The registry-lock service is aimed at making online identify verification more secure and prevent hackers from obtaining login details to access a website’s DNS (domain name server), potentially changing the domain name’s records to redirect visitors to altered content.
“We are putting back the human factor in the verification process,” Internet Registration Corporation’s chief Jonathan Shea Tat-On, said in a report by South China Morning Post.
The registry-lock service will require all changes to DNS records to be verified via telephone calls with the regirstrar’s call operators, and only up to three names can be authorized to modify the records. In addition, the server will be unlocked for just 15 minutes at a time, according to the report. These measures aim to eradicate any loopholes created by automation.
The .hk domain will be among 21 of 300 top-level domains to implement the registry-lock service, available through the Domain Name Registrar which charges HK$2,000 (US$257.93) a year for each domain name.
The Syrian Electronic Army in August launched phishing attacks against the websites of New York Times and Twitter, among others, by gaining access to their DNS, logging in and changing the domain name records, and re-routing visitors to an altered website.