<div dir="auto"></div><div class="gmail_extra"><br><div class="gmail_quote">Le 27 juin 2018 16:56, "David Conrad" <<a href="mailto:david.conrad@icann.org">david.conrad@icann.org</a>> a écrit :<br type="attribution"><blockquote class="quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word;line-break:after-white-space">I suspect that might be triggered by:<div><br></div><div><a href="https://info.farsightsecurity.com/farsight-idn-research-report?utm_source=newsletter&utm_medium=email&utm_campaign=newsletter_axioscodebook&stream=technology" target="_blank" rel="noreferrer">https://info.farsightsecurity.com/farsight-idn-research-report?utm_source=newsletter&utm_medium=email&utm_campaign=newsletter_axioscodebook&stream=technology</a></div><div><br></div><div> From the executive summary:</div><div><br></div><div>
                
        
        
                <div class="m_5425062049111256514page" title="Page 3">
                        <div class="m_5425062049111256514section">
                                <div class="m_5425062049111256514layoutArea">
                                        <div class="m_5425062049111256514column"><p><span style="font-size:10.000000pt;font-family:'HelveticaNeue';font-weight:700;color:rgb(42.700000%,38.400000%,47.500000%)">Among the key findings:
</span></p><p><span style="font-size:10.000000pt;font-family:'HelveticaNeue';color:rgb(42.700000%,38.400000%,47.500000%)">100M total IDN resolutions observed; 27M unique fully qualified domain names (FQDNs)</span></p><p><span style="font-size:10.000000pt;font-family:'HelveticaNeue';color:rgb(42.700000%,38.400000%,47.500000%)">8,000 IDN homographs representing or containing a top global brand name
</span></p><p><span style="font-size:10.000000pt;font-family:'HelveticaNeue';color:rgb(42.700000%,38.400000%,47.500000%)">Unicode “confusables” make up a significant percentage of the characters found in IDNs; 91% of all
</span><span style="font-size:10.000000pt;font-family:'HelveticaNeue';color:rgb(42.700000%,38.400000%,47.500000%)">characters observed in IDN homographs are considered “confusable” -- a “confusable” is a Unicode
code point that is often easily confused with other characters, ligatures, and/or digraphs.
</span></p><p><span style="font-size:10.000000pt;font-family:'HelveticaNeue';color:rgb(42.700000%,38.400000%,47.500000%)">Brands in banking and other related sectors are frequently imitated using IDN homographs with ~750
</span><span style="font-size:10.000000pt;font-family:'HelveticaNeue';color:rgb(42.700000%,38.400000%,47.500000%)">unique FQDNs observed per month
</span></p><p><span style="font-size:10.000000pt;font-family:'HelveticaNeue';color:rgb(42.700000%,38.400000%,47.500000%)">91% of IDN homographs offered some sort of webpage
</span></p><p><span style="font-size:10.000000pt;font-family:'HelveticaNeue';color:rgb(42.700000%,38.400000%,47.500000%)">We found clear violations of the ICANN Guidelines for the Implementation of Internationalized Domain
Names
</span></p><p><span style="font-size:10.000000pt;font-family:'HelveticaNeue';color:rgb(42.700000%,38.400000%,47.500000%)">66% of all IDN homograph IP addresses were found to be geolocated in the United States </span></p><p><span style="font-size:10.000000pt;font-family:'HelveticaNeue';color:rgb(42.700000%,38.400000%,47.500000%)">93% of IDN homograph FQDNs had IPv4-based address records </span></p></div></div></div></div></div><div><br></div><div>Regards,</div><div>-drc<div class="elided-text"><br><div><br><blockquote type="cite"><div>On Jun 27, 2018, at 10:27 AM, Andrew Sullivan <<a href="mailto:ajs@anvilwalrusden.com" target="_blank" rel="noreferrer">ajs@anvilwalrusden.com</a>> wrote:</div><br class="m_5425062049111256514Apple-interchange-newline"><div><span style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none;float:none;display:inline!important">I see, via Slashdot, that the BBC is once again promoting this problem:</span><br style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none"><br style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none"><a href="https://it.slashdot.org/story/18/06/26/2031212/scammers-abuse-multilingual-domain-names" style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px" target="_blank" rel="noreferrer">https://it.slashdot.org/story/18/06/26/2031212/scammers-abuse-multilingual-domain-names</a><br style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none"><br style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none"><span style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none;float:none;display:inline!important">A</span><br style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none"><span style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none;float:none;display:inline!important">--<span class="m_5425062049111256514Apple-converted-space"> </span></span><br style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none"><span style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none;float:none;display:inline!important">Andrew Sullivan</span><br style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none"><a href="mailto:ajs@anvilwalrusden.com" style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px" target="_blank" rel="noreferrer">ajs@anvilwalrusden.com</a><br style="font-family:Menlo-Regular;font-size:10px;font-style:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:none"></div></blockquote></div><br></div></div></div></blockquote></div><br></div>