Re: No More Regulation... More do nothing Congress...
Sniffing data (copying them for out-of-band processing) is a little easier than processing data in real time and decide they have to be blocked or not (especially at the fiber links bandwidth and speed). Moreover DDoS attacks are often based on traffic that looks legitimate and being spread over many connections it is not so easy to identify. I's when it "aggregates" at the endpoint that is shows its malignity. Even pushing down and processing filters to cut off thousands of endpoints after the attack has been identified is not so easy - especially since remember the Internet is designed to use multiple routes to destination... something can be done, but it would be alike increasing car safety putting big cushions around. Or counter electric hazards letting company to include a pair of rubber gloves in the box of dangerous devices.
Devices must be made safer, and those that doesn't implement a given baseline must be banned.
Even blocking traffic or banning unsafe devices would need a legal framework - ISPs won't take the risk of being sued for banning traffic or devices without a law allowing them to do so and protecting them. That's also a reason why industry self-regulation is impossible.
Biting the hand that feeds IT
