Slashdot Mirror

← Back to Stories (view on slashdot.org)

New .secure Internet Domain On Tap

Posted by Soulskill on from the it-says-so-right-in-the-url dept.

CowboyRobot writes "A new top-level domain (TLD) in the works for the Internet will bake security in from the outset: The .secure domain will require fully encrypted HTTPS sessions and a comprehensive vetting process for websites and their operators. If the new domain takes off, it could shift the way Web domains are secured. ICANN is expected to sign off on .secure, and for the new TLD to be up and running June or July 2013."

7 of 129 comments (clear)

  1. Re:Call me back in a month ... by BackwardPawn · · Score: 4, Funny

    Might as well just name it .hackme

  2. tl;nt by X0563511 · · Score: 4, Insightful

    (too long, not typing)

    Seriously. When every other TLD is two or three characters, they decide to go use a full word? Breaking conventions AND convenience! Whee!

    --
    For large sets, this will be our guide even unto death, for the LORD will work for each type of data it is applied to...
    1. Re:tl;nt by Tridus · · Score: 4, Insightful

      Pretty much everybody else ignores those, so why not?

      --
      -- "So they told me that using the download page to download something was not something they anticipated." - Bill Gates
    2. Re:tl;nt by eln · · Score: 5, Funny

      You laugh, but if I hadn't used that method I never would have known that my bank relocated to Russia.

  3. Re:Call me back in a month ... by Anonymous Coward · · Score: 4, Informative

    And it's this type of attitude that will kill it. They're not claiming it to be bulletproof or perfect, only that they're enforcing a number of currently available security protocols that are optional in the general internet, and difficult to figure out if they're actually in use. So if you're on a .secure domain name, it doesn't mean the site is unhackable, but it does mean that you resolved the domain via DNSSEC, and that your connection is over SSL, and that the SSL certificate was reasonably vetted. Unfortunately, this doesn't solve the fundamental problem that understanding network security requires some knowledge, and so some day some site on this TLD will get hacked, and every shitty news organization on the planet will talk about how .secure is worthless, and it will die.

  4. .bank by wiedzmin · · Score: 4, Insightful

    Again, I would rather have them introduce the .bank domain name, that can be registered only by verified banking institutions (they make it cost like $20,000 per year too, to further deter fraud). IMHO that, combined with PCI regulations enforcing the security of sites hosted on such domains, would be infinitely more useful.

    --
    Bow before me, for I am root.
  5. Re:Call me back in a month ... by Tridus · · Score: 4, Insightful

    And we can do all that now without paying ICANN extra fees or creating the illusion that it's "secure" because the address says so. Which is exactly what end users and the media are going to believe.

    What we really need to do is rein ICANN in and stop this kind of nonsense.

    --
    -- "So they told me that using the download page to download something was not something they anticipated." - Bill Gates