Return-Path: <cyrus@eikenes.alvestrand.no>
Received: from eikenes.alvestrand.no ([unix socket])
	by eikenes.alvestrand.no (Cyrus v2.1.11-Mandrake-RPM-2.1.11-1mdk) with LMTP; Wed, 09 Feb 2005 04:18:19 +0100
X-Sieve: CMU Sieve 2.2
Return-Path: <ietf-bounces@ietf.org>
Received: from localhost (localhost.localdomain [127.0.0.1])
	by eikenes.alvestrand.no (Postfix) with ESMTP id 7198F621D3
	for <harald@alvestrand.no>; Wed,  9 Feb 2005 04:18:17 +0100 (CET)
Received: from eikenes.alvestrand.no ([127.0.0.1])
 by localhost (eikenes.alvestrand.no [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 07871-07 for <harald@alvestrand.no>;
 Wed,  9 Feb 2005 04:18:10 +0100 (CET)
Received: from megatron.ietf.org (megatron.ietf.org [132.151.6.71])
	by eikenes.alvestrand.no (Postfix) with ESMTP id 74BAF61C18
	for <harald@alvestrand.no>; Wed,  9 Feb 2005 04:18:09 +0100 (CET)
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org)
	by megatron.ietf.org with esmtp (Exim 4.32)
	id 1CyiGL-0005E8-4g; Tue, 08 Feb 2005 22:11:33 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org)
	by megatron.ietf.org with esmtp (Exim 4.32) id 1CyiDC-0004Uh-Qt
	for ietf@megatron.ietf.org; Tue, 08 Feb 2005 22:08:19 -0500
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1])
	by ietf.org (8.9.1a/8.9.1a) with ESMTP id WAA04324
	for <ietf@ietf.org>; Tue, 8 Feb 2005 22:08:17 -0500 (EST)
Received: from montage.altserver.com ([63.247.74.122])
	by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CyiWv-00043T-SA
	for ietf@ietf.org; Tue, 08 Feb 2005 22:28:42 -0500
Received: from lns-p19-19-idf-82-65-134-176.adsl.proxad.net ([82.65.134.176]
	helo=jfc.afrac.org) by montage.altserver.com with esmtpa (Exim 4.43)
	id 1Cyi9B-0005kd-2c; Tue, 08 Feb 2005 19:04:09 -0800
Message-Id: <6.1.2.0.2.20050209035227.031dfeb0@mail.jefsey.com>
X-Sender: jefsey+jefsey.com@mail.jefsey.com
X-Mailer: QUALCOMM Windows Eudora Version 6.1.2.0
Date: Wed, 09 Feb 2005 04:00:31 +0100
To: "Mark Davis" <mark.davis@jtcsv.com>
From: "JFC (Jefsey) Morfin" <jefsey@jefsey.com>
In-Reply-To: <003a01c50e50$40e68970$6801a8c0@sanjose.ibm.com>
References: <6.1.2.0.2.20050208125802.03622030@pop.online.fr>
	<4208D8EC.6020709@seng.sg>
	<003a01c50e50$40e68970$6801a8c0@sanjose.ibm.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"; format=flowed
X-AntiAbuse: This header was added to track abuse,
	please include it with any abuse report
X-AntiAbuse: Primary Hostname - montage.altserver.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - jefsey.com
X-Scan-Signature: 0ddefe323dd869ab027dbfff7eff0465
Content-Transfer-Encoding: quoted-printable
X-MIME-Autoconverted: from 8bit to quoted-printable by ietf.org id WAA04324
Cc: ietf@ietf.org
Subject: Re: IDN security violation? Please comment
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf>,
	<mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf>,
	<mailto:ietf-request@ietf.org?subject=subscribe>
Sender: ietf-bounces@ietf.org
Errors-To: ietf-bounces@ietf.org
X-Virus-Scanned: by amavisd-new at alvestrand.no

On 03:36 09/02/2005, Mark Davis said:
>I want to also bring the UTR #36 Security Considerations for the
>Implementation of Unicode and Related Technology. Although still draft, =
we
>will be fleshing it out over time. Feedback is welcome.
>http://www.unicode.org/reports/tr36/

Brillant.

I think the danger is in the faked IRI usage. And the first way to protec=
t=20
the IRI is to alert on non permitted codes being used in the IDN part (th=
is=20
is where the spoofing is carried). I do not buy Jon's argument that=20
filtering IRI against ccTLD Tables would be too much expensive: yes for=20
each application, but this is precisely a job for OPES.

Question: what would be the load of a file giving for each code its=20
availability in each ccTLD table for each script? And how does that compa=
re=20
with the 1.5 Meg base of my anti-virus?
jfc


>=E2=80=8EMark
>
>----- Original Message -----
>From: "James Seng" <james@seng.sg>
>To: "JFC (Jefsey) Morfin" <jefsey@jefsey.com>
>Cc: <paf@cisco.com>; <ietf@ietf.org>; <Marc.Blanchet@viagenie.qc.ca>;
><phoffman@imc.org>; <amc@nicemice.net>
>Sent: Tuesday, February 08, 2005 07:21
>Subject: Re: IDN security violation? Please comment
>
>
> > For the 5th time today, it is already documented in RFC 3490.
> >
> > http://james.seng.cc/archives/2005/02/08/idn_and_homographs_spoofing.=
html
> >
> > JFC (Jefsey) Morfin wrote:
> > > May be IDN specialists will want to comment this.
> > > http://www.shmoo.com/idn/homograph.txt
> > > Is this exact? This is urgent as the IRI is based upon IDN and supp=
ort
> > > of multilingualism is a WSIS priority and comments for the WGIG are=
 to
> > > close the day after tomorrow.
> > > Thank you.
> > > jfc
> >
> > _______________________________________________
> > Ietf mailing list
> > Ietf@ietf.org
> > https://www1.ietf.org/mailman/listinfo/ietf
> >


_______________________________________________
Ietf mailing list
Ietf@ietf.org
https://www1.ietf.org/mailman/listinfo/ietf