Security Through Obscurity as an Institution by Kurtis Lindqvist

Responding to Mikko Hyppönen’s recent article in Foreign Policy, Lindqvist strongly disagrees with the proposition that a .bank, or similar, gTLD would reduce online financial institution fraud. Reasons given against are the proposed $50,000 fee for a domain would be too high for those in developing countries and to compile a list of the world’s eligible financial institutions extremely difficult. And if a domain was registered under such a gTLD by criminals, it would be invaluable to them. Lindqvist concludes he thinks “the proposal is trying to reach higher end-user confidence levels through security obfuscation. This will work until the registry gets compromised (and it will), and then the effects are much worse and far reaching.”

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.