The FCC is set to vote on security rules for top U.S. internet providers to address significant BGP vulnerabilities, aiming to manage security risks by establishing confidential BGP security risk management plans, requiring updates annually, and enhancing security oversight across the web
The proposed rules would apply to leading providers like AT&T, Comcast, and Verizon, emphasizing the importance of securing internet communication, underlining the risks associated with the protocol's lack of security features despite being widely deployed, and putting forward measures including origin validation and Resource Public Key Infrastructure to strengthen internet routing security. Stakeholders have 30 days to provide feedback, following the FCC's previous notice of inquiry in 2022 and a workshop on BGP security in 2023, with the proposal aligning with the national cybersecurity strategy's focus on addressing BGP vulnerabilities and citing instances like Facebook's global outage in 2021 and Russian network operators suspected of exploiting BGP vulnerabilities, aiming to prevent data breach, theft, and espionage. https://www.bankinfosecurity.com/fcc-targets-bgp-vulnerabilities-new-security-mandates-a-25280