[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Cryptography] On those spoofed domain names...



On Sun, Mar 11, 2018 at 12:57:48AM +1000, jamesd AT echeque.com wrote:
> The solution is obvious:
> 
> Map every domain to a canonical look alike
> 
> If your domain maps to the same canonical look alike as an existing domain,
> you should not be allowed to register it.
> 
> We have software for detecting look alikes, though it is in javascript, not
> C++.

There are limits to how far you can go with this.  You can detect
confusable glyphs this way.  But you also need to detect typo-squatting
and even just plain old confusable words.

Nico
-- 
_______________________________________________
The cryptography mailing list
cryptography AT metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography