FCC Proposes Enhancements to Internet Traffic Security
In a significant move, the Federal Communications Commission (FCC) voted on Thursday to push forward a proposal aimed at strengthening the security of information routed over the internet. This action comes in response to concerns raised by government agencies about the misuse of routing protocols by a Chinese carrier. Specifically, these agencies have pointed to instances where China Telecom exploited vulnerabilities to redirect U.S. internet traffic.
Study of Border Gateway Protocol Vulnerabilities
Since 2022, the FCC has been conducting a detailed examination of the weaknesses within the Border Gateway Protocol (BGP). This protocol is crucial for the global routing of data on the internet, and any vulnerabilities within it pose significant risks to security and data integrity. The current proposal underscores the need for concrete measures to fortify these security gaps.
New Requirements for Broadband Providers
Under the proposed regulations, broadband providers will be mandated to develop comprehensive BGP security plans. These plans must outline the steps they will take to mitigate risks associated with the protocol. Additionally, providers will be required to submit regular reports detailing their progress in implementing these risk mitigation strategies.
Call for Action by FCC Chair
FCC Chair Jessica Rosenworcel highlighted the severity of the issue, noting that U.S. agencies have publicly disclosed incidents involving China Telecom. According to Rosenworcel, the carrier exploited BGP vulnerabilities to redirect internet traffic originating in the United States on at least six different occasions. This revelation underscores the urgent need for enhanced security measures to protect the integrity of internet traffic.