Defaults.Exposed

Defaults.Exposed › Reports

National vs Generic Domains: Are ccTLDs Like .de and .uk Safer Than .com? (2026)

Published 2026-06-28

Figures as of 2026-06-28 · methodology v7. Aggregate census data; we never publish an individual domain’s grade. “Grade F” means effectively unprotected — can be spoofed. See how we grade.

National domains are more secure than generic ones — but the gap is smaller than the headline. Across the census, domains on national endings (ccTLDs like .de, .uk, .nl) score an F 80.2% of the time, versus 88.3% for generic endings (gTLDs like .com, .net, .xyz). National registries protect their businesses better — yet even the safer category still leaves the large majority of its domains exposed.

National vs generic: the headline numbers

CategoryEndings measuredDomains gradedGrade-F shareB-or-better share
National (ccTLD)10066M80.2%0.61%
Generic (gTLD)372194M88.3%0.41%

A national domain is roughly 0.61% likely to reach a B or better — still rare, but consistently ahead of the 0.41% on generic endings.

Why are national (ccTLD) domains more secure?

The difference isn’t magic in the domain ending — it’s who registers it and how:

A few national registries stand out. For example, as of 2026-06-28, .ch (Switzerland) sits at 57.1% F, .nl (Netherlands) at 69.1%, and .de (Germany) at 81.0% — all ahead of .com at 86.9%. The live ranking of every ending is here: the most & least secure TLDs →.

The catch: “more secure” still isn’t secure

This is the uncomfortable part. National domains win the comparison while still failing it in absolute terms: 80.2% of ccTLD domains score an F. Choosing a national ending nudges the odds in your favour, but it is not a substitute for actually configuring the domain. The protections that move a domain from F to A — enforced SPF and DMARC, valid TLS, DNSSEC — are the same on every ending, and on every ending most owners haven’t switched them on.

Should I choose a ccTLD or a gTLD for security?

For most businesses the decision should be driven by branding and audience, not security — because the security difference between endings is dwarfed by the difference between a configured domain and an unconfigured one. A well-set-up .com beats a neglected .de every time. Pick the ending that fits your market; then do the configuration that actually protects you.

Frequently asked questions

Are ccTLDs more secure than gTLDs? On average, yes. As of 2026-06-28, 80.2% of national (ccTLD) domains score an F versus 88.3% of generic (gTLD) domains — but both leave the majority of domains exposed.

Is a .de or .uk domain safer than a .com? The national category is safer on average, and several national endings (e.g. .ch, .nl, .de) outperform .com. But an individual domain’s safety depends on its own configuration, not its ending.

Does choosing a national domain protect my business from spoofing? No. Only enforced email authentication (SPF + DMARC) protects against spoofing, and that has to be configured regardless of the ending you choose.

Which is better for SEO or trust, ccTLD or gTLD? That’s a branding/audience decision. From a pure domain-security standpoint, the ending matters far less than whether the domain is properly configured.

Check your domain — whatever its ending

National or generic, the grade that matters is your own. Check it privately and free, with a per-check breakdown and exactly how to fix what fails.

Check your domain → · Domain security by country → · How we grade → · Aggregate data only. Data stored and processed in the EU.