[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Cryptography] On those spoofed domain names...

On Sun, Mar 11, 2018 at 12:57:48AM +1000, jamesd AT echeque.com wrote:
> The solution is obvious:
> Map every domain to a canonical look alike
> If your domain maps to the same canonical look alike as an existing domain,
> you should not be allowed to register it.
> We have software for detecting look alikes, though it is in javascript, not
> C++.

There are limits to how far you can go with this.  You can detect
confusable glyphs this way.  But you also need to detect typo-squatting
and even just plain old confusable words.

The cryptography mailing list
cryptography AT metzdowd.com