Changes

a [http://newgtlds.icann.org/ large number of new TLDs]. So either maintaining a whitelist is going to become

of the policies of Chrome/Chromium and the other browsers. Unfortunately, no consensus has emerged on how to dothis. Those other mechanisms were considered, but many of them depend on the configuration of the user's computer (e.g. installed languages), and this does not give site owners any confidence that their IDN domainname will be correctly displayed for all their visitors (and no way of telling if it's not).

are single-all come from the same script, or are from one of a limited and defined number of allowable combinations. Thehope is that any intra-script near-homographs will be recognisable to people who understand that script.

which is about Unicode and security, defines a "Moderately Restrictive" profile which we could use. It says the following (with edits for clarity):

(All-Latin "scope.tld" vs all-Cyrillic "scopeѕсоре.tld"). However, so do the

significant problem so far. If there is a problem, everyone is equally affected. If problems arose in the future (e.g. with homographs between a particularscript and Latin), we would need to quickly issue a robust responsemaking the point that it is up to registries to make sure that their customerscannot rip each other off. Browsers can put some technical restrictions in place,but we are not in a position to do this job for them while still maintaininga level playing field for non-Latin scripts on the web. ===Transition=== If we decide to adopt this plan, in between adopting it and shipping a Firefox withthe restrictions implemented, we would admit into the whitelist anyTLD whose anti-spoofing policies at registration time were at least as strong as those outlined above.