In autumn 2018, the Dutch cloud/hosting sector launched the code of conduct for combatting abuse. This is intended for digital infrastructure operators. The sector developed the code together with various stakeholders from government and other organisations in the Platform Internet Security. The code of conduct is short, easy to read and rigorous, and is issued together with a phased plan that gives providers concrete tools for implementing the code.
The new code aims to help keep the Dutch part of the Internet clean and secure. Domain names and networks must be kept free of cybercrime, abuse and vulnerabilities that can be exploited for abuse, because as a sector we want to play our role in combating abuse. The code of conduct provides practical tools for rigorously combatting abuse so that society is better protected against Internet crime. Implementing the code also makes providers and their clients less vulnerable for attacks targeted at the provider’s network. An added benefit is that the networks of such providers will score increasingly better in international lists of abuse. That is good for the provider’s reputation, but also for the reputation of the Netherlands. Furthermore, this form of self-regulation is the only way to avoid the need for legislation and a fining policy in this area. For this reason, implementing this code of conduct is in the interest of the providers concerned as well.
With the code, infrastructure providers undertake to assume a proactive attitude regarding abuse and to develop a policy for themselves and towards their clients. The measures include being aware of the potential presence of abuse, quickly and satisfactorily responding to notifications, and formulating a clear policy towards clients if abuse is encountered at their site.