The Internet exists thanks to interconnection: it is a network of interconnected networks. Normally, a critical infrastructure accesses the Internet through its Internet Service Provider (ISP).
In the event of a DDoS attack, most of the traffic comes from the ‘general’ Internet, even if the attack has been initiated by a user connected to a Dutch ISP. With this type of DDoS attack, the effects can mainly be seen on the internet-facing services of the critical infrastructure.
By separating the direct interconnection between Dutch providers of critical infrastructures and providers of Internet access to Dutch end-users from interconnection with the rest of the Internet, the impact of a DDoS attack from the Internet on critical infrastructures for Dutch users can be mitigated.