[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [idn] nameprep2 and the slash homograph issue

To: idn@ops.ietf.org
Subject: Re: [idn] nameprep2 and the slash homograph issue
From: "Adam M. Costello" <idn.amc+0@nicemice.net.RemoveThisWord>
Date: Wed, 23 Feb 2005 07:28:37 +0000
In-reply-to: <421B8484.3070802@vanderpoel.org>
References: <421B8484.3070802@vanderpoel.org>
Reply-to: IETF idn working group <idn@ops.ietf.org>
User-agent: Mutt/1.5.6+20040722i

Erik van der Poel <erik@vanderpoel.org> wrote:

> Another argument against banning the slash homograph is that any new
> banning would require a new ACE prefix, which is a lot of work, and,
> as John said, there should be a high threshold for any demonstration
> that tries to show that a new prefix is necessary.

An alternative, rather than banning the character, is to recommend
that it not be shown; the ACE form could be shown instead.  This would
effectively make the character useless in domain names (for both
phishers and honest folks) without requiring a new ACE prefix.

We could push ToUnicode down inside a wrapper function, ToDisplay.
Applications would never call ToUnicode directly anymore.  Whenever
they wanted to display a domain name, they'd call ToDisplay, which
would call ToUnicode, check the result, and if it didn't like it, call
ToASCII.  (Of course, since ToUnicode typically calls ToASCII, there are
opportunities to optimize that logic.)

AMC

Follow-Ups:
- Re: [idn] nameprep2 and the slash homograph issue
  - From: John C Klensin <klensin@jck.com>

References:
- [idn] nameprep2 and the slash homograph issue
  - From: Erik van der Poel <erik@vanderpoel.org>

Prev by Date: Re: [idn] upstream and downstream
Next by Date: [idn] another BIDI/ASCII representation problem on w3.org
Previous by thread: Re: [idn] nameprep2 and the slash homograph issue
Next by thread: Re: [idn] nameprep2 and the slash homograph issue
Index(es):
- Date
- Thread