Dynamic DNS Update (RFC2137) features allow some
similar/identically-looking IDN ACE labels to be inserted without
any intervention from human administrators. IDN-administration
draft efforts, most of which have focus on the idn REGISTRATION,
may be ignoring those protocol/security/architectural issues.
ACE labels are to be treated and trusted as ASCII ones but it
shouldn't . That will be a great blow to the stability,trustworthiness
and security of global DNS systems.
No sensible registry should allow dynamic updates bypass the
registration process. This has nothing to do with IDN.
jaap
