Security Through Obscurity as an Institution by Kurtis Lindqvist

Responding to Mikko Hyppönen’s recent article in Foreign Policy, Lindqvist strongly disagrees with the proposition that a .bank, or similar, gTLD would reduce online financial institution fraud. Reasons given against are the proposed $50,000 fee for a domain would be too high for those in developing countries and to compile a list of the world’s eligible financial institutions extremely difficult. And if a domain was registered under such a gTLD by criminals, it would be invaluable to them. Lindqvist concludes he thinks “the proposal is trying to reach higher end-user confidence levels through security obfuscation. This will work until the registry gets compromised (and it will), and then the effects are much worse and far reaching.”

Responding to Mikko Hyppönen’s recent article in Foreign Policy, Lindqvist strongly disagrees with the proposition that a .bank, or similar, gTLD would reduce online financial institution fraud. Reasons given against are the proposed $50,000 fee for a domain would be too high for those in developing countries and to compile a list of the world’s eligible financial institutions extremely difficult. And if a domain was registered under such a gTLD by criminals, it would be invaluable to them. Lindqvist concludes he thinks “the proposal is trying to reach higher end-user confidence levels through security obfuscation. This will work until the registry gets compromised (and it will), and then the effects are much worse and far reaching.”http://www.circleid.com/posts/tld_registry_security_financial_institution/

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.