I wonder what sort of risk assessment .ZIP has for the name collision study. Jonathan Zuck Director, Future of Work Project Innovators Network Foundation www.InnovatorsNetwork.org ________________________________ From: NA-Discuss <na-discuss-bounces@atlarge-lists.icann.org> on behalf of Evan Leibovitch via NA-Discuss <na-discuss@atlarge-lists.icann.org> Sent: Saturday, May 27, 2023 4:18:34 PM To: NARALO Discussion List <na-discuss@atlarge-lists.icann.org> Subject: [NA-Discuss] Protecting the public interest: dot-zip While my hopes that ALAC will champion this are dim, and ICANN itself is even less likely to act, I draw your attention to a policy goof that is already causing public harm and is likely to cause far more. Now anyone can buy a dot-zip second-level domain, ie evan.zip or naralo.zip As anyone who works with computers should know, long before dot-zip was a domain it was a very popular computer-file extension to denote something that contained a file (or collection of files) in compressed form. Such a collection could easily contain malicious data or code. Is anyone seeing the problem? People could be sent "attachments" that are really URLs and URLs that are really attachments. The potential for end-user confusion and harm is immense. Here are two videos that explain the situation well: https://www.youtube.com/watch?v=GCVJsz7EODA https://www.youtube.com/watch?v=V82lHNsSPww Is anyone in domain-world looking at this? Evan Leibovitch, Toronto Canada @evanleibovitch / @el56