6 Jul
2024
6 Jul
'24
8:59 p.m.
On Jul 6, 2024, at 22:41, Paul Ebersman <list-nanog2@dragon.net> wrote: I've been surprised that none of the folks that got TLDs seem to be leveraging the technical/security brand protection like they could.
A few are. A very few. SNCF. A few banks.
If I have an LG TV and it wants to update to <mumble>.LG and LG is DNSSEC signing the whole chain, that sure seems more likely to be legit than <mumble>.lg.tv or some such.
Ayup. Particularly if they don’t allow downgrade attacks to CA certs. I think there are a few more brands looking to make this move to higher security in the new ngTLD round. At least everybody’s a lot more educated this time around. -Bill