Return-Path: Received: from eikenes.alvestrand.no ([unix socket]) by eikenes.alvestrand.no (Cyrus v2.1.11-Mandrake-RPM-2.1.11-1mdk) with LMTP; Mon, 21 Feb 2005 01:00:55 +0100 X-Sieve: CMU Sieve 2.2 Return-Path: Received: from localhost (localhost.localdomain [127.0.0.1]) by eikenes.alvestrand.no (Postfix) with ESMTP id 6EB0C61BEC for ; Mon, 21 Feb 2005 01:00:55 +0100 (CET) Received: from eikenes.alvestrand.no ([127.0.0.1]) by localhost (eikenes.alvestrand.no [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 29428-04 for ; Mon, 21 Feb 2005 01:00:53 +0100 (CET) Received: from psg.com (psg.com [147.28.0.62]) by eikenes.alvestrand.no (Postfix) with ESMTP id A159461BDA for ; Mon, 21 Feb 2005 01:00:53 +0100 (CET) Received: from majordom by psg.com with local (Exim 4.44 (FreeBSD)) id 1D30zE-0006y5-1Q for idn-data@psg.com; Sun, 20 Feb 2005 23:59:40 +0000 Received: from [63.247.74.122] (helo=montage.altserver.com) by psg.com with esmtp (Exim 4.44 (FreeBSD)) id 1D30zD-0006xr-4z for idn@ops.ietf.org; Sun, 20 Feb 2005 23:59:39 +0000 Received: from lns-p19-8-idf-82-65-67-209.adsl.proxad.net ([82.65.67.209] helo=jfc.afrac.org) by montage.altserver.com with esmtpa (Exim 4.44) id 1D30zC-0000uc-5X for idn@ops.ietf.org; Sun, 20 Feb 2005 15:59:38 -0800 Message-Id: <6.1.2.0.2.20050221004531.03926eb0@mail.jefsey.com> X-Sender: jefsey+jefsey.com@mail.jefsey.com X-Mailer: QUALCOMM Windows Eudora Version 6.1.2.0 Date: Mon, 21 Feb 2005 00:59:26 +0100 To: IETF idn working group From: "JFC (Jefsey) Morfin" Subject: Re: [idn] quick & dirty (but not too dirty) homograph defense In-Reply-To: <20050220232733.GA31308~@nicemice.net> References: <20050219221719.GB5457~@nicemice.net> <4217D839.7040502@dready.org> <20050220100328.GA14603~@nicemice.net> <42189B19.2040403@vanderpoel.org> <20050220232733.GA31308~@nicemice.net> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - montage.altserver.com X-AntiAbuse: Original Domain - ops.ietf.org X-AntiAbuse: Originator/Caller UID/GID - [0 0] / [47 12] X-AntiAbuse: Sender Address Domain - jefsey.com X-Source: X-Source-Args: X-Source-Dir: Sender: owner-idn@ops.ietf.org Precedence: bulk X-Virus-Scanned: by amavisd-new at alvestrand.no On 00:27 21/02/2005, Adam M. Costello said: >I agree, but in this case, we have already missed the start. If >we introduce a whitelist now, after IDN deployment is already well >underway, we are effectively punishing an unknown number of innocent >early adopters, which seems like a betrayal. If we had forseen this >problem, we could have set up the whitelist in the beginning, and >registries & registrars would have known to get themselves added to the >whitelist before making any promises to their customers. Dear Adam, we known the problem, as we known the TLD problem, as we known the babel-name problem, as we known the IDN zone DNS management complexity, as we known the 3+LD problem, as we known the Verisign/ccTLD attitude, as we known the lack of layered analysis, etc. (I mean at least people who dialogued with me in private when the wg-correct was calling me a dumb debile). Your punycode is a transcoding solution of interest. Tables are an attempt to fix part of the IDN problem, but it needs to be applied where it is useful and controlled by the user (in phishing: at printing and outbound nameprep). Take care. jfc PS. I fail to see what Registrars are to do with this?