federal Communication Committee (FCC), adopted recommendations for internet service providers (ISP) to protect against three major cybersecurity threats. The ISPs committed to carry out the recommendations.
On March 22, 2012, the Communications, Security, Reliability and Interoperability Council (CSRIC), an industry advisory committee for the Federal Communication Commission (FCC), adopted recommendations for internet service providers (ISPs) to protect against three major cybersecurity threats. Many US ISPs, including the four largest (AT&T, Comcast, Time Warner and Verizon), committed to carry out the recommendations.
The CSRIC recommendations aim to protect against:
- Botnets. The ISPs agree to adopt an anti-bot code of conduct where ISPs agree to:
- educate consumers about the botnet threat;
- take steps to detect botnet activity on their networks;
- alert consumers to botnet infections on their computers; and
- offer assistance to consumers with infected computers.
- Domain name fraud. The ISPs commit to applying DNSSEC, a set of secure protocol extensions that prevent DNS spoofing, where criminals divert traffic from a legitimate website to an illegitimate website to obtain consumers' credit card numbers and personal information.
- Internet route hijacking. The recommendations call for an industry framework to prevent the routing of internet traffic through potentially untrustworthy networks.