The departments want input on the requirements for and approaches to a voluntary industry code of conduct to address the detection, notification, and mitigation of botnets, according to a Federal Register notice.
“One strategy that security experts suggest has been successful in stemming the tide of botnets has been for private sector entities to voluntarily and timely detect and notify end-users that their machines have been infected. This voluntary notification has mostly, though not always, come from the user's Internet Service Provider (ISP), which has contact information for the end-user and a pre-existing relationship. Once a service provider has detected a likely end-user security problem, it can inform the Internet user of the steps the user can take to address the problem”, the notice explained.
The government is proposing to offer liability protection to ISPs in order to promote participation in the voluntary botnet program. In addition, it is suggesting the setting up of a consumer resource center that would be a central depository where ISPs could send consumer support queries about botnets.
The center would pool ISP resources, aid consumers by providing free support, and facilitate information sharing and research for improved botnet protection. The botnet center could be publicly funded, privately funded, or a public-private partnership.
Public comments are due on the proposal by Nov. 4, 2011, and can be sent via email.