|Description||Communicate Implementation of Situational Awareness and Protective Measures with Other ISPs:
ISPs should make reasonable efforts to communicate with other operators and security software providers, by sending and/or receiving abuse reports via manual or automated methods. These efforts could include information such as implementation of "protective measures" such as reporting abuse (e.g., spam) via feedback loops (FBLs) using standard message formats such as Abuse Reporting Format (ARF). Where feasible, ISPs should engage in efforts with other industry participants and other members of the internet ecosystem toward the goal of implementing more robust, standardized information sharing in the area of botnet detection between private sector providers.
|Industry Role(s)||Service Provider|
|Keyword(s)||Cyber Security;Industry Cooperation;Intrusion Detection;|
|Reference/Comments||See the following document for more information:
Vulnerabilities can be reported in a standardized fashion using information provided at
Note that the Best Practices in this grouping are primarily aimed at ISPs that provide service to consumer end-users on residential broadband networks, but may be applicable to other users and networks as well.