GCHQ is urging internet providers to change long-standing protocols to stop computers from being used to set off large-scale cyber attacks.
The Government’s cyber-defence arm said it plans to work with networks such as BT and Virgin Media to rewrite internet standards to restrict “spoofing” - a technique that allows hackers to impersonate other computers and manipulate them to carry out anonymous attacks.
“Distributed denial of service” (DDoS) attacks, which employ this method, have been used in numerous high-profile incidents in the past fortnight, including an unprecedented hack that brought down Netflix, eBay and hundreds more popular websites.
“We think we can get to a point where we can say a UK machine can’t participate in a DDoS attack,” Ian Levy, technical director of GCHQ’s National Cyber Security Centre, told the Sunday Telegraph. “We think that we can fix the underpinning infrastructure of the internet through implementation changes with ISPs and CSPs [communications service providers].”
The plan would involve changes to the Border Gateway Protocol (BGP) and Signalling System 7 (SS7) standards that have been in place for decades, and are widely used for routing traffic. GCHQ wants providers to stop the trivial re-routing of UK traffic and help prevent text message scams.
The Internet Service Providers Association (ISPA), the body that represents ISPs, expressed scepticism, saying GCHQ was applying a “we can fix it , it’s easy” approach to a complex, historic system.