> On Jul 6, 2024, at 22:41, Paul Ebersman <[email protected]> wrote: > I've been surprised that none of the folks that got TLDs seem to be > leveraging the technical/security brand protection like they could.
A few are. A very few. SNCF. A few banks.
> If I have an LG TV and it wants to update to <mumble>.LG and LG is
> DNSSEC signing the whole chain, that sure seems more likely to be legit
> than <mumble>.lg.tv or some such.
Ayup. Particularly if they don’t allow downgrade attacks to CA certs.
I think there are a few more brands looking to make this move to higher
security in the new ngTLD round. At least everybody’s a lot more educated this
time around.
-Bill
signature.asc
Description: Message signed with OpenPGP
