Re: IDN problem.... :(

From: Werner LEMBERG (wl@gnu.org)
Date: Thu Feb 10 2005 - 23:30:23 CST

Next message: Werner LEMBERG: "Re: IDN problem.... :("

Previous message: Murray Sargent: "RE: IDN problem.... :("
In reply to: Addison Phillips [wM]: "RE: IDN problem.... :("
Next in thread: Werner LEMBERG: "Re: IDN problem.... :("
Reply: Werner LEMBERG: "Re: IDN problem.... :("
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Mail actions: [ respond to this message ] [ mail a new topic ]

> > >For that matter, I can construct a perfect "paypal" string using
> > >ONLY Cyrillic letters. Restrictions to one script doesn't prevent
> > >the homograph attack. It just requires one to be more clever.

Without knowing the IDN standard: Why not adding a character to the
IDN string which gives a checksum (MD5 or something similar) of the
string to be displayed? This character would stay unrendered, and it
makes it virtually impossible to fake an address with a different
script.

Werner

Next message: Werner LEMBERG: "Re: IDN problem.... :("
Previous message: Murray Sargent: "RE: IDN problem.... :("
In reply to: Addison Phillips [wM]: "RE: IDN problem.... :("
Next in thread: Werner LEMBERG: "Re: IDN problem.... :("
Reply: Werner LEMBERG: "Re: IDN problem.... :("
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2.1.5 : Fri Feb 11 2005 - 01:49:47 CST