Internet safe spot planned at ".secure" domain

May 11, 2012 by Glenn Chapman

Internet security specialists have applied for a ".secure" domain that they plan to turn into an online safe zone where bad guys aren't allowed.

San Francisco-based Artemis was awaiting word Friday from the (ICANN) on whether it was approved to host websites with ".secure" addresses.

"We are creating a safe neighborhood where you know people follow the rules and you can rely on them to do things securely," Artemis Alex Stamos told AFP.

"There is not going to be typo squatting or malware... We are going to make it really air tight so even if you were in Syria the Syrian government couldn't hijack you."

Commonly available, but typically unused, technology tools for thwarting online hackers, viruses, snoops, spies and will be mandatory at websites with .secure addresses.

"The idea is to make it effortlessly secure for individuals," Stamos said.

"In the end, the actual technical security tactics are things (websites) should be doing anyway. We are just making it a requirement."

Plans for .secure were part of an "revolution" that remained on hold due to a flaw that let some aspiring applicants peek at unauthorized information at the ICANN registration website.

ICANN intends to resume taking applications on May 22 from those interested in running new generic (gTLDs) online, with the window staying open for about five days.

ICANN said that it has so far received 2,091 applications from 1,268 organizations, some of which are vying for the same word as the end to a name.

In January, ICANN began taking applications from those interested in operating Internet domains that replace endings such as .com or .org with nearly any acceptable words, including company, organization or city names.

Outgoing ICANN president Rod Beckstrom has championed the change as a "new revolution."

Shifty characters are bound to take advantage of the change by "squatting" on website addresses based on popular words or on common misspellings, according to Stamos.

"There are all kinds of shenanigans people pull with domain names," Stamos said.

"There will be all kinds of people squatting over the domain space and we are just not going to let that happen."

Businesses registering .secure websites will be required to verify their identity and accurately represent what they do.

"If you use the word 'bank' or 'brokerage,' you will have to prove that is what you are," Stamos said. "You can't just grab that domain and sit on it."

Those running .secure websites would need to install safeguards, such as data encryption and guard against viruses that could be passed on to visitors.

"If you launch a website and two days later there is malware on it, we are taking it down and you will have to come to us and explain," Stamos said.

Artemis did not disclose how much it planned to charge for .secure Web addresses, but expected the amount to be significantly more than the $13 or so typically charged for .com.

Registering a gTLD with ICANN costs $185,000 with a $25,000 annual fee after that.

Artemis, part of Britain-based NCC Group, also had to show that it could operate .secure for three years without taking in any revenue.

The hope was to have .secure among the first wave of new gTLDs, which are expected to go live on the Internet in the middle of next year.

"If companies go through a little bit of pain to run on .secure, in the end they have done themselves and their customers a great service," Stamos said.

"If you want to be lazy, you should not apply for a .secure domain."

More information about .secure was available online at artemis.net.

Artemis is also assembling an industry group to develop "domain policy framework" for making websites safer no matter what their addresses.

Explore further: Ebola.com domain sold for big payout

add to favorites email to friend print save as pdf

Related Stories

Website address 'revolution' on hold

Apr 27, 2012

The Internet domain name "revolution" was on hold Friday due to a flaw that let some aspiring applicants peek at unauthorized information at the registration website.

ICANN chief to leave at end of term

Aug 17, 2011

The head of the Internet Corporation for Assigned Names and Numbers (ICANN), the global body which manages the technical infrastructure of the Web, has announced he will not seek another term.

".Oops": Glitch forces extension for new suffixes

Apr 13, 2012

You're probably familiar with ".com" and ".org." How about ".oops"? A technical glitch forced the abrupt shutdown of a system for letting companies and organizations propose new Internet domain name suffixes. The Internet ...

Recommended for you

Ebola.com domain sold for big payout

Oct 24, 2014

The owners of the website Ebola.com have scored a big payday with the outbreak of the epidemic, selling the domain for more than $200,000 in cash and stock.

Facebook goes retro with 'Rooms' chat app

Oct 23, 2014

Facebook on Thursday released an application that lets people create virtual "rooms" to chat about whatever they wish using any name they would like.

User comments : 9

Adjust slider to filter visible comments by rank

Display comments: newest first

Riff
2.3 / 5 (3) May 11, 2012
Oh wow, I didn't know they fixed the security issues with tcp/ip. Can someone please tell them about the 'man in the middle' hack? (amongst others). They must have never heard of the Titanic.
Deadbolt
2.3 / 5 (6) May 11, 2012
This is practically tempting hackers. It should instead be a decoy zone filled with the most horrible viruses possible, so when it's inevitably hacked, the hackers computers are destroyed by downloading 1 million horrible forms of malware.
CHollman82
3.4 / 5 (5) May 11, 2012
Internet security specialists have applied for a ".secure" domain that they plan to turn into an online safe zone where bad guys aren't allowed


This is the dumbest thing I've ever heard... "bad guys" aren't "allowed" to do what they do already, but they do it anyway. If you can stop them, then stop them everywhere, not just on this tiny portion of the internet namespace. If you can't stop them, then this effort is utterly futile.
rwinners
3.7 / 5 (3) May 11, 2012
Wow. Hackers will be drawn like flies to 'honey'.
Sonhouse
not rated yet May 11, 2012
I give it a week.
PoppaJ
1 / 5 (2) May 11, 2012
They have to know it wont work. I wonder what the actual intent is.
migbasher
not rated yet May 12, 2012
$$$ is the intent. This is just as bad as those speedupmypc.com commercials. Very scandalous.
indio007
1 / 5 (2) May 12, 2012
It's a honeypot for wannabe hackers.
Midcliff
not rated yet May 12, 2012
Maybe you guys didn't read the article. obviously it can't be unhackable. the intent is to require due diligence and agree to be taken down if a threat to the public is perceived until such threat is thwarted.

It'll only attract hackers out to prove a point. The hackers trying to steal money will go to less secure sites. Why would they waste their time? Case in point, Macs generally aren't attacked because there are are far too few compared to PCs meaning the effort required to hack does not result in many fruitfull returns. Hackers are business people too, they will take the easy to route.

The domain has to be actively managed though, and its sounds like they intend to.