Recent Posts
- ICANN publishes its Woke Manifesto. Here’s my hot take
- Alibaba, Name.com among new RDRS opt-ins
- The Swiss can register .swiss domains from next week
- .ai up to 425,000 domains
- A million “free” .music domains up for grabs
- D3 to get $5 million in crypto to apply for .ape gTLD
- Alibaba hit with ICANN breach notice
- New Vegas conference “Davos for Web3 interoperability”
- ICANN content policing power grab may be dead
- Cable company unplugs its dot-brand after acquisition
- Germany crosses 10,000 dot-brand domains milestone
- Founders out as Com Laude gets equity injection
- PIR’s Diaz to leave domain industry
- Some registrars have already quit ICANN’s Whois experiment
- ICANN opens $217 million Grant Program
- Internet could get one-letter gTLDs (but there’s a catch)
- .ai registry fights deadbeats with tweaked auction rules
- Amazon and Google among .internal TLD ban backers
- .ai registry advises buyers not to use GoDaddy
- .post liberalizes with new sunrise period
- Team Internet spends $41 million on content farm
- Epik backtracks on Kiwi Farms claim after legal threat
- .austin names launch on blockchain
- Freenom shuts down 12.6 million domains — report
- GoDaddy’s next .xxx contract may not be a done deal
- GlobalBlock blocking 2.5 million domains
- Microsoft moving its cloud apps from .com to .microsoft
- ICANN 79: anonymous trolls and undercover lawyers
- ICANN scores win in single-letter .com lawsuit
- Cosmetics brand terminates its gTLD
- Up to 70 jobs on the line at Nominet as .uk regs dwindle
- Governments back down on new gTLD next round delay
- Private auctions could be banned in new gTLD next round
- ICANN meeting venue “insensitive and hurtful”
- GoDaddy to start selling graphic.design domains
- GAC spinning up new gTLD curveball at ICANN 79?
- GoDaddy’s GlobalBlock supports blockchain names
- Police .uk domain takedowns dive in 2023
- GoDaddy wants to cut the bullshit from .xxx
- Dueling domain blocking services to launch at ICANN 79
- Freename tries to bridge DNS and blockchain
- Olive retires from ICANN
- Whois policy published without life-saving disclosure rule
- UK gov takes its lead from ICANN on DNS abuse
- Tucows reports 2023 results
- Twitter “completely unresponsive” on clickable domains
- ICANN spends $5 million more than planned in first fiscal half
- .art takes a million domains off its premium list
- KeyTrap ‘the most devastating vulnerability ever found in DNSSEC’
- Freenom settles $500 million Meta lawsuit and will exit domain business
- New gTLD lottery to return in 2026
- First GlobalBlock prices revealed — they ain’t cheap
- Domain universe grows on new gTLDs despite .com shrinkage
- D3 signs up crypto gTLD client number five
- GoDaddy reports strong domains growth
- How to qualify for a $40,000 gTLD
- Registry service provider evaluation handbook published
- WebUnited inks deal to “mirror” country’s TLD in the blockchain
- GoDaddy project unveils brand-blocking calculator
- Report: Monster “misappropriated” millions from Epik
- .com is shrinking but Verisign raises prices again anyway
- D3 announces fourth crypto new gTLD client
- Donald Trump loses second UDRP case
- UK cybersquatting complaints hit record low
- No excuses! PIR to pay for ALL registries to tackle child abuse
- ICANN insists it is working on linkification
- Namecheap sues ICANN over .org price caps
- GoDaddy offers free Ethereum blockchain integration
- Epik reveals who is running the company
- Epik gets acquired again! The plot thickens…
- Airline gTLD crashes and burns
- First chunks of new gTLD Applicant Guidebook drop
- Epik to reveal its owners soon
- Another crypto firm to apply for a new gTLD
- Monster and Royce are NOT involved in Epik?!
- Nominet to overhaul .uk registry, turn off some services
- Russia blames DNSSEC, not Ukraine, for internet downtime
- Team Internet says revenue beat estimates
- Sold for over $20k, insure.ai and dog.ai back in .ai’s expired names auction
- .ai helps UDRP cases rise in 2023, WIPO says
- Freenom’s domains land at Gandi after termination
- .ru domains fly off the shelf as Western sanctions bite
- ICANN picks its first ever Supreme Court
- Lebanon’s ccTLD going back to Lebanon after ICANN takeover
- ICANN picks the domain it will never, ever release
- ICANN approves domain takedown rules
- Has Epik gone “woke”?
- First bits of new gTLD Applicant Guidebook expected next week
- ICANN bans closed generics for the foreseeable
- You can’t use money to buy .box domains
- After 14 years, ICANN practices what it preaches on IDNs
- Weak demand for private Whois data, ICANN data shows
- .ing doing way better than .meme
- DNS Women barred from ICANN funding?
- Dev releases free open-source TLD registry platform
- INCO flips a gTLD to Identity Digital
- Anguilla fears the .ai junk drop
- Five more gTLDs get launch dates
- $10 million of ICANN cash up for grabs
- Almost 50,000 .ai domains sold in a quarter
- ICANN threatens to regulate your speech [RANT]
- Life insurance company kills dot-brand
- ICANN finds new home for Lebanon’s TLD after founder’s death
- ICANN begs people to use its new Whois service
- Shiba Inu outs itself as crypto new gTLD applicant
- Over 50,000 .ai domains sold in three months
- Amazon planning new push into registrar market?
- Registries and registrars vote ‘Yes’ to new DNS abuse rules
- ICANN predicts flattish 2025 for domain industry
- Fast-growing Gname buys another 150 registrars
- GoDaddy service to let you block domains in over 650 TLDs
- Did I find a murder weapon in a zone file?
- ICANN drops the “man” from Ombudsman
- Have your say on police domain takedown powers
- Most registrars are shunning ICANN’s new Whois system
- Nominet to take over .gov.uk
- ICANN picks Istanbul for 2024 meeting
- ICANN’s private Whois data request service goes live
- .au regs slide on 2LD anniversary
- ICANN accused of power grab over $271 million auction fund
- A registrar is getting blamed for an Israeli war propaganda site
- Two more dot-brands bite the dust
- Google sells five-figure AI domain and six-figure .ing hack
- .blackfriday is still a bit rubbish
- Internet Naming Co acquires five more gTLDs
New gTLD registry contract approved, but applicants left hanging by GAC advice
ICANN has approved the standard registry contract for new gTLD registries after many months of controversy.
But its New gTLD Program Committee has also decided to put hundreds more applications on hold, pending talks with the Governmental Advisory Committee about its recent objections.
The new Registry Agreement is the baseline contract for all new gTLD applicants. While some negotiation on detail is possible, ICANN expects most applicants to sign it as is.
Its approval by the NGPC yesterday — just a couple of days later than recently predicted by ICANN officials — means the first contracts with applicants could very well be signed this month.
The big changes include the mandatory “Public Interest Commitments” for abuse scanning and Whois verification that we reported on last month, and the freeze on closed generics.
But a preliminary reading of today’s document suggests that the other changes made since the previous version, published for comment by ICANN in April, are relatively minor.
There have been no big concessions to single-registrant gTLD applicants, such as dot-brands, and ICANN admitted that it may have to revise the RA in future depending on how those discussions pan out.
In its resolution, the NGPC said:
ICANN is currently considering alternative provisions for inclusion in the Registry Agreement for .brand and closed registries, and is working with members of the community to identify appropriate alternative provisions. Following this effort, alternative provisions may be included in the Registry Agreement.
But many companies that have already passed through Initial Evaluation now have little to worry about in their path to signing a contract with ICANN and proceeding to delegation.
“New gTLDs are now on the home stretch,” NGPC member Chris Disspain said in a press release “This new Registry Agreement means we’ve cleared one of the last hurdles for those gTLD applicants who are approved and eagerly nearing that point where their names will go online.”
Hundreds more, however, are still in limbo.
The NGPC also decided yesterday to put a hold on all “Category 1” applications singled out for advice in the Governmental Advisory Committee’s Beijing communique.
That’s a big list, comprising hundreds of applications that GAC members had concerns about.
The NGPC resolved: “the NGPC directs staff to defer moving forward with the contracting process for applicants who have applied for TLD strings listed in the GAC’s Category 1 Safeguard Advice, pending a dialogue with the GAC.”
That dialogue is expected to kick off in Durban a little over a week from now, so the affected applicants may not find themselves on hold for too long.
Negotiations, however, are likely to be tricky. As the NGPC’s resolution notes, most people believe the Beijing communique was “untimely, ill-conceived, overbroad, and too vague to implement”.
Or, as I put it, stupid.
By the GAC’s own admission, its list of strings is “non-exhaustive”, so if the delay turns out to have a meaningful impact on affected applicants, expect all hell to break loose.
GNSO still breathing as ICANN retracts “flawed” Trademark+50 thinking
The Generic Names Supporting Organization isn’t dead after all.
ICANN’s Board Governance Committee has retracted a document related to new gTLD trademark protections that some on the GNSO Council believed spelled the end of the multistakeholder model as we know it.
The BGC, in rejecting a formal Reconsideration Request related to the “Trademark+50” mechanism, had used a rationale that some said was overly confrontational, legalistic and gave ICANN staff the ability to ignore community input more or less at will.
We reported on the issue in considerable detail here.
The committee on Friday retracted the original rationale, replacing it with one (pdf) that, while still containing some of the flawed reasoning DI noted last month, seems to have appeased the GNSO Council.
Neustar policy VP Jeff Neuman, who raised the original concerns, told the Council: “I believe the rationale is much more consistent with, and recognizes, the value of the multi-stakeholder model.”
The BGC did not change its ultimate decision — the Reconsideration Request has still been rejected and Trademark+50 is still being implemented in the new gTLD program.
Four new gTLD applications withdrawn, including one closed generic
Four new gTLD application were withdrawn overnight, including the first “closed generic” bid to be dropped since ICANN implemented a freeze on such applications.
Today’s withdrawals are:
- .movie — Of the eight applications for this string, this Dish DBS bid was one of only two proposed with single-registrant business models. It would have undoubtedly have been captured by the current ICANN hold on closed generics.
- .chesapeake — A dot-brand filed by Chesapeake Energy. It had already passed Initial Evaluation. While arguably a geographic string, it had not been classified as such by ICANN and had no objections or GAC advice.
- .chk — An abbreviation of the above, matching Chesapeake’s stock market ticker symbol. It had also already passed IE and had a clear run at delegation.
- .kerastase Yet another L’Oreal dot-brand application, the sixth of its original 14 bids to be withdrawn.
The total withdrawals to date now stands at 94, 49 of which were uncontested.
See all new gTLD withdrawls and Initial Evaluation results in a handy timeline
From today, DI PRO users have a new feature for tracking new gTLD withdrawals that removes the huge pain and inconvenience of actually having to read DI and other domain blogs.
It’s been the mostly commonly requested feature over the last couple of weeks, and we’re happy to oblige.
The New gTLD Program Timeline lists all withdrawals, evaluation results and other major changes to application status, in chronological order.
There are over 1,100 entries in the database so far, going back to August 2012. Withdrawals are automatically updated daily, IE results weekly on Friday evenings UTC.
It’s designed for utility. Here’s a screen grab:
To join the growing ranks of DI PRO subscribers click here. Subscribers also get access to the following tools and searchable databases:
Daily new gTLD program stats, searchable Initial Evaluation scores, the most comprehensive and flexible database of gTLD applications available anywhere, and much more.
DomainsBot to be “at the heart” of new gTLD sales
DomainsBot, which powers the name suggestion feature on most major registrar storefronts, has unveiled a significant update designed to make selling new gTLD domains easier.
The company reckons its new technology will soon be promoted from a follow-up sales tool, rolled out if a customer’s first choice of domain is not available, to “replacing the availability check” entirely.
“The idea is to be at the heart of the process of promoting new gTLDs,” CEO Emiliano Pasqualetti told DI.
The idea is pretty straightforward: a customer types a word into a search box, the service suggests available domain names with conceptually similar TLDs.
There’s a demo online already. If you type “chocolate”, it suggests domains such as chocolate.food, chocolate.menu and chocolate.health. Domain Name Wire did a quick test run today too.
While it may not be perfect today, it was pretty good at finding appropriate TLDs for the keywords I tested.
And Pasqualetti said that under the hood is a machine learning engine that will make its suggestions increasingly more relevant as new gTLD domains start to go on sale.
“It tries to predict which TLD we need to show to each individual using a combination of their query, their IP address and as much history as we can legally collect in partnership with registrars,” Pasqualetti said.
If, for example, customers based in London show a tendency to buy lots of .london domains but hardly ever .rome, Londoners will start to see .london feature prominently on their registrar’s home page.
“We learn from each registrar what people search for and what people end up buying,” he said.
Some registrars may start using the software in their pre-registration portals, increasing relevance before anything actually goes on sale, he said.
My feeling is that this technology could play a big role in which new gTLDs live or die, depending on how it is implemented and by which registrars.
Today, DomainsBot powers the suggestion engine for the likes of Go Daddy, eNom, Tucows and Moniker. Pasqualetti reckons about 10% of all the domains being sold are sold via its suggestions.
Judging by today’s press release, registrars are already starting to implement the new API. Melbourne IT, Tucows and eNom are all quoted, but Pasqualetti declined to specify precisely how they will use the service.
It’s been widely speculated that Go Daddy plans to deploy an automated “pay for placement” system — think AdSense for domains — to determine which TLDs get prominence on its storefront.
Pasqualetti said that’s the complete opposite of what DomainsBot is offering.
“We’re relevance for placement,” he said. “We want to give every TLD a chance to thrive, as long as they’re relevant for the end user.”
According to Pasqualetti (and most other people I’ve been talking to recently) there are a lot of new gTLD applicants still struggling to figure out how to market their TLDs via registrars.
There are about 550 “commercially interesting” applied-for gTLD strings in the DomainsBot system right now, he said. New gTLD applicants may want to make sure they’re one of them.
Next week, the company will reveal more details about how it plans to work with new gTLD registries specifically.
90 passes and 2 failures in this week’s gTLD results
ICANN has just delivered this week’s batch of Initial Evaluation results, with 90 passes and two failures to report.
The two applications that failed to achieve passing scores are Commercial Connect’s .shop and .supersport, a dot-brand filed by a South African television company. Both are eligible for extended evaluation.
Commercial Connect is the first applicant to fail to achieve a passing score on its technical evaluation.
I believe the company, which was among the unsuccessful applicants in the 2000 round of new gTLDs, is one of the few applicants this time around proposing to self-host its registry back-end.
It did, however, pass the financial component of the evaluation.
SuperSport failed, like nine others before it, on its financial evaluation, having scored a 0 on its “Financial Statements” question.
These are the passing applications this week:
.shop .viking .nagoya .osaka .shop .cruise .baidu .motorcycles .bananarepublic .allfinanzberatung .shiksha .top .bio .republican .aol .mail .navy .fyi .jcb .photos .wine .app .diy .law .data .foo .film .corp .ibm .physio .htc .pohl .chanel .gdn .ubs .secure .woodside .ultrabook .gold .show .soccer .map .web .coffee .apple .compare .markets .schule .fitness .courses .hotel .discover .spreadbetting .ngo .cbs .immo .home .drive .williamhill .racing .movie .store .barefoot .kaufen .memorial .abb .bbva .cpa .unicom .voto .skype .vet .doctor .tennis .space .nab .web .bet .scor .food .fail .konami .day .games .garden .book .hosting .ollo .montblanc .click
There are now 909 passing applications and 11 eligible for extended evaluation.
ICANN approves 2013 RAA
ICANN has approved a new version of its standard Registrar Accreditation Agreement, after almost two years of talks with registrars.
The new 2013 RAA will be obligatory for any registrar that wants to sell new gTLD domain names, and may in future become obligatory for .org, .info and .biz.
The new deal’s primary changes include obligations for registrars to verify email addresses supplied for Whois records as well as stronger oversight on proxy/privacy services and resellers.
Akram Atallah, president of ICANN’s new Generic Domains Division said in a statement:
In no small way this agreement is transformational for the domain name industry. Our multiple stakeholders weighed in, from law enforcement, to business, to consumers and what we have ended up with is something that affords better protections and positively redefines the domain name industry.
Registrars Stakeholder Group chair Michele Neylon told DI:
The 2013 RAA does include lot of changes that will be welcomed by the broad community. It addresses the concerns of the Governmental Advisory Committee, it addresses the concerns of law enforcement, it addresses the concerns of IP rights advocates, end user consumer groups and many others.
But Neylon warned that ICANN will need “proactive outreach” to registrars, particularly those that do not regularly participate in the ICANN community or do not have English as their first language.
The new RAA puts a lot of new obligations on registrars that they all need to be fully aware of, he said.
“The unfortunate reality is that a lot of companies may sign contracts without being aware of what they’re agreeing to,” Neylon said. “The entire exercise could be seen as a failure if the outliers — registrars not actively engaged in the ICANN process or whose first language is not English — are not communicated with.”
A new RAA was also considered a gateway event for the launch of new gTLDs, so applicants have a reason to be cheerful today.
Plural gTLDs not confusing, says ICANN (and two gotchas proving it wrong)
Dozens of new gTLD applicants will be breathing a sigh of relief this morning as ICANN said it will allow single and plural versions of the same gTLD to co-exist after all.
The decision, made Tuesday by ICANN’s New gTLD Program Committee, affects at least 98 applications. It said:
NGPC has determined that no changes are needed to the existing mechanisms in the Applicant Guidebook to address potential consumer confusion resulting from allowing singular and plural versions of the same string.
It was in response to the Governmental Advisory Committee, which had advised ICANN to “reconsider its decision to allow singular and plural versions of the same strings.”
Because of the wording of the advice, ICANN is able to disagree with the the GAC’s opinion that “singular and plural versions of the string as a TLD could lead to potential consumer confusion” without triggering its bylaws provision that forces it into time-consuming GAC negotiations.
By “reconsidering” plural/singular coexistence and not doing anything, it has stuck to the letter of the advice.
In its reconsideration it reconsiderated whether it should overturn the findings of its independent String Similarity Panel, which did not believe any plural/singular pairs were confusingly visually similar.
It also used the coexistence of second-level plural and singular domains, registered to different people, as evidence that users would not find similar coexistence at the top level confusing.
The decision has potentially far-reaching consequences on the new gTLD program.
First, it could mean that some plural/singular pairs will be allowed to exist while others will not.
There are a handful of formal String Confusion Objections filed by applicants for gTLDs that have singular or plural competitors in the current round.
These string pairs are not currently in contention sets, but if the objectors prevail only one of the strings will survive to delegation.
Other string pairs have no objections and will be allowed to coexist. This may be fair in a sense, but it’s not uniform nor predictable.
(One wonders if the String Confusion Objection arbitration panels will use ICANN’s ruling this week in their own decision-making process, which could open a can of worms.)
Second, I think the decision might encourage bad business practices by registries.
My beef with coexistence
I don’t think coexistence is a wholly terrible idea, but I do think it will have some negative effects, as I’ve expressed in the past.
First, I think it’s going to lead to millions of unnecessary defensive registrations.
And by “defensive” I’m not talking about companies protecting their trademarks. Whether you think they’re adequate or not, trademark owners already have protections in new gTLDs.
I’m talking about regular domain registrants, small businesses, entrepreneurs and so on. These people are going to find themselves buying two domains when they only need one.
Let’s say you’re Mad John’s Autos, and you’re registering madjohn.auto. You get to the checkout and Go Daddy offers you the matching .autos domain. Assuming similar pricing, you’d definitely register it, right?
You’ve always got to assume a certain subset of users will get confused and either wind up at a dead URL or a competitor’s site. It’s simpler just to defensively register both.
What if one was priced a little higher than the other? Maybe you’d still register it. How big would the price differential have to be before you decided not to buy the plural duplicate?
Buying two domains instead of one may not be a huge financial burden to individual registrants, but it’s going to lead to situations where gTLDs exist in symbiotic — or parasitic — pairs.
If you run the .auto registry, you may find that your plural competitor is spending so much on marketing .autos that you don’t need to lift a finger in order to sell millions of domain names.
Just make sure you’re partnered with the same registrars and bingo: you’re up-sell.
Attractive business plan, right? You may disagree, but when ICANN opens the floodgates for the second round of new gTLD applications in a couple years, we’ll find out for sure.
Two gotchas
Defenses of plural/singular gTLD coexistence often come from, unsurprisingly, the portfolio applicants that have applied for them and, presumably, may apply for them in future rounds.
“Singulars and plurals live together now on the [second-level domain] side,” Uniregistry said. “They create healthy competition and do not unduly confuse consumers to the point of annoyance.”
I wouldn’t disagree with that statement. Plural/singular coexistence may not confuse internet users to the point of danger or annoyance. But, I would argue, they do make people buy more domain names than they need to.
If you were buying autos.com today you’d definitely definitely buy auto.com as well and redirect it to autos.com. You’d be an idiot not too.
When I put this to Uniregistry execs privately several weeks ago, they disagreed with me. Nobody would bother with such duplicative/defensive domains, they said.
In response, I asked, cheekily: so why do you own uniregistries.com, redirecting it to uniregistry.com?
Another portfolio applicant, Donuts, also didn’t like the idea of plurals and singulars being mutually exclusive, according to this CircleID article. It doesn’t think they’re confusingly similar.
Yet a press release put out by the company last month accidentally said it planned to put its application for .apartment to auction.
The problem is that Donuts hasn’t applied for .apartment, it has applied for .apartments.
I feel rotten for highlighting a simple typo by a fellow media professional (I make enough of those) but isn’t that what we’re often talking about when discussing confusing similarity? Typos?
If the registry can get confused by its own applied-for strings, doesn’t that mean internet users will as well?
Oh, I’m a cybersquatter
Interestingly, ICANN’s belief that plurals are not confusing appears to be institutional.
At least, I discovered this morning that icanns.org, the plural of its primary domain, was available for registration.
So I bought it.
Let’s see how much traffic it gets.
If I get hit by a UDRP, that could be interesting too.
ICANN freezes “closed generic” gTLD bids
ICANN has temporarily banned “closed generic” gTLDs in response to Governmental Advisory Committee demands.
The ban, which may be lifted, affects at least 73 applications (probably dozens more) for dictionary-word strings that had been put forward with “single registrant” business models.
ICANN’s New gTLD Program Committee on Tuesday voted to prevent any applicant for a closed generic gTLD from signing a registry contract, pending further talks with the GAC.
In order to sign a registry agreement, applicants will have to agree to the following Public Interest Commitments:
1. Registry Operator will operate the TLD in a transparent manner consistent with general principles of openness and non-discrimination by establishing, publishing and adhering to clear registration policies.
2. Registry Operator of a “Generic String” TLD may not impose eligibility criteria for registering names in the TLD that limit registrations exclusively to a single person or entity and/or that person’s or entity’s “Affiliates” (as defined in Section 2.9(c) of the Registry Agreement). “Generic String” means a string consisting of a word or term that denominates or describes a general class of goods, services, groups, organizations or things, as opposed to distinguishing a specific brand of goods, services, groups, organizations or things from those of others.
The effect of this is that applications for closed generics are on hold until ICANN has figured out what exactly the GAC is trying to achieve with its advice, which emerged in its Beijing communique (pdf).
Closed generics have not to date been a specific category of gTLD. They’re basically bids like Symantec’s .antivirus, L’Oreal’s .beauty and Amazon’s .cloud, where the gTLD is not a “dot-brand” but every second-level domain would belong to the registry anyway.
The two main reasons the new gTLD program has allowed them so far are a) ICANN decided that coming up with definitions for categories of gTLD was too hard and prone to abuse, and b) ICANN didn’t want to overly restrict registries’ business models.
Apparently all it needed was a nudge from the GAC and a change of senior management to change its mind.
ICANN now has a definition of “generic”, which I believe is a first. To reiterate, it’s:
a string consisting of a word or term that denominates or describes a general class of goods, services, groups, organizations or things, as opposed to distinguishing a specific brand of goods, services, groups, organizations or things from those of others
If the proposed PIC stands after ICANN’s talks with the GAC, nobody will be able to operate a generic string as a single-registrant gTLD.
But there may be one massive loophole.
Let’s say Volkswagen had applied for .golf (it didn’t) as a single-registrant dot-brand gTLD.
In that context, “golf” is a word used to label one model of car, “distinguishing a specific brand of goods, services, groups, organizations or things from those of others”.
But the word “golf” is also indisputably “a word or term that denominates or describes a general class of goods, services, groups, organizations or things”.
So which use case would trump the other? Would Volkswagen be banned from using .golf as a dot-brand?
It’s not just hypothetical. There are live examples in the current round of single-registrant applications that are both generic terms in one industry and brands in others.
Apple’s application for .apple is the obvious one. While it’s hard to imagine apple farmers wanting a gTLD, we don’t yet know how crazy the gTLD landrush is going to get in future rounds.
What of Bond University’s application for .bond? It’s a brand in terms of further education, but a generic term for debt instruments in finance.
Boots’ application for .boots? A brand in the high street pharmacy game, a generic if you sell shoes. Google’s application for .chrome is a brand in browsers but a generic in metallurgy.
None of the examples given here (and there are many more) are on the GAC’s list of problematic closed generics, but as far as I can see they would all be affected by ICANN’s proposed PIC.
The affected applications are not dead yet, of course. ICANN could change its view and drop the new PIC requirement a few months from now after talking to the GAC.
But the applications do appear to be in limbo for now.
ICANN offers to split the cost of GAC “safeguards” with new gTLD registries
All new gTLD applicants will have to abide by stricter rules on security and Whois accuracy under government-mandated changes to their contracts approved by the ICANN board.
At least one of the new obligations is likely to laden new gTLDs registries with additional ongoing costs. In another case, ICANN appears ready to shoulder the financial burden instead.
The changes are coming as a result of ICANN’s New gTLD Program Committee, which on on Tuesday voted to adopt six more pieces of the Governmental Advisory Committee’s advice from March.
This chunk of advice, which deals exclusively with security-related issues, was found in the GAC’s Beijing communique (pdf) under the heading “Safeguards Applicable to all New gTLDs”.
Here’s what ICANN has decided to do about it.
Mandatory Whois checks
The GAC wanted all registries to conduct mandatory checks of Whois data at least twice a year, notifying registrars about any “inaccurate or incomplete records” found.
Many new gTLD applicants already offered to do something similar in their applications.
But ICANN, in response to the GAC advice, has volunteered to do these checks itself. The NGPC said:
ICANN is concluding its development of a WHOIS tool that gives it the ability to check false, incomplete or inaccurate WHOIS data
…
Given these ongoing activities, ICANN (instead of Registry Operators) is well positioned to implement the GAC’s advice that checks identifying registrations in a gTLD with deliberately false, inaccurate or incomplete WHOIS data be conducted at least twice a year. To achieve this, ICANN will perform a periodic sampling of WHOIS data across registries in an effort to identify potentially inaccurate records.
While the resolution is light on detail, it appears that new gTLD registries may well be taken out of the loop completely, with ICANN notifying their registrars instead about inaccurate Whois records.
It’s not the first time ICANN has offered to shoulder potentially costly burdens that would otherwise encumber registry operators. It doesn’t get nearly enough credit from new gTLD applicants for this.
Contractually banning abuse
The GAC wanted new gTLD registrants contractually forbidden from doing bad stuff like phishing, pharming, operating botnets, distributing malware and from infringing intellectual property rights.
These obligations should be passed to the registrants by the registries via their contracts with registrars, the GAC said.
ICANN’s NGPC has agreed with this bit of advice entirely. The base new gTLD Registry Agreement is therefore going to be amended to include a new mandatory Public Interest Commitment reading:
Registry Operator will include a provision in its Registry-Registrar Agreement that requires Registrars to include in their Registration Agreements a provision prohibiting Registered Name Holders from distributing malware, abusively operating botnets, phishing, piracy, trademark or copyright infringement, fraudulent or deceptive practices, counterfeiting or otherwise engaging in activity contrary to applicable law, and providing (consistent with applicable law and any related procedures) consequences for such activities including suspension of the domain name.
The decision to include it as a Public Interest Commitment, rather than building it into the contract proper, is noteworthy.
PICs will be subject to a Public Interest Commitment Dispute Resolution Process (PICDRP) which allows basically anyone to file a complaint about a registry suspected of breaking its commitments.
ICANN would act as the enforcer of the ruling, rather than the complainant. Registries that lose PICDRP cases face consequences up to an including the termination of their contracts.
In theory, by including the GAC’s advice as a PIC, ICANN is handing a loaded gun to anyone who might want to shoot down a new gTLD registry in future.
However, the proposed PIC language seems to be worded in such a way that the registry would only have to include the anti-abuse provisions in its contract in order to be in compliance.
Right now, the way the PIC is worded, I can’t see a registry getting terminated or otherwise sanctioned due to a dispute about an instance of copyright infringement by a registrant, for example.
I don’t think there’s much else to get excited about here. Every registry or registrar worth a damn already prohibits its customers from doing bad stuff, if only to cover their own asses legally and keep their networks clean; ICANN merely wants to formalize these provisions in its chain of contracts.
Actually fighting abuse
The third through sixth pieces of GAC advice approved by ICANN this week are the ones that will almost certainly add to the cost of running a new gTLD registry.
The GAC wants registries to “periodically conduct a technical analysis to assess whether domains in its gTLD are being used to perpetrate security threats such as pharming, phishing, malware, and botnets.”
It also wants registries to keep records of what they find in these analyses, to maintain a complaints mechanism, and to shut down any domains found to be perpetrating abusive behavior.
ICANN has again gone the route of adding a new mandatory PIC to the base Registry Agreement. It reads:
Registry Operator will periodically conduct a technical analysis to assess whether domains in the TLD are being used to perpetrate security threats, such as pharming, phishing, malware, and botnets. Registry Operator will maintain statistical reports on the number of security threats identified and the actions taken as a result of the periodic security checks. Registry Operator will maintain these reports for the term of the Agreement unless a shorter period is required by law or approved by ICANN, and will provide them to ICANN upon request.
You’ll notice that the language is purposefully vague on how registries should carry out these checks.
ICANN said it will convene a task force or GNSO policy development process to figure out the precise details, enabling new gTLD applicants to enter into contracts as soon as possible.
It means, of course, that applicants could wind up signing contracts without being fully apprised of the cost implications. Fighting abuse costs money.
There are dozens of ways to scan TLDs for abusive behavior, but the most comprehensive ones are commercial services.
ICM Registry, for example, decided to pay Intel/McAfee millions of dollars — a dollar or two per domain, I believe — for it to run daily malware scans of the entire .xxx zone.
More recently, Directi’s .PW Registry chose to sign up to Architelos’ NameSentry service to monitor abuse in its newly relaunched ccTLD.
There’s going to be a fight about the implementation details, but one way or the other the PIC would make registries scan their zones for abuse.
What the PIC does not state, and where it may face queries from the GAC as a result, is what registries must do when they find abusive behavior in their gTLDs. There’s no mention of mandatory domain name suspension, for example.
But in an annex to Tuesday’s resolution, ICANN’s NGPC said the “consequences” part of the GAC advice would be addressed as part of the same future technical implementation discussions.
In summary, the NGPC wants registries to be contractually obliged to contractually oblige their registrars to contractually oblige their registrants to not do bad stuff, but there are not yet any obligations relating to the consequences, to registrants, of ignoring these rules.
This week’s resolutions are the second big batch of decisions ICANN has taken regarding the GAC’s Beijing communique.
Earlier this month, it accepted some of the GAC’s direct advice related to certain specific gTLDs it has a problem with, the RAA and intergovernmental organizations and pretended to accept other advice related to community objections.
The NGPC has yet to address the egregiously incompetent “Category 1” GAC advice, which was the subject of a public comment period.
Recent Comments