Working Group 8 Internet Service Provider (ISP) Network Protection Practices Final Report

Citation
Communications Security, Reliability and Interoperability Council, Working Group 8 Internet Service Provider (ISP) Network Protection Practices Final Report (Dec. 2010) (full-text).

Overview
Working Group 8 of the [Communications Security, Reliability and Interoperability Council (CSRIC) addressed the area of Internet Service Provider (ISP) Network Protection, with a focus on addressing "bots" and "botnets," which are serious and growing problems for end-users and ISP networks.

The Working Group examined potentially relevant existing Best Practices (BPs), and in consultation with industry and other experts in the field, identified additional Best Practices to address this growing problem. The Working Group identified 24 Best Practices to address protection for end-users as well as the network.

The Best Practices are organized into the logical steps required to address botnets. The first step is Prevention (12 BPs), followed by Detection (5 BPs), Notification (2 BPs), and then Mitigation (3 BPs). In addition, 2 BPs on Privacy Considerations were identified to address the handling of customer information in botnet response. The BPs identified are primarily for use by ISPs that provide service to consumer end-users on residential broadband networks but may apply to other end-users and networks as well.