ie8 fix
madison

Zero Day

Ryan Naraine, Emil Protalinski and Dancho Danchev
Home / News & Blogs / Zero Day

Why I am against pure net neutrality

By | February 22, 2009, 9:32pm PST

While it may sound like treating all ISP traffic equally is a good idea, mandating strict net neutrality hurts computer security for all of us.

Those of you who are tech heads and reside in the United States should all be familiar with the Net Neutrality debate, but for those of you who aren’t, the debate centers around an ISP’s ability to treat traffic differently depending upon application and purpose. The ISPs argue that without the ability to do some form of traffic shaping, they cannot provide network access at a reasonable cost to their customers. Customers are concerned that ISPs will use traffic shaping as an anti-competitive tool to block movie downloads, restrict traffic to non-partner sites, and keep new media down.

Within bounds, and for different reasons, I have to side with the ISP’s. I don’t believe in filtering an application just because it generates a large amount of traffic or it competes with other media services; we don’t know what technologies may be conceived of today that will be the primary means of making money tomorrow.

I do think that ISPs need to preserve the ability to do traffic shaping for security services. The last place that security-oriented provisioning can be applied is the ISPs network until we can either remotely remediate bots on home computers or end users are responsible enough to keep their systems clean. I doubt the latter will become technologically feasible anytime soon.

If you look at just the e-mail side of the house, ISPs have been non-net neutral for some time, and this has been very positive for their customers. Since spam is the most customer visible security problem, it is here that ISPs started applying traffic management techniques. They drop TCP connections at the first SYN packet if the connecting systems are on blacklists. They also tend to throttle the traffic from all systems that are not good mail senders. By focusing on stopping traffic that everyone agrees is bad, the ISPs were able to put controls in place that would cause an uproar if applied to other traffic segments.

As technology improves, ISPs will be able to provide network-based security filtering that isn’t limited to anti-spam. Whatever regulations that come down from the FCC in response to previous traffic management techniques need to allow for these improved security technologies.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

Topics

Security, Traffic, Internet Service Provider, Net Neutrality, Internet Service Providers (ISPs), Internet, Adam O'Donnell

Adam J. O'Donnell, Ph.D. is an R&D engineer who has focused on computer security since 2000.

Disclosure

Adam O'Donnell

Adam J. O’Donnell currently works for Cloudmark, a messaging security company whose clients include the majority of the Tier 1 customer-facing service providers as well as mobile carriers and social networks. He serves on the advisory committee for the SOURCE Security Conference, as well as several conference technical program committees. Many of his close friends work in the security industry, and he will disclose those relationships as he deems it necessary.

Biography

Adam O'Donnell

Adam J. O'Donnell, Ph.D. is an R&D engineer who has focused on computer security since 2000. He currently is the Director of Emerging Technologies at Cloudmark, a messaging security company located in San Francisco.

Adam early on mastered the art of writing in complete sentences, using both hands and one foot. Later, he learned to do so with each individually. After fourteen years of apprenticeship in the mist-covered hills of central Nepal, Dr. O'Donnell emerged an unparalleled digital warrior and in desperate need of a anti-fungal wash.

Approaching both life and enterprise security with the verve of a particular capuchin, he is respected the world over as an observer of all he sees. Adam's dry blade of analysis will sever the hard candy shell surrounding most technical security concepts, and significantly goo-ify the remaining so as to be consumable in small bites with sufficiently large servings of digestive aids. Just what the doctor ordered.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?
Ask a Question Start a Discussion
19
Comments
Add Your Opinion

Join the conversation!

Just In

RE: Why I am against pure net neutrality
birumut Updated - 4th May 2011
Great!!! thanks for sharing this information to us!
seslisohbet seslichat
View in thread
0 Votes
+ -
Okay, but . . .
Meesha 23rd Feb 2009
Not saying I agree or disagree but do you honestly think that "law makers" really understand how to shape this slippery slope? Do you think that the ISPs on their own are really able to determine the value of what's been transmitted? Do you think that the distribution players - Hollywood, etc. or even the software players - Microsoft, etc. have consumers interests at heart?

As they all shape the laws of today to fit an ever changing digital landscape, where is the average Joe in all these machinations?
0 Votes
+ -
That's why legislation is not the answer.
mwagner@... 23rd Feb 2009
Disclosure to customers is the answer.

"Here are the terms of service. Don't like them? Go elsewhere for your broadband connection.

Part of the problem is that in most communities there is no choice of broadband provider. Usually, there is one cableTV provider in town offering broadband and one Telco in town offering broadband.

Telcos don't want to compete with CableTV interests and they are often unwilling to provide access to their wired DSL infrastructure to third-party ISPs. Satellite broadband is slow has latency problems and is still too expensive and the same goes for most cellco data services.

Powerline based broadband is still experimental but it could open up broadband choice for many customers.
0 Votes
+ -
Traffic Shaping protocols or servers?
alecco 23rd Feb 2009
Hi Adam.

I think you are missing two concepts on traffic shaping. Traffic shaping can be used in different ways, one is to give hard quotas (when it's filled transport is blocked, packets are dropped.) Another way to configure it is using shared/soft/whatever quotas where a priority can be set and for example give higher priority to HTTP/ICMP/SSH than P2P protocols.

The second concept you are missing, is traffic shaping can be targeted to a server/company or to a protocol. This whole Net Neutrality thing started because ISPs wanted to "tax Google" (and others) for "using their networks" (paid by subscribers!) They wanted to do traffic shaping (or blocking!) of services at their discretion.

Everybody assumed the ISPs had some sort of "sane" traffic shaping, but they scared everyone playing the selfish card so now they are losing control of the networks (luckily.) They aren't showing responsibility, maturity, or ethics.

These same ISPs have been caught recently doing borderline illegal wiretapping with a third party service to modify content and place ads. This is wrong in so many levels even government agencies had to jump in.

Alecco
0 Votes
+ -
100 per cent disagree
aandruli@... 23rd Feb 2009
Let's compare this to cable TV. Originally all cable providers were supposed to provide a certain amount of channels/bandwidth to public access stations but once they sobbed for similar reasons -- having to monitor for inappropriate content and to keep costs down -- public access disappeared forever. If you don't want movie downloads or big file downloads to disappear forever, too, you better support net neutrality
0 Votes
+ -
think you have to be very wise here
Narr vi 23rd Feb 2009
and that the wisdom is to very clearly distinguish net
neutrality and security throttling.

For the reasons others have stated here, and you
mention well in saying 'we don't know' in terms of
what will be forward-driving use of the net in the
future, we should 100% support net neutrality.

For security purposes, we can then also 100% support
throttling _illegal_ activities like spammers,
botnets, etc. as may be invented.

This approach avoids slippery slopes, which are very
dangerous I agree with others here. The line of
defense, and still tricky point of course in what some
of the others mention, is in what's labeled illegal.

I would much prefer to see Hulu succeed, and watch
free movies with a few ads, than support the Wild West
continuing as far as movie downloads. Wild Wests are
very useful to see what should change, but then as the
frontier found, the revised rules are what make life
possible and pleasant.

Regards,
Narr Vi

0 Votes
+ -
RE: Why I am against pure net neutrality
mwagner@... 23rd Feb 2009
I think it is perfectly reasonable for ISPs to have the ability to "throttle back" customers on unlimited plans who are abusing their privileges, provided that it is disclosed to customers that "throttling" may occur if their traffic exceeds a particular threshold during any given period. (Or similar appropriate language.)

Many broadband systems, for instance, provide a 10Mbps connection which is shared among a large number of customers. During peak load times, all customers should be affected by that load equally. If one customer or another needs to be throttled back to maintain an equitable level of performance for all, so be it.
0 Votes
+ -
Oxymoronic Provider Plans
Bebedo 23rd Feb 2009
You argue a oxymoron -- first there is an offer of "unlimited plans", and then you want to limit them.
If you want a tiered plan, with upload and download speed limits, then feel free to market such a plan and see where it goes. It is done with phone plans already.
But unlimited is unlimited -- and just like with phone plans, some callers and texters will use huge amounts of minutes and data messages, and sonme will not and you pay for the difference.

But for now, you cannot advertise unlimited service, then throttle it.

PS - I do not advocate such a marketing plan; just using it as an example.
0 Votes
+ -
Granted, then it is not an "unlimited" plan.
mwagner@... 23rd Feb 2009
The point is that ISPs have a right to protect their network (and other customers) from abusers. But the conditions under which they do so should be spelled on in their terms of service. Providers are offering tiered plans in terms of speed but often not in terms of volume maybe that should change. In any event, I should not have to deal with crappy service because my neighbor's kid is stealing music.
0 Votes
+ -
beware: facts vs exaggerism & profiling.
DaemonSlayer 23rd Feb 2009
Can you Prove the neighbor kid is stealing music? Or are you just profiling kids because of the "examples" the music industry tried making? Not all kids "steal" their music. Not everything going on on a p2p network is illegal activity. Get the facts, don't profile, don't take the movie/music industry propaganda on piracy as pure fact as our Tech illiterate politicians have. Im sure there is some truth to what they say, but Im also sure there is plenty of liberal exaggerism in there too.
0 Votes
+ -
Traffic shaping and spam filtering are not the same thing
putty.master 23rd Feb 2009
You seem to be arguing that spam filtering is a form of bandwidth shaping. I disagree. Spam filtering is a security measure used to protect networks and customers from potentially harmfull and offensive unsolicited e-mail. Bandwith shaping is the general prioritization of network traffic based on the type of data being transcieved.

If the ISP's were really doing a bang-up job in the security side of things, we probably wouldn't have half the spam, malware and viruses as we do today. ISP's should actually try tp prevent infected machines from having any internet access until they are properly desanitized. Now that would be a level of service from my ISP that I would wholeheartely support. Spam and malware are illeagal activities that can and should be logged and regulated at the ISP level just the way kiddie porn is.

But the issue with traffic shaping is not security. It's that I don't want my ISP to throttle down my connection because I use it for streaming media, or playing network games. Those are some of the primary reasons why I pay for an above average connection speed. If they want to slow down my traffic because they deem it unimportant, then I will not be willing to pay for the extra bandwidth and everyone will lose.
0 Votes
+ -
RE: Why I am against pure net neutrality
Mabrick 23rd Feb 2009
The United States already has protections in place protecting any individual's right to free speech and association. It is up to the courts to decide how those protections apply to 21st century communications...just as the courts have always done.

There are also laws already on the books to protect users from abusive treatment and criminal activity. It is up to the courts to interpret those laws as they apply to 21st century communications.

The United States does not need a bunch of new laws to determine what is correct and proper to do on the Internet and what is not. Any moves to create new laws is political grandstanding. Such moves by our politicians are not motivated from a proper mindset to begin with. It is my opinion that most of these attempts, if passed, will be found unconstitutional anyway.

The bottom line is that the third arm of the U.S. government, the Judiciary, is responsible for setting an environment where fundamental rights are protected for both users and service providers. They already have the tools they need to do this. Why don't we let them do what they get paid for and stop making an issue out of a non-issue.

If you don't know what your fundamental rights are then check this out for an eye opener.

http://www.archives.gov/exhibits/charters/constitution.html
0 Votes
+ -
RE: Why I am against pure net neutrality
Bilmekanikeren 23rd Feb 2009
I am 100% for net neutrality. I believe your industry affiliations make your point of view suspect.
0 Votes
+ -
IMO: Everything about him is suspect.
DaemonSlayer 23rd Feb 2009
If you look at his profile, you can't take it seriously. And his disclosure... listing of people will be disclosed as he sees fit. Hmmmm, either has no real associations, or has associations that are with draconian minded individuals.

NOTE: My opinions, based off what can be seen. I'd welcome a full disclosure to prove me wrong.
0 Votes
+ -
You know...
MGP2 Updated - 23rd Feb 2009
I don't always take the time to read profiles, but your comments prompted me to read his.

I must say. I've never seen a profile like that. I'll leave it at that.

That's my ten cents
My two cents is free
0 Votes
+ -
How pathetic
richardbennett 24th Feb 2009
Comments like this one show how morally and intellectually bankrupt the pro-NN movement tends to be. The author works in the world of spam mitigation, a place where the delusions of neutralism don't last very long.

Yes, Virginia, there really are some bad people in the Internet.
0 Votes
+ -
RE: Why I am against pure net neutrality
PeterPac 23rd Feb 2009
I am currently involved with a study which includes the Ntia (even though they seem to not have any people working in this department), urban and rural broadband.

First, when an ISP advertises tiers or unlimited broadband they need to either rewrite their TOS or stick to it. This was proven by what happened to Comcast when they started throttling their customers. The United States is even behind some 3d World Countries in providing broadband. Why should I have to share my 10mps when the cable or dsl over books their lines or their servers and cannot provide the service they had in their contract with me? The internet is being updated each day and until the ISP's adapt to modernization with upgrading their lines or services they tend to want to take it out on their users by throttling them. If I stay within my bandwidth why should I be punished because some other jerk is wanting to download anything that exceeds their limit?

I am about in the 2/3's are of my study and so far I find that broadband really lacks in this country in both areas it covers and speeds. I am not against or for net neutrality but something needs to be done instead of reducing what we already have by prioritizing what a ISP feels is important or not. I have seen computer email filled with spam when the user has not even sent a email yet and the system was clean. One can also count on their fingers where all the spam is coming from but yet the ISP's condone this mass sending of spam. Until we shut down the offending ISP's and their users spam will never cease. Only problem is in some countries where most spam comes from there are no laws covering this.

Ny final thoughts are the ISP's need to go after the offenders and not punish all that are using their broadband legally. This is sort of like condemning a whole block of houses because one has deteriorated beyond repair.
0 Votes
+ -
I think ISPs should control everything
bipolarchihuahua 25th Feb 2009
I think they should offer a list of no more than 10-20 websites and then the consumer should choose from them. It just doesn't make sense for consumers to be able to go to ANY site - the security and traffic issues are too complicated and it just means they have to charge the consumers more.
0 Votes
+ -
It is about money
Fozzee 27th Feb 2009
I think a lot of what is being said here is missing the point entirely. The ISP's are trying to wipe net neutrality because of money plain and simple. ISP's were giving higher priority to sites and other ISP's that use their network based on if it benefited them financially. They became frustrated that other ISP's (competitors) were using their network and bandwidth to move traffic and were unable to get a cut of the action. Some ISP's started applying priority to traffic based on whether they were getting a cut or not. These actions are what brought the words net neutrality to life and is the bottom line of what it is about today.

If we open the door to non-neutrality under the guise of "protecting the innocent" it also opens the door to prioritization, filtering, throttling, etc. It is an unnecessary package deal.

It is a shame that the USA is becoming a country full of people unable to rely upon themselves and worse believing that corporations and our government have nothing but our best interests in mind as they slowly choke every semblance of freedom from us one small step at a time.
0 Votes
+ -
RE: Why I am against pure net neutrality
birumut Updated - 4th May 2011
Great!!! thanks for sharing this information to us!
seslisohbet seslichat

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix