[Cryptography] On those spoofed domain names...

John Ioannidis ji at tla.org
Sat Mar 10 17:18:40 EST 2018


On Sat, Mar 10, 2018 at 9:57 AM, <jamesd at echeque.com> wrote:

> The solution is obvious:
>
> Map every domain to a canonical look alike
>
> If your domain maps to the same canonical look alike as an existing
> domain, you should not be allowed to register it.
>
> We have software for detecting look alikes, though it is in javascript,
> not C++.
>
>
"You have n problems. You try to solve them with javascript. Now you have
n! problems."

The problem is not lookalikes. The problem is people believing that a
domain name means what they think it means.

/ji
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20180310/1f238a9c/attachment.html>


More information about the cryptography mailing list