What is Malware-Free Networks?

Malware-Free Networks is a cyber security initiative linked to GCSB’s project CORTEX.

The Malware-Free Networks capability involves GCSB sharing cyber threat information and technology with an ISP to assist that ISP to mitigate malware targeting its customers.

The Malware-Free Networks capability only operates with the explicit consent of the ISP and its participating customers. It does not involve GCSB having access to ISP or ISP customer communications in any way whatsoever.

The information shared with ISPs focuses on foreign-sourced malware that is particularly advanced in terms of technical sophistication and/or persistence.

What is the purpose of Malware-Free Networks?

Malware Free Networks helps an ISP detect and mitigate cyber threats on the networks of participating customers.

What is the Malware-Free Networks Pilot?

GCSB has commenced a pilot to test this cyber defence initiative. Vodafone NZ was selected to partner with GCSB for this Pilot through a competitive tender process. 

GCSB is sharing cyber threat information and technology with Vodafone to assist Vodafone to mitigate malware for a small subset of its commercial customers.

The information shared with Vodafone focuses on foreign-sourced malware that is particularly advanced in terms of technical sophistication and/or persistence.

The Malware-Free Networks capability only operates with the explicit consent of participating organisations. A limited number of Vodafone commercial customers were offered the opportunity and agreed to participate in the Pilot.

Implementation of Malware-Free Networks beyond the pilot phase must have ministerial approval.

When did the Pilot commence?

The Pilot commenced with the first Vodafone NZ customer receiving the service in September.

When will the Pilot end?

GCSB intends to report back to the Cabinet in the first quarter of 2017. This report will include options for the future operation of the capability

Does the Malware-Free Networks capability allow GCSB to see communications of Vodafone or Vodafone customers?

No. This capability does not give GCSB any access to the data or communications of Vodafone or Vodafone customer’s in any way.

If I am a Vodafone customer, how do I know if Malware-Free Networks is operating on my network?

The Malware-Free Networks Pilot capability is only being offered to a limited number of Vodafone NZ’s commercial customers. These customers explicitly agreed to receive the service and are aware of GCSB’s role in providing Vodafone NZ with threat information.

Will the users of Vodafone customers’ networks know that this security tool is operating on their network?

Vodafone is providing Malware-Free Networks to a small subset of its commercial customers as part of other security and network services which are subject to standard contractual terms and conditions.

GCSB recommends that it is good practice to disclose that the network is subject to information assurance support to network users.

How many customers have signed up?

There are currently a small number of Vodafone’s commercial customers receiving the service.  This will grow over the next few months.

Which Vodafone customers are receiving the Malware-Free Networks service?

We do not disclose the identity of Vodafone customers participating in the Malware-Free Networks Pilot.  Doing so might help to confirm where some of New Zealand’s most valuable information is held and so increase the targeting of cyber attacks.

Who chose which Vodafone customers were offered this service?

Vodafone and GCSB decided which Vodafone customers were offered the opportunity to take part in the Malware-Free Networks Pilot. These organisations had to be of ‘national significance’ according to criteria determined independently of GCSB.

The types of organisations offered the opportunity to participate in the Pilot include government departments, key economic generators, niche exporters, research institutions and operators of critical national infrastructure.

How much does Malware-Free Networks Pilot service cost customers?

There is no charge to Vodafone customers for the Malware-Free Networks Pilot service.

How much does the Malware Free Networks Pilot cost to operate?

The costs of operating the Pilot are included in the overall funding for GCSB’s CORTEX initiative.

What will happen when the Pilot has concluded?

GCSB will make recommendations about the future operation of the capability once we have concluded the Pilot.  This may include a recommendation to offer the capability more widely to other ISPs.

Malware-Free Networks will not be offered to additional ISPs – or to a wider set of Vodafone’s customers – without Ministerial approval.

How will the Malware-Free Networks Pilot be evaluated?

GCSB and Vodafone will jointly agree the process and measures for evaluating the Pilot.  Evaluation criteria will include the efficiency and effectiveness of the capability, and its ability to operate without impacting legitimate traffic on the customer network.

Will Malware-Free Networks be offered as a product/service to other New Zealand Internet Service Providers?

We will make recommendations about the future operation of the capability once we have concluded the Pilot.  This may include a recommendation to offer the capability more widely to other ISPs.

The capability will not be offered more widely without ministerial approval and any participating organisation must explicitly consent before receiving the capability.

How is the Malware-Free Networks Pilot capability different from other cyber defensive capabilities provided as part of the CORTEX initiative?

Malware-Free Networks Pilot is a service offered by an ISP to a subset of its customers. Cyber threat information and technology is provided to an ISP, who then uses that information and technology to protect its customers’ networks.

The beneficiaries of the service have no direct relationship with GCSB.