Unicode 7.0.0, (combining) Hamza Above, and normalization

[Shawn Steele]

> that is not the argument mark - it has to do with different encodings of what looks like > the same thing - that can be exploited by phishing, for example.

That's how I read Mark's statement.  The problem statement here focuses on 1 character when rnicrosoft.com (in ASCII) can achieve similar effect.  Or microsoft.unsafe.com or trustme.com/microsoft - or just ignoring what the link says, or my bank sending me stuff that takes me to a abcprocessing.com site, which trains me that legitimate stuff can go to a 3rd party site.

-Shawn