IT security challenge: Can there be gov. regulation of IT security that actually improves security and is not harmful in other ways
-
-
Replying to @hanno
I think DDoS / spam are topics that could be improved with regulation
1 reply 0 retweets 0 likes -
like requiring ISPs to notify users and perform coarse blocking when DDoS participation is confirmed
1 reply 0 retweets 1 like -
Replying to @tehjh
while I think this makes sense, I fear that it's not enough to counter the Internet of DDoS things
1 reply 1 retweet 1 like -
you'll have non-cooperating providers and confirming DDoS participation is nontrivial (there's no "I'm DDoS" stamp on an IP package)
1 reply 0 retweets 0 likes -
Replying to @hanno
well, the non-cooperating providers are why you'd want it to be a regulation, right? nobody wants to be first to block users' access
1 reply 0 retweets 0 likes -
Replying to @tehjh
yes, sorry, was unclear. I expect regulation not to be applied internationally, therefore it won't cover all of them.
1 reply 0 retweets 0 likes
During DDoS the victim's higher-level ISP can just null route countries that don't comply. :-)
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.