From: Mondaq/Jones Day
The Federal Communications Commission (“FCC”) is seeking industry and public comment on whether it should take further steps to ensure that the U.S. communications industry is sufficiently prepared for cybersecurity threats.
The Commission last raised this question several years ago when it appointed an advisory committee of industry, public safety, and consumer representatives to develop recommendations for best practices in lieu of regulatory requirements. The voluntary recommendations (“Recommendations”), released in 2012 by the FCC’s Communications Security, Reliability, and Interoperability Council, focused on remediating security oversights, gaps, and outdated practices that facilitate malicious use of networks and network services. Among other things, the Recommendations included:
- Adoption of an Anti-Bot Code of Conduct to educate users and mitigate the effects of botnet activity on ISP networks;
- Increased implementation of the Domain Name System Security Extensions (“DNSSEC”) to allow internet users to validate the identify of websites; and
- Measures to prevent IP route hijacking—the routing of traffic through potentially untrustworthy networks.