ISP’s “Not Interested” In Malware Prevention

According to the V3.co.uk website, ISP’s are unwilling or unable to clean up the Internet that they provision of malware and attack code.  The problem is pervasive, multi-jurisdictional, and complicated by legal obstacles, lack of legislation, and even contractual obligations.  Having worked with various CIRTs, Spam, Malware and Phishing groups of which Canadian ISPs have been active and contributing partners over the years, I understand some of the many challenges that they face.

There are concerns of imposed liability, censorship, privacy, and also little monetary motivation for a service provider to filter traffic.  But if not at the ISP level, where?  The malicious content that is on the Internet seems to eminate from websites, hosting providers, and email providers.  Why not their?  Impose regulations requiring all websites to be properly registered, identities verified, and then crack down on the crack-heads that put the content that is causing the problems into 10×10 cinderblock rooms with no RJ45 ports to peak through.

In my humble opinion, the Internet was built poorly, and remains broken.  It was designed to provide a redundant communication vehicle concerned only with availability, not confidentiality, integrity or authetication controls.  It needs to return to its original untrusted purpose, and a separate network should be designed with security in mind at the ROOT, and made available for sensitive business and financial transactions.  Operating Systems should be developed with integrity checking built-in.  Anti-malware platforms need to monitor expected behaviors and report deviations in a manner that users can understand and make good decisions about.  Everything else is just patchwork.  I had more confidence in my old BBS than I do in the Internet.

In my fantasy world, anonymity should be retained on the untrusted Internet, but has no place in the world of business.  Just my 2¢, collect the whole dime.

Advertisements