<html><head><title>Re: [UA-discuss] UASG Response to WordFence IDN Phishing concerns</title>
</head>
<body>
<span style=" font-family:'Courier New'; font-size: 9pt;">Don,<br>
I'll add information that not only gTLDs, but also some ccTLDs allow mixed registration. For example, on the eve of the delegation .УКР IDN ccTLD from side of .ua ccTLD has been launched a mixed registration, see </span><a style=" font-family:'Courier New'; font-size: 9pt;" href="http://мебель.kiev.ua">http://мебель.kiev.ua</a> <br>
<span style=" font-family:'Courier New'; font-size: 9pt;">Statistics on mixed domain names in the .ua ccTLD is available </span><a style=" font-family:'Courier New'; font-size: 9pt;" href="https://hostmaster.ua/UAstat/?idn">https://hostmaster.ua/UAstat/?idn</a><br>
<span style=" font-family:'Courier New'; font-size: 9pt;">In the same time, mixed registration with Latin in Cyrillic .УКР is prohibited<br>
<br>
--<br>
Yuri <br>
<br>
Wednesday, April 26, 2017, 11:45:35 AM, you wrote:<br>
<br>
<a name="m_4576729271658896846m_8042960321159864960mySignature"></a>
</span><table>
<tr>
<td width=2 bgcolor= #0000ff><br>
</td>
<td><span style=" font-family:'Courier New'; font-size: 9pt;">Don, <br>
there is no such thing as IDN at .RU - only ascii allowed - we understood the problem long time ago due to similarity of many Cyrillic letters with Latin. <br>
In IDN .РФ in Russia only Cyrillic allowed. <br>
This definitely must be the rule for registries. Or some kind of immediate mitigation service to bring down dangerous domains. <br>
<br>
--andrei<br>
<br>
2017-04-26 11:34 GMT+03:00 Don Hollander <</span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:don.hollander@icann.org">don.hollander@icann.org</a><span style=" font-family:'Courier New'; font-size: 9pt;">>:<br>
</span><table>
<tr>
<td width=2 bgcolor= #3200ff><br>
</td>
<td><span style=" font-family:'Courier New'; font-size: 9pt;">Hi Andrei:<br>
<br>
What about at the ccTLD? </span><a style=" font-family:'courier new'; font-size: 9pt;" href="http://idn.ru/">idn.ru</a><span style=" font-family:'Courier New'; font-size: 9pt;">? Does .ru also allow ASCII?<br>
<br>
Does the .ru registry, for example, do anything to address homoglyphs between ascii and cyrillic?<br>
<br>
D<br>
<br>
</span><table>
<tr>
<td width=2 bgcolor= #6400ff><br>
</td>
<td><span style=" font-family:'Courier New'; font-size: 9pt;">On 26/04/2017, at 8:30 PM, Andrei Kolesnikov <</span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:andrei@rol.ru">andrei@rol.ru</a><span style=" font-family:'Courier New'; font-size: 9pt;">> wrote:<br>
<br>
most use of idn.ascii gTLD as far as I know is .com for example </span><a style=" font-family:'courier new'; font-size: 9pt;" href="https://urldefense.proofpoint.com/v2/url?u=http-3A__xn-2D-2Dh1akeme.com_&d=DwMFaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=YI0XKyKCabKQi3GVWLvuoyCWjH9WBgEBxLbMnmhSRwo&m=b2_5n2l3R5eXR7olCx9BY0h-_Kk-odvJXTKIexpQvuM&s=Aumtm9oLaw_1FAQZ4MvKpmNHj3khbV5zlM_VGiARFFQ&e=">http://путин.com/[xn--h1akeme.com]</a><br>
<span style=" font-family:'Courier New'; font-size: 9pt;">Basically most of the confusing cases discussed above are from .com<br>
<br>
--andrei<br>
<br>
2017-04-26 10:35 GMT+03:00 Dr. AJAY D A T A <</span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:ajay@data.in">ajay@data.in</a><span style=" font-family:'Courier New'; font-size: 9pt;">>:<br>
</span><table>
<tr>
<td width=2 bgcolor= #9600ff><br>
</td>
<td><span style=" font-family:'Courier New'; font-size: 9pt;">Hello Don, <br>
<br>
Which all registries are allowed to register mix of scripts domain while registering an IDN. I checked .pyc (Cyrillic) and .भारत (Devanagiri) do not allow mix of scripts. I think we address those registries through ICANN by modifying the registry agreement, major problem can be solved. <br>
<br>
Thanks. <br>
<br>
<span style=" font-family:'tahoma'; font-size: 8pt; color: #333399;"><b>Dr. Ajay DATA</b> <b> | Founder & CEO <br>
</b><span style=" font-family:'Courier New'; font-size: 9pt; color: #000000;">Get email id like <span style=" font-size: 8pt;"><b>अजय@डाटा.भारत</b><span style=" font-size: 9pt;"> in your own language,<br>
visit </span></span></span></span></span><a style=" font-family:'courier new';" href="https://urldefense.proofpoint.com/v2/url?u=http-3A__www.xgenplus.com_&d=DwMFaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=YI0XKyKCabKQi3GVWLvuoyCWjH9WBgEBxLbMnmhSRwo&m=b2_5n2l3R5eXR7olCx9BY0h-_Kk-odvJXTKIexpQvuM&s=-y6ACRLtO7BC6nXjQGKJQgFQOCdSIe6PZqjZMKRTGXc&e=">www.xgenplus.com[xgenplus.com]</a> <br>
<br>
<hr style="height: 2px; color : #000000; background-color : #000000; border-width : 0px;"><span style=" font-family:'courier new'; font-size: 9pt;"><b>From:</b> "Tan Tanaka,Dennis via UA-discuss" <</span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:ua-discuss@icann.org">ua-discuss@icann.org</a><span style=" font-family:'Courier New'; font-size: 9pt;">> <span style=" font-family:'verdana'; font-size: 8pt;">MailId : [68456683]<br>
<span style=" font-family:'courier new'; font-size: 9pt;"><b>To:</b> Don Hollander <</span></span></span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:don.hollander@icann.org">don.hollander@icann.org</a><span style=" font-family:'Courier New'; font-size: 9pt;">>,"</span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:ua-discuss@icann.org">ua-discuss@icann.org</a><span style=" font-family:'Courier New'; font-size: 9pt;">" <</span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:ua-discuss@icann.org">ua-discuss@icann.org</a><span style=" font-family:'Courier New'; font-size: 9pt;">><br>
<b>Subject: </b>Re: [UA-discuss] UASG Response to WordFence IDN Phishing concerns<br>
<b>Date:</b> 25 Apr 2017 06:28:22 PM <br>
<br>
<span style=" font-size: 11pt;">Don, my comments enclosed<br>
<br>
Thanks<br>
-Dennis<br>
<br>
<span style=" font-size: 9pt;"><b>From: </b><</span></span></span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:ua-discuss-bounces@icann.org">ua-discuss-bounces@icann.org</a><span style=" font-family:'Courier New'; font-size: 9pt;">> on behalf of Don Hollander <</span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:don.hollander@icann.org">don.hollander@icann.org</a><span style=" font-family:'Courier New'; font-size: 9pt;">><br>
<b>Date: </b>Monday, April 24, 2017 at 5:40 PM<br>
<b>To: </b>"</span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:UA-discuss@icann.org">UA-discuss@icann.org</a><span style=" font-family:'Courier New'; font-size: 9pt;">" <</span><a style=" font-family:'courier new'; font-size: 9pt;" href="mailto:ua-discuss@icann.org">ua-discuss@icann.org</a><span style=" font-family:'Courier New'; font-size: 9pt;">><br>
<b>Subject: </b>[EXTERNAL] [UA-discuss] UASG Response to WordFence IDN Phishing concerns<br>
<br>
<span style=" font-size: 11pt;">Further to recent discussion on this list, we have drafted a document that we plan on posting as a Blog Post to the UASG Web site that can be referenced by others.<br>
<br>
We want to get feedback from the community on this document by Thursday UTC.<br>
<br>
So, here it is – pasted below and as a word document in case you want to enable tracking and make amendments. If you have comments or suggestions, please share them to this group.<br>
<br>
Don<br>
<br>
<br>
<br>
<b>IDNs and Phishing: What You Need to Know<br>
</b>By TBD at UASG <br>
<br>
</span></span><a style=" font-family:'courier new'; font-size: 11pt;" href="https://urldefense.proofpoint.com/v2/url?u=https-3A__www.icann.org_resources_pages_idn-2D2012-2D02-2D25-2Den&d=DwMFaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=YI0XKyKCabKQi3GVWLvuoyCWjH9WBgEBxLbMnmhSRwo&m=b2_5n2l3R5eXR7olCx9BY0h-_Kk-odvJXTKIexpQvuM&s=JGHMSOqc_3GaqYY6Sf8m9MBfj3dj9vTRIsoi3E_9KRc&e=">Internationalized Domain Names[icann.org]</a><span style=" font-family:'courier new'; font-size: 11pt;"> (IDNs) are growing in popularity, a testament to their role in the expansion of the global Internet and the value they provide in connecting non-English speakers to the Web. However, you may have noticed a renewed focus over the past week of a script mixing technique that phishing scammers could potentially use to trick Internet users into visiting malicious websites. This phishing method takes advantage of the fact that characters from various languages and scripts are sometimes visually similar to each other. For example, the Cyrillic “а” and the </span><a style=" font-family:'courier new'; font-size: 11pt;" href="https://urldefense.proofpoint.com/v2/url?u=https-3A__en.wikipedia.org_wiki_ASCII&d=DwMFaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=YI0XKyKCabKQi3GVWLvuoyCWjH9WBgEBxLbMnmhSRwo&m=b2_5n2l3R5eXR7olCx9BY0h-_Kk-odvJXTKIexpQvuM&s=yfwSeTzAiHcLTq4jEae3TOx116_t2m_mn8vT4UOo7Go&e=">ASCII[en.wikipedia.org]</a><span style=" font-family:'courier new'; font-size: 11pt;"> “a” look virtually identical. This technique is known as a homograph attack. <br>
<br>
Homographic phishing efforts associated with IDNs are not new. In fact, they date back to the early 2000s. Registries have since implemented policies that preclude mixing scripts[1] within a domain name label.<br>
<br>
While this issue should be taken seriously and serves as an important reminder of consumer safety, various IDN and anti-abuse groups are actively working to mitigate potential threats, and there are already certain browser-set protections in place. In the meantime, Internet users should practice the same basic security hygiene that is always recommended: avoid clicking suspicious links, and use a good password manager that will only enter login credentials on trusted sites. <br>
<br>
Equally important is to recognize the benefits of IDNs and avoid disabling them, which could lead to an unpredictable user experience and eventually a decrease in adoption. IDNs are essential in bringing non-English speakers – the majority of the world’s population – online, and allowing those users to create their own highly relevant online identities as well as navigate the Internet in their native languages. In addition to the social and cultural benefits of IDNs, they also represent a significant economic opportunity; a recent </span><a style=" font-family:'courier new'; font-size: 11pt;" href="https://urldefense.proofpoint.com/v2/url?u=https-3A__uasg.tech_whitepaper_&d=DwMFaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=YI0XKyKCabKQi3GVWLvuoyCWjH9WBgEBxLbMnmhSRwo&m=b2_5n2l3R5eXR7olCx9BY0h-_Kk-odvJXTKIexpQvuM&s=VMxJkqVb1W-ZyIEhQREIQRg3LsygAashMrgpllm7Qs4&e=">report[uasg.tech]</a><span style=" font-family:'courier new'; font-size: 11pt;"> commissioned by the Universal Acceptance Steering Group (UASG) found that online spending from new IDN users could start at USD 6.2 billion per year. <br>
<br>
The UASG’s mission is to help software developers and website owners keep pace with the evolving Domain Name System (DNS) – and this includes issues around the adoption and acceptance of IDNs. If you’d like to get involved in helping work toward a solution to this and other IDN-related issues, please visit </span><a style=" font-family:'courier new'; font-size: 11pt;" href="https://urldefense.proofpoint.com/v2/url?u=https-3A__uasg.tech_&d=DwMFaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=YI0XKyKCabKQi3GVWLvuoyCWjH9WBgEBxLbMnmhSRwo&m=b2_5n2l3R5eXR7olCx9BY0h-_Kk-odvJXTKIexpQvuM&s=fHMruCNtXCtlHyAJqUQ0xMY3bJLSKhk8h77uH_2ctvk&e=">https://uasg.tech/[uasg.tech]</a><span style=" font-family:'courier new'; font-size: 11pt;"> or </span><a style=" font-family:'courier new'; font-size: 11pt;" href="https://urldefense.proofpoint.com/v2/url?u=https-3A__uasg.tech_contact_&d=DwMFaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=YI0XKyKCabKQi3GVWLvuoyCWjH9WBgEBxLbMnmhSRwo&m=b2_5n2l3R5eXR7olCx9BY0h-_Kk-odvJXTKIexpQvuM&s=YqvahA1bKLAZn3Ywt6hgEEjSlYv9iV1zX3u3qDUzvXE&e=">get in touch[uasg.tech]</a><span style=" font-family:'courier new'; font-size: 11pt;"> to learn more. <br>
<br>
<br>
<br>
<hr style="height: 2px; color : #000000; background-color : #000000; border-width : 0px;"><br><br>
<hr style="height: 2px; color : #000000; background-color : #000000; border-width : 0px;"><span style=" font-size: 9pt;">[1] Exceptions are practiced for languages with established orthographies and conventions that require the commingled use of multiple scripts, e.g. the Japanese writing system.<br>
<span style=" font-family:'arial'; font-size: 8pt; color: #ffffff;">Do not Remove:<br>
[HID]20170425182821379[-HID] </td>
</tr>
</table>
<br>
<br>
<br>
<span style=" font-family:'Courier New'; font-size: 9pt; color: #888888;">-- <br>
Andrey Kolesnikov<br>
</span><a style=" font-family:'courier new'; font-size: 9pt;" href="https://urldefense.proofpoint.com/v2/url?u=http-3A__RIPN.NET&d=DwMFaQ&c=FmY1u3PJp6wrcrwll3mSVzgfkbPSS6sJms7xcl4I5cM&r=YI0XKyKCabKQi3GVWLvuoyCWjH9WBgEBxLbMnmhSRwo&m=b2_5n2l3R5eXR7olCx9BY0h-_Kk-odvJXTKIexpQvuM&s=bzXSVwk1DZEFet4B2d2K-x7-PI4e37O64WojUXqaNCM&e=">RIPN.NET[RIPN.NET]</a><br>
</td>
</tr>
</table>
<br>
<span style=" font-family:'Courier New'; font-size: 9pt;">Don Hollander<br>
Universal Acceptance Steering Group<br>
Skype: don_hollander<br>
</td>
</tr>
</table>
<br>
<br>
<br>
<span style=" font-family:'Courier New'; font-size: 9pt;">-- <br>
Andrey Kolesnikov<br>
</span><a style=" font-family:'courier new'; font-size: 9pt;" href="http://RIPN.NET">RIPN.NET</a><br>
</td>
</tr>
</table>
<br>
<br>
<br>
<span style=" font-family:'arial'; color: #c0c0c0;"><i>-- <br>
<br>
З повагою,<br>
Ю. Каргаполов </i></span><a style=" font-family:'arial';" href="mailto:yvk@uanic.net">mailto:yvk@uanic.net</a></body></html>