[UA-discuss] IDNs and homographs attacks

Mark Svancarek marksv at microsoft.com
Wed May 27 17:56:52 UTC 2015 

That’s the conclusion our email teams also came to..

From: ua-discuss-bounces at icann.org [mailto:ua-discuss-bounces at icann.org] On Behalf Of Tan Tanaka, Dennis
Sent: Wednesday, May 27, 2015 10:17 AM
To: Dillon, Chris; ua-international at icann.org; UA-discuss at icann.org
Subject: [UA-discuss] IDNs and homographs attacks

ICYMI: the APWG released its Global Phishing Survey 2H2014. In it they state “From January 2007 to June 2014 we found only nine true homographic phishing attacks. […] One hundred and three IDN domain names were used for phishing in 2H2014. None were homographic attacks.”

Clearly, those claiming to watch out for IDNs for spoofing attacks are overstating the problem.

Link to the article and survey: http://www.circleid.com/posts/20150527_phishing_in_the_new_gtlds/


From: Dillon, Chris [mailto:c.dillon at ucl.ac.uk]
Sent: Tuesday, May 26, 2015 10:11 AM
To: Tan Tanaka, Dennis
Cc: ua-international at icann.org<mailto:ua-international at icann.org>
Subject: RE: Meeting notes group call 5/26

Dear colleagues,

I’ve checked the GoDaddy article I mentioned. Actually it’s a general article about the small number of law enforcement cases, disputes etc., rather than just IDNs:
www.ionmag.asia/2015/02/the-right-rights-balance<http://www.ionmag.asia/2015/02/the-right-rights-balance>

Regards,

Chris.
--
Research Associate in Linguistic Computing, Centre for Digital Humanities, UCL, Gower St, London WC1E 6BT Tel +44 20 7679 1599 (int 31599) www.ucl.ac.uk/dis/people/chrisdillon<http://www.ucl.ac.uk/dis/people/chrisdillon>

From: ua-international-bounces at icann.org<mailto:ua-international-bounces at icann.org> [mailto:ua-international-bounces at icann.org] On Behalf Of Tan Tanaka, Dennis
Sent: 26 May 2015 15:02
To: ua-international at icann.org<mailto:ua-international at icann.org>
Subject: [UA-International] Meeting notes group call 5/26

Attendees:
- Chris Dillon
- Dusan
- Don
- Dennis

Notes:

1.       Re-cap i18n charter: no comments

2.       Review of DRAFT working plan:

a.       Change title of “telling” to “identifying” on work stream titles

b.      Chris Dillon: GoDaddy published some stats on IDN phishing. Cases are rare.

c.       Dennis will develop “confusable characters” item on work stream 1.

d.      Dusan will develop “create test cases to identify UA/IDN gaps in applications” item on work stream 2

e.      Repository of practices, gap assessment, etc. should be maintained in ICANN wiki (Action item: Dennis to set up page and share link to group members)

3.       Next group meeting: Tuesday, June 9 @ 13:00 UTC

End of notes


From: ua-international-bounces at icann.org<mailto:ua-international-bounces at icann.org> [mailto:ua-international-bounces at icann.org] On Behalf Of Tan Tanaka, Dennis
Sent: Tuesday, May 26, 2015 8:50 AM
To: ua-international at icann.org<mailto:ua-international at icann.org>
Subject: [UA-International] Meeting agenda 5/26


Agenda items:

1.       Roll call

2.       Re-cap i18n charter https://docs.google.com/document/d/1wO9ubXdg02iptqwMhacFR1UsWKjPiMizXU5M5XmWzZc/edit?usp=sharing

3.       Review and discuss DRAFT i18n working plan https://docs.google.com/document/d/183UHeDMvdXVUk1W_4WJOhfFqUGx0DGWa9UeReKcCfOE/edit?usp=sharing

4.       Other items

5.       Adjourn


I18n Project Group co-Lead
Universal Acceptance: https://icann.org/universalacceptance
Join the conversation:  https://mm.icann.org/mailman/listinfo/ua-international
Project group archive: http://mm.icann.org/pipermail/ua-international/

“This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed, and may contain information that is non-public, proprietary, privileged, confidential and exempt from disclosure under applicable law or may be constituted as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this message in error, notify sender immediately and delete this message immediately.”
“This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed, and may contain information that is non-public, proprietary, privileged, confidential and exempt from disclosure under applicable law or may be constituted as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this message in error, notify sender immediately and delete this message immediately.”
“This message (including any attachments) is intended only for the use of the individual or entity to which it is addressed, and may contain information that is non-public, proprietary, privileged, confidential and exempt from disclosure under applicable law or may be constituted as attorney work product. If you are not the intended recipient, you are hereby notified that any use, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this message in error, notify sender immediately and delete this message immediately.”
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mm.icann.org/pipermail/ua-discuss/attachments/20150527/ade8ce40/attachment.html>

More information about the UA-discuss mailing list