Providers and blacklisted sites

Not so long ago, the Internet community actively discussed laws on blocking sites with child porn, there were conversations about blacklists, some were in favor, some were against, someone was basically all the same.

And yesterday, a meeting of large Internet companies was held, which was attended by RU-Center, MTS, Hosting Community, RAEC (Russian Association of Electronic Communications), which includes more than 80 Internet companies, the Foundation for the Development of Internet Technologies and Infrastructure. At this meeting, the technical details of blocking sites were discussed.

Ru-Center deputy director Pavel Khramtsov said that one of the main recommendations of industry participants is to enter content blocking by address (URL), and not by IP (it allows shutting down bona fide sites with bad sites). Also, the senselessness and inefficiency of IP blocking, said RAEC analyst Irina Levova.

Earlier, it was assumed that clarifications would be made to this law at the level of by-laws. But, for example, the problem of IP addresses at this level is not solved - it is necessary to edit the law itself, Levova said.

Another suggestion is to let the provider choose the method of restricting access to information. The text of the law adopted in July suggests that the domain, network and IP addresses of pages with illegal content will be entered into the registry of bad sites. At the meeting, it was proposed to make the description of the blocking procedure more general and oblige providers to block information, not the site, says Dmitry Kostrov, chief expert of the MTS information security department. Then the operator will be able to decide how to block access.

But no traffic filtering system is 100% effective. According to Khramtsov from Ru-Center, URL filtering efficiency is about 60%, and if you use the deep packet analysis system (DPI) - 80%. But DPI systems are expensive and their implementation on fixed-line networks will not pay off, Kostrov believes (he previously estimated the introduction of DPI at $ 51 million): on mobile networks, DPI is used to control traffic in general, and in fixed networks its functionality will not be fully claimed . MTS is exploring several options for filtering traffic - based on DNS (when users' DNS queries are redirected to the operator’s filtering node) and using high-speed traffic analysis systems, says Kostrov.